Domain

bytepluscc v0.0.21, Apr 2 26

Viewing docs for bytepluscc v0.0.21
published on Thursday, Apr 2, 2026 by Byteplus

Schema (JSON)

byteplus-sdk/pulumi-bytepluscc

Viewing docs for bytepluscc v0.0.21
published on Thursday, Apr 2, 2026 by Byteplus

Schema (JSON)

byteplus-sdk/pulumi-bytepluscc

Example Usage

Example coming soon!

Example coming soon!

Example coming soon!

Example coming soon!

Example coming soon!

resources:
  wafDomainDemo:
    type: bytepluscc:waf:Domain
    name: WafDomainDemo
    properties:
      accessMode: 10
      domain: www.test.com
      lbAlgorithm: wrr
      publicRealServer: 1
      vpcId: ""
      protocolPorts:
        http:
          - 80
      protocols:
        - HTTP
      backendGroups:
        - access_port:
            - 80
          backends:
            - protocol: HTTP
              port: 80
              ip: 1.1.1.1
              weight: 50
          name: default

Create Domain Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new Domain(name: string, args: DomainArgs, opts?: CustomResourceOptions);

@overload
def Domain(resource_name: str,
           args: DomainArgs,
           opts: Optional[ResourceOptions] = None)

@overload
def Domain(resource_name: str,
           opts: Optional[ResourceOptions] = None,
           access_mode: Optional[int] = None,
           domain: Optional[str] = None,
           api_enable: Optional[int] = None,
           auto_cc_enable: Optional[int] = None,
           backend_groups: Optional[Sequence[DomainBackendGroupArgs]] = None,
           black_ip_enable: Optional[int] = None,
           black_lct_enable: Optional[int] = None,
           bot_dytoken_enable: Optional[int] = None,
           bot_frequency_enable: Optional[int] = None,
           bot_repeat_enable: Optional[int] = None,
           bot_sequence_default_action: Optional[int] = None,
           bot_sequence_enable: Optional[int] = None,
           cc_enable: Optional[int] = None,
           certificate_id: Optional[str] = None,
           certificate_platform: Optional[str] = None,
           client_ip_location: Optional[int] = None,
           client_max_body_size: Optional[int] = None,
           cloud_access_configs: Optional[Sequence[DomainCloudAccessConfigArgs]] = None,
           custom_bot_enable: Optional[int] = None,
           custom_headers: Optional[Sequence[str]] = None,
           custom_rsp_enable: Optional[int] = None,
           custom_sni: Optional[str] = None,
           defence_mode: Optional[int] = None,
           dlp_enable: Optional[int] = None,
           enable_custom_redirect: Optional[int] = None,
           enable_http2: Optional[int] = None,
           enable_ipv6: Optional[int] = None,
           enable_sni: Optional[int] = None,
           keep_alive_request: Optional[int] = None,
           keep_alive_timeout: Optional[int] = None,
           lb_algorithm: Optional[str] = None,
           project_name: Optional[str] = None,
           protocol_follow: Optional[int] = None,
           protocol_ports: Optional[DomainProtocolPortsArgs] = None,
           protocols: Optional[Sequence[str]] = None,
           proxy_config: Optional[int] = None,
           proxy_connect_timeout: Optional[int] = None,
           proxy_keep_alive: Optional[int] = None,
           proxy_keep_alive_timeout: Optional[int] = None,
           proxy_read_timeout: Optional[int] = None,
           proxy_retry: Optional[int] = None,
           proxy_write_timeout: Optional[int] = None,
           public_real_server: Optional[int] = None,
           ssl_ciphers: Optional[Sequence[str]] = None,
           ssl_protocols: Optional[Sequence[str]] = None,
           system_bot_enable: Optional[int] = None,
           tamper_proof_enable: Optional[int] = None,
           tls_enable: Optional[int] = None,
           tls_fields_config: Optional[DomainTlsFieldsConfigArgs] = None,
           vpc_id: Optional[str] = None,
           waf_enable: Optional[int] = None,
           waf_white_req_enable: Optional[int] = None,
           white_enable: Optional[int] = None,
           white_field_enable: Optional[int] = None)

func NewDomain(ctx *Context, name string, args DomainArgs, opts ...ResourceOption) (*Domain, error)

public Domain(string name, DomainArgs args, CustomResourceOptions? opts = null)

public Domain(String name, DomainArgs args)
public Domain(String name, DomainArgs args, CustomResourceOptions options)

type: bytepluscc:waf:Domain
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args DomainArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args DomainArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args DomainArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args DomainArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args DomainArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var byteplusccDomainResource = new Bytepluscc.Waf.Domain("byteplusccDomainResource", new()
{
    AccessMode = 0,
    DomainValue = "string",
    ApiEnable = 0,
    AutoCcEnable = 0,
    BackendGroups = new[]
    {
        new Bytepluscc.Waf.Inputs.DomainBackendGroupArgs
        {
            AccessPorts = new[]
            {
                0,
            },
            Backends = new[]
            {
                new Bytepluscc.Waf.Inputs.DomainBackendGroupBackendArgs
                {
                    Ip = "string",
                    Port = 0,
                    Protocol = "string",
                    Weight = 0,
                },
            },
            Name = "string",
        },
    },
    BlackIpEnable = 0,
    BlackLctEnable = 0,
    BotDytokenEnable = 0,
    BotFrequencyEnable = 0,
    BotRepeatEnable = 0,
    BotSequenceDefaultAction = 0,
    BotSequenceEnable = 0,
    CcEnable = 0,
    CertificateId = "string",
    CertificatePlatform = "string",
    ClientIpLocation = 0,
    ClientMaxBodySize = 0,
    CloudAccessConfigs = new[]
    {
        new Bytepluscc.Waf.Inputs.DomainCloudAccessConfigArgs
        {
            AccessProtocol = "string",
            DefenceMode = 0,
            InstanceId = "string",
            InstanceName = "string",
            ListenerId = "string",
            LostAssociationFromAlb = 0,
            Port = "string",
            Protocol = "string",
        },
    },
    CustomBotEnable = 0,
    CustomHeaders = new[]
    {
        "string",
    },
    CustomRspEnable = 0,
    CustomSni = "string",
    DefenceMode = 0,
    DlpEnable = 0,
    EnableCustomRedirect = 0,
    EnableHttp2 = 0,
    EnableIpv6 = 0,
    EnableSni = 0,
    KeepAliveRequest = 0,
    KeepAliveTimeout = 0,
    LbAlgorithm = "string",
    ProjectName = "string",
    ProtocolFollow = 0,
    ProtocolPorts = new Bytepluscc.Waf.Inputs.DomainProtocolPortsArgs
    {
        Http = new[]
        {
            0,
        },
        Https = new[]
        {
            0,
        },
    },
    Protocols = new[]
    {
        "string",
    },
    ProxyConfig = 0,
    ProxyConnectTimeout = 0,
    ProxyKeepAlive = 0,
    ProxyKeepAliveTimeout = 0,
    ProxyReadTimeout = 0,
    ProxyRetry = 0,
    ProxyWriteTimeout = 0,
    PublicRealServer = 0,
    SslCiphers = new[]
    {
        "string",
    },
    SslProtocols = new[]
    {
        "string",
    },
    SystemBotEnable = 0,
    TamperProofEnable = 0,
    TlsEnable = 0,
    TlsFieldsConfig = new Bytepluscc.Waf.Inputs.DomainTlsFieldsConfigArgs
    {
        HeadersConfig = new Bytepluscc.Waf.Inputs.DomainTlsFieldsConfigHeadersConfigArgs
        {
            Enable = 0,
            ExcludedKeyLists = new[]
            {
                "string",
            },
            StatisticalKeyLists = new[]
            {
                "string",
            },
        },
    },
    VpcId = "string",
    WafEnable = 0,
    WafWhiteReqEnable = 0,
    WhiteEnable = 0,
    WhiteFieldEnable = 0,
});

example, err := waf.NewDomain(ctx, "byteplusccDomainResource", &waf.DomainArgs{
	AccessMode:   pulumi.Int(0),
	Domain:       pulumi.String("string"),
	ApiEnable:    pulumi.Int(0),
	AutoCcEnable: pulumi.Int(0),
	BackendGroups: waf.DomainBackendGroupArray{
		&waf.DomainBackendGroupArgs{
			AccessPorts: pulumi.IntArray{
				pulumi.Int(0),
			},
			Backends: waf.DomainBackendGroupBackendArray{
				&waf.DomainBackendGroupBackendArgs{
					Ip:       pulumi.String("string"),
					Port:     pulumi.Int(0),
					Protocol: pulumi.String("string"),
					Weight:   pulumi.Int(0),
				},
			},
			Name: pulumi.String("string"),
		},
	},
	BlackIpEnable:            pulumi.Int(0),
	BlackLctEnable:           pulumi.Int(0),
	BotDytokenEnable:         pulumi.Int(0),
	BotFrequencyEnable:       pulumi.Int(0),
	BotRepeatEnable:          pulumi.Int(0),
	BotSequenceDefaultAction: pulumi.Int(0),
	BotSequenceEnable:        pulumi.Int(0),
	CcEnable:                 pulumi.Int(0),
	CertificateId:            pulumi.String("string"),
	CertificatePlatform:      pulumi.String("string"),
	ClientIpLocation:         pulumi.Int(0),
	ClientMaxBodySize:        pulumi.Int(0),
	CloudAccessConfigs: waf.DomainCloudAccessConfigArray{
		&waf.DomainCloudAccessConfigArgs{
			AccessProtocol:         pulumi.String("string"),
			DefenceMode:            pulumi.Int(0),
			InstanceId:             pulumi.String("string"),
			InstanceName:           pulumi.String("string"),
			ListenerId:             pulumi.String("string"),
			LostAssociationFromAlb: pulumi.Int(0),
			Port:                   pulumi.String("string"),
			Protocol:               pulumi.String("string"),
		},
	},
	CustomBotEnable: pulumi.Int(0),
	CustomHeaders: pulumi.StringArray{
		pulumi.String("string"),
	},
	CustomRspEnable:      pulumi.Int(0),
	CustomSni:            pulumi.String("string"),
	DefenceMode:          pulumi.Int(0),
	DlpEnable:            pulumi.Int(0),
	EnableCustomRedirect: pulumi.Int(0),
	EnableHttp2:          pulumi.Int(0),
	EnableIpv6:           pulumi.Int(0),
	EnableSni:            pulumi.Int(0),
	KeepAliveRequest:     pulumi.Int(0),
	KeepAliveTimeout:     pulumi.Int(0),
	LbAlgorithm:          pulumi.String("string"),
	ProjectName:          pulumi.String("string"),
	ProtocolFollow:       pulumi.Int(0),
	ProtocolPorts: &waf.DomainProtocolPortsArgs{
		Http: pulumi.IntArray{
			pulumi.Int(0),
		},
		Https: pulumi.IntArray{
			pulumi.Int(0),
		},
	},
	Protocols: pulumi.StringArray{
		pulumi.String("string"),
	},
	ProxyConfig:           pulumi.Int(0),
	ProxyConnectTimeout:   pulumi.Int(0),
	ProxyKeepAlive:        pulumi.Int(0),
	ProxyKeepAliveTimeout: pulumi.Int(0),
	ProxyReadTimeout:      pulumi.Int(0),
	ProxyRetry:            pulumi.Int(0),
	ProxyWriteTimeout:     pulumi.Int(0),
	PublicRealServer:      pulumi.Int(0),
	SslCiphers: pulumi.StringArray{
		pulumi.String("string"),
	},
	SslProtocols: pulumi.StringArray{
		pulumi.String("string"),
	},
	SystemBotEnable:   pulumi.Int(0),
	TamperProofEnable: pulumi.Int(0),
	TlsEnable:         pulumi.Int(0),
	TlsFieldsConfig: &waf.DomainTlsFieldsConfigArgs{
		HeadersConfig: &waf.DomainTlsFieldsConfigHeadersConfigArgs{
			Enable: pulumi.Int(0),
			ExcludedKeyLists: pulumi.StringArray{
				pulumi.String("string"),
			},
			StatisticalKeyLists: pulumi.StringArray{
				pulumi.String("string"),
			},
		},
	},
	VpcId:             pulumi.String("string"),
	WafEnable:         pulumi.Int(0),
	WafWhiteReqEnable: pulumi.Int(0),
	WhiteEnable:       pulumi.Int(0),
	WhiteFieldEnable:  pulumi.Int(0),
})

var byteplusccDomainResource = new com.byteplus.bytepluscc.waf.Domain("byteplusccDomainResource", com.byteplus.bytepluscc.waf.DomainArgs.builder()
    .accessMode(0)
    .domain("string")
    .apiEnable(0)
    .autoCcEnable(0)
    .backendGroups(DomainBackendGroupArgs.builder()
        .accessPorts(0)
        .backends(DomainBackendGroupBackendArgs.builder()
            .ip("string")
            .port(0)
            .protocol("string")
            .weight(0)
            .build())
        .name("string")
        .build())
    .blackIpEnable(0)
    .blackLctEnable(0)
    .botDytokenEnable(0)
    .botFrequencyEnable(0)
    .botRepeatEnable(0)
    .botSequenceDefaultAction(0)
    .botSequenceEnable(0)
    .ccEnable(0)
    .certificateId("string")
    .certificatePlatform("string")
    .clientIpLocation(0)
    .clientMaxBodySize(0)
    .cloudAccessConfigs(DomainCloudAccessConfigArgs.builder()
        .accessProtocol("string")
        .defenceMode(0)
        .instanceId("string")
        .instanceName("string")
        .listenerId("string")
        .lostAssociationFromAlb(0)
        .port("string")
        .protocol("string")
        .build())
    .customBotEnable(0)
    .customHeaders("string")
    .customRspEnable(0)
    .customSni("string")
    .defenceMode(0)
    .dlpEnable(0)
    .enableCustomRedirect(0)
    .enableHttp2(0)
    .enableIpv6(0)
    .enableSni(0)
    .keepAliveRequest(0)
    .keepAliveTimeout(0)
    .lbAlgorithm("string")
    .projectName("string")
    .protocolFollow(0)
    .protocolPorts(DomainProtocolPortsArgs.builder()
        .http(0)
        .https(0)
        .build())
    .protocols("string")
    .proxyConfig(0)
    .proxyConnectTimeout(0)
    .proxyKeepAlive(0)
    .proxyKeepAliveTimeout(0)
    .proxyReadTimeout(0)
    .proxyRetry(0)
    .proxyWriteTimeout(0)
    .publicRealServer(0)
    .sslCiphers("string")
    .sslProtocols("string")
    .systemBotEnable(0)
    .tamperProofEnable(0)
    .tlsEnable(0)
    .tlsFieldsConfig(DomainTlsFieldsConfigArgs.builder()
        .headersConfig(DomainTlsFieldsConfigHeadersConfigArgs.builder()
            .enable(0)
            .excludedKeyLists("string")
            .statisticalKeyLists("string")
            .build())
        .build())
    .vpcId("string")
    .wafEnable(0)
    .wafWhiteReqEnable(0)
    .whiteEnable(0)
    .whiteFieldEnable(0)
    .build());

bytepluscc_domain_resource = bytepluscc.waf.Domain("byteplusccDomainResource",
    access_mode=0,
    domain="string",
    api_enable=0,
    auto_cc_enable=0,
    backend_groups=[{
        "access_ports": [0],
        "backends": [{
            "ip": "string",
            "port": 0,
            "protocol": "string",
            "weight": 0,
        }],
        "name": "string",
    }],
    black_ip_enable=0,
    black_lct_enable=0,
    bot_dytoken_enable=0,
    bot_frequency_enable=0,
    bot_repeat_enable=0,
    bot_sequence_default_action=0,
    bot_sequence_enable=0,
    cc_enable=0,
    certificate_id="string",
    certificate_platform="string",
    client_ip_location=0,
    client_max_body_size=0,
    cloud_access_configs=[{
        "access_protocol": "string",
        "defence_mode": 0,
        "instance_id": "string",
        "instance_name": "string",
        "listener_id": "string",
        "lost_association_from_alb": 0,
        "port": "string",
        "protocol": "string",
    }],
    custom_bot_enable=0,
    custom_headers=["string"],
    custom_rsp_enable=0,
    custom_sni="string",
    defence_mode=0,
    dlp_enable=0,
    enable_custom_redirect=0,
    enable_http2=0,
    enable_ipv6=0,
    enable_sni=0,
    keep_alive_request=0,
    keep_alive_timeout=0,
    lb_algorithm="string",
    project_name="string",
    protocol_follow=0,
    protocol_ports={
        "http": [0],
        "https": [0],
    },
    protocols=["string"],
    proxy_config=0,
    proxy_connect_timeout=0,
    proxy_keep_alive=0,
    proxy_keep_alive_timeout=0,
    proxy_read_timeout=0,
    proxy_retry=0,
    proxy_write_timeout=0,
    public_real_server=0,
    ssl_ciphers=["string"],
    ssl_protocols=["string"],
    system_bot_enable=0,
    tamper_proof_enable=0,
    tls_enable=0,
    tls_fields_config={
        "headers_config": {
            "enable": 0,
            "excluded_key_lists": ["string"],
            "statistical_key_lists": ["string"],
        },
    },
    vpc_id="string",
    waf_enable=0,
    waf_white_req_enable=0,
    white_enable=0,
    white_field_enable=0)

const byteplusccDomainResource = new bytepluscc.waf.Domain("byteplusccDomainResource", {
    accessMode: 0,
    domain: "string",
    apiEnable: 0,
    autoCcEnable: 0,
    backendGroups: [{
        accessPorts: [0],
        backends: [{
            ip: "string",
            port: 0,
            protocol: "string",
            weight: 0,
        }],
        name: "string",
    }],
    blackIpEnable: 0,
    blackLctEnable: 0,
    botDytokenEnable: 0,
    botFrequencyEnable: 0,
    botRepeatEnable: 0,
    botSequenceDefaultAction: 0,
    botSequenceEnable: 0,
    ccEnable: 0,
    certificateId: "string",
    certificatePlatform: "string",
    clientIpLocation: 0,
    clientMaxBodySize: 0,
    cloudAccessConfigs: [{
        accessProtocol: "string",
        defenceMode: 0,
        instanceId: "string",
        instanceName: "string",
        listenerId: "string",
        lostAssociationFromAlb: 0,
        port: "string",
        protocol: "string",
    }],
    customBotEnable: 0,
    customHeaders: ["string"],
    customRspEnable: 0,
    customSni: "string",
    defenceMode: 0,
    dlpEnable: 0,
    enableCustomRedirect: 0,
    enableHttp2: 0,
    enableIpv6: 0,
    enableSni: 0,
    keepAliveRequest: 0,
    keepAliveTimeout: 0,
    lbAlgorithm: "string",
    projectName: "string",
    protocolFollow: 0,
    protocolPorts: {
        http: [0],
        https: [0],
    },
    protocols: ["string"],
    proxyConfig: 0,
    proxyConnectTimeout: 0,
    proxyKeepAlive: 0,
    proxyKeepAliveTimeout: 0,
    proxyReadTimeout: 0,
    proxyRetry: 0,
    proxyWriteTimeout: 0,
    publicRealServer: 0,
    sslCiphers: ["string"],
    sslProtocols: ["string"],
    systemBotEnable: 0,
    tamperProofEnable: 0,
    tlsEnable: 0,
    tlsFieldsConfig: {
        headersConfig: {
            enable: 0,
            excludedKeyLists: ["string"],
            statisticalKeyLists: ["string"],
        },
    },
    vpcId: "string",
    wafEnable: 0,
    wafWhiteReqEnable: 0,
    whiteEnable: 0,
    whiteFieldEnable: 0,
});

type: bytepluscc:waf:Domain
properties:
    accessMode: 0
    apiEnable: 0
    autoCcEnable: 0
    backendGroups:
        - accessPorts:
            - 0
          backends:
            - ip: string
              port: 0
              protocol: string
              weight: 0
          name: string
    blackIpEnable: 0
    blackLctEnable: 0
    botDytokenEnable: 0
    botFrequencyEnable: 0
    botRepeatEnable: 0
    botSequenceDefaultAction: 0
    botSequenceEnable: 0
    ccEnable: 0
    certificateId: string
    certificatePlatform: string
    clientIpLocation: 0
    clientMaxBodySize: 0
    cloudAccessConfigs:
        - accessProtocol: string
          defenceMode: 0
          instanceId: string
          instanceName: string
          listenerId: string
          lostAssociationFromAlb: 0
          port: string
          protocol: string
    customBotEnable: 0
    customHeaders:
        - string
    customRspEnable: 0
    customSni: string
    defenceMode: 0
    dlpEnable: 0
    domain: string
    enableCustomRedirect: 0
    enableHttp2: 0
    enableIpv6: 0
    enableSni: 0
    keepAliveRequest: 0
    keepAliveTimeout: 0
    lbAlgorithm: string
    projectName: string
    protocolFollow: 0
    protocolPorts:
        http:
            - 0
        https:
            - 0
    protocols:
        - string
    proxyConfig: 0
    proxyConnectTimeout: 0
    proxyKeepAlive: 0
    proxyKeepAliveTimeout: 0
    proxyReadTimeout: 0
    proxyRetry: 0
    proxyWriteTimeout: 0
    publicRealServer: 0
    sslCiphers:
        - string
    sslProtocols:
        - string
    systemBotEnable: 0
    tamperProofEnable: 0
    tlsEnable: 0
    tlsFieldsConfig:
        headersConfig:
            enable: 0
            excludedKeyLists:
                - string
            statisticalKeyLists:
                - string
    vpcId: string
    wafEnable: 0
    wafWhiteReqEnable: 0
    whiteEnable: 0
    whiteFieldEnable: 0

Domain Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The Domain resource accepts the following input properties:

AccessMode int: Access mode. 10: CNAME access, 11: Layer 7 load balancing (CLB) access.
DomainValue string: Protected domain information. Supports wildcard and exact domains
ApiEnable int: API protection policy enabled. 0: Off, 1: On
AutoCcEnable int: Whether to enable intelligent CC protection policy. 0: Disabled, 1: Enabled.
BackendGroups List<Byteplus.DomainBackendGroup>
BlackIpEnable int: Denylist policy enabled. 0: Off, 1: On
BlackLctEnable int: Whether to enable regional blocking policy. 0: Disabled; 1: Enabled.
BotDytokenEnable int: Dynamic token protection enabled
BotFrequencyEnable int: Bot rate limit policy enabled. 0: Off 1: On
BotRepeatEnable int: Bot statistics protection policy enabled. 0: Off 1: On
BotSequenceDefaultAction int: Set the default action for the bot behavior map policy. Effective when BotSequenceEnable = 1 is enabled. Default is 0 (Observe). 0: Observe 2: Intercept 6: JS Challenge 7: CAPTCHA.
BotSequenceEnable int: Whether to enable bot behavior map. 0: Off 1: On.
CcEnable int: Whether to enable CC protection policy. 0: Disabled 1: Enabled.
CertificateId string: Certificate ID managed in Certificate Center
CertificatePlatform string: Certificate hosting platform: waf/certificate_service.
ClientIpLocation int: Client IP acquisition method. 0: Custom header field, 1: Use the first public IP address in the X-Forwarded-For (XFF) field as the real client IP address.
ClientMaxBodySize int: Maximum client request body size (MB).
CloudAccessConfigs List<Byteplus.DomainCloudAccessConfig>
CustomBotEnable int: Whether to enable custom bot protection.
CustomHeaders List<string>: Custom header.
CustomRspEnable int: Whether to enable custom response.
CustomSni string: Custom SNI.
DefenceMode int: Set protection mode for exception ALB instances. 1: Enable protection. The configured protection policies take effect. 2: Pause protection. Only forwarding is performed without inspection; the configured protection policies do not take effect. 3: Origin mode. Requests are sent directly to the origin server and are no longer forwarded to the WAF instance. After configuring exception protection instances, the domain may also have the following protection statuses: 5: Partially enabled. The default protection mode is enabled, but some exception instances are in paused protection or origin mode. 6: Partially paused. The default protection mode is paused, but some exception instances are in enabled protection or origin mode. 7: Partially origin. The default protection mode is origin mode, but some exception instances are in enabled protection or paused protection.
DlpEnable int: Data leakage protection enabled
EnableCustomRedirect int: User-defined redirection enabled. 0: Off, 1: On
EnableHttp2 int: Whether to enable HTTP/2.0. 0: Disabled, 1: Enabled.
EnableIpv6 int: IPv6 request protection supported. 0: Off, 1: On
EnableSni int: Whether to enable SNI configuration. 0: Off, 1: On.
KeepAliveRequest int: Persistent connection reuse count
KeepAliveTimeout int: Persistent connection keep-alive time (seconds)
LbAlgorithm string: Load balancing algorithm type. wrr: Weighted round robin, wlc: Weighted least connections, sh: Source address hash.
ProjectName string: Project name.
ProtocolFollow int: Protocol following enabled. 0: Off, 1: On
ProtocolPorts Byteplus.DomainProtocolPorts: Access port information
Protocols List<string>: Access protocol type: supports HTTP/HTTPS
ProxyConfig int: Proxy configuration enabled. 0: Off, 1: On
ProxyConnectTimeout int: Connection timeout between WAF and backend server (seconds).
ProxyKeepAlive int: Number of reusable WAF origin persistent connections.
ProxyKeepAliveTimeout int: Idle persistent connection timeout (seconds)
ProxyReadTimeout int: Timeout for WAF to read response from backend server (seconds).
ProxyRetry int: WAF origin retry count.
ProxyWriteTimeout int: Timeout for WAF to transmit request to backend server (seconds).
PublicRealServer int: CNAME access origin method. 0: Private network origin, 1: Public network origin.
SslCiphers List<string>: Cipher suite
SslProtocols List<string>: TLS protocol version. For example: TLSv1, TLSv1.1, TLSv1.2, TLSv1.3
SystemBotEnable int: Whether to enable managed bot protection.
TamperProofEnable int: Whether to enable anti-tampering.
TlsEnable int: Log service enabled. 0: Off, 1: On
TlsFieldsConfig Byteplus.DomainTlsFieldsConfig: Log field configuration details
VpcId string: VPC ID。
WafEnable int: WAF protection enabled
WafWhiteReqEnable int: Allowlist request protection enabled
WhiteEnable int: Whether to enable allowlist protection.
WhiteFieldEnable int: Field allowlist protection enabled

AccessMode int: Access mode. 10: CNAME access, 11: Layer 7 load balancing (CLB) access.
Domain string: Protected domain information. Supports wildcard and exact domains
ApiEnable int: API protection policy enabled. 0: Off, 1: On
AutoCcEnable int: Whether to enable intelligent CC protection policy. 0: Disabled, 1: Enabled.
BackendGroups []DomainBackendGroupArgs
BlackIpEnable int: Denylist policy enabled. 0: Off, 1: On
BlackLctEnable int: Whether to enable regional blocking policy. 0: Disabled; 1: Enabled.
BotDytokenEnable int: Dynamic token protection enabled
BotFrequencyEnable int: Bot rate limit policy enabled. 0: Off 1: On
BotRepeatEnable int: Bot statistics protection policy enabled. 0: Off 1: On
BotSequenceDefaultAction int: Set the default action for the bot behavior map policy. Effective when BotSequenceEnable = 1 is enabled. Default is 0 (Observe). 0: Observe 2: Intercept 6: JS Challenge 7: CAPTCHA.
BotSequenceEnable int: Whether to enable bot behavior map. 0: Off 1: On.
CcEnable int: Whether to enable CC protection policy. 0: Disabled 1: Enabled.
CertificateId string: Certificate ID managed in Certificate Center
CertificatePlatform string: Certificate hosting platform: waf/certificate_service.
ClientIpLocation int: Client IP acquisition method. 0: Custom header field, 1: Use the first public IP address in the X-Forwarded-For (XFF) field as the real client IP address.
ClientMaxBodySize int: Maximum client request body size (MB).
CloudAccessConfigs []DomainCloudAccessConfigArgs
CustomBotEnable int: Whether to enable custom bot protection.
CustomHeaders []string: Custom header.
CustomRspEnable int: Whether to enable custom response.
CustomSni string: Custom SNI.
DefenceMode int: Set protection mode for exception ALB instances. 1: Enable protection. The configured protection policies take effect. 2: Pause protection. Only forwarding is performed without inspection; the configured protection policies do not take effect. 3: Origin mode. Requests are sent directly to the origin server and are no longer forwarded to the WAF instance. After configuring exception protection instances, the domain may also have the following protection statuses: 5: Partially enabled. The default protection mode is enabled, but some exception instances are in paused protection or origin mode. 6: Partially paused. The default protection mode is paused, but some exception instances are in enabled protection or origin mode. 7: Partially origin. The default protection mode is origin mode, but some exception instances are in enabled protection or paused protection.
DlpEnable int: Data leakage protection enabled
EnableCustomRedirect int: User-defined redirection enabled. 0: Off, 1: On
EnableHttp2 int: Whether to enable HTTP/2.0. 0: Disabled, 1: Enabled.
EnableIpv6 int: IPv6 request protection supported. 0: Off, 1: On
EnableSni int: Whether to enable SNI configuration. 0: Off, 1: On.
KeepAliveRequest int: Persistent connection reuse count
KeepAliveTimeout int: Persistent connection keep-alive time (seconds)
LbAlgorithm string: Load balancing algorithm type. wrr: Weighted round robin, wlc: Weighted least connections, sh: Source address hash.
ProjectName string: Project name.
ProtocolFollow int: Protocol following enabled. 0: Off, 1: On
ProtocolPorts DomainProtocolPortsArgs: Access port information
Protocols []string: Access protocol type: supports HTTP/HTTPS
ProxyConfig int: Proxy configuration enabled. 0: Off, 1: On
ProxyConnectTimeout int: Connection timeout between WAF and backend server (seconds).
ProxyKeepAlive int: Number of reusable WAF origin persistent connections.
ProxyKeepAliveTimeout int: Idle persistent connection timeout (seconds)
ProxyReadTimeout int: Timeout for WAF to read response from backend server (seconds).
ProxyRetry int: WAF origin retry count.
ProxyWriteTimeout int: Timeout for WAF to transmit request to backend server (seconds).
PublicRealServer int: CNAME access origin method. 0: Private network origin, 1: Public network origin.
SslCiphers []string: Cipher suite
SslProtocols []string: TLS protocol version. For example: TLSv1, TLSv1.1, TLSv1.2, TLSv1.3
SystemBotEnable int: Whether to enable managed bot protection.
TamperProofEnable int: Whether to enable anti-tampering.
TlsEnable int: Log service enabled. 0: Off, 1: On
TlsFieldsConfig DomainTlsFieldsConfigArgs: Log field configuration details
VpcId string: VPC ID。
WafEnable int: WAF protection enabled
WafWhiteReqEnable int: Allowlist request protection enabled
WhiteEnable int: Whether to enable allowlist protection.
WhiteFieldEnable int: Field allowlist protection enabled

accessMode Integer: Access mode. 10: CNAME access, 11: Layer 7 load balancing (CLB) access.
domain String: Protected domain information. Supports wildcard and exact domains
apiEnable Integer: API protection policy enabled. 0: Off, 1: On
autoCcEnable Integer: Whether to enable intelligent CC protection policy. 0: Disabled, 1: Enabled.
backendGroups List<DomainBackendGroup>
blackIpEnable Integer: Denylist policy enabled. 0: Off, 1: On
blackLctEnable Integer: Whether to enable regional blocking policy. 0: Disabled; 1: Enabled.
botDytokenEnable Integer: Dynamic token protection enabled
botFrequencyEnable Integer: Bot rate limit policy enabled. 0: Off 1: On
botRepeatEnable Integer: Bot statistics protection policy enabled. 0: Off 1: On
botSequenceDefaultAction Integer: Set the default action for the bot behavior map policy. Effective when BotSequenceEnable = 1 is enabled. Default is 0 (Observe). 0: Observe 2: Intercept 6: JS Challenge 7: CAPTCHA.
botSequenceEnable Integer: Whether to enable bot behavior map. 0: Off 1: On.
ccEnable Integer: Whether to enable CC protection policy. 0: Disabled 1: Enabled.
certificateId String: Certificate ID managed in Certificate Center
certificatePlatform String: Certificate hosting platform: waf/certificate_service.
clientIpLocation Integer: Client IP acquisition method. 0: Custom header field, 1: Use the first public IP address in the X-Forwarded-For (XFF) field as the real client IP address.
clientMaxBodySize Integer: Maximum client request body size (MB).
cloudAccessConfigs List<DomainCloudAccessConfig>
customBotEnable Integer: Whether to enable custom bot protection.
customHeaders List<String>: Custom header.
customRspEnable Integer: Whether to enable custom response.
customSni String: Custom SNI.
defenceMode Integer: Set protection mode for exception ALB instances. 1: Enable protection. The configured protection policies take effect. 2: Pause protection. Only forwarding is performed without inspection; the configured protection policies do not take effect. 3: Origin mode. Requests are sent directly to the origin server and are no longer forwarded to the WAF instance. After configuring exception protection instances, the domain may also have the following protection statuses: 5: Partially enabled. The default protection mode is enabled, but some exception instances are in paused protection or origin mode. 6: Partially paused. The default protection mode is paused, but some exception instances are in enabled protection or origin mode. 7: Partially origin. The default protection mode is origin mode, but some exception instances are in enabled protection or paused protection.
dlpEnable Integer: Data leakage protection enabled
enableCustomRedirect Integer: User-defined redirection enabled. 0: Off, 1: On
enableHttp2 Integer: Whether to enable HTTP/2.0. 0: Disabled, 1: Enabled.
enableIpv6 Integer: IPv6 request protection supported. 0: Off, 1: On
enableSni Integer: Whether to enable SNI configuration. 0: Off, 1: On.
keepAliveRequest Integer: Persistent connection reuse count
keepAliveTimeout Integer: Persistent connection keep-alive time (seconds)
lbAlgorithm String: Load balancing algorithm type. wrr: Weighted round robin, wlc: Weighted least connections, sh: Source address hash.
projectName String: Project name.
protocolFollow Integer: Protocol following enabled. 0: Off, 1: On
protocolPorts DomainProtocolPorts: Access port information
protocols List<String>: Access protocol type: supports HTTP/HTTPS
proxyConfig Integer: Proxy configuration enabled. 0: Off, 1: On
proxyConnectTimeout Integer: Connection timeout between WAF and backend server (seconds).
proxyKeepAlive Integer: Number of reusable WAF origin persistent connections.
proxyKeepAliveTimeout Integer: Idle persistent connection timeout (seconds)
proxyReadTimeout Integer: Timeout for WAF to read response from backend server (seconds).
proxyRetry Integer: WAF origin retry count.
proxyWriteTimeout Integer: Timeout for WAF to transmit request to backend server (seconds).
publicRealServer Integer: CNAME access origin method. 0: Private network origin, 1: Public network origin.
sslCiphers List<String>: Cipher suite
sslProtocols List<String>: TLS protocol version. For example: TLSv1, TLSv1.1, TLSv1.2, TLSv1.3
systemBotEnable Integer: Whether to enable managed bot protection.
tamperProofEnable Integer: Whether to enable anti-tampering.
tlsEnable Integer: Log service enabled. 0: Off, 1: On
tlsFieldsConfig DomainTlsFieldsConfig: Log field configuration details
vpcId String: VPC ID。
wafEnable Integer: WAF protection enabled
wafWhiteReqEnable Integer: Allowlist request protection enabled
whiteEnable Integer: Whether to enable allowlist protection.
whiteFieldEnable Integer: Field allowlist protection enabled

accessMode number: Access mode. 10: CNAME access, 11: Layer 7 load balancing (CLB) access.
domain string: Protected domain information. Supports wildcard and exact domains
apiEnable number: API protection policy enabled. 0: Off, 1: On
autoCcEnable number: Whether to enable intelligent CC protection policy. 0: Disabled, 1: Enabled.
backendGroups DomainBackendGroup[]
blackIpEnable number: Denylist policy enabled. 0: Off, 1: On
blackLctEnable number: Whether to enable regional blocking policy. 0: Disabled; 1: Enabled.
botDytokenEnable number: Dynamic token protection enabled
botFrequencyEnable number: Bot rate limit policy enabled. 0: Off 1: On
botRepeatEnable number: Bot statistics protection policy enabled. 0: Off 1: On
botSequenceDefaultAction number: Set the default action for the bot behavior map policy. Effective when BotSequenceEnable = 1 is enabled. Default is 0 (Observe). 0: Observe 2: Intercept 6: JS Challenge 7: CAPTCHA.
botSequenceEnable number: Whether to enable bot behavior map. 0: Off 1: On.
ccEnable number: Whether to enable CC protection policy. 0: Disabled 1: Enabled.
certificateId string: Certificate ID managed in Certificate Center
certificatePlatform string: Certificate hosting platform: waf/certificate_service.
clientIpLocation number: Client IP acquisition method. 0: Custom header field, 1: Use the first public IP address in the X-Forwarded-For (XFF) field as the real client IP address.
clientMaxBodySize number: Maximum client request body size (MB).
cloudAccessConfigs DomainCloudAccessConfig[]
customBotEnable number: Whether to enable custom bot protection.
customHeaders string[]: Custom header.
customRspEnable number: Whether to enable custom response.
customSni string: Custom SNI.
defenceMode number: Set protection mode for exception ALB instances. 1: Enable protection. The configured protection policies take effect. 2: Pause protection. Only forwarding is performed without inspection; the configured protection policies do not take effect. 3: Origin mode. Requests are sent directly to the origin server and are no longer forwarded to the WAF instance. After configuring exception protection instances, the domain may also have the following protection statuses: 5: Partially enabled. The default protection mode is enabled, but some exception instances are in paused protection or origin mode. 6: Partially paused. The default protection mode is paused, but some exception instances are in enabled protection or origin mode. 7: Partially origin. The default protection mode is origin mode, but some exception instances are in enabled protection or paused protection.
dlpEnable number: Data leakage protection enabled
enableCustomRedirect number: User-defined redirection enabled. 0: Off, 1: On
enableHttp2 number: Whether to enable HTTP/2.0. 0: Disabled, 1: Enabled.
enableIpv6 number: IPv6 request protection supported. 0: Off, 1: On
enableSni number: Whether to enable SNI configuration. 0: Off, 1: On.
keepAliveRequest number: Persistent connection reuse count
keepAliveTimeout number: Persistent connection keep-alive time (seconds)
lbAlgorithm string: Load balancing algorithm type. wrr: Weighted round robin, wlc: Weighted least connections, sh: Source address hash.
projectName string: Project name.
protocolFollow number: Protocol following enabled. 0: Off, 1: On
protocolPorts DomainProtocolPorts: Access port information
protocols string[]: Access protocol type: supports HTTP/HTTPS
proxyConfig number: Proxy configuration enabled. 0: Off, 1: On
proxyConnectTimeout number: Connection timeout between WAF and backend server (seconds).
proxyKeepAlive number: Number of reusable WAF origin persistent connections.
proxyKeepAliveTimeout number: Idle persistent connection timeout (seconds)
proxyReadTimeout number: Timeout for WAF to read response from backend server (seconds).
proxyRetry number: WAF origin retry count.
proxyWriteTimeout number: Timeout for WAF to transmit request to backend server (seconds).
publicRealServer number: CNAME access origin method. 0: Private network origin, 1: Public network origin.
sslCiphers string[]: Cipher suite
sslProtocols string[]: TLS protocol version. For example: TLSv1, TLSv1.1, TLSv1.2, TLSv1.3
systemBotEnable number: Whether to enable managed bot protection.
tamperProofEnable number: Whether to enable anti-tampering.
tlsEnable number: Log service enabled. 0: Off, 1: On
tlsFieldsConfig DomainTlsFieldsConfig: Log field configuration details
vpcId string: VPC ID。
wafEnable number: WAF protection enabled
wafWhiteReqEnable number: Allowlist request protection enabled
whiteEnable number: Whether to enable allowlist protection.
whiteFieldEnable number: Field allowlist protection enabled

access_mode int: Access mode. 10: CNAME access, 11: Layer 7 load balancing (CLB) access.
domain str: Protected domain information. Supports wildcard and exact domains
api_enable int: API protection policy enabled. 0: Off, 1: On
auto_cc_enable int: Whether to enable intelligent CC protection policy. 0: Disabled, 1: Enabled.
backend_groups Sequence[DomainBackendGroupArgs]
black_ip_enable int: Denylist policy enabled. 0: Off, 1: On
black_lct_enable int: Whether to enable regional blocking policy. 0: Disabled; 1: Enabled.
bot_dytoken_enable int: Dynamic token protection enabled
bot_frequency_enable int: Bot rate limit policy enabled. 0: Off 1: On
bot_repeat_enable int: Bot statistics protection policy enabled. 0: Off 1: On
bot_sequence_default_action int: Set the default action for the bot behavior map policy. Effective when BotSequenceEnable = 1 is enabled. Default is 0 (Observe). 0: Observe 2: Intercept 6: JS Challenge 7: CAPTCHA.
bot_sequence_enable int: Whether to enable bot behavior map. 0: Off 1: On.
cc_enable int: Whether to enable CC protection policy. 0: Disabled 1: Enabled.
certificate_id str: Certificate ID managed in Certificate Center
certificate_platform str: Certificate hosting platform: waf/certificate_service.
client_ip_location int: Client IP acquisition method. 0: Custom header field, 1: Use the first public IP address in the X-Forwarded-For (XFF) field as the real client IP address.
client_max_body_size int: Maximum client request body size (MB).
cloud_access_configs Sequence[DomainCloudAccessConfigArgs]
custom_bot_enable int: Whether to enable custom bot protection.
custom_headers Sequence[str]: Custom header.
custom_rsp_enable int: Whether to enable custom response.
custom_sni str: Custom SNI.
defence_mode int: Set protection mode for exception ALB instances. 1: Enable protection. The configured protection policies take effect. 2: Pause protection. Only forwarding is performed without inspection; the configured protection policies do not take effect. 3: Origin mode. Requests are sent directly to the origin server and are no longer forwarded to the WAF instance. After configuring exception protection instances, the domain may also have the following protection statuses: 5: Partially enabled. The default protection mode is enabled, but some exception instances are in paused protection or origin mode. 6: Partially paused. The default protection mode is paused, but some exception instances are in enabled protection or origin mode. 7: Partially origin. The default protection mode is origin mode, but some exception instances are in enabled protection or paused protection.
dlp_enable int: Data leakage protection enabled
enable_custom_redirect int: User-defined redirection enabled. 0: Off, 1: On
enable_http2 int: Whether to enable HTTP/2.0. 0: Disabled, 1: Enabled.
enable_ipv6 int: IPv6 request protection supported. 0: Off, 1: On
enable_sni int: Whether to enable SNI configuration. 0: Off, 1: On.
keep_alive_request int: Persistent connection reuse count
keep_alive_timeout int: Persistent connection keep-alive time (seconds)
lb_algorithm str: Load balancing algorithm type. wrr: Weighted round robin, wlc: Weighted least connections, sh: Source address hash.
project_name str: Project name.
protocol_follow int: Protocol following enabled. 0: Off, 1: On
protocol_ports DomainProtocolPortsArgs: Access port information
protocols Sequence[str]: Access protocol type: supports HTTP/HTTPS
proxy_config int: Proxy configuration enabled. 0: Off, 1: On
proxy_connect_timeout int: Connection timeout between WAF and backend server (seconds).
proxy_keep_alive int: Number of reusable WAF origin persistent connections.
proxy_keep_alive_timeout int: Idle persistent connection timeout (seconds)
proxy_read_timeout int: Timeout for WAF to read response from backend server (seconds).
proxy_retry int: WAF origin retry count.
proxy_write_timeout int: Timeout for WAF to transmit request to backend server (seconds).
public_real_server int: CNAME access origin method. 0: Private network origin, 1: Public network origin.
ssl_ciphers Sequence[str]: Cipher suite
ssl_protocols Sequence[str]: TLS protocol version. For example: TLSv1, TLSv1.1, TLSv1.2, TLSv1.3
system_bot_enable int: Whether to enable managed bot protection.
tamper_proof_enable int: Whether to enable anti-tampering.
tls_enable int: Log service enabled. 0: Off, 1: On
tls_fields_config DomainTlsFieldsConfigArgs: Log field configuration details
vpc_id str: VPC ID。
waf_enable int: WAF protection enabled
waf_white_req_enable int: Allowlist request protection enabled
white_enable int: Whether to enable allowlist protection.
white_field_enable int: Field allowlist protection enabled

accessMode Number: Access mode. 10: CNAME access, 11: Layer 7 load balancing (CLB) access.
domain String: Protected domain information. Supports wildcard and exact domains
apiEnable Number: API protection policy enabled. 0: Off, 1: On
autoCcEnable Number: Whether to enable intelligent CC protection policy. 0: Disabled, 1: Enabled.
backendGroups List<Property Map>
blackIpEnable Number: Denylist policy enabled. 0: Off, 1: On
blackLctEnable Number: Whether to enable regional blocking policy. 0: Disabled; 1: Enabled.
botDytokenEnable Number: Dynamic token protection enabled
botFrequencyEnable Number: Bot rate limit policy enabled. 0: Off 1: On
botRepeatEnable Number: Bot statistics protection policy enabled. 0: Off 1: On
botSequenceDefaultAction Number: Set the default action for the bot behavior map policy. Effective when BotSequenceEnable = 1 is enabled. Default is 0 (Observe). 0: Observe 2: Intercept 6: JS Challenge 7: CAPTCHA.
botSequenceEnable Number: Whether to enable bot behavior map. 0: Off 1: On.
ccEnable Number: Whether to enable CC protection policy. 0: Disabled 1: Enabled.
certificateId String: Certificate ID managed in Certificate Center
certificatePlatform String: Certificate hosting platform: waf/certificate_service.
clientIpLocation Number: Client IP acquisition method. 0: Custom header field, 1: Use the first public IP address in the X-Forwarded-For (XFF) field as the real client IP address.
clientMaxBodySize Number: Maximum client request body size (MB).
cloudAccessConfigs List<Property Map>
customBotEnable Number: Whether to enable custom bot protection.
customHeaders List<String>: Custom header.
customRspEnable Number: Whether to enable custom response.
customSni String: Custom SNI.
defenceMode Number: Set protection mode for exception ALB instances. 1: Enable protection. The configured protection policies take effect. 2: Pause protection. Only forwarding is performed without inspection; the configured protection policies do not take effect. 3: Origin mode. Requests are sent directly to the origin server and are no longer forwarded to the WAF instance. After configuring exception protection instances, the domain may also have the following protection statuses: 5: Partially enabled. The default protection mode is enabled, but some exception instances are in paused protection or origin mode. 6: Partially paused. The default protection mode is paused, but some exception instances are in enabled protection or origin mode. 7: Partially origin. The default protection mode is origin mode, but some exception instances are in enabled protection or paused protection.
dlpEnable Number: Data leakage protection enabled
enableCustomRedirect Number: User-defined redirection enabled. 0: Off, 1: On
enableHttp2 Number: Whether to enable HTTP/2.0. 0: Disabled, 1: Enabled.
enableIpv6 Number: IPv6 request protection supported. 0: Off, 1: On
enableSni Number: Whether to enable SNI configuration. 0: Off, 1: On.
keepAliveRequest Number: Persistent connection reuse count
keepAliveTimeout Number: Persistent connection keep-alive time (seconds)
lbAlgorithm String: Load balancing algorithm type. wrr: Weighted round robin, wlc: Weighted least connections, sh: Source address hash.
projectName String: Project name.
protocolFollow Number: Protocol following enabled. 0: Off, 1: On
protocolPorts Property Map: Access port information
protocols List<String>: Access protocol type: supports HTTP/HTTPS
proxyConfig Number: Proxy configuration enabled. 0: Off, 1: On
proxyConnectTimeout Number: Connection timeout between WAF and backend server (seconds).
proxyKeepAlive Number: Number of reusable WAF origin persistent connections.
proxyKeepAliveTimeout Number: Idle persistent connection timeout (seconds)
proxyReadTimeout Number: Timeout for WAF to read response from backend server (seconds).
proxyRetry Number: WAF origin retry count.
proxyWriteTimeout Number: Timeout for WAF to transmit request to backend server (seconds).
publicRealServer Number: CNAME access origin method. 0: Private network origin, 1: Public network origin.
sslCiphers List<String>: Cipher suite
sslProtocols List<String>: TLS protocol version. For example: TLSv1, TLSv1.1, TLSv1.2, TLSv1.3
systemBotEnable Number: Whether to enable managed bot protection.
tamperProofEnable Number: Whether to enable anti-tampering.
tlsEnable Number: Log service enabled. 0: Off, 1: On
tlsFieldsConfig Property Map: Log field configuration details
vpcId String: VPC ID。
wafEnable Number: WAF protection enabled
wafWhiteReqEnable Number: Allowlist request protection enabled
whiteEnable Number: Whether to enable allowlist protection.
whiteFieldEnable Number: Field allowlist protection enabled

Outputs

All input properties are implicitly available as output properties. Additionally, the Domain resource produces the following output properties:

AdvancedDefenseIp string: High defense instance IP. Displayed for high-defense WAF access; otherwise blank.
AdvancedDefenseIpv6 string: High defense instance IPv6. Displayed for high-defense WAF access; otherwise blank.
AttackStatus int: Attack status. 0: No attack detected, 1: Attack detected.
AutomaticBlackEnable int: Whether to enable automatic blocking. 0: Disabled, 1: Enabled.
CertificateName string: Certificate name. Displayed when protocol type includes HTTPS.
ClbInstanceIds string: CLB instance ID.
ClbListenerId string: CLB listener ID.
ClbPoolId string: CLB backend server group ID.
ClbServerId string: CLB backend server ID
Cname string: CNAME record.
Id string: The provider-assigned unique ID for this managed resource.
Port int: Port number
RspAbnormalEnable int: Whether to enable abnormal response protection.
ServerIps string: Service IP
SrcIps string: WAF origin IP.
SrcProtocol string: Origin protocol.
Status int: Access status. 0: Normal, 1: DNS not resolved, 2: Configuring, 3: Configuration failed, 4: Configuration not effective, 5: Updating, 6: Instance deleted.
TcpListenerConfigs List<Byteplus.DomainTcpListenerConfig>
UpdateTime string: Update time

AdvancedDefenseIp string: High defense instance IP. Displayed for high-defense WAF access; otherwise blank.
AdvancedDefenseIpv6 string: High defense instance IPv6. Displayed for high-defense WAF access; otherwise blank.
AttackStatus int: Attack status. 0: No attack detected, 1: Attack detected.
AutomaticBlackEnable int: Whether to enable automatic blocking. 0: Disabled, 1: Enabled.
CertificateName string: Certificate name. Displayed when protocol type includes HTTPS.
ClbInstanceIds string: CLB instance ID.
ClbListenerId string: CLB listener ID.
ClbPoolId string: CLB backend server group ID.
ClbServerId string: CLB backend server ID
Cname string: CNAME record.
Id string: The provider-assigned unique ID for this managed resource.
Port int: Port number
RspAbnormalEnable int: Whether to enable abnormal response protection.
ServerIps string: Service IP
SrcIps string: WAF origin IP.
SrcProtocol string: Origin protocol.
Status int: Access status. 0: Normal, 1: DNS not resolved, 2: Configuring, 3: Configuration failed, 4: Configuration not effective, 5: Updating, 6: Instance deleted.
TcpListenerConfigs []DomainTcpListenerConfig
UpdateTime string: Update time

advancedDefenseIp String: High defense instance IP. Displayed for high-defense WAF access; otherwise blank.
advancedDefenseIpv6 String: High defense instance IPv6. Displayed for high-defense WAF access; otherwise blank.
attackStatus Integer: Attack status. 0: No attack detected, 1: Attack detected.
automaticBlackEnable Integer: Whether to enable automatic blocking. 0: Disabled, 1: Enabled.
certificateName String: Certificate name. Displayed when protocol type includes HTTPS.
clbInstanceIds String: CLB instance ID.
clbListenerId String: CLB listener ID.
clbPoolId String: CLB backend server group ID.
clbServerId String: CLB backend server ID
cname String: CNAME record.
id String: The provider-assigned unique ID for this managed resource.
port Integer: Port number
rspAbnormalEnable Integer: Whether to enable abnormal response protection.
serverIps String: Service IP
srcIps String: WAF origin IP.
srcProtocol String: Origin protocol.
status Integer: Access status. 0: Normal, 1: DNS not resolved, 2: Configuring, 3: Configuration failed, 4: Configuration not effective, 5: Updating, 6: Instance deleted.
tcpListenerConfigs List<DomainTcpListenerConfig>
updateTime String: Update time

advancedDefenseIp string: High defense instance IP. Displayed for high-defense WAF access; otherwise blank.
advancedDefenseIpv6 string: High defense instance IPv6. Displayed for high-defense WAF access; otherwise blank.
attackStatus number: Attack status. 0: No attack detected, 1: Attack detected.
automaticBlackEnable number: Whether to enable automatic blocking. 0: Disabled, 1: Enabled.
certificateName string: Certificate name. Displayed when protocol type includes HTTPS.
clbInstanceIds string: CLB instance ID.
clbListenerId string: CLB listener ID.
clbPoolId string: CLB backend server group ID.
clbServerId string: CLB backend server ID
cname string: CNAME record.
id string: The provider-assigned unique ID for this managed resource.
port number: Port number
rspAbnormalEnable number: Whether to enable abnormal response protection.
serverIps string: Service IP
srcIps string: WAF origin IP.
srcProtocol string: Origin protocol.
status number: Access status. 0: Normal, 1: DNS not resolved, 2: Configuring, 3: Configuration failed, 4: Configuration not effective, 5: Updating, 6: Instance deleted.
tcpListenerConfigs DomainTcpListenerConfig[]
updateTime string: Update time

advanced_defense_ip str: High defense instance IP. Displayed for high-defense WAF access; otherwise blank.
advanced_defense_ipv6 str: High defense instance IPv6. Displayed for high-defense WAF access; otherwise blank.
attack_status int: Attack status. 0: No attack detected, 1: Attack detected.
automatic_black_enable int: Whether to enable automatic blocking. 0: Disabled, 1: Enabled.
certificate_name str: Certificate name. Displayed when protocol type includes HTTPS.
clb_instance_ids str: CLB instance ID.
clb_listener_id str: CLB listener ID.
clb_pool_id str: CLB backend server group ID.
clb_server_id str: CLB backend server ID
cname str: CNAME record.
id str: The provider-assigned unique ID for this managed resource.
port int: Port number
rsp_abnormal_enable int: Whether to enable abnormal response protection.
server_ips str: Service IP
src_ips str: WAF origin IP.
src_protocol str: Origin protocol.
status int: Access status. 0: Normal, 1: DNS not resolved, 2: Configuring, 3: Configuration failed, 4: Configuration not effective, 5: Updating, 6: Instance deleted.
tcp_listener_configs Sequence[DomainTcpListenerConfig]
update_time str: Update time

advancedDefenseIp String: High defense instance IP. Displayed for high-defense WAF access; otherwise blank.
advancedDefenseIpv6 String: High defense instance IPv6. Displayed for high-defense WAF access; otherwise blank.
attackStatus Number: Attack status. 0: No attack detected, 1: Attack detected.
automaticBlackEnable Number: Whether to enable automatic blocking. 0: Disabled, 1: Enabled.
certificateName String: Certificate name. Displayed when protocol type includes HTTPS.
clbInstanceIds String: CLB instance ID.
clbListenerId String: CLB listener ID.
clbPoolId String: CLB backend server group ID.
clbServerId String: CLB backend server ID
cname String: CNAME record.
id String: The provider-assigned unique ID for this managed resource.
port Number: Port number
rspAbnormalEnable Number: Whether to enable abnormal response protection.
serverIps String: Service IP
srcIps String: WAF origin IP.
srcProtocol String: Origin protocol.
status Number: Access status. 0: Normal, 1: DNS not resolved, 2: Configuring, 3: Configuration failed, 4: Configuration not effective, 5: Updating, 6: Instance deleted.
tcpListenerConfigs List<Property Map>
updateTime String: Update time

Look up Existing Domain Resource

Get an existing Domain resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: DomainState, opts?: CustomResourceOptions): Domain

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        access_mode: Optional[int] = None,
        advanced_defense_ip: Optional[str] = None,
        advanced_defense_ipv6: Optional[str] = None,
        api_enable: Optional[int] = None,
        attack_status: Optional[int] = None,
        auto_cc_enable: Optional[int] = None,
        automatic_black_enable: Optional[int] = None,
        backend_groups: Optional[Sequence[DomainBackendGroupArgs]] = None,
        black_ip_enable: Optional[int] = None,
        black_lct_enable: Optional[int] = None,
        bot_dytoken_enable: Optional[int] = None,
        bot_frequency_enable: Optional[int] = None,
        bot_repeat_enable: Optional[int] = None,
        bot_sequence_default_action: Optional[int] = None,
        bot_sequence_enable: Optional[int] = None,
        cc_enable: Optional[int] = None,
        certificate_id: Optional[str] = None,
        certificate_name: Optional[str] = None,
        certificate_platform: Optional[str] = None,
        clb_instance_ids: Optional[str] = None,
        clb_listener_id: Optional[str] = None,
        clb_pool_id: Optional[str] = None,
        clb_server_id: Optional[str] = None,
        client_ip_location: Optional[int] = None,
        client_max_body_size: Optional[int] = None,
        cloud_access_configs: Optional[Sequence[DomainCloudAccessConfigArgs]] = None,
        cname: Optional[str] = None,
        custom_bot_enable: Optional[int] = None,
        custom_headers: Optional[Sequence[str]] = None,
        custom_rsp_enable: Optional[int] = None,
        custom_sni: Optional[str] = None,
        defence_mode: Optional[int] = None,
        dlp_enable: Optional[int] = None,
        domain: Optional[str] = None,
        enable_custom_redirect: Optional[int] = None,
        enable_http2: Optional[int] = None,
        enable_ipv6: Optional[int] = None,
        enable_sni: Optional[int] = None,
        keep_alive_request: Optional[int] = None,
        keep_alive_timeout: Optional[int] = None,
        lb_algorithm: Optional[str] = None,
        port: Optional[int] = None,
        project_name: Optional[str] = None,
        protocol_follow: Optional[int] = None,
        protocol_ports: Optional[DomainProtocolPortsArgs] = None,
        protocols: Optional[Sequence[str]] = None,
        proxy_config: Optional[int] = None,
        proxy_connect_timeout: Optional[int] = None,
        proxy_keep_alive: Optional[int] = None,
        proxy_keep_alive_timeout: Optional[int] = None,
        proxy_read_timeout: Optional[int] = None,
        proxy_retry: Optional[int] = None,
        proxy_write_timeout: Optional[int] = None,
        public_real_server: Optional[int] = None,
        rsp_abnormal_enable: Optional[int] = None,
        server_ips: Optional[str] = None,
        src_ips: Optional[str] = None,
        src_protocol: Optional[str] = None,
        ssl_ciphers: Optional[Sequence[str]] = None,
        ssl_protocols: Optional[Sequence[str]] = None,
        status: Optional[int] = None,
        system_bot_enable: Optional[int] = None,
        tamper_proof_enable: Optional[int] = None,
        tcp_listener_configs: Optional[Sequence[DomainTcpListenerConfigArgs]] = None,
        tls_enable: Optional[int] = None,
        tls_fields_config: Optional[DomainTlsFieldsConfigArgs] = None,
        update_time: Optional[str] = None,
        vpc_id: Optional[str] = None,
        waf_enable: Optional[int] = None,
        waf_white_req_enable: Optional[int] = None,
        white_enable: Optional[int] = None,
        white_field_enable: Optional[int] = None) -> Domain

func GetDomain(ctx *Context, name string, id IDInput, state *DomainState, opts ...ResourceOption) (*Domain, error)

public static Domain Get(string name, Input<string> id, DomainState? state, CustomResourceOptions? opts = null)

public static Domain get(String name, Output<String> id, DomainState state, CustomResourceOptions options)

resources:  _:    type: bytepluscc:waf:Domain    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AccessMode int: Access mode. 10: CNAME access, 11: Layer 7 load balancing (CLB) access.
AdvancedDefenseIp string: High defense instance IP. Displayed for high-defense WAF access; otherwise blank.
AdvancedDefenseIpv6 string: High defense instance IPv6. Displayed for high-defense WAF access; otherwise blank.
ApiEnable int: API protection policy enabled. 0: Off, 1: On
AttackStatus int: Attack status. 0: No attack detected, 1: Attack detected.
AutoCcEnable int: Whether to enable intelligent CC protection policy. 0: Disabled, 1: Enabled.
AutomaticBlackEnable int: Whether to enable automatic blocking. 0: Disabled, 1: Enabled.
BackendGroups List<Byteplus.DomainBackendGroup>
BlackIpEnable int: Denylist policy enabled. 0: Off, 1: On
BlackLctEnable int: Whether to enable regional blocking policy. 0: Disabled; 1: Enabled.
BotDytokenEnable int: Dynamic token protection enabled
BotFrequencyEnable int: Bot rate limit policy enabled. 0: Off 1: On
BotRepeatEnable int: Bot statistics protection policy enabled. 0: Off 1: On
BotSequenceDefaultAction int: Set the default action for the bot behavior map policy. Effective when BotSequenceEnable = 1 is enabled. Default is 0 (Observe). 0: Observe 2: Intercept 6: JS Challenge 7: CAPTCHA.
BotSequenceEnable int: Whether to enable bot behavior map. 0: Off 1: On.
CcEnable int: Whether to enable CC protection policy. 0: Disabled 1: Enabled.
CertificateId string: Certificate ID managed in Certificate Center
CertificateName string: Certificate name. Displayed when protocol type includes HTTPS.
CertificatePlatform string: Certificate hosting platform: waf/certificate_service.
ClbInstanceIds string: CLB instance ID.
ClbListenerId string: CLB listener ID.
ClbPoolId string: CLB backend server group ID.
ClbServerId string: CLB backend server ID
ClientIpLocation int: Client IP acquisition method. 0: Custom header field, 1: Use the first public IP address in the X-Forwarded-For (XFF) field as the real client IP address.
ClientMaxBodySize int: Maximum client request body size (MB).
CloudAccessConfigs List<Byteplus.DomainCloudAccessConfig>
Cname string: CNAME record.
CustomBotEnable int: Whether to enable custom bot protection.
CustomHeaders List<string>: Custom header.
CustomRspEnable int: Whether to enable custom response.
CustomSni string: Custom SNI.
DefenceMode int: Set protection mode for exception ALB instances. 1: Enable protection. The configured protection policies take effect. 2: Pause protection. Only forwarding is performed without inspection; the configured protection policies do not take effect. 3: Origin mode. Requests are sent directly to the origin server and are no longer forwarded to the WAF instance. After configuring exception protection instances, the domain may also have the following protection statuses: 5: Partially enabled. The default protection mode is enabled, but some exception instances are in paused protection or origin mode. 6: Partially paused. The default protection mode is paused, but some exception instances are in enabled protection or origin mode. 7: Partially origin. The default protection mode is origin mode, but some exception instances are in enabled protection or paused protection.
DlpEnable int: Data leakage protection enabled
DomainValue string: Protected domain information. Supports wildcard and exact domains
EnableCustomRedirect int: User-defined redirection enabled. 0: Off, 1: On
EnableHttp2 int: Whether to enable HTTP/2.0. 0: Disabled, 1: Enabled.
EnableIpv6 int: IPv6 request protection supported. 0: Off, 1: On
EnableSni int: Whether to enable SNI configuration. 0: Off, 1: On.
KeepAliveRequest int: Persistent connection reuse count
KeepAliveTimeout int: Persistent connection keep-alive time (seconds)
LbAlgorithm string: Load balancing algorithm type. wrr: Weighted round robin, wlc: Weighted least connections, sh: Source address hash.
Port int: Port number
ProjectName string: Project name.
ProtocolFollow int: Protocol following enabled. 0: Off, 1: On
ProtocolPorts Byteplus.DomainProtocolPorts: Access port information
Protocols List<string>: Access protocol type: supports HTTP/HTTPS
ProxyConfig int: Proxy configuration enabled. 0: Off, 1: On
ProxyConnectTimeout int: Connection timeout between WAF and backend server (seconds).
ProxyKeepAlive int: Number of reusable WAF origin persistent connections.
ProxyKeepAliveTimeout int: Idle persistent connection timeout (seconds)
ProxyReadTimeout int: Timeout for WAF to read response from backend server (seconds).
ProxyRetry int: WAF origin retry count.
ProxyWriteTimeout int: Timeout for WAF to transmit request to backend server (seconds).
PublicRealServer int: CNAME access origin method. 0: Private network origin, 1: Public network origin.
RspAbnormalEnable int: Whether to enable abnormal response protection.
ServerIps string: Service IP
SrcIps string: WAF origin IP.
SrcProtocol string: Origin protocol.
SslCiphers List<string>: Cipher suite
SslProtocols List<string>: TLS protocol version. For example: TLSv1, TLSv1.1, TLSv1.2, TLSv1.3
Status int: Access status. 0: Normal, 1: DNS not resolved, 2: Configuring, 3: Configuration failed, 4: Configuration not effective, 5: Updating, 6: Instance deleted.
SystemBotEnable int: Whether to enable managed bot protection.
TamperProofEnable int: Whether to enable anti-tampering.
TcpListenerConfigs List<Byteplus.DomainTcpListenerConfig>
TlsEnable int: Log service enabled. 0: Off, 1: On
TlsFieldsConfig Byteplus.DomainTlsFieldsConfig: Log field configuration details
UpdateTime string: Update time
VpcId string: VPC ID。
WafEnable int: WAF protection enabled
WafWhiteReqEnable int: Allowlist request protection enabled
WhiteEnable int: Whether to enable allowlist protection.
WhiteFieldEnable int: Field allowlist protection enabled

AccessMode int: Access mode. 10: CNAME access, 11: Layer 7 load balancing (CLB) access.
AdvancedDefenseIp string: High defense instance IP. Displayed for high-defense WAF access; otherwise blank.
AdvancedDefenseIpv6 string: High defense instance IPv6. Displayed for high-defense WAF access; otherwise blank.
ApiEnable int: API protection policy enabled. 0: Off, 1: On
AttackStatus int: Attack status. 0: No attack detected, 1: Attack detected.
AutoCcEnable int: Whether to enable intelligent CC protection policy. 0: Disabled, 1: Enabled.
AutomaticBlackEnable int: Whether to enable automatic blocking. 0: Disabled, 1: Enabled.
BackendGroups []DomainBackendGroupArgs
BlackIpEnable int: Denylist policy enabled. 0: Off, 1: On
BlackLctEnable int: Whether to enable regional blocking policy. 0: Disabled; 1: Enabled.
BotDytokenEnable int: Dynamic token protection enabled
BotFrequencyEnable int: Bot rate limit policy enabled. 0: Off 1: On
BotRepeatEnable int: Bot statistics protection policy enabled. 0: Off 1: On
BotSequenceDefaultAction int: Set the default action for the bot behavior map policy. Effective when BotSequenceEnable = 1 is enabled. Default is 0 (Observe). 0: Observe 2: Intercept 6: JS Challenge 7: CAPTCHA.
BotSequenceEnable int: Whether to enable bot behavior map. 0: Off 1: On.
CcEnable int: Whether to enable CC protection policy. 0: Disabled 1: Enabled.
CertificateId string: Certificate ID managed in Certificate Center
CertificateName string: Certificate name. Displayed when protocol type includes HTTPS.
CertificatePlatform string: Certificate hosting platform: waf/certificate_service.
ClbInstanceIds string: CLB instance ID.
ClbListenerId string: CLB listener ID.
ClbPoolId string: CLB backend server group ID.
ClbServerId string: CLB backend server ID
ClientIpLocation int: Client IP acquisition method. 0: Custom header field, 1: Use the first public IP address in the X-Forwarded-For (XFF) field as the real client IP address.
ClientMaxBodySize int: Maximum client request body size (MB).
CloudAccessConfigs []DomainCloudAccessConfigArgs
Cname string: CNAME record.
CustomBotEnable int: Whether to enable custom bot protection.
CustomHeaders []string: Custom header.
CustomRspEnable int: Whether to enable custom response.
CustomSni string: Custom SNI.
DefenceMode int: Set protection mode for exception ALB instances. 1: Enable protection. The configured protection policies take effect. 2: Pause protection. Only forwarding is performed without inspection; the configured protection policies do not take effect. 3: Origin mode. Requests are sent directly to the origin server and are no longer forwarded to the WAF instance. After configuring exception protection instances, the domain may also have the following protection statuses: 5: Partially enabled. The default protection mode is enabled, but some exception instances are in paused protection or origin mode. 6: Partially paused. The default protection mode is paused, but some exception instances are in enabled protection or origin mode. 7: Partially origin. The default protection mode is origin mode, but some exception instances are in enabled protection or paused protection.
DlpEnable int: Data leakage protection enabled
Domain string: Protected domain information. Supports wildcard and exact domains
EnableCustomRedirect int: User-defined redirection enabled. 0: Off, 1: On
EnableHttp2 int: Whether to enable HTTP/2.0. 0: Disabled, 1: Enabled.
EnableIpv6 int: IPv6 request protection supported. 0: Off, 1: On
EnableSni int: Whether to enable SNI configuration. 0: Off, 1: On.
KeepAliveRequest int: Persistent connection reuse count
KeepAliveTimeout int: Persistent connection keep-alive time (seconds)
LbAlgorithm string: Load balancing algorithm type. wrr: Weighted round robin, wlc: Weighted least connections, sh: Source address hash.
Port int: Port number
ProjectName string: Project name.
ProtocolFollow int: Protocol following enabled. 0: Off, 1: On
ProtocolPorts DomainProtocolPortsArgs: Access port information
Protocols []string: Access protocol type: supports HTTP/HTTPS
ProxyConfig int: Proxy configuration enabled. 0: Off, 1: On
ProxyConnectTimeout int: Connection timeout between WAF and backend server (seconds).
ProxyKeepAlive int: Number of reusable WAF origin persistent connections.
ProxyKeepAliveTimeout int: Idle persistent connection timeout (seconds)
ProxyReadTimeout int: Timeout for WAF to read response from backend server (seconds).
ProxyRetry int: WAF origin retry count.
ProxyWriteTimeout int: Timeout for WAF to transmit request to backend server (seconds).
PublicRealServer int: CNAME access origin method. 0: Private network origin, 1: Public network origin.
RspAbnormalEnable int: Whether to enable abnormal response protection.
ServerIps string: Service IP
SrcIps string: WAF origin IP.
SrcProtocol string: Origin protocol.
SslCiphers []string: Cipher suite
SslProtocols []string: TLS protocol version. For example: TLSv1, TLSv1.1, TLSv1.2, TLSv1.3
Status int: Access status. 0: Normal, 1: DNS not resolved, 2: Configuring, 3: Configuration failed, 4: Configuration not effective, 5: Updating, 6: Instance deleted.
SystemBotEnable int: Whether to enable managed bot protection.
TamperProofEnable int: Whether to enable anti-tampering.
TcpListenerConfigs []DomainTcpListenerConfigArgs
TlsEnable int: Log service enabled. 0: Off, 1: On
TlsFieldsConfig DomainTlsFieldsConfigArgs: Log field configuration details
UpdateTime string: Update time
VpcId string: VPC ID。
WafEnable int: WAF protection enabled
WafWhiteReqEnable int: Allowlist request protection enabled
WhiteEnable int: Whether to enable allowlist protection.
WhiteFieldEnable int: Field allowlist protection enabled

accessMode Integer: Access mode. 10: CNAME access, 11: Layer 7 load balancing (CLB) access.
advancedDefenseIp String: High defense instance IP. Displayed for high-defense WAF access; otherwise blank.
advancedDefenseIpv6 String: High defense instance IPv6. Displayed for high-defense WAF access; otherwise blank.
apiEnable Integer: API protection policy enabled. 0: Off, 1: On
attackStatus Integer: Attack status. 0: No attack detected, 1: Attack detected.
autoCcEnable Integer: Whether to enable intelligent CC protection policy. 0: Disabled, 1: Enabled.
automaticBlackEnable Integer: Whether to enable automatic blocking. 0: Disabled, 1: Enabled.
backendGroups List<DomainBackendGroup>
blackIpEnable Integer: Denylist policy enabled. 0: Off, 1: On
blackLctEnable Integer: Whether to enable regional blocking policy. 0: Disabled; 1: Enabled.
botDytokenEnable Integer: Dynamic token protection enabled
botFrequencyEnable Integer: Bot rate limit policy enabled. 0: Off 1: On
botRepeatEnable Integer: Bot statistics protection policy enabled. 0: Off 1: On
botSequenceDefaultAction Integer: Set the default action for the bot behavior map policy. Effective when BotSequenceEnable = 1 is enabled. Default is 0 (Observe). 0: Observe 2: Intercept 6: JS Challenge 7: CAPTCHA.
botSequenceEnable Integer: Whether to enable bot behavior map. 0: Off 1: On.
ccEnable Integer: Whether to enable CC protection policy. 0: Disabled 1: Enabled.
certificateId String: Certificate ID managed in Certificate Center
certificateName String: Certificate name. Displayed when protocol type includes HTTPS.
certificatePlatform String: Certificate hosting platform: waf/certificate_service.
clbInstanceIds String: CLB instance ID.
clbListenerId String: CLB listener ID.
clbPoolId String: CLB backend server group ID.
clbServerId String: CLB backend server ID
clientIpLocation Integer: Client IP acquisition method. 0: Custom header field, 1: Use the first public IP address in the X-Forwarded-For (XFF) field as the real client IP address.
clientMaxBodySize Integer: Maximum client request body size (MB).
cloudAccessConfigs List<DomainCloudAccessConfig>
cname String: CNAME record.
customBotEnable Integer: Whether to enable custom bot protection.
customHeaders List<String>: Custom header.
customRspEnable Integer: Whether to enable custom response.
customSni String: Custom SNI.
defenceMode Integer: Set protection mode for exception ALB instances. 1: Enable protection. The configured protection policies take effect. 2: Pause protection. Only forwarding is performed without inspection; the configured protection policies do not take effect. 3: Origin mode. Requests are sent directly to the origin server and are no longer forwarded to the WAF instance. After configuring exception protection instances, the domain may also have the following protection statuses: 5: Partially enabled. The default protection mode is enabled, but some exception instances are in paused protection or origin mode. 6: Partially paused. The default protection mode is paused, but some exception instances are in enabled protection or origin mode. 7: Partially origin. The default protection mode is origin mode, but some exception instances are in enabled protection or paused protection.
dlpEnable Integer: Data leakage protection enabled
domain String: Protected domain information. Supports wildcard and exact domains
enableCustomRedirect Integer: User-defined redirection enabled. 0: Off, 1: On
enableHttp2 Integer: Whether to enable HTTP/2.0. 0: Disabled, 1: Enabled.
enableIpv6 Integer: IPv6 request protection supported. 0: Off, 1: On
enableSni Integer: Whether to enable SNI configuration. 0: Off, 1: On.
keepAliveRequest Integer: Persistent connection reuse count
keepAliveTimeout Integer: Persistent connection keep-alive time (seconds)
lbAlgorithm String: Load balancing algorithm type. wrr: Weighted round robin, wlc: Weighted least connections, sh: Source address hash.
port Integer: Port number
projectName String: Project name.
protocolFollow Integer: Protocol following enabled. 0: Off, 1: On
protocolPorts DomainProtocolPorts: Access port information
protocols List<String>: Access protocol type: supports HTTP/HTTPS
proxyConfig Integer: Proxy configuration enabled. 0: Off, 1: On
proxyConnectTimeout Integer: Connection timeout between WAF and backend server (seconds).
proxyKeepAlive Integer: Number of reusable WAF origin persistent connections.
proxyKeepAliveTimeout Integer: Idle persistent connection timeout (seconds)
proxyReadTimeout Integer: Timeout for WAF to read response from backend server (seconds).
proxyRetry Integer: WAF origin retry count.
proxyWriteTimeout Integer: Timeout for WAF to transmit request to backend server (seconds).
publicRealServer Integer: CNAME access origin method. 0: Private network origin, 1: Public network origin.
rspAbnormalEnable Integer: Whether to enable abnormal response protection.
serverIps String: Service IP
srcIps String: WAF origin IP.
srcProtocol String: Origin protocol.
sslCiphers List<String>: Cipher suite
sslProtocols List<String>: TLS protocol version. For example: TLSv1, TLSv1.1, TLSv1.2, TLSv1.3
status Integer: Access status. 0: Normal, 1: DNS not resolved, 2: Configuring, 3: Configuration failed, 4: Configuration not effective, 5: Updating, 6: Instance deleted.
systemBotEnable Integer: Whether to enable managed bot protection.
tamperProofEnable Integer: Whether to enable anti-tampering.
tcpListenerConfigs List<DomainTcpListenerConfig>
tlsEnable Integer: Log service enabled. 0: Off, 1: On
tlsFieldsConfig DomainTlsFieldsConfig: Log field configuration details
updateTime String: Update time
vpcId String: VPC ID。
wafEnable Integer: WAF protection enabled
wafWhiteReqEnable Integer: Allowlist request protection enabled
whiteEnable Integer: Whether to enable allowlist protection.
whiteFieldEnable Integer: Field allowlist protection enabled

accessMode number: Access mode. 10: CNAME access, 11: Layer 7 load balancing (CLB) access.
advancedDefenseIp string: High defense instance IP. Displayed for high-defense WAF access; otherwise blank.
advancedDefenseIpv6 string: High defense instance IPv6. Displayed for high-defense WAF access; otherwise blank.
apiEnable number: API protection policy enabled. 0: Off, 1: On
attackStatus number: Attack status. 0: No attack detected, 1: Attack detected.
autoCcEnable number: Whether to enable intelligent CC protection policy. 0: Disabled, 1: Enabled.
automaticBlackEnable number: Whether to enable automatic blocking. 0: Disabled, 1: Enabled.
backendGroups DomainBackendGroup[]
blackIpEnable number: Denylist policy enabled. 0: Off, 1: On
blackLctEnable number: Whether to enable regional blocking policy. 0: Disabled; 1: Enabled.
botDytokenEnable number: Dynamic token protection enabled
botFrequencyEnable number: Bot rate limit policy enabled. 0: Off 1: On
botRepeatEnable number: Bot statistics protection policy enabled. 0: Off 1: On
botSequenceDefaultAction number: Set the default action for the bot behavior map policy. Effective when BotSequenceEnable = 1 is enabled. Default is 0 (Observe). 0: Observe 2: Intercept 6: JS Challenge 7: CAPTCHA.
botSequenceEnable number: Whether to enable bot behavior map. 0: Off 1: On.
ccEnable number: Whether to enable CC protection policy. 0: Disabled 1: Enabled.
certificateId string: Certificate ID managed in Certificate Center
certificateName string: Certificate name. Displayed when protocol type includes HTTPS.
certificatePlatform string: Certificate hosting platform: waf/certificate_service.
clbInstanceIds string: CLB instance ID.
clbListenerId string: CLB listener ID.
clbPoolId string: CLB backend server group ID.
clbServerId string: CLB backend server ID
clientIpLocation number: Client IP acquisition method. 0: Custom header field, 1: Use the first public IP address in the X-Forwarded-For (XFF) field as the real client IP address.
clientMaxBodySize number: Maximum client request body size (MB).
cloudAccessConfigs DomainCloudAccessConfig[]
cname string: CNAME record.
customBotEnable number: Whether to enable custom bot protection.
customHeaders string[]: Custom header.
customRspEnable number: Whether to enable custom response.
customSni string: Custom SNI.
defenceMode number: Set protection mode for exception ALB instances. 1: Enable protection. The configured protection policies take effect. 2: Pause protection. Only forwarding is performed without inspection; the configured protection policies do not take effect. 3: Origin mode. Requests are sent directly to the origin server and are no longer forwarded to the WAF instance. After configuring exception protection instances, the domain may also have the following protection statuses: 5: Partially enabled. The default protection mode is enabled, but some exception instances are in paused protection or origin mode. 6: Partially paused. The default protection mode is paused, but some exception instances are in enabled protection or origin mode. 7: Partially origin. The default protection mode is origin mode, but some exception instances are in enabled protection or paused protection.
dlpEnable number: Data leakage protection enabled
domain string: Protected domain information. Supports wildcard and exact domains
enableCustomRedirect number: User-defined redirection enabled. 0: Off, 1: On
enableHttp2 number: Whether to enable HTTP/2.0. 0: Disabled, 1: Enabled.
enableIpv6 number: IPv6 request protection supported. 0: Off, 1: On
enableSni number: Whether to enable SNI configuration. 0: Off, 1: On.
keepAliveRequest number: Persistent connection reuse count
keepAliveTimeout number: Persistent connection keep-alive time (seconds)
lbAlgorithm string: Load balancing algorithm type. wrr: Weighted round robin, wlc: Weighted least connections, sh: Source address hash.
port number: Port number
projectName string: Project name.
protocolFollow number: Protocol following enabled. 0: Off, 1: On
protocolPorts DomainProtocolPorts: Access port information
protocols string[]: Access protocol type: supports HTTP/HTTPS
proxyConfig number: Proxy configuration enabled. 0: Off, 1: On
proxyConnectTimeout number: Connection timeout between WAF and backend server (seconds).
proxyKeepAlive number: Number of reusable WAF origin persistent connections.
proxyKeepAliveTimeout number: Idle persistent connection timeout (seconds)
proxyReadTimeout number: Timeout for WAF to read response from backend server (seconds).
proxyRetry number: WAF origin retry count.
proxyWriteTimeout number: Timeout for WAF to transmit request to backend server (seconds).
publicRealServer number: CNAME access origin method. 0: Private network origin, 1: Public network origin.
rspAbnormalEnable number: Whether to enable abnormal response protection.
serverIps string: Service IP
srcIps string: WAF origin IP.
srcProtocol string: Origin protocol.
sslCiphers string[]: Cipher suite
sslProtocols string[]: TLS protocol version. For example: TLSv1, TLSv1.1, TLSv1.2, TLSv1.3
status number: Access status. 0: Normal, 1: DNS not resolved, 2: Configuring, 3: Configuration failed, 4: Configuration not effective, 5: Updating, 6: Instance deleted.
systemBotEnable number: Whether to enable managed bot protection.
tamperProofEnable number: Whether to enable anti-tampering.
tcpListenerConfigs DomainTcpListenerConfig[]
tlsEnable number: Log service enabled. 0: Off, 1: On
tlsFieldsConfig DomainTlsFieldsConfig: Log field configuration details
updateTime string: Update time
vpcId string: VPC ID。
wafEnable number: WAF protection enabled
wafWhiteReqEnable number: Allowlist request protection enabled
whiteEnable number: Whether to enable allowlist protection.
whiteFieldEnable number: Field allowlist protection enabled

access_mode int: Access mode. 10: CNAME access, 11: Layer 7 load balancing (CLB) access.
advanced_defense_ip str: High defense instance IP. Displayed for high-defense WAF access; otherwise blank.
advanced_defense_ipv6 str: High defense instance IPv6. Displayed for high-defense WAF access; otherwise blank.
api_enable int: API protection policy enabled. 0: Off, 1: On
attack_status int: Attack status. 0: No attack detected, 1: Attack detected.
auto_cc_enable int: Whether to enable intelligent CC protection policy. 0: Disabled, 1: Enabled.
automatic_black_enable int: Whether to enable automatic blocking. 0: Disabled, 1: Enabled.
backend_groups Sequence[DomainBackendGroupArgs]
black_ip_enable int: Denylist policy enabled. 0: Off, 1: On
black_lct_enable int: Whether to enable regional blocking policy. 0: Disabled; 1: Enabled.
bot_dytoken_enable int: Dynamic token protection enabled
bot_frequency_enable int: Bot rate limit policy enabled. 0: Off 1: On
bot_repeat_enable int: Bot statistics protection policy enabled. 0: Off 1: On
bot_sequence_default_action int: Set the default action for the bot behavior map policy. Effective when BotSequenceEnable = 1 is enabled. Default is 0 (Observe). 0: Observe 2: Intercept 6: JS Challenge 7: CAPTCHA.
bot_sequence_enable int: Whether to enable bot behavior map. 0: Off 1: On.
cc_enable int: Whether to enable CC protection policy. 0: Disabled 1: Enabled.
certificate_id str: Certificate ID managed in Certificate Center
certificate_name str: Certificate name. Displayed when protocol type includes HTTPS.
certificate_platform str: Certificate hosting platform: waf/certificate_service.
clb_instance_ids str: CLB instance ID.
clb_listener_id str: CLB listener ID.
clb_pool_id str: CLB backend server group ID.
clb_server_id str: CLB backend server ID
client_ip_location int: Client IP acquisition method. 0: Custom header field, 1: Use the first public IP address in the X-Forwarded-For (XFF) field as the real client IP address.
client_max_body_size int: Maximum client request body size (MB).
cloud_access_configs Sequence[DomainCloudAccessConfigArgs]
cname str: CNAME record.
custom_bot_enable int: Whether to enable custom bot protection.
custom_headers Sequence[str]: Custom header.
custom_rsp_enable int: Whether to enable custom response.
custom_sni str: Custom SNI.
defence_mode int: Set protection mode for exception ALB instances. 1: Enable protection. The configured protection policies take effect. 2: Pause protection. Only forwarding is performed without inspection; the configured protection policies do not take effect. 3: Origin mode. Requests are sent directly to the origin server and are no longer forwarded to the WAF instance. After configuring exception protection instances, the domain may also have the following protection statuses: 5: Partially enabled. The default protection mode is enabled, but some exception instances are in paused protection or origin mode. 6: Partially paused. The default protection mode is paused, but some exception instances are in enabled protection or origin mode. 7: Partially origin. The default protection mode is origin mode, but some exception instances are in enabled protection or paused protection.
dlp_enable int: Data leakage protection enabled
domain str: Protected domain information. Supports wildcard and exact domains
enable_custom_redirect int: User-defined redirection enabled. 0: Off, 1: On
enable_http2 int: Whether to enable HTTP/2.0. 0: Disabled, 1: Enabled.
enable_ipv6 int: IPv6 request protection supported. 0: Off, 1: On
enable_sni int: Whether to enable SNI configuration. 0: Off, 1: On.
keep_alive_request int: Persistent connection reuse count
keep_alive_timeout int: Persistent connection keep-alive time (seconds)
lb_algorithm str: Load balancing algorithm type. wrr: Weighted round robin, wlc: Weighted least connections, sh: Source address hash.
port int: Port number
project_name str: Project name.
protocol_follow int: Protocol following enabled. 0: Off, 1: On
protocol_ports DomainProtocolPortsArgs: Access port information
protocols Sequence[str]: Access protocol type: supports HTTP/HTTPS
proxy_config int: Proxy configuration enabled. 0: Off, 1: On
proxy_connect_timeout int: Connection timeout between WAF and backend server (seconds).
proxy_keep_alive int: Number of reusable WAF origin persistent connections.
proxy_keep_alive_timeout int: Idle persistent connection timeout (seconds)
proxy_read_timeout int: Timeout for WAF to read response from backend server (seconds).
proxy_retry int: WAF origin retry count.
proxy_write_timeout int: Timeout for WAF to transmit request to backend server (seconds).
public_real_server int: CNAME access origin method. 0: Private network origin, 1: Public network origin.
rsp_abnormal_enable int: Whether to enable abnormal response protection.
server_ips str: Service IP
src_ips str: WAF origin IP.
src_protocol str: Origin protocol.
ssl_ciphers Sequence[str]: Cipher suite
ssl_protocols Sequence[str]: TLS protocol version. For example: TLSv1, TLSv1.1, TLSv1.2, TLSv1.3
status int: Access status. 0: Normal, 1: DNS not resolved, 2: Configuring, 3: Configuration failed, 4: Configuration not effective, 5: Updating, 6: Instance deleted.
system_bot_enable int: Whether to enable managed bot protection.
tamper_proof_enable int: Whether to enable anti-tampering.
tcp_listener_configs Sequence[DomainTcpListenerConfigArgs]
tls_enable int: Log service enabled. 0: Off, 1: On
tls_fields_config DomainTlsFieldsConfigArgs: Log field configuration details
update_time str: Update time
vpc_id str: VPC ID。
waf_enable int: WAF protection enabled
waf_white_req_enable int: Allowlist request protection enabled
white_enable int: Whether to enable allowlist protection.
white_field_enable int: Field allowlist protection enabled

accessMode Number: Access mode. 10: CNAME access, 11: Layer 7 load balancing (CLB) access.
advancedDefenseIp String: High defense instance IP. Displayed for high-defense WAF access; otherwise blank.
advancedDefenseIpv6 String: High defense instance IPv6. Displayed for high-defense WAF access; otherwise blank.
apiEnable Number: API protection policy enabled. 0: Off, 1: On
attackStatus Number: Attack status. 0: No attack detected, 1: Attack detected.
autoCcEnable Number: Whether to enable intelligent CC protection policy. 0: Disabled, 1: Enabled.
automaticBlackEnable Number: Whether to enable automatic blocking. 0: Disabled, 1: Enabled.
backendGroups List<Property Map>
blackIpEnable Number: Denylist policy enabled. 0: Off, 1: On
blackLctEnable Number: Whether to enable regional blocking policy. 0: Disabled; 1: Enabled.
botDytokenEnable Number: Dynamic token protection enabled
botFrequencyEnable Number: Bot rate limit policy enabled. 0: Off 1: On
botRepeatEnable Number: Bot statistics protection policy enabled. 0: Off 1: On
botSequenceDefaultAction Number: Set the default action for the bot behavior map policy. Effective when BotSequenceEnable = 1 is enabled. Default is 0 (Observe). 0: Observe 2: Intercept 6: JS Challenge 7: CAPTCHA.
botSequenceEnable Number: Whether to enable bot behavior map. 0: Off 1: On.
ccEnable Number: Whether to enable CC protection policy. 0: Disabled 1: Enabled.
certificateId String: Certificate ID managed in Certificate Center
certificateName String: Certificate name. Displayed when protocol type includes HTTPS.
certificatePlatform String: Certificate hosting platform: waf/certificate_service.
clbInstanceIds String: CLB instance ID.
clbListenerId String: CLB listener ID.
clbPoolId String: CLB backend server group ID.
clbServerId String: CLB backend server ID
clientIpLocation Number: Client IP acquisition method. 0: Custom header field, 1: Use the first public IP address in the X-Forwarded-For (XFF) field as the real client IP address.
clientMaxBodySize Number: Maximum client request body size (MB).
cloudAccessConfigs List<Property Map>
cname String: CNAME record.
customBotEnable Number: Whether to enable custom bot protection.
customHeaders List<String>: Custom header.
customRspEnable Number: Whether to enable custom response.
customSni String: Custom SNI.
defenceMode Number: Set protection mode for exception ALB instances. 1: Enable protection. The configured protection policies take effect. 2: Pause protection. Only forwarding is performed without inspection; the configured protection policies do not take effect. 3: Origin mode. Requests are sent directly to the origin server and are no longer forwarded to the WAF instance. After configuring exception protection instances, the domain may also have the following protection statuses: 5: Partially enabled. The default protection mode is enabled, but some exception instances are in paused protection or origin mode. 6: Partially paused. The default protection mode is paused, but some exception instances are in enabled protection or origin mode. 7: Partially origin. The default protection mode is origin mode, but some exception instances are in enabled protection or paused protection.
dlpEnable Number: Data leakage protection enabled
domain String: Protected domain information. Supports wildcard and exact domains
enableCustomRedirect Number: User-defined redirection enabled. 0: Off, 1: On
enableHttp2 Number: Whether to enable HTTP/2.0. 0: Disabled, 1: Enabled.
enableIpv6 Number: IPv6 request protection supported. 0: Off, 1: On
enableSni Number: Whether to enable SNI configuration. 0: Off, 1: On.
keepAliveRequest Number: Persistent connection reuse count
keepAliveTimeout Number: Persistent connection keep-alive time (seconds)
lbAlgorithm String: Load balancing algorithm type. wrr: Weighted round robin, wlc: Weighted least connections, sh: Source address hash.
port Number: Port number
projectName String: Project name.
protocolFollow Number: Protocol following enabled. 0: Off, 1: On
protocolPorts Property Map: Access port information
protocols List<String>: Access protocol type: supports HTTP/HTTPS
proxyConfig Number: Proxy configuration enabled. 0: Off, 1: On
proxyConnectTimeout Number: Connection timeout between WAF and backend server (seconds).
proxyKeepAlive Number: Number of reusable WAF origin persistent connections.
proxyKeepAliveTimeout Number: Idle persistent connection timeout (seconds)
proxyReadTimeout Number: Timeout for WAF to read response from backend server (seconds).
proxyRetry Number: WAF origin retry count.
proxyWriteTimeout Number: Timeout for WAF to transmit request to backend server (seconds).
publicRealServer Number: CNAME access origin method. 0: Private network origin, 1: Public network origin.
rspAbnormalEnable Number: Whether to enable abnormal response protection.
serverIps String: Service IP
srcIps String: WAF origin IP.
srcProtocol String: Origin protocol.
sslCiphers List<String>: Cipher suite
sslProtocols List<String>: TLS protocol version. For example: TLSv1, TLSv1.1, TLSv1.2, TLSv1.3
status Number: Access status. 0: Normal, 1: DNS not resolved, 2: Configuring, 3: Configuration failed, 4: Configuration not effective, 5: Updating, 6: Instance deleted.
systemBotEnable Number: Whether to enable managed bot protection.
tamperProofEnable Number: Whether to enable anti-tampering.
tcpListenerConfigs List<Property Map>
tlsEnable Number: Log service enabled. 0: Off, 1: On
tlsFieldsConfig Property Map: Log field configuration details
updateTime String: Update time
vpcId String: VPC ID。
wafEnable Number: WAF protection enabled
wafWhiteReqEnable Number: Allowlist request protection enabled
whiteEnable Number: Whether to enable allowlist protection.
whiteFieldEnable Number: Field allowlist protection enabled

Supporting Types

DomainBackendGroup, DomainBackendGroupArgs

AccessPorts List<int>: Access port number.
Backends List<Byteplus.DomainBackendGroupBackend>
Name string: Origin group name.

AccessPorts []int: Access port number.
Backends []DomainBackendGroupBackend
Name string: Origin group name.

accessPorts List<Integer>: Access port number.
backends List<DomainBackendGroupBackend>
name String: Origin group name.

accessPorts number[]: Access port number.
backends DomainBackendGroupBackend[]
name string: Origin group name.

access_ports Sequence[int]: Access port number.
backends Sequence[DomainBackendGroupBackend]
name str: Origin group name.

accessPorts List<Number>: Access port number.
backends List<Property Map>
name String: Origin group name.

DomainBackendGroupBackend, DomainBackendGroupBackendArgs

Ip string: Origin IP address
Port int: Origin port
Protocol string: Origin protocol.
Weight int: Origin weight

Ip string: Origin IP address
Port int: Origin port
Protocol string: Origin protocol.
Weight int: Origin weight

ip String: Origin IP address
port Integer: Origin port
protocol String: Origin protocol.
weight Integer: Origin weight

ip string: Origin IP address
port number: Origin port
protocol string: Origin protocol.
weight number: Origin weight

ip str: Origin IP address
port int: Origin port
protocol str: Origin protocol.
weight int: Origin weight

ip String: Origin IP address
port Number: Origin port
protocol String: Origin protocol.
weight Number: Origin weight

DomainCloudAccessConfig, DomainCloudAccessConfigArgs

AccessProtocol string: Access protocol type
DefenceMode int: Protection mode
InstanceId string: Load balancing instance ID.
InstanceName string: Load balancer instance name.
ListenerId string: Load balancing listener ID.
LostAssociationFromAlb int: Disassociated from ALB
Port string: Listener forwarding rule port number
Protocol string: Protocol type for listener forwarding rules.

AccessProtocol string: Access protocol type
DefenceMode int: Protection mode
InstanceId string: Load balancing instance ID.
InstanceName string: Load balancer instance name.
ListenerId string: Load balancing listener ID.
LostAssociationFromAlb int: Disassociated from ALB
Port string: Listener forwarding rule port number
Protocol string: Protocol type for listener forwarding rules.

accessProtocol String: Access protocol type
defenceMode Integer: Protection mode
instanceId String: Load balancing instance ID.
instanceName String: Load balancer instance name.
listenerId String: Load balancing listener ID.
lostAssociationFromAlb Integer: Disassociated from ALB
port String: Listener forwarding rule port number
protocol String: Protocol type for listener forwarding rules.

accessProtocol string: Access protocol type
defenceMode number: Protection mode
instanceId string: Load balancing instance ID.
instanceName string: Load balancer instance name.
listenerId string: Load balancing listener ID.
lostAssociationFromAlb number: Disassociated from ALB
port string: Listener forwarding rule port number
protocol string: Protocol type for listener forwarding rules.

access_protocol str: Access protocol type
defence_mode int: Protection mode
instance_id str: Load balancing instance ID.
instance_name str: Load balancer instance name.
listener_id str: Load balancing listener ID.
lost_association_from_alb int: Disassociated from ALB
port str: Listener forwarding rule port number
protocol str: Protocol type for listener forwarding rules.

accessProtocol String: Access protocol type
defenceMode Number: Protection mode
instanceId String: Load balancing instance ID.
instanceName String: Load balancer instance name.
listenerId String: Load balancing listener ID.
lostAssociationFromAlb Number: Disassociated from ALB
port String: Listener forwarding rule port number
protocol String: Protocol type for listener forwarding rules.

DomainProtocolPorts, DomainProtocolPortsArgs

Http List<int>: HTTP protocol port number
Https List<int>: HTTPS protocol port number

Http []int: HTTP protocol port number
Https []int: HTTPS protocol port number

http List<Integer>: HTTP protocol port number
https List<Integer>: HTTPS protocol port number

http number[]: HTTP protocol port number
https number[]: HTTPS protocol port number

http Sequence[int]: HTTP protocol port number
https Sequence[int]: HTTPS protocol port number

http List<Number>: HTTP protocol port number
https List<Number>: HTTPS protocol port number

DomainTcpListenerConfig, DomainTcpListenerConfigArgs

AccessProtocol string: Access protocol type
DefenceMode int: Protection mode
InstanceId string: Instance ID.
InstanceName string: Instance name.
ListenerId string: Listener ID.
LostAssociationFromAlb int: Disassociated from ALB
Port string: Listener port number
Protocol string: Listener protocol type.

AccessProtocol string: Access protocol type
DefenceMode int: Protection mode
InstanceId string: Instance ID.
InstanceName string: Instance name.
ListenerId string: Listener ID.
LostAssociationFromAlb int: Disassociated from ALB
Port string: Listener port number
Protocol string: Listener protocol type.

accessProtocol String: Access protocol type
defenceMode Integer: Protection mode
instanceId String: Instance ID.
instanceName String: Instance name.
listenerId String: Listener ID.
lostAssociationFromAlb Integer: Disassociated from ALB
port String: Listener port number
protocol String: Listener protocol type.

accessProtocol string: Access protocol type
defenceMode number: Protection mode
instanceId string: Instance ID.
instanceName string: Instance name.
listenerId string: Listener ID.
lostAssociationFromAlb number: Disassociated from ALB
port string: Listener port number
protocol string: Listener protocol type.

access_protocol str: Access protocol type
defence_mode int: Protection mode
instance_id str: Instance ID.
instance_name str: Instance name.
listener_id str: Listener ID.
lost_association_from_alb int: Disassociated from ALB
port str: Listener port number
protocol str: Listener protocol type.

accessProtocol String: Access protocol type
defenceMode Number: Protection mode
instanceId String: Instance ID.
instanceName String: Instance name.
listenerId String: Listener ID.
lostAssociationFromAlb Number: Disassociated from ALB
port String: Listener port number
protocol String: Listener protocol type.

DomainTlsFieldsConfig, DomainTlsFieldsConfigArgs

HeadersConfig Byteplus.DomainTlsFieldsConfigHeadersConfig

HeadersConfig DomainTlsFieldsConfigHeadersConfig

headersConfig DomainTlsFieldsConfigHeadersConfig

headersConfig DomainTlsFieldsConfigHeadersConfig

headers_config DomainTlsFieldsConfigHeadersConfig

headersConfig Property Map

DomainTlsFieldsConfigHeadersConfig, DomainTlsFieldsConfigHeadersConfigArgs

Enable int: Record all header fields
ExcludedKeyLists List<string>: Exception header fields. Exclude the specified fields from the JSON to help save log storage space.
StatisticalKeyLists List<string>: Statistics header fields. Use the specified fields for log analysis and alerts.

Enable int: Record all header fields
ExcludedKeyLists []string: Exception header fields. Exclude the specified fields from the JSON to help save log storage space.
StatisticalKeyLists []string: Statistics header fields. Use the specified fields for log analysis and alerts.

enable Integer: Record all header fields
excludedKeyLists List<String>: Exception header fields. Exclude the specified fields from the JSON to help save log storage space.
statisticalKeyLists List<String>: Statistics header fields. Use the specified fields for log analysis and alerts.

enable number: Record all header fields
excludedKeyLists string[]: Exception header fields. Exclude the specified fields from the JSON to help save log storage space.
statisticalKeyLists string[]: Statistics header fields. Use the specified fields for log analysis and alerts.

enable int: Record all header fields
excluded_key_lists Sequence[str]: Exception header fields. Exclude the specified fields from the JSON to help save log storage space.
statistical_key_lists Sequence[str]: Statistics header fields. Use the specified fields for log analysis and alerts.

enable Number: Record all header fields
excludedKeyLists List<String>: Exception header fields. Exclude the specified fields from the JSON to help save log storage space.
statisticalKeyLists List<String>: Statistics header fields. Use the specified fields for log analysis and alerts.

Import

$ pulumi import bytepluscc:waf/domain:Domain example "domain"

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: bytepluscc byteplus-sdk/pulumi-bytepluscc
License: MPL-2.0
Notes: This Pulumi package is based on the bytepluscc Terraform Provider.

Viewing docs for bytepluscc v0.0.21
published on Thursday, Apr 2, 2026 by Byteplus

Schema (JSON)

byteplus-sdk/pulumi-bytepluscc

bytepluscc.waf.Domain

On this page

On this page

Example Usage

Create Domain Resource

Constructor syntax

Parameters

Constructor example

Domain Resource Properties

Inputs

Outputs

Look up Existing Domain Resource

Supporting Types

DomainBackendGroup, DomainBackendGroupArgs

DomainBackendGroupBackend, DomainBackendGroupBackendArgs

DomainCloudAccessConfig, DomainCloudAccessConfigArgs

DomainProtocolPorts, DomainProtocolPortsArgs

DomainTcpListenerConfig, DomainTcpListenerConfigArgs

DomainTlsFieldsConfig, DomainTlsFieldsConfigArgs

DomainTlsFieldsConfigHeadersConfig, DomainTlsFieldsConfigHeadersConfigArgs

Import

Package Details

On this page

On this page