Docs Home
Cloudflare v6.1.2 published on Monday, Apr 28, 2025 by Pulumi
cloudflare.ZeroTrustGatewaySettings
Explore with Pulumi AI
Example Usage
Coming soon!
Coming soon!
Coming soon!
Coming soon!
Coming soon!
resources:
exampleZeroTrustGatewaySettings:
type: cloudflare:ZeroTrustGatewaySettings
name: example_zero_trust_gateway_settings
properties:
accountId: 699d98642c564d2e855e9661899b7252
settings:
activity_log:
enabled: true
antivirus:
enabledDownloadPhase: false
enabledUploadPhase: false
failClosed: false
notificationSettings:
enabled: true
msg: msg
supportUrl: support_url
block_page:
backgroundColor: background_color
enabled: true
footerText: --footer--
headerText: --header--
includeContext: true
logoPath: https://logos.com/a.png
mailtoAddress: admin@example.com
mailtoSubject: Blocked User Inquiry
mode: customized_block_page
name: Cloudflare
suppressFooter: false
targetUri: https://example.com
body_scanning:
inspectionMode: deep
browser_isolation:
nonIdentityEnabled: true
urlBrowserIsolationEnabled: true
certificate:
id: d1b364c5-1311-466e-a194-f0e943e0799f
custom_certificate:
enabled: true
id: d1b364c5-1311-466e-a194-f0e943e0799f
extended_email_matching:
enabled: true
fips:
tls: true
protocol_detection:
enabled: true
sandbox:
enabled: true
fallbackAction: allow
tls_decrypt:
enabled: true
Create ZeroTrustGatewaySettings Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new ZeroTrustGatewaySettings(name: string, args: ZeroTrustGatewaySettingsArgs, opts?: CustomResourceOptions);@overload
def ZeroTrustGatewaySettings(resource_name: str,
args: ZeroTrustGatewaySettingsArgs,
opts: Optional[ResourceOptions] = None)
@overload
def ZeroTrustGatewaySettings(resource_name: str,
opts: Optional[ResourceOptions] = None,
account_id: Optional[str] = None,
settings: Optional[ZeroTrustGatewaySettingsSettingsArgs] = None)func NewZeroTrustGatewaySettings(ctx *Context, name string, args ZeroTrustGatewaySettingsArgs, opts ...ResourceOption) (*ZeroTrustGatewaySettings, error)public ZeroTrustGatewaySettings(string name, ZeroTrustGatewaySettingsArgs args, CustomResourceOptions? opts = null)
public ZeroTrustGatewaySettings(String name, ZeroTrustGatewaySettingsArgs args)
public ZeroTrustGatewaySettings(String name, ZeroTrustGatewaySettingsArgs args, CustomResourceOptions options)
type: cloudflare:ZeroTrustGatewaySettings
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ZeroTrustGatewaySettingsArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ZeroTrustGatewaySettingsArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ZeroTrustGatewaySettingsArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ZeroTrustGatewaySettingsArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ZeroTrustGatewaySettingsArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var zeroTrustGatewaySettingsResource = new Cloudflare.ZeroTrustGatewaySettings("zeroTrustGatewaySettingsResource", new()
{
AccountId = "string",
Settings = new Cloudflare.Inputs.ZeroTrustGatewaySettingsSettingsArgs
{
ActivityLog = new Cloudflare.Inputs.ZeroTrustGatewaySettingsSettingsActivityLogArgs
{
Enabled = false,
},
Antivirus = new Cloudflare.Inputs.ZeroTrustGatewaySettingsSettingsAntivirusArgs
{
EnabledDownloadPhase = false,
EnabledUploadPhase = false,
FailClosed = false,
NotificationSettings = new Cloudflare.Inputs.ZeroTrustGatewaySettingsSettingsAntivirusNotificationSettingsArgs
{
Enabled = false,
Msg = "string",
SupportUrl = "string",
},
},
BlockPage = new Cloudflare.Inputs.ZeroTrustGatewaySettingsSettingsBlockPageArgs
{
BackgroundColor = "string",
Enabled = false,
FooterText = "string",
HeaderText = "string",
IncludeContext = false,
LogoPath = "string",
MailtoAddress = "string",
MailtoSubject = "string",
Mode = "string",
Name = "string",
SuppressFooter = false,
TargetUri = "string",
},
BodyScanning = new Cloudflare.Inputs.ZeroTrustGatewaySettingsSettingsBodyScanningArgs
{
InspectionMode = "string",
},
BrowserIsolation = new Cloudflare.Inputs.ZeroTrustGatewaySettingsSettingsBrowserIsolationArgs
{
NonIdentityEnabled = false,
UrlBrowserIsolationEnabled = false,
},
Certificate = new Cloudflare.Inputs.ZeroTrustGatewaySettingsSettingsCertificateArgs
{
Id = "string",
},
ExtendedEmailMatching = new Cloudflare.Inputs.ZeroTrustGatewaySettingsSettingsExtendedEmailMatchingArgs
{
Enabled = false,
},
Fips = new Cloudflare.Inputs.ZeroTrustGatewaySettingsSettingsFipsArgs
{
Tls = false,
},
ProtocolDetection = new Cloudflare.Inputs.ZeroTrustGatewaySettingsSettingsProtocolDetectionArgs
{
Enabled = false,
},
Sandbox = new Cloudflare.Inputs.ZeroTrustGatewaySettingsSettingsSandboxArgs
{
Enabled = false,
FallbackAction = "string",
},
TlsDecrypt = new Cloudflare.Inputs.ZeroTrustGatewaySettingsSettingsTlsDecryptArgs
{
Enabled = false,
},
},
});
example, err := cloudflare.NewZeroTrustGatewaySettings(ctx, "zeroTrustGatewaySettingsResource", &cloudflare.ZeroTrustGatewaySettingsArgs{
AccountId: pulumi.String("string"),
Settings: &cloudflare.ZeroTrustGatewaySettingsSettingsArgs{
ActivityLog: &cloudflare.ZeroTrustGatewaySettingsSettingsActivityLogArgs{
Enabled: pulumi.Bool(false),
},
Antivirus: &cloudflare.ZeroTrustGatewaySettingsSettingsAntivirusArgs{
EnabledDownloadPhase: pulumi.Bool(false),
EnabledUploadPhase: pulumi.Bool(false),
FailClosed: pulumi.Bool(false),
NotificationSettings: &cloudflare.ZeroTrustGatewaySettingsSettingsAntivirusNotificationSettingsArgs{
Enabled: pulumi.Bool(false),
Msg: pulumi.String("string"),
SupportUrl: pulumi.String("string"),
},
},
BlockPage: &cloudflare.ZeroTrustGatewaySettingsSettingsBlockPageArgs{
BackgroundColor: pulumi.String("string"),
Enabled: pulumi.Bool(false),
FooterText: pulumi.String("string"),
HeaderText: pulumi.String("string"),
IncludeContext: pulumi.Bool(false),
LogoPath: pulumi.String("string"),
MailtoAddress: pulumi.String("string"),
MailtoSubject: pulumi.String("string"),
Mode: pulumi.String("string"),
Name: pulumi.String("string"),
SuppressFooter: pulumi.Bool(false),
TargetUri: pulumi.String("string"),
},
BodyScanning: &cloudflare.ZeroTrustGatewaySettingsSettingsBodyScanningArgs{
InspectionMode: pulumi.String("string"),
},
BrowserIsolation: &cloudflare.ZeroTrustGatewaySettingsSettingsBrowserIsolationArgs{
NonIdentityEnabled: pulumi.Bool(false),
UrlBrowserIsolationEnabled: pulumi.Bool(false),
},
Certificate: &cloudflare.ZeroTrustGatewaySettingsSettingsCertificateArgs{
Id: pulumi.String("string"),
},
ExtendedEmailMatching: &cloudflare.ZeroTrustGatewaySettingsSettingsExtendedEmailMatchingArgs{
Enabled: pulumi.Bool(false),
},
Fips: &cloudflare.ZeroTrustGatewaySettingsSettingsFipsArgs{
Tls: pulumi.Bool(false),
},
ProtocolDetection: &cloudflare.ZeroTrustGatewaySettingsSettingsProtocolDetectionArgs{
Enabled: pulumi.Bool(false),
},
Sandbox: &cloudflare.ZeroTrustGatewaySettingsSettingsSandboxArgs{
Enabled: pulumi.Bool(false),
FallbackAction: pulumi.String("string"),
},
TlsDecrypt: &cloudflare.ZeroTrustGatewaySettingsSettingsTlsDecryptArgs{
Enabled: pulumi.Bool(false),
},
},
})
var zeroTrustGatewaySettingsResource = new ZeroTrustGatewaySettings("zeroTrustGatewaySettingsResource", ZeroTrustGatewaySettingsArgs.builder()
.accountId("string")
.settings(ZeroTrustGatewaySettingsSettingsArgs.builder()
.activityLog(ZeroTrustGatewaySettingsSettingsActivityLogArgs.builder()
.enabled(false)
.build())
.antivirus(ZeroTrustGatewaySettingsSettingsAntivirusArgs.builder()
.enabledDownloadPhase(false)
.enabledUploadPhase(false)
.failClosed(false)
.notificationSettings(ZeroTrustGatewaySettingsSettingsAntivirusNotificationSettingsArgs.builder()
.enabled(false)
.msg("string")
.supportUrl("string")
.build())
.build())
.blockPage(ZeroTrustGatewaySettingsSettingsBlockPageArgs.builder()
.backgroundColor("string")
.enabled(false)
.footerText("string")
.headerText("string")
.includeContext(false)
.logoPath("string")
.mailtoAddress("string")
.mailtoSubject("string")
.mode("string")
.name("string")
.suppressFooter(false)
.targetUri("string")
.build())
.bodyScanning(ZeroTrustGatewaySettingsSettingsBodyScanningArgs.builder()
.inspectionMode("string")
.build())
.browserIsolation(ZeroTrustGatewaySettingsSettingsBrowserIsolationArgs.builder()
.nonIdentityEnabled(false)
.urlBrowserIsolationEnabled(false)
.build())
.certificate(ZeroTrustGatewaySettingsSettingsCertificateArgs.builder()
.id("string")
.build())
.extendedEmailMatching(ZeroTrustGatewaySettingsSettingsExtendedEmailMatchingArgs.builder()
.enabled(false)
.build())
.fips(ZeroTrustGatewaySettingsSettingsFipsArgs.builder()
.tls(false)
.build())
.protocolDetection(ZeroTrustGatewaySettingsSettingsProtocolDetectionArgs.builder()
.enabled(false)
.build())
.sandbox(ZeroTrustGatewaySettingsSettingsSandboxArgs.builder()
.enabled(false)
.fallbackAction("string")
.build())
.tlsDecrypt(ZeroTrustGatewaySettingsSettingsTlsDecryptArgs.builder()
.enabled(false)
.build())
.build())
.build());
zero_trust_gateway_settings_resource = cloudflare.ZeroTrustGatewaySettings("zeroTrustGatewaySettingsResource",
account_id="string",
settings={
"activity_log": {
"enabled": False,
},
"antivirus": {
"enabled_download_phase": False,
"enabled_upload_phase": False,
"fail_closed": False,
"notification_settings": {
"enabled": False,
"msg": "string",
"support_url": "string",
},
},
"block_page": {
"background_color": "string",
"enabled": False,
"footer_text": "string",
"header_text": "string",
"include_context": False,
"logo_path": "string",
"mailto_address": "string",
"mailto_subject": "string",
"mode": "string",
"name": "string",
"suppress_footer": False,
"target_uri": "string",
},
"body_scanning": {
"inspection_mode": "string",
},
"browser_isolation": {
"non_identity_enabled": False,
"url_browser_isolation_enabled": False,
},
"certificate": {
"id": "string",
},
"extended_email_matching": {
"enabled": False,
},
"fips": {
"tls": False,
},
"protocol_detection": {
"enabled": False,
},
"sandbox": {
"enabled": False,
"fallback_action": "string",
},
"tls_decrypt": {
"enabled": False,
},
})
const zeroTrustGatewaySettingsResource = new cloudflare.ZeroTrustGatewaySettings("zeroTrustGatewaySettingsResource", {
accountId: "string",
settings: {
activityLog: {
enabled: false,
},
antivirus: {
enabledDownloadPhase: false,
enabledUploadPhase: false,
failClosed: false,
notificationSettings: {
enabled: false,
msg: "string",
supportUrl: "string",
},
},
blockPage: {
backgroundColor: "string",
enabled: false,
footerText: "string",
headerText: "string",
includeContext: false,
logoPath: "string",
mailtoAddress: "string",
mailtoSubject: "string",
mode: "string",
name: "string",
suppressFooter: false,
targetUri: "string",
},
bodyScanning: {
inspectionMode: "string",
},
browserIsolation: {
nonIdentityEnabled: false,
urlBrowserIsolationEnabled: false,
},
certificate: {
id: "string",
},
extendedEmailMatching: {
enabled: false,
},
fips: {
tls: false,
},
protocolDetection: {
enabled: false,
},
sandbox: {
enabled: false,
fallbackAction: "string",
},
tlsDecrypt: {
enabled: false,
},
},
});
type: cloudflare:ZeroTrustGatewaySettings
properties:
accountId: string
settings:
activityLog:
enabled: false
antivirus:
enabledDownloadPhase: false
enabledUploadPhase: false
failClosed: false
notificationSettings:
enabled: false
msg: string
supportUrl: string
blockPage:
backgroundColor: string
enabled: false
footerText: string
headerText: string
includeContext: false
logoPath: string
mailtoAddress: string
mailtoSubject: string
mode: string
name: string
suppressFooter: false
targetUri: string
bodyScanning:
inspectionMode: string
browserIsolation:
nonIdentityEnabled: false
urlBrowserIsolationEnabled: false
certificate:
id: string
extendedEmailMatching:
enabled: false
fips:
tls: false
protocolDetection:
enabled: false
sandbox:
enabled: false
fallbackAction: string
tlsDecrypt:
enabled: false
ZeroTrustGatewaySettings Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The ZeroTrustGatewaySettings resource accepts the following input properties:
- Account
Id string - Settings
Zero
Trust Gateway Settings Settings - Account settings
- Account
Id string - Settings
Zero
Trust Gateway Settings Settings Args - Account settings
- account
Id String - settings
Zero
Trust Gateway Settings Settings - Account settings
- account
Id string - settings
Zero
Trust Gateway Settings Settings - Account settings
- account_
id str - settings
Zero
Trust Gateway Settings Settings Args - Account settings
- account
Id String - settings Property Map
- Account settings
Outputs
All input properties are implicitly available as output properties. Additionally, the ZeroTrustGatewaySettings resource produces the following output properties:
- created_
at str - id str
- The provider-assigned unique ID for this managed resource.
- updated_
at str
Look up Existing ZeroTrustGatewaySettings Resource
Get an existing ZeroTrustGatewaySettings resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: ZeroTrustGatewaySettingsState, opts?: CustomResourceOptions): ZeroTrustGatewaySettings@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
account_id: Optional[str] = None,
created_at: Optional[str] = None,
settings: Optional[ZeroTrustGatewaySettingsSettingsArgs] = None,
updated_at: Optional[str] = None) -> ZeroTrustGatewaySettingsfunc GetZeroTrustGatewaySettings(ctx *Context, name string, id IDInput, state *ZeroTrustGatewaySettingsState, opts ...ResourceOption) (*ZeroTrustGatewaySettings, error)public static ZeroTrustGatewaySettings Get(string name, Input<string> id, ZeroTrustGatewaySettingsState? state, CustomResourceOptions? opts = null)public static ZeroTrustGatewaySettings get(String name, Output<String> id, ZeroTrustGatewaySettingsState state, CustomResourceOptions options)resources: _: type: cloudflare:ZeroTrustGatewaySettings get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Account
Id string - Created
At string - Settings
Zero
Trust Gateway Settings Settings - Account settings
- Updated
At string
- Account
Id string - Created
At string - Settings
Zero
Trust Gateway Settings Settings Args - Account settings
- Updated
At string
- account
Id String - created
At String - settings
Zero
Trust Gateway Settings Settings - Account settings
- updated
At String
- account
Id string - created
At string - settings
Zero
Trust Gateway Settings Settings - Account settings
- updated
At string
- account_
id str - created_
at str - settings
Zero
Trust Gateway Settings Settings Args - Account settings
- updated_
at str
- account
Id String - created
At String - settings Property Map
- Account settings
- updated
At String
Supporting Types
ZeroTrustGatewaySettingsSettings, ZeroTrustGatewaySettingsSettingsArgs
- Activity
Log ZeroTrust Gateway Settings Settings Activity Log - Activity log settings.
- Antivirus
Zero
Trust Gateway Settings Settings Antivirus - Anti-virus settings.
- Block
Page ZeroTrust Gateway Settings Settings Block Page - Block page layout settings.
- Body
Scanning ZeroTrust Gateway Settings Settings Body Scanning - DLP body scanning settings.
- Browser
Isolation ZeroTrust Gateway Settings Settings Browser Isolation - Browser isolation settings.
- Certificate
Zero
Trust Gateway Settings Settings Certificate - Certificate settings for Gateway TLS interception. If not specified, the Cloudflare Root CA will be used.
- Custom
Certificate ZeroTrust Gateway Settings Settings Custom Certificate - Custom certificate settings for BYO-PKI. (deprecated and replaced by
certificate) - Extended
Email ZeroMatching Trust Gateway Settings Settings Extended Email Matching - Extended e-mail matching settings.
- Fips
Zero
Trust Gateway Settings Settings Fips - FIPS settings.
- Protocol
Detection ZeroTrust Gateway Settings Settings Protocol Detection - Protocol Detection settings.
- Sandbox
Zero
Trust Gateway Settings Settings Sandbox - Sandbox settings.
- Tls
Decrypt ZeroTrust Gateway Settings Settings Tls Decrypt - TLS interception settings.
- Activity
Log ZeroTrust Gateway Settings Settings Activity Log - Activity log settings.
- Antivirus
Zero
Trust Gateway Settings Settings Antivirus - Anti-virus settings.
- Block
Page ZeroTrust Gateway Settings Settings Block Page - Block page layout settings.
- Body
Scanning ZeroTrust Gateway Settings Settings Body Scanning - DLP body scanning settings.
- Browser
Isolation ZeroTrust Gateway Settings Settings Browser Isolation - Browser isolation settings.
- Certificate
Zero
Trust Gateway Settings Settings Certificate - Certificate settings for Gateway TLS interception. If not specified, the Cloudflare Root CA will be used.
- Custom
Certificate ZeroTrust Gateway Settings Settings Custom Certificate - Custom certificate settings for BYO-PKI. (deprecated and replaced by
certificate) - Extended
Email ZeroMatching Trust Gateway Settings Settings Extended Email Matching - Extended e-mail matching settings.
- Fips
Zero
Trust Gateway Settings Settings Fips - FIPS settings.
- Protocol
Detection ZeroTrust Gateway Settings Settings Protocol Detection - Protocol Detection settings.
- Sandbox
Zero
Trust Gateway Settings Settings Sandbox - Sandbox settings.
- Tls
Decrypt ZeroTrust Gateway Settings Settings Tls Decrypt - TLS interception settings.
- activity
Log ZeroTrust Gateway Settings Settings Activity Log - Activity log settings.
- antivirus
Zero
Trust Gateway Settings Settings Antivirus - Anti-virus settings.
- block
Page ZeroTrust Gateway Settings Settings Block Page - Block page layout settings.
- body
Scanning ZeroTrust Gateway Settings Settings Body Scanning - DLP body scanning settings.
- browser
Isolation ZeroTrust Gateway Settings Settings Browser Isolation - Browser isolation settings.
- certificate
Zero
Trust Gateway Settings Settings Certificate - Certificate settings for Gateway TLS interception. If not specified, the Cloudflare Root CA will be used.
- custom
Certificate ZeroTrust Gateway Settings Settings Custom Certificate - Custom certificate settings for BYO-PKI. (deprecated and replaced by
certificate) - extended
Email ZeroMatching Trust Gateway Settings Settings Extended Email Matching - Extended e-mail matching settings.
- fips
Zero
Trust Gateway Settings Settings Fips - FIPS settings.
- protocol
Detection ZeroTrust Gateway Settings Settings Protocol Detection - Protocol Detection settings.
- sandbox
Zero
Trust Gateway Settings Settings Sandbox - Sandbox settings.
- tls
Decrypt ZeroTrust Gateway Settings Settings Tls Decrypt - TLS interception settings.
- activity
Log ZeroTrust Gateway Settings Settings Activity Log - Activity log settings.
- antivirus
Zero
Trust Gateway Settings Settings Antivirus - Anti-virus settings.
- block
Page ZeroTrust Gateway Settings Settings Block Page - Block page layout settings.
- body
Scanning ZeroTrust Gateway Settings Settings Body Scanning - DLP body scanning settings.
- browser
Isolation ZeroTrust Gateway Settings Settings Browser Isolation - Browser isolation settings.
- certificate
Zero
Trust Gateway Settings Settings Certificate - Certificate settings for Gateway TLS interception. If not specified, the Cloudflare Root CA will be used.
- custom
Certificate ZeroTrust Gateway Settings Settings Custom Certificate - Custom certificate settings for BYO-PKI. (deprecated and replaced by
certificate) - extended
Email ZeroMatching Trust Gateway Settings Settings Extended Email Matching - Extended e-mail matching settings.
- fips
Zero
Trust Gateway Settings Settings Fips - FIPS settings.
- protocol
Detection ZeroTrust Gateway Settings Settings Protocol Detection - Protocol Detection settings.
- sandbox
Zero
Trust Gateway Settings Settings Sandbox - Sandbox settings.
- tls
Decrypt ZeroTrust Gateway Settings Settings Tls Decrypt - TLS interception settings.
- activity_
log ZeroTrust Gateway Settings Settings Activity Log - Activity log settings.
- antivirus
Zero
Trust Gateway Settings Settings Antivirus - Anti-virus settings.
- block_
page ZeroTrust Gateway Settings Settings Block Page - Block page layout settings.
- body_
scanning ZeroTrust Gateway Settings Settings Body Scanning - DLP body scanning settings.
- browser_
isolation ZeroTrust Gateway Settings Settings Browser Isolation - Browser isolation settings.
- certificate
Zero
Trust Gateway Settings Settings Certificate - Certificate settings for Gateway TLS interception. If not specified, the Cloudflare Root CA will be used.
- custom_
certificate ZeroTrust Gateway Settings Settings Custom Certificate - Custom certificate settings for BYO-PKI. (deprecated and replaced by
certificate) - extended_
email_ Zeromatching Trust Gateway Settings Settings Extended Email Matching - Extended e-mail matching settings.
- fips
Zero
Trust Gateway Settings Settings Fips - FIPS settings.
- protocol_
detection ZeroTrust Gateway Settings Settings Protocol Detection - Protocol Detection settings.
- sandbox
Zero
Trust Gateway Settings Settings Sandbox - Sandbox settings.
- tls_
decrypt ZeroTrust Gateway Settings Settings Tls Decrypt - TLS interception settings.
- activity
Log Property Map - Activity log settings.
- antivirus Property Map
- Anti-virus settings.
- block
Page Property Map - Block page layout settings.
- body
Scanning Property Map - DLP body scanning settings.
- browser
Isolation Property Map - Browser isolation settings.
- certificate Property Map
- Certificate settings for Gateway TLS interception. If not specified, the Cloudflare Root CA will be used.
- custom
Certificate Property Map - Custom certificate settings for BYO-PKI. (deprecated and replaced by
certificate) - extended
Email Property MapMatching - Extended e-mail matching settings.
- fips Property Map
- FIPS settings.
- protocol
Detection Property Map - Protocol Detection settings.
- sandbox Property Map
- Sandbox settings.
- tls
Decrypt Property Map - TLS interception settings.
ZeroTrustGatewaySettingsSettingsActivityLog, ZeroTrustGatewaySettingsSettingsActivityLogArgs
- Enabled bool
- Enable activity logging.
- Enabled bool
- Enable activity logging.
- enabled Boolean
- Enable activity logging.
- enabled boolean
- Enable activity logging.
- enabled bool
- Enable activity logging.
- enabled Boolean
- Enable activity logging.
ZeroTrustGatewaySettingsSettingsAntivirus, ZeroTrustGatewaySettingsSettingsAntivirusArgs
- Enabled
Download boolPhase - Enable anti-virus scanning on downloads.
- Enabled
Upload boolPhase - Enable anti-virus scanning on uploads.
- Fail
Closed bool - Block requests for files that cannot be scanned.
- Notification
Settings ZeroTrust Gateway Settings Settings Antivirus Notification Settings - Configure a message to display on the user's device when an antivirus search is performed.
- Enabled
Download boolPhase - Enable anti-virus scanning on downloads.
- Enabled
Upload boolPhase - Enable anti-virus scanning on uploads.
- Fail
Closed bool - Block requests for files that cannot be scanned.
- Notification
Settings ZeroTrust Gateway Settings Settings Antivirus Notification Settings - Configure a message to display on the user's device when an antivirus search is performed.
- enabled
Download BooleanPhase - Enable anti-virus scanning on downloads.
- enabled
Upload BooleanPhase - Enable anti-virus scanning on uploads.
- fail
Closed Boolean - Block requests for files that cannot be scanned.
- notification
Settings ZeroTrust Gateway Settings Settings Antivirus Notification Settings - Configure a message to display on the user's device when an antivirus search is performed.
- enabled
Download booleanPhase - Enable anti-virus scanning on downloads.
- enabled
Upload booleanPhase - Enable anti-virus scanning on uploads.
- fail
Closed boolean - Block requests for files that cannot be scanned.
- notification
Settings ZeroTrust Gateway Settings Settings Antivirus Notification Settings - Configure a message to display on the user's device when an antivirus search is performed.
- enabled_
download_ boolphase - Enable anti-virus scanning on downloads.
- enabled_
upload_ boolphase - Enable anti-virus scanning on uploads.
- fail_
closed bool - Block requests for files that cannot be scanned.
- notification_
settings ZeroTrust Gateway Settings Settings Antivirus Notification Settings - Configure a message to display on the user's device when an antivirus search is performed.
- enabled
Download BooleanPhase - Enable anti-virus scanning on downloads.
- enabled
Upload BooleanPhase - Enable anti-virus scanning on uploads.
- fail
Closed Boolean - Block requests for files that cannot be scanned.
- notification
Settings Property Map - Configure a message to display on the user's device when an antivirus search is performed.
ZeroTrustGatewaySettingsSettingsAntivirusNotificationSettings, ZeroTrustGatewaySettingsSettingsAntivirusNotificationSettingsArgs
- Enabled bool
- Set notification on
- Msg string
- Customize the message shown in the notification.
- Support
Url string - Optional URL to direct users to additional information. If not set, the notification will open a block page.
- Enabled bool
- Set notification on
- Msg string
- Customize the message shown in the notification.
- Support
Url string - Optional URL to direct users to additional information. If not set, the notification will open a block page.
- enabled Boolean
- Set notification on
- msg String
- Customize the message shown in the notification.
- support
Url String - Optional URL to direct users to additional information. If not set, the notification will open a block page.
- enabled boolean
- Set notification on
- msg string
- Customize the message shown in the notification.
- support
Url string - Optional URL to direct users to additional information. If not set, the notification will open a block page.
- enabled bool
- Set notification on
- msg str
- Customize the message shown in the notification.
- support_
url str - Optional URL to direct users to additional information. If not set, the notification will open a block page.
- enabled Boolean
- Set notification on
- msg String
- Customize the message shown in the notification.
- support
Url String - Optional URL to direct users to additional information. If not set, the notification will open a block page.
ZeroTrustGatewaySettingsSettingsBlockPage, ZeroTrustGatewaySettingsSettingsBlockPageArgs
- Background
Color string - If mode is customizedblockpage: block page background color in #rrggbb format.
- Enabled bool
- Enable only cipher suites and TLS versions compliant with FIPS 140-2.
- string
- If mode is customizedblockpage: block page footer text.
- Header
Text string - If mode is customizedblockpage: block page header text.
- Include
Context bool - If mode is redirecturi: when enabled, context will be appended to targeturi as query parameters.
- Logo
Path string - If mode is customizedblockpage: full URL to the logo file.
- Mailto
Address string - If mode is customizedblockpage: admin email for users to contact.
- Mailto
Subject string - If mode is customizedblockpage: subject line for emails created from block page.
- Mode string
- Controls whether the user is redirected to a Cloudflare-hosted block page or to a customer-provided URI. Available values: "customizedblockpage", "redirect_uri".
- Name string
- If mode is customizedblockpage: block page title.
- bool
- If mode is customizedblockpage: suppress detailed info at the bottom of the block page.
- Target
Uri string - If mode is redirect_uri: URI to which the user should be redirected.
- Background
Color string - If mode is customizedblockpage: block page background color in #rrggbb format.
- Enabled bool
- Enable only cipher suites and TLS versions compliant with FIPS 140-2.
- string
- If mode is customizedblockpage: block page footer text.
- Header
Text string - If mode is customizedblockpage: block page header text.
- Include
Context bool - If mode is redirecturi: when enabled, context will be appended to targeturi as query parameters.
- Logo
Path string - If mode is customizedblockpage: full URL to the logo file.
- Mailto
Address string - If mode is customizedblockpage: admin email for users to contact.
- Mailto
Subject string - If mode is customizedblockpage: subject line for emails created from block page.
- Mode string
- Controls whether the user is redirected to a Cloudflare-hosted block page or to a customer-provided URI. Available values: "customizedblockpage", "redirect_uri".
- Name string
- If mode is customizedblockpage: block page title.
- bool
- If mode is customizedblockpage: suppress detailed info at the bottom of the block page.
- Target
Uri string - If mode is redirect_uri: URI to which the user should be redirected.
- background
Color String - If mode is customizedblockpage: block page background color in #rrggbb format.
- enabled Boolean
- Enable only cipher suites and TLS versions compliant with FIPS 140-2.
- String
- If mode is customizedblockpage: block page footer text.
- header
Text String - If mode is customizedblockpage: block page header text.
- include
Context Boolean - If mode is redirecturi: when enabled, context will be appended to targeturi as query parameters.
- logo
Path String - If mode is customizedblockpage: full URL to the logo file.
- mailto
Address String - If mode is customizedblockpage: admin email for users to contact.
- mailto
Subject String - If mode is customizedblockpage: subject line for emails created from block page.
- mode String
- Controls whether the user is redirected to a Cloudflare-hosted block page or to a customer-provided URI. Available values: "customizedblockpage", "redirect_uri".
- name String
- If mode is customizedblockpage: block page title.
- Boolean
- If mode is customizedblockpage: suppress detailed info at the bottom of the block page.
- target
Uri String - If mode is redirect_uri: URI to which the user should be redirected.
- background
Color string - If mode is customizedblockpage: block page background color in #rrggbb format.
- enabled boolean
- Enable only cipher suites and TLS versions compliant with FIPS 140-2.
- string
- If mode is customizedblockpage: block page footer text.
- header
Text string - If mode is customizedblockpage: block page header text.
- include
Context boolean - If mode is redirecturi: when enabled, context will be appended to targeturi as query parameters.
- logo
Path string - If mode is customizedblockpage: full URL to the logo file.
- mailto
Address string - If mode is customizedblockpage: admin email for users to contact.
- mailto
Subject string - If mode is customizedblockpage: subject line for emails created from block page.
- mode string
- Controls whether the user is redirected to a Cloudflare-hosted block page or to a customer-provided URI. Available values: "customizedblockpage", "redirect_uri".
- name string
- If mode is customizedblockpage: block page title.
- boolean
- If mode is customizedblockpage: suppress detailed info at the bottom of the block page.
- target
Uri string - If mode is redirect_uri: URI to which the user should be redirected.
- background_
color str - If mode is customizedblockpage: block page background color in #rrggbb format.
- enabled bool
- Enable only cipher suites and TLS versions compliant with FIPS 140-2.
- str
- If mode is customizedblockpage: block page footer text.
- header_
text str - If mode is customizedblockpage: block page header text.
- include_
context bool - If mode is redirecturi: when enabled, context will be appended to targeturi as query parameters.
- logo_
path str - If mode is customizedblockpage: full URL to the logo file.
- mailto_
address str - If mode is customizedblockpage: admin email for users to contact.
- mailto_
subject str - If mode is customizedblockpage: subject line for emails created from block page.
- mode str
- Controls whether the user is redirected to a Cloudflare-hosted block page or to a customer-provided URI. Available values: "customizedblockpage", "redirect_uri".
- name str
- If mode is customizedblockpage: block page title.
- bool
- If mode is customizedblockpage: suppress detailed info at the bottom of the block page.
- target_
uri str - If mode is redirect_uri: URI to which the user should be redirected.
- background
Color String - If mode is customizedblockpage: block page background color in #rrggbb format.
- enabled Boolean
- Enable only cipher suites and TLS versions compliant with FIPS 140-2.
- String
- If mode is customizedblockpage: block page footer text.
- header
Text String - If mode is customizedblockpage: block page header text.
- include
Context Boolean - If mode is redirecturi: when enabled, context will be appended to targeturi as query parameters.
- logo
Path String - If mode is customizedblockpage: full URL to the logo file.
- mailto
Address String - If mode is customizedblockpage: admin email for users to contact.
- mailto
Subject String - If mode is customizedblockpage: subject line for emails created from block page.
- mode String
- Controls whether the user is redirected to a Cloudflare-hosted block page or to a customer-provided URI. Available values: "customizedblockpage", "redirect_uri".
- name String
- If mode is customizedblockpage: block page title.
- Boolean
- If mode is customizedblockpage: suppress detailed info at the bottom of the block page.
- target
Uri String - If mode is redirect_uri: URI to which the user should be redirected.
ZeroTrustGatewaySettingsSettingsBodyScanning, ZeroTrustGatewaySettingsSettingsBodyScanningArgs
- Inspection
Mode string - Set the inspection mode to either
deeporshallow.
- Inspection
Mode string - Set the inspection mode to either
deeporshallow.
- inspection
Mode String - Set the inspection mode to either
deeporshallow.
- inspection
Mode string - Set the inspection mode to either
deeporshallow.
- inspection_
mode str - Set the inspection mode to either
deeporshallow.
- inspection
Mode String - Set the inspection mode to either
deeporshallow.
ZeroTrustGatewaySettingsSettingsBrowserIsolation, ZeroTrustGatewaySettingsSettingsBrowserIsolationArgs
- Non
Identity boolEnabled - Enable non-identity onramp support for Browser Isolation.
- Url
Browser boolIsolation Enabled - Enable Clientless Browser Isolation.
- Non
Identity boolEnabled - Enable non-identity onramp support for Browser Isolation.
- Url
Browser boolIsolation Enabled - Enable Clientless Browser Isolation.
- non
Identity BooleanEnabled - Enable non-identity onramp support for Browser Isolation.
- url
Browser BooleanIsolation Enabled - Enable Clientless Browser Isolation.
- non
Identity booleanEnabled - Enable non-identity onramp support for Browser Isolation.
- url
Browser booleanIsolation Enabled - Enable Clientless Browser Isolation.
- non_
identity_ boolenabled - Enable non-identity onramp support for Browser Isolation.
- url_
browser_ boolisolation_ enabled - Enable Clientless Browser Isolation.
- non
Identity BooleanEnabled - Enable non-identity onramp support for Browser Isolation.
- url
Browser BooleanIsolation Enabled - Enable Clientless Browser Isolation.
ZeroTrustGatewaySettingsSettingsCertificate, ZeroTrustGatewaySettingsSettingsCertificateArgs
- Id string
- UUID of certificate to be used for interception. Certificate must be available (previously called 'active') on the edge. A nil UUID will indicate the Cloudflare Root CA should be used.
- Id string
- UUID of certificate to be used for interception. Certificate must be available (previously called 'active') on the edge. A nil UUID will indicate the Cloudflare Root CA should be used.
- id String
- UUID of certificate to be used for interception. Certificate must be available (previously called 'active') on the edge. A nil UUID will indicate the Cloudflare Root CA should be used.
- id string
- UUID of certificate to be used for interception. Certificate must be available (previously called 'active') on the edge. A nil UUID will indicate the Cloudflare Root CA should be used.
- id str
- UUID of certificate to be used for interception. Certificate must be available (previously called 'active') on the edge. A nil UUID will indicate the Cloudflare Root CA should be used.
- id String
- UUID of certificate to be used for interception. Certificate must be available (previously called 'active') on the edge. A nil UUID will indicate the Cloudflare Root CA should be used.
ZeroTrustGatewaySettingsSettingsCustomCertificate, ZeroTrustGatewaySettingsSettingsCustomCertificateArgs
- Enabled bool
- Enable use of custom certificate authority for signing Gateway traffic.
- Binding
Status string - Certificate status (internal).
- Id string
- UUID of certificate (ID from MTLS certificate store).
- Updated
At string
- Enabled bool
- Enable use of custom certificate authority for signing Gateway traffic.
- Binding
Status string - Certificate status (internal).
- Id string
- UUID of certificate (ID from MTLS certificate store).
- Updated
At string
- enabled Boolean
- Enable use of custom certificate authority for signing Gateway traffic.
- binding
Status String - Certificate status (internal).
- id String
- UUID of certificate (ID from MTLS certificate store).
- updated
At String
- enabled boolean
- Enable use of custom certificate authority for signing Gateway traffic.
- binding
Status string - Certificate status (internal).
- id string
- UUID of certificate (ID from MTLS certificate store).
- updated
At string
- enabled bool
- Enable use of custom certificate authority for signing Gateway traffic.
- binding_
status str - Certificate status (internal).
- id str
- UUID of certificate (ID from MTLS certificate store).
- updated_
at str
- enabled Boolean
- Enable use of custom certificate authority for signing Gateway traffic.
- binding
Status String - Certificate status (internal).
- id String
- UUID of certificate (ID from MTLS certificate store).
- updated
At String
ZeroTrustGatewaySettingsSettingsExtendedEmailMatching, ZeroTrustGatewaySettingsSettingsExtendedEmailMatchingArgs
- Enabled bool
- Enable matching all variants of user emails (with + or . modifiers) used as criteria in Firewall policies.
- Enabled bool
- Enable matching all variants of user emails (with + or . modifiers) used as criteria in Firewall policies.
- enabled Boolean
- Enable matching all variants of user emails (with + or . modifiers) used as criteria in Firewall policies.
- enabled boolean
- Enable matching all variants of user emails (with + or . modifiers) used as criteria in Firewall policies.
- enabled bool
- Enable matching all variants of user emails (with + or . modifiers) used as criteria in Firewall policies.
- enabled Boolean
- Enable matching all variants of user emails (with + or . modifiers) used as criteria in Firewall policies.
ZeroTrustGatewaySettingsSettingsFips, ZeroTrustGatewaySettingsSettingsFipsArgs
- Tls bool
- Enable only cipher suites and TLS versions compliant with FIPS 140-2.
- Tls bool
- Enable only cipher suites and TLS versions compliant with FIPS 140-2.
- tls Boolean
- Enable only cipher suites and TLS versions compliant with FIPS 140-2.
- tls boolean
- Enable only cipher suites and TLS versions compliant with FIPS 140-2.
- tls bool
- Enable only cipher suites and TLS versions compliant with FIPS 140-2.
- tls Boolean
- Enable only cipher suites and TLS versions compliant with FIPS 140-2.
ZeroTrustGatewaySettingsSettingsProtocolDetection, ZeroTrustGatewaySettingsSettingsProtocolDetectionArgs
- Enabled bool
- Enable detecting protocol on initial bytes of client traffic.
- Enabled bool
- Enable detecting protocol on initial bytes of client traffic.
- enabled Boolean
- Enable detecting protocol on initial bytes of client traffic.
- enabled boolean
- Enable detecting protocol on initial bytes of client traffic.
- enabled bool
- Enable detecting protocol on initial bytes of client traffic.
- enabled Boolean
- Enable detecting protocol on initial bytes of client traffic.
ZeroTrustGatewaySettingsSettingsSandbox, ZeroTrustGatewaySettingsSettingsSandboxArgs
- Enabled bool
- Enable sandbox.
- Fallback
Action string - Action to take when the file cannot be scanned. Available values: "allow", "block".
- Enabled bool
- Enable sandbox.
- Fallback
Action string - Action to take when the file cannot be scanned. Available values: "allow", "block".
- enabled Boolean
- Enable sandbox.
- fallback
Action String - Action to take when the file cannot be scanned. Available values: "allow", "block".
- enabled boolean
- Enable sandbox.
- fallback
Action string - Action to take when the file cannot be scanned. Available values: "allow", "block".
- enabled bool
- Enable sandbox.
- fallback_
action str - Action to take when the file cannot be scanned. Available values: "allow", "block".
- enabled Boolean
- Enable sandbox.
- fallback
Action String - Action to take when the file cannot be scanned. Available values: "allow", "block".
ZeroTrustGatewaySettingsSettingsTlsDecrypt, ZeroTrustGatewaySettingsSettingsTlsDecryptArgs
- Enabled bool
- Enable inspecting encrypted HTTP traffic.
- Enabled bool
- Enable inspecting encrypted HTTP traffic.
- enabled Boolean
- Enable inspecting encrypted HTTP traffic.
- enabled boolean
- Enable inspecting encrypted HTTP traffic.
- enabled bool
- Enable inspecting encrypted HTTP traffic.
- enabled Boolean
- Enable inspecting encrypted HTTP traffic.
Import
$ pulumi import cloudflare:index/zeroTrustGatewaySettings:ZeroTrustGatewaySettings example '<account_id>'
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Cloudflare pulumi/pulumi-cloudflare
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
cloudflareTerraform Provider.