1. Packages
  2. Aviatrix
  3. API Docs
  4. AviatrixTransitExternalDeviceConn
Aviatrix v0.0.11 published on Saturday, Jun 17, 2023 by Aviatrix

aviatrix.AviatrixTransitExternalDeviceConn

Explore with Pulumi AI

aviatrix logo
Aviatrix v0.0.11 published on Saturday, Jun 17, 2023 by Aviatrix

    Import

    transit_external_device_conn can be imported using the connection_name and vpc_id, e.g.

     $ pulumi import aviatrix:index/aviatrixTransitExternalDeviceConn:AviatrixTransitExternalDeviceConn test connection_name~vpc_id
    

    Create AviatrixTransitExternalDeviceConn Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new AviatrixTransitExternalDeviceConn(name: string, args: AviatrixTransitExternalDeviceConnArgs, opts?: CustomResourceOptions);
    @overload
    def AviatrixTransitExternalDeviceConn(resource_name: str,
                                          args: AviatrixTransitExternalDeviceConnArgs,
                                          opts: Optional[ResourceOptions] = None)
    
    @overload
    def AviatrixTransitExternalDeviceConn(resource_name: str,
                                          opts: Optional[ResourceOptions] = None,
                                          connection_name: Optional[str] = None,
                                          vpc_id: Optional[str] = None,
                                          gw_name: Optional[str] = None,
                                          enable_learned_cidrs_approval: Optional[bool] = None,
                                          bgp_local_as_num: Optional[str] = None,
                                          local_lan_ip: Optional[str] = None,
                                          backup_pre_shared_key: Optional[str] = None,
                                          backup_remote_gateway_ip: Optional[str] = None,
                                          backup_remote_lan_ip: Optional[str] = None,
                                          backup_remote_tunnel_cidr: Optional[str] = None,
                                          ha_enabled: Optional[bool] = None,
                                          bgp_md5_key: Optional[str] = None,
                                          bgp_remote_as_num: Optional[str] = None,
                                          backup_direct_connect: Optional[bool] = None,
                                          connection_type: Optional[str] = None,
                                          backup_bgp_remote_as_num: Optional[str] = None,
                                          direct_connect: Optional[bool] = None,
                                          enable_bgp_lan_activemesh: Optional[bool] = None,
                                          enable_edge_segmentation: Optional[bool] = None,
                                          enable_event_triggered_ha: Optional[bool] = None,
                                          enable_ikev2: Optional[bool] = None,
                                          enable_jumbo_frame: Optional[bool] = None,
                                          approved_cidrs: Optional[Sequence[str]] = None,
                                          custom_algorithms: Optional[bool] = None,
                                          backup_local_lan_ip: Optional[str] = None,
                                          backup_local_tunnel_cidr: Optional[str] = None,
                                          local_tunnel_cidr: Optional[str] = None,
                                          manual_bgp_advertised_cidrs: Optional[Sequence[str]] = None,
                                          phase1_authentication: Optional[str] = None,
                                          phase1_dh_groups: Optional[str] = None,
                                          phase1_encryption: Optional[str] = None,
                                          phase1_remote_identifiers: Optional[Sequence[str]] = None,
                                          phase2_authentication: Optional[str] = None,
                                          phase2_dh_groups: Optional[str] = None,
                                          phase2_encryption: Optional[str] = None,
                                          pre_shared_key: Optional[str] = None,
                                          prepend_as_paths: Optional[Sequence[str]] = None,
                                          remote_gateway_ip: Optional[str] = None,
                                          remote_lan_ip: Optional[str] = None,
                                          remote_subnet: Optional[str] = None,
                                          remote_tunnel_cidr: Optional[str] = None,
                                          remote_vpc_name: Optional[str] = None,
                                          switch_to_ha_standby_gateway: Optional[bool] = None,
                                          tunnel_protocol: Optional[str] = None,
                                          backup_bgp_md5_key: Optional[str] = None)
    func NewAviatrixTransitExternalDeviceConn(ctx *Context, name string, args AviatrixTransitExternalDeviceConnArgs, opts ...ResourceOption) (*AviatrixTransitExternalDeviceConn, error)
    public AviatrixTransitExternalDeviceConn(string name, AviatrixTransitExternalDeviceConnArgs args, CustomResourceOptions? opts = null)
    public AviatrixTransitExternalDeviceConn(String name, AviatrixTransitExternalDeviceConnArgs args)
    public AviatrixTransitExternalDeviceConn(String name, AviatrixTransitExternalDeviceConnArgs args, CustomResourceOptions options)
    
    type: aviatrix:AviatrixTransitExternalDeviceConn
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args AviatrixTransitExternalDeviceConnArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args AviatrixTransitExternalDeviceConnArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args AviatrixTransitExternalDeviceConnArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args AviatrixTransitExternalDeviceConnArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args AviatrixTransitExternalDeviceConnArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var aviatrixTransitExternalDeviceConnResource = new Aviatrix.AviatrixTransitExternalDeviceConn("aviatrixTransitExternalDeviceConnResource", new()
    {
        ConnectionName = "string",
        VpcId = "string",
        GwName = "string",
        EnableLearnedCidrsApproval = false,
        BgpLocalAsNum = "string",
        LocalLanIp = "string",
        BackupPreSharedKey = "string",
        BackupRemoteGatewayIp = "string",
        BackupRemoteLanIp = "string",
        BackupRemoteTunnelCidr = "string",
        HaEnabled = false,
        BgpMd5Key = "string",
        BgpRemoteAsNum = "string",
        BackupDirectConnect = false,
        ConnectionType = "string",
        BackupBgpRemoteAsNum = "string",
        DirectConnect = false,
        EnableBgpLanActivemesh = false,
        EnableEdgeSegmentation = false,
        EnableEventTriggeredHa = false,
        EnableIkev2 = false,
        EnableJumboFrame = false,
        ApprovedCidrs = new[]
        {
            "string",
        },
        CustomAlgorithms = false,
        BackupLocalLanIp = "string",
        BackupLocalTunnelCidr = "string",
        LocalTunnelCidr = "string",
        ManualBgpAdvertisedCidrs = new[]
        {
            "string",
        },
        Phase1Authentication = "string",
        Phase1DhGroups = "string",
        Phase1Encryption = "string",
        Phase1RemoteIdentifiers = new[]
        {
            "string",
        },
        Phase2Authentication = "string",
        Phase2DhGroups = "string",
        Phase2Encryption = "string",
        PreSharedKey = "string",
        PrependAsPaths = new[]
        {
            "string",
        },
        RemoteGatewayIp = "string",
        RemoteLanIp = "string",
        RemoteSubnet = "string",
        RemoteTunnelCidr = "string",
        RemoteVpcName = "string",
        SwitchToHaStandbyGateway = false,
        TunnelProtocol = "string",
        BackupBgpMd5Key = "string",
    });
    
    example, err := aviatrix.NewAviatrixTransitExternalDeviceConn(ctx, "aviatrixTransitExternalDeviceConnResource", &aviatrix.AviatrixTransitExternalDeviceConnArgs{
    	ConnectionName:             pulumi.String("string"),
    	VpcId:                      pulumi.String("string"),
    	GwName:                     pulumi.String("string"),
    	EnableLearnedCidrsApproval: pulumi.Bool(false),
    	BgpLocalAsNum:              pulumi.String("string"),
    	LocalLanIp:                 pulumi.String("string"),
    	BackupPreSharedKey:         pulumi.String("string"),
    	BackupRemoteGatewayIp:      pulumi.String("string"),
    	BackupRemoteLanIp:          pulumi.String("string"),
    	BackupRemoteTunnelCidr:     pulumi.String("string"),
    	HaEnabled:                  pulumi.Bool(false),
    	BgpMd5Key:                  pulumi.String("string"),
    	BgpRemoteAsNum:             pulumi.String("string"),
    	BackupDirectConnect:        pulumi.Bool(false),
    	ConnectionType:             pulumi.String("string"),
    	BackupBgpRemoteAsNum:       pulumi.String("string"),
    	DirectConnect:              pulumi.Bool(false),
    	EnableBgpLanActivemesh:     pulumi.Bool(false),
    	EnableEdgeSegmentation:     pulumi.Bool(false),
    	EnableEventTriggeredHa:     pulumi.Bool(false),
    	EnableIkev2:                pulumi.Bool(false),
    	EnableJumboFrame:           pulumi.Bool(false),
    	ApprovedCidrs: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	CustomAlgorithms:      pulumi.Bool(false),
    	BackupLocalLanIp:      pulumi.String("string"),
    	BackupLocalTunnelCidr: pulumi.String("string"),
    	LocalTunnelCidr:       pulumi.String("string"),
    	ManualBgpAdvertisedCidrs: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	Phase1Authentication: pulumi.String("string"),
    	Phase1DhGroups:       pulumi.String("string"),
    	Phase1Encryption:     pulumi.String("string"),
    	Phase1RemoteIdentifiers: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	Phase2Authentication: pulumi.String("string"),
    	Phase2DhGroups:       pulumi.String("string"),
    	Phase2Encryption:     pulumi.String("string"),
    	PreSharedKey:         pulumi.String("string"),
    	PrependAsPaths: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	RemoteGatewayIp:          pulumi.String("string"),
    	RemoteLanIp:              pulumi.String("string"),
    	RemoteSubnet:             pulumi.String("string"),
    	RemoteTunnelCidr:         pulumi.String("string"),
    	RemoteVpcName:            pulumi.String("string"),
    	SwitchToHaStandbyGateway: pulumi.Bool(false),
    	TunnelProtocol:           pulumi.String("string"),
    	BackupBgpMd5Key:          pulumi.String("string"),
    })
    
    var aviatrixTransitExternalDeviceConnResource = new AviatrixTransitExternalDeviceConn("aviatrixTransitExternalDeviceConnResource", AviatrixTransitExternalDeviceConnArgs.builder()
        .connectionName("string")
        .vpcId("string")
        .gwName("string")
        .enableLearnedCidrsApproval(false)
        .bgpLocalAsNum("string")
        .localLanIp("string")
        .backupPreSharedKey("string")
        .backupRemoteGatewayIp("string")
        .backupRemoteLanIp("string")
        .backupRemoteTunnelCidr("string")
        .haEnabled(false)
        .bgpMd5Key("string")
        .bgpRemoteAsNum("string")
        .backupDirectConnect(false)
        .connectionType("string")
        .backupBgpRemoteAsNum("string")
        .directConnect(false)
        .enableBgpLanActivemesh(false)
        .enableEdgeSegmentation(false)
        .enableEventTriggeredHa(false)
        .enableIkev2(false)
        .enableJumboFrame(false)
        .approvedCidrs("string")
        .customAlgorithms(false)
        .backupLocalLanIp("string")
        .backupLocalTunnelCidr("string")
        .localTunnelCidr("string")
        .manualBgpAdvertisedCidrs("string")
        .phase1Authentication("string")
        .phase1DhGroups("string")
        .phase1Encryption("string")
        .phase1RemoteIdentifiers("string")
        .phase2Authentication("string")
        .phase2DhGroups("string")
        .phase2Encryption("string")
        .preSharedKey("string")
        .prependAsPaths("string")
        .remoteGatewayIp("string")
        .remoteLanIp("string")
        .remoteSubnet("string")
        .remoteTunnelCidr("string")
        .remoteVpcName("string")
        .switchToHaStandbyGateway(false)
        .tunnelProtocol("string")
        .backupBgpMd5Key("string")
        .build());
    
    aviatrix_transit_external_device_conn_resource = aviatrix.AviatrixTransitExternalDeviceConn("aviatrixTransitExternalDeviceConnResource",
        connection_name="string",
        vpc_id="string",
        gw_name="string",
        enable_learned_cidrs_approval=False,
        bgp_local_as_num="string",
        local_lan_ip="string",
        backup_pre_shared_key="string",
        backup_remote_gateway_ip="string",
        backup_remote_lan_ip="string",
        backup_remote_tunnel_cidr="string",
        ha_enabled=False,
        bgp_md5_key="string",
        bgp_remote_as_num="string",
        backup_direct_connect=False,
        connection_type="string",
        backup_bgp_remote_as_num="string",
        direct_connect=False,
        enable_bgp_lan_activemesh=False,
        enable_edge_segmentation=False,
        enable_event_triggered_ha=False,
        enable_ikev2=False,
        enable_jumbo_frame=False,
        approved_cidrs=["string"],
        custom_algorithms=False,
        backup_local_lan_ip="string",
        backup_local_tunnel_cidr="string",
        local_tunnel_cidr="string",
        manual_bgp_advertised_cidrs=["string"],
        phase1_authentication="string",
        phase1_dh_groups="string",
        phase1_encryption="string",
        phase1_remote_identifiers=["string"],
        phase2_authentication="string",
        phase2_dh_groups="string",
        phase2_encryption="string",
        pre_shared_key="string",
        prepend_as_paths=["string"],
        remote_gateway_ip="string",
        remote_lan_ip="string",
        remote_subnet="string",
        remote_tunnel_cidr="string",
        remote_vpc_name="string",
        switch_to_ha_standby_gateway=False,
        tunnel_protocol="string",
        backup_bgp_md5_key="string")
    
    const aviatrixTransitExternalDeviceConnResource = new aviatrix.AviatrixTransitExternalDeviceConn("aviatrixTransitExternalDeviceConnResource", {
        connectionName: "string",
        vpcId: "string",
        gwName: "string",
        enableLearnedCidrsApproval: false,
        bgpLocalAsNum: "string",
        localLanIp: "string",
        backupPreSharedKey: "string",
        backupRemoteGatewayIp: "string",
        backupRemoteLanIp: "string",
        backupRemoteTunnelCidr: "string",
        haEnabled: false,
        bgpMd5Key: "string",
        bgpRemoteAsNum: "string",
        backupDirectConnect: false,
        connectionType: "string",
        backupBgpRemoteAsNum: "string",
        directConnect: false,
        enableBgpLanActivemesh: false,
        enableEdgeSegmentation: false,
        enableEventTriggeredHa: false,
        enableIkev2: false,
        enableJumboFrame: false,
        approvedCidrs: ["string"],
        customAlgorithms: false,
        backupLocalLanIp: "string",
        backupLocalTunnelCidr: "string",
        localTunnelCidr: "string",
        manualBgpAdvertisedCidrs: ["string"],
        phase1Authentication: "string",
        phase1DhGroups: "string",
        phase1Encryption: "string",
        phase1RemoteIdentifiers: ["string"],
        phase2Authentication: "string",
        phase2DhGroups: "string",
        phase2Encryption: "string",
        preSharedKey: "string",
        prependAsPaths: ["string"],
        remoteGatewayIp: "string",
        remoteLanIp: "string",
        remoteSubnet: "string",
        remoteTunnelCidr: "string",
        remoteVpcName: "string",
        switchToHaStandbyGateway: false,
        tunnelProtocol: "string",
        backupBgpMd5Key: "string",
    });
    
    type: aviatrix:AviatrixTransitExternalDeviceConn
    properties:
        approvedCidrs:
            - string
        backupBgpMd5Key: string
        backupBgpRemoteAsNum: string
        backupDirectConnect: false
        backupLocalLanIp: string
        backupLocalTunnelCidr: string
        backupPreSharedKey: string
        backupRemoteGatewayIp: string
        backupRemoteLanIp: string
        backupRemoteTunnelCidr: string
        bgpLocalAsNum: string
        bgpMd5Key: string
        bgpRemoteAsNum: string
        connectionName: string
        connectionType: string
        customAlgorithms: false
        directConnect: false
        enableBgpLanActivemesh: false
        enableEdgeSegmentation: false
        enableEventTriggeredHa: false
        enableIkev2: false
        enableJumboFrame: false
        enableLearnedCidrsApproval: false
        gwName: string
        haEnabled: false
        localLanIp: string
        localTunnelCidr: string
        manualBgpAdvertisedCidrs:
            - string
        phase1Authentication: string
        phase1DhGroups: string
        phase1Encryption: string
        phase1RemoteIdentifiers:
            - string
        phase2Authentication: string
        phase2DhGroups: string
        phase2Encryption: string
        preSharedKey: string
        prependAsPaths:
            - string
        remoteGatewayIp: string
        remoteLanIp: string
        remoteSubnet: string
        remoteTunnelCidr: string
        remoteVpcName: string
        switchToHaStandbyGateway: false
        tunnelProtocol: string
        vpcId: string
    

    AviatrixTransitExternalDeviceConn Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    The AviatrixTransitExternalDeviceConn resource accepts the following input properties:

    ConnectionName string
    Transit external device connection name.
    GwName string
    Aviatrix transit gateway name.
    VpcId string
    VPC ID of the Aviatrix transit gateway. For GCP BGP over LAN connection, it is in the format of "vpc_name~-~project_name".
    ApprovedCidrs List<string>
    Set of approved CIDRs. Requires enable_learned_cidrs_approval to be true. Type: Set(String).
    BackupBgpMd5Key string
    Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'. For BGP LAN ActiveMesh mode disabled, example: 'avx03'.
    BackupBgpRemoteAsNum string
    Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
    BackupDirectConnect bool
    Backup direct connect for backup external device.
    BackupLocalLanIp string
    Backup Local LAN IP. Required for GCP HA BGP over LAN connection.
    BackupLocalTunnelCidr string
    Source CIDR for the tunnel from the backup Aviatrix transit gateway.
    BackupPreSharedKey string
    Backup Pre-Shared Key.
    BackupRemoteGatewayIp string
    Backup remote gateway IP.
    BackupRemoteLanIp string
    Backup Remote LAN IP. Required for HA BGP over LAN connection.
    BackupRemoteTunnelCidr string
    Destination CIDR for the tunnel to the backup external device.
    BgpLocalAsNum string
    BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    BgpMd5Key string
    BGP MD5 Authentication Key. Example: 'avx01,avx02'. For BGP LAN ActiveMesh mode disabled, example: 'avx01'.
    BgpRemoteAsNum string
    BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    ConnectionType string
    Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
    CustomAlgorithms bool
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    DirectConnect bool
    Set true for private network infrastructure.
    EnableBgpLanActivemesh bool
    Switch to enable BGP LAN ActiveMesh mode. Only valid for GCP with Remote Gateway HA enabled. Default: false. Available as of provider version R2.21+.
    EnableEdgeSegmentation bool
    Switch to allow this connection to communicate with a Network Domain via Connection Policy.
    EnableEventTriggeredHa bool
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    EnableIkev2 bool
    Set as true to enable IKEv2 protocol.
    EnableJumboFrame bool
    Enable Jumbo Frame for the transit external device connection. Only valid with 'GRE' tunnels under 'bgp' connection. Requires transit to be jumbo frame and insane mode enabled. Valid values: true, false. Default value: false. Available as of provider version R2.22.2+.
    EnableLearnedCidrsApproval bool
    Enable learned CIDRs approval for the connection. Only valid with connection_type = 'bgp'. Requires the transit_gateway's learned_cidrs_approval_mode attribute be set to 'connection'. Valid values: true, false. Default value: false. Available as of provider version R2.18+.
    HaEnabled bool
    Set as true if there are two external devices.

    • backup_remote_gateway_ip - (Optional) Backup remote gateway IP. Required if HA enabled.
    LocalLanIp string
    Local LAN IP. Required for GCP BGP over LAN connection.
    LocalTunnelCidr string
    Source CIDR for the tunnel from the Aviatrix transit gateway.
    ManualBgpAdvertisedCidrs List<string>
    Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'. Available as of provider version R2.18+.
    Phase1Authentication string
    Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
    Phase1DhGroups string
    Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    Phase1Encryption string
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    Phase1RemoteIdentifiers List<string>
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    Phase2Authentication string
    Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
    Phase2DhGroups string
    Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    Phase2Encryption string
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    PreSharedKey string
    Pre-Shared Key.
    PrependAsPaths List<string>
    Connection AS Path Prepend customized by specifying AS PATH for a BGP connection. Available as of provider version R2.19.2.
    RemoteGatewayIp string
    Remote gateway IP. Required when tunnel_protocol != 'LAN'.
    RemoteLanIp string
    Remote LAN IP. Required for BGP over LAN connection.
    RemoteSubnet string
    Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
    RemoteTunnelCidr string
    Destination CIDR for the tunnel to the external device.
    RemoteVpcName string
    Name of the remote VPC for a LAN BGP connection with an Azure Transit Gateway. Required when connection_type = 'bgp' and tunnel_protocol = 'LAN' with an Azure transit gateway. Must be in the format "::". Available as of provider version R2.18+.
    SwitchToHaStandbyGateway bool
    Switch to HA Standby Transit Gateway connection. Only valid with Transit Gateway that has Active-Standby Mode enabled and for non-HA external device. Valid values: true, false. Default: false. Available in provider version R2.17.1+.
    TunnelProtocol string
    Tunnel protocol, only valid with connection_type = 'bgp'. Valid values: 'IPsec', 'GRE' or 'LAN'. Default value: 'IPsec'. Case insensitive. Available as of provider version R2.18+.
    ConnectionName string
    Transit external device connection name.
    GwName string
    Aviatrix transit gateway name.
    VpcId string
    VPC ID of the Aviatrix transit gateway. For GCP BGP over LAN connection, it is in the format of "vpc_name~-~project_name".
    ApprovedCidrs []string
    Set of approved CIDRs. Requires enable_learned_cidrs_approval to be true. Type: Set(String).
    BackupBgpMd5Key string
    Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'. For BGP LAN ActiveMesh mode disabled, example: 'avx03'.
    BackupBgpRemoteAsNum string
    Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
    BackupDirectConnect bool
    Backup direct connect for backup external device.
    BackupLocalLanIp string
    Backup Local LAN IP. Required for GCP HA BGP over LAN connection.
    BackupLocalTunnelCidr string
    Source CIDR for the tunnel from the backup Aviatrix transit gateway.
    BackupPreSharedKey string
    Backup Pre-Shared Key.
    BackupRemoteGatewayIp string
    Backup remote gateway IP.
    BackupRemoteLanIp string
    Backup Remote LAN IP. Required for HA BGP over LAN connection.
    BackupRemoteTunnelCidr string
    Destination CIDR for the tunnel to the backup external device.
    BgpLocalAsNum string
    BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    BgpMd5Key string
    BGP MD5 Authentication Key. Example: 'avx01,avx02'. For BGP LAN ActiveMesh mode disabled, example: 'avx01'.
    BgpRemoteAsNum string
    BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    ConnectionType string
    Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
    CustomAlgorithms bool
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    DirectConnect bool
    Set true for private network infrastructure.
    EnableBgpLanActivemesh bool
    Switch to enable BGP LAN ActiveMesh mode. Only valid for GCP with Remote Gateway HA enabled. Default: false. Available as of provider version R2.21+.
    EnableEdgeSegmentation bool
    Switch to allow this connection to communicate with a Network Domain via Connection Policy.
    EnableEventTriggeredHa bool
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    EnableIkev2 bool
    Set as true to enable IKEv2 protocol.
    EnableJumboFrame bool
    Enable Jumbo Frame for the transit external device connection. Only valid with 'GRE' tunnels under 'bgp' connection. Requires transit to be jumbo frame and insane mode enabled. Valid values: true, false. Default value: false. Available as of provider version R2.22.2+.
    EnableLearnedCidrsApproval bool
    Enable learned CIDRs approval for the connection. Only valid with connection_type = 'bgp'. Requires the transit_gateway's learned_cidrs_approval_mode attribute be set to 'connection'. Valid values: true, false. Default value: false. Available as of provider version R2.18+.
    HaEnabled bool
    Set as true if there are two external devices.

    • backup_remote_gateway_ip - (Optional) Backup remote gateway IP. Required if HA enabled.
    LocalLanIp string
    Local LAN IP. Required for GCP BGP over LAN connection.
    LocalTunnelCidr string
    Source CIDR for the tunnel from the Aviatrix transit gateway.
    ManualBgpAdvertisedCidrs []string
    Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'. Available as of provider version R2.18+.
    Phase1Authentication string
    Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
    Phase1DhGroups string
    Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    Phase1Encryption string
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    Phase1RemoteIdentifiers []string
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    Phase2Authentication string
    Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
    Phase2DhGroups string
    Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    Phase2Encryption string
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    PreSharedKey string
    Pre-Shared Key.
    PrependAsPaths []string
    Connection AS Path Prepend customized by specifying AS PATH for a BGP connection. Available as of provider version R2.19.2.
    RemoteGatewayIp string
    Remote gateway IP. Required when tunnel_protocol != 'LAN'.
    RemoteLanIp string
    Remote LAN IP. Required for BGP over LAN connection.
    RemoteSubnet string
    Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
    RemoteTunnelCidr string
    Destination CIDR for the tunnel to the external device.
    RemoteVpcName string
    Name of the remote VPC for a LAN BGP connection with an Azure Transit Gateway. Required when connection_type = 'bgp' and tunnel_protocol = 'LAN' with an Azure transit gateway. Must be in the format "::". Available as of provider version R2.18+.
    SwitchToHaStandbyGateway bool
    Switch to HA Standby Transit Gateway connection. Only valid with Transit Gateway that has Active-Standby Mode enabled and for non-HA external device. Valid values: true, false. Default: false. Available in provider version R2.17.1+.
    TunnelProtocol string
    Tunnel protocol, only valid with connection_type = 'bgp'. Valid values: 'IPsec', 'GRE' or 'LAN'. Default value: 'IPsec'. Case insensitive. Available as of provider version R2.18+.
    connectionName String
    Transit external device connection name.
    gwName String
    Aviatrix transit gateway name.
    vpcId String
    VPC ID of the Aviatrix transit gateway. For GCP BGP over LAN connection, it is in the format of "vpc_name~-~project_name".
    approvedCidrs List<String>
    Set of approved CIDRs. Requires enable_learned_cidrs_approval to be true. Type: Set(String).
    backupBgpMd5Key String
    Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'. For BGP LAN ActiveMesh mode disabled, example: 'avx03'.
    backupBgpRemoteAsNum String
    Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
    backupDirectConnect Boolean
    Backup direct connect for backup external device.
    backupLocalLanIp String
    Backup Local LAN IP. Required for GCP HA BGP over LAN connection.
    backupLocalTunnelCidr String
    Source CIDR for the tunnel from the backup Aviatrix transit gateway.
    backupPreSharedKey String
    Backup Pre-Shared Key.
    backupRemoteGatewayIp String
    Backup remote gateway IP.
    backupRemoteLanIp String
    Backup Remote LAN IP. Required for HA BGP over LAN connection.
    backupRemoteTunnelCidr String
    Destination CIDR for the tunnel to the backup external device.
    bgpLocalAsNum String
    BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    bgpMd5Key String
    BGP MD5 Authentication Key. Example: 'avx01,avx02'. For BGP LAN ActiveMesh mode disabled, example: 'avx01'.
    bgpRemoteAsNum String
    BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    connectionType String
    Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
    customAlgorithms Boolean
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    directConnect Boolean
    Set true for private network infrastructure.
    enableBgpLanActivemesh Boolean
    Switch to enable BGP LAN ActiveMesh mode. Only valid for GCP with Remote Gateway HA enabled. Default: false. Available as of provider version R2.21+.
    enableEdgeSegmentation Boolean
    Switch to allow this connection to communicate with a Network Domain via Connection Policy.
    enableEventTriggeredHa Boolean
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    enableIkev2 Boolean
    Set as true to enable IKEv2 protocol.
    enableJumboFrame Boolean
    Enable Jumbo Frame for the transit external device connection. Only valid with 'GRE' tunnels under 'bgp' connection. Requires transit to be jumbo frame and insane mode enabled. Valid values: true, false. Default value: false. Available as of provider version R2.22.2+.
    enableLearnedCidrsApproval Boolean
    Enable learned CIDRs approval for the connection. Only valid with connection_type = 'bgp'. Requires the transit_gateway's learned_cidrs_approval_mode attribute be set to 'connection'. Valid values: true, false. Default value: false. Available as of provider version R2.18+.
    haEnabled Boolean
    Set as true if there are two external devices.

    • backup_remote_gateway_ip - (Optional) Backup remote gateway IP. Required if HA enabled.
    localLanIp String
    Local LAN IP. Required for GCP BGP over LAN connection.
    localTunnelCidr String
    Source CIDR for the tunnel from the Aviatrix transit gateway.
    manualBgpAdvertisedCidrs List<String>
    Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'. Available as of provider version R2.18+.
    phase1Authentication String
    Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
    phase1DhGroups String
    Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    phase1Encryption String
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    phase1RemoteIdentifiers List<String>
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    phase2Authentication String
    Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
    phase2DhGroups String
    Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    phase2Encryption String
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    preSharedKey String
    Pre-Shared Key.
    prependAsPaths List<String>
    Connection AS Path Prepend customized by specifying AS PATH for a BGP connection. Available as of provider version R2.19.2.
    remoteGatewayIp String
    Remote gateway IP. Required when tunnel_protocol != 'LAN'.
    remoteLanIp String
    Remote LAN IP. Required for BGP over LAN connection.
    remoteSubnet String
    Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
    remoteTunnelCidr String
    Destination CIDR for the tunnel to the external device.
    remoteVpcName String
    Name of the remote VPC for a LAN BGP connection with an Azure Transit Gateway. Required when connection_type = 'bgp' and tunnel_protocol = 'LAN' with an Azure transit gateway. Must be in the format "::". Available as of provider version R2.18+.
    switchToHaStandbyGateway Boolean
    Switch to HA Standby Transit Gateway connection. Only valid with Transit Gateway that has Active-Standby Mode enabled and for non-HA external device. Valid values: true, false. Default: false. Available in provider version R2.17.1+.
    tunnelProtocol String
    Tunnel protocol, only valid with connection_type = 'bgp'. Valid values: 'IPsec', 'GRE' or 'LAN'. Default value: 'IPsec'. Case insensitive. Available as of provider version R2.18+.
    connectionName string
    Transit external device connection name.
    gwName string
    Aviatrix transit gateway name.
    vpcId string
    VPC ID of the Aviatrix transit gateway. For GCP BGP over LAN connection, it is in the format of "vpc_name~-~project_name".
    approvedCidrs string[]
    Set of approved CIDRs. Requires enable_learned_cidrs_approval to be true. Type: Set(String).
    backupBgpMd5Key string
    Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'. For BGP LAN ActiveMesh mode disabled, example: 'avx03'.
    backupBgpRemoteAsNum string
    Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
    backupDirectConnect boolean
    Backup direct connect for backup external device.
    backupLocalLanIp string
    Backup Local LAN IP. Required for GCP HA BGP over LAN connection.
    backupLocalTunnelCidr string
    Source CIDR for the tunnel from the backup Aviatrix transit gateway.
    backupPreSharedKey string
    Backup Pre-Shared Key.
    backupRemoteGatewayIp string
    Backup remote gateway IP.
    backupRemoteLanIp string
    Backup Remote LAN IP. Required for HA BGP over LAN connection.
    backupRemoteTunnelCidr string
    Destination CIDR for the tunnel to the backup external device.
    bgpLocalAsNum string
    BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    bgpMd5Key string
    BGP MD5 Authentication Key. Example: 'avx01,avx02'. For BGP LAN ActiveMesh mode disabled, example: 'avx01'.
    bgpRemoteAsNum string
    BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    connectionType string
    Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
    customAlgorithms boolean
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    directConnect boolean
    Set true for private network infrastructure.
    enableBgpLanActivemesh boolean
    Switch to enable BGP LAN ActiveMesh mode. Only valid for GCP with Remote Gateway HA enabled. Default: false. Available as of provider version R2.21+.
    enableEdgeSegmentation boolean
    Switch to allow this connection to communicate with a Network Domain via Connection Policy.
    enableEventTriggeredHa boolean
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    enableIkev2 boolean
    Set as true to enable IKEv2 protocol.
    enableJumboFrame boolean
    Enable Jumbo Frame for the transit external device connection. Only valid with 'GRE' tunnels under 'bgp' connection. Requires transit to be jumbo frame and insane mode enabled. Valid values: true, false. Default value: false. Available as of provider version R2.22.2+.
    enableLearnedCidrsApproval boolean
    Enable learned CIDRs approval for the connection. Only valid with connection_type = 'bgp'. Requires the transit_gateway's learned_cidrs_approval_mode attribute be set to 'connection'. Valid values: true, false. Default value: false. Available as of provider version R2.18+.
    haEnabled boolean
    Set as true if there are two external devices.

    • backup_remote_gateway_ip - (Optional) Backup remote gateway IP. Required if HA enabled.
    localLanIp string
    Local LAN IP. Required for GCP BGP over LAN connection.
    localTunnelCidr string
    Source CIDR for the tunnel from the Aviatrix transit gateway.
    manualBgpAdvertisedCidrs string[]
    Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'. Available as of provider version R2.18+.
    phase1Authentication string
    Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
    phase1DhGroups string
    Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    phase1Encryption string
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    phase1RemoteIdentifiers string[]
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    phase2Authentication string
    Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
    phase2DhGroups string
    Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    phase2Encryption string
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    preSharedKey string
    Pre-Shared Key.
    prependAsPaths string[]
    Connection AS Path Prepend customized by specifying AS PATH for a BGP connection. Available as of provider version R2.19.2.
    remoteGatewayIp string
    Remote gateway IP. Required when tunnel_protocol != 'LAN'.
    remoteLanIp string
    Remote LAN IP. Required for BGP over LAN connection.
    remoteSubnet string
    Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
    remoteTunnelCidr string
    Destination CIDR for the tunnel to the external device.
    remoteVpcName string
    Name of the remote VPC for a LAN BGP connection with an Azure Transit Gateway. Required when connection_type = 'bgp' and tunnel_protocol = 'LAN' with an Azure transit gateway. Must be in the format "::". Available as of provider version R2.18+.
    switchToHaStandbyGateway boolean
    Switch to HA Standby Transit Gateway connection. Only valid with Transit Gateway that has Active-Standby Mode enabled and for non-HA external device. Valid values: true, false. Default: false. Available in provider version R2.17.1+.
    tunnelProtocol string
    Tunnel protocol, only valid with connection_type = 'bgp'. Valid values: 'IPsec', 'GRE' or 'LAN'. Default value: 'IPsec'. Case insensitive. Available as of provider version R2.18+.
    connection_name str
    Transit external device connection name.
    gw_name str
    Aviatrix transit gateway name.
    vpc_id str
    VPC ID of the Aviatrix transit gateway. For GCP BGP over LAN connection, it is in the format of "vpc_name~-~project_name".
    approved_cidrs Sequence[str]
    Set of approved CIDRs. Requires enable_learned_cidrs_approval to be true. Type: Set(String).
    backup_bgp_md5_key str
    Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'. For BGP LAN ActiveMesh mode disabled, example: 'avx03'.
    backup_bgp_remote_as_num str
    Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
    backup_direct_connect bool
    Backup direct connect for backup external device.
    backup_local_lan_ip str
    Backup Local LAN IP. Required for GCP HA BGP over LAN connection.
    backup_local_tunnel_cidr str
    Source CIDR for the tunnel from the backup Aviatrix transit gateway.
    backup_pre_shared_key str
    Backup Pre-Shared Key.
    backup_remote_gateway_ip str
    Backup remote gateway IP.
    backup_remote_lan_ip str
    Backup Remote LAN IP. Required for HA BGP over LAN connection.
    backup_remote_tunnel_cidr str
    Destination CIDR for the tunnel to the backup external device.
    bgp_local_as_num str
    BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    bgp_md5_key str
    BGP MD5 Authentication Key. Example: 'avx01,avx02'. For BGP LAN ActiveMesh mode disabled, example: 'avx01'.
    bgp_remote_as_num str
    BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    connection_type str
    Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
    custom_algorithms bool
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    direct_connect bool
    Set true for private network infrastructure.
    enable_bgp_lan_activemesh bool
    Switch to enable BGP LAN ActiveMesh mode. Only valid for GCP with Remote Gateway HA enabled. Default: false. Available as of provider version R2.21+.
    enable_edge_segmentation bool
    Switch to allow this connection to communicate with a Network Domain via Connection Policy.
    enable_event_triggered_ha bool
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    enable_ikev2 bool
    Set as true to enable IKEv2 protocol.
    enable_jumbo_frame bool
    Enable Jumbo Frame for the transit external device connection. Only valid with 'GRE' tunnels under 'bgp' connection. Requires transit to be jumbo frame and insane mode enabled. Valid values: true, false. Default value: false. Available as of provider version R2.22.2+.
    enable_learned_cidrs_approval bool
    Enable learned CIDRs approval for the connection. Only valid with connection_type = 'bgp'. Requires the transit_gateway's learned_cidrs_approval_mode attribute be set to 'connection'. Valid values: true, false. Default value: false. Available as of provider version R2.18+.
    ha_enabled bool
    Set as true if there are two external devices.

    • backup_remote_gateway_ip - (Optional) Backup remote gateway IP. Required if HA enabled.
    local_lan_ip str
    Local LAN IP. Required for GCP BGP over LAN connection.
    local_tunnel_cidr str
    Source CIDR for the tunnel from the Aviatrix transit gateway.
    manual_bgp_advertised_cidrs Sequence[str]
    Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'. Available as of provider version R2.18+.
    phase1_authentication str
    Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
    phase1_dh_groups str
    Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    phase1_encryption str
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    phase1_remote_identifiers Sequence[str]
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    phase2_authentication str
    Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
    phase2_dh_groups str
    Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    phase2_encryption str
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    pre_shared_key str
    Pre-Shared Key.
    prepend_as_paths Sequence[str]
    Connection AS Path Prepend customized by specifying AS PATH for a BGP connection. Available as of provider version R2.19.2.
    remote_gateway_ip str
    Remote gateway IP. Required when tunnel_protocol != 'LAN'.
    remote_lan_ip str
    Remote LAN IP. Required for BGP over LAN connection.
    remote_subnet str
    Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
    remote_tunnel_cidr str
    Destination CIDR for the tunnel to the external device.
    remote_vpc_name str
    Name of the remote VPC for a LAN BGP connection with an Azure Transit Gateway. Required when connection_type = 'bgp' and tunnel_protocol = 'LAN' with an Azure transit gateway. Must be in the format "::". Available as of provider version R2.18+.
    switch_to_ha_standby_gateway bool
    Switch to HA Standby Transit Gateway connection. Only valid with Transit Gateway that has Active-Standby Mode enabled and for non-HA external device. Valid values: true, false. Default: false. Available in provider version R2.17.1+.
    tunnel_protocol str
    Tunnel protocol, only valid with connection_type = 'bgp'. Valid values: 'IPsec', 'GRE' or 'LAN'. Default value: 'IPsec'. Case insensitive. Available as of provider version R2.18+.
    connectionName String
    Transit external device connection name.
    gwName String
    Aviatrix transit gateway name.
    vpcId String
    VPC ID of the Aviatrix transit gateway. For GCP BGP over LAN connection, it is in the format of "vpc_name~-~project_name".
    approvedCidrs List<String>
    Set of approved CIDRs. Requires enable_learned_cidrs_approval to be true. Type: Set(String).
    backupBgpMd5Key String
    Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'. For BGP LAN ActiveMesh mode disabled, example: 'avx03'.
    backupBgpRemoteAsNum String
    Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
    backupDirectConnect Boolean
    Backup direct connect for backup external device.
    backupLocalLanIp String
    Backup Local LAN IP. Required for GCP HA BGP over LAN connection.
    backupLocalTunnelCidr String
    Source CIDR for the tunnel from the backup Aviatrix transit gateway.
    backupPreSharedKey String
    Backup Pre-Shared Key.
    backupRemoteGatewayIp String
    Backup remote gateway IP.
    backupRemoteLanIp String
    Backup Remote LAN IP. Required for HA BGP over LAN connection.
    backupRemoteTunnelCidr String
    Destination CIDR for the tunnel to the backup external device.
    bgpLocalAsNum String
    BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    bgpMd5Key String
    BGP MD5 Authentication Key. Example: 'avx01,avx02'. For BGP LAN ActiveMesh mode disabled, example: 'avx01'.
    bgpRemoteAsNum String
    BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    connectionType String
    Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
    customAlgorithms Boolean
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    directConnect Boolean
    Set true for private network infrastructure.
    enableBgpLanActivemesh Boolean
    Switch to enable BGP LAN ActiveMesh mode. Only valid for GCP with Remote Gateway HA enabled. Default: false. Available as of provider version R2.21+.
    enableEdgeSegmentation Boolean
    Switch to allow this connection to communicate with a Network Domain via Connection Policy.
    enableEventTriggeredHa Boolean
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    enableIkev2 Boolean
    Set as true to enable IKEv2 protocol.
    enableJumboFrame Boolean
    Enable Jumbo Frame for the transit external device connection. Only valid with 'GRE' tunnels under 'bgp' connection. Requires transit to be jumbo frame and insane mode enabled. Valid values: true, false. Default value: false. Available as of provider version R2.22.2+.
    enableLearnedCidrsApproval Boolean
    Enable learned CIDRs approval for the connection. Only valid with connection_type = 'bgp'. Requires the transit_gateway's learned_cidrs_approval_mode attribute be set to 'connection'. Valid values: true, false. Default value: false. Available as of provider version R2.18+.
    haEnabled Boolean
    Set as true if there are two external devices.

    • backup_remote_gateway_ip - (Optional) Backup remote gateway IP. Required if HA enabled.
    localLanIp String
    Local LAN IP. Required for GCP BGP over LAN connection.
    localTunnelCidr String
    Source CIDR for the tunnel from the Aviatrix transit gateway.
    manualBgpAdvertisedCidrs List<String>
    Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'. Available as of provider version R2.18+.
    phase1Authentication String
    Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
    phase1DhGroups String
    Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    phase1Encryption String
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    phase1RemoteIdentifiers List<String>
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    phase2Authentication String
    Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
    phase2DhGroups String
    Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    phase2Encryption String
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    preSharedKey String
    Pre-Shared Key.
    prependAsPaths List<String>
    Connection AS Path Prepend customized by specifying AS PATH for a BGP connection. Available as of provider version R2.19.2.
    remoteGatewayIp String
    Remote gateway IP. Required when tunnel_protocol != 'LAN'.
    remoteLanIp String
    Remote LAN IP. Required for BGP over LAN connection.
    remoteSubnet String
    Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
    remoteTunnelCidr String
    Destination CIDR for the tunnel to the external device.
    remoteVpcName String
    Name of the remote VPC for a LAN BGP connection with an Azure Transit Gateway. Required when connection_type = 'bgp' and tunnel_protocol = 'LAN' with an Azure transit gateway. Must be in the format "::". Available as of provider version R2.18+.
    switchToHaStandbyGateway Boolean
    Switch to HA Standby Transit Gateway connection. Only valid with Transit Gateway that has Active-Standby Mode enabled and for non-HA external device. Valid values: true, false. Default: false. Available in provider version R2.17.1+.
    tunnelProtocol String
    Tunnel protocol, only valid with connection_type = 'bgp'. Valid values: 'IPsec', 'GRE' or 'LAN'. Default value: 'IPsec'. Case insensitive. Available as of provider version R2.18+.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the AviatrixTransitExternalDeviceConn resource produces the following output properties:

    Id string
    The provider-assigned unique ID for this managed resource.
    Id string
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.
    id string
    The provider-assigned unique ID for this managed resource.
    id str
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.

    Look up Existing AviatrixTransitExternalDeviceConn Resource

    Get an existing AviatrixTransitExternalDeviceConn resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: AviatrixTransitExternalDeviceConnState, opts?: CustomResourceOptions): AviatrixTransitExternalDeviceConn
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            approved_cidrs: Optional[Sequence[str]] = None,
            backup_bgp_md5_key: Optional[str] = None,
            backup_bgp_remote_as_num: Optional[str] = None,
            backup_direct_connect: Optional[bool] = None,
            backup_local_lan_ip: Optional[str] = None,
            backup_local_tunnel_cidr: Optional[str] = None,
            backup_pre_shared_key: Optional[str] = None,
            backup_remote_gateway_ip: Optional[str] = None,
            backup_remote_lan_ip: Optional[str] = None,
            backup_remote_tunnel_cidr: Optional[str] = None,
            bgp_local_as_num: Optional[str] = None,
            bgp_md5_key: Optional[str] = None,
            bgp_remote_as_num: Optional[str] = None,
            connection_name: Optional[str] = None,
            connection_type: Optional[str] = None,
            custom_algorithms: Optional[bool] = None,
            direct_connect: Optional[bool] = None,
            enable_bgp_lan_activemesh: Optional[bool] = None,
            enable_edge_segmentation: Optional[bool] = None,
            enable_event_triggered_ha: Optional[bool] = None,
            enable_ikev2: Optional[bool] = None,
            enable_jumbo_frame: Optional[bool] = None,
            enable_learned_cidrs_approval: Optional[bool] = None,
            gw_name: Optional[str] = None,
            ha_enabled: Optional[bool] = None,
            local_lan_ip: Optional[str] = None,
            local_tunnel_cidr: Optional[str] = None,
            manual_bgp_advertised_cidrs: Optional[Sequence[str]] = None,
            phase1_authentication: Optional[str] = None,
            phase1_dh_groups: Optional[str] = None,
            phase1_encryption: Optional[str] = None,
            phase1_remote_identifiers: Optional[Sequence[str]] = None,
            phase2_authentication: Optional[str] = None,
            phase2_dh_groups: Optional[str] = None,
            phase2_encryption: Optional[str] = None,
            pre_shared_key: Optional[str] = None,
            prepend_as_paths: Optional[Sequence[str]] = None,
            remote_gateway_ip: Optional[str] = None,
            remote_lan_ip: Optional[str] = None,
            remote_subnet: Optional[str] = None,
            remote_tunnel_cidr: Optional[str] = None,
            remote_vpc_name: Optional[str] = None,
            switch_to_ha_standby_gateway: Optional[bool] = None,
            tunnel_protocol: Optional[str] = None,
            vpc_id: Optional[str] = None) -> AviatrixTransitExternalDeviceConn
    func GetAviatrixTransitExternalDeviceConn(ctx *Context, name string, id IDInput, state *AviatrixTransitExternalDeviceConnState, opts ...ResourceOption) (*AviatrixTransitExternalDeviceConn, error)
    public static AviatrixTransitExternalDeviceConn Get(string name, Input<string> id, AviatrixTransitExternalDeviceConnState? state, CustomResourceOptions? opts = null)
    public static AviatrixTransitExternalDeviceConn get(String name, Output<String> id, AviatrixTransitExternalDeviceConnState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    ApprovedCidrs List<string>
    Set of approved CIDRs. Requires enable_learned_cidrs_approval to be true. Type: Set(String).
    BackupBgpMd5Key string
    Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'. For BGP LAN ActiveMesh mode disabled, example: 'avx03'.
    BackupBgpRemoteAsNum string
    Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
    BackupDirectConnect bool
    Backup direct connect for backup external device.
    BackupLocalLanIp string
    Backup Local LAN IP. Required for GCP HA BGP over LAN connection.
    BackupLocalTunnelCidr string
    Source CIDR for the tunnel from the backup Aviatrix transit gateway.
    BackupPreSharedKey string
    Backup Pre-Shared Key.
    BackupRemoteGatewayIp string
    Backup remote gateway IP.
    BackupRemoteLanIp string
    Backup Remote LAN IP. Required for HA BGP over LAN connection.
    BackupRemoteTunnelCidr string
    Destination CIDR for the tunnel to the backup external device.
    BgpLocalAsNum string
    BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    BgpMd5Key string
    BGP MD5 Authentication Key. Example: 'avx01,avx02'. For BGP LAN ActiveMesh mode disabled, example: 'avx01'.
    BgpRemoteAsNum string
    BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    ConnectionName string
    Transit external device connection name.
    ConnectionType string
    Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
    CustomAlgorithms bool
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    DirectConnect bool
    Set true for private network infrastructure.
    EnableBgpLanActivemesh bool
    Switch to enable BGP LAN ActiveMesh mode. Only valid for GCP with Remote Gateway HA enabled. Default: false. Available as of provider version R2.21+.
    EnableEdgeSegmentation bool
    Switch to allow this connection to communicate with a Network Domain via Connection Policy.
    EnableEventTriggeredHa bool
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    EnableIkev2 bool
    Set as true to enable IKEv2 protocol.
    EnableJumboFrame bool
    Enable Jumbo Frame for the transit external device connection. Only valid with 'GRE' tunnels under 'bgp' connection. Requires transit to be jumbo frame and insane mode enabled. Valid values: true, false. Default value: false. Available as of provider version R2.22.2+.
    EnableLearnedCidrsApproval bool
    Enable learned CIDRs approval for the connection. Only valid with connection_type = 'bgp'. Requires the transit_gateway's learned_cidrs_approval_mode attribute be set to 'connection'. Valid values: true, false. Default value: false. Available as of provider version R2.18+.
    GwName string
    Aviatrix transit gateway name.
    HaEnabled bool
    Set as true if there are two external devices.

    • backup_remote_gateway_ip - (Optional) Backup remote gateway IP. Required if HA enabled.
    LocalLanIp string
    Local LAN IP. Required for GCP BGP over LAN connection.
    LocalTunnelCidr string
    Source CIDR for the tunnel from the Aviatrix transit gateway.
    ManualBgpAdvertisedCidrs List<string>
    Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'. Available as of provider version R2.18+.
    Phase1Authentication string
    Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
    Phase1DhGroups string
    Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    Phase1Encryption string
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    Phase1RemoteIdentifiers List<string>
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    Phase2Authentication string
    Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
    Phase2DhGroups string
    Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    Phase2Encryption string
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    PreSharedKey string
    Pre-Shared Key.
    PrependAsPaths List<string>
    Connection AS Path Prepend customized by specifying AS PATH for a BGP connection. Available as of provider version R2.19.2.
    RemoteGatewayIp string
    Remote gateway IP. Required when tunnel_protocol != 'LAN'.
    RemoteLanIp string
    Remote LAN IP. Required for BGP over LAN connection.
    RemoteSubnet string
    Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
    RemoteTunnelCidr string
    Destination CIDR for the tunnel to the external device.
    RemoteVpcName string
    Name of the remote VPC for a LAN BGP connection with an Azure Transit Gateway. Required when connection_type = 'bgp' and tunnel_protocol = 'LAN' with an Azure transit gateway. Must be in the format "::". Available as of provider version R2.18+.
    SwitchToHaStandbyGateway bool
    Switch to HA Standby Transit Gateway connection. Only valid with Transit Gateway that has Active-Standby Mode enabled and for non-HA external device. Valid values: true, false. Default: false. Available in provider version R2.17.1+.
    TunnelProtocol string
    Tunnel protocol, only valid with connection_type = 'bgp'. Valid values: 'IPsec', 'GRE' or 'LAN'. Default value: 'IPsec'. Case insensitive. Available as of provider version R2.18+.
    VpcId string
    VPC ID of the Aviatrix transit gateway. For GCP BGP over LAN connection, it is in the format of "vpc_name~-~project_name".
    ApprovedCidrs []string
    Set of approved CIDRs. Requires enable_learned_cidrs_approval to be true. Type: Set(String).
    BackupBgpMd5Key string
    Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'. For BGP LAN ActiveMesh mode disabled, example: 'avx03'.
    BackupBgpRemoteAsNum string
    Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
    BackupDirectConnect bool
    Backup direct connect for backup external device.
    BackupLocalLanIp string
    Backup Local LAN IP. Required for GCP HA BGP over LAN connection.
    BackupLocalTunnelCidr string
    Source CIDR for the tunnel from the backup Aviatrix transit gateway.
    BackupPreSharedKey string
    Backup Pre-Shared Key.
    BackupRemoteGatewayIp string
    Backup remote gateway IP.
    BackupRemoteLanIp string
    Backup Remote LAN IP. Required for HA BGP over LAN connection.
    BackupRemoteTunnelCidr string
    Destination CIDR for the tunnel to the backup external device.
    BgpLocalAsNum string
    BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    BgpMd5Key string
    BGP MD5 Authentication Key. Example: 'avx01,avx02'. For BGP LAN ActiveMesh mode disabled, example: 'avx01'.
    BgpRemoteAsNum string
    BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    ConnectionName string
    Transit external device connection name.
    ConnectionType string
    Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
    CustomAlgorithms bool
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    DirectConnect bool
    Set true for private network infrastructure.
    EnableBgpLanActivemesh bool
    Switch to enable BGP LAN ActiveMesh mode. Only valid for GCP with Remote Gateway HA enabled. Default: false. Available as of provider version R2.21+.
    EnableEdgeSegmentation bool
    Switch to allow this connection to communicate with a Network Domain via Connection Policy.
    EnableEventTriggeredHa bool
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    EnableIkev2 bool
    Set as true to enable IKEv2 protocol.
    EnableJumboFrame bool
    Enable Jumbo Frame for the transit external device connection. Only valid with 'GRE' tunnels under 'bgp' connection. Requires transit to be jumbo frame and insane mode enabled. Valid values: true, false. Default value: false. Available as of provider version R2.22.2+.
    EnableLearnedCidrsApproval bool
    Enable learned CIDRs approval for the connection. Only valid with connection_type = 'bgp'. Requires the transit_gateway's learned_cidrs_approval_mode attribute be set to 'connection'. Valid values: true, false. Default value: false. Available as of provider version R2.18+.
    GwName string
    Aviatrix transit gateway name.
    HaEnabled bool
    Set as true if there are two external devices.

    • backup_remote_gateway_ip - (Optional) Backup remote gateway IP. Required if HA enabled.
    LocalLanIp string
    Local LAN IP. Required for GCP BGP over LAN connection.
    LocalTunnelCidr string
    Source CIDR for the tunnel from the Aviatrix transit gateway.
    ManualBgpAdvertisedCidrs []string
    Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'. Available as of provider version R2.18+.
    Phase1Authentication string
    Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
    Phase1DhGroups string
    Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    Phase1Encryption string
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    Phase1RemoteIdentifiers []string
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    Phase2Authentication string
    Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
    Phase2DhGroups string
    Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    Phase2Encryption string
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    PreSharedKey string
    Pre-Shared Key.
    PrependAsPaths []string
    Connection AS Path Prepend customized by specifying AS PATH for a BGP connection. Available as of provider version R2.19.2.
    RemoteGatewayIp string
    Remote gateway IP. Required when tunnel_protocol != 'LAN'.
    RemoteLanIp string
    Remote LAN IP. Required for BGP over LAN connection.
    RemoteSubnet string
    Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
    RemoteTunnelCidr string
    Destination CIDR for the tunnel to the external device.
    RemoteVpcName string
    Name of the remote VPC for a LAN BGP connection with an Azure Transit Gateway. Required when connection_type = 'bgp' and tunnel_protocol = 'LAN' with an Azure transit gateway. Must be in the format "::". Available as of provider version R2.18+.
    SwitchToHaStandbyGateway bool
    Switch to HA Standby Transit Gateway connection. Only valid with Transit Gateway that has Active-Standby Mode enabled and for non-HA external device. Valid values: true, false. Default: false. Available in provider version R2.17.1+.
    TunnelProtocol string
    Tunnel protocol, only valid with connection_type = 'bgp'. Valid values: 'IPsec', 'GRE' or 'LAN'. Default value: 'IPsec'. Case insensitive. Available as of provider version R2.18+.
    VpcId string
    VPC ID of the Aviatrix transit gateway. For GCP BGP over LAN connection, it is in the format of "vpc_name~-~project_name".
    approvedCidrs List<String>
    Set of approved CIDRs. Requires enable_learned_cidrs_approval to be true. Type: Set(String).
    backupBgpMd5Key String
    Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'. For BGP LAN ActiveMesh mode disabled, example: 'avx03'.
    backupBgpRemoteAsNum String
    Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
    backupDirectConnect Boolean
    Backup direct connect for backup external device.
    backupLocalLanIp String
    Backup Local LAN IP. Required for GCP HA BGP over LAN connection.
    backupLocalTunnelCidr String
    Source CIDR for the tunnel from the backup Aviatrix transit gateway.
    backupPreSharedKey String
    Backup Pre-Shared Key.
    backupRemoteGatewayIp String
    Backup remote gateway IP.
    backupRemoteLanIp String
    Backup Remote LAN IP. Required for HA BGP over LAN connection.
    backupRemoteTunnelCidr String
    Destination CIDR for the tunnel to the backup external device.
    bgpLocalAsNum String
    BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    bgpMd5Key String
    BGP MD5 Authentication Key. Example: 'avx01,avx02'. For BGP LAN ActiveMesh mode disabled, example: 'avx01'.
    bgpRemoteAsNum String
    BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    connectionName String
    Transit external device connection name.
    connectionType String
    Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
    customAlgorithms Boolean
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    directConnect Boolean
    Set true for private network infrastructure.
    enableBgpLanActivemesh Boolean
    Switch to enable BGP LAN ActiveMesh mode. Only valid for GCP with Remote Gateway HA enabled. Default: false. Available as of provider version R2.21+.
    enableEdgeSegmentation Boolean
    Switch to allow this connection to communicate with a Network Domain via Connection Policy.
    enableEventTriggeredHa Boolean
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    enableIkev2 Boolean
    Set as true to enable IKEv2 protocol.
    enableJumboFrame Boolean
    Enable Jumbo Frame for the transit external device connection. Only valid with 'GRE' tunnels under 'bgp' connection. Requires transit to be jumbo frame and insane mode enabled. Valid values: true, false. Default value: false. Available as of provider version R2.22.2+.
    enableLearnedCidrsApproval Boolean
    Enable learned CIDRs approval for the connection. Only valid with connection_type = 'bgp'. Requires the transit_gateway's learned_cidrs_approval_mode attribute be set to 'connection'. Valid values: true, false. Default value: false. Available as of provider version R2.18+.
    gwName String
    Aviatrix transit gateway name.
    haEnabled Boolean
    Set as true if there are two external devices.

    • backup_remote_gateway_ip - (Optional) Backup remote gateway IP. Required if HA enabled.
    localLanIp String
    Local LAN IP. Required for GCP BGP over LAN connection.
    localTunnelCidr String
    Source CIDR for the tunnel from the Aviatrix transit gateway.
    manualBgpAdvertisedCidrs List<String>
    Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'. Available as of provider version R2.18+.
    phase1Authentication String
    Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
    phase1DhGroups String
    Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    phase1Encryption String
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    phase1RemoteIdentifiers List<String>
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    phase2Authentication String
    Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
    phase2DhGroups String
    Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    phase2Encryption String
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    preSharedKey String
    Pre-Shared Key.
    prependAsPaths List<String>
    Connection AS Path Prepend customized by specifying AS PATH for a BGP connection. Available as of provider version R2.19.2.
    remoteGatewayIp String
    Remote gateway IP. Required when tunnel_protocol != 'LAN'.
    remoteLanIp String
    Remote LAN IP. Required for BGP over LAN connection.
    remoteSubnet String
    Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
    remoteTunnelCidr String
    Destination CIDR for the tunnel to the external device.
    remoteVpcName String
    Name of the remote VPC for a LAN BGP connection with an Azure Transit Gateway. Required when connection_type = 'bgp' and tunnel_protocol = 'LAN' with an Azure transit gateway. Must be in the format "::". Available as of provider version R2.18+.
    switchToHaStandbyGateway Boolean
    Switch to HA Standby Transit Gateway connection. Only valid with Transit Gateway that has Active-Standby Mode enabled and for non-HA external device. Valid values: true, false. Default: false. Available in provider version R2.17.1+.
    tunnelProtocol String
    Tunnel protocol, only valid with connection_type = 'bgp'. Valid values: 'IPsec', 'GRE' or 'LAN'. Default value: 'IPsec'. Case insensitive. Available as of provider version R2.18+.
    vpcId String
    VPC ID of the Aviatrix transit gateway. For GCP BGP over LAN connection, it is in the format of "vpc_name~-~project_name".
    approvedCidrs string[]
    Set of approved CIDRs. Requires enable_learned_cidrs_approval to be true. Type: Set(String).
    backupBgpMd5Key string
    Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'. For BGP LAN ActiveMesh mode disabled, example: 'avx03'.
    backupBgpRemoteAsNum string
    Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
    backupDirectConnect boolean
    Backup direct connect for backup external device.
    backupLocalLanIp string
    Backup Local LAN IP. Required for GCP HA BGP over LAN connection.
    backupLocalTunnelCidr string
    Source CIDR for the tunnel from the backup Aviatrix transit gateway.
    backupPreSharedKey string
    Backup Pre-Shared Key.
    backupRemoteGatewayIp string
    Backup remote gateway IP.
    backupRemoteLanIp string
    Backup Remote LAN IP. Required for HA BGP over LAN connection.
    backupRemoteTunnelCidr string
    Destination CIDR for the tunnel to the backup external device.
    bgpLocalAsNum string
    BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    bgpMd5Key string
    BGP MD5 Authentication Key. Example: 'avx01,avx02'. For BGP LAN ActiveMesh mode disabled, example: 'avx01'.
    bgpRemoteAsNum string
    BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    connectionName string
    Transit external device connection name.
    connectionType string
    Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
    customAlgorithms boolean
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    directConnect boolean
    Set true for private network infrastructure.
    enableBgpLanActivemesh boolean
    Switch to enable BGP LAN ActiveMesh mode. Only valid for GCP with Remote Gateway HA enabled. Default: false. Available as of provider version R2.21+.
    enableEdgeSegmentation boolean
    Switch to allow this connection to communicate with a Network Domain via Connection Policy.
    enableEventTriggeredHa boolean
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    enableIkev2 boolean
    Set as true to enable IKEv2 protocol.
    enableJumboFrame boolean
    Enable Jumbo Frame for the transit external device connection. Only valid with 'GRE' tunnels under 'bgp' connection. Requires transit to be jumbo frame and insane mode enabled. Valid values: true, false. Default value: false. Available as of provider version R2.22.2+.
    enableLearnedCidrsApproval boolean
    Enable learned CIDRs approval for the connection. Only valid with connection_type = 'bgp'. Requires the transit_gateway's learned_cidrs_approval_mode attribute be set to 'connection'. Valid values: true, false. Default value: false. Available as of provider version R2.18+.
    gwName string
    Aviatrix transit gateway name.
    haEnabled boolean
    Set as true if there are two external devices.

    • backup_remote_gateway_ip - (Optional) Backup remote gateway IP. Required if HA enabled.
    localLanIp string
    Local LAN IP. Required for GCP BGP over LAN connection.
    localTunnelCidr string
    Source CIDR for the tunnel from the Aviatrix transit gateway.
    manualBgpAdvertisedCidrs string[]
    Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'. Available as of provider version R2.18+.
    phase1Authentication string
    Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
    phase1DhGroups string
    Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    phase1Encryption string
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    phase1RemoteIdentifiers string[]
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    phase2Authentication string
    Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
    phase2DhGroups string
    Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    phase2Encryption string
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    preSharedKey string
    Pre-Shared Key.
    prependAsPaths string[]
    Connection AS Path Prepend customized by specifying AS PATH for a BGP connection. Available as of provider version R2.19.2.
    remoteGatewayIp string
    Remote gateway IP. Required when tunnel_protocol != 'LAN'.
    remoteLanIp string
    Remote LAN IP. Required for BGP over LAN connection.
    remoteSubnet string
    Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
    remoteTunnelCidr string
    Destination CIDR for the tunnel to the external device.
    remoteVpcName string
    Name of the remote VPC for a LAN BGP connection with an Azure Transit Gateway. Required when connection_type = 'bgp' and tunnel_protocol = 'LAN' with an Azure transit gateway. Must be in the format "::". Available as of provider version R2.18+.
    switchToHaStandbyGateway boolean
    Switch to HA Standby Transit Gateway connection. Only valid with Transit Gateway that has Active-Standby Mode enabled and for non-HA external device. Valid values: true, false. Default: false. Available in provider version R2.17.1+.
    tunnelProtocol string
    Tunnel protocol, only valid with connection_type = 'bgp'. Valid values: 'IPsec', 'GRE' or 'LAN'. Default value: 'IPsec'. Case insensitive. Available as of provider version R2.18+.
    vpcId string
    VPC ID of the Aviatrix transit gateway. For GCP BGP over LAN connection, it is in the format of "vpc_name~-~project_name".
    approved_cidrs Sequence[str]
    Set of approved CIDRs. Requires enable_learned_cidrs_approval to be true. Type: Set(String).
    backup_bgp_md5_key str
    Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'. For BGP LAN ActiveMesh mode disabled, example: 'avx03'.
    backup_bgp_remote_as_num str
    Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
    backup_direct_connect bool
    Backup direct connect for backup external device.
    backup_local_lan_ip str
    Backup Local LAN IP. Required for GCP HA BGP over LAN connection.
    backup_local_tunnel_cidr str
    Source CIDR for the tunnel from the backup Aviatrix transit gateway.
    backup_pre_shared_key str
    Backup Pre-Shared Key.
    backup_remote_gateway_ip str
    Backup remote gateway IP.
    backup_remote_lan_ip str
    Backup Remote LAN IP. Required for HA BGP over LAN connection.
    backup_remote_tunnel_cidr str
    Destination CIDR for the tunnel to the backup external device.
    bgp_local_as_num str
    BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    bgp_md5_key str
    BGP MD5 Authentication Key. Example: 'avx01,avx02'. For BGP LAN ActiveMesh mode disabled, example: 'avx01'.
    bgp_remote_as_num str
    BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    connection_name str
    Transit external device connection name.
    connection_type str
    Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
    custom_algorithms bool
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    direct_connect bool
    Set true for private network infrastructure.
    enable_bgp_lan_activemesh bool
    Switch to enable BGP LAN ActiveMesh mode. Only valid for GCP with Remote Gateway HA enabled. Default: false. Available as of provider version R2.21+.
    enable_edge_segmentation bool
    Switch to allow this connection to communicate with a Network Domain via Connection Policy.
    enable_event_triggered_ha bool
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    enable_ikev2 bool
    Set as true to enable IKEv2 protocol.
    enable_jumbo_frame bool
    Enable Jumbo Frame for the transit external device connection. Only valid with 'GRE' tunnels under 'bgp' connection. Requires transit to be jumbo frame and insane mode enabled. Valid values: true, false. Default value: false. Available as of provider version R2.22.2+.
    enable_learned_cidrs_approval bool
    Enable learned CIDRs approval for the connection. Only valid with connection_type = 'bgp'. Requires the transit_gateway's learned_cidrs_approval_mode attribute be set to 'connection'. Valid values: true, false. Default value: false. Available as of provider version R2.18+.
    gw_name str
    Aviatrix transit gateway name.
    ha_enabled bool
    Set as true if there are two external devices.

    • backup_remote_gateway_ip - (Optional) Backup remote gateway IP. Required if HA enabled.
    local_lan_ip str
    Local LAN IP. Required for GCP BGP over LAN connection.
    local_tunnel_cidr str
    Source CIDR for the tunnel from the Aviatrix transit gateway.
    manual_bgp_advertised_cidrs Sequence[str]
    Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'. Available as of provider version R2.18+.
    phase1_authentication str
    Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
    phase1_dh_groups str
    Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    phase1_encryption str
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    phase1_remote_identifiers Sequence[str]
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    phase2_authentication str
    Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
    phase2_dh_groups str
    Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    phase2_encryption str
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    pre_shared_key str
    Pre-Shared Key.
    prepend_as_paths Sequence[str]
    Connection AS Path Prepend customized by specifying AS PATH for a BGP connection. Available as of provider version R2.19.2.
    remote_gateway_ip str
    Remote gateway IP. Required when tunnel_protocol != 'LAN'.
    remote_lan_ip str
    Remote LAN IP. Required for BGP over LAN connection.
    remote_subnet str
    Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
    remote_tunnel_cidr str
    Destination CIDR for the tunnel to the external device.
    remote_vpc_name str
    Name of the remote VPC for a LAN BGP connection with an Azure Transit Gateway. Required when connection_type = 'bgp' and tunnel_protocol = 'LAN' with an Azure transit gateway. Must be in the format "::". Available as of provider version R2.18+.
    switch_to_ha_standby_gateway bool
    Switch to HA Standby Transit Gateway connection. Only valid with Transit Gateway that has Active-Standby Mode enabled and for non-HA external device. Valid values: true, false. Default: false. Available in provider version R2.17.1+.
    tunnel_protocol str
    Tunnel protocol, only valid with connection_type = 'bgp'. Valid values: 'IPsec', 'GRE' or 'LAN'. Default value: 'IPsec'. Case insensitive. Available as of provider version R2.18+.
    vpc_id str
    VPC ID of the Aviatrix transit gateway. For GCP BGP over LAN connection, it is in the format of "vpc_name~-~project_name".
    approvedCidrs List<String>
    Set of approved CIDRs. Requires enable_learned_cidrs_approval to be true. Type: Set(String).
    backupBgpMd5Key String
    Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'. For BGP LAN ActiveMesh mode disabled, example: 'avx03'.
    backupBgpRemoteAsNum String
    Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
    backupDirectConnect Boolean
    Backup direct connect for backup external device.
    backupLocalLanIp String
    Backup Local LAN IP. Required for GCP HA BGP over LAN connection.
    backupLocalTunnelCidr String
    Source CIDR for the tunnel from the backup Aviatrix transit gateway.
    backupPreSharedKey String
    Backup Pre-Shared Key.
    backupRemoteGatewayIp String
    Backup remote gateway IP.
    backupRemoteLanIp String
    Backup Remote LAN IP. Required for HA BGP over LAN connection.
    backupRemoteTunnelCidr String
    Destination CIDR for the tunnel to the backup external device.
    bgpLocalAsNum String
    BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    bgpMd5Key String
    BGP MD5 Authentication Key. Example: 'avx01,avx02'. For BGP LAN ActiveMesh mode disabled, example: 'avx01'.
    bgpRemoteAsNum String
    BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
    connectionName String
    Transit external device connection name.
    connectionType String
    Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
    customAlgorithms Boolean
    Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
    directConnect Boolean
    Set true for private network infrastructure.
    enableBgpLanActivemesh Boolean
    Switch to enable BGP LAN ActiveMesh mode. Only valid for GCP with Remote Gateway HA enabled. Default: false. Available as of provider version R2.21+.
    enableEdgeSegmentation Boolean
    Switch to allow this connection to communicate with a Network Domain via Connection Policy.
    enableEventTriggeredHa Boolean
    Enable Event Triggered HA. Default value: false. Valid values: true or false. Available as of provider version R2.19+.
    enableIkev2 Boolean
    Set as true to enable IKEv2 protocol.
    enableJumboFrame Boolean
    Enable Jumbo Frame for the transit external device connection. Only valid with 'GRE' tunnels under 'bgp' connection. Requires transit to be jumbo frame and insane mode enabled. Valid values: true, false. Default value: false. Available as of provider version R2.22.2+.
    enableLearnedCidrsApproval Boolean
    Enable learned CIDRs approval for the connection. Only valid with connection_type = 'bgp'. Requires the transit_gateway's learned_cidrs_approval_mode attribute be set to 'connection'. Valid values: true, false. Default value: false. Available as of provider version R2.18+.
    gwName String
    Aviatrix transit gateway name.
    haEnabled Boolean
    Set as true if there are two external devices.

    • backup_remote_gateway_ip - (Optional) Backup remote gateway IP. Required if HA enabled.
    localLanIp String
    Local LAN IP. Required for GCP BGP over LAN connection.
    localTunnelCidr String
    Source CIDR for the tunnel from the Aviatrix transit gateway.
    manualBgpAdvertisedCidrs List<String>
    Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'. Available as of provider version R2.18+.
    phase1Authentication String
    Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
    phase1DhGroups String
    Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    phase1Encryption String
    Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
    phase1RemoteIdentifiers List<String>
    Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled. Available as of provider version R2.19+.
    phase2Authentication String
    Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
    phase2DhGroups String
    Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
    phase2Encryption String
    Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
    preSharedKey String
    Pre-Shared Key.
    prependAsPaths List<String>
    Connection AS Path Prepend customized by specifying AS PATH for a BGP connection. Available as of provider version R2.19.2.
    remoteGatewayIp String
    Remote gateway IP. Required when tunnel_protocol != 'LAN'.
    remoteLanIp String
    Remote LAN IP. Required for BGP over LAN connection.
    remoteSubnet String
    Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
    remoteTunnelCidr String
    Destination CIDR for the tunnel to the external device.
    remoteVpcName String
    Name of the remote VPC for a LAN BGP connection with an Azure Transit Gateway. Required when connection_type = 'bgp' and tunnel_protocol = 'LAN' with an Azure transit gateway. Must be in the format "::". Available as of provider version R2.18+.
    switchToHaStandbyGateway Boolean
    Switch to HA Standby Transit Gateway connection. Only valid with Transit Gateway that has Active-Standby Mode enabled and for non-HA external device. Valid values: true, false. Default: false. Available in provider version R2.17.1+.
    tunnelProtocol String
    Tunnel protocol, only valid with connection_type = 'bgp'. Valid values: 'IPsec', 'GRE' or 'LAN'. Default value: 'IPsec'. Case insensitive. Available as of provider version R2.18+.
    vpcId String
    VPC ID of the Aviatrix transit gateway. For GCP BGP over LAN connection, it is in the format of "vpc_name~-~project_name".

    Package Details

    Repository
    aviatrix astipkovits/pulumi-aviatrix
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the aviatrix Terraform Provider.
    aviatrix logo
    Aviatrix v0.0.11 published on Saturday, Jun 17, 2023 by Aviatrix