1. Packages
  2. Aviatrix
  3. API Docs
  4. AviatrixSite2Cloud
Aviatrix v0.0.11 published on Saturday, Jun 17, 2023 by Aviatrix

aviatrix.AviatrixSite2Cloud

Explore with Pulumi AI

aviatrix logo
Aviatrix v0.0.11 published on Saturday, Jun 17, 2023 by Aviatrix

    Import

    site2cloud can be imported using the connection_name and vpc_id, e.g.

     $ pulumi import aviatrix:index/aviatrixSite2Cloud:AviatrixSite2Cloud test connection_name~vpc_id
    

    Create AviatrixSite2Cloud Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new AviatrixSite2Cloud(name: string, args: AviatrixSite2CloudArgs, opts?: CustomResourceOptions);
    @overload
    def AviatrixSite2Cloud(resource_name: str,
                           args: AviatrixSite2CloudArgs,
                           opts: Optional[ResourceOptions] = None)
    
    @overload
    def AviatrixSite2Cloud(resource_name: str,
                           opts: Optional[ResourceOptions] = None,
                           connection_name: Optional[str] = None,
                           vpc_id: Optional[str] = None,
                           tunnel_type: Optional[str] = None,
                           remote_gateway_type: Optional[str] = None,
                           remote_gateway_ip: Optional[str] = None,
                           primary_cloud_gateway_name: Optional[str] = None,
                           connection_type: Optional[str] = None,
                           local_subnet_virtual: Optional[str] = None,
                           phase1_encryption: Optional[str] = None,
                           ca_cert_tag_name: Optional[str] = None,
                           backup_remote_identifier: Optional[str] = None,
                           backup_remote_gateway_longitude: Optional[float] = None,
                           custom_algorithms: Optional[bool] = None,
                           custom_mapped: Optional[bool] = None,
                           enable_active_active: Optional[bool] = None,
                           enable_dead_peer_detection: Optional[bool] = None,
                           enable_event_triggered_ha: Optional[bool] = None,
                           enable_ikev2: Optional[bool] = None,
                           enable_single_ip_ha: Optional[bool] = None,
                           forward_traffic_to_transit: Optional[bool] = None,
                           ha_enabled: Optional[bool] = None,
                           local_destination_real_cidrs: Optional[Sequence[str]] = None,
                           local_destination_virtual_cidrs: Optional[Sequence[str]] = None,
                           local_source_real_cidrs: Optional[Sequence[str]] = None,
                           local_source_virtual_cidrs: Optional[Sequence[str]] = None,
                           local_subnet_cidr: Optional[str] = None,
                           auth_type: Optional[str] = None,
                           local_tunnel_ip: Optional[str] = None,
                           phase1_authentication: Optional[str] = None,
                           phase1_dh_groups: Optional[str] = None,
                           backup_remote_tunnel_ip: Optional[str] = None,
                           phase1_remote_identifiers: Optional[Sequence[str]] = None,
                           phase2_authentication: Optional[str] = None,
                           phase2_dh_groups: Optional[str] = None,
                           phase2_encryption: Optional[str] = None,
                           pre_shared_key: Optional[str] = None,
                           backup_remote_gateway_latitude: Optional[float] = None,
                           private_route_encryption: Optional[bool] = None,
                           remote_destination_real_cidrs: Optional[Sequence[str]] = None,
                           remote_destination_virtual_cidrs: Optional[Sequence[str]] = None,
                           backup_remote_gateway_ip: Optional[str] = None,
                           remote_gateway_latitude: Optional[float] = None,
                           remote_gateway_longitude: Optional[float] = None,
                           backup_pre_shared_key: Optional[str] = None,
                           remote_identifier: Optional[str] = None,
                           remote_source_real_cidrs: Optional[Sequence[str]] = None,
                           remote_source_virtual_cidrs: Optional[Sequence[str]] = None,
                           remote_subnet_cidr: Optional[str] = None,
                           remote_subnet_virtual: Optional[str] = None,
                           remote_tunnel_ip: Optional[str] = None,
                           route_table_lists: Optional[Sequence[str]] = None,
                           ssl_server_pool: Optional[str] = None,
                           backup_local_tunnel_ip: Optional[str] = None,
                           backup_gateway_name: Optional[str] = None)
    func NewAviatrixSite2Cloud(ctx *Context, name string, args AviatrixSite2CloudArgs, opts ...ResourceOption) (*AviatrixSite2Cloud, error)
    public AviatrixSite2Cloud(string name, AviatrixSite2CloudArgs args, CustomResourceOptions? opts = null)
    public AviatrixSite2Cloud(String name, AviatrixSite2CloudArgs args)
    public AviatrixSite2Cloud(String name, AviatrixSite2CloudArgs args, CustomResourceOptions options)
    
    type: aviatrix:AviatrixSite2Cloud
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args AviatrixSite2CloudArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args AviatrixSite2CloudArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args AviatrixSite2CloudArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args AviatrixSite2CloudArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args AviatrixSite2CloudArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var aviatrixSite2CloudResource = new Aviatrix.AviatrixSite2Cloud("aviatrixSite2CloudResource", new()
    {
        ConnectionName = "string",
        VpcId = "string",
        TunnelType = "string",
        RemoteGatewayType = "string",
        RemoteGatewayIp = "string",
        PrimaryCloudGatewayName = "string",
        ConnectionType = "string",
        LocalSubnetVirtual = "string",
        Phase1Encryption = "string",
        CaCertTagName = "string",
        BackupRemoteIdentifier = "string",
        BackupRemoteGatewayLongitude = 0,
        CustomAlgorithms = false,
        CustomMapped = false,
        EnableActiveActive = false,
        EnableDeadPeerDetection = false,
        EnableEventTriggeredHa = false,
        EnableIkev2 = false,
        EnableSingleIpHa = false,
        ForwardTrafficToTransit = false,
        HaEnabled = false,
        LocalDestinationRealCidrs = new[]
        {
            "string",
        },
        LocalDestinationVirtualCidrs = new[]
        {
            "string",
        },
        LocalSourceRealCidrs = new[]
        {
            "string",
        },
        LocalSourceVirtualCidrs = new[]
        {
            "string",
        },
        LocalSubnetCidr = "string",
        AuthType = "string",
        LocalTunnelIp = "string",
        Phase1Authentication = "string",
        Phase1DhGroups = "string",
        BackupRemoteTunnelIp = "string",
        Phase1RemoteIdentifiers = new[]
        {
            "string",
        },
        Phase2Authentication = "string",
        Phase2DhGroups = "string",
        Phase2Encryption = "string",
        PreSharedKey = "string",
        BackupRemoteGatewayLatitude = 0,
        PrivateRouteEncryption = false,
        RemoteDestinationRealCidrs = new[]
        {
            "string",
        },
        RemoteDestinationVirtualCidrs = new[]
        {
            "string",
        },
        BackupRemoteGatewayIp = "string",
        RemoteGatewayLatitude = 0,
        RemoteGatewayLongitude = 0,
        BackupPreSharedKey = "string",
        RemoteIdentifier = "string",
        RemoteSourceRealCidrs = new[]
        {
            "string",
        },
        RemoteSourceVirtualCidrs = new[]
        {
            "string",
        },
        RemoteSubnetCidr = "string",
        RemoteSubnetVirtual = "string",
        RemoteTunnelIp = "string",
        RouteTableLists = new[]
        {
            "string",
        },
        SslServerPool = "string",
        BackupLocalTunnelIp = "string",
        BackupGatewayName = "string",
    });
    
    example, err := aviatrix.NewAviatrixSite2Cloud(ctx, "aviatrixSite2CloudResource", &aviatrix.AviatrixSite2CloudArgs{
    	ConnectionName:               pulumi.String("string"),
    	VpcId:                        pulumi.String("string"),
    	TunnelType:                   pulumi.String("string"),
    	RemoteGatewayType:            pulumi.String("string"),
    	RemoteGatewayIp:              pulumi.String("string"),
    	PrimaryCloudGatewayName:      pulumi.String("string"),
    	ConnectionType:               pulumi.String("string"),
    	LocalSubnetVirtual:           pulumi.String("string"),
    	Phase1Encryption:             pulumi.String("string"),
    	CaCertTagName:                pulumi.String("string"),
    	BackupRemoteIdentifier:       pulumi.String("string"),
    	BackupRemoteGatewayLongitude: pulumi.Float64(0),
    	CustomAlgorithms:             pulumi.Bool(false),
    	CustomMapped:                 pulumi.Bool(false),
    	EnableActiveActive:           pulumi.Bool(false),
    	EnableDeadPeerDetection:      pulumi.Bool(false),
    	EnableEventTriggeredHa:       pulumi.Bool(false),
    	EnableIkev2:                  pulumi.Bool(false),
    	EnableSingleIpHa:             pulumi.Bool(false),
    	ForwardTrafficToTransit:      pulumi.Bool(false),
    	HaEnabled:                    pulumi.Bool(false),
    	LocalDestinationRealCidrs: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	LocalDestinationVirtualCidrs: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	LocalSourceRealCidrs: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	LocalSourceVirtualCidrs: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	LocalSubnetCidr:      pulumi.String("string"),
    	AuthType:             pulumi.String("string"),
    	LocalTunnelIp:        pulumi.String("string"),
    	Phase1Authentication: pulumi.String("string"),
    	Phase1DhGroups:       pulumi.String("string"),
    	BackupRemoteTunnelIp: pulumi.String("string"),
    	Phase1RemoteIdentifiers: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	Phase2Authentication:        pulumi.String("string"),
    	Phase2DhGroups:              pulumi.String("string"),
    	Phase2Encryption:            pulumi.String("string"),
    	PreSharedKey:                pulumi.String("string"),
    	BackupRemoteGatewayLatitude: pulumi.Float64(0),
    	PrivateRouteEncryption:      pulumi.Bool(false),
    	RemoteDestinationRealCidrs: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	RemoteDestinationVirtualCidrs: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	BackupRemoteGatewayIp:  pulumi.String("string"),
    	RemoteGatewayLatitude:  pulumi.Float64(0),
    	RemoteGatewayLongitude: pulumi.Float64(0),
    	BackupPreSharedKey:     pulumi.String("string"),
    	RemoteIdentifier:       pulumi.String("string"),
    	RemoteSourceRealCidrs: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	RemoteSourceVirtualCidrs: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	RemoteSubnetCidr:    pulumi.String("string"),
    	RemoteSubnetVirtual: pulumi.String("string"),
    	RemoteTunnelIp:      pulumi.String("string"),
    	RouteTableLists: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	SslServerPool:       pulumi.String("string"),
    	BackupLocalTunnelIp: pulumi.String("string"),
    	BackupGatewayName:   pulumi.String("string"),
    })
    
    var aviatrixSite2CloudResource = new AviatrixSite2Cloud("aviatrixSite2CloudResource", AviatrixSite2CloudArgs.builder()
        .connectionName("string")
        .vpcId("string")
        .tunnelType("string")
        .remoteGatewayType("string")
        .remoteGatewayIp("string")
        .primaryCloudGatewayName("string")
        .connectionType("string")
        .localSubnetVirtual("string")
        .phase1Encryption("string")
        .caCertTagName("string")
        .backupRemoteIdentifier("string")
        .backupRemoteGatewayLongitude(0)
        .customAlgorithms(false)
        .customMapped(false)
        .enableActiveActive(false)
        .enableDeadPeerDetection(false)
        .enableEventTriggeredHa(false)
        .enableIkev2(false)
        .enableSingleIpHa(false)
        .forwardTrafficToTransit(false)
        .haEnabled(false)
        .localDestinationRealCidrs("string")
        .localDestinationVirtualCidrs("string")
        .localSourceRealCidrs("string")
        .localSourceVirtualCidrs("string")
        .localSubnetCidr("string")
        .authType("string")
        .localTunnelIp("string")
        .phase1Authentication("string")
        .phase1DhGroups("string")
        .backupRemoteTunnelIp("string")
        .phase1RemoteIdentifiers("string")
        .phase2Authentication("string")
        .phase2DhGroups("string")
        .phase2Encryption("string")
        .preSharedKey("string")
        .backupRemoteGatewayLatitude(0)
        .privateRouteEncryption(false)
        .remoteDestinationRealCidrs("string")
        .remoteDestinationVirtualCidrs("string")
        .backupRemoteGatewayIp("string")
        .remoteGatewayLatitude(0)
        .remoteGatewayLongitude(0)
        .backupPreSharedKey("string")
        .remoteIdentifier("string")
        .remoteSourceRealCidrs("string")
        .remoteSourceVirtualCidrs("string")
        .remoteSubnetCidr("string")
        .remoteSubnetVirtual("string")
        .remoteTunnelIp("string")
        .routeTableLists("string")
        .sslServerPool("string")
        .backupLocalTunnelIp("string")
        .backupGatewayName("string")
        .build());
    
    aviatrix_site2_cloud_resource = aviatrix.AviatrixSite2Cloud("aviatrixSite2CloudResource",
        connection_name="string",
        vpc_id="string",
        tunnel_type="string",
        remote_gateway_type="string",
        remote_gateway_ip="string",
        primary_cloud_gateway_name="string",
        connection_type="string",
        local_subnet_virtual="string",
        phase1_encryption="string",
        ca_cert_tag_name="string",
        backup_remote_identifier="string",
        backup_remote_gateway_longitude=0,
        custom_algorithms=False,
        custom_mapped=False,
        enable_active_active=False,
        enable_dead_peer_detection=False,
        enable_event_triggered_ha=False,
        enable_ikev2=False,
        enable_single_ip_ha=False,
        forward_traffic_to_transit=False,
        ha_enabled=False,
        local_destination_real_cidrs=["string"],
        local_destination_virtual_cidrs=["string"],
        local_source_real_cidrs=["string"],
        local_source_virtual_cidrs=["string"],
        local_subnet_cidr="string",
        auth_type="string",
        local_tunnel_ip="string",
        phase1_authentication="string",
        phase1_dh_groups="string",
        backup_remote_tunnel_ip="string",
        phase1_remote_identifiers=["string"],
        phase2_authentication="string",
        phase2_dh_groups="string",
        phase2_encryption="string",
        pre_shared_key="string",
        backup_remote_gateway_latitude=0,
        private_route_encryption=False,
        remote_destination_real_cidrs=["string"],
        remote_destination_virtual_cidrs=["string"],
        backup_remote_gateway_ip="string",
        remote_gateway_latitude=0,
        remote_gateway_longitude=0,
        backup_pre_shared_key="string",
        remote_identifier="string",
        remote_source_real_cidrs=["string"],
        remote_source_virtual_cidrs=["string"],
        remote_subnet_cidr="string",
        remote_subnet_virtual="string",
        remote_tunnel_ip="string",
        route_table_lists=["string"],
        ssl_server_pool="string",
        backup_local_tunnel_ip="string",
        backup_gateway_name="string")
    
    const aviatrixSite2CloudResource = new aviatrix.AviatrixSite2Cloud("aviatrixSite2CloudResource", {
        connectionName: "string",
        vpcId: "string",
        tunnelType: "string",
        remoteGatewayType: "string",
        remoteGatewayIp: "string",
        primaryCloudGatewayName: "string",
        connectionType: "string",
        localSubnetVirtual: "string",
        phase1Encryption: "string",
        caCertTagName: "string",
        backupRemoteIdentifier: "string",
        backupRemoteGatewayLongitude: 0,
        customAlgorithms: false,
        customMapped: false,
        enableActiveActive: false,
        enableDeadPeerDetection: false,
        enableEventTriggeredHa: false,
        enableIkev2: false,
        enableSingleIpHa: false,
        forwardTrafficToTransit: false,
        haEnabled: false,
        localDestinationRealCidrs: ["string"],
        localDestinationVirtualCidrs: ["string"],
        localSourceRealCidrs: ["string"],
        localSourceVirtualCidrs: ["string"],
        localSubnetCidr: "string",
        authType: "string",
        localTunnelIp: "string",
        phase1Authentication: "string",
        phase1DhGroups: "string",
        backupRemoteTunnelIp: "string",
        phase1RemoteIdentifiers: ["string"],
        phase2Authentication: "string",
        phase2DhGroups: "string",
        phase2Encryption: "string",
        preSharedKey: "string",
        backupRemoteGatewayLatitude: 0,
        privateRouteEncryption: false,
        remoteDestinationRealCidrs: ["string"],
        remoteDestinationVirtualCidrs: ["string"],
        backupRemoteGatewayIp: "string",
        remoteGatewayLatitude: 0,
        remoteGatewayLongitude: 0,
        backupPreSharedKey: "string",
        remoteIdentifier: "string",
        remoteSourceRealCidrs: ["string"],
        remoteSourceVirtualCidrs: ["string"],
        remoteSubnetCidr: "string",
        remoteSubnetVirtual: "string",
        remoteTunnelIp: "string",
        routeTableLists: ["string"],
        sslServerPool: "string",
        backupLocalTunnelIp: "string",
        backupGatewayName: "string",
    });
    
    type: aviatrix:AviatrixSite2Cloud
    properties:
        authType: string
        backupGatewayName: string
        backupLocalTunnelIp: string
        backupPreSharedKey: string
        backupRemoteGatewayIp: string
        backupRemoteGatewayLatitude: 0
        backupRemoteGatewayLongitude: 0
        backupRemoteIdentifier: string
        backupRemoteTunnelIp: string
        caCertTagName: string
        connectionName: string
        connectionType: string
        customAlgorithms: false
        customMapped: false
        enableActiveActive: false
        enableDeadPeerDetection: false
        enableEventTriggeredHa: false
        enableIkev2: false
        enableSingleIpHa: false
        forwardTrafficToTransit: false
        haEnabled: false
        localDestinationRealCidrs:
            - string
        localDestinationVirtualCidrs:
            - string
        localSourceRealCidrs:
            - string
        localSourceVirtualCidrs:
            - string
        localSubnetCidr: string
        localSubnetVirtual: string
        localTunnelIp: string
        phase1Authentication: string
        phase1DhGroups: string
        phase1Encryption: string
        phase1RemoteIdentifiers:
            - string
        phase2Authentication: string
        phase2DhGroups: string
        phase2Encryption: string
        preSharedKey: string
        primaryCloudGatewayName: string
        privateRouteEncryption: false
        remoteDestinationRealCidrs:
            - string
        remoteDestinationVirtualCidrs:
            - string
        remoteGatewayIp: string
        remoteGatewayLatitude: 0
        remoteGatewayLongitude: 0
        remoteGatewayType: string
        remoteIdentifier: string
        remoteSourceRealCidrs:
            - string
        remoteSourceVirtualCidrs:
            - string
        remoteSubnetCidr: string
        remoteSubnetVirtual: string
        remoteTunnelIp: string
        routeTableLists:
            - string
        sslServerPool: string
        tunnelType: string
        vpcId: string
    

    AviatrixSite2Cloud Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    The AviatrixSite2Cloud resource accepts the following input properties:

    ConnectionName string
    Site2Cloud connection name.
    ConnectionType string
    Connection type. Valid Values: "mapped", "unmapped".
    PrimaryCloudGatewayName string
    Primary cloud gateway name.
    RemoteGatewayIp string
    Remote gateway IP.
    RemoteGatewayType string
    Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".
    TunnelType string
    Site2Cloud tunnel type. Valid Values: "policy", "route".
    VpcId string
    VPC ID of the cloud gateway.
    AuthType string
    Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.
    BackupGatewayName string
    Backup gateway name. NOTE: Please see notes here regarding HA requirements.
    BackupLocalTunnelIp string
    Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    BackupPreSharedKey string
    Backup Pre-Shared Key.
    BackupRemoteGatewayIp string
    Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.
    BackupRemoteGatewayLatitude double
    Latitude of backup remote gateway. Does not support refresh.
    BackupRemoteGatewayLongitude double
    Longitude of backup remote gateway. Does not support refresh.
    BackupRemoteIdentifier string
    Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".
    BackupRemoteTunnelIp string
    Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    CaCertTagName string
    Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.
    CustomAlgorithms bool
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    CustomMapped bool
    Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.
    EnableActiveActive bool
    Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.
    EnableDeadPeerDetection bool
    Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9
    EnableEventTriggeredHa bool
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    EnableIkev2 bool
    Switch to enable IKEv2. Valid values: true, false. Default value: false.
    EnableSingleIpHa bool
    Enable single IP HA feature. Available as of provider version 2.19+.
    ForwardTrafficToTransit bool
    Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.
    HaEnabled bool
    Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.
    LocalDestinationRealCidrs List<string>
    List of Local Initiated Traffic Destination Real CIDRs.
    LocalDestinationVirtualCidrs List<string>
    List of Local Initiated Traffic Destination Virtual CIDRs.
    LocalSourceRealCidrs List<string>
    List of Local Initiated Traffic Source Real CIDRs.
    LocalSourceVirtualCidrs List<string>
    List of Local Initiated Traffic Source Virtual CIDRs.
    LocalSubnetCidr string
    Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.
    LocalSubnetVirtual string
    Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    LocalTunnelIp string
    Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    Phase1Authentication string
    Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".
    Phase1DhGroups string
    Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    Phase1Encryption string
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    Phase1RemoteIdentifiers List<string>
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    Phase2Authentication string
    Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".
    Phase2DhGroups string
    Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    Phase2Encryption string
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    PreSharedKey string
    Pre-Shared Key.
    PrivateRouteEncryption bool
    Private route encryption switch. Valid values: true, false.
    RemoteDestinationRealCidrs List<string>
    List of Remote Initiated Traffic Destination Real CIDRs.
    RemoteDestinationVirtualCidrs List<string>
    List of Remote Initiated Traffic Destination Virtual CIDRs.
    RemoteGatewayLatitude double
    Latitude of remote gateway. Does not support refresh.
    RemoteGatewayLongitude double
    Longitude of remote gateway. Does not support refresh.
    RemoteIdentifier string
    Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".
    RemoteSourceRealCidrs List<string>
    List of Remote Initiated Traffic Source Real CIDRs.
    RemoteSourceVirtualCidrs List<string>
    List of Remote Initiated Traffic Source Virtual CIDRs.
    RemoteSubnetCidr string
    Remote subnet CIDR. Not required for custom_mapped connection.
    RemoteSubnetVirtual string
    Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    RemoteTunnelIp string
    Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    RouteTableLists List<string>
    Route tables to modify.
    SslServerPool string
    Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.
    ConnectionName string
    Site2Cloud connection name.
    ConnectionType string
    Connection type. Valid Values: "mapped", "unmapped".
    PrimaryCloudGatewayName string
    Primary cloud gateway name.
    RemoteGatewayIp string
    Remote gateway IP.
    RemoteGatewayType string
    Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".
    TunnelType string
    Site2Cloud tunnel type. Valid Values: "policy", "route".
    VpcId string
    VPC ID of the cloud gateway.
    AuthType string
    Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.
    BackupGatewayName string
    Backup gateway name. NOTE: Please see notes here regarding HA requirements.
    BackupLocalTunnelIp string
    Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    BackupPreSharedKey string
    Backup Pre-Shared Key.
    BackupRemoteGatewayIp string
    Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.
    BackupRemoteGatewayLatitude float64
    Latitude of backup remote gateway. Does not support refresh.
    BackupRemoteGatewayLongitude float64
    Longitude of backup remote gateway. Does not support refresh.
    BackupRemoteIdentifier string
    Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".
    BackupRemoteTunnelIp string
    Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    CaCertTagName string
    Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.
    CustomAlgorithms bool
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    CustomMapped bool
    Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.
    EnableActiveActive bool
    Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.
    EnableDeadPeerDetection bool
    Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9
    EnableEventTriggeredHa bool
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    EnableIkev2 bool
    Switch to enable IKEv2. Valid values: true, false. Default value: false.
    EnableSingleIpHa bool
    Enable single IP HA feature. Available as of provider version 2.19+.
    ForwardTrafficToTransit bool
    Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.
    HaEnabled bool
    Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.
    LocalDestinationRealCidrs []string
    List of Local Initiated Traffic Destination Real CIDRs.
    LocalDestinationVirtualCidrs []string
    List of Local Initiated Traffic Destination Virtual CIDRs.
    LocalSourceRealCidrs []string
    List of Local Initiated Traffic Source Real CIDRs.
    LocalSourceVirtualCidrs []string
    List of Local Initiated Traffic Source Virtual CIDRs.
    LocalSubnetCidr string
    Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.
    LocalSubnetVirtual string
    Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    LocalTunnelIp string
    Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    Phase1Authentication string
    Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".
    Phase1DhGroups string
    Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    Phase1Encryption string
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    Phase1RemoteIdentifiers []string
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    Phase2Authentication string
    Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".
    Phase2DhGroups string
    Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    Phase2Encryption string
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    PreSharedKey string
    Pre-Shared Key.
    PrivateRouteEncryption bool
    Private route encryption switch. Valid values: true, false.
    RemoteDestinationRealCidrs []string
    List of Remote Initiated Traffic Destination Real CIDRs.
    RemoteDestinationVirtualCidrs []string
    List of Remote Initiated Traffic Destination Virtual CIDRs.
    RemoteGatewayLatitude float64
    Latitude of remote gateway. Does not support refresh.
    RemoteGatewayLongitude float64
    Longitude of remote gateway. Does not support refresh.
    RemoteIdentifier string
    Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".
    RemoteSourceRealCidrs []string
    List of Remote Initiated Traffic Source Real CIDRs.
    RemoteSourceVirtualCidrs []string
    List of Remote Initiated Traffic Source Virtual CIDRs.
    RemoteSubnetCidr string
    Remote subnet CIDR. Not required for custom_mapped connection.
    RemoteSubnetVirtual string
    Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    RemoteTunnelIp string
    Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    RouteTableLists []string
    Route tables to modify.
    SslServerPool string
    Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.
    connectionName String
    Site2Cloud connection name.
    connectionType String
    Connection type. Valid Values: "mapped", "unmapped".
    primaryCloudGatewayName String
    Primary cloud gateway name.
    remoteGatewayIp String
    Remote gateway IP.
    remoteGatewayType String
    Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".
    tunnelType String
    Site2Cloud tunnel type. Valid Values: "policy", "route".
    vpcId String
    VPC ID of the cloud gateway.
    authType String
    Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.
    backupGatewayName String
    Backup gateway name. NOTE: Please see notes here regarding HA requirements.
    backupLocalTunnelIp String
    Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    backupPreSharedKey String
    Backup Pre-Shared Key.
    backupRemoteGatewayIp String
    Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.
    backupRemoteGatewayLatitude Double
    Latitude of backup remote gateway. Does not support refresh.
    backupRemoteGatewayLongitude Double
    Longitude of backup remote gateway. Does not support refresh.
    backupRemoteIdentifier String
    Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".
    backupRemoteTunnelIp String
    Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    caCertTagName String
    Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.
    customAlgorithms Boolean
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    customMapped Boolean
    Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.
    enableActiveActive Boolean
    Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.
    enableDeadPeerDetection Boolean
    Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9
    enableEventTriggeredHa Boolean
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    enableIkev2 Boolean
    Switch to enable IKEv2. Valid values: true, false. Default value: false.
    enableSingleIpHa Boolean
    Enable single IP HA feature. Available as of provider version 2.19+.
    forwardTrafficToTransit Boolean
    Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.
    haEnabled Boolean
    Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.
    localDestinationRealCidrs List<String>
    List of Local Initiated Traffic Destination Real CIDRs.
    localDestinationVirtualCidrs List<String>
    List of Local Initiated Traffic Destination Virtual CIDRs.
    localSourceRealCidrs List<String>
    List of Local Initiated Traffic Source Real CIDRs.
    localSourceVirtualCidrs List<String>
    List of Local Initiated Traffic Source Virtual CIDRs.
    localSubnetCidr String
    Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.
    localSubnetVirtual String
    Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    localTunnelIp String
    Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    phase1Authentication String
    Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".
    phase1DhGroups String
    Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    phase1Encryption String
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    phase1RemoteIdentifiers List<String>
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    phase2Authentication String
    Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".
    phase2DhGroups String
    Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    phase2Encryption String
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    preSharedKey String
    Pre-Shared Key.
    privateRouteEncryption Boolean
    Private route encryption switch. Valid values: true, false.
    remoteDestinationRealCidrs List<String>
    List of Remote Initiated Traffic Destination Real CIDRs.
    remoteDestinationVirtualCidrs List<String>
    List of Remote Initiated Traffic Destination Virtual CIDRs.
    remoteGatewayLatitude Double
    Latitude of remote gateway. Does not support refresh.
    remoteGatewayLongitude Double
    Longitude of remote gateway. Does not support refresh.
    remoteIdentifier String
    Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".
    remoteSourceRealCidrs List<String>
    List of Remote Initiated Traffic Source Real CIDRs.
    remoteSourceVirtualCidrs List<String>
    List of Remote Initiated Traffic Source Virtual CIDRs.
    remoteSubnetCidr String
    Remote subnet CIDR. Not required for custom_mapped connection.
    remoteSubnetVirtual String
    Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    remoteTunnelIp String
    Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    routeTableLists List<String>
    Route tables to modify.
    sslServerPool String
    Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.
    connectionName string
    Site2Cloud connection name.
    connectionType string
    Connection type. Valid Values: "mapped", "unmapped".
    primaryCloudGatewayName string
    Primary cloud gateway name.
    remoteGatewayIp string
    Remote gateway IP.
    remoteGatewayType string
    Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".
    tunnelType string
    Site2Cloud tunnel type. Valid Values: "policy", "route".
    vpcId string
    VPC ID of the cloud gateway.
    authType string
    Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.
    backupGatewayName string
    Backup gateway name. NOTE: Please see notes here regarding HA requirements.
    backupLocalTunnelIp string
    Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    backupPreSharedKey string
    Backup Pre-Shared Key.
    backupRemoteGatewayIp string
    Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.
    backupRemoteGatewayLatitude number
    Latitude of backup remote gateway. Does not support refresh.
    backupRemoteGatewayLongitude number
    Longitude of backup remote gateway. Does not support refresh.
    backupRemoteIdentifier string
    Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".
    backupRemoteTunnelIp string
    Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    caCertTagName string
    Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.
    customAlgorithms boolean
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    customMapped boolean
    Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.
    enableActiveActive boolean
    Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.
    enableDeadPeerDetection boolean
    Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9
    enableEventTriggeredHa boolean
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    enableIkev2 boolean
    Switch to enable IKEv2. Valid values: true, false. Default value: false.
    enableSingleIpHa boolean
    Enable single IP HA feature. Available as of provider version 2.19+.
    forwardTrafficToTransit boolean
    Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.
    haEnabled boolean
    Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.
    localDestinationRealCidrs string[]
    List of Local Initiated Traffic Destination Real CIDRs.
    localDestinationVirtualCidrs string[]
    List of Local Initiated Traffic Destination Virtual CIDRs.
    localSourceRealCidrs string[]
    List of Local Initiated Traffic Source Real CIDRs.
    localSourceVirtualCidrs string[]
    List of Local Initiated Traffic Source Virtual CIDRs.
    localSubnetCidr string
    Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.
    localSubnetVirtual string
    Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    localTunnelIp string
    Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    phase1Authentication string
    Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".
    phase1DhGroups string
    Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    phase1Encryption string
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    phase1RemoteIdentifiers string[]
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    phase2Authentication string
    Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".
    phase2DhGroups string
    Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    phase2Encryption string
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    preSharedKey string
    Pre-Shared Key.
    privateRouteEncryption boolean
    Private route encryption switch. Valid values: true, false.
    remoteDestinationRealCidrs string[]
    List of Remote Initiated Traffic Destination Real CIDRs.
    remoteDestinationVirtualCidrs string[]
    List of Remote Initiated Traffic Destination Virtual CIDRs.
    remoteGatewayLatitude number
    Latitude of remote gateway. Does not support refresh.
    remoteGatewayLongitude number
    Longitude of remote gateway. Does not support refresh.
    remoteIdentifier string
    Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".
    remoteSourceRealCidrs string[]
    List of Remote Initiated Traffic Source Real CIDRs.
    remoteSourceVirtualCidrs string[]
    List of Remote Initiated Traffic Source Virtual CIDRs.
    remoteSubnetCidr string
    Remote subnet CIDR. Not required for custom_mapped connection.
    remoteSubnetVirtual string
    Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    remoteTunnelIp string
    Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    routeTableLists string[]
    Route tables to modify.
    sslServerPool string
    Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.
    connection_name str
    Site2Cloud connection name.
    connection_type str
    Connection type. Valid Values: "mapped", "unmapped".
    primary_cloud_gateway_name str
    Primary cloud gateway name.
    remote_gateway_ip str
    Remote gateway IP.
    remote_gateway_type str
    Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".
    tunnel_type str
    Site2Cloud tunnel type. Valid Values: "policy", "route".
    vpc_id str
    VPC ID of the cloud gateway.
    auth_type str
    Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.
    backup_gateway_name str
    Backup gateway name. NOTE: Please see notes here regarding HA requirements.
    backup_local_tunnel_ip str
    Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    backup_pre_shared_key str
    Backup Pre-Shared Key.
    backup_remote_gateway_ip str
    Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.
    backup_remote_gateway_latitude float
    Latitude of backup remote gateway. Does not support refresh.
    backup_remote_gateway_longitude float
    Longitude of backup remote gateway. Does not support refresh.
    backup_remote_identifier str
    Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".
    backup_remote_tunnel_ip str
    Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    ca_cert_tag_name str
    Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.
    custom_algorithms bool
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    custom_mapped bool
    Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.
    enable_active_active bool
    Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.
    enable_dead_peer_detection bool
    Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9
    enable_event_triggered_ha bool
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    enable_ikev2 bool
    Switch to enable IKEv2. Valid values: true, false. Default value: false.
    enable_single_ip_ha bool
    Enable single IP HA feature. Available as of provider version 2.19+.
    forward_traffic_to_transit bool
    Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.
    ha_enabled bool
    Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.
    local_destination_real_cidrs Sequence[str]
    List of Local Initiated Traffic Destination Real CIDRs.
    local_destination_virtual_cidrs Sequence[str]
    List of Local Initiated Traffic Destination Virtual CIDRs.
    local_source_real_cidrs Sequence[str]
    List of Local Initiated Traffic Source Real CIDRs.
    local_source_virtual_cidrs Sequence[str]
    List of Local Initiated Traffic Source Virtual CIDRs.
    local_subnet_cidr str
    Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.
    local_subnet_virtual str
    Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    local_tunnel_ip str
    Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    phase1_authentication str
    Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".
    phase1_dh_groups str
    Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    phase1_encryption str
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    phase1_remote_identifiers Sequence[str]
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    phase2_authentication str
    Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".
    phase2_dh_groups str
    Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    phase2_encryption str
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    pre_shared_key str
    Pre-Shared Key.
    private_route_encryption bool
    Private route encryption switch. Valid values: true, false.
    remote_destination_real_cidrs Sequence[str]
    List of Remote Initiated Traffic Destination Real CIDRs.
    remote_destination_virtual_cidrs Sequence[str]
    List of Remote Initiated Traffic Destination Virtual CIDRs.
    remote_gateway_latitude float
    Latitude of remote gateway. Does not support refresh.
    remote_gateway_longitude float
    Longitude of remote gateway. Does not support refresh.
    remote_identifier str
    Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".
    remote_source_real_cidrs Sequence[str]
    List of Remote Initiated Traffic Source Real CIDRs.
    remote_source_virtual_cidrs Sequence[str]
    List of Remote Initiated Traffic Source Virtual CIDRs.
    remote_subnet_cidr str
    Remote subnet CIDR. Not required for custom_mapped connection.
    remote_subnet_virtual str
    Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    remote_tunnel_ip str
    Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    route_table_lists Sequence[str]
    Route tables to modify.
    ssl_server_pool str
    Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.
    connectionName String
    Site2Cloud connection name.
    connectionType String
    Connection type. Valid Values: "mapped", "unmapped".
    primaryCloudGatewayName String
    Primary cloud gateway name.
    remoteGatewayIp String
    Remote gateway IP.
    remoteGatewayType String
    Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".
    tunnelType String
    Site2Cloud tunnel type. Valid Values: "policy", "route".
    vpcId String
    VPC ID of the cloud gateway.
    authType String
    Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.
    backupGatewayName String
    Backup gateway name. NOTE: Please see notes here regarding HA requirements.
    backupLocalTunnelIp String
    Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    backupPreSharedKey String
    Backup Pre-Shared Key.
    backupRemoteGatewayIp String
    Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.
    backupRemoteGatewayLatitude Number
    Latitude of backup remote gateway. Does not support refresh.
    backupRemoteGatewayLongitude Number
    Longitude of backup remote gateway. Does not support refresh.
    backupRemoteIdentifier String
    Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".
    backupRemoteTunnelIp String
    Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    caCertTagName String
    Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.
    customAlgorithms Boolean
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    customMapped Boolean
    Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.
    enableActiveActive Boolean
    Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.
    enableDeadPeerDetection Boolean
    Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9
    enableEventTriggeredHa Boolean
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    enableIkev2 Boolean
    Switch to enable IKEv2. Valid values: true, false. Default value: false.
    enableSingleIpHa Boolean
    Enable single IP HA feature. Available as of provider version 2.19+.
    forwardTrafficToTransit Boolean
    Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.
    haEnabled Boolean
    Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.
    localDestinationRealCidrs List<String>
    List of Local Initiated Traffic Destination Real CIDRs.
    localDestinationVirtualCidrs List<String>
    List of Local Initiated Traffic Destination Virtual CIDRs.
    localSourceRealCidrs List<String>
    List of Local Initiated Traffic Source Real CIDRs.
    localSourceVirtualCidrs List<String>
    List of Local Initiated Traffic Source Virtual CIDRs.
    localSubnetCidr String
    Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.
    localSubnetVirtual String
    Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    localTunnelIp String
    Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    phase1Authentication String
    Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".
    phase1DhGroups String
    Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    phase1Encryption String
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    phase1RemoteIdentifiers List<String>
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    phase2Authentication String
    Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".
    phase2DhGroups String
    Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    phase2Encryption String
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    preSharedKey String
    Pre-Shared Key.
    privateRouteEncryption Boolean
    Private route encryption switch. Valid values: true, false.
    remoteDestinationRealCidrs List<String>
    List of Remote Initiated Traffic Destination Real CIDRs.
    remoteDestinationVirtualCidrs List<String>
    List of Remote Initiated Traffic Destination Virtual CIDRs.
    remoteGatewayLatitude Number
    Latitude of remote gateway. Does not support refresh.
    remoteGatewayLongitude Number
    Longitude of remote gateway. Does not support refresh.
    remoteIdentifier String
    Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".
    remoteSourceRealCidrs List<String>
    List of Remote Initiated Traffic Source Real CIDRs.
    remoteSourceVirtualCidrs List<String>
    List of Remote Initiated Traffic Source Virtual CIDRs.
    remoteSubnetCidr String
    Remote subnet CIDR. Not required for custom_mapped connection.
    remoteSubnetVirtual String
    Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    remoteTunnelIp String
    Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    routeTableLists List<String>
    Route tables to modify.
    sslServerPool String
    Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the AviatrixSite2Cloud resource produces the following output properties:

    Id string
    The provider-assigned unique ID for this managed resource.
    Id string
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.
    id string
    The provider-assigned unique ID for this managed resource.
    id str
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.

    Look up Existing AviatrixSite2Cloud Resource

    Get an existing AviatrixSite2Cloud resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: AviatrixSite2CloudState, opts?: CustomResourceOptions): AviatrixSite2Cloud
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            auth_type: Optional[str] = None,
            backup_gateway_name: Optional[str] = None,
            backup_local_tunnel_ip: Optional[str] = None,
            backup_pre_shared_key: Optional[str] = None,
            backup_remote_gateway_ip: Optional[str] = None,
            backup_remote_gateway_latitude: Optional[float] = None,
            backup_remote_gateway_longitude: Optional[float] = None,
            backup_remote_identifier: Optional[str] = None,
            backup_remote_tunnel_ip: Optional[str] = None,
            ca_cert_tag_name: Optional[str] = None,
            connection_name: Optional[str] = None,
            connection_type: Optional[str] = None,
            custom_algorithms: Optional[bool] = None,
            custom_mapped: Optional[bool] = None,
            enable_active_active: Optional[bool] = None,
            enable_dead_peer_detection: Optional[bool] = None,
            enable_event_triggered_ha: Optional[bool] = None,
            enable_ikev2: Optional[bool] = None,
            enable_single_ip_ha: Optional[bool] = None,
            forward_traffic_to_transit: Optional[bool] = None,
            ha_enabled: Optional[bool] = None,
            local_destination_real_cidrs: Optional[Sequence[str]] = None,
            local_destination_virtual_cidrs: Optional[Sequence[str]] = None,
            local_source_real_cidrs: Optional[Sequence[str]] = None,
            local_source_virtual_cidrs: Optional[Sequence[str]] = None,
            local_subnet_cidr: Optional[str] = None,
            local_subnet_virtual: Optional[str] = None,
            local_tunnel_ip: Optional[str] = None,
            phase1_authentication: Optional[str] = None,
            phase1_dh_groups: Optional[str] = None,
            phase1_encryption: Optional[str] = None,
            phase1_remote_identifiers: Optional[Sequence[str]] = None,
            phase2_authentication: Optional[str] = None,
            phase2_dh_groups: Optional[str] = None,
            phase2_encryption: Optional[str] = None,
            pre_shared_key: Optional[str] = None,
            primary_cloud_gateway_name: Optional[str] = None,
            private_route_encryption: Optional[bool] = None,
            remote_destination_real_cidrs: Optional[Sequence[str]] = None,
            remote_destination_virtual_cidrs: Optional[Sequence[str]] = None,
            remote_gateway_ip: Optional[str] = None,
            remote_gateway_latitude: Optional[float] = None,
            remote_gateway_longitude: Optional[float] = None,
            remote_gateway_type: Optional[str] = None,
            remote_identifier: Optional[str] = None,
            remote_source_real_cidrs: Optional[Sequence[str]] = None,
            remote_source_virtual_cidrs: Optional[Sequence[str]] = None,
            remote_subnet_cidr: Optional[str] = None,
            remote_subnet_virtual: Optional[str] = None,
            remote_tunnel_ip: Optional[str] = None,
            route_table_lists: Optional[Sequence[str]] = None,
            ssl_server_pool: Optional[str] = None,
            tunnel_type: Optional[str] = None,
            vpc_id: Optional[str] = None) -> AviatrixSite2Cloud
    func GetAviatrixSite2Cloud(ctx *Context, name string, id IDInput, state *AviatrixSite2CloudState, opts ...ResourceOption) (*AviatrixSite2Cloud, error)
    public static AviatrixSite2Cloud Get(string name, Input<string> id, AviatrixSite2CloudState? state, CustomResourceOptions? opts = null)
    public static AviatrixSite2Cloud get(String name, Output<String> id, AviatrixSite2CloudState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    AuthType string
    Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.
    BackupGatewayName string
    Backup gateway name. NOTE: Please see notes here regarding HA requirements.
    BackupLocalTunnelIp string
    Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    BackupPreSharedKey string
    Backup Pre-Shared Key.
    BackupRemoteGatewayIp string
    Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.
    BackupRemoteGatewayLatitude double
    Latitude of backup remote gateway. Does not support refresh.
    BackupRemoteGatewayLongitude double
    Longitude of backup remote gateway. Does not support refresh.
    BackupRemoteIdentifier string
    Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".
    BackupRemoteTunnelIp string
    Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    CaCertTagName string
    Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.
    ConnectionName string
    Site2Cloud connection name.
    ConnectionType string
    Connection type. Valid Values: "mapped", "unmapped".
    CustomAlgorithms bool
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    CustomMapped bool
    Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.
    EnableActiveActive bool
    Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.
    EnableDeadPeerDetection bool
    Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9
    EnableEventTriggeredHa bool
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    EnableIkev2 bool
    Switch to enable IKEv2. Valid values: true, false. Default value: false.
    EnableSingleIpHa bool
    Enable single IP HA feature. Available as of provider version 2.19+.
    ForwardTrafficToTransit bool
    Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.
    HaEnabled bool
    Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.
    LocalDestinationRealCidrs List<string>
    List of Local Initiated Traffic Destination Real CIDRs.
    LocalDestinationVirtualCidrs List<string>
    List of Local Initiated Traffic Destination Virtual CIDRs.
    LocalSourceRealCidrs List<string>
    List of Local Initiated Traffic Source Real CIDRs.
    LocalSourceVirtualCidrs List<string>
    List of Local Initiated Traffic Source Virtual CIDRs.
    LocalSubnetCidr string
    Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.
    LocalSubnetVirtual string
    Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    LocalTunnelIp string
    Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    Phase1Authentication string
    Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".
    Phase1DhGroups string
    Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    Phase1Encryption string
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    Phase1RemoteIdentifiers List<string>
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    Phase2Authentication string
    Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".
    Phase2DhGroups string
    Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    Phase2Encryption string
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    PreSharedKey string
    Pre-Shared Key.
    PrimaryCloudGatewayName string
    Primary cloud gateway name.
    PrivateRouteEncryption bool
    Private route encryption switch. Valid values: true, false.
    RemoteDestinationRealCidrs List<string>
    List of Remote Initiated Traffic Destination Real CIDRs.
    RemoteDestinationVirtualCidrs List<string>
    List of Remote Initiated Traffic Destination Virtual CIDRs.
    RemoteGatewayIp string
    Remote gateway IP.
    RemoteGatewayLatitude double
    Latitude of remote gateway. Does not support refresh.
    RemoteGatewayLongitude double
    Longitude of remote gateway. Does not support refresh.
    RemoteGatewayType string
    Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".
    RemoteIdentifier string
    Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".
    RemoteSourceRealCidrs List<string>
    List of Remote Initiated Traffic Source Real CIDRs.
    RemoteSourceVirtualCidrs List<string>
    List of Remote Initiated Traffic Source Virtual CIDRs.
    RemoteSubnetCidr string
    Remote subnet CIDR. Not required for custom_mapped connection.
    RemoteSubnetVirtual string
    Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    RemoteTunnelIp string
    Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    RouteTableLists List<string>
    Route tables to modify.
    SslServerPool string
    Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.
    TunnelType string
    Site2Cloud tunnel type. Valid Values: "policy", "route".
    VpcId string
    VPC ID of the cloud gateway.
    AuthType string
    Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.
    BackupGatewayName string
    Backup gateway name. NOTE: Please see notes here regarding HA requirements.
    BackupLocalTunnelIp string
    Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    BackupPreSharedKey string
    Backup Pre-Shared Key.
    BackupRemoteGatewayIp string
    Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.
    BackupRemoteGatewayLatitude float64
    Latitude of backup remote gateway. Does not support refresh.
    BackupRemoteGatewayLongitude float64
    Longitude of backup remote gateway. Does not support refresh.
    BackupRemoteIdentifier string
    Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".
    BackupRemoteTunnelIp string
    Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    CaCertTagName string
    Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.
    ConnectionName string
    Site2Cloud connection name.
    ConnectionType string
    Connection type. Valid Values: "mapped", "unmapped".
    CustomAlgorithms bool
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    CustomMapped bool
    Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.
    EnableActiveActive bool
    Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.
    EnableDeadPeerDetection bool
    Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9
    EnableEventTriggeredHa bool
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    EnableIkev2 bool
    Switch to enable IKEv2. Valid values: true, false. Default value: false.
    EnableSingleIpHa bool
    Enable single IP HA feature. Available as of provider version 2.19+.
    ForwardTrafficToTransit bool
    Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.
    HaEnabled bool
    Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.
    LocalDestinationRealCidrs []string
    List of Local Initiated Traffic Destination Real CIDRs.
    LocalDestinationVirtualCidrs []string
    List of Local Initiated Traffic Destination Virtual CIDRs.
    LocalSourceRealCidrs []string
    List of Local Initiated Traffic Source Real CIDRs.
    LocalSourceVirtualCidrs []string
    List of Local Initiated Traffic Source Virtual CIDRs.
    LocalSubnetCidr string
    Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.
    LocalSubnetVirtual string
    Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    LocalTunnelIp string
    Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    Phase1Authentication string
    Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".
    Phase1DhGroups string
    Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    Phase1Encryption string
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    Phase1RemoteIdentifiers []string
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    Phase2Authentication string
    Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".
    Phase2DhGroups string
    Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    Phase2Encryption string
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    PreSharedKey string
    Pre-Shared Key.
    PrimaryCloudGatewayName string
    Primary cloud gateway name.
    PrivateRouteEncryption bool
    Private route encryption switch. Valid values: true, false.
    RemoteDestinationRealCidrs []string
    List of Remote Initiated Traffic Destination Real CIDRs.
    RemoteDestinationVirtualCidrs []string
    List of Remote Initiated Traffic Destination Virtual CIDRs.
    RemoteGatewayIp string
    Remote gateway IP.
    RemoteGatewayLatitude float64
    Latitude of remote gateway. Does not support refresh.
    RemoteGatewayLongitude float64
    Longitude of remote gateway. Does not support refresh.
    RemoteGatewayType string
    Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".
    RemoteIdentifier string
    Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".
    RemoteSourceRealCidrs []string
    List of Remote Initiated Traffic Source Real CIDRs.
    RemoteSourceVirtualCidrs []string
    List of Remote Initiated Traffic Source Virtual CIDRs.
    RemoteSubnetCidr string
    Remote subnet CIDR. Not required for custom_mapped connection.
    RemoteSubnetVirtual string
    Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    RemoteTunnelIp string
    Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    RouteTableLists []string
    Route tables to modify.
    SslServerPool string
    Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.
    TunnelType string
    Site2Cloud tunnel type. Valid Values: "policy", "route".
    VpcId string
    VPC ID of the cloud gateway.
    authType String
    Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.
    backupGatewayName String
    Backup gateway name. NOTE: Please see notes here regarding HA requirements.
    backupLocalTunnelIp String
    Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    backupPreSharedKey String
    Backup Pre-Shared Key.
    backupRemoteGatewayIp String
    Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.
    backupRemoteGatewayLatitude Double
    Latitude of backup remote gateway. Does not support refresh.
    backupRemoteGatewayLongitude Double
    Longitude of backup remote gateway. Does not support refresh.
    backupRemoteIdentifier String
    Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".
    backupRemoteTunnelIp String
    Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    caCertTagName String
    Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.
    connectionName String
    Site2Cloud connection name.
    connectionType String
    Connection type. Valid Values: "mapped", "unmapped".
    customAlgorithms Boolean
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    customMapped Boolean
    Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.
    enableActiveActive Boolean
    Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.
    enableDeadPeerDetection Boolean
    Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9
    enableEventTriggeredHa Boolean
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    enableIkev2 Boolean
    Switch to enable IKEv2. Valid values: true, false. Default value: false.
    enableSingleIpHa Boolean
    Enable single IP HA feature. Available as of provider version 2.19+.
    forwardTrafficToTransit Boolean
    Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.
    haEnabled Boolean
    Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.
    localDestinationRealCidrs List<String>
    List of Local Initiated Traffic Destination Real CIDRs.
    localDestinationVirtualCidrs List<String>
    List of Local Initiated Traffic Destination Virtual CIDRs.
    localSourceRealCidrs List<String>
    List of Local Initiated Traffic Source Real CIDRs.
    localSourceVirtualCidrs List<String>
    List of Local Initiated Traffic Source Virtual CIDRs.
    localSubnetCidr String
    Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.
    localSubnetVirtual String
    Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    localTunnelIp String
    Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    phase1Authentication String
    Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".
    phase1DhGroups String
    Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    phase1Encryption String
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    phase1RemoteIdentifiers List<String>
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    phase2Authentication String
    Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".
    phase2DhGroups String
    Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    phase2Encryption String
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    preSharedKey String
    Pre-Shared Key.
    primaryCloudGatewayName String
    Primary cloud gateway name.
    privateRouteEncryption Boolean
    Private route encryption switch. Valid values: true, false.
    remoteDestinationRealCidrs List<String>
    List of Remote Initiated Traffic Destination Real CIDRs.
    remoteDestinationVirtualCidrs List<String>
    List of Remote Initiated Traffic Destination Virtual CIDRs.
    remoteGatewayIp String
    Remote gateway IP.
    remoteGatewayLatitude Double
    Latitude of remote gateway. Does not support refresh.
    remoteGatewayLongitude Double
    Longitude of remote gateway. Does not support refresh.
    remoteGatewayType String
    Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".
    remoteIdentifier String
    Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".
    remoteSourceRealCidrs List<String>
    List of Remote Initiated Traffic Source Real CIDRs.
    remoteSourceVirtualCidrs List<String>
    List of Remote Initiated Traffic Source Virtual CIDRs.
    remoteSubnetCidr String
    Remote subnet CIDR. Not required for custom_mapped connection.
    remoteSubnetVirtual String
    Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    remoteTunnelIp String
    Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    routeTableLists List<String>
    Route tables to modify.
    sslServerPool String
    Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.
    tunnelType String
    Site2Cloud tunnel type. Valid Values: "policy", "route".
    vpcId String
    VPC ID of the cloud gateway.
    authType string
    Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.
    backupGatewayName string
    Backup gateway name. NOTE: Please see notes here regarding HA requirements.
    backupLocalTunnelIp string
    Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    backupPreSharedKey string
    Backup Pre-Shared Key.
    backupRemoteGatewayIp string
    Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.
    backupRemoteGatewayLatitude number
    Latitude of backup remote gateway. Does not support refresh.
    backupRemoteGatewayLongitude number
    Longitude of backup remote gateway. Does not support refresh.
    backupRemoteIdentifier string
    Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".
    backupRemoteTunnelIp string
    Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    caCertTagName string
    Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.
    connectionName string
    Site2Cloud connection name.
    connectionType string
    Connection type. Valid Values: "mapped", "unmapped".
    customAlgorithms boolean
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    customMapped boolean
    Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.
    enableActiveActive boolean
    Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.
    enableDeadPeerDetection boolean
    Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9
    enableEventTriggeredHa boolean
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    enableIkev2 boolean
    Switch to enable IKEv2. Valid values: true, false. Default value: false.
    enableSingleIpHa boolean
    Enable single IP HA feature. Available as of provider version 2.19+.
    forwardTrafficToTransit boolean
    Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.
    haEnabled boolean
    Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.
    localDestinationRealCidrs string[]
    List of Local Initiated Traffic Destination Real CIDRs.
    localDestinationVirtualCidrs string[]
    List of Local Initiated Traffic Destination Virtual CIDRs.
    localSourceRealCidrs string[]
    List of Local Initiated Traffic Source Real CIDRs.
    localSourceVirtualCidrs string[]
    List of Local Initiated Traffic Source Virtual CIDRs.
    localSubnetCidr string
    Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.
    localSubnetVirtual string
    Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    localTunnelIp string
    Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    phase1Authentication string
    Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".
    phase1DhGroups string
    Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    phase1Encryption string
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    phase1RemoteIdentifiers string[]
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    phase2Authentication string
    Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".
    phase2DhGroups string
    Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    phase2Encryption string
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    preSharedKey string
    Pre-Shared Key.
    primaryCloudGatewayName string
    Primary cloud gateway name.
    privateRouteEncryption boolean
    Private route encryption switch. Valid values: true, false.
    remoteDestinationRealCidrs string[]
    List of Remote Initiated Traffic Destination Real CIDRs.
    remoteDestinationVirtualCidrs string[]
    List of Remote Initiated Traffic Destination Virtual CIDRs.
    remoteGatewayIp string
    Remote gateway IP.
    remoteGatewayLatitude number
    Latitude of remote gateway. Does not support refresh.
    remoteGatewayLongitude number
    Longitude of remote gateway. Does not support refresh.
    remoteGatewayType string
    Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".
    remoteIdentifier string
    Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".
    remoteSourceRealCidrs string[]
    List of Remote Initiated Traffic Source Real CIDRs.
    remoteSourceVirtualCidrs string[]
    List of Remote Initiated Traffic Source Virtual CIDRs.
    remoteSubnetCidr string
    Remote subnet CIDR. Not required for custom_mapped connection.
    remoteSubnetVirtual string
    Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    remoteTunnelIp string
    Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    routeTableLists string[]
    Route tables to modify.
    sslServerPool string
    Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.
    tunnelType string
    Site2Cloud tunnel type. Valid Values: "policy", "route".
    vpcId string
    VPC ID of the cloud gateway.
    auth_type str
    Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.
    backup_gateway_name str
    Backup gateway name. NOTE: Please see notes here regarding HA requirements.
    backup_local_tunnel_ip str
    Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    backup_pre_shared_key str
    Backup Pre-Shared Key.
    backup_remote_gateway_ip str
    Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.
    backup_remote_gateway_latitude float
    Latitude of backup remote gateway. Does not support refresh.
    backup_remote_gateway_longitude float
    Longitude of backup remote gateway. Does not support refresh.
    backup_remote_identifier str
    Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".
    backup_remote_tunnel_ip str
    Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    ca_cert_tag_name str
    Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.
    connection_name str
    Site2Cloud connection name.
    connection_type str
    Connection type. Valid Values: "mapped", "unmapped".
    custom_algorithms bool
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    custom_mapped bool
    Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.
    enable_active_active bool
    Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.
    enable_dead_peer_detection bool
    Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9
    enable_event_triggered_ha bool
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    enable_ikev2 bool
    Switch to enable IKEv2. Valid values: true, false. Default value: false.
    enable_single_ip_ha bool
    Enable single IP HA feature. Available as of provider version 2.19+.
    forward_traffic_to_transit bool
    Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.
    ha_enabled bool
    Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.
    local_destination_real_cidrs Sequence[str]
    List of Local Initiated Traffic Destination Real CIDRs.
    local_destination_virtual_cidrs Sequence[str]
    List of Local Initiated Traffic Destination Virtual CIDRs.
    local_source_real_cidrs Sequence[str]
    List of Local Initiated Traffic Source Real CIDRs.
    local_source_virtual_cidrs Sequence[str]
    List of Local Initiated Traffic Source Virtual CIDRs.
    local_subnet_cidr str
    Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.
    local_subnet_virtual str
    Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    local_tunnel_ip str
    Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    phase1_authentication str
    Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".
    phase1_dh_groups str
    Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    phase1_encryption str
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    phase1_remote_identifiers Sequence[str]
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    phase2_authentication str
    Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".
    phase2_dh_groups str
    Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    phase2_encryption str
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    pre_shared_key str
    Pre-Shared Key.
    primary_cloud_gateway_name str
    Primary cloud gateway name.
    private_route_encryption bool
    Private route encryption switch. Valid values: true, false.
    remote_destination_real_cidrs Sequence[str]
    List of Remote Initiated Traffic Destination Real CIDRs.
    remote_destination_virtual_cidrs Sequence[str]
    List of Remote Initiated Traffic Destination Virtual CIDRs.
    remote_gateway_ip str
    Remote gateway IP.
    remote_gateway_latitude float
    Latitude of remote gateway. Does not support refresh.
    remote_gateway_longitude float
    Longitude of remote gateway. Does not support refresh.
    remote_gateway_type str
    Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".
    remote_identifier str
    Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".
    remote_source_real_cidrs Sequence[str]
    List of Remote Initiated Traffic Source Real CIDRs.
    remote_source_virtual_cidrs Sequence[str]
    List of Remote Initiated Traffic Source Virtual CIDRs.
    remote_subnet_cidr str
    Remote subnet CIDR. Not required for custom_mapped connection.
    remote_subnet_virtual str
    Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    remote_tunnel_ip str
    Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    route_table_lists Sequence[str]
    Route tables to modify.
    ssl_server_pool str
    Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.
    tunnel_type str
    Site2Cloud tunnel type. Valid Values: "policy", "route".
    vpc_id str
    VPC ID of the cloud gateway.
    authType String
    Authentication Type. Valid values: 'PSK' and 'Cert'. Default value: 'PSK'.
    backupGatewayName String
    Backup gateway name. NOTE: Please see notes here regarding HA requirements.
    backupLocalTunnelIp String
    Backup local tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    backupPreSharedKey String
    Backup Pre-Shared Key.
    backupRemoteGatewayIp String
    Backup Remote Gateway IP. NOTE: Please see notes here regarding HA requirements.
    backupRemoteGatewayLatitude Number
    Latitude of backup remote gateway. Does not support refresh.
    backupRemoteGatewayLongitude Number
    Longitude of backup remote gateway. Does not support refresh.
    backupRemoteIdentifier String
    Backup remote identifier. Required for Cert based authentication type with HA enabled. Example: "gw-10-10-0-116".
    backupRemoteTunnelIp String
    Backup remote tunnel IP address. Only valid when HA enabled route based connection. Available as of provider version R2.19+.
    caCertTagName String
    Name of Remote CA Certificate Tag for creating Site2Cloud tunnels. Required for Cert based authentication type.
    connectionName String
    Site2Cloud connection name.
    connectionType String
    Connection type. Valid Values: "mapped", "unmapped".
    customAlgorithms Boolean
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    customMapped Boolean
    Enable custom mapped connection. Default value: false. Valid values: true/false. Available in provider version R2.17.1+.
    enableActiveActive Boolean
    Enable/disable active active HA for an existing site2cloud connection. Valid values: true, false. Default value: false.
    enableDeadPeerDetection Boolean
    Enable/disable Deed Peer Detection for an existing site2cloud connection. Default value: true. NOTE: Please see notes here in regards to any deltas found in your state with the addition of this argument in R1.9
    enableEventTriggeredHa Boolean
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    enableIkev2 Boolean
    Switch to enable IKEv2. Valid values: true, false. Default value: false.
    enableSingleIpHa Boolean
    Enable single IP HA feature. Available as of provider version 2.19+.
    forwardTrafficToTransit Boolean
    Enable spoke gateway with mapped site2cloud configurations to forward traffic from site2cloud connection to Aviatrix Transit Gateway. Default value: false. Valid values: true or false. Available in provider version 2.17.2+.
    haEnabled Boolean
    Specify whether or not to enable HA. Valid Values: true, false. NOTE: Please see notes here regarding HA requirements.
    localDestinationRealCidrs List<String>
    List of Local Initiated Traffic Destination Real CIDRs.
    localDestinationVirtualCidrs List<String>
    List of Local Initiated Traffic Destination Virtual CIDRs.
    localSourceRealCidrs List<String>
    List of Local Initiated Traffic Source Real CIDRs.
    localSourceVirtualCidrs List<String>
    List of Local Initiated Traffic Source Virtual CIDRs.
    localSubnetCidr String
    Local subnet CIDR. Required for connection type "mapped", except for custom_mapped connection.
    localSubnetVirtual String
    Local subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    localTunnelIp String
    Local tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    phase1Authentication String
    Phase one Authentication. Valid values: "SHA-1", "SHA-256", "SHA-384" and "SHA-512". Default value: "SHA-256".
    phase1DhGroups String
    Phase one DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    phase1Encryption String
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    phase1RemoteIdentifiers List<String>
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    phase2Authentication String
    Phase two Authentication. Valid values: "NO-AUTH", "HMAC-SHA-1", "HMAC-SHA-256", "HMAC-SHA-384" and "HMAC-SHA-512". Default value: "HMAC-SHA-256".
    phase2DhGroups String
    Phase two DH Groups. Valid values: "1", "2", "5", "14", "15", "16", "17", "18", "19", "20" and "21". Default value: "14".
    phase2Encryption String
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    preSharedKey String
    Pre-Shared Key.
    primaryCloudGatewayName String
    Primary cloud gateway name.
    privateRouteEncryption Boolean
    Private route encryption switch. Valid values: true, false.
    remoteDestinationRealCidrs List<String>
    List of Remote Initiated Traffic Destination Real CIDRs.
    remoteDestinationVirtualCidrs List<String>
    List of Remote Initiated Traffic Destination Virtual CIDRs.
    remoteGatewayIp String
    Remote gateway IP.
    remoteGatewayLatitude Number
    Latitude of remote gateway. Does not support refresh.
    remoteGatewayLongitude Number
    Longitude of remote gateway. Does not support refresh.
    remoteGatewayType String
    Remote gateway type. Valid Values: "generic", "avx", "aws", "azure", "sonicwall", "oracle".
    remoteIdentifier String
    Remote identifier. Required for Cert based authentication type. Example: "gw-10-10-0-115".
    remoteSourceRealCidrs List<String>
    List of Remote Initiated Traffic Source Real CIDRs.
    remoteSourceVirtualCidrs List<String>
    List of Remote Initiated Traffic Source Virtual CIDRs.
    remoteSubnetCidr String
    Remote subnet CIDR. Not required for custom_mapped connection.
    remoteSubnetVirtual String
    Remote subnet CIDR (Virtual). Required for connection type "mapped", except for custom_mapped connection.
    remoteTunnelIp String
    Remote tunnel IP address. Only valid for route based connection. Available as of provider version R2.19+.
    routeTableLists List<String>
    Route tables to modify.
    sslServerPool String
    Specify ssl_server_pool. Default value: "192.168.44.0/24". NOTE: Please see notes here for more information.
    tunnelType String
    Site2Cloud tunnel type. Valid Values: "policy", "route".
    vpcId String
    VPC ID of the cloud gateway.

    Package Details

    Repository
    aviatrix astipkovits/pulumi-aviatrix
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the aviatrix Terraform Provider.
    aviatrix logo
    Aviatrix v0.0.11 published on Saturday, Jun 17, 2023 by Aviatrix