We recommend using Azure Native.
Azure v6.32.0 published on Thursday, Feb 5, 2026 by Pulumi
Manages a Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";
const example = new azure.core.ResourceGroup("example", {
name: "example-resources",
location: "West Europe",
});
const examplePublicIp = new azure.network.PublicIp("example", {
name: "example-public-ip",
resourceGroupName: example.name,
location: example.location,
allocationMethod: "Static",
tags: {
environment: "Production",
},
});
const exampleVirtualWan = new azure.network.VirtualWan("example", {
name: "example-virtualwan",
resourceGroupName: example.name,
location: example.location,
});
const exampleVirtualHub = new azure.network.VirtualHub("example", {
name: "example-virtualhub",
resourceGroupName: example.name,
location: example.location,
virtualWanId: exampleVirtualWan.id,
addressPrefix: "10.0.0.0/23",
tags: {
hubSaaSPreview: "true",
},
});
const exampleVirtualNetworkAppliance = new azure.paloalto.VirtualNetworkAppliance("example", {
name: "example-appliance",
virtualHubId: exampleVirtualHub.id,
});
const exampleNextGenerationFirewallVirtualHubStrataCloudManager = new azure.paloalto.NextGenerationFirewallVirtualHubStrataCloudManager("example", {
name: "example",
resourceGroupName: "example",
location: "West Europe",
strataCloudManagerTenantName: "example",
networkProfile: {
publicIpAddressIds: [examplePublicIp.id],
virtualHubId: exampleVirtualHub.id,
networkVirtualApplianceId: exampleVirtualNetworkAppliance.id,
},
});
import pulumi
import pulumi_azure as azure
example = azure.core.ResourceGroup("example",
name="example-resources",
location="West Europe")
example_public_ip = azure.network.PublicIp("example",
name="example-public-ip",
resource_group_name=example.name,
location=example.location,
allocation_method="Static",
tags={
"environment": "Production",
})
example_virtual_wan = azure.network.VirtualWan("example",
name="example-virtualwan",
resource_group_name=example.name,
location=example.location)
example_virtual_hub = azure.network.VirtualHub("example",
name="example-virtualhub",
resource_group_name=example.name,
location=example.location,
virtual_wan_id=example_virtual_wan.id,
address_prefix="10.0.0.0/23",
tags={
"hubSaaSPreview": "true",
})
example_virtual_network_appliance = azure.paloalto.VirtualNetworkAppliance("example",
name="example-appliance",
virtual_hub_id=example_virtual_hub.id)
example_next_generation_firewall_virtual_hub_strata_cloud_manager = azure.paloalto.NextGenerationFirewallVirtualHubStrataCloudManager("example",
name="example",
resource_group_name="example",
location="West Europe",
strata_cloud_manager_tenant_name="example",
network_profile={
"public_ip_address_ids": [example_public_ip.id],
"virtual_hub_id": example_virtual_hub.id,
"network_virtual_appliance_id": example_virtual_network_appliance.id,
})
package main
import (
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/core"
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/network"
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/paloalto"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
Name: pulumi.String("example-resources"),
Location: pulumi.String("West Europe"),
})
if err != nil {
return err
}
examplePublicIp, err := network.NewPublicIp(ctx, "example", &network.PublicIpArgs{
Name: pulumi.String("example-public-ip"),
ResourceGroupName: example.Name,
Location: example.Location,
AllocationMethod: pulumi.String("Static"),
Tags: pulumi.StringMap{
"environment": pulumi.String("Production"),
},
})
if err != nil {
return err
}
exampleVirtualWan, err := network.NewVirtualWan(ctx, "example", &network.VirtualWanArgs{
Name: pulumi.String("example-virtualwan"),
ResourceGroupName: example.Name,
Location: example.Location,
})
if err != nil {
return err
}
exampleVirtualHub, err := network.NewVirtualHub(ctx, "example", &network.VirtualHubArgs{
Name: pulumi.String("example-virtualhub"),
ResourceGroupName: example.Name,
Location: example.Location,
VirtualWanId: exampleVirtualWan.ID(),
AddressPrefix: pulumi.String("10.0.0.0/23"),
Tags: pulumi.StringMap{
"hubSaaSPreview": pulumi.String("true"),
},
})
if err != nil {
return err
}
exampleVirtualNetworkAppliance, err := paloalto.NewVirtualNetworkAppliance(ctx, "example", &paloalto.VirtualNetworkApplianceArgs{
Name: pulumi.String("example-appliance"),
VirtualHubId: exampleVirtualHub.ID(),
})
if err != nil {
return err
}
_, err = paloalto.NewNextGenerationFirewallVirtualHubStrataCloudManager(ctx, "example", &paloalto.NextGenerationFirewallVirtualHubStrataCloudManagerArgs{
Name: pulumi.String("example"),
ResourceGroupName: pulumi.String("example"),
Location: pulumi.String("West Europe"),
StrataCloudManagerTenantName: pulumi.String("example"),
NetworkProfile: &paloalto.NextGenerationFirewallVirtualHubStrataCloudManagerNetworkProfileArgs{
PublicIpAddressIds: pulumi.StringArray{
examplePublicIp.ID(),
},
VirtualHubId: exampleVirtualHub.ID(),
NetworkVirtualApplianceId: exampleVirtualNetworkAppliance.ID(),
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Azure = Pulumi.Azure;
return await Deployment.RunAsync(() =>
{
var example = new Azure.Core.ResourceGroup("example", new()
{
Name = "example-resources",
Location = "West Europe",
});
var examplePublicIp = new Azure.Network.PublicIp("example", new()
{
Name = "example-public-ip",
ResourceGroupName = example.Name,
Location = example.Location,
AllocationMethod = "Static",
Tags =
{
{ "environment", "Production" },
},
});
var exampleVirtualWan = new Azure.Network.VirtualWan("example", new()
{
Name = "example-virtualwan",
ResourceGroupName = example.Name,
Location = example.Location,
});
var exampleVirtualHub = new Azure.Network.VirtualHub("example", new()
{
Name = "example-virtualhub",
ResourceGroupName = example.Name,
Location = example.Location,
VirtualWanId = exampleVirtualWan.Id,
AddressPrefix = "10.0.0.0/23",
Tags =
{
{ "hubSaaSPreview", "true" },
},
});
var exampleVirtualNetworkAppliance = new Azure.PaloAlto.VirtualNetworkAppliance("example", new()
{
Name = "example-appliance",
VirtualHubId = exampleVirtualHub.Id,
});
var exampleNextGenerationFirewallVirtualHubStrataCloudManager = new Azure.PaloAlto.NextGenerationFirewallVirtualHubStrataCloudManager("example", new()
{
Name = "example",
ResourceGroupName = "example",
Location = "West Europe",
StrataCloudManagerTenantName = "example",
NetworkProfile = new Azure.PaloAlto.Inputs.NextGenerationFirewallVirtualHubStrataCloudManagerNetworkProfileArgs
{
PublicIpAddressIds = new[]
{
examplePublicIp.Id,
},
VirtualHubId = exampleVirtualHub.Id,
NetworkVirtualApplianceId = exampleVirtualNetworkAppliance.Id,
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.network.PublicIp;
import com.pulumi.azure.network.PublicIpArgs;
import com.pulumi.azure.network.VirtualWan;
import com.pulumi.azure.network.VirtualWanArgs;
import com.pulumi.azure.network.VirtualHub;
import com.pulumi.azure.network.VirtualHubArgs;
import com.pulumi.azure.paloalto.VirtualNetworkAppliance;
import com.pulumi.azure.paloalto.VirtualNetworkApplianceArgs;
import com.pulumi.azure.paloalto.NextGenerationFirewallVirtualHubStrataCloudManager;
import com.pulumi.azure.paloalto.NextGenerationFirewallVirtualHubStrataCloudManagerArgs;
import com.pulumi.azure.paloalto.inputs.NextGenerationFirewallVirtualHubStrataCloudManagerNetworkProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new ResourceGroup("example", ResourceGroupArgs.builder()
.name("example-resources")
.location("West Europe")
.build());
var examplePublicIp = new PublicIp("examplePublicIp", PublicIpArgs.builder()
.name("example-public-ip")
.resourceGroupName(example.name())
.location(example.location())
.allocationMethod("Static")
.tags(Map.of("environment", "Production"))
.build());
var exampleVirtualWan = new VirtualWan("exampleVirtualWan", VirtualWanArgs.builder()
.name("example-virtualwan")
.resourceGroupName(example.name())
.location(example.location())
.build());
var exampleVirtualHub = new VirtualHub("exampleVirtualHub", VirtualHubArgs.builder()
.name("example-virtualhub")
.resourceGroupName(example.name())
.location(example.location())
.virtualWanId(exampleVirtualWan.id())
.addressPrefix("10.0.0.0/23")
.tags(Map.of("hubSaaSPreview", "true"))
.build());
var exampleVirtualNetworkAppliance = new VirtualNetworkAppliance("exampleVirtualNetworkAppliance", VirtualNetworkApplianceArgs.builder()
.name("example-appliance")
.virtualHubId(exampleVirtualHub.id())
.build());
var exampleNextGenerationFirewallVirtualHubStrataCloudManager = new NextGenerationFirewallVirtualHubStrataCloudManager("exampleNextGenerationFirewallVirtualHubStrataCloudManager", NextGenerationFirewallVirtualHubStrataCloudManagerArgs.builder()
.name("example")
.resourceGroupName("example")
.location("West Europe")
.strataCloudManagerTenantName("example")
.networkProfile(NextGenerationFirewallVirtualHubStrataCloudManagerNetworkProfileArgs.builder()
.publicIpAddressIds(examplePublicIp.id())
.virtualHubId(exampleVirtualHub.id())
.networkVirtualApplianceId(exampleVirtualNetworkAppliance.id())
.build())
.build());
}
}
resources:
example:
type: azure:core:ResourceGroup
properties:
name: example-resources
location: West Europe
examplePublicIp:
type: azure:network:PublicIp
name: example
properties:
name: example-public-ip
resourceGroupName: ${example.name}
location: ${example.location}
allocationMethod: Static
tags:
environment: Production
exampleVirtualWan:
type: azure:network:VirtualWan
name: example
properties:
name: example-virtualwan
resourceGroupName: ${example.name}
location: ${example.location}
exampleVirtualHub:
type: azure:network:VirtualHub
name: example
properties:
name: example-virtualhub
resourceGroupName: ${example.name}
location: ${example.location}
virtualWanId: ${exampleVirtualWan.id}
addressPrefix: 10.0.0.0/23
tags:
hubSaaSPreview: 'true'
exampleVirtualNetworkAppliance:
type: azure:paloalto:VirtualNetworkAppliance
name: example
properties:
name: example-appliance
virtualHubId: ${exampleVirtualHub.id}
exampleNextGenerationFirewallVirtualHubStrataCloudManager:
type: azure:paloalto:NextGenerationFirewallVirtualHubStrataCloudManager
name: example
properties:
name: example
resourceGroupName: example
location: West Europe
strataCloudManagerTenantName: example
networkProfile:
publicIpAddressIds:
- ${examplePublicIp.id}
virtualHubId: ${exampleVirtualHub.id}
networkVirtualApplianceId: ${exampleVirtualNetworkAppliance.id}
API Providers
This resource uses the following Azure API Providers:
PaloAltoNetworks.Cloudngfw- 2025-05-23
Create NextGenerationFirewallVirtualHubStrataCloudManager Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new NextGenerationFirewallVirtualHubStrataCloudManager(name: string, args: NextGenerationFirewallVirtualHubStrataCloudManagerArgs, opts?: CustomResourceOptions);@overload
def NextGenerationFirewallVirtualHubStrataCloudManager(resource_name: str,
args: NextGenerationFirewallVirtualHubStrataCloudManagerArgs,
opts: Optional[ResourceOptions] = None)
@overload
def NextGenerationFirewallVirtualHubStrataCloudManager(resource_name: str,
opts: Optional[ResourceOptions] = None,
network_profile: Optional[NextGenerationFirewallVirtualHubStrataCloudManagerNetworkProfileArgs] = None,
resource_group_name: Optional[str] = None,
strata_cloud_manager_tenant_name: Optional[str] = None,
destination_nats: Optional[Sequence[NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatArgs]] = None,
dns_settings: Optional[NextGenerationFirewallVirtualHubStrataCloudManagerDnsSettingsArgs] = None,
identity: Optional[NextGenerationFirewallVirtualHubStrataCloudManagerIdentityArgs] = None,
location: Optional[str] = None,
marketplace_offer_id: Optional[str] = None,
name: Optional[str] = None,
plan_id: Optional[str] = None,
tags: Optional[Mapping[str, str]] = None)func NewNextGenerationFirewallVirtualHubStrataCloudManager(ctx *Context, name string, args NextGenerationFirewallVirtualHubStrataCloudManagerArgs, opts ...ResourceOption) (*NextGenerationFirewallVirtualHubStrataCloudManager, error)public NextGenerationFirewallVirtualHubStrataCloudManager(string name, NextGenerationFirewallVirtualHubStrataCloudManagerArgs args, CustomResourceOptions? opts = null)
public NextGenerationFirewallVirtualHubStrataCloudManager(String name, NextGenerationFirewallVirtualHubStrataCloudManagerArgs args)
public NextGenerationFirewallVirtualHubStrataCloudManager(String name, NextGenerationFirewallVirtualHubStrataCloudManagerArgs args, CustomResourceOptions options)
type: azure:paloalto:NextGenerationFirewallVirtualHubStrataCloudManager
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args NextGenerationFirewallVirtualHubStrataCloudManagerArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args NextGenerationFirewallVirtualHubStrataCloudManagerArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args NextGenerationFirewallVirtualHubStrataCloudManagerArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args NextGenerationFirewallVirtualHubStrataCloudManagerArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args NextGenerationFirewallVirtualHubStrataCloudManagerArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var nextGenerationFirewallVirtualHubStrataCloudManagerResource = new Azure.PaloAlto.NextGenerationFirewallVirtualHubStrataCloudManager("nextGenerationFirewallVirtualHubStrataCloudManagerResource", new()
{
NetworkProfile = new Azure.PaloAlto.Inputs.NextGenerationFirewallVirtualHubStrataCloudManagerNetworkProfileArgs
{
NetworkVirtualApplianceId = "string",
PublicIpAddressIds = new[]
{
"string",
},
VirtualHubId = "string",
EgressNatIpAddressIds = new[]
{
"string",
},
EgressNatIpAddresses = new[]
{
"string",
},
IpOfTrustForUserDefinedRoutes = "string",
PublicIpAddresses = new[]
{
"string",
},
TrustedAddressRanges = new[]
{
"string",
},
TrustedSubnetId = "string",
UntrustedSubnetId = "string",
},
ResourceGroupName = "string",
StrataCloudManagerTenantName = "string",
DestinationNats = new[]
{
new Azure.PaloAlto.Inputs.NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatArgs
{
Name = "string",
Protocol = "string",
BackendConfig = new Azure.PaloAlto.Inputs.NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatBackendConfigArgs
{
Port = 0,
PublicIpAddress = "string",
},
FrontendConfig = new Azure.PaloAlto.Inputs.NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatFrontendConfigArgs
{
Port = 0,
PublicIpAddressId = "string",
},
},
},
DnsSettings = new Azure.PaloAlto.Inputs.NextGenerationFirewallVirtualHubStrataCloudManagerDnsSettingsArgs
{
AzureDnsServers = new[]
{
"string",
},
DnsServers = new[]
{
"string",
},
UseAzureDns = false,
},
Identity = new Azure.PaloAlto.Inputs.NextGenerationFirewallVirtualHubStrataCloudManagerIdentityArgs
{
IdentityIds = new[]
{
"string",
},
Type = "string",
},
Location = "string",
MarketplaceOfferId = "string",
Name = "string",
PlanId = "string",
Tags =
{
{ "string", "string" },
},
});
example, err := paloalto.NewNextGenerationFirewallVirtualHubStrataCloudManager(ctx, "nextGenerationFirewallVirtualHubStrataCloudManagerResource", &paloalto.NextGenerationFirewallVirtualHubStrataCloudManagerArgs{
NetworkProfile: &paloalto.NextGenerationFirewallVirtualHubStrataCloudManagerNetworkProfileArgs{
NetworkVirtualApplianceId: pulumi.String("string"),
PublicIpAddressIds: pulumi.StringArray{
pulumi.String("string"),
},
VirtualHubId: pulumi.String("string"),
EgressNatIpAddressIds: pulumi.StringArray{
pulumi.String("string"),
},
EgressNatIpAddresses: pulumi.StringArray{
pulumi.String("string"),
},
IpOfTrustForUserDefinedRoutes: pulumi.String("string"),
PublicIpAddresses: pulumi.StringArray{
pulumi.String("string"),
},
TrustedAddressRanges: pulumi.StringArray{
pulumi.String("string"),
},
TrustedSubnetId: pulumi.String("string"),
UntrustedSubnetId: pulumi.String("string"),
},
ResourceGroupName: pulumi.String("string"),
StrataCloudManagerTenantName: pulumi.String("string"),
DestinationNats: paloalto.NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatArray{
&paloalto.NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatArgs{
Name: pulumi.String("string"),
Protocol: pulumi.String("string"),
BackendConfig: &paloalto.NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatBackendConfigArgs{
Port: pulumi.Int(0),
PublicIpAddress: pulumi.String("string"),
},
FrontendConfig: &paloalto.NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatFrontendConfigArgs{
Port: pulumi.Int(0),
PublicIpAddressId: pulumi.String("string"),
},
},
},
DnsSettings: &paloalto.NextGenerationFirewallVirtualHubStrataCloudManagerDnsSettingsArgs{
AzureDnsServers: pulumi.StringArray{
pulumi.String("string"),
},
DnsServers: pulumi.StringArray{
pulumi.String("string"),
},
UseAzureDns: pulumi.Bool(false),
},
Identity: &paloalto.NextGenerationFirewallVirtualHubStrataCloudManagerIdentityArgs{
IdentityIds: pulumi.StringArray{
pulumi.String("string"),
},
Type: pulumi.String("string"),
},
Location: pulumi.String("string"),
MarketplaceOfferId: pulumi.String("string"),
Name: pulumi.String("string"),
PlanId: pulumi.String("string"),
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
})
var nextGenerationFirewallVirtualHubStrataCloudManagerResource = new NextGenerationFirewallVirtualHubStrataCloudManager("nextGenerationFirewallVirtualHubStrataCloudManagerResource", NextGenerationFirewallVirtualHubStrataCloudManagerArgs.builder()
.networkProfile(NextGenerationFirewallVirtualHubStrataCloudManagerNetworkProfileArgs.builder()
.networkVirtualApplianceId("string")
.publicIpAddressIds("string")
.virtualHubId("string")
.egressNatIpAddressIds("string")
.egressNatIpAddresses("string")
.ipOfTrustForUserDefinedRoutes("string")
.publicIpAddresses("string")
.trustedAddressRanges("string")
.trustedSubnetId("string")
.untrustedSubnetId("string")
.build())
.resourceGroupName("string")
.strataCloudManagerTenantName("string")
.destinationNats(NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatArgs.builder()
.name("string")
.protocol("string")
.backendConfig(NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatBackendConfigArgs.builder()
.port(0)
.publicIpAddress("string")
.build())
.frontendConfig(NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatFrontendConfigArgs.builder()
.port(0)
.publicIpAddressId("string")
.build())
.build())
.dnsSettings(NextGenerationFirewallVirtualHubStrataCloudManagerDnsSettingsArgs.builder()
.azureDnsServers("string")
.dnsServers("string")
.useAzureDns(false)
.build())
.identity(NextGenerationFirewallVirtualHubStrataCloudManagerIdentityArgs.builder()
.identityIds("string")
.type("string")
.build())
.location("string")
.marketplaceOfferId("string")
.name("string")
.planId("string")
.tags(Map.of("string", "string"))
.build());
next_generation_firewall_virtual_hub_strata_cloud_manager_resource = azure.paloalto.NextGenerationFirewallVirtualHubStrataCloudManager("nextGenerationFirewallVirtualHubStrataCloudManagerResource",
network_profile={
"network_virtual_appliance_id": "string",
"public_ip_address_ids": ["string"],
"virtual_hub_id": "string",
"egress_nat_ip_address_ids": ["string"],
"egress_nat_ip_addresses": ["string"],
"ip_of_trust_for_user_defined_routes": "string",
"public_ip_addresses": ["string"],
"trusted_address_ranges": ["string"],
"trusted_subnet_id": "string",
"untrusted_subnet_id": "string",
},
resource_group_name="string",
strata_cloud_manager_tenant_name="string",
destination_nats=[{
"name": "string",
"protocol": "string",
"backend_config": {
"port": 0,
"public_ip_address": "string",
},
"frontend_config": {
"port": 0,
"public_ip_address_id": "string",
},
}],
dns_settings={
"azure_dns_servers": ["string"],
"dns_servers": ["string"],
"use_azure_dns": False,
},
identity={
"identity_ids": ["string"],
"type": "string",
},
location="string",
marketplace_offer_id="string",
name="string",
plan_id="string",
tags={
"string": "string",
})
const nextGenerationFirewallVirtualHubStrataCloudManagerResource = new azure.paloalto.NextGenerationFirewallVirtualHubStrataCloudManager("nextGenerationFirewallVirtualHubStrataCloudManagerResource", {
networkProfile: {
networkVirtualApplianceId: "string",
publicIpAddressIds: ["string"],
virtualHubId: "string",
egressNatIpAddressIds: ["string"],
egressNatIpAddresses: ["string"],
ipOfTrustForUserDefinedRoutes: "string",
publicIpAddresses: ["string"],
trustedAddressRanges: ["string"],
trustedSubnetId: "string",
untrustedSubnetId: "string",
},
resourceGroupName: "string",
strataCloudManagerTenantName: "string",
destinationNats: [{
name: "string",
protocol: "string",
backendConfig: {
port: 0,
publicIpAddress: "string",
},
frontendConfig: {
port: 0,
publicIpAddressId: "string",
},
}],
dnsSettings: {
azureDnsServers: ["string"],
dnsServers: ["string"],
useAzureDns: false,
},
identity: {
identityIds: ["string"],
type: "string",
},
location: "string",
marketplaceOfferId: "string",
name: "string",
planId: "string",
tags: {
string: "string",
},
});
type: azure:paloalto:NextGenerationFirewallVirtualHubStrataCloudManager
properties:
destinationNats:
- backendConfig:
port: 0
publicIpAddress: string
frontendConfig:
port: 0
publicIpAddressId: string
name: string
protocol: string
dnsSettings:
azureDnsServers:
- string
dnsServers:
- string
useAzureDns: false
identity:
identityIds:
- string
type: string
location: string
marketplaceOfferId: string
name: string
networkProfile:
egressNatIpAddressIds:
- string
egressNatIpAddresses:
- string
ipOfTrustForUserDefinedRoutes: string
networkVirtualApplianceId: string
publicIpAddressIds:
- string
publicIpAddresses:
- string
trustedAddressRanges:
- string
trustedSubnetId: string
untrustedSubnetId: string
virtualHubId: string
planId: string
resourceGroupName: string
strataCloudManagerTenantName: string
tags:
string: string
NextGenerationFirewallVirtualHubStrataCloudManager Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The NextGenerationFirewallVirtualHubStrataCloudManager resource accepts the following input properties:
- Network
Profile NextGeneration Firewall Virtual Hub Strata Cloud Manager Network Profile - A
network_profileblock as defined below. - Resource
Group stringName - The name of the Resource Group where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- Strata
Cloud stringManager Tenant Name - Strata Cloud Manager name which is intended to manage the policy for this firewall.
- Destination
Nats List<NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat> - One or more
destination_natblocks as defined below. - Dns
Settings NextGeneration Firewall Virtual Hub Strata Cloud Manager Dns Settings - A
dns_settingsblock as defined below. - Identity
Next
Generation Firewall Virtual Hub Strata Cloud Manager Identity - A
identityblock as defined below. - Location string
- The Azure Region where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- Marketplace
Offer stringId - The ID of the marketplace offer. Defaults to
pan_swfw_cloud_ngfw. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created. - Name string
- The name which should be used for this Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- Plan
Id string - The ID of the billing plan. Defaults to
panw-cngfw-payg. - Dictionary<string, string>
- A mapping of tags which should be assigned to the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager.
- Network
Profile NextGeneration Firewall Virtual Hub Strata Cloud Manager Network Profile Args - A
network_profileblock as defined below. - Resource
Group stringName - The name of the Resource Group where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- Strata
Cloud stringManager Tenant Name - Strata Cloud Manager name which is intended to manage the policy for this firewall.
- Destination
Nats []NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat Args - One or more
destination_natblocks as defined below. - Dns
Settings NextGeneration Firewall Virtual Hub Strata Cloud Manager Dns Settings Args - A
dns_settingsblock as defined below. - Identity
Next
Generation Firewall Virtual Hub Strata Cloud Manager Identity Args - A
identityblock as defined below. - Location string
- The Azure Region where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- Marketplace
Offer stringId - The ID of the marketplace offer. Defaults to
pan_swfw_cloud_ngfw. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created. - Name string
- The name which should be used for this Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- Plan
Id string - The ID of the billing plan. Defaults to
panw-cngfw-payg. - map[string]string
- A mapping of tags which should be assigned to the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager.
- network
Profile NextGeneration Firewall Virtual Hub Strata Cloud Manager Network Profile - A
network_profileblock as defined below. - resource
Group StringName - The name of the Resource Group where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- strata
Cloud StringManager Tenant Name - Strata Cloud Manager name which is intended to manage the policy for this firewall.
- destination
Nats List<NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat> - One or more
destination_natblocks as defined below. - dns
Settings NextGeneration Firewall Virtual Hub Strata Cloud Manager Dns Settings - A
dns_settingsblock as defined below. - identity
Next
Generation Firewall Virtual Hub Strata Cloud Manager Identity - A
identityblock as defined below. - location String
- The Azure Region where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- marketplace
Offer StringId - The ID of the marketplace offer. Defaults to
pan_swfw_cloud_ngfw. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created. - name String
- The name which should be used for this Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- plan
Id String - The ID of the billing plan. Defaults to
panw-cngfw-payg. - Map<String,String>
- A mapping of tags which should be assigned to the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager.
- network
Profile NextGeneration Firewall Virtual Hub Strata Cloud Manager Network Profile - A
network_profileblock as defined below. - resource
Group stringName - The name of the Resource Group where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- strata
Cloud stringManager Tenant Name - Strata Cloud Manager name which is intended to manage the policy for this firewall.
- destination
Nats NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat[] - One or more
destination_natblocks as defined below. - dns
Settings NextGeneration Firewall Virtual Hub Strata Cloud Manager Dns Settings - A
dns_settingsblock as defined below. - identity
Next
Generation Firewall Virtual Hub Strata Cloud Manager Identity - A
identityblock as defined below. - location string
- The Azure Region where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- marketplace
Offer stringId - The ID of the marketplace offer. Defaults to
pan_swfw_cloud_ngfw. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created. - name string
- The name which should be used for this Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- plan
Id string - The ID of the billing plan. Defaults to
panw-cngfw-payg. - {[key: string]: string}
- A mapping of tags which should be assigned to the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager.
- network_
profile NextGeneration Firewall Virtual Hub Strata Cloud Manager Network Profile Args - A
network_profileblock as defined below. - resource_
group_ strname - The name of the Resource Group where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- strata_
cloud_ strmanager_ tenant_ name - Strata Cloud Manager name which is intended to manage the policy for this firewall.
- destination_
nats Sequence[NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat Args] - One or more
destination_natblocks as defined below. - dns_
settings NextGeneration Firewall Virtual Hub Strata Cloud Manager Dns Settings Args - A
dns_settingsblock as defined below. - identity
Next
Generation Firewall Virtual Hub Strata Cloud Manager Identity Args - A
identityblock as defined below. - location str
- The Azure Region where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- marketplace_
offer_ strid - The ID of the marketplace offer. Defaults to
pan_swfw_cloud_ngfw. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created. - name str
- The name which should be used for this Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- plan_
id str - The ID of the billing plan. Defaults to
panw-cngfw-payg. - Mapping[str, str]
- A mapping of tags which should be assigned to the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager.
- network
Profile Property Map - A
network_profileblock as defined below. - resource
Group StringName - The name of the Resource Group where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- strata
Cloud StringManager Tenant Name - Strata Cloud Manager name which is intended to manage the policy for this firewall.
- destination
Nats List<Property Map> - One or more
destination_natblocks as defined below. - dns
Settings Property Map - A
dns_settingsblock as defined below. - identity Property Map
- A
identityblock as defined below. - location String
- The Azure Region where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- marketplace
Offer StringId - The ID of the marketplace offer. Defaults to
pan_swfw_cloud_ngfw. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created. - name String
- The name which should be used for this Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- plan
Id String - The ID of the billing plan. Defaults to
panw-cngfw-payg. - Map<String>
- A mapping of tags which should be assigned to the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager.
Outputs
All input properties are implicitly available as output properties. Additionally, the NextGenerationFirewallVirtualHubStrataCloudManager resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing NextGenerationFirewallVirtualHubStrataCloudManager Resource
Get an existing NextGenerationFirewallVirtualHubStrataCloudManager resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: NextGenerationFirewallVirtualHubStrataCloudManagerState, opts?: CustomResourceOptions): NextGenerationFirewallVirtualHubStrataCloudManager@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
destination_nats: Optional[Sequence[NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatArgs]] = None,
dns_settings: Optional[NextGenerationFirewallVirtualHubStrataCloudManagerDnsSettingsArgs] = None,
identity: Optional[NextGenerationFirewallVirtualHubStrataCloudManagerIdentityArgs] = None,
location: Optional[str] = None,
marketplace_offer_id: Optional[str] = None,
name: Optional[str] = None,
network_profile: Optional[NextGenerationFirewallVirtualHubStrataCloudManagerNetworkProfileArgs] = None,
plan_id: Optional[str] = None,
resource_group_name: Optional[str] = None,
strata_cloud_manager_tenant_name: Optional[str] = None,
tags: Optional[Mapping[str, str]] = None) -> NextGenerationFirewallVirtualHubStrataCloudManagerfunc GetNextGenerationFirewallVirtualHubStrataCloudManager(ctx *Context, name string, id IDInput, state *NextGenerationFirewallVirtualHubStrataCloudManagerState, opts ...ResourceOption) (*NextGenerationFirewallVirtualHubStrataCloudManager, error)public static NextGenerationFirewallVirtualHubStrataCloudManager Get(string name, Input<string> id, NextGenerationFirewallVirtualHubStrataCloudManagerState? state, CustomResourceOptions? opts = null)public static NextGenerationFirewallVirtualHubStrataCloudManager get(String name, Output<String> id, NextGenerationFirewallVirtualHubStrataCloudManagerState state, CustomResourceOptions options)resources: _: type: azure:paloalto:NextGenerationFirewallVirtualHubStrataCloudManager get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Destination
Nats List<NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat> - One or more
destination_natblocks as defined below. - Dns
Settings NextGeneration Firewall Virtual Hub Strata Cloud Manager Dns Settings - A
dns_settingsblock as defined below. - Identity
Next
Generation Firewall Virtual Hub Strata Cloud Manager Identity - A
identityblock as defined below. - Location string
- The Azure Region where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- Marketplace
Offer stringId - The ID of the marketplace offer. Defaults to
pan_swfw_cloud_ngfw. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created. - Name string
- The name which should be used for this Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- Network
Profile NextGeneration Firewall Virtual Hub Strata Cloud Manager Network Profile - A
network_profileblock as defined below. - Plan
Id string - The ID of the billing plan. Defaults to
panw-cngfw-payg. - Resource
Group stringName - The name of the Resource Group where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- Strata
Cloud stringManager Tenant Name - Strata Cloud Manager name which is intended to manage the policy for this firewall.
- Dictionary<string, string>
- A mapping of tags which should be assigned to the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager.
- Destination
Nats []NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat Args - One or more
destination_natblocks as defined below. - Dns
Settings NextGeneration Firewall Virtual Hub Strata Cloud Manager Dns Settings Args - A
dns_settingsblock as defined below. - Identity
Next
Generation Firewall Virtual Hub Strata Cloud Manager Identity Args - A
identityblock as defined below. - Location string
- The Azure Region where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- Marketplace
Offer stringId - The ID of the marketplace offer. Defaults to
pan_swfw_cloud_ngfw. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created. - Name string
- The name which should be used for this Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- Network
Profile NextGeneration Firewall Virtual Hub Strata Cloud Manager Network Profile Args - A
network_profileblock as defined below. - Plan
Id string - The ID of the billing plan. Defaults to
panw-cngfw-payg. - Resource
Group stringName - The name of the Resource Group where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- Strata
Cloud stringManager Tenant Name - Strata Cloud Manager name which is intended to manage the policy for this firewall.
- map[string]string
- A mapping of tags which should be assigned to the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager.
- destination
Nats List<NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat> - One or more
destination_natblocks as defined below. - dns
Settings NextGeneration Firewall Virtual Hub Strata Cloud Manager Dns Settings - A
dns_settingsblock as defined below. - identity
Next
Generation Firewall Virtual Hub Strata Cloud Manager Identity - A
identityblock as defined below. - location String
- The Azure Region where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- marketplace
Offer StringId - The ID of the marketplace offer. Defaults to
pan_swfw_cloud_ngfw. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created. - name String
- The name which should be used for this Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- network
Profile NextGeneration Firewall Virtual Hub Strata Cloud Manager Network Profile - A
network_profileblock as defined below. - plan
Id String - The ID of the billing plan. Defaults to
panw-cngfw-payg. - resource
Group StringName - The name of the Resource Group where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- strata
Cloud StringManager Tenant Name - Strata Cloud Manager name which is intended to manage the policy for this firewall.
- Map<String,String>
- A mapping of tags which should be assigned to the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager.
- destination
Nats NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat[] - One or more
destination_natblocks as defined below. - dns
Settings NextGeneration Firewall Virtual Hub Strata Cloud Manager Dns Settings - A
dns_settingsblock as defined below. - identity
Next
Generation Firewall Virtual Hub Strata Cloud Manager Identity - A
identityblock as defined below. - location string
- The Azure Region where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- marketplace
Offer stringId - The ID of the marketplace offer. Defaults to
pan_swfw_cloud_ngfw. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created. - name string
- The name which should be used for this Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- network
Profile NextGeneration Firewall Virtual Hub Strata Cloud Manager Network Profile - A
network_profileblock as defined below. - plan
Id string - The ID of the billing plan. Defaults to
panw-cngfw-payg. - resource
Group stringName - The name of the Resource Group where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- strata
Cloud stringManager Tenant Name - Strata Cloud Manager name which is intended to manage the policy for this firewall.
- {[key: string]: string}
- A mapping of tags which should be assigned to the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager.
- destination_
nats Sequence[NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat Args] - One or more
destination_natblocks as defined below. - dns_
settings NextGeneration Firewall Virtual Hub Strata Cloud Manager Dns Settings Args - A
dns_settingsblock as defined below. - identity
Next
Generation Firewall Virtual Hub Strata Cloud Manager Identity Args - A
identityblock as defined below. - location str
- The Azure Region where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- marketplace_
offer_ strid - The ID of the marketplace offer. Defaults to
pan_swfw_cloud_ngfw. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created. - name str
- The name which should be used for this Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- network_
profile NextGeneration Firewall Virtual Hub Strata Cloud Manager Network Profile Args - A
network_profileblock as defined below. - plan_
id str - The ID of the billing plan. Defaults to
panw-cngfw-payg. - resource_
group_ strname - The name of the Resource Group where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- strata_
cloud_ strmanager_ tenant_ name - Strata Cloud Manager name which is intended to manage the policy for this firewall.
- Mapping[str, str]
- A mapping of tags which should be assigned to the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager.
- destination
Nats List<Property Map> - One or more
destination_natblocks as defined below. - dns
Settings Property Map - A
dns_settingsblock as defined below. - identity Property Map
- A
identityblock as defined below. - location String
- The Azure Region where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- marketplace
Offer StringId - The ID of the marketplace offer. Defaults to
pan_swfw_cloud_ngfw. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created. - name String
- The name which should be used for this Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- network
Profile Property Map - A
network_profileblock as defined below. - plan
Id String - The ID of the billing plan. Defaults to
panw-cngfw-payg. - resource
Group StringName - The name of the Resource Group where the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager should exist. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- strata
Cloud StringManager Tenant Name - Strata Cloud Manager name which is intended to manage the policy for this firewall.
- Map<String>
- A mapping of tags which should be assigned to the Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager.
Supporting Types
NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNat, NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatArgs
- Name string
- The name which should be used for this Destination NAT rule.
- Protocol string
- The protocol used for this Destination NAT. Possible values include
TCPandUDP. - Backend
Config NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat Backend Config - One or more
backend_configblock as defined below. - Frontend
Config NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat Frontend Config - One or more
frontend_configblock as defined below.
- Name string
- The name which should be used for this Destination NAT rule.
- Protocol string
- The protocol used for this Destination NAT. Possible values include
TCPandUDP. - Backend
Config NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat Backend Config - One or more
backend_configblock as defined below. - Frontend
Config NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat Frontend Config - One or more
frontend_configblock as defined below.
- name String
- The name which should be used for this Destination NAT rule.
- protocol String
- The protocol used for this Destination NAT. Possible values include
TCPandUDP. - backend
Config NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat Backend Config - One or more
backend_configblock as defined below. - frontend
Config NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat Frontend Config - One or more
frontend_configblock as defined below.
- name string
- The name which should be used for this Destination NAT rule.
- protocol string
- The protocol used for this Destination NAT. Possible values include
TCPandUDP. - backend
Config NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat Backend Config - One or more
backend_configblock as defined below. - frontend
Config NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat Frontend Config - One or more
frontend_configblock as defined below.
- name str
- The name which should be used for this Destination NAT rule.
- protocol str
- The protocol used for this Destination NAT. Possible values include
TCPandUDP. - backend_
config NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat Backend Config - One or more
backend_configblock as defined below. - frontend_
config NextGeneration Firewall Virtual Hub Strata Cloud Manager Destination Nat Frontend Config - One or more
frontend_configblock as defined below.
- name String
- The name which should be used for this Destination NAT rule.
- protocol String
- The protocol used for this Destination NAT. Possible values include
TCPandUDP. - backend
Config Property Map - One or more
backend_configblock as defined below. - frontend
Config Property Map - One or more
frontend_configblock as defined below.
NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatBackendConfig, NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatBackendConfigArgs
- Port int
- The port number to send traffic to.
- Public
Ip stringAddress - The public IP Address to send the traffic to.
- Port int
- The port number to send traffic to.
- Public
Ip stringAddress - The public IP Address to send the traffic to.
- port Integer
- The port number to send traffic to.
- public
Ip StringAddress - The public IP Address to send the traffic to.
- port number
- The port number to send traffic to.
- public
Ip stringAddress - The public IP Address to send the traffic to.
- port int
- The port number to send traffic to.
- public_
ip_ straddress - The public IP Address to send the traffic to.
- port Number
- The port number to send traffic to.
- public
Ip StringAddress - The public IP Address to send the traffic to.
NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatFrontendConfig, NextGenerationFirewallVirtualHubStrataCloudManagerDestinationNatFrontendConfigArgs
- Port int
- The port on which traffic will be received.
- Public
Ip stringAddress Id - The ID of the Public IP Address resource the traffic will be received on.
- Port int
- The port on which traffic will be received.
- Public
Ip stringAddress Id - The ID of the Public IP Address resource the traffic will be received on.
- port Integer
- The port on which traffic will be received.
- public
Ip StringAddress Id - The ID of the Public IP Address resource the traffic will be received on.
- port number
- The port on which traffic will be received.
- public
Ip stringAddress Id - The ID of the Public IP Address resource the traffic will be received on.
- port int
- The port on which traffic will be received.
- public_
ip_ straddress_ id - The ID of the Public IP Address resource the traffic will be received on.
- port Number
- The port on which traffic will be received.
- public
Ip StringAddress Id - The ID of the Public IP Address resource the traffic will be received on.
NextGenerationFirewallVirtualHubStrataCloudManagerDnsSettings, NextGenerationFirewallVirtualHubStrataCloudManagerDnsSettingsArgs
- Azure
Dns List<string>Servers - Dns
Servers List<string> - A list of DNS servers to use. Conflicts with
dns_settings[0].use_azure_dns. - Use
Azure boolDns - Should Azure DNS servers be used? Conflicts with
dns_settings[0].dns_servers. Defaults tofalse.
- Azure
Dns []stringServers - Dns
Servers []string - A list of DNS servers to use. Conflicts with
dns_settings[0].use_azure_dns. - Use
Azure boolDns - Should Azure DNS servers be used? Conflicts with
dns_settings[0].dns_servers. Defaults tofalse.
- azure
Dns List<String>Servers - dns
Servers List<String> - A list of DNS servers to use. Conflicts with
dns_settings[0].use_azure_dns. - use
Azure BooleanDns - Should Azure DNS servers be used? Conflicts with
dns_settings[0].dns_servers. Defaults tofalse.
- azure
Dns string[]Servers - dns
Servers string[] - A list of DNS servers to use. Conflicts with
dns_settings[0].use_azure_dns. - use
Azure booleanDns - Should Azure DNS servers be used? Conflicts with
dns_settings[0].dns_servers. Defaults tofalse.
- azure_
dns_ Sequence[str]servers - dns_
servers Sequence[str] - A list of DNS servers to use. Conflicts with
dns_settings[0].use_azure_dns. - use_
azure_ booldns - Should Azure DNS servers be used? Conflicts with
dns_settings[0].dns_servers. Defaults tofalse.
- azure
Dns List<String>Servers - dns
Servers List<String> - A list of DNS servers to use. Conflicts with
dns_settings[0].use_azure_dns. - use
Azure BooleanDns - Should Azure DNS servers be used? Conflicts with
dns_settings[0].dns_servers. Defaults tofalse.
NextGenerationFirewallVirtualHubStrataCloudManagerIdentity, NextGenerationFirewallVirtualHubStrataCloudManagerIdentityArgs
- Identity
Ids List<string> - A list of User Assigned Managed Identity IDs to be assigned to this App Configuration.
- Type string
- The type of Managed Service Identity that should be configured on this App Configuration. The only possible value is
UserAssigned.
- Identity
Ids []string - A list of User Assigned Managed Identity IDs to be assigned to this App Configuration.
- Type string
- The type of Managed Service Identity that should be configured on this App Configuration. The only possible value is
UserAssigned.
- identity
Ids List<String> - A list of User Assigned Managed Identity IDs to be assigned to this App Configuration.
- type String
- The type of Managed Service Identity that should be configured on this App Configuration. The only possible value is
UserAssigned.
- identity
Ids string[] - A list of User Assigned Managed Identity IDs to be assigned to this App Configuration.
- type string
- The type of Managed Service Identity that should be configured on this App Configuration. The only possible value is
UserAssigned.
- identity_
ids Sequence[str] - A list of User Assigned Managed Identity IDs to be assigned to this App Configuration.
- type str
- The type of Managed Service Identity that should be configured on this App Configuration. The only possible value is
UserAssigned.
- identity
Ids List<String> - A list of User Assigned Managed Identity IDs to be assigned to this App Configuration.
- type String
- The type of Managed Service Identity that should be configured on this App Configuration. The only possible value is
UserAssigned.
NextGenerationFirewallVirtualHubStrataCloudManagerNetworkProfile, NextGenerationFirewallVirtualHubStrataCloudManagerNetworkProfileArgs
- Network
Virtual stringAppliance Id - The ID of the Palo Alto Network Virtual Appliance in the VHub. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- Public
Ip List<string>Address Ids - A list of Public IP IDs to use for this Next Generation Firewall.
- Virtual
Hub stringId - The ID of the Virtual Hub this Next Generation Firewall will be deployed in. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- Egress
Nat List<string>Ip Address Ids - A list of Public IP IDs to use for Egress NAT.
- Egress
Nat List<string>Ip Addresses - A list of Egress NAT IP addresses.
- Ip
Of stringTrust For User Defined Routes - The IP of trusted subnet for UDR.
- Public
Ip List<string>Addresses - A list of public IPs associated with this Next Generation Firewall.
- Trusted
Address List<string>Ranges - A list of trusted ranges to use for the Network.
- Trusted
Subnet stringId - The ID of trusted subnet.
- Untrusted
Subnet stringId - The ID of untrusted subnet.
- Network
Virtual stringAppliance Id - The ID of the Palo Alto Network Virtual Appliance in the VHub. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- Public
Ip []stringAddress Ids - A list of Public IP IDs to use for this Next Generation Firewall.
- Virtual
Hub stringId - The ID of the Virtual Hub this Next Generation Firewall will be deployed in. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- Egress
Nat []stringIp Address Ids - A list of Public IP IDs to use for Egress NAT.
- Egress
Nat []stringIp Addresses - A list of Egress NAT IP addresses.
- Ip
Of stringTrust For User Defined Routes - The IP of trusted subnet for UDR.
- Public
Ip []stringAddresses - A list of public IPs associated with this Next Generation Firewall.
- Trusted
Address []stringRanges - A list of trusted ranges to use for the Network.
- Trusted
Subnet stringId - The ID of trusted subnet.
- Untrusted
Subnet stringId - The ID of untrusted subnet.
- network
Virtual StringAppliance Id - The ID of the Palo Alto Network Virtual Appliance in the VHub. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- public
Ip List<String>Address Ids - A list of Public IP IDs to use for this Next Generation Firewall.
- virtual
Hub StringId - The ID of the Virtual Hub this Next Generation Firewall will be deployed in. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- egress
Nat List<String>Ip Address Ids - A list of Public IP IDs to use for Egress NAT.
- egress
Nat List<String>Ip Addresses - A list of Egress NAT IP addresses.
- ip
Of StringTrust For User Defined Routes - The IP of trusted subnet for UDR.
- public
Ip List<String>Addresses - A list of public IPs associated with this Next Generation Firewall.
- trusted
Address List<String>Ranges - A list of trusted ranges to use for the Network.
- trusted
Subnet StringId - The ID of trusted subnet.
- untrusted
Subnet StringId - The ID of untrusted subnet.
- network
Virtual stringAppliance Id - The ID of the Palo Alto Network Virtual Appliance in the VHub. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- public
Ip string[]Address Ids - A list of Public IP IDs to use for this Next Generation Firewall.
- virtual
Hub stringId - The ID of the Virtual Hub this Next Generation Firewall will be deployed in. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- egress
Nat string[]Ip Address Ids - A list of Public IP IDs to use for Egress NAT.
- egress
Nat string[]Ip Addresses - A list of Egress NAT IP addresses.
- ip
Of stringTrust For User Defined Routes - The IP of trusted subnet for UDR.
- public
Ip string[]Addresses - A list of public IPs associated with this Next Generation Firewall.
- trusted
Address string[]Ranges - A list of trusted ranges to use for the Network.
- trusted
Subnet stringId - The ID of trusted subnet.
- untrusted
Subnet stringId - The ID of untrusted subnet.
- network_
virtual_ strappliance_ id - The ID of the Palo Alto Network Virtual Appliance in the VHub. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- public_
ip_ Sequence[str]address_ ids - A list of Public IP IDs to use for this Next Generation Firewall.
- virtual_
hub_ strid - The ID of the Virtual Hub this Next Generation Firewall will be deployed in. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- egress_
nat_ Sequence[str]ip_ address_ ids - A list of Public IP IDs to use for Egress NAT.
- egress_
nat_ Sequence[str]ip_ addresses - A list of Egress NAT IP addresses.
- ip_
of_ strtrust_ for_ user_ defined_ routes - The IP of trusted subnet for UDR.
- public_
ip_ Sequence[str]addresses - A list of public IPs associated with this Next Generation Firewall.
- trusted_
address_ Sequence[str]ranges - A list of trusted ranges to use for the Network.
- trusted_
subnet_ strid - The ID of trusted subnet.
- untrusted_
subnet_ strid - The ID of untrusted subnet.
- network
Virtual StringAppliance Id - The ID of the Palo Alto Network Virtual Appliance in the VHub. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- public
Ip List<String>Address Ids - A list of Public IP IDs to use for this Next Generation Firewall.
- virtual
Hub StringId - The ID of the Virtual Hub this Next Generation Firewall will be deployed in. Changing this forces a new Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Manager to be created.
- egress
Nat List<String>Ip Address Ids - A list of Public IP IDs to use for Egress NAT.
- egress
Nat List<String>Ip Addresses - A list of Egress NAT IP addresses.
- ip
Of StringTrust For User Defined Routes - The IP of trusted subnet for UDR.
- public
Ip List<String>Addresses - A list of public IPs associated with this Next Generation Firewall.
- trusted
Address List<String>Ranges - A list of trusted ranges to use for the Network.
- trusted
Subnet StringId - The ID of trusted subnet.
- untrusted
Subnet StringId - The ID of untrusted subnet.
Import
Palo Alto Next Generation Firewall Virtual Hub Strata Cloud Managers can be imported using the resource id, e.g.
$ pulumi import azure:paloalto/nextGenerationFirewallVirtualHubStrataCloudManager:NextGenerationFirewallVirtualHubStrataCloudManager example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/mygroup1/providers/PaloAltoNetworks.Cloudngfw/firewalls/myVNetStrataCloudManagerFW
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Azure Classic pulumi/pulumi-azure
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
azurermTerraform Provider.
