flexibleengine 1.46.0, Apr 14 25

flexibleengine 1.46.0 published on Monday, Apr 14, 2025 by flexibleenginecloud

flexibleenginecloud/terraform-provider-flexibleengine

flexibleengine.WafDedicatedDomain

Explore with Pulumi AI

flexibleengine 1.46.0 published on Monday, Apr 14, 2025 by flexibleenginecloud

flexibleenginecloud/terraform-provider-flexibleengine

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as flexibleengine from "@pulumi/flexibleengine";

const exampleVpc = new flexibleengine.VpcV1("exampleVpc", {cidr: "192.168.0.0/16"});
const certificate1 = new flexibleengine.WafDedicatedCertificate("certificate1", {
    certificate: `-----BEGIN CERTIFICATE-----
MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
...
dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
-----END CERTIFICATE-----
`,
    privateKey: `-----BEGIN PRIVATE KEY-----
MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
...
s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
+4sM7kp0qO3/p+45HykwBY5iHq3H
-----END PRIVATE KEY-----
`,
});
const domain1 = new flexibleengine.WafDedicatedDomain("domain1", {
    domain: "www.example.com",
    certificateId: certificate1.wafDedicatedCertificateId,
    servers: [{
        clientProtocol: "HTTPS",
        serverProtocol: "HTTP",
        address: "192.168.1.100",
        port: 8080,
        type: "ipv4",
        vpcId: exampleVpc.vpcV1Id,
    }],
});

import pulumi
import pulumi_flexibleengine as flexibleengine

example_vpc = flexibleengine.VpcV1("exampleVpc", cidr="192.168.0.0/16")
certificate1 = flexibleengine.WafDedicatedCertificate("certificate1",
    certificate="""-----BEGIN CERTIFICATE-----
MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
...
dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
-----END CERTIFICATE-----
""",
    private_key="""-----BEGIN PRIVATE KEY-----
MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
...
s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
+4sM7kp0qO3/p+45HykwBY5iHq3H
-----END PRIVATE KEY-----
""")
domain1 = flexibleengine.WafDedicatedDomain("domain1",
    domain="www.example.com",
    certificate_id=certificate1.waf_dedicated_certificate_id,
    servers=[{
        "client_protocol": "HTTPS",
        "server_protocol": "HTTP",
        "address": "192.168.1.100",
        "port": 8080,
        "type": "ipv4",
        "vpc_id": example_vpc.vpc_v1_id,
    }])

package main

import (
	"github.com/pulumi/pulumi-terraform-provider/sdks/go/flexibleengine/flexibleengine"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		exampleVpc, err := flexibleengine.NewVpcV1(ctx, "exampleVpc", &flexibleengine.VpcV1Args{
			Cidr: pulumi.String("192.168.0.0/16"),
		})
		if err != nil {
			return err
		}
		certificate1, err := flexibleengine.NewWafDedicatedCertificate(ctx, "certificate1", &flexibleengine.WafDedicatedCertificateArgs{
			Certificate: pulumi.String(`-----BEGIN CERTIFICATE-----
MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
...
dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
-----END CERTIFICATE-----
`),
			PrivateKey: pulumi.String(`-----BEGIN PRIVATE KEY-----
MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
...
s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
+4sM7kp0qO3/p+45HykwBY5iHq3H
-----END PRIVATE KEY-----
`),
		})
		if err != nil {
			return err
		}
		_, err = flexibleengine.NewWafDedicatedDomain(ctx, "domain1", &flexibleengine.WafDedicatedDomainArgs{
			Domain:        pulumi.String("www.example.com"),
			CertificateId: certificate1.WafDedicatedCertificateId,
			Servers: flexibleengine.WafDedicatedDomainServerArray{
				&flexibleengine.WafDedicatedDomainServerArgs{
					ClientProtocol: pulumi.String("HTTPS"),
					ServerProtocol: pulumi.String("HTTP"),
					Address:        pulumi.String("192.168.1.100"),
					Port:           pulumi.Float64(8080),
					Type:           pulumi.String("ipv4"),
					VpcId:          exampleVpc.VpcV1Id,
				},
			},
		})
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Flexibleengine = Pulumi.Flexibleengine;

return await Deployment.RunAsync(() => 
{
    var exampleVpc = new Flexibleengine.VpcV1("exampleVpc", new()
    {
        Cidr = "192.168.0.0/16",
    });

    var certificate1 = new Flexibleengine.WafDedicatedCertificate("certificate1", new()
    {
        Certificate = @"-----BEGIN CERTIFICATE-----
MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
...
dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
-----END CERTIFICATE-----
",
        PrivateKey = @"-----BEGIN PRIVATE KEY-----
MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
...
s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
+4sM7kp0qO3/p+45HykwBY5iHq3H
-----END PRIVATE KEY-----
",
    });

    var domain1 = new Flexibleengine.WafDedicatedDomain("domain1", new()
    {
        Domain = "www.example.com",
        CertificateId = certificate1.WafDedicatedCertificateId,
        Servers = new[]
        {
            new Flexibleengine.Inputs.WafDedicatedDomainServerArgs
            {
                ClientProtocol = "HTTPS",
                ServerProtocol = "HTTP",
                Address = "192.168.1.100",
                Port = 8080,
                Type = "ipv4",
                VpcId = exampleVpc.VpcV1Id,
            },
        },
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.flexibleengine.VpcV1;
import com.pulumi.flexibleengine.VpcV1Args;
import com.pulumi.flexibleengine.WafDedicatedCertificate;
import com.pulumi.flexibleengine.WafDedicatedCertificateArgs;
import com.pulumi.flexibleengine.WafDedicatedDomain;
import com.pulumi.flexibleengine.WafDedicatedDomainArgs;
import com.pulumi.flexibleengine.inputs.WafDedicatedDomainServerArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var exampleVpc = new VpcV1("exampleVpc", VpcV1Args.builder()
            .cidr("192.168.0.0/16")
            .build());

        var certificate1 = new WafDedicatedCertificate("certificate1", WafDedicatedCertificateArgs.builder()
            .certificate("""
-----BEGIN CERTIFICATE-----
MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
...
dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
-----END CERTIFICATE-----
            """)
            .privateKey("""
-----BEGIN PRIVATE KEY-----
MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
...
s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
+4sM7kp0qO3/p+45HykwBY5iHq3H
-----END PRIVATE KEY-----
            """)
            .build());

        var domain1 = new WafDedicatedDomain("domain1", WafDedicatedDomainArgs.builder()
            .domain("www.example.com")
            .certificateId(certificate1.wafDedicatedCertificateId())
            .servers(WafDedicatedDomainServerArgs.builder()
                .clientProtocol("HTTPS")
                .serverProtocol("HTTP")
                .address("192.168.1.100")
                .port(8080)
                .type("ipv4")
                .vpcId(exampleVpc.vpcV1Id())
                .build())
            .build());

    }
}

resources:
  exampleVpc:
    type: flexibleengine:VpcV1
    properties:
      cidr: 192.168.0.0/16
  certificate1:
    type: flexibleengine:WafDedicatedCertificate
    properties:
      certificate: |
        -----BEGIN CERTIFICATE-----
        MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
        BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
        ...
        dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
        -----END CERTIFICATE-----        
      privateKey: |
        -----BEGIN PRIVATE KEY-----
        MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
        5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
        ...
        s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
        +4sM7kp0qO3/p+45HykwBY5iHq3H
        -----END PRIVATE KEY-----        
  domain1:
    type: flexibleengine:WafDedicatedDomain
    properties:
      domain: www.example.com
      certificateId: ${certificate1.wafDedicatedCertificateId}
      servers:
        - clientProtocol: HTTPS
          serverProtocol: HTTP
          address: 192.168.1.100
          port: 8080
          type: ipv4
          vpcId: ${exampleVpc.vpcV1Id}

Create WafDedicatedDomain Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new WafDedicatedDomain(name: string, args: WafDedicatedDomainArgs, opts?: CustomResourceOptions);

@overload
def WafDedicatedDomain(resource_name: str,
                       args: WafDedicatedDomainArgs,
                       opts: Optional[ResourceOptions] = None)

@overload
def WafDedicatedDomain(resource_name: str,
                       opts: Optional[ResourceOptions] = None,
                       domain: Optional[str] = None,
                       servers: Optional[Sequence[WafDedicatedDomainServerArgs]] = None,
                       policy_id: Optional[str] = None,
                       keep_policy: Optional[bool] = None,
                       pci3ds: Optional[bool] = None,
                       pci_dss: Optional[bool] = None,
                       certificate_id: Optional[str] = None,
                       protect_status: Optional[float] = None,
                       proxy: Optional[bool] = None,
                       region: Optional[str] = None,
                       cipher: Optional[str] = None,
                       tls: Optional[str] = None,
                       waf_dedicated_domain_id: Optional[str] = None)

func NewWafDedicatedDomain(ctx *Context, name string, args WafDedicatedDomainArgs, opts ...ResourceOption) (*WafDedicatedDomain, error)

public WafDedicatedDomain(string name, WafDedicatedDomainArgs args, CustomResourceOptions? opts = null)

public WafDedicatedDomain(String name, WafDedicatedDomainArgs args)
public WafDedicatedDomain(String name, WafDedicatedDomainArgs args, CustomResourceOptions options)

type: flexibleengine:WafDedicatedDomain
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args WafDedicatedDomainArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args WafDedicatedDomainArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args WafDedicatedDomainArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args WafDedicatedDomainArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args WafDedicatedDomainArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var wafDedicatedDomainResource = new Flexibleengine.WafDedicatedDomain("wafDedicatedDomainResource", new()
{
    Domain = "string",
    Servers = new[]
    {
        new Flexibleengine.Inputs.WafDedicatedDomainServerArgs
        {
            Address = "string",
            ClientProtocol = "string",
            Port = 0,
            ServerProtocol = "string",
            Type = "string",
            VpcId = "string",
        },
    },
    PolicyId = "string",
    KeepPolicy = false,
    Pci3ds = false,
    PciDss = false,
    CertificateId = "string",
    ProtectStatus = 0,
    Proxy = false,
    Region = "string",
    Cipher = "string",
    Tls = "string",
    WafDedicatedDomainId = "string",
});

example, err := flexibleengine.NewWafDedicatedDomain(ctx, "wafDedicatedDomainResource", &flexibleengine.WafDedicatedDomainArgs{
	Domain: pulumi.String("string"),
	Servers: flexibleengine.WafDedicatedDomainServerArray{
		&flexibleengine.WafDedicatedDomainServerArgs{
			Address:        pulumi.String("string"),
			ClientProtocol: pulumi.String("string"),
			Port:           pulumi.Float64(0),
			ServerProtocol: pulumi.String("string"),
			Type:           pulumi.String("string"),
			VpcId:          pulumi.String("string"),
		},
	},
	PolicyId:             pulumi.String("string"),
	KeepPolicy:           pulumi.Bool(false),
	Pci3ds:               pulumi.Bool(false),
	PciDss:               pulumi.Bool(false),
	CertificateId:        pulumi.String("string"),
	ProtectStatus:        pulumi.Float64(0),
	Proxy:                pulumi.Bool(false),
	Region:               pulumi.String("string"),
	Cipher:               pulumi.String("string"),
	Tls:                  pulumi.String("string"),
	WafDedicatedDomainId: pulumi.String("string"),
})

var wafDedicatedDomainResource = new WafDedicatedDomain("wafDedicatedDomainResource", WafDedicatedDomainArgs.builder()
    .domain("string")
    .servers(WafDedicatedDomainServerArgs.builder()
        .address("string")
        .clientProtocol("string")
        .port(0)
        .serverProtocol("string")
        .type("string")
        .vpcId("string")
        .build())
    .policyId("string")
    .keepPolicy(false)
    .pci3ds(false)
    .pciDss(false)
    .certificateId("string")
    .protectStatus(0)
    .proxy(false)
    .region("string")
    .cipher("string")
    .tls("string")
    .wafDedicatedDomainId("string")
    .build());

waf_dedicated_domain_resource = flexibleengine.WafDedicatedDomain("wafDedicatedDomainResource",
    domain="string",
    servers=[{
        "address": "string",
        "client_protocol": "string",
        "port": 0,
        "server_protocol": "string",
        "type": "string",
        "vpc_id": "string",
    }],
    policy_id="string",
    keep_policy=False,
    pci3ds=False,
    pci_dss=False,
    certificate_id="string",
    protect_status=0,
    proxy=False,
    region="string",
    cipher="string",
    tls="string",
    waf_dedicated_domain_id="string")

const wafDedicatedDomainResource = new flexibleengine.WafDedicatedDomain("wafDedicatedDomainResource", {
    domain: "string",
    servers: [{
        address: "string",
        clientProtocol: "string",
        port: 0,
        serverProtocol: "string",
        type: "string",
        vpcId: "string",
    }],
    policyId: "string",
    keepPolicy: false,
    pci3ds: false,
    pciDss: false,
    certificateId: "string",
    protectStatus: 0,
    proxy: false,
    region: "string",
    cipher: "string",
    tls: "string",
    wafDedicatedDomainId: "string",
});

type: flexibleengine:WafDedicatedDomain
properties:
    certificateId: string
    cipher: string
    domain: string
    keepPolicy: false
    pci3ds: false
    pciDss: false
    policyId: string
    protectStatus: 0
    proxy: false
    region: string
    servers:
        - address: string
          clientProtocol: string
          port: 0
          serverProtocol: string
          type: string
          vpcId: string
    tls: string
    wafDedicatedDomainId: string

WafDedicatedDomain Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The WafDedicatedDomain resource accepts the following input properties:

Domain string

Specifies the domain name to be protected. For example, www.example.com or *.example.com. Changing this creates a new domain.

Servers List<WafDedicatedDomainServer>

The server configuration list of the domain. A maximum of 80 can be configured. The server object structure is documented below.

CertificateId string

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

Cipher string

Specifies the cipher suite of domain. The options include cipher_1, cipher_2, cipher_3, cipher_4, cipher_default.

KeepPolicy bool

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

Pci3ds bool

Specifies the status of the PCI 3DS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

PciDss bool

Specifies the status of the PCI DSS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

The server block supports:

PolicyId string

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically. Changing this creates a new domain.

ProtectStatus double

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

Proxy bool

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

Region string

Specifies the region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this will create a new dedicated mode domain resource.

Tls string

Specifies the minimum required TLS version. The options include TLS v1.0, TLS v1.1, TLS v1.2.

WafDedicatedDomainId string

ID of the domain.

Domain string

Specifies the domain name to be protected. For example, www.example.com or *.example.com. Changing this creates a new domain.

Servers []WafDedicatedDomainServerArgs

The server configuration list of the domain. A maximum of 80 can be configured. The server object structure is documented below.

CertificateId string

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

Cipher string

Specifies the cipher suite of domain. The options include cipher_1, cipher_2, cipher_3, cipher_4, cipher_default.

KeepPolicy bool

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

Pci3ds bool

Specifies the status of the PCI 3DS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

PciDss bool

Specifies the status of the PCI DSS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

The server block supports:

PolicyId string

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically. Changing this creates a new domain.

ProtectStatus float64

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

Proxy bool

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

Region string

Specifies the region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this will create a new dedicated mode domain resource.

Tls string

Specifies the minimum required TLS version. The options include TLS v1.0, TLS v1.1, TLS v1.2.

WafDedicatedDomainId string

ID of the domain.

domain String

Specifies the domain name to be protected. For example, www.example.com or *.example.com. Changing this creates a new domain.

servers List<WafDedicatedDomainServer>

The server configuration list of the domain. A maximum of 80 can be configured. The server object structure is documented below.

certificateId String

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

cipher String

Specifies the cipher suite of domain. The options include cipher_1, cipher_2, cipher_3, cipher_4, cipher_default.

keepPolicy Boolean

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

pci3ds Boolean

Specifies the status of the PCI 3DS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

pciDss Boolean

Specifies the status of the PCI DSS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

The server block supports:

policyId String

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically. Changing this creates a new domain.

protectStatus Double

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

proxy Boolean

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

region String

Specifies the region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this will create a new dedicated mode domain resource.

tls String

Specifies the minimum required TLS version. The options include TLS v1.0, TLS v1.1, TLS v1.2.

wafDedicatedDomainId String

ID of the domain.

domain string

Specifies the domain name to be protected. For example, www.example.com or *.example.com. Changing this creates a new domain.

servers WafDedicatedDomainServer[]

The server configuration list of the domain. A maximum of 80 can be configured. The server object structure is documented below.

certificateId string

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

cipher string

Specifies the cipher suite of domain. The options include cipher_1, cipher_2, cipher_3, cipher_4, cipher_default.

keepPolicy boolean

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

pci3ds boolean

Specifies the status of the PCI 3DS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

pciDss boolean

Specifies the status of the PCI DSS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

The server block supports:

policyId string

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically. Changing this creates a new domain.

protectStatus number

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

proxy boolean

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

region string

Specifies the region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this will create a new dedicated mode domain resource.

tls string

Specifies the minimum required TLS version. The options include TLS v1.0, TLS v1.1, TLS v1.2.

wafDedicatedDomainId string

ID of the domain.

domain str

Specifies the domain name to be protected. For example, www.example.com or *.example.com. Changing this creates a new domain.

servers Sequence[WafDedicatedDomainServerArgs]

The server configuration list of the domain. A maximum of 80 can be configured. The server object structure is documented below.

certificate_id str

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

cipher str

Specifies the cipher suite of domain. The options include cipher_1, cipher_2, cipher_3, cipher_4, cipher_default.

keep_policy bool

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

pci3ds bool

Specifies the status of the PCI 3DS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

pci_dss bool

Specifies the status of the PCI DSS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

The server block supports:

policy_id str

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically. Changing this creates a new domain.

protect_status float

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

proxy bool

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

region str

Specifies the region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this will create a new dedicated mode domain resource.

tls str

Specifies the minimum required TLS version. The options include TLS v1.0, TLS v1.1, TLS v1.2.

waf_dedicated_domain_id str

ID of the domain.

domain String

Specifies the domain name to be protected. For example, www.example.com or *.example.com. Changing this creates a new domain.

servers List<Property Map>

The server configuration list of the domain. A maximum of 80 can be configured. The server object structure is documented below.

certificateId String

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

cipher String

Specifies the cipher suite of domain. The options include cipher_1, cipher_2, cipher_3, cipher_4, cipher_default.

keepPolicy Boolean

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

pci3ds Boolean

Specifies the status of the PCI 3DS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

pciDss Boolean

Specifies the status of the PCI DSS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

The server block supports:

policyId String

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically. Changing this creates a new domain.

protectStatus Number

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

proxy Boolean

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

region String

Specifies the region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this will create a new dedicated mode domain resource.

tls String

Specifies the minimum required TLS version. The options include TLS v1.0, TLS v1.1, TLS v1.2.

wafDedicatedDomainId String

ID of the domain.

Outputs

All input properties are implicitly available as output properties. Additionally, the WafDedicatedDomain resource produces the following output properties:

AccessStatus double: Whether a domain name is connected to WAF. Valid values are:
AlarmPage Dictionary<string, string>: The alarm page of domain. Valid values are:
CertificateName string: The name of the certificate used by the domain name.
ComplianceCertification Dictionary<string, bool>: The compliance certifications of the domain, values are:
Id string: The provider-assigned unique ID for this managed resource.
Protocol string: The protocol type of the client. The options are HTTP and HTTPS.
TrafficIdentifier Dictionary<string, string>: The traffic identifier of domain. Valid values are:

AccessStatus float64: Whether a domain name is connected to WAF. Valid values are:
AlarmPage map[string]string: The alarm page of domain. Valid values are:
CertificateName string: The name of the certificate used by the domain name.
ComplianceCertification map[string]bool: The compliance certifications of the domain, values are:
Id string: The provider-assigned unique ID for this managed resource.
Protocol string: The protocol type of the client. The options are HTTP and HTTPS.
TrafficIdentifier map[string]string: The traffic identifier of domain. Valid values are:

accessStatus Double: Whether a domain name is connected to WAF. Valid values are:
alarmPage Map<String,String>: The alarm page of domain. Valid values are:
certificateName String: The name of the certificate used by the domain name.
complianceCertification Map<String,Boolean>: The compliance certifications of the domain, values are:
id String: The provider-assigned unique ID for this managed resource.
protocol String: The protocol type of the client. The options are HTTP and HTTPS.
trafficIdentifier Map<String,String>: The traffic identifier of domain. Valid values are:

accessStatus number: Whether a domain name is connected to WAF. Valid values are:
alarmPage {[key: string]: string}: The alarm page of domain. Valid values are:
certificateName string: The name of the certificate used by the domain name.
complianceCertification {[key: string]: boolean}: The compliance certifications of the domain, values are:
id string: The provider-assigned unique ID for this managed resource.
protocol string: The protocol type of the client. The options are HTTP and HTTPS.
trafficIdentifier {[key: string]: string}: The traffic identifier of domain. Valid values are:

access_status float: Whether a domain name is connected to WAF. Valid values are:
alarm_page Mapping[str, str]: The alarm page of domain. Valid values are:
certificate_name str: The name of the certificate used by the domain name.
compliance_certification Mapping[str, bool]: The compliance certifications of the domain, values are:
id str: The provider-assigned unique ID for this managed resource.
protocol str: The protocol type of the client. The options are HTTP and HTTPS.
traffic_identifier Mapping[str, str]: The traffic identifier of domain. Valid values are:

accessStatus Number: Whether a domain name is connected to WAF. Valid values are:
alarmPage Map<String>: The alarm page of domain. Valid values are:
certificateName String: The name of the certificate used by the domain name.
complianceCertification Map<Boolean>: The compliance certifications of the domain, values are:
id String: The provider-assigned unique ID for this managed resource.
protocol String: The protocol type of the client. The options are HTTP and HTTPS.
trafficIdentifier Map<String>: The traffic identifier of domain. Valid values are:

Look up Existing WafDedicatedDomain Resource

Get an existing WafDedicatedDomain resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: WafDedicatedDomainState, opts?: CustomResourceOptions): WafDedicatedDomain

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        access_status: Optional[float] = None,
        alarm_page: Optional[Mapping[str, str]] = None,
        certificate_id: Optional[str] = None,
        certificate_name: Optional[str] = None,
        cipher: Optional[str] = None,
        compliance_certification: Optional[Mapping[str, bool]] = None,
        domain: Optional[str] = None,
        keep_policy: Optional[bool] = None,
        pci3ds: Optional[bool] = None,
        pci_dss: Optional[bool] = None,
        policy_id: Optional[str] = None,
        protect_status: Optional[float] = None,
        protocol: Optional[str] = None,
        proxy: Optional[bool] = None,
        region: Optional[str] = None,
        servers: Optional[Sequence[WafDedicatedDomainServerArgs]] = None,
        tls: Optional[str] = None,
        traffic_identifier: Optional[Mapping[str, str]] = None,
        waf_dedicated_domain_id: Optional[str] = None) -> WafDedicatedDomain

func GetWafDedicatedDomain(ctx *Context, name string, id IDInput, state *WafDedicatedDomainState, opts ...ResourceOption) (*WafDedicatedDomain, error)

public static WafDedicatedDomain Get(string name, Input<string> id, WafDedicatedDomainState? state, CustomResourceOptions? opts = null)

public static WafDedicatedDomain get(String name, Output<String> id, WafDedicatedDomainState state, CustomResourceOptions options)

resources:  _:    type: flexibleengine:WafDedicatedDomain    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AccessStatus double

Whether a domain name is connected to WAF. Valid values are:

AlarmPage Dictionary<string, string>

The alarm page of domain. Valid values are:

CertificateId string

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

CertificateName string

The name of the certificate used by the domain name.

Cipher string

Specifies the cipher suite of domain. The options include cipher_1, cipher_2, cipher_3, cipher_4, cipher_default.

ComplianceCertification Dictionary<string, bool>

The compliance certifications of the domain, values are:

Domain string

Specifies the domain name to be protected. For example, www.example.com or *.example.com. Changing this creates a new domain.

KeepPolicy bool

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

Pci3ds bool

Specifies the status of the PCI 3DS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

PciDss bool

Specifies the status of the PCI DSS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

The server block supports:

PolicyId string

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically. Changing this creates a new domain.

ProtectStatus double

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

Protocol string

The protocol type of the client. The options are HTTP and HTTPS.

Proxy bool

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

Region string

Specifies the region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this will create a new dedicated mode domain resource.

Servers List<WafDedicatedDomainServer>

The server configuration list of the domain. A maximum of 80 can be configured. The server object structure is documented below.

Tls string

Specifies the minimum required TLS version. The options include TLS v1.0, TLS v1.1, TLS v1.2.

TrafficIdentifier Dictionary<string, string>

The traffic identifier of domain. Valid values are:

WafDedicatedDomainId string

ID of the domain.

AccessStatus float64

Whether a domain name is connected to WAF. Valid values are:

AlarmPage map[string]string

The alarm page of domain. Valid values are:

CertificateId string

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

CertificateName string

The name of the certificate used by the domain name.

Cipher string

Specifies the cipher suite of domain. The options include cipher_1, cipher_2, cipher_3, cipher_4, cipher_default.

ComplianceCertification map[string]bool

The compliance certifications of the domain, values are:

Domain string

Specifies the domain name to be protected. For example, www.example.com or *.example.com. Changing this creates a new domain.

KeepPolicy bool

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

Pci3ds bool

Specifies the status of the PCI 3DS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

PciDss bool

Specifies the status of the PCI DSS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

The server block supports:

PolicyId string

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically. Changing this creates a new domain.

ProtectStatus float64

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

Protocol string

The protocol type of the client. The options are HTTP and HTTPS.

Proxy bool

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

Region string

Specifies the region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this will create a new dedicated mode domain resource.

Servers []WafDedicatedDomainServerArgs

The server configuration list of the domain. A maximum of 80 can be configured. The server object structure is documented below.

Tls string

Specifies the minimum required TLS version. The options include TLS v1.0, TLS v1.1, TLS v1.2.

TrafficIdentifier map[string]string

The traffic identifier of domain. Valid values are:

WafDedicatedDomainId string

ID of the domain.

accessStatus Double

Whether a domain name is connected to WAF. Valid values are:

alarmPage Map<String,String>

The alarm page of domain. Valid values are:

certificateId String

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

certificateName String

The name of the certificate used by the domain name.

cipher String

Specifies the cipher suite of domain. The options include cipher_1, cipher_2, cipher_3, cipher_4, cipher_default.

complianceCertification Map<String,Boolean>

The compliance certifications of the domain, values are:

domain String

Specifies the domain name to be protected. For example, www.example.com or *.example.com. Changing this creates a new domain.

keepPolicy Boolean

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

pci3ds Boolean

Specifies the status of the PCI 3DS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

pciDss Boolean

Specifies the status of the PCI DSS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

The server block supports:

policyId String

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically. Changing this creates a new domain.

protectStatus Double

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

protocol String

The protocol type of the client. The options are HTTP and HTTPS.

proxy Boolean

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

region String

Specifies the region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this will create a new dedicated mode domain resource.

servers List<WafDedicatedDomainServer>

The server configuration list of the domain. A maximum of 80 can be configured. The server object structure is documented below.

tls String

Specifies the minimum required TLS version. The options include TLS v1.0, TLS v1.1, TLS v1.2.

trafficIdentifier Map<String,String>

The traffic identifier of domain. Valid values are:

wafDedicatedDomainId String

ID of the domain.

accessStatus number

Whether a domain name is connected to WAF. Valid values are:

alarmPage {[key: string]: string}

The alarm page of domain. Valid values are:

certificateId string

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

certificateName string

The name of the certificate used by the domain name.

cipher string

Specifies the cipher suite of domain. The options include cipher_1, cipher_2, cipher_3, cipher_4, cipher_default.

complianceCertification {[key: string]: boolean}

The compliance certifications of the domain, values are:

domain string

Specifies the domain name to be protected. For example, www.example.com or *.example.com. Changing this creates a new domain.

keepPolicy boolean

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

pci3ds boolean

Specifies the status of the PCI 3DS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

pciDss boolean

Specifies the status of the PCI DSS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

The server block supports:

policyId string

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically. Changing this creates a new domain.

protectStatus number

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

protocol string

The protocol type of the client. The options are HTTP and HTTPS.

proxy boolean

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

region string

Specifies the region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this will create a new dedicated mode domain resource.

servers WafDedicatedDomainServer[]

The server configuration list of the domain. A maximum of 80 can be configured. The server object structure is documented below.

tls string

Specifies the minimum required TLS version. The options include TLS v1.0, TLS v1.1, TLS v1.2.

trafficIdentifier {[key: string]: string}

The traffic identifier of domain. Valid values are:

wafDedicatedDomainId string

ID of the domain.

access_status float

Whether a domain name is connected to WAF. Valid values are:

alarm_page Mapping[str, str]

The alarm page of domain. Valid values are:

certificate_id str

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

certificate_name str

The name of the certificate used by the domain name.

cipher str

Specifies the cipher suite of domain. The options include cipher_1, cipher_2, cipher_3, cipher_4, cipher_default.

compliance_certification Mapping[str, bool]

The compliance certifications of the domain, values are:

domain str

Specifies the domain name to be protected. For example, www.example.com or *.example.com. Changing this creates a new domain.

keep_policy bool

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

pci3ds bool

Specifies the status of the PCI 3DS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

pci_dss bool

Specifies the status of the PCI DSS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

The server block supports:

policy_id str

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically. Changing this creates a new domain.

protect_status float

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

protocol str

The protocol type of the client. The options are HTTP and HTTPS.

proxy bool

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

region str

Specifies the region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this will create a new dedicated mode domain resource.

servers Sequence[WafDedicatedDomainServerArgs]

The server configuration list of the domain. A maximum of 80 can be configured. The server object structure is documented below.

tls str

Specifies the minimum required TLS version. The options include TLS v1.0, TLS v1.1, TLS v1.2.

traffic_identifier Mapping[str, str]

The traffic identifier of domain. Valid values are:

waf_dedicated_domain_id str

ID of the domain.

accessStatus Number

Whether a domain name is connected to WAF. Valid values are:

alarmPage Map<String>

The alarm page of domain. Valid values are:

certificateId String

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

certificateName String

The name of the certificate used by the domain name.

cipher String

Specifies the cipher suite of domain. The options include cipher_1, cipher_2, cipher_3, cipher_4, cipher_default.

complianceCertification Map<Boolean>

The compliance certifications of the domain, values are:

domain String

Specifies the domain name to be protected. For example, www.example.com or *.example.com. Changing this creates a new domain.

keepPolicy Boolean

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

pci3ds Boolean

Specifies the status of the PCI 3DS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

pciDss Boolean

Specifies the status of the PCI DSS compliance certification check. The options include true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

The server block supports:

policyId String

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically. Changing this creates a new domain.

protectStatus Number

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

protocol String

The protocol type of the client. The options are HTTP and HTTPS.

proxy Boolean

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

region String

Specifies the region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this will create a new dedicated mode domain resource.

servers List<Property Map>

The server configuration list of the domain. A maximum of 80 can be configured. The server object structure is documented below.

tls String

Specifies the minimum required TLS version. The options include TLS v1.0, TLS v1.1, TLS v1.2.

trafficIdentifier Map<String>

The traffic identifier of domain. Valid values are:

wafDedicatedDomainId String

ID of the domain.

Supporting Types

WafDedicatedDomainServer, WafDedicatedDomainServerArgs

Address string: IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new service.
ClientProtocol string: Protocol type of the client. The options include HTTP and HTTPS. Changing this creates a new service.
Port double: Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new service.
ServerProtocol string: Protocol used by WAF to forward client requests to the server. The options include HTTP and HTTPS. Changing this creates a new service.
Type string: Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new service.
VpcId string: The id of the vpc used by the server. Changing this creates a service.

Address string: IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new service.
ClientProtocol string: Protocol type of the client. The options include HTTP and HTTPS. Changing this creates a new service.
Port float64: Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new service.
ServerProtocol string: Protocol used by WAF to forward client requests to the server. The options include HTTP and HTTPS. Changing this creates a new service.
Type string: Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new service.
VpcId string: The id of the vpc used by the server. Changing this creates a service.

address String: IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new service.
clientProtocol String: Protocol type of the client. The options include HTTP and HTTPS. Changing this creates a new service.
port Double: Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new service.
serverProtocol String: Protocol used by WAF to forward client requests to the server. The options include HTTP and HTTPS. Changing this creates a new service.
type String: Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new service.
vpcId String: The id of the vpc used by the server. Changing this creates a service.

address string: IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new service.
clientProtocol string: Protocol type of the client. The options include HTTP and HTTPS. Changing this creates a new service.
port number: Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new service.
serverProtocol string: Protocol used by WAF to forward client requests to the server. The options include HTTP and HTTPS. Changing this creates a new service.
type string: Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new service.
vpcId string: The id of the vpc used by the server. Changing this creates a service.

address str: IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new service.
client_protocol str: Protocol type of the client. The options include HTTP and HTTPS. Changing this creates a new service.
port float: Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new service.
server_protocol str: Protocol used by WAF to forward client requests to the server. The options include HTTP and HTTPS. Changing this creates a new service.
type str: Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new service.
vpc_id str: The id of the vpc used by the server. Changing this creates a service.

address String: IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new service.
clientProtocol String: Protocol type of the client. The options include HTTP and HTTPS. Changing this creates a new service.
port Number: Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new service.
serverProtocol String: Protocol used by WAF to forward client requests to the server. The options include HTTP and HTTPS. Changing this creates a new service.
type String: Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new service.
vpcId String: The id of the vpc used by the server. Changing this creates a service.

Import

Dedicated mode domain can be imported using the id, e.g.

$ pulumi import flexibleengine:index/wafDedicatedDomain:WafDedicatedDomain domain_1 69e9a86becb4424298cc6bdeacbf69d5

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: flexibleengine flexibleenginecloud/terraform-provider-flexibleengine
License
Notes: This Pulumi package is based on the flexibleengine Terraform Provider.

flexibleengine 1.46.0 published on Monday, Apr 14, 2025 by flexibleenginecloud

flexibleenginecloud/terraform-provider-flexibleengine

flexibleengine.WafDedicatedDomain

On this page

On this page

Example Usage

Create WafDedicatedDomain Resource

Constructor syntax

Parameters

Constructor example

WafDedicatedDomain Resource Properties

Inputs

Outputs

Look up Existing WafDedicatedDomain Resource

Supporting Types

WafDedicatedDomainServer, WafDedicatedDomainServerArgs

Import

Package Details

On this page

On this page