1. Packages
  2. Azure Classic
  3. API Docs
  4. paloalto
  5. LocalRulestackRule

We recommend using Azure Native.

Azure Classic v5.67.1 published on Tuesday, Feb 27, 2024 by Pulumi

azure.paloalto.LocalRulestackRule

Explore with Pulumi AI

azure logo

We recommend using Azure Native.

Azure Classic v5.67.1 published on Tuesday, Feb 27, 2024 by Pulumi

    Manages a Palo Alto Local Rulestack Rule.

    Example Usage

    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Azure = Pulumi.Azure;
    
    return await Deployment.RunAsync(() => 
    {
        var example = new Azure.Core.ResourceGroup("example", new()
        {
            Name = "rg-example",
            Location = "West Europe",
        });
    
        var exampleLocalRulestack = new Azure.PaloAlto.LocalRulestack("example", new()
        {
            Name = "lrs-example",
            ResourceGroupName = example.Name,
            Location = example.Location,
        });
    
        var exampleLocalRulestackRule = new Azure.PaloAlto.LocalRulestackRule("example", new()
        {
            Name = "example-rule",
            RulestackId = exampleLocalRulestack.Id,
            Priority = 1000,
            Action = "Allow",
            Applications = new[]
            {
                "any",
            },
            Source = new Azure.PaloAlto.Inputs.LocalRulestackRuleSourceArgs
            {
                Cidrs = new[]
                {
                    "10.0.0.0/8",
                },
            },
            Destination = new Azure.PaloAlto.Inputs.LocalRulestackRuleDestinationArgs
            {
                Cidrs = new[]
                {
                    "192.168.16.0/24",
                },
            },
        });
    
    });
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core"
    	"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/paloalto"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
    			Name:     pulumi.String("rg-example"),
    			Location: pulumi.String("West Europe"),
    		})
    		if err != nil {
    			return err
    		}
    		exampleLocalRulestack, err := paloalto.NewLocalRulestack(ctx, "example", &paloalto.LocalRulestackArgs{
    			Name:              pulumi.String("lrs-example"),
    			ResourceGroupName: example.Name,
    			Location:          example.Location,
    		})
    		if err != nil {
    			return err
    		}
    		_, err = paloalto.NewLocalRulestackRule(ctx, "example", &paloalto.LocalRulestackRuleArgs{
    			Name:        pulumi.String("example-rule"),
    			RulestackId: exampleLocalRulestack.ID(),
    			Priority:    pulumi.Int(1000),
    			Action:      pulumi.String("Allow"),
    			Applications: pulumi.StringArray{
    				pulumi.String("any"),
    			},
    			Source: &paloalto.LocalRulestackRuleSourceArgs{
    				Cidrs: pulumi.StringArray{
    					pulumi.String("10.0.0.0/8"),
    				},
    			},
    			Destination: &paloalto.LocalRulestackRuleDestinationArgs{
    				Cidrs: pulumi.StringArray{
    					pulumi.String("192.168.16.0/24"),
    				},
    			},
    		})
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.azure.core.ResourceGroup;
    import com.pulumi.azure.core.ResourceGroupArgs;
    import com.pulumi.azure.paloalto.LocalRulestack;
    import com.pulumi.azure.paloalto.LocalRulestackArgs;
    import com.pulumi.azure.paloalto.LocalRulestackRule;
    import com.pulumi.azure.paloalto.LocalRulestackRuleArgs;
    import com.pulumi.azure.paloalto.inputs.LocalRulestackRuleSourceArgs;
    import com.pulumi.azure.paloalto.inputs.LocalRulestackRuleDestinationArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var example = new ResourceGroup("example", ResourceGroupArgs.builder()        
                .name("rg-example")
                .location("West Europe")
                .build());
    
            var exampleLocalRulestack = new LocalRulestack("exampleLocalRulestack", LocalRulestackArgs.builder()        
                .name("lrs-example")
                .resourceGroupName(example.name())
                .location(example.location())
                .build());
    
            var exampleLocalRulestackRule = new LocalRulestackRule("exampleLocalRulestackRule", LocalRulestackRuleArgs.builder()        
                .name("example-rule")
                .rulestackId(exampleLocalRulestack.id())
                .priority(1000)
                .action("Allow")
                .applications("any")
                .source(LocalRulestackRuleSourceArgs.builder()
                    .cidrs("10.0.0.0/8")
                    .build())
                .destination(LocalRulestackRuleDestinationArgs.builder()
                    .cidrs("192.168.16.0/24")
                    .build())
                .build());
    
        }
    }
    
    import pulumi
    import pulumi_azure as azure
    
    example = azure.core.ResourceGroup("example",
        name="rg-example",
        location="West Europe")
    example_local_rulestack = azure.paloalto.LocalRulestack("example",
        name="lrs-example",
        resource_group_name=example.name,
        location=example.location)
    example_local_rulestack_rule = azure.paloalto.LocalRulestackRule("example",
        name="example-rule",
        rulestack_id=example_local_rulestack.id,
        priority=1000,
        action="Allow",
        applications=["any"],
        source=azure.paloalto.LocalRulestackRuleSourceArgs(
            cidrs=["10.0.0.0/8"],
        ),
        destination=azure.paloalto.LocalRulestackRuleDestinationArgs(
            cidrs=["192.168.16.0/24"],
        ))
    
    import * as pulumi from "@pulumi/pulumi";
    import * as azure from "@pulumi/azure";
    
    const example = new azure.core.ResourceGroup("example", {
        name: "rg-example",
        location: "West Europe",
    });
    const exampleLocalRulestack = new azure.paloalto.LocalRulestack("example", {
        name: "lrs-example",
        resourceGroupName: example.name,
        location: example.location,
    });
    const exampleLocalRulestackRule = new azure.paloalto.LocalRulestackRule("example", {
        name: "example-rule",
        rulestackId: exampleLocalRulestack.id,
        priority: 1000,
        action: "Allow",
        applications: ["any"],
        source: {
            cidrs: ["10.0.0.0/8"],
        },
        destination: {
            cidrs: ["192.168.16.0/24"],
        },
    });
    
    resources:
      example:
        type: azure:core:ResourceGroup
        properties:
          name: rg-example
          location: West Europe
      exampleLocalRulestack:
        type: azure:paloalto:LocalRulestack
        name: example
        properties:
          name: lrs-example
          resourceGroupName: ${example.name}
          location: ${example.location}
      exampleLocalRulestackRule:
        type: azure:paloalto:LocalRulestackRule
        name: example
        properties:
          name: example-rule
          rulestackId: ${exampleLocalRulestack.id}
          priority: 1000
          action: Allow
          applications:
            - any
          source:
            cidrs:
              - 10.0.0.0/8
          destination:
            cidrs:
              - 192.168.16.0/24
    

    Create LocalRulestackRule Resource

    new LocalRulestackRule(name: string, args: LocalRulestackRuleArgs, opts?: CustomResourceOptions);
    @overload
    def LocalRulestackRule(resource_name: str,
                           opts: Optional[ResourceOptions] = None,
                           action: Optional[str] = None,
                           applications: Optional[Sequence[str]] = None,
                           audit_comment: Optional[str] = None,
                           category: Optional[LocalRulestackRuleCategoryArgs] = None,
                           decryption_rule_type: Optional[str] = None,
                           description: Optional[str] = None,
                           destination: Optional[LocalRulestackRuleDestinationArgs] = None,
                           enabled: Optional[bool] = None,
                           inspection_certificate_id: Optional[str] = None,
                           logging_enabled: Optional[bool] = None,
                           name: Optional[str] = None,
                           negate_destination: Optional[bool] = None,
                           negate_source: Optional[bool] = None,
                           priority: Optional[int] = None,
                           protocol: Optional[str] = None,
                           protocol_ports: Optional[Sequence[str]] = None,
                           rulestack_id: Optional[str] = None,
                           source: Optional[LocalRulestackRuleSourceArgs] = None,
                           tags: Optional[Mapping[str, str]] = None)
    @overload
    def LocalRulestackRule(resource_name: str,
                           args: LocalRulestackRuleArgs,
                           opts: Optional[ResourceOptions] = None)
    func NewLocalRulestackRule(ctx *Context, name string, args LocalRulestackRuleArgs, opts ...ResourceOption) (*LocalRulestackRule, error)
    public LocalRulestackRule(string name, LocalRulestackRuleArgs args, CustomResourceOptions? opts = null)
    public LocalRulestackRule(String name, LocalRulestackRuleArgs args)
    public LocalRulestackRule(String name, LocalRulestackRuleArgs args, CustomResourceOptions options)
    
    type: azure:paloalto:LocalRulestackRule
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    
    name string
    The unique name of the resource.
    args LocalRulestackRuleArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args LocalRulestackRuleArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args LocalRulestackRuleArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args LocalRulestackRuleArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args LocalRulestackRuleArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    LocalRulestackRule Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    The LocalRulestackRule resource accepts the following input properties:

    Action string
    The action to take on the rule being triggered. Possible values are Allow, DenyResetBoth, DenyResetServer and DenySilent.
    Applications List<string>
    Specifies a list of Applications.
    Destination LocalRulestackRuleDestination
    One or more destination blocks as defined below.
    Priority int

    The Priority of this rule. Rules are executed in numerical order. Changing this forces a new Palo Alto Local Rulestack Rule to be created.

    NOTE: This is the primary identifier of a rule, as such it is not possible to change the Priority of a rule once created.

    RulestackId string
    The ID of the Local Rulestack in which to create this Rule. Changing this forces a new Palo Alto Local Rulestack Rule to be created.
    Source LocalRulestackRuleSource
    One or more source blocks as defined below.
    AuditComment string
    The comment for Audit purposes.
    Category LocalRulestackRuleCategory
    A category block as defined below.
    DecryptionRuleType string
    The type of Decryption to perform on the rule. Possible values include SSLInboundInspection, SSLOutboundInspection, and None. Defaults to None.
    Description string
    The description for the rule.
    Enabled bool
    Should this Rule be enabled? Defaults to true.
    InspectionCertificateId string
    The ID of the certificate for inbound inspection. Only valid when decryption_rule_type is set to SSLInboundInspection.
    LoggingEnabled bool
    Should Logging be enabled? Defaults to false.
    Name string
    The name which should be used for this Palo Alto Local Rulestack Rule.
    NegateDestination bool
    Should the inverse of the Destination configuration be used. Defaults to false.
    NegateSource bool
    Should the inverse of the Source configuration be used. Defaults to false.
    Protocol string
    The Protocol and port to use in the form [protocol]:[port_number] e.g. TCP:8080 or UDP:53. Conflicts with protocol_ports. Defaults to application-default.
    ProtocolPorts List<string>
    Specifies a list of Protocol:Port entries. E.g. [ "TCP:80", "UDP:5431" ]. Conflicts with protocol.
    Tags Dictionary<string, string>
    A mapping of tags which should be assigned to the Palo Alto Local Rulestack Rule.
    Action string
    The action to take on the rule being triggered. Possible values are Allow, DenyResetBoth, DenyResetServer and DenySilent.
    Applications []string
    Specifies a list of Applications.
    Destination LocalRulestackRuleDestinationArgs
    One or more destination blocks as defined below.
    Priority int

    The Priority of this rule. Rules are executed in numerical order. Changing this forces a new Palo Alto Local Rulestack Rule to be created.

    NOTE: This is the primary identifier of a rule, as such it is not possible to change the Priority of a rule once created.

    RulestackId string
    The ID of the Local Rulestack in which to create this Rule. Changing this forces a new Palo Alto Local Rulestack Rule to be created.
    Source LocalRulestackRuleSourceArgs
    One or more source blocks as defined below.
    AuditComment string
    The comment for Audit purposes.
    Category LocalRulestackRuleCategoryArgs
    A category block as defined below.
    DecryptionRuleType string
    The type of Decryption to perform on the rule. Possible values include SSLInboundInspection, SSLOutboundInspection, and None. Defaults to None.
    Description string
    The description for the rule.
    Enabled bool
    Should this Rule be enabled? Defaults to true.
    InspectionCertificateId string
    The ID of the certificate for inbound inspection. Only valid when decryption_rule_type is set to SSLInboundInspection.
    LoggingEnabled bool
    Should Logging be enabled? Defaults to false.
    Name string
    The name which should be used for this Palo Alto Local Rulestack Rule.
    NegateDestination bool
    Should the inverse of the Destination configuration be used. Defaults to false.
    NegateSource bool
    Should the inverse of the Source configuration be used. Defaults to false.
    Protocol string
    The Protocol and port to use in the form [protocol]:[port_number] e.g. TCP:8080 or UDP:53. Conflicts with protocol_ports. Defaults to application-default.
    ProtocolPorts []string
    Specifies a list of Protocol:Port entries. E.g. [ "TCP:80", "UDP:5431" ]. Conflicts with protocol.
    Tags map[string]string
    A mapping of tags which should be assigned to the Palo Alto Local Rulestack Rule.
    action String
    The action to take on the rule being triggered. Possible values are Allow, DenyResetBoth, DenyResetServer and DenySilent.
    applications List<String>
    Specifies a list of Applications.
    destination LocalRulestackRuleDestination
    One or more destination blocks as defined below.
    priority Integer

    The Priority of this rule. Rules are executed in numerical order. Changing this forces a new Palo Alto Local Rulestack Rule to be created.

    NOTE: This is the primary identifier of a rule, as such it is not possible to change the Priority of a rule once created.

    rulestackId String
    The ID of the Local Rulestack in which to create this Rule. Changing this forces a new Palo Alto Local Rulestack Rule to be created.
    source LocalRulestackRuleSource
    One or more source blocks as defined below.
    auditComment String
    The comment for Audit purposes.
    category LocalRulestackRuleCategory
    A category block as defined below.
    decryptionRuleType String
    The type of Decryption to perform on the rule. Possible values include SSLInboundInspection, SSLOutboundInspection, and None. Defaults to None.
    description String
    The description for the rule.
    enabled Boolean
    Should this Rule be enabled? Defaults to true.
    inspectionCertificateId String
    The ID of the certificate for inbound inspection. Only valid when decryption_rule_type is set to SSLInboundInspection.
    loggingEnabled Boolean
    Should Logging be enabled? Defaults to false.
    name String
    The name which should be used for this Palo Alto Local Rulestack Rule.
    negateDestination Boolean
    Should the inverse of the Destination configuration be used. Defaults to false.
    negateSource Boolean
    Should the inverse of the Source configuration be used. Defaults to false.
    protocol String
    The Protocol and port to use in the form [protocol]:[port_number] e.g. TCP:8080 or UDP:53. Conflicts with protocol_ports. Defaults to application-default.
    protocolPorts List<String>
    Specifies a list of Protocol:Port entries. E.g. [ "TCP:80", "UDP:5431" ]. Conflicts with protocol.
    tags Map<String,String>
    A mapping of tags which should be assigned to the Palo Alto Local Rulestack Rule.
    action string
    The action to take on the rule being triggered. Possible values are Allow, DenyResetBoth, DenyResetServer and DenySilent.
    applications string[]
    Specifies a list of Applications.
    destination LocalRulestackRuleDestination
    One or more destination blocks as defined below.
    priority number

    The Priority of this rule. Rules are executed in numerical order. Changing this forces a new Palo Alto Local Rulestack Rule to be created.

    NOTE: This is the primary identifier of a rule, as such it is not possible to change the Priority of a rule once created.

    rulestackId string
    The ID of the Local Rulestack in which to create this Rule. Changing this forces a new Palo Alto Local Rulestack Rule to be created.
    source LocalRulestackRuleSource
    One or more source blocks as defined below.
    auditComment string
    The comment for Audit purposes.
    category LocalRulestackRuleCategory
    A category block as defined below.
    decryptionRuleType string
    The type of Decryption to perform on the rule. Possible values include SSLInboundInspection, SSLOutboundInspection, and None. Defaults to None.
    description string
    The description for the rule.
    enabled boolean
    Should this Rule be enabled? Defaults to true.
    inspectionCertificateId string
    The ID of the certificate for inbound inspection. Only valid when decryption_rule_type is set to SSLInboundInspection.
    loggingEnabled boolean
    Should Logging be enabled? Defaults to false.
    name string
    The name which should be used for this Palo Alto Local Rulestack Rule.
    negateDestination boolean
    Should the inverse of the Destination configuration be used. Defaults to false.
    negateSource boolean
    Should the inverse of the Source configuration be used. Defaults to false.
    protocol string
    The Protocol and port to use in the form [protocol]:[port_number] e.g. TCP:8080 or UDP:53. Conflicts with protocol_ports. Defaults to application-default.
    protocolPorts string[]
    Specifies a list of Protocol:Port entries. E.g. [ "TCP:80", "UDP:5431" ]. Conflicts with protocol.
    tags {[key: string]: string}
    A mapping of tags which should be assigned to the Palo Alto Local Rulestack Rule.
    action str
    The action to take on the rule being triggered. Possible values are Allow, DenyResetBoth, DenyResetServer and DenySilent.
    applications Sequence[str]
    Specifies a list of Applications.
    destination LocalRulestackRuleDestinationArgs
    One or more destination blocks as defined below.
    priority int

    The Priority of this rule. Rules are executed in numerical order. Changing this forces a new Palo Alto Local Rulestack Rule to be created.

    NOTE: This is the primary identifier of a rule, as such it is not possible to change the Priority of a rule once created.

    rulestack_id str
    The ID of the Local Rulestack in which to create this Rule. Changing this forces a new Palo Alto Local Rulestack Rule to be created.
    source LocalRulestackRuleSourceArgs
    One or more source blocks as defined below.
    audit_comment str
    The comment for Audit purposes.
    category LocalRulestackRuleCategoryArgs
    A category block as defined below.
    decryption_rule_type str
    The type of Decryption to perform on the rule. Possible values include SSLInboundInspection, SSLOutboundInspection, and None. Defaults to None.
    description str
    The description for the rule.
    enabled bool
    Should this Rule be enabled? Defaults to true.
    inspection_certificate_id str
    The ID of the certificate for inbound inspection. Only valid when decryption_rule_type is set to SSLInboundInspection.
    logging_enabled bool
    Should Logging be enabled? Defaults to false.
    name str
    The name which should be used for this Palo Alto Local Rulestack Rule.
    negate_destination bool
    Should the inverse of the Destination configuration be used. Defaults to false.
    negate_source bool
    Should the inverse of the Source configuration be used. Defaults to false.
    protocol str
    The Protocol and port to use in the form [protocol]:[port_number] e.g. TCP:8080 or UDP:53. Conflicts with protocol_ports. Defaults to application-default.
    protocol_ports Sequence[str]
    Specifies a list of Protocol:Port entries. E.g. [ "TCP:80", "UDP:5431" ]. Conflicts with protocol.
    tags Mapping[str, str]
    A mapping of tags which should be assigned to the Palo Alto Local Rulestack Rule.
    action String
    The action to take on the rule being triggered. Possible values are Allow, DenyResetBoth, DenyResetServer and DenySilent.
    applications List<String>
    Specifies a list of Applications.
    destination Property Map
    One or more destination blocks as defined below.
    priority Number

    The Priority of this rule. Rules are executed in numerical order. Changing this forces a new Palo Alto Local Rulestack Rule to be created.

    NOTE: This is the primary identifier of a rule, as such it is not possible to change the Priority of a rule once created.

    rulestackId String
    The ID of the Local Rulestack in which to create this Rule. Changing this forces a new Palo Alto Local Rulestack Rule to be created.
    source Property Map
    One or more source blocks as defined below.
    auditComment String
    The comment for Audit purposes.
    category Property Map
    A category block as defined below.
    decryptionRuleType String
    The type of Decryption to perform on the rule. Possible values include SSLInboundInspection, SSLOutboundInspection, and None. Defaults to None.
    description String
    The description for the rule.
    enabled Boolean
    Should this Rule be enabled? Defaults to true.
    inspectionCertificateId String
    The ID of the certificate for inbound inspection. Only valid when decryption_rule_type is set to SSLInboundInspection.
    loggingEnabled Boolean
    Should Logging be enabled? Defaults to false.
    name String
    The name which should be used for this Palo Alto Local Rulestack Rule.
    negateDestination Boolean
    Should the inverse of the Destination configuration be used. Defaults to false.
    negateSource Boolean
    Should the inverse of the Source configuration be used. Defaults to false.
    protocol String
    The Protocol and port to use in the form [protocol]:[port_number] e.g. TCP:8080 or UDP:53. Conflicts with protocol_ports. Defaults to application-default.
    protocolPorts List<String>
    Specifies a list of Protocol:Port entries. E.g. [ "TCP:80", "UDP:5431" ]. Conflicts with protocol.
    tags Map<String>
    A mapping of tags which should be assigned to the Palo Alto Local Rulestack Rule.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the LocalRulestackRule resource produces the following output properties:

    Id string
    The provider-assigned unique ID for this managed resource.
    Id string
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.
    id string
    The provider-assigned unique ID for this managed resource.
    id str
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.

    Look up Existing LocalRulestackRule Resource

    Get an existing LocalRulestackRule resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: LocalRulestackRuleState, opts?: CustomResourceOptions): LocalRulestackRule
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            action: Optional[str] = None,
            applications: Optional[Sequence[str]] = None,
            audit_comment: Optional[str] = None,
            category: Optional[LocalRulestackRuleCategoryArgs] = None,
            decryption_rule_type: Optional[str] = None,
            description: Optional[str] = None,
            destination: Optional[LocalRulestackRuleDestinationArgs] = None,
            enabled: Optional[bool] = None,
            inspection_certificate_id: Optional[str] = None,
            logging_enabled: Optional[bool] = None,
            name: Optional[str] = None,
            negate_destination: Optional[bool] = None,
            negate_source: Optional[bool] = None,
            priority: Optional[int] = None,
            protocol: Optional[str] = None,
            protocol_ports: Optional[Sequence[str]] = None,
            rulestack_id: Optional[str] = None,
            source: Optional[LocalRulestackRuleSourceArgs] = None,
            tags: Optional[Mapping[str, str]] = None) -> LocalRulestackRule
    func GetLocalRulestackRule(ctx *Context, name string, id IDInput, state *LocalRulestackRuleState, opts ...ResourceOption) (*LocalRulestackRule, error)
    public static LocalRulestackRule Get(string name, Input<string> id, LocalRulestackRuleState? state, CustomResourceOptions? opts = null)
    public static LocalRulestackRule get(String name, Output<String> id, LocalRulestackRuleState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    Action string
    The action to take on the rule being triggered. Possible values are Allow, DenyResetBoth, DenyResetServer and DenySilent.
    Applications List<string>
    Specifies a list of Applications.
    AuditComment string
    The comment for Audit purposes.
    Category LocalRulestackRuleCategory
    A category block as defined below.
    DecryptionRuleType string
    The type of Decryption to perform on the rule. Possible values include SSLInboundInspection, SSLOutboundInspection, and None. Defaults to None.
    Description string
    The description for the rule.
    Destination LocalRulestackRuleDestination
    One or more destination blocks as defined below.
    Enabled bool
    Should this Rule be enabled? Defaults to true.
    InspectionCertificateId string
    The ID of the certificate for inbound inspection. Only valid when decryption_rule_type is set to SSLInboundInspection.
    LoggingEnabled bool
    Should Logging be enabled? Defaults to false.
    Name string
    The name which should be used for this Palo Alto Local Rulestack Rule.
    NegateDestination bool
    Should the inverse of the Destination configuration be used. Defaults to false.
    NegateSource bool
    Should the inverse of the Source configuration be used. Defaults to false.
    Priority int

    The Priority of this rule. Rules are executed in numerical order. Changing this forces a new Palo Alto Local Rulestack Rule to be created.

    NOTE: This is the primary identifier of a rule, as such it is not possible to change the Priority of a rule once created.

    Protocol string
    The Protocol and port to use in the form [protocol]:[port_number] e.g. TCP:8080 or UDP:53. Conflicts with protocol_ports. Defaults to application-default.
    ProtocolPorts List<string>
    Specifies a list of Protocol:Port entries. E.g. [ "TCP:80", "UDP:5431" ]. Conflicts with protocol.
    RulestackId string
    The ID of the Local Rulestack in which to create this Rule. Changing this forces a new Palo Alto Local Rulestack Rule to be created.
    Source LocalRulestackRuleSource
    One or more source blocks as defined below.
    Tags Dictionary<string, string>
    A mapping of tags which should be assigned to the Palo Alto Local Rulestack Rule.
    Action string
    The action to take on the rule being triggered. Possible values are Allow, DenyResetBoth, DenyResetServer and DenySilent.
    Applications []string
    Specifies a list of Applications.
    AuditComment string
    The comment for Audit purposes.
    Category LocalRulestackRuleCategoryArgs
    A category block as defined below.
    DecryptionRuleType string
    The type of Decryption to perform on the rule. Possible values include SSLInboundInspection, SSLOutboundInspection, and None. Defaults to None.
    Description string
    The description for the rule.
    Destination LocalRulestackRuleDestinationArgs
    One or more destination blocks as defined below.
    Enabled bool
    Should this Rule be enabled? Defaults to true.
    InspectionCertificateId string
    The ID of the certificate for inbound inspection. Only valid when decryption_rule_type is set to SSLInboundInspection.
    LoggingEnabled bool
    Should Logging be enabled? Defaults to false.
    Name string
    The name which should be used for this Palo Alto Local Rulestack Rule.
    NegateDestination bool
    Should the inverse of the Destination configuration be used. Defaults to false.
    NegateSource bool
    Should the inverse of the Source configuration be used. Defaults to false.
    Priority int

    The Priority of this rule. Rules are executed in numerical order. Changing this forces a new Palo Alto Local Rulestack Rule to be created.

    NOTE: This is the primary identifier of a rule, as such it is not possible to change the Priority of a rule once created.

    Protocol string
    The Protocol and port to use in the form [protocol]:[port_number] e.g. TCP:8080 or UDP:53. Conflicts with protocol_ports. Defaults to application-default.
    ProtocolPorts []string
    Specifies a list of Protocol:Port entries. E.g. [ "TCP:80", "UDP:5431" ]. Conflicts with protocol.
    RulestackId string
    The ID of the Local Rulestack in which to create this Rule. Changing this forces a new Palo Alto Local Rulestack Rule to be created.
    Source LocalRulestackRuleSourceArgs
    One or more source blocks as defined below.
    Tags map[string]string
    A mapping of tags which should be assigned to the Palo Alto Local Rulestack Rule.
    action String
    The action to take on the rule being triggered. Possible values are Allow, DenyResetBoth, DenyResetServer and DenySilent.
    applications List<String>
    Specifies a list of Applications.
    auditComment String
    The comment for Audit purposes.
    category LocalRulestackRuleCategory
    A category block as defined below.
    decryptionRuleType String
    The type of Decryption to perform on the rule. Possible values include SSLInboundInspection, SSLOutboundInspection, and None. Defaults to None.
    description String
    The description for the rule.
    destination LocalRulestackRuleDestination
    One or more destination blocks as defined below.
    enabled Boolean
    Should this Rule be enabled? Defaults to true.
    inspectionCertificateId String
    The ID of the certificate for inbound inspection. Only valid when decryption_rule_type is set to SSLInboundInspection.
    loggingEnabled Boolean
    Should Logging be enabled? Defaults to false.
    name String
    The name which should be used for this Palo Alto Local Rulestack Rule.
    negateDestination Boolean
    Should the inverse of the Destination configuration be used. Defaults to false.
    negateSource Boolean
    Should the inverse of the Source configuration be used. Defaults to false.
    priority Integer

    The Priority of this rule. Rules are executed in numerical order. Changing this forces a new Palo Alto Local Rulestack Rule to be created.

    NOTE: This is the primary identifier of a rule, as such it is not possible to change the Priority of a rule once created.

    protocol String
    The Protocol and port to use in the form [protocol]:[port_number] e.g. TCP:8080 or UDP:53. Conflicts with protocol_ports. Defaults to application-default.
    protocolPorts List<String>
    Specifies a list of Protocol:Port entries. E.g. [ "TCP:80", "UDP:5431" ]. Conflicts with protocol.
    rulestackId String
    The ID of the Local Rulestack in which to create this Rule. Changing this forces a new Palo Alto Local Rulestack Rule to be created.
    source LocalRulestackRuleSource
    One or more source blocks as defined below.
    tags Map<String,String>
    A mapping of tags which should be assigned to the Palo Alto Local Rulestack Rule.
    action string
    The action to take on the rule being triggered. Possible values are Allow, DenyResetBoth, DenyResetServer and DenySilent.
    applications string[]
    Specifies a list of Applications.
    auditComment string
    The comment for Audit purposes.
    category LocalRulestackRuleCategory
    A category block as defined below.
    decryptionRuleType string
    The type of Decryption to perform on the rule. Possible values include SSLInboundInspection, SSLOutboundInspection, and None. Defaults to None.
    description string
    The description for the rule.
    destination LocalRulestackRuleDestination
    One or more destination blocks as defined below.
    enabled boolean
    Should this Rule be enabled? Defaults to true.
    inspectionCertificateId string
    The ID of the certificate for inbound inspection. Only valid when decryption_rule_type is set to SSLInboundInspection.
    loggingEnabled boolean
    Should Logging be enabled? Defaults to false.
    name string
    The name which should be used for this Palo Alto Local Rulestack Rule.
    negateDestination boolean
    Should the inverse of the Destination configuration be used. Defaults to false.
    negateSource boolean
    Should the inverse of the Source configuration be used. Defaults to false.
    priority number

    The Priority of this rule. Rules are executed in numerical order. Changing this forces a new Palo Alto Local Rulestack Rule to be created.

    NOTE: This is the primary identifier of a rule, as such it is not possible to change the Priority of a rule once created.

    protocol string
    The Protocol and port to use in the form [protocol]:[port_number] e.g. TCP:8080 or UDP:53. Conflicts with protocol_ports. Defaults to application-default.
    protocolPorts string[]
    Specifies a list of Protocol:Port entries. E.g. [ "TCP:80", "UDP:5431" ]. Conflicts with protocol.
    rulestackId string
    The ID of the Local Rulestack in which to create this Rule. Changing this forces a new Palo Alto Local Rulestack Rule to be created.
    source LocalRulestackRuleSource
    One or more source blocks as defined below.
    tags {[key: string]: string}
    A mapping of tags which should be assigned to the Palo Alto Local Rulestack Rule.
    action str
    The action to take on the rule being triggered. Possible values are Allow, DenyResetBoth, DenyResetServer and DenySilent.
    applications Sequence[str]
    Specifies a list of Applications.
    audit_comment str
    The comment for Audit purposes.
    category LocalRulestackRuleCategoryArgs
    A category block as defined below.
    decryption_rule_type str
    The type of Decryption to perform on the rule. Possible values include SSLInboundInspection, SSLOutboundInspection, and None. Defaults to None.
    description str
    The description for the rule.
    destination LocalRulestackRuleDestinationArgs
    One or more destination blocks as defined below.
    enabled bool
    Should this Rule be enabled? Defaults to true.
    inspection_certificate_id str
    The ID of the certificate for inbound inspection. Only valid when decryption_rule_type is set to SSLInboundInspection.
    logging_enabled bool
    Should Logging be enabled? Defaults to false.
    name str
    The name which should be used for this Palo Alto Local Rulestack Rule.
    negate_destination bool
    Should the inverse of the Destination configuration be used. Defaults to false.
    negate_source bool
    Should the inverse of the Source configuration be used. Defaults to false.
    priority int

    The Priority of this rule. Rules are executed in numerical order. Changing this forces a new Palo Alto Local Rulestack Rule to be created.

    NOTE: This is the primary identifier of a rule, as such it is not possible to change the Priority of a rule once created.

    protocol str
    The Protocol and port to use in the form [protocol]:[port_number] e.g. TCP:8080 or UDP:53. Conflicts with protocol_ports. Defaults to application-default.
    protocol_ports Sequence[str]
    Specifies a list of Protocol:Port entries. E.g. [ "TCP:80", "UDP:5431" ]. Conflicts with protocol.
    rulestack_id str
    The ID of the Local Rulestack in which to create this Rule. Changing this forces a new Palo Alto Local Rulestack Rule to be created.
    source LocalRulestackRuleSourceArgs
    One or more source blocks as defined below.
    tags Mapping[str, str]
    A mapping of tags which should be assigned to the Palo Alto Local Rulestack Rule.
    action String
    The action to take on the rule being triggered. Possible values are Allow, DenyResetBoth, DenyResetServer and DenySilent.
    applications List<String>
    Specifies a list of Applications.
    auditComment String
    The comment for Audit purposes.
    category Property Map
    A category block as defined below.
    decryptionRuleType String
    The type of Decryption to perform on the rule. Possible values include SSLInboundInspection, SSLOutboundInspection, and None. Defaults to None.
    description String
    The description for the rule.
    destination Property Map
    One or more destination blocks as defined below.
    enabled Boolean
    Should this Rule be enabled? Defaults to true.
    inspectionCertificateId String
    The ID of the certificate for inbound inspection. Only valid when decryption_rule_type is set to SSLInboundInspection.
    loggingEnabled Boolean
    Should Logging be enabled? Defaults to false.
    name String
    The name which should be used for this Palo Alto Local Rulestack Rule.
    negateDestination Boolean
    Should the inverse of the Destination configuration be used. Defaults to false.
    negateSource Boolean
    Should the inverse of the Source configuration be used. Defaults to false.
    priority Number

    The Priority of this rule. Rules are executed in numerical order. Changing this forces a new Palo Alto Local Rulestack Rule to be created.

    NOTE: This is the primary identifier of a rule, as such it is not possible to change the Priority of a rule once created.

    protocol String
    The Protocol and port to use in the form [protocol]:[port_number] e.g. TCP:8080 or UDP:53. Conflicts with protocol_ports. Defaults to application-default.
    protocolPorts List<String>
    Specifies a list of Protocol:Port entries. E.g. [ "TCP:80", "UDP:5431" ]. Conflicts with protocol.
    rulestackId String
    The ID of the Local Rulestack in which to create this Rule. Changing this forces a new Palo Alto Local Rulestack Rule to be created.
    source Property Map
    One or more source blocks as defined below.
    tags Map<String>
    A mapping of tags which should be assigned to the Palo Alto Local Rulestack Rule.

    Supporting Types

    LocalRulestackRuleCategory, LocalRulestackRuleCategoryArgs

    CustomUrls List<string>
    Specifies a list of URL categories to match. Possible values include abortion, abused-drugs, adult, alcohol-and-tobacco, auctions, business-and-economy, command-and-control, computer-and-internet-info, content-delivery-networks, copyright-infringement, cryptocurrency, dating, dynamic-dns, educational-institutions, entertainment-and-arts, extremism, financial-services, gambling, games, government, grayware, hacking, health-and-medicine, high-risk, home-and-garden, hunting-and-fishing, insufficient-content, internet-communications-and-telephony, internet-portals, job-search, legal, low-risk, malware, medium-risk, military, motor-vehicles, music, newly-registered-domain, news, not-resolved, nudity, online-storage-and-backup, parked, peer-to-peer, personal-sites-and-blogs, philosophy-and-political-advocacy, phishing, private-ip-addresses, proxy-avoidance-and-anonymizers, questionable, real-estate, real-time-detection, recreation-and-hobbies, reference-and-research, religion, search-engines, sex-education, shareware-and-freeware, shopping, social-networking, society, sports, stock-advice-and-tools, streaming-media, swimsuits-and-intimate-apparel, training-and-tools, translation, travel, unknown, weapons, web-advertisements, web-based-email, and web-hosting.
    Feeds List<string>
    Specifies a list of feeds to match.
    CustomUrls []string
    Specifies a list of URL categories to match. Possible values include abortion, abused-drugs, adult, alcohol-and-tobacco, auctions, business-and-economy, command-and-control, computer-and-internet-info, content-delivery-networks, copyright-infringement, cryptocurrency, dating, dynamic-dns, educational-institutions, entertainment-and-arts, extremism, financial-services, gambling, games, government, grayware, hacking, health-and-medicine, high-risk, home-and-garden, hunting-and-fishing, insufficient-content, internet-communications-and-telephony, internet-portals, job-search, legal, low-risk, malware, medium-risk, military, motor-vehicles, music, newly-registered-domain, news, not-resolved, nudity, online-storage-and-backup, parked, peer-to-peer, personal-sites-and-blogs, philosophy-and-political-advocacy, phishing, private-ip-addresses, proxy-avoidance-and-anonymizers, questionable, real-estate, real-time-detection, recreation-and-hobbies, reference-and-research, religion, search-engines, sex-education, shareware-and-freeware, shopping, social-networking, society, sports, stock-advice-and-tools, streaming-media, swimsuits-and-intimate-apparel, training-and-tools, translation, travel, unknown, weapons, web-advertisements, web-based-email, and web-hosting.
    Feeds []string
    Specifies a list of feeds to match.
    customUrls List<String>
    Specifies a list of URL categories to match. Possible values include abortion, abused-drugs, adult, alcohol-and-tobacco, auctions, business-and-economy, command-and-control, computer-and-internet-info, content-delivery-networks, copyright-infringement, cryptocurrency, dating, dynamic-dns, educational-institutions, entertainment-and-arts, extremism, financial-services, gambling, games, government, grayware, hacking, health-and-medicine, high-risk, home-and-garden, hunting-and-fishing, insufficient-content, internet-communications-and-telephony, internet-portals, job-search, legal, low-risk, malware, medium-risk, military, motor-vehicles, music, newly-registered-domain, news, not-resolved, nudity, online-storage-and-backup, parked, peer-to-peer, personal-sites-and-blogs, philosophy-and-political-advocacy, phishing, private-ip-addresses, proxy-avoidance-and-anonymizers, questionable, real-estate, real-time-detection, recreation-and-hobbies, reference-and-research, religion, search-engines, sex-education, shareware-and-freeware, shopping, social-networking, society, sports, stock-advice-and-tools, streaming-media, swimsuits-and-intimate-apparel, training-and-tools, translation, travel, unknown, weapons, web-advertisements, web-based-email, and web-hosting.
    feeds List<String>
    Specifies a list of feeds to match.
    customUrls string[]
    Specifies a list of URL categories to match. Possible values include abortion, abused-drugs, adult, alcohol-and-tobacco, auctions, business-and-economy, command-and-control, computer-and-internet-info, content-delivery-networks, copyright-infringement, cryptocurrency, dating, dynamic-dns, educational-institutions, entertainment-and-arts, extremism, financial-services, gambling, games, government, grayware, hacking, health-and-medicine, high-risk, home-and-garden, hunting-and-fishing, insufficient-content, internet-communications-and-telephony, internet-portals, job-search, legal, low-risk, malware, medium-risk, military, motor-vehicles, music, newly-registered-domain, news, not-resolved, nudity, online-storage-and-backup, parked, peer-to-peer, personal-sites-and-blogs, philosophy-and-political-advocacy, phishing, private-ip-addresses, proxy-avoidance-and-anonymizers, questionable, real-estate, real-time-detection, recreation-and-hobbies, reference-and-research, religion, search-engines, sex-education, shareware-and-freeware, shopping, social-networking, society, sports, stock-advice-and-tools, streaming-media, swimsuits-and-intimate-apparel, training-and-tools, translation, travel, unknown, weapons, web-advertisements, web-based-email, and web-hosting.
    feeds string[]
    Specifies a list of feeds to match.
    custom_urls Sequence[str]
    Specifies a list of URL categories to match. Possible values include abortion, abused-drugs, adult, alcohol-and-tobacco, auctions, business-and-economy, command-and-control, computer-and-internet-info, content-delivery-networks, copyright-infringement, cryptocurrency, dating, dynamic-dns, educational-institutions, entertainment-and-arts, extremism, financial-services, gambling, games, government, grayware, hacking, health-and-medicine, high-risk, home-and-garden, hunting-and-fishing, insufficient-content, internet-communications-and-telephony, internet-portals, job-search, legal, low-risk, malware, medium-risk, military, motor-vehicles, music, newly-registered-domain, news, not-resolved, nudity, online-storage-and-backup, parked, peer-to-peer, personal-sites-and-blogs, philosophy-and-political-advocacy, phishing, private-ip-addresses, proxy-avoidance-and-anonymizers, questionable, real-estate, real-time-detection, recreation-and-hobbies, reference-and-research, religion, search-engines, sex-education, shareware-and-freeware, shopping, social-networking, society, sports, stock-advice-and-tools, streaming-media, swimsuits-and-intimate-apparel, training-and-tools, translation, travel, unknown, weapons, web-advertisements, web-based-email, and web-hosting.
    feeds Sequence[str]
    Specifies a list of feeds to match.
    customUrls List<String>
    Specifies a list of URL categories to match. Possible values include abortion, abused-drugs, adult, alcohol-and-tobacco, auctions, business-and-economy, command-and-control, computer-and-internet-info, content-delivery-networks, copyright-infringement, cryptocurrency, dating, dynamic-dns, educational-institutions, entertainment-and-arts, extremism, financial-services, gambling, games, government, grayware, hacking, health-and-medicine, high-risk, home-and-garden, hunting-and-fishing, insufficient-content, internet-communications-and-telephony, internet-portals, job-search, legal, low-risk, malware, medium-risk, military, motor-vehicles, music, newly-registered-domain, news, not-resolved, nudity, online-storage-and-backup, parked, peer-to-peer, personal-sites-and-blogs, philosophy-and-political-advocacy, phishing, private-ip-addresses, proxy-avoidance-and-anonymizers, questionable, real-estate, real-time-detection, recreation-and-hobbies, reference-and-research, religion, search-engines, sex-education, shareware-and-freeware, shopping, social-networking, society, sports, stock-advice-and-tools, streaming-media, swimsuits-and-intimate-apparel, training-and-tools, translation, travel, unknown, weapons, web-advertisements, web-based-email, and web-hosting.
    feeds List<String>
    Specifies a list of feeds to match.

    LocalRulestackRuleDestination, LocalRulestackRuleDestinationArgs

    Cidrs List<string>
    Specifies a list of CIDR's.
    Countries List<string>
    Specifies a list of ISO3361-1 Alpha-2 Country codes. Possible values include AF, AX, AL, DZ, AS, AD, AO, AI, AQ, AG, AR, AM, AW, AU, AT, AZ, BS, BH, BD, BB, BY, BE, BZ, BJ, BM, BT, BO, BQ, BA, BW, BV, BR, IO, BN, BG, BF, BI, KH, CM, CA, CV, KY, CF, TD, CL, CN, CX, CC, CO, KM, CG, CD, CK, CR, CI, HR, CU, CW, CY, CZ, DK, DJ, DM, DO, EC, EG, SV, GQ, ER, EE, ET, FK, FO, FJ, FI, FR, GF, PF, TF, GA, GM, GE, DE, GH, GI, GR, GL, GD, GP, GU, GT, GG, GN, GW, GY, HT, HM, VA, HN, HK, HU, IS, IN, ID, IR, IQ, IE, IM, IL, IT, JM, JP, JE, JO, KZ, KE, KI, KP, KR, KW, KG, LA, LV, LB, LS, LR, LY, LI, LT, LU, MO, MK, MG, MW, MY, MV, ML, MT, MH, MQ, MR, MU, YT, MX, FM, MD, MC, MN, ME, MS, MA, MZ, MM, NA, NR, NP, NL, NC, NZ, NI, NE, NG, NU, NF, MP, NO, OM, PK, PW, PS, PA, PG, PY, PE, PH, PN, PL, PT, PR, QA, RE, RO, RU, RW, BL, SH, KN, LC, MF, PM, VC, WS, SM, ST, SA, SN, RS, SC, SL, SG, SX, SK, SI, SB, SO, ZA, GS, SS, ES, LK, SD, SR, SJ, SZ, SE, CH, SY, TW, TJ, TZ, TH, TL, TG, TK, TO, TT, TN, TR, TM, TC, TV, UG, UA, AE, GB, US, UM, UY, UZ, VU, VE, VN, VG, VI, WF, EH, YE, ZM, ZW
    Feeds List<string>
    Specifies a list of Feeds.
    LocalRulestackFqdnListIds List<string>

    Specifies a list of FQDN lists.

    Note: This is a list of names of FQDN Lists configured on the same Local Rulestack as this Rule is being created.

    LocalRulestackPrefixListIds List<string>

    Specifies a list of Prefix Lists.

    Note: This is a list of names of Prefix Lists configured on the same Local Rulestack as this Rule is being created.

    Cidrs []string
    Specifies a list of CIDR's.
    Countries []string
    Specifies a list of ISO3361-1 Alpha-2 Country codes. Possible values include AF, AX, AL, DZ, AS, AD, AO, AI, AQ, AG, AR, AM, AW, AU, AT, AZ, BS, BH, BD, BB, BY, BE, BZ, BJ, BM, BT, BO, BQ, BA, BW, BV, BR, IO, BN, BG, BF, BI, KH, CM, CA, CV, KY, CF, TD, CL, CN, CX, CC, CO, KM, CG, CD, CK, CR, CI, HR, CU, CW, CY, CZ, DK, DJ, DM, DO, EC, EG, SV, GQ, ER, EE, ET, FK, FO, FJ, FI, FR, GF, PF, TF, GA, GM, GE, DE, GH, GI, GR, GL, GD, GP, GU, GT, GG, GN, GW, GY, HT, HM, VA, HN, HK, HU, IS, IN, ID, IR, IQ, IE, IM, IL, IT, JM, JP, JE, JO, KZ, KE, KI, KP, KR, KW, KG, LA, LV, LB, LS, LR, LY, LI, LT, LU, MO, MK, MG, MW, MY, MV, ML, MT, MH, MQ, MR, MU, YT, MX, FM, MD, MC, MN, ME, MS, MA, MZ, MM, NA, NR, NP, NL, NC, NZ, NI, NE, NG, NU, NF, MP, NO, OM, PK, PW, PS, PA, PG, PY, PE, PH, PN, PL, PT, PR, QA, RE, RO, RU, RW, BL, SH, KN, LC, MF, PM, VC, WS, SM, ST, SA, SN, RS, SC, SL, SG, SX, SK, SI, SB, SO, ZA, GS, SS, ES, LK, SD, SR, SJ, SZ, SE, CH, SY, TW, TJ, TZ, TH, TL, TG, TK, TO, TT, TN, TR, TM, TC, TV, UG, UA, AE, GB, US, UM, UY, UZ, VU, VE, VN, VG, VI, WF, EH, YE, ZM, ZW
    Feeds []string
    Specifies a list of Feeds.
    LocalRulestackFqdnListIds []string

    Specifies a list of FQDN lists.

    Note: This is a list of names of FQDN Lists configured on the same Local Rulestack as this Rule is being created.

    LocalRulestackPrefixListIds []string

    Specifies a list of Prefix Lists.

    Note: This is a list of names of Prefix Lists configured on the same Local Rulestack as this Rule is being created.

    cidrs List<String>
    Specifies a list of CIDR's.
    countries List<String>
    Specifies a list of ISO3361-1 Alpha-2 Country codes. Possible values include AF, AX, AL, DZ, AS, AD, AO, AI, AQ, AG, AR, AM, AW, AU, AT, AZ, BS, BH, BD, BB, BY, BE, BZ, BJ, BM, BT, BO, BQ, BA, BW, BV, BR, IO, BN, BG, BF, BI, KH, CM, CA, CV, KY, CF, TD, CL, CN, CX, CC, CO, KM, CG, CD, CK, CR, CI, HR, CU, CW, CY, CZ, DK, DJ, DM, DO, EC, EG, SV, GQ, ER, EE, ET, FK, FO, FJ, FI, FR, GF, PF, TF, GA, GM, GE, DE, GH, GI, GR, GL, GD, GP, GU, GT, GG, GN, GW, GY, HT, HM, VA, HN, HK, HU, IS, IN, ID, IR, IQ, IE, IM, IL, IT, JM, JP, JE, JO, KZ, KE, KI, KP, KR, KW, KG, LA, LV, LB, LS, LR, LY, LI, LT, LU, MO, MK, MG, MW, MY, MV, ML, MT, MH, MQ, MR, MU, YT, MX, FM, MD, MC, MN, ME, MS, MA, MZ, MM, NA, NR, NP, NL, NC, NZ, NI, NE, NG, NU, NF, MP, NO, OM, PK, PW, PS, PA, PG, PY, PE, PH, PN, PL, PT, PR, QA, RE, RO, RU, RW, BL, SH, KN, LC, MF, PM, VC, WS, SM, ST, SA, SN, RS, SC, SL, SG, SX, SK, SI, SB, SO, ZA, GS, SS, ES, LK, SD, SR, SJ, SZ, SE, CH, SY, TW, TJ, TZ, TH, TL, TG, TK, TO, TT, TN, TR, TM, TC, TV, UG, UA, AE, GB, US, UM, UY, UZ, VU, VE, VN, VG, VI, WF, EH, YE, ZM, ZW
    feeds List<String>
    Specifies a list of Feeds.
    localRulestackFqdnListIds List<String>

    Specifies a list of FQDN lists.

    Note: This is a list of names of FQDN Lists configured on the same Local Rulestack as this Rule is being created.

    localRulestackPrefixListIds List<String>

    Specifies a list of Prefix Lists.

    Note: This is a list of names of Prefix Lists configured on the same Local Rulestack as this Rule is being created.

    cidrs string[]
    Specifies a list of CIDR's.
    countries string[]
    Specifies a list of ISO3361-1 Alpha-2 Country codes. Possible values include AF, AX, AL, DZ, AS, AD, AO, AI, AQ, AG, AR, AM, AW, AU, AT, AZ, BS, BH, BD, BB, BY, BE, BZ, BJ, BM, BT, BO, BQ, BA, BW, BV, BR, IO, BN, BG, BF, BI, KH, CM, CA, CV, KY, CF, TD, CL, CN, CX, CC, CO, KM, CG, CD, CK, CR, CI, HR, CU, CW, CY, CZ, DK, DJ, DM, DO, EC, EG, SV, GQ, ER, EE, ET, FK, FO, FJ, FI, FR, GF, PF, TF, GA, GM, GE, DE, GH, GI, GR, GL, GD, GP, GU, GT, GG, GN, GW, GY, HT, HM, VA, HN, HK, HU, IS, IN, ID, IR, IQ, IE, IM, IL, IT, JM, JP, JE, JO, KZ, KE, KI, KP, KR, KW, KG, LA, LV, LB, LS, LR, LY, LI, LT, LU, MO, MK, MG, MW, MY, MV, ML, MT, MH, MQ, MR, MU, YT, MX, FM, MD, MC, MN, ME, MS, MA, MZ, MM, NA, NR, NP, NL, NC, NZ, NI, NE, NG, NU, NF, MP, NO, OM, PK, PW, PS, PA, PG, PY, PE, PH, PN, PL, PT, PR, QA, RE, RO, RU, RW, BL, SH, KN, LC, MF, PM, VC, WS, SM, ST, SA, SN, RS, SC, SL, SG, SX, SK, SI, SB, SO, ZA, GS, SS, ES, LK, SD, SR, SJ, SZ, SE, CH, SY, TW, TJ, TZ, TH, TL, TG, TK, TO, TT, TN, TR, TM, TC, TV, UG, UA, AE, GB, US, UM, UY, UZ, VU, VE, VN, VG, VI, WF, EH, YE, ZM, ZW
    feeds string[]
    Specifies a list of Feeds.
    localRulestackFqdnListIds string[]

    Specifies a list of FQDN lists.

    Note: This is a list of names of FQDN Lists configured on the same Local Rulestack as this Rule is being created.

    localRulestackPrefixListIds string[]

    Specifies a list of Prefix Lists.

    Note: This is a list of names of Prefix Lists configured on the same Local Rulestack as this Rule is being created.

    cidrs Sequence[str]
    Specifies a list of CIDR's.
    countries Sequence[str]
    Specifies a list of ISO3361-1 Alpha-2 Country codes. Possible values include AF, AX, AL, DZ, AS, AD, AO, AI, AQ, AG, AR, AM, AW, AU, AT, AZ, BS, BH, BD, BB, BY, BE, BZ, BJ, BM, BT, BO, BQ, BA, BW, BV, BR, IO, BN, BG, BF, BI, KH, CM, CA, CV, KY, CF, TD, CL, CN, CX, CC, CO, KM, CG, CD, CK, CR, CI, HR, CU, CW, CY, CZ, DK, DJ, DM, DO, EC, EG, SV, GQ, ER, EE, ET, FK, FO, FJ, FI, FR, GF, PF, TF, GA, GM, GE, DE, GH, GI, GR, GL, GD, GP, GU, GT, GG, GN, GW, GY, HT, HM, VA, HN, HK, HU, IS, IN, ID, IR, IQ, IE, IM, IL, IT, JM, JP, JE, JO, KZ, KE, KI, KP, KR, KW, KG, LA, LV, LB, LS, LR, LY, LI, LT, LU, MO, MK, MG, MW, MY, MV, ML, MT, MH, MQ, MR, MU, YT, MX, FM, MD, MC, MN, ME, MS, MA, MZ, MM, NA, NR, NP, NL, NC, NZ, NI, NE, NG, NU, NF, MP, NO, OM, PK, PW, PS, PA, PG, PY, PE, PH, PN, PL, PT, PR, QA, RE, RO, RU, RW, BL, SH, KN, LC, MF, PM, VC, WS, SM, ST, SA, SN, RS, SC, SL, SG, SX, SK, SI, SB, SO, ZA, GS, SS, ES, LK, SD, SR, SJ, SZ, SE, CH, SY, TW, TJ, TZ, TH, TL, TG, TK, TO, TT, TN, TR, TM, TC, TV, UG, UA, AE, GB, US, UM, UY, UZ, VU, VE, VN, VG, VI, WF, EH, YE, ZM, ZW
    feeds Sequence[str]
    Specifies a list of Feeds.
    local_rulestack_fqdn_list_ids Sequence[str]

    Specifies a list of FQDN lists.

    Note: This is a list of names of FQDN Lists configured on the same Local Rulestack as this Rule is being created.

    local_rulestack_prefix_list_ids Sequence[str]

    Specifies a list of Prefix Lists.

    Note: This is a list of names of Prefix Lists configured on the same Local Rulestack as this Rule is being created.

    cidrs List<String>
    Specifies a list of CIDR's.
    countries List<String>
    Specifies a list of ISO3361-1 Alpha-2 Country codes. Possible values include AF, AX, AL, DZ, AS, AD, AO, AI, AQ, AG, AR, AM, AW, AU, AT, AZ, BS, BH, BD, BB, BY, BE, BZ, BJ, BM, BT, BO, BQ, BA, BW, BV, BR, IO, BN, BG, BF, BI, KH, CM, CA, CV, KY, CF, TD, CL, CN, CX, CC, CO, KM, CG, CD, CK, CR, CI, HR, CU, CW, CY, CZ, DK, DJ, DM, DO, EC, EG, SV, GQ, ER, EE, ET, FK, FO, FJ, FI, FR, GF, PF, TF, GA, GM, GE, DE, GH, GI, GR, GL, GD, GP, GU, GT, GG, GN, GW, GY, HT, HM, VA, HN, HK, HU, IS, IN, ID, IR, IQ, IE, IM, IL, IT, JM, JP, JE, JO, KZ, KE, KI, KP, KR, KW, KG, LA, LV, LB, LS, LR, LY, LI, LT, LU, MO, MK, MG, MW, MY, MV, ML, MT, MH, MQ, MR, MU, YT, MX, FM, MD, MC, MN, ME, MS, MA, MZ, MM, NA, NR, NP, NL, NC, NZ, NI, NE, NG, NU, NF, MP, NO, OM, PK, PW, PS, PA, PG, PY, PE, PH, PN, PL, PT, PR, QA, RE, RO, RU, RW, BL, SH, KN, LC, MF, PM, VC, WS, SM, ST, SA, SN, RS, SC, SL, SG, SX, SK, SI, SB, SO, ZA, GS, SS, ES, LK, SD, SR, SJ, SZ, SE, CH, SY, TW, TJ, TZ, TH, TL, TG, TK, TO, TT, TN, TR, TM, TC, TV, UG, UA, AE, GB, US, UM, UY, UZ, VU, VE, VN, VG, VI, WF, EH, YE, ZM, ZW
    feeds List<String>
    Specifies a list of Feeds.
    localRulestackFqdnListIds List<String>

    Specifies a list of FQDN lists.

    Note: This is a list of names of FQDN Lists configured on the same Local Rulestack as this Rule is being created.

    localRulestackPrefixListIds List<String>

    Specifies a list of Prefix Lists.

    Note: This is a list of names of Prefix Lists configured on the same Local Rulestack as this Rule is being created.

    LocalRulestackRuleSource, LocalRulestackRuleSourceArgs

    Cidrs List<string>
    Specifies a list of CIDRs.
    Countries List<string>
    Specifies a list of ISO3361-1 Alpha-2 Country codes. Possible values include AF, AX, AL, DZ, AS, AD, AO, AI, AQ, AG, AR, AM, AW, AU, AT, AZ, BS, BH, BD, BB, BY, BE, BZ, BJ, BM, BT, BO, BQ, BA, BW, BV, BR, IO, BN, BG, BF, BI, KH, CM, CA, CV, KY, CF, TD, CL, CN, CX, CC, CO, KM, CG, CD, CK, CR, CI, HR, CU, CW, CY, CZ, DK, DJ, DM, DO, EC, EG, SV, GQ, ER, EE, ET, FK, FO, FJ, FI, FR, GF, PF, TF, GA, GM, GE, DE, GH, GI, GR, GL, GD, GP, GU, GT, GG, GN, GW, GY, HT, HM, VA, HN, HK, HU, IS, IN, ID, IR, IQ, IE, IM, IL, IT, JM, JP, JE, JO, KZ, KE, KI, KP, KR, KW, KG, LA, LV, LB, LS, LR, LY, LI, LT, LU, MO, MK, MG, MW, MY, MV, ML, MT, MH, MQ, MR, MU, YT, MX, FM, MD, MC, MN, ME, MS, MA, MZ, MM, NA, NR, NP, NL, NC, NZ, NI, NE, NG, NU, NF, MP, NO, OM, PK, PW, PS, PA, PG, PY, PE, PH, PN, PL, PT, PR, QA, RE, RO, RU, RW, BL, SH, KN, LC, MF, PM, VC, WS, SM, ST, SA, SN, RS, SC, SL, SG, SX, SK, SI, SB, SO, ZA, GS, SS, ES, LK, SD, SR, SJ, SZ, SE, CH, SY, TW, TJ, TZ, TH, TL, TG, TK, TO, TT, TN, TR, TM, TC, TV, UG, UA, AE, GB, US, UM, UY, UZ, VU, VE, VN, VG, VI, WF, EH, YE, ZM, ZW
    Feeds List<string>
    Specifies a list of Feeds.
    LocalRulestackPrefixListIds List<string>

    Specifies a list of Prefix Lists.

    Note: This is a list of names of Prefix Lists configured on the same Local Rulestack as this Rule is being created.

    Cidrs []string
    Specifies a list of CIDRs.
    Countries []string
    Specifies a list of ISO3361-1 Alpha-2 Country codes. Possible values include AF, AX, AL, DZ, AS, AD, AO, AI, AQ, AG, AR, AM, AW, AU, AT, AZ, BS, BH, BD, BB, BY, BE, BZ, BJ, BM, BT, BO, BQ, BA, BW, BV, BR, IO, BN, BG, BF, BI, KH, CM, CA, CV, KY, CF, TD, CL, CN, CX, CC, CO, KM, CG, CD, CK, CR, CI, HR, CU, CW, CY, CZ, DK, DJ, DM, DO, EC, EG, SV, GQ, ER, EE, ET, FK, FO, FJ, FI, FR, GF, PF, TF, GA, GM, GE, DE, GH, GI, GR, GL, GD, GP, GU, GT, GG, GN, GW, GY, HT, HM, VA, HN, HK, HU, IS, IN, ID, IR, IQ, IE, IM, IL, IT, JM, JP, JE, JO, KZ, KE, KI, KP, KR, KW, KG, LA, LV, LB, LS, LR, LY, LI, LT, LU, MO, MK, MG, MW, MY, MV, ML, MT, MH, MQ, MR, MU, YT, MX, FM, MD, MC, MN, ME, MS, MA, MZ, MM, NA, NR, NP, NL, NC, NZ, NI, NE, NG, NU, NF, MP, NO, OM, PK, PW, PS, PA, PG, PY, PE, PH, PN, PL, PT, PR, QA, RE, RO, RU, RW, BL, SH, KN, LC, MF, PM, VC, WS, SM, ST, SA, SN, RS, SC, SL, SG, SX, SK, SI, SB, SO, ZA, GS, SS, ES, LK, SD, SR, SJ, SZ, SE, CH, SY, TW, TJ, TZ, TH, TL, TG, TK, TO, TT, TN, TR, TM, TC, TV, UG, UA, AE, GB, US, UM, UY, UZ, VU, VE, VN, VG, VI, WF, EH, YE, ZM, ZW
    Feeds []string
    Specifies a list of Feeds.
    LocalRulestackPrefixListIds []string

    Specifies a list of Prefix Lists.

    Note: This is a list of names of Prefix Lists configured on the same Local Rulestack as this Rule is being created.

    cidrs List<String>
    Specifies a list of CIDRs.
    countries List<String>
    Specifies a list of ISO3361-1 Alpha-2 Country codes. Possible values include AF, AX, AL, DZ, AS, AD, AO, AI, AQ, AG, AR, AM, AW, AU, AT, AZ, BS, BH, BD, BB, BY, BE, BZ, BJ, BM, BT, BO, BQ, BA, BW, BV, BR, IO, BN, BG, BF, BI, KH, CM, CA, CV, KY, CF, TD, CL, CN, CX, CC, CO, KM, CG, CD, CK, CR, CI, HR, CU, CW, CY, CZ, DK, DJ, DM, DO, EC, EG, SV, GQ, ER, EE, ET, FK, FO, FJ, FI, FR, GF, PF, TF, GA, GM, GE, DE, GH, GI, GR, GL, GD, GP, GU, GT, GG, GN, GW, GY, HT, HM, VA, HN, HK, HU, IS, IN, ID, IR, IQ, IE, IM, IL, IT, JM, JP, JE, JO, KZ, KE, KI, KP, KR, KW, KG, LA, LV, LB, LS, LR, LY, LI, LT, LU, MO, MK, MG, MW, MY, MV, ML, MT, MH, MQ, MR, MU, YT, MX, FM, MD, MC, MN, ME, MS, MA, MZ, MM, NA, NR, NP, NL, NC, NZ, NI, NE, NG, NU, NF, MP, NO, OM, PK, PW, PS, PA, PG, PY, PE, PH, PN, PL, PT, PR, QA, RE, RO, RU, RW, BL, SH, KN, LC, MF, PM, VC, WS, SM, ST, SA, SN, RS, SC, SL, SG, SX, SK, SI, SB, SO, ZA, GS, SS, ES, LK, SD, SR, SJ, SZ, SE, CH, SY, TW, TJ, TZ, TH, TL, TG, TK, TO, TT, TN, TR, TM, TC, TV, UG, UA, AE, GB, US, UM, UY, UZ, VU, VE, VN, VG, VI, WF, EH, YE, ZM, ZW
    feeds List<String>
    Specifies a list of Feeds.
    localRulestackPrefixListIds List<String>

    Specifies a list of Prefix Lists.

    Note: This is a list of names of Prefix Lists configured on the same Local Rulestack as this Rule is being created.

    cidrs string[]
    Specifies a list of CIDRs.
    countries string[]
    Specifies a list of ISO3361-1 Alpha-2 Country codes. Possible values include AF, AX, AL, DZ, AS, AD, AO, AI, AQ, AG, AR, AM, AW, AU, AT, AZ, BS, BH, BD, BB, BY, BE, BZ, BJ, BM, BT, BO, BQ, BA, BW, BV, BR, IO, BN, BG, BF, BI, KH, CM, CA, CV, KY, CF, TD, CL, CN, CX, CC, CO, KM, CG, CD, CK, CR, CI, HR, CU, CW, CY, CZ, DK, DJ, DM, DO, EC, EG, SV, GQ, ER, EE, ET, FK, FO, FJ, FI, FR, GF, PF, TF, GA, GM, GE, DE, GH, GI, GR, GL, GD, GP, GU, GT, GG, GN, GW, GY, HT, HM, VA, HN, HK, HU, IS, IN, ID, IR, IQ, IE, IM, IL, IT, JM, JP, JE, JO, KZ, KE, KI, KP, KR, KW, KG, LA, LV, LB, LS, LR, LY, LI, LT, LU, MO, MK, MG, MW, MY, MV, ML, MT, MH, MQ, MR, MU, YT, MX, FM, MD, MC, MN, ME, MS, MA, MZ, MM, NA, NR, NP, NL, NC, NZ, NI, NE, NG, NU, NF, MP, NO, OM, PK, PW, PS, PA, PG, PY, PE, PH, PN, PL, PT, PR, QA, RE, RO, RU, RW, BL, SH, KN, LC, MF, PM, VC, WS, SM, ST, SA, SN, RS, SC, SL, SG, SX, SK, SI, SB, SO, ZA, GS, SS, ES, LK, SD, SR, SJ, SZ, SE, CH, SY, TW, TJ, TZ, TH, TL, TG, TK, TO, TT, TN, TR, TM, TC, TV, UG, UA, AE, GB, US, UM, UY, UZ, VU, VE, VN, VG, VI, WF, EH, YE, ZM, ZW
    feeds string[]
    Specifies a list of Feeds.
    localRulestackPrefixListIds string[]

    Specifies a list of Prefix Lists.

    Note: This is a list of names of Prefix Lists configured on the same Local Rulestack as this Rule is being created.

    cidrs Sequence[str]
    Specifies a list of CIDRs.
    countries Sequence[str]
    Specifies a list of ISO3361-1 Alpha-2 Country codes. Possible values include AF, AX, AL, DZ, AS, AD, AO, AI, AQ, AG, AR, AM, AW, AU, AT, AZ, BS, BH, BD, BB, BY, BE, BZ, BJ, BM, BT, BO, BQ, BA, BW, BV, BR, IO, BN, BG, BF, BI, KH, CM, CA, CV, KY, CF, TD, CL, CN, CX, CC, CO, KM, CG, CD, CK, CR, CI, HR, CU, CW, CY, CZ, DK, DJ, DM, DO, EC, EG, SV, GQ, ER, EE, ET, FK, FO, FJ, FI, FR, GF, PF, TF, GA, GM, GE, DE, GH, GI, GR, GL, GD, GP, GU, GT, GG, GN, GW, GY, HT, HM, VA, HN, HK, HU, IS, IN, ID, IR, IQ, IE, IM, IL, IT, JM, JP, JE, JO, KZ, KE, KI, KP, KR, KW, KG, LA, LV, LB, LS, LR, LY, LI, LT, LU, MO, MK, MG, MW, MY, MV, ML, MT, MH, MQ, MR, MU, YT, MX, FM, MD, MC, MN, ME, MS, MA, MZ, MM, NA, NR, NP, NL, NC, NZ, NI, NE, NG, NU, NF, MP, NO, OM, PK, PW, PS, PA, PG, PY, PE, PH, PN, PL, PT, PR, QA, RE, RO, RU, RW, BL, SH, KN, LC, MF, PM, VC, WS, SM, ST, SA, SN, RS, SC, SL, SG, SX, SK, SI, SB, SO, ZA, GS, SS, ES, LK, SD, SR, SJ, SZ, SE, CH, SY, TW, TJ, TZ, TH, TL, TG, TK, TO, TT, TN, TR, TM, TC, TV, UG, UA, AE, GB, US, UM, UY, UZ, VU, VE, VN, VG, VI, WF, EH, YE, ZM, ZW
    feeds Sequence[str]
    Specifies a list of Feeds.
    local_rulestack_prefix_list_ids Sequence[str]

    Specifies a list of Prefix Lists.

    Note: This is a list of names of Prefix Lists configured on the same Local Rulestack as this Rule is being created.

    cidrs List<String>
    Specifies a list of CIDRs.
    countries List<String>
    Specifies a list of ISO3361-1 Alpha-2 Country codes. Possible values include AF, AX, AL, DZ, AS, AD, AO, AI, AQ, AG, AR, AM, AW, AU, AT, AZ, BS, BH, BD, BB, BY, BE, BZ, BJ, BM, BT, BO, BQ, BA, BW, BV, BR, IO, BN, BG, BF, BI, KH, CM, CA, CV, KY, CF, TD, CL, CN, CX, CC, CO, KM, CG, CD, CK, CR, CI, HR, CU, CW, CY, CZ, DK, DJ, DM, DO, EC, EG, SV, GQ, ER, EE, ET, FK, FO, FJ, FI, FR, GF, PF, TF, GA, GM, GE, DE, GH, GI, GR, GL, GD, GP, GU, GT, GG, GN, GW, GY, HT, HM, VA, HN, HK, HU, IS, IN, ID, IR, IQ, IE, IM, IL, IT, JM, JP, JE, JO, KZ, KE, KI, KP, KR, KW, KG, LA, LV, LB, LS, LR, LY, LI, LT, LU, MO, MK, MG, MW, MY, MV, ML, MT, MH, MQ, MR, MU, YT, MX, FM, MD, MC, MN, ME, MS, MA, MZ, MM, NA, NR, NP, NL, NC, NZ, NI, NE, NG, NU, NF, MP, NO, OM, PK, PW, PS, PA, PG, PY, PE, PH, PN, PL, PT, PR, QA, RE, RO, RU, RW, BL, SH, KN, LC, MF, PM, VC, WS, SM, ST, SA, SN, RS, SC, SL, SG, SX, SK, SI, SB, SO, ZA, GS, SS, ES, LK, SD, SR, SJ, SZ, SE, CH, SY, TW, TJ, TZ, TH, TL, TG, TK, TO, TT, TN, TR, TM, TC, TV, UG, UA, AE, GB, US, UM, UY, UZ, VU, VE, VN, VG, VI, WF, EH, YE, ZM, ZW
    feeds List<String>
    Specifies a list of Feeds.
    localRulestackPrefixListIds List<String>

    Specifies a list of Prefix Lists.

    Note: This is a list of names of Prefix Lists configured on the same Local Rulestack as this Rule is being created.

    Import

    Palo Alto Local Rulestack Rules can be imported using the resource id, e.g.

    $ pulumi import azure:paloalto/localRulestackRule:LocalRulestackRule example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/mygroup1/providers/PaloAltoNetworks.Cloudngfw/localRulestacks/myLocalRulestack/localRules/myRule1
    

    Package Details

    Repository
    Azure Classic pulumi/pulumi-azure
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the azurerm Terraform Provider.
    azure logo

    We recommend using Azure Native.

    Azure Classic v5.67.1 published on Tuesday, Feb 27, 2024 by Pulumi