Docs Home
checkpoint 2.9.0 published on Monday, Apr 14, 2025 by checkpointsw
checkpoint.ManagementCmeGwConfigurationsAws
Explore with Pulumi AI
checkpoint 2.9.0 published on Monday, Apr 14, 2025 by checkpointsw
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as checkpoint from "@pulumi/checkpoint";
const gwConfigAws = new checkpoint.ManagementCmeGwConfigurationsAws("gwConfigAws", {
base64SicKey: "MTIzNDU2Nzg=",
blades: {
antiBot: false,
antiVirus: false,
applicationControl: false,
autonomousThreatPrevention: false,
contentAwareness: false,
httpsInspection: false,
identityAwareness: true,
ips: true,
ipsecVpn: false,
threatEmulation: false,
urlFiltering: false,
vpn: false,
},
color: "blue",
communicationWithServersBehindNat: "translated-ip-only",
identityAwarenessSettings: {
enableCloudguardController: false,
receiveIdentitiesFroms: [
"PDP1",
"PDP2",
],
},
policy: "Standard",
relatedAccount: "awsAccount",
repositoryGatewayScripts: [{
name: "myScript",
parameters: "ls -l",
}],
sectionName: "my_section",
sendAlertsToServers: ["ALS_C"],
sendLogsToBackupServers: ["BLS_B"],
sendLogsToServers: ["PLS_A"],
tgwSpokeRoutes: [
"192.168.100.0/24",
"192.168.200.0/24",
],
tgwStaticRoutes: [
"10.0.0.0/16",
"10.100.0.0/16",
],
version: "R81",
xForwardedFor: true,
});
import pulumi
import pulumi_checkpoint as checkpoint
gw_config_aws = checkpoint.ManagementCmeGwConfigurationsAws("gwConfigAws",
base64_sic_key="MTIzNDU2Nzg=",
blades={
"anti_bot": False,
"anti_virus": False,
"application_control": False,
"autonomous_threat_prevention": False,
"content_awareness": False,
"https_inspection": False,
"identity_awareness": True,
"ips": True,
"ipsec_vpn": False,
"threat_emulation": False,
"url_filtering": False,
"vpn": False,
},
color="blue",
communication_with_servers_behind_nat="translated-ip-only",
identity_awareness_settings={
"enable_cloudguard_controller": False,
"receive_identities_froms": [
"PDP1",
"PDP2",
],
},
policy="Standard",
related_account="awsAccount",
repository_gateway_scripts=[{
"name": "myScript",
"parameters": "ls -l",
}],
section_name="my_section",
send_alerts_to_servers=["ALS_C"],
send_logs_to_backup_servers=["BLS_B"],
send_logs_to_servers=["PLS_A"],
tgw_spoke_routes=[
"192.168.100.0/24",
"192.168.200.0/24",
],
tgw_static_routes=[
"10.0.0.0/16",
"10.100.0.0/16",
],
version="R81",
x_forwarded_for=True)
package main
import (
"github.com/pulumi/pulumi-terraform-provider/sdks/go/checkpoint/v2/checkpoint"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := checkpoint.NewManagementCmeGwConfigurationsAws(ctx, "gwConfigAws", &checkpoint.ManagementCmeGwConfigurationsAwsArgs{
Base64SicKey: pulumi.String("MTIzNDU2Nzg="),
Blades: &checkpoint.ManagementCmeGwConfigurationsAwsBladesArgs{
AntiBot: pulumi.Bool(false),
AntiVirus: pulumi.Bool(false),
ApplicationControl: pulumi.Bool(false),
AutonomousThreatPrevention: pulumi.Bool(false),
ContentAwareness: pulumi.Bool(false),
HttpsInspection: pulumi.Bool(false),
IdentityAwareness: pulumi.Bool(true),
Ips: pulumi.Bool(true),
IpsecVpn: pulumi.Bool(false),
ThreatEmulation: pulumi.Bool(false),
UrlFiltering: pulumi.Bool(false),
Vpn: pulumi.Bool(false),
},
Color: pulumi.String("blue"),
CommunicationWithServersBehindNat: pulumi.String("translated-ip-only"),
IdentityAwarenessSettings: &checkpoint.ManagementCmeGwConfigurationsAwsIdentityAwarenessSettingsArgs{
EnableCloudguardController: pulumi.Bool(false),
ReceiveIdentitiesFroms: pulumi.StringArray{
pulumi.String("PDP1"),
pulumi.String("PDP2"),
},
},
Policy: pulumi.String("Standard"),
RelatedAccount: pulumi.String("awsAccount"),
RepositoryGatewayScripts: checkpoint.ManagementCmeGwConfigurationsAwsRepositoryGatewayScriptArray{
&checkpoint.ManagementCmeGwConfigurationsAwsRepositoryGatewayScriptArgs{
Name: pulumi.String("myScript"),
Parameters: pulumi.String("ls -l"),
},
},
SectionName: pulumi.String("my_section"),
SendAlertsToServers: pulumi.StringArray{
pulumi.String("ALS_C"),
},
SendLogsToBackupServers: pulumi.StringArray{
pulumi.String("BLS_B"),
},
SendLogsToServers: pulumi.StringArray{
pulumi.String("PLS_A"),
},
TgwSpokeRoutes: pulumi.StringArray{
pulumi.String("192.168.100.0/24"),
pulumi.String("192.168.200.0/24"),
},
TgwStaticRoutes: pulumi.StringArray{
pulumi.String("10.0.0.0/16"),
pulumi.String("10.100.0.0/16"),
},
Version: pulumi.String("R81"),
XForwardedFor: pulumi.Bool(true),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Checkpoint = Pulumi.Checkpoint;
return await Deployment.RunAsync(() =>
{
var gwConfigAws = new Checkpoint.ManagementCmeGwConfigurationsAws("gwConfigAws", new()
{
Base64SicKey = "MTIzNDU2Nzg=",
Blades = new Checkpoint.Inputs.ManagementCmeGwConfigurationsAwsBladesArgs
{
AntiBot = false,
AntiVirus = false,
ApplicationControl = false,
AutonomousThreatPrevention = false,
ContentAwareness = false,
HttpsInspection = false,
IdentityAwareness = true,
Ips = true,
IpsecVpn = false,
ThreatEmulation = false,
UrlFiltering = false,
Vpn = false,
},
Color = "blue",
CommunicationWithServersBehindNat = "translated-ip-only",
IdentityAwarenessSettings = new Checkpoint.Inputs.ManagementCmeGwConfigurationsAwsIdentityAwarenessSettingsArgs
{
EnableCloudguardController = false,
ReceiveIdentitiesFroms = new[]
{
"PDP1",
"PDP2",
},
},
Policy = "Standard",
RelatedAccount = "awsAccount",
RepositoryGatewayScripts = new[]
{
new Checkpoint.Inputs.ManagementCmeGwConfigurationsAwsRepositoryGatewayScriptArgs
{
Name = "myScript",
Parameters = "ls -l",
},
},
SectionName = "my_section",
SendAlertsToServers = new[]
{
"ALS_C",
},
SendLogsToBackupServers = new[]
{
"BLS_B",
},
SendLogsToServers = new[]
{
"PLS_A",
},
TgwSpokeRoutes = new[]
{
"192.168.100.0/24",
"192.168.200.0/24",
},
TgwStaticRoutes = new[]
{
"10.0.0.0/16",
"10.100.0.0/16",
},
Version = "R81",
XForwardedFor = true,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.checkpoint.ManagementCmeGwConfigurationsAws;
import com.pulumi.checkpoint.ManagementCmeGwConfigurationsAwsArgs;
import com.pulumi.checkpoint.inputs.ManagementCmeGwConfigurationsAwsBladesArgs;
import com.pulumi.checkpoint.inputs.ManagementCmeGwConfigurationsAwsIdentityAwarenessSettingsArgs;
import com.pulumi.checkpoint.inputs.ManagementCmeGwConfigurationsAwsRepositoryGatewayScriptArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var gwConfigAws = new ManagementCmeGwConfigurationsAws("gwConfigAws", ManagementCmeGwConfigurationsAwsArgs.builder()
.base64SicKey("MTIzNDU2Nzg=")
.blades(ManagementCmeGwConfigurationsAwsBladesArgs.builder()
.antiBot(false)
.antiVirus(false)
.applicationControl(false)
.autonomousThreatPrevention(false)
.contentAwareness(false)
.httpsInspection(false)
.identityAwareness(true)
.ips(true)
.ipsecVpn(false)
.threatEmulation(false)
.urlFiltering(false)
.vpn(false)
.build())
.color("blue")
.communicationWithServersBehindNat("translated-ip-only")
.identityAwarenessSettings(ManagementCmeGwConfigurationsAwsIdentityAwarenessSettingsArgs.builder()
.enableCloudguardController(false)
.receiveIdentitiesFroms(
"PDP1",
"PDP2")
.build())
.policy("Standard")
.relatedAccount("awsAccount")
.repositoryGatewayScripts(ManagementCmeGwConfigurationsAwsRepositoryGatewayScriptArgs.builder()
.name("myScript")
.parameters("ls -l")
.build())
.sectionName("my_section")
.sendAlertsToServers("ALS_C")
.sendLogsToBackupServers("BLS_B")
.sendLogsToServers("PLS_A")
.tgwSpokeRoutes(
"192.168.100.0/24",
"192.168.200.0/24")
.tgwStaticRoutes(
"10.0.0.0/16",
"10.100.0.0/16")
.version("R81")
.xForwardedFor(true)
.build());
}
}
resources:
gwConfigAws:
type: checkpoint:ManagementCmeGwConfigurationsAws
properties:
base64SicKey: MTIzNDU2Nzg=
blades:
antiBot: false
antiVirus: false
applicationControl: false
autonomousThreatPrevention: false
contentAwareness: false
httpsInspection: false
identityAwareness: true
ips: true
ipsecVpn: false
threatEmulation: false
urlFiltering: false
vpn: false
color: blue
communicationWithServersBehindNat: translated-ip-only
identityAwarenessSettings:
enableCloudguardController: false
receiveIdentitiesFroms:
- PDP1
- PDP2
policy: Standard
relatedAccount: awsAccount
repositoryGatewayScripts:
- name: myScript
parameters: ls -l
sectionName: my_section
sendAlertsToServers:
- ALS_C
sendLogsToBackupServers:
- BLS_B
sendLogsToServers:
- PLS_A
tgwSpokeRoutes:
- 192.168.100.0/24
- 192.168.200.0/24
tgwStaticRoutes:
- 10.0.0.0/16
- 10.100.0.0/16
version: R81
xForwardedFor: true
Create ManagementCmeGwConfigurationsAws Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new ManagementCmeGwConfigurationsAws(name: string, args: ManagementCmeGwConfigurationsAwsArgs, opts?: CustomResourceOptions);@overload
def ManagementCmeGwConfigurationsAws(resource_name: str,
args: ManagementCmeGwConfigurationsAwsArgs,
opts: Optional[ResourceOptions] = None)
@overload
def ManagementCmeGwConfigurationsAws(resource_name: str,
opts: Optional[ResourceOptions] = None,
policy: Optional[str] = None,
blades: Optional[ManagementCmeGwConfigurationsAwsBladesArgs] = None,
version: Optional[str] = None,
base64_sic_key: Optional[str] = None,
related_account: Optional[str] = None,
repository_gateway_scripts: Optional[Sequence[ManagementCmeGwConfigurationsAwsRepositoryGatewayScriptArgs]] = None,
send_alerts_to_servers: Optional[Sequence[str]] = None,
name: Optional[str] = None,
identity_awareness_settings: Optional[ManagementCmeGwConfigurationsAwsIdentityAwarenessSettingsArgs] = None,
deployment_type: Optional[str] = None,
communication_with_servers_behind_nat: Optional[str] = None,
section_name: Optional[str] = None,
management_cme_gw_configurations_aws_id: Optional[str] = None,
send_logs_to_backup_servers: Optional[Sequence[str]] = None,
send_logs_to_servers: Optional[Sequence[str]] = None,
tgw_spoke_routes: Optional[Sequence[str]] = None,
tgw_static_routes: Optional[Sequence[str]] = None,
color: Optional[str] = None,
vpn_community: Optional[str] = None,
vpn_domain: Optional[str] = None,
x_forwarded_for: Optional[bool] = None)func NewManagementCmeGwConfigurationsAws(ctx *Context, name string, args ManagementCmeGwConfigurationsAwsArgs, opts ...ResourceOption) (*ManagementCmeGwConfigurationsAws, error)public ManagementCmeGwConfigurationsAws(string name, ManagementCmeGwConfigurationsAwsArgs args, CustomResourceOptions? opts = null)
public ManagementCmeGwConfigurationsAws(String name, ManagementCmeGwConfigurationsAwsArgs args)
public ManagementCmeGwConfigurationsAws(String name, ManagementCmeGwConfigurationsAwsArgs args, CustomResourceOptions options)
type: checkpoint:ManagementCmeGwConfigurationsAws
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ManagementCmeGwConfigurationsAwsArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ManagementCmeGwConfigurationsAwsArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ManagementCmeGwConfigurationsAwsArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ManagementCmeGwConfigurationsAwsArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ManagementCmeGwConfigurationsAwsArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var managementCmeGwConfigurationsAwsResource = new Checkpoint.ManagementCmeGwConfigurationsAws("managementCmeGwConfigurationsAwsResource", new()
{
Policy = "string",
Blades = new Checkpoint.Inputs.ManagementCmeGwConfigurationsAwsBladesArgs
{
AntiBot = false,
AntiVirus = false,
ApplicationControl = false,
AutonomousThreatPrevention = false,
ContentAwareness = false,
HttpsInspection = false,
IdentityAwareness = false,
Ips = false,
IpsecVpn = false,
ThreatEmulation = false,
UrlFiltering = false,
Vpn = false,
},
Version = "string",
Base64SicKey = "string",
RelatedAccount = "string",
RepositoryGatewayScripts = new[]
{
new Checkpoint.Inputs.ManagementCmeGwConfigurationsAwsRepositoryGatewayScriptArgs
{
Name = "string",
Parameters = "string",
Uid = "string",
},
},
SendAlertsToServers = new[]
{
"string",
},
Name = "string",
IdentityAwarenessSettings = new Checkpoint.Inputs.ManagementCmeGwConfigurationsAwsIdentityAwarenessSettingsArgs
{
EnableCloudguardController = false,
ReceiveIdentitiesFroms = new[]
{
"string",
},
},
DeploymentType = "string",
CommunicationWithServersBehindNat = "string",
SectionName = "string",
ManagementCmeGwConfigurationsAwsId = "string",
SendLogsToBackupServers = new[]
{
"string",
},
SendLogsToServers = new[]
{
"string",
},
TgwSpokeRoutes = new[]
{
"string",
},
TgwStaticRoutes = new[]
{
"string",
},
Color = "string",
VpnCommunity = "string",
VpnDomain = "string",
XForwardedFor = false,
});
example, err := checkpoint.NewManagementCmeGwConfigurationsAws(ctx, "managementCmeGwConfigurationsAwsResource", &checkpoint.ManagementCmeGwConfigurationsAwsArgs{
Policy: pulumi.String("string"),
Blades: &checkpoint.ManagementCmeGwConfigurationsAwsBladesArgs{
AntiBot: pulumi.Bool(false),
AntiVirus: pulumi.Bool(false),
ApplicationControl: pulumi.Bool(false),
AutonomousThreatPrevention: pulumi.Bool(false),
ContentAwareness: pulumi.Bool(false),
HttpsInspection: pulumi.Bool(false),
IdentityAwareness: pulumi.Bool(false),
Ips: pulumi.Bool(false),
IpsecVpn: pulumi.Bool(false),
ThreatEmulation: pulumi.Bool(false),
UrlFiltering: pulumi.Bool(false),
Vpn: pulumi.Bool(false),
},
Version: pulumi.String("string"),
Base64SicKey: pulumi.String("string"),
RelatedAccount: pulumi.String("string"),
RepositoryGatewayScripts: checkpoint.ManagementCmeGwConfigurationsAwsRepositoryGatewayScriptArray{
&checkpoint.ManagementCmeGwConfigurationsAwsRepositoryGatewayScriptArgs{
Name: pulumi.String("string"),
Parameters: pulumi.String("string"),
Uid: pulumi.String("string"),
},
},
SendAlertsToServers: pulumi.StringArray{
pulumi.String("string"),
},
Name: pulumi.String("string"),
IdentityAwarenessSettings: &checkpoint.ManagementCmeGwConfigurationsAwsIdentityAwarenessSettingsArgs{
EnableCloudguardController: pulumi.Bool(false),
ReceiveIdentitiesFroms: pulumi.StringArray{
pulumi.String("string"),
},
},
DeploymentType: pulumi.String("string"),
CommunicationWithServersBehindNat: pulumi.String("string"),
SectionName: pulumi.String("string"),
ManagementCmeGwConfigurationsAwsId: pulumi.String("string"),
SendLogsToBackupServers: pulumi.StringArray{
pulumi.String("string"),
},
SendLogsToServers: pulumi.StringArray{
pulumi.String("string"),
},
TgwSpokeRoutes: pulumi.StringArray{
pulumi.String("string"),
},
TgwStaticRoutes: pulumi.StringArray{
pulumi.String("string"),
},
Color: pulumi.String("string"),
VpnCommunity: pulumi.String("string"),
VpnDomain: pulumi.String("string"),
XForwardedFor: pulumi.Bool(false),
})
var managementCmeGwConfigurationsAwsResource = new ManagementCmeGwConfigurationsAws("managementCmeGwConfigurationsAwsResource", ManagementCmeGwConfigurationsAwsArgs.builder()
.policy("string")
.blades(ManagementCmeGwConfigurationsAwsBladesArgs.builder()
.antiBot(false)
.antiVirus(false)
.applicationControl(false)
.autonomousThreatPrevention(false)
.contentAwareness(false)
.httpsInspection(false)
.identityAwareness(false)
.ips(false)
.ipsecVpn(false)
.threatEmulation(false)
.urlFiltering(false)
.vpn(false)
.build())
.version("string")
.base64SicKey("string")
.relatedAccount("string")
.repositoryGatewayScripts(ManagementCmeGwConfigurationsAwsRepositoryGatewayScriptArgs.builder()
.name("string")
.parameters("string")
.uid("string")
.build())
.sendAlertsToServers("string")
.name("string")
.identityAwarenessSettings(ManagementCmeGwConfigurationsAwsIdentityAwarenessSettingsArgs.builder()
.enableCloudguardController(false)
.receiveIdentitiesFroms("string")
.build())
.deploymentType("string")
.communicationWithServersBehindNat("string")
.sectionName("string")
.managementCmeGwConfigurationsAwsId("string")
.sendLogsToBackupServers("string")
.sendLogsToServers("string")
.tgwSpokeRoutes("string")
.tgwStaticRoutes("string")
.color("string")
.vpnCommunity("string")
.vpnDomain("string")
.xForwardedFor(false)
.build());
management_cme_gw_configurations_aws_resource = checkpoint.ManagementCmeGwConfigurationsAws("managementCmeGwConfigurationsAwsResource",
policy="string",
blades={
"anti_bot": False,
"anti_virus": False,
"application_control": False,
"autonomous_threat_prevention": False,
"content_awareness": False,
"https_inspection": False,
"identity_awareness": False,
"ips": False,
"ipsec_vpn": False,
"threat_emulation": False,
"url_filtering": False,
"vpn": False,
},
version="string",
base64_sic_key="string",
related_account="string",
repository_gateway_scripts=[{
"name": "string",
"parameters": "string",
"uid": "string",
}],
send_alerts_to_servers=["string"],
name="string",
identity_awareness_settings={
"enable_cloudguard_controller": False,
"receive_identities_froms": ["string"],
},
deployment_type="string",
communication_with_servers_behind_nat="string",
section_name="string",
management_cme_gw_configurations_aws_id="string",
send_logs_to_backup_servers=["string"],
send_logs_to_servers=["string"],
tgw_spoke_routes=["string"],
tgw_static_routes=["string"],
color="string",
vpn_community="string",
vpn_domain="string",
x_forwarded_for=False)
const managementCmeGwConfigurationsAwsResource = new checkpoint.ManagementCmeGwConfigurationsAws("managementCmeGwConfigurationsAwsResource", {
policy: "string",
blades: {
antiBot: false,
antiVirus: false,
applicationControl: false,
autonomousThreatPrevention: false,
contentAwareness: false,
httpsInspection: false,
identityAwareness: false,
ips: false,
ipsecVpn: false,
threatEmulation: false,
urlFiltering: false,
vpn: false,
},
version: "string",
base64SicKey: "string",
relatedAccount: "string",
repositoryGatewayScripts: [{
name: "string",
parameters: "string",
uid: "string",
}],
sendAlertsToServers: ["string"],
name: "string",
identityAwarenessSettings: {
enableCloudguardController: false,
receiveIdentitiesFroms: ["string"],
},
deploymentType: "string",
communicationWithServersBehindNat: "string",
sectionName: "string",
managementCmeGwConfigurationsAwsId: "string",
sendLogsToBackupServers: ["string"],
sendLogsToServers: ["string"],
tgwSpokeRoutes: ["string"],
tgwStaticRoutes: ["string"],
color: "string",
vpnCommunity: "string",
vpnDomain: "string",
xForwardedFor: false,
});
type: checkpoint:ManagementCmeGwConfigurationsAws
properties:
base64SicKey: string
blades:
antiBot: false
antiVirus: false
applicationControl: false
autonomousThreatPrevention: false
contentAwareness: false
httpsInspection: false
identityAwareness: false
ips: false
ipsecVpn: false
threatEmulation: false
urlFiltering: false
vpn: false
color: string
communicationWithServersBehindNat: string
deploymentType: string
identityAwarenessSettings:
enableCloudguardController: false
receiveIdentitiesFroms:
- string
managementCmeGwConfigurationsAwsId: string
name: string
policy: string
relatedAccount: string
repositoryGatewayScripts:
- name: string
parameters: string
uid: string
sectionName: string
sendAlertsToServers:
- string
sendLogsToBackupServers:
- string
sendLogsToServers:
- string
tgwSpokeRoutes:
- string
tgwStaticRoutes:
- string
version: string
vpnCommunity: string
vpnDomain: string
xForwardedFor: false
ManagementCmeGwConfigurationsAws Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The ManagementCmeGwConfigurationsAws resource accepts the following input properties:
- Base64Sic
Key string - Base64 key for trusted communication between the Management and the Gateway.
- Blades
Management
Cme Gw Configurations Aws Blades - Dictionary of activated/deactivated blades on the Gateway. Supports these blades:
- Policy string
- The policy name to install on the Gateway.
- string
- The CME account name to associate with the Gateway Configuration.
- Version string
- The Gateway version.
- Color string
- Color of the gateways objects in SmartConsole.
- Communication
With stringServers Behind Nat - Gateway behind NAT communications settings with the Check Point Servers(Management, Multi-Domain, Log Servers).
- Deployment
Type string - The deployment type of the CloudGuard Security Gateways.
- Identity
Awareness ManagementSettings Cme Gw Configurations Aws Identity Awareness Settings - Dictionary of Identity Awareness settings that can be configured on the gateway:
- Management
Cme stringGw Configurations Aws Id - Name string
- The Gateway configuration name without spaces.
- Repository
Gateway List<ManagementScripts Cme Gw Configurations Aws Repository Gateway Script> - List of objects that each contain the name/UID of a script that exists in the scripts repository on the Management server. Supports these parameters:
- Section
Name string - Name of a rule section in the Access and NAT layers in the policy, where to insert the automatically generated rules.
- Send
Alerts List<string>To Servers - Comma-separated list of Alert Log Servers names to which alerts are sent.
- Send
Logs List<string>To Backup Servers - Comma-separated list of Backup Log Servers names to which logs are sent if the Primary Log Servers are unavailable.
- Send
Logs List<string>To Servers - Comma-separated list of Primary Log Servers names to which logs are sent. Configured Log Servers act as Log and Alert Servers. Must be defined as a part of Log Servers parameters.
- Tgw
Spoke List<string>Routes - Comma separated list of spoke CIDRs; each spoke CIDR that is learned from the Transit Gateway over BGP is re-advertised by the Gateways of the Transit Gateway auto-scaling group to the AWS Transit Gateway.
- Tgw
Static List<string>Routes - Comma-separated list of CIDRs; for each CIDR a static route is created on each Gateway of the Transit Gateway auto-scaling group.
- Vpn
Community string - A star community to place the VPN Gateway as center.
- Vpn
Domain string - The group object to set as the VPN domain for the VPN Gateway. An empty string automatically sets an empty group as the encryption domain. Must be an empty string for 'TGW' deployment type.
- XForwarded
For bool - Enable XFF headers in HTTP / HTTPS requests.
- Base64Sic
Key string - Base64 key for trusted communication between the Management and the Gateway.
- Blades
Management
Cme Gw Configurations Aws Blades Args - Dictionary of activated/deactivated blades on the Gateway. Supports these blades:
- Policy string
- The policy name to install on the Gateway.
- string
- The CME account name to associate with the Gateway Configuration.
- Version string
- The Gateway version.
- Color string
- Color of the gateways objects in SmartConsole.
- Communication
With stringServers Behind Nat - Gateway behind NAT communications settings with the Check Point Servers(Management, Multi-Domain, Log Servers).
- Deployment
Type string - The deployment type of the CloudGuard Security Gateways.
- Identity
Awareness ManagementSettings Cme Gw Configurations Aws Identity Awareness Settings Args - Dictionary of Identity Awareness settings that can be configured on the gateway:
- Management
Cme stringGw Configurations Aws Id - Name string
- The Gateway configuration name without spaces.
- Repository
Gateway []ManagementScripts Cme Gw Configurations Aws Repository Gateway Script Args - List of objects that each contain the name/UID of a script that exists in the scripts repository on the Management server. Supports these parameters:
- Section
Name string - Name of a rule section in the Access and NAT layers in the policy, where to insert the automatically generated rules.
- Send
Alerts []stringTo Servers - Comma-separated list of Alert Log Servers names to which alerts are sent.
- Send
Logs []stringTo Backup Servers - Comma-separated list of Backup Log Servers names to which logs are sent if the Primary Log Servers are unavailable.
- Send
Logs []stringTo Servers - Comma-separated list of Primary Log Servers names to which logs are sent. Configured Log Servers act as Log and Alert Servers. Must be defined as a part of Log Servers parameters.
- Tgw
Spoke []stringRoutes - Comma separated list of spoke CIDRs; each spoke CIDR that is learned from the Transit Gateway over BGP is re-advertised by the Gateways of the Transit Gateway auto-scaling group to the AWS Transit Gateway.
- Tgw
Static []stringRoutes - Comma-separated list of CIDRs; for each CIDR a static route is created on each Gateway of the Transit Gateway auto-scaling group.
- Vpn
Community string - A star community to place the VPN Gateway as center.
- Vpn
Domain string - The group object to set as the VPN domain for the VPN Gateway. An empty string automatically sets an empty group as the encryption domain. Must be an empty string for 'TGW' deployment type.
- XForwarded
For bool - Enable XFF headers in HTTP / HTTPS requests.
- base64Sic
Key String - Base64 key for trusted communication between the Management and the Gateway.
- blades
Management
Cme Gw Configurations Aws Blades - Dictionary of activated/deactivated blades on the Gateway. Supports these blades:
- policy String
- The policy name to install on the Gateway.
- String
- The CME account name to associate with the Gateway Configuration.
- version String
- The Gateway version.
- color String
- Color of the gateways objects in SmartConsole.
- communication
With StringServers Behind Nat - Gateway behind NAT communications settings with the Check Point Servers(Management, Multi-Domain, Log Servers).
- deployment
Type String - The deployment type of the CloudGuard Security Gateways.
- identity
Awareness ManagementSettings Cme Gw Configurations Aws Identity Awareness Settings - Dictionary of Identity Awareness settings that can be configured on the gateway:
- management
Cme StringGw Configurations Aws Id - name String
- The Gateway configuration name without spaces.
- repository
Gateway List<ManagementScripts Cme Gw Configurations Aws Repository Gateway Script> - List of objects that each contain the name/UID of a script that exists in the scripts repository on the Management server. Supports these parameters:
- section
Name String - Name of a rule section in the Access and NAT layers in the policy, where to insert the automatically generated rules.
- send
Alerts List<String>To Servers - Comma-separated list of Alert Log Servers names to which alerts are sent.
- send
Logs List<String>To Backup Servers - Comma-separated list of Backup Log Servers names to which logs are sent if the Primary Log Servers are unavailable.
- send
Logs List<String>To Servers - Comma-separated list of Primary Log Servers names to which logs are sent. Configured Log Servers act as Log and Alert Servers. Must be defined as a part of Log Servers parameters.
- tgw
Spoke List<String>Routes - Comma separated list of spoke CIDRs; each spoke CIDR that is learned from the Transit Gateway over BGP is re-advertised by the Gateways of the Transit Gateway auto-scaling group to the AWS Transit Gateway.
- tgw
Static List<String>Routes - Comma-separated list of CIDRs; for each CIDR a static route is created on each Gateway of the Transit Gateway auto-scaling group.
- vpn
Community String - A star community to place the VPN Gateway as center.
- vpn
Domain String - The group object to set as the VPN domain for the VPN Gateway. An empty string automatically sets an empty group as the encryption domain. Must be an empty string for 'TGW' deployment type.
- x
Forwarded BooleanFor - Enable XFF headers in HTTP / HTTPS requests.
- base64Sic
Key string - Base64 key for trusted communication between the Management and the Gateway.
- blades
Management
Cme Gw Configurations Aws Blades - Dictionary of activated/deactivated blades on the Gateway. Supports these blades:
- policy string
- The policy name to install on the Gateway.
- string
- The CME account name to associate with the Gateway Configuration.
- version string
- The Gateway version.
- color string
- Color of the gateways objects in SmartConsole.
- communication
With stringServers Behind Nat - Gateway behind NAT communications settings with the Check Point Servers(Management, Multi-Domain, Log Servers).
- deployment
Type string - The deployment type of the CloudGuard Security Gateways.
- identity
Awareness ManagementSettings Cme Gw Configurations Aws Identity Awareness Settings - Dictionary of Identity Awareness settings that can be configured on the gateway:
- management
Cme stringGw Configurations Aws Id - name string
- The Gateway configuration name without spaces.
- repository
Gateway ManagementScripts Cme Gw Configurations Aws Repository Gateway Script[] - List of objects that each contain the name/UID of a script that exists in the scripts repository on the Management server. Supports these parameters:
- section
Name string - Name of a rule section in the Access and NAT layers in the policy, where to insert the automatically generated rules.
- send
Alerts string[]To Servers - Comma-separated list of Alert Log Servers names to which alerts are sent.
- send
Logs string[]To Backup Servers - Comma-separated list of Backup Log Servers names to which logs are sent if the Primary Log Servers are unavailable.
- send
Logs string[]To Servers - Comma-separated list of Primary Log Servers names to which logs are sent. Configured Log Servers act as Log and Alert Servers. Must be defined as a part of Log Servers parameters.
- tgw
Spoke string[]Routes - Comma separated list of spoke CIDRs; each spoke CIDR that is learned from the Transit Gateway over BGP is re-advertised by the Gateways of the Transit Gateway auto-scaling group to the AWS Transit Gateway.
- tgw
Static string[]Routes - Comma-separated list of CIDRs; for each CIDR a static route is created on each Gateway of the Transit Gateway auto-scaling group.
- vpn
Community string - A star community to place the VPN Gateway as center.
- vpn
Domain string - The group object to set as the VPN domain for the VPN Gateway. An empty string automatically sets an empty group as the encryption domain. Must be an empty string for 'TGW' deployment type.
- x
Forwarded booleanFor - Enable XFF headers in HTTP / HTTPS requests.
- base64_
sic_ strkey - Base64 key for trusted communication between the Management and the Gateway.
- blades
Management
Cme Gw Configurations Aws Blades Args - Dictionary of activated/deactivated blades on the Gateway. Supports these blades:
- policy str
- The policy name to install on the Gateway.
- str
- The CME account name to associate with the Gateway Configuration.
- version str
- The Gateway version.
- color str
- Color of the gateways objects in SmartConsole.
- communication_
with_ strservers_ behind_ nat - Gateway behind NAT communications settings with the Check Point Servers(Management, Multi-Domain, Log Servers).
- deployment_
type str - The deployment type of the CloudGuard Security Gateways.
- identity_
awareness_ Managementsettings Cme Gw Configurations Aws Identity Awareness Settings Args - Dictionary of Identity Awareness settings that can be configured on the gateway:
- management_
cme_ strgw_ configurations_ aws_ id - name str
- The Gateway configuration name without spaces.
- repository_
gateway_ Sequence[Managementscripts Cme Gw Configurations Aws Repository Gateway Script Args] - List of objects that each contain the name/UID of a script that exists in the scripts repository on the Management server. Supports these parameters:
- section_
name str - Name of a rule section in the Access and NAT layers in the policy, where to insert the automatically generated rules.
- send_
alerts_ Sequence[str]to_ servers - Comma-separated list of Alert Log Servers names to which alerts are sent.
- send_
logs_ Sequence[str]to_ backup_ servers - Comma-separated list of Backup Log Servers names to which logs are sent if the Primary Log Servers are unavailable.
- send_
logs_ Sequence[str]to_ servers - Comma-separated list of Primary Log Servers names to which logs are sent. Configured Log Servers act as Log and Alert Servers. Must be defined as a part of Log Servers parameters.
- tgw_
spoke_ Sequence[str]routes - Comma separated list of spoke CIDRs; each spoke CIDR that is learned from the Transit Gateway over BGP is re-advertised by the Gateways of the Transit Gateway auto-scaling group to the AWS Transit Gateway.
- tgw_
static_ Sequence[str]routes - Comma-separated list of CIDRs; for each CIDR a static route is created on each Gateway of the Transit Gateway auto-scaling group.
- vpn_
community str - A star community to place the VPN Gateway as center.
- vpn_
domain str - The group object to set as the VPN domain for the VPN Gateway. An empty string automatically sets an empty group as the encryption domain. Must be an empty string for 'TGW' deployment type.
- x_
forwarded_ boolfor - Enable XFF headers in HTTP / HTTPS requests.
- base64Sic
Key String - Base64 key for trusted communication between the Management and the Gateway.
- blades Property Map
- Dictionary of activated/deactivated blades on the Gateway. Supports these blades:
- policy String
- The policy name to install on the Gateway.
- String
- The CME account name to associate with the Gateway Configuration.
- version String
- The Gateway version.
- color String
- Color of the gateways objects in SmartConsole.
- communication
With StringServers Behind Nat - Gateway behind NAT communications settings with the Check Point Servers(Management, Multi-Domain, Log Servers).
- deployment
Type String - The deployment type of the CloudGuard Security Gateways.
- identity
Awareness Property MapSettings - Dictionary of Identity Awareness settings that can be configured on the gateway:
- management
Cme StringGw Configurations Aws Id - name String
- The Gateway configuration name without spaces.
- repository
Gateway List<Property Map>Scripts - List of objects that each contain the name/UID of a script that exists in the scripts repository on the Management server. Supports these parameters:
- section
Name String - Name of a rule section in the Access and NAT layers in the policy, where to insert the automatically generated rules.
- send
Alerts List<String>To Servers - Comma-separated list of Alert Log Servers names to which alerts are sent.
- send
Logs List<String>To Backup Servers - Comma-separated list of Backup Log Servers names to which logs are sent if the Primary Log Servers are unavailable.
- send
Logs List<String>To Servers - Comma-separated list of Primary Log Servers names to which logs are sent. Configured Log Servers act as Log and Alert Servers. Must be defined as a part of Log Servers parameters.
- tgw
Spoke List<String>Routes - Comma separated list of spoke CIDRs; each spoke CIDR that is learned from the Transit Gateway over BGP is re-advertised by the Gateways of the Transit Gateway auto-scaling group to the AWS Transit Gateway.
- tgw
Static List<String>Routes - Comma-separated list of CIDRs; for each CIDR a static route is created on each Gateway of the Transit Gateway auto-scaling group.
- vpn
Community String - A star community to place the VPN Gateway as center.
- vpn
Domain String - The group object to set as the VPN domain for the VPN Gateway. An empty string automatically sets an empty group as the encryption domain. Must be an empty string for 'TGW' deployment type.
- x
Forwarded BooleanFor - Enable XFF headers in HTTP / HTTPS requests.
Outputs
All input properties are implicitly available as output properties. Additionally, the ManagementCmeGwConfigurationsAws resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing ManagementCmeGwConfigurationsAws Resource
Get an existing ManagementCmeGwConfigurationsAws resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: ManagementCmeGwConfigurationsAwsState, opts?: CustomResourceOptions): ManagementCmeGwConfigurationsAws@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
base64_sic_key: Optional[str] = None,
blades: Optional[ManagementCmeGwConfigurationsAwsBladesArgs] = None,
color: Optional[str] = None,
communication_with_servers_behind_nat: Optional[str] = None,
deployment_type: Optional[str] = None,
identity_awareness_settings: Optional[ManagementCmeGwConfigurationsAwsIdentityAwarenessSettingsArgs] = None,
management_cme_gw_configurations_aws_id: Optional[str] = None,
name: Optional[str] = None,
policy: Optional[str] = None,
related_account: Optional[str] = None,
repository_gateway_scripts: Optional[Sequence[ManagementCmeGwConfigurationsAwsRepositoryGatewayScriptArgs]] = None,
section_name: Optional[str] = None,
send_alerts_to_servers: Optional[Sequence[str]] = None,
send_logs_to_backup_servers: Optional[Sequence[str]] = None,
send_logs_to_servers: Optional[Sequence[str]] = None,
tgw_spoke_routes: Optional[Sequence[str]] = None,
tgw_static_routes: Optional[Sequence[str]] = None,
version: Optional[str] = None,
vpn_community: Optional[str] = None,
vpn_domain: Optional[str] = None,
x_forwarded_for: Optional[bool] = None) -> ManagementCmeGwConfigurationsAwsfunc GetManagementCmeGwConfigurationsAws(ctx *Context, name string, id IDInput, state *ManagementCmeGwConfigurationsAwsState, opts ...ResourceOption) (*ManagementCmeGwConfigurationsAws, error)public static ManagementCmeGwConfigurationsAws Get(string name, Input<string> id, ManagementCmeGwConfigurationsAwsState? state, CustomResourceOptions? opts = null)public static ManagementCmeGwConfigurationsAws get(String name, Output<String> id, ManagementCmeGwConfigurationsAwsState state, CustomResourceOptions options)resources: _: type: checkpoint:ManagementCmeGwConfigurationsAws get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Base64Sic
Key string - Base64 key for trusted communication between the Management and the Gateway.
- Blades
Management
Cme Gw Configurations Aws Blades - Dictionary of activated/deactivated blades on the Gateway. Supports these blades:
- Color string
- Color of the gateways objects in SmartConsole.
- Communication
With stringServers Behind Nat - Gateway behind NAT communications settings with the Check Point Servers(Management, Multi-Domain, Log Servers).
- Deployment
Type string - The deployment type of the CloudGuard Security Gateways.
- Identity
Awareness ManagementSettings Cme Gw Configurations Aws Identity Awareness Settings - Dictionary of Identity Awareness settings that can be configured on the gateway:
- Management
Cme stringGw Configurations Aws Id - Name string
- The Gateway configuration name without spaces.
- Policy string
- The policy name to install on the Gateway.
- string
- The CME account name to associate with the Gateway Configuration.
- Repository
Gateway List<ManagementScripts Cme Gw Configurations Aws Repository Gateway Script> - List of objects that each contain the name/UID of a script that exists in the scripts repository on the Management server. Supports these parameters:
- Section
Name string - Name of a rule section in the Access and NAT layers in the policy, where to insert the automatically generated rules.
- Send
Alerts List<string>To Servers - Comma-separated list of Alert Log Servers names to which alerts are sent.
- Send
Logs List<string>To Backup Servers - Comma-separated list of Backup Log Servers names to which logs are sent if the Primary Log Servers are unavailable.
- Send
Logs List<string>To Servers - Comma-separated list of Primary Log Servers names to which logs are sent. Configured Log Servers act as Log and Alert Servers. Must be defined as a part of Log Servers parameters.
- Tgw
Spoke List<string>Routes - Comma separated list of spoke CIDRs; each spoke CIDR that is learned from the Transit Gateway over BGP is re-advertised by the Gateways of the Transit Gateway auto-scaling group to the AWS Transit Gateway.
- Tgw
Static List<string>Routes - Comma-separated list of CIDRs; for each CIDR a static route is created on each Gateway of the Transit Gateway auto-scaling group.
- Version string
- The Gateway version.
- Vpn
Community string - A star community to place the VPN Gateway as center.
- Vpn
Domain string - The group object to set as the VPN domain for the VPN Gateway. An empty string automatically sets an empty group as the encryption domain. Must be an empty string for 'TGW' deployment type.
- XForwarded
For bool - Enable XFF headers in HTTP / HTTPS requests.
- Base64Sic
Key string - Base64 key for trusted communication between the Management and the Gateway.
- Blades
Management
Cme Gw Configurations Aws Blades Args - Dictionary of activated/deactivated blades on the Gateway. Supports these blades:
- Color string
- Color of the gateways objects in SmartConsole.
- Communication
With stringServers Behind Nat - Gateway behind NAT communications settings with the Check Point Servers(Management, Multi-Domain, Log Servers).
- Deployment
Type string - The deployment type of the CloudGuard Security Gateways.
- Identity
Awareness ManagementSettings Cme Gw Configurations Aws Identity Awareness Settings Args - Dictionary of Identity Awareness settings that can be configured on the gateway:
- Management
Cme stringGw Configurations Aws Id - Name string
- The Gateway configuration name without spaces.
- Policy string
- The policy name to install on the Gateway.
- string
- The CME account name to associate with the Gateway Configuration.
- Repository
Gateway []ManagementScripts Cme Gw Configurations Aws Repository Gateway Script Args - List of objects that each contain the name/UID of a script that exists in the scripts repository on the Management server. Supports these parameters:
- Section
Name string - Name of a rule section in the Access and NAT layers in the policy, where to insert the automatically generated rules.
- Send
Alerts []stringTo Servers - Comma-separated list of Alert Log Servers names to which alerts are sent.
- Send
Logs []stringTo Backup Servers - Comma-separated list of Backup Log Servers names to which logs are sent if the Primary Log Servers are unavailable.
- Send
Logs []stringTo Servers - Comma-separated list of Primary Log Servers names to which logs are sent. Configured Log Servers act as Log and Alert Servers. Must be defined as a part of Log Servers parameters.
- Tgw
Spoke []stringRoutes - Comma separated list of spoke CIDRs; each spoke CIDR that is learned from the Transit Gateway over BGP is re-advertised by the Gateways of the Transit Gateway auto-scaling group to the AWS Transit Gateway.
- Tgw
Static []stringRoutes - Comma-separated list of CIDRs; for each CIDR a static route is created on each Gateway of the Transit Gateway auto-scaling group.
- Version string
- The Gateway version.
- Vpn
Community string - A star community to place the VPN Gateway as center.
- Vpn
Domain string - The group object to set as the VPN domain for the VPN Gateway. An empty string automatically sets an empty group as the encryption domain. Must be an empty string for 'TGW' deployment type.
- XForwarded
For bool - Enable XFF headers in HTTP / HTTPS requests.
- base64Sic
Key String - Base64 key for trusted communication between the Management and the Gateway.
- blades
Management
Cme Gw Configurations Aws Blades - Dictionary of activated/deactivated blades on the Gateway. Supports these blades:
- color String
- Color of the gateways objects in SmartConsole.
- communication
With StringServers Behind Nat - Gateway behind NAT communications settings with the Check Point Servers(Management, Multi-Domain, Log Servers).
- deployment
Type String - The deployment type of the CloudGuard Security Gateways.
- identity
Awareness ManagementSettings Cme Gw Configurations Aws Identity Awareness Settings - Dictionary of Identity Awareness settings that can be configured on the gateway:
- management
Cme StringGw Configurations Aws Id - name String
- The Gateway configuration name without spaces.
- policy String
- The policy name to install on the Gateway.
- String
- The CME account name to associate with the Gateway Configuration.
- repository
Gateway List<ManagementScripts Cme Gw Configurations Aws Repository Gateway Script> - List of objects that each contain the name/UID of a script that exists in the scripts repository on the Management server. Supports these parameters:
- section
Name String - Name of a rule section in the Access and NAT layers in the policy, where to insert the automatically generated rules.
- send
Alerts List<String>To Servers - Comma-separated list of Alert Log Servers names to which alerts are sent.
- send
Logs List<String>To Backup Servers - Comma-separated list of Backup Log Servers names to which logs are sent if the Primary Log Servers are unavailable.
- send
Logs List<String>To Servers - Comma-separated list of Primary Log Servers names to which logs are sent. Configured Log Servers act as Log and Alert Servers. Must be defined as a part of Log Servers parameters.
- tgw
Spoke List<String>Routes - Comma separated list of spoke CIDRs; each spoke CIDR that is learned from the Transit Gateway over BGP is re-advertised by the Gateways of the Transit Gateway auto-scaling group to the AWS Transit Gateway.
- tgw
Static List<String>Routes - Comma-separated list of CIDRs; for each CIDR a static route is created on each Gateway of the Transit Gateway auto-scaling group.
- version String
- The Gateway version.
- vpn
Community String - A star community to place the VPN Gateway as center.
- vpn
Domain String - The group object to set as the VPN domain for the VPN Gateway. An empty string automatically sets an empty group as the encryption domain. Must be an empty string for 'TGW' deployment type.
- x
Forwarded BooleanFor - Enable XFF headers in HTTP / HTTPS requests.
- base64Sic
Key string - Base64 key for trusted communication between the Management and the Gateway.
- blades
Management
Cme Gw Configurations Aws Blades - Dictionary of activated/deactivated blades on the Gateway. Supports these blades:
- color string
- Color of the gateways objects in SmartConsole.
- communication
With stringServers Behind Nat - Gateway behind NAT communications settings with the Check Point Servers(Management, Multi-Domain, Log Servers).
- deployment
Type string - The deployment type of the CloudGuard Security Gateways.
- identity
Awareness ManagementSettings Cme Gw Configurations Aws Identity Awareness Settings - Dictionary of Identity Awareness settings that can be configured on the gateway:
- management
Cme stringGw Configurations Aws Id - name string
- The Gateway configuration name without spaces.
- policy string
- The policy name to install on the Gateway.
- string
- The CME account name to associate with the Gateway Configuration.
- repository
Gateway ManagementScripts Cme Gw Configurations Aws Repository Gateway Script[] - List of objects that each contain the name/UID of a script that exists in the scripts repository on the Management server. Supports these parameters:
- section
Name string - Name of a rule section in the Access and NAT layers in the policy, where to insert the automatically generated rules.
- send
Alerts string[]To Servers - Comma-separated list of Alert Log Servers names to which alerts are sent.
- send
Logs string[]To Backup Servers - Comma-separated list of Backup Log Servers names to which logs are sent if the Primary Log Servers are unavailable.
- send
Logs string[]To Servers - Comma-separated list of Primary Log Servers names to which logs are sent. Configured Log Servers act as Log and Alert Servers. Must be defined as a part of Log Servers parameters.
- tgw
Spoke string[]Routes - Comma separated list of spoke CIDRs; each spoke CIDR that is learned from the Transit Gateway over BGP is re-advertised by the Gateways of the Transit Gateway auto-scaling group to the AWS Transit Gateway.
- tgw
Static string[]Routes - Comma-separated list of CIDRs; for each CIDR a static route is created on each Gateway of the Transit Gateway auto-scaling group.
- version string
- The Gateway version.
- vpn
Community string - A star community to place the VPN Gateway as center.
- vpn
Domain string - The group object to set as the VPN domain for the VPN Gateway. An empty string automatically sets an empty group as the encryption domain. Must be an empty string for 'TGW' deployment type.
- x
Forwarded booleanFor - Enable XFF headers in HTTP / HTTPS requests.
- base64_
sic_ strkey - Base64 key for trusted communication between the Management and the Gateway.
- blades
Management
Cme Gw Configurations Aws Blades Args - Dictionary of activated/deactivated blades on the Gateway. Supports these blades:
- color str
- Color of the gateways objects in SmartConsole.
- communication_
with_ strservers_ behind_ nat - Gateway behind NAT communications settings with the Check Point Servers(Management, Multi-Domain, Log Servers).
- deployment_
type str - The deployment type of the CloudGuard Security Gateways.
- identity_
awareness_ Managementsettings Cme Gw Configurations Aws Identity Awareness Settings Args - Dictionary of Identity Awareness settings that can be configured on the gateway:
- management_
cme_ strgw_ configurations_ aws_ id - name str
- The Gateway configuration name without spaces.
- policy str
- The policy name to install on the Gateway.
- str
- The CME account name to associate with the Gateway Configuration.
- repository_
gateway_ Sequence[Managementscripts Cme Gw Configurations Aws Repository Gateway Script Args] - List of objects that each contain the name/UID of a script that exists in the scripts repository on the Management server. Supports these parameters:
- section_
name str - Name of a rule section in the Access and NAT layers in the policy, where to insert the automatically generated rules.
- send_
alerts_ Sequence[str]to_ servers - Comma-separated list of Alert Log Servers names to which alerts are sent.
- send_
logs_ Sequence[str]to_ backup_ servers - Comma-separated list of Backup Log Servers names to which logs are sent if the Primary Log Servers are unavailable.
- send_
logs_ Sequence[str]to_ servers - Comma-separated list of Primary Log Servers names to which logs are sent. Configured Log Servers act as Log and Alert Servers. Must be defined as a part of Log Servers parameters.
- tgw_
spoke_ Sequence[str]routes - Comma separated list of spoke CIDRs; each spoke CIDR that is learned from the Transit Gateway over BGP is re-advertised by the Gateways of the Transit Gateway auto-scaling group to the AWS Transit Gateway.
- tgw_
static_ Sequence[str]routes - Comma-separated list of CIDRs; for each CIDR a static route is created on each Gateway of the Transit Gateway auto-scaling group.
- version str
- The Gateway version.
- vpn_
community str - A star community to place the VPN Gateway as center.
- vpn_
domain str - The group object to set as the VPN domain for the VPN Gateway. An empty string automatically sets an empty group as the encryption domain. Must be an empty string for 'TGW' deployment type.
- x_
forwarded_ boolfor - Enable XFF headers in HTTP / HTTPS requests.
- base64Sic
Key String - Base64 key for trusted communication between the Management and the Gateway.
- blades Property Map
- Dictionary of activated/deactivated blades on the Gateway. Supports these blades:
- color String
- Color of the gateways objects in SmartConsole.
- communication
With StringServers Behind Nat - Gateway behind NAT communications settings with the Check Point Servers(Management, Multi-Domain, Log Servers).
- deployment
Type String - The deployment type of the CloudGuard Security Gateways.
- identity
Awareness Property MapSettings - Dictionary of Identity Awareness settings that can be configured on the gateway:
- management
Cme StringGw Configurations Aws Id - name String
- The Gateway configuration name without spaces.
- policy String
- The policy name to install on the Gateway.
- String
- The CME account name to associate with the Gateway Configuration.
- repository
Gateway List<Property Map>Scripts - List of objects that each contain the name/UID of a script that exists in the scripts repository on the Management server. Supports these parameters:
- section
Name String - Name of a rule section in the Access and NAT layers in the policy, where to insert the automatically generated rules.
- send
Alerts List<String>To Servers - Comma-separated list of Alert Log Servers names to which alerts are sent.
- send
Logs List<String>To Backup Servers - Comma-separated list of Backup Log Servers names to which logs are sent if the Primary Log Servers are unavailable.
- send
Logs List<String>To Servers - Comma-separated list of Primary Log Servers names to which logs are sent. Configured Log Servers act as Log and Alert Servers. Must be defined as a part of Log Servers parameters.
- tgw
Spoke List<String>Routes - Comma separated list of spoke CIDRs; each spoke CIDR that is learned from the Transit Gateway over BGP is re-advertised by the Gateways of the Transit Gateway auto-scaling group to the AWS Transit Gateway.
- tgw
Static List<String>Routes - Comma-separated list of CIDRs; for each CIDR a static route is created on each Gateway of the Transit Gateway auto-scaling group.
- version String
- The Gateway version.
- vpn
Community String - A star community to place the VPN Gateway as center.
- vpn
Domain String - The group object to set as the VPN domain for the VPN Gateway. An empty string automatically sets an empty group as the encryption domain. Must be an empty string for 'TGW' deployment type.
- x
Forwarded BooleanFor - Enable XFF headers in HTTP / HTTPS requests.
Supporting Types
ManagementCmeGwConfigurationsAwsBlades, ManagementCmeGwConfigurationsAwsBladesArgs
- Anti
Bot bool - Anti-Bot blade.
- Anti
Virus bool - Anti-Virus blade.
- Application
Control bool - Application Control blade.
- Autonomous
Threat boolPrevention - ATP blade.
- Content
Awareness bool - Content Awareness blade.
- Https
Inspection bool - HTTPS Inspection blade.
- Identity
Awareness bool - Identity Awareness blade.
- Ips bool
- IPS blade.
- Ipsec
Vpn bool - IPsec VPN blade.
- Threat
Emulation bool - Threat Emulation blade.
- Url
Filtering bool - URL Filtering blade.
- Vpn bool
- VPN blade.
- Anti
Bot bool - Anti-Bot blade.
- Anti
Virus bool - Anti-Virus blade.
- Application
Control bool - Application Control blade.
- Autonomous
Threat boolPrevention - ATP blade.
- Content
Awareness bool - Content Awareness blade.
- Https
Inspection bool - HTTPS Inspection blade.
- Identity
Awareness bool - Identity Awareness blade.
- Ips bool
- IPS blade.
- Ipsec
Vpn bool - IPsec VPN blade.
- Threat
Emulation bool - Threat Emulation blade.
- Url
Filtering bool - URL Filtering blade.
- Vpn bool
- VPN blade.
- anti
Bot Boolean - Anti-Bot blade.
- anti
Virus Boolean - Anti-Virus blade.
- application
Control Boolean - Application Control blade.
- autonomous
Threat BooleanPrevention - ATP blade.
- content
Awareness Boolean - Content Awareness blade.
- https
Inspection Boolean - HTTPS Inspection blade.
- identity
Awareness Boolean - Identity Awareness blade.
- ips Boolean
- IPS blade.
- ipsec
Vpn Boolean - IPsec VPN blade.
- threat
Emulation Boolean - Threat Emulation blade.
- url
Filtering Boolean - URL Filtering blade.
- vpn Boolean
- VPN blade.
- anti
Bot boolean - Anti-Bot blade.
- anti
Virus boolean - Anti-Virus blade.
- application
Control boolean - Application Control blade.
- autonomous
Threat booleanPrevention - ATP blade.
- content
Awareness boolean - Content Awareness blade.
- https
Inspection boolean - HTTPS Inspection blade.
- identity
Awareness boolean - Identity Awareness blade.
- ips boolean
- IPS blade.
- ipsec
Vpn boolean - IPsec VPN blade.
- threat
Emulation boolean - Threat Emulation blade.
- url
Filtering boolean - URL Filtering blade.
- vpn boolean
- VPN blade.
- anti_
bot bool - Anti-Bot blade.
- anti_
virus bool - Anti-Virus blade.
- application_
control bool - Application Control blade.
- autonomous_
threat_ boolprevention - ATP blade.
- content_
awareness bool - Content Awareness blade.
- https_
inspection bool - HTTPS Inspection blade.
- identity_
awareness bool - Identity Awareness blade.
- ips bool
- IPS blade.
- ipsec_
vpn bool - IPsec VPN blade.
- threat_
emulation bool - Threat Emulation blade.
- url_
filtering bool - URL Filtering blade.
- vpn bool
- VPN blade.
- anti
Bot Boolean - Anti-Bot blade.
- anti
Virus Boolean - Anti-Virus blade.
- application
Control Boolean - Application Control blade.
- autonomous
Threat BooleanPrevention - ATP blade.
- content
Awareness Boolean - Content Awareness blade.
- https
Inspection Boolean - HTTPS Inspection blade.
- identity
Awareness Boolean - Identity Awareness blade.
- ips Boolean
- IPS blade.
- ipsec
Vpn Boolean - IPsec VPN blade.
- threat
Emulation Boolean - Threat Emulation blade.
- url
Filtering Boolean - URL Filtering blade.
- vpn Boolean
- VPN blade.
ManagementCmeGwConfigurationsAwsIdentityAwarenessSettings, ManagementCmeGwConfigurationsAwsIdentityAwarenessSettingsArgs
- Enable
Cloudguard boolController - Enable the Web API identity source for CloudGuard Controller.
- Receive
Identities List<string>Froms - List of PDP gateway names from which to receive identities through Identity Sharing.
- Enable
Cloudguard boolController - Enable the Web API identity source for CloudGuard Controller.
- Receive
Identities []stringFroms - List of PDP gateway names from which to receive identities through Identity Sharing.
- enable
Cloudguard BooleanController - Enable the Web API identity source for CloudGuard Controller.
- receive
Identities List<String>Froms - List of PDP gateway names from which to receive identities through Identity Sharing.
- enable
Cloudguard booleanController - Enable the Web API identity source for CloudGuard Controller.
- receive
Identities string[]Froms - List of PDP gateway names from which to receive identities through Identity Sharing.
- enable_
cloudguard_ boolcontroller - Enable the Web API identity source for CloudGuard Controller.
- receive_
identities_ Sequence[str]froms - List of PDP gateway names from which to receive identities through Identity Sharing.
- enable
Cloudguard BooleanController - Enable the Web API identity source for CloudGuard Controller.
- receive
Identities List<String>Froms - List of PDP gateway names from which to receive identities through Identity Sharing.
ManagementCmeGwConfigurationsAwsRepositoryGatewayScript, ManagementCmeGwConfigurationsAwsRepositoryGatewayScriptArgs
- Name string
- The name of the script.
- Parameters string
- The parameters to pass to the script.
- Uid string
- Script uid
- Name string
- The name of the script.
- Parameters string
- The parameters to pass to the script.
- Uid string
- Script uid
- name String
- The name of the script.
- parameters String
- The parameters to pass to the script.
- uid String
- Script uid
- name string
- The name of the script.
- parameters string
- The parameters to pass to the script.
- uid string
- Script uid
- name str
- The name of the script.
- parameters str
- The parameters to pass to the script.
- uid str
- Script uid
- name String
- The name of the script.
- parameters String
- The parameters to pass to the script.
- uid String
- Script uid
Package Details
- Repository
- checkpoint checkpointsw/terraform-provider-checkpoint
- License
- Notes
- This Pulumi package is based on the
checkpointTerraform Provider.
checkpoint 2.9.0 published on Monday, Apr 14, 2025 by checkpointsw