Fortios v0.0.6, Jul 9 24

Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse

fortios.firewall.Accessproxy

Explore with Pulumi AI

Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse

Create Accessproxy Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new Accessproxy(name: string, args?: AccessproxyArgs, opts?: CustomResourceOptions);

@overload
def Accessproxy(resource_name: str,
                args: Optional[AccessproxyArgs] = None,
                opts: Optional[ResourceOptions] = None)

@overload
def Accessproxy(resource_name: str,
                opts: Optional[ResourceOptions] = None,
                add_vhost_domain_to_dnsdb: Optional[str] = None,
                api_gateway6s: Optional[Sequence[AccessproxyApiGateway6Args]] = None,
                api_gateways: Optional[Sequence[AccessproxyApiGatewayArgs]] = None,
                auth_portal: Optional[str] = None,
                auth_virtual_host: Optional[str] = None,
                client_cert: Optional[str] = None,
                decrypted_traffic_mirror: Optional[str] = None,
                dynamic_sort_subtable: Optional[str] = None,
                empty_cert_action: Optional[str] = None,
                get_all_tables: Optional[str] = None,
                http_supported_max_version: Optional[str] = None,
                log_blocked_traffic: Optional[str] = None,
                name: Optional[str] = None,
                svr_pool_multiplex: Optional[str] = None,
                svr_pool_server_max_concurrent_request: Optional[int] = None,
                svr_pool_server_max_request: Optional[int] = None,
                svr_pool_ttl: Optional[int] = None,
                user_agent_detect: Optional[str] = None,
                vdomparam: Optional[str] = None,
                vip: Optional[str] = None)

func NewAccessproxy(ctx *Context, name string, args *AccessproxyArgs, opts ...ResourceOption) (*Accessproxy, error)

public Accessproxy(string name, AccessproxyArgs? args = null, CustomResourceOptions? opts = null)

public Accessproxy(String name, AccessproxyArgs args)
public Accessproxy(String name, AccessproxyArgs args, CustomResourceOptions options)

type: fortios:firewall:Accessproxy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args AccessproxyArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args AccessproxyArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args AccessproxyArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args AccessproxyArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args AccessproxyArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var accessproxyResource = new Fortios.Firewall.Accessproxy("accessproxyResource", new()
{
    AddVhostDomainToDnsdb = "string",
    ApiGateway6s = new[]
    {
        new Fortios.Firewall.Inputs.AccessproxyApiGateway6Args
        {
            Applications = new[]
            {
                new Fortios.Firewall.Inputs.AccessproxyApiGateway6ApplicationArgs
                {
                    Name = "string",
                },
            },
            H2Support = "string",
            H3Support = "string",
            HttpCookieAge = 0,
            HttpCookieDomain = "string",
            HttpCookieDomainFromHost = "string",
            HttpCookieGeneration = 0,
            HttpCookiePath = "string",
            HttpCookieShare = "string",
            HttpsCookieSecure = "string",
            Id = 0,
            LdbMethod = "string",
            Persistence = "string",
            Quic = new Fortios.Firewall.Inputs.AccessproxyApiGateway6QuicArgs
            {
                AckDelayExponent = 0,
                ActiveConnectionIdLimit = 0,
                ActiveMigration = "string",
                GreaseQuicBit = "string",
                MaxAckDelay = 0,
                MaxDatagramFrameSize = 0,
                MaxIdleTimeout = 0,
                MaxUdpPayloadSize = 0,
            },
            Realservers = new[]
            {
                new Fortios.Firewall.Inputs.AccessproxyApiGateway6RealserverArgs
                {
                    AddrType = "string",
                    Address = "string",
                    Domain = "string",
                    ExternalAuth = "string",
                    HealthCheck = "string",
                    HealthCheckProto = "string",
                    HolddownInterval = "string",
                    HttpHost = "string",
                    Id = 0,
                    Ip = "string",
                    Mappedport = "string",
                    Port = 0,
                    SshClientCert = "string",
                    SshHostKeyValidation = "string",
                    SshHostKeys = new[]
                    {
                        new Fortios.Firewall.Inputs.AccessproxyApiGateway6RealserverSshHostKeyArgs
                        {
                            Name = "string",
                        },
                    },
                    Status = "string",
                    TranslateHost = "string",
                    TunnelEncryption = "string",
                    Type = "string",
                    Weight = 0,
                },
            },
            SamlRedirect = "string",
            SamlServer = "string",
            Service = "string",
            SslAlgorithm = "string",
            SslCipherSuites = new[]
            {
                new Fortios.Firewall.Inputs.AccessproxyApiGateway6SslCipherSuiteArgs
                {
                    Cipher = "string",
                    Priority = 0,
                    Versions = "string",
                },
            },
            SslDhBits = "string",
            SslMaxVersion = "string",
            SslMinVersion = "string",
            SslRenegotiation = "string",
            SslVpnWebPortal = "string",
            UrlMap = "string",
            UrlMapType = "string",
            VirtualHost = "string",
        },
    },
    ApiGateways = new[]
    {
        new Fortios.Firewall.Inputs.AccessproxyApiGatewayArgs
        {
            Applications = new[]
            {
                new Fortios.Firewall.Inputs.AccessproxyApiGatewayApplicationArgs
                {
                    Name = "string",
                },
            },
            H2Support = "string",
            H3Support = "string",
            HttpCookieAge = 0,
            HttpCookieDomain = "string",
            HttpCookieDomainFromHost = "string",
            HttpCookieGeneration = 0,
            HttpCookiePath = "string",
            HttpCookieShare = "string",
            HttpsCookieSecure = "string",
            Id = 0,
            LdbMethod = "string",
            Persistence = "string",
            Quic = new Fortios.Firewall.Inputs.AccessproxyApiGatewayQuicArgs
            {
                AckDelayExponent = 0,
                ActiveConnectionIdLimit = 0,
                ActiveMigration = "string",
                GreaseQuicBit = "string",
                MaxAckDelay = 0,
                MaxDatagramFrameSize = 0,
                MaxIdleTimeout = 0,
                MaxUdpPayloadSize = 0,
            },
            Realservers = new[]
            {
                new Fortios.Firewall.Inputs.AccessproxyApiGatewayRealserverArgs
                {
                    AddrType = "string",
                    Address = "string",
                    Domain = "string",
                    ExternalAuth = "string",
                    HealthCheck = "string",
                    HealthCheckProto = "string",
                    HolddownInterval = "string",
                    HttpHost = "string",
                    Id = 0,
                    Ip = "string",
                    Mappedport = "string",
                    Port = 0,
                    SshClientCert = "string",
                    SshHostKeyValidation = "string",
                    SshHostKeys = new[]
                    {
                        new Fortios.Firewall.Inputs.AccessproxyApiGatewayRealserverSshHostKeyArgs
                        {
                            Name = "string",
                        },
                    },
                    Status = "string",
                    TranslateHost = "string",
                    TunnelEncryption = "string",
                    Type = "string",
                    Weight = 0,
                },
            },
            SamlRedirect = "string",
            SamlServer = "string",
            Service = "string",
            SslAlgorithm = "string",
            SslCipherSuites = new[]
            {
                new Fortios.Firewall.Inputs.AccessproxyApiGatewaySslCipherSuiteArgs
                {
                    Cipher = "string",
                    Priority = 0,
                    Versions = "string",
                },
            },
            SslDhBits = "string",
            SslMaxVersion = "string",
            SslMinVersion = "string",
            SslRenegotiation = "string",
            SslVpnWebPortal = "string",
            UrlMap = "string",
            UrlMapType = "string",
            VirtualHost = "string",
        },
    },
    AuthPortal = "string",
    AuthVirtualHost = "string",
    ClientCert = "string",
    DecryptedTrafficMirror = "string",
    DynamicSortSubtable = "string",
    EmptyCertAction = "string",
    GetAllTables = "string",
    HttpSupportedMaxVersion = "string",
    LogBlockedTraffic = "string",
    Name = "string",
    SvrPoolMultiplex = "string",
    SvrPoolServerMaxConcurrentRequest = 0,
    SvrPoolServerMaxRequest = 0,
    SvrPoolTtl = 0,
    UserAgentDetect = "string",
    Vdomparam = "string",
    Vip = "string",
});

example, err := firewall.NewAccessproxy(ctx, "accessproxyResource", &firewall.AccessproxyArgs{
	AddVhostDomainToDnsdb: pulumi.String("string"),
	ApiGateway6s: firewall.AccessproxyApiGateway6Array{
		&firewall.AccessproxyApiGateway6Args{
			Applications: firewall.AccessproxyApiGateway6ApplicationArray{
				&firewall.AccessproxyApiGateway6ApplicationArgs{
					Name: pulumi.String("string"),
				},
			},
			H2Support:                pulumi.String("string"),
			H3Support:                pulumi.String("string"),
			HttpCookieAge:            pulumi.Int(0),
			HttpCookieDomain:         pulumi.String("string"),
			HttpCookieDomainFromHost: pulumi.String("string"),
			HttpCookieGeneration:     pulumi.Int(0),
			HttpCookiePath:           pulumi.String("string"),
			HttpCookieShare:          pulumi.String("string"),
			HttpsCookieSecure:        pulumi.String("string"),
			Id:                       pulumi.Int(0),
			LdbMethod:                pulumi.String("string"),
			Persistence:              pulumi.String("string"),
			Quic: &firewall.AccessproxyApiGateway6QuicArgs{
				AckDelayExponent:        pulumi.Int(0),
				ActiveConnectionIdLimit: pulumi.Int(0),
				ActiveMigration:         pulumi.String("string"),
				GreaseQuicBit:           pulumi.String("string"),
				MaxAckDelay:             pulumi.Int(0),
				MaxDatagramFrameSize:    pulumi.Int(0),
				MaxIdleTimeout:          pulumi.Int(0),
				MaxUdpPayloadSize:       pulumi.Int(0),
			},
			Realservers: firewall.AccessproxyApiGateway6RealserverArray{
				&firewall.AccessproxyApiGateway6RealserverArgs{
					AddrType:             pulumi.String("string"),
					Address:              pulumi.String("string"),
					Domain:               pulumi.String("string"),
					ExternalAuth:         pulumi.String("string"),
					HealthCheck:          pulumi.String("string"),
					HealthCheckProto:     pulumi.String("string"),
					HolddownInterval:     pulumi.String("string"),
					HttpHost:             pulumi.String("string"),
					Id:                   pulumi.Int(0),
					Ip:                   pulumi.String("string"),
					Mappedport:           pulumi.String("string"),
					Port:                 pulumi.Int(0),
					SshClientCert:        pulumi.String("string"),
					SshHostKeyValidation: pulumi.String("string"),
					SshHostKeys: firewall.AccessproxyApiGateway6RealserverSshHostKeyArray{
						&firewall.AccessproxyApiGateway6RealserverSshHostKeyArgs{
							Name: pulumi.String("string"),
						},
					},
					Status:           pulumi.String("string"),
					TranslateHost:    pulumi.String("string"),
					TunnelEncryption: pulumi.String("string"),
					Type:             pulumi.String("string"),
					Weight:           pulumi.Int(0),
				},
			},
			SamlRedirect: pulumi.String("string"),
			SamlServer:   pulumi.String("string"),
			Service:      pulumi.String("string"),
			SslAlgorithm: pulumi.String("string"),
			SslCipherSuites: firewall.AccessproxyApiGateway6SslCipherSuiteArray{
				&firewall.AccessproxyApiGateway6SslCipherSuiteArgs{
					Cipher:   pulumi.String("string"),
					Priority: pulumi.Int(0),
					Versions: pulumi.String("string"),
				},
			},
			SslDhBits:        pulumi.String("string"),
			SslMaxVersion:    pulumi.String("string"),
			SslMinVersion:    pulumi.String("string"),
			SslRenegotiation: pulumi.String("string"),
			SslVpnWebPortal:  pulumi.String("string"),
			UrlMap:           pulumi.String("string"),
			UrlMapType:       pulumi.String("string"),
			VirtualHost:      pulumi.String("string"),
		},
	},
	ApiGateways: firewall.AccessproxyApiGatewayArray{
		&firewall.AccessproxyApiGatewayArgs{
			Applications: firewall.AccessproxyApiGatewayApplicationArray{
				&firewall.AccessproxyApiGatewayApplicationArgs{
					Name: pulumi.String("string"),
				},
			},
			H2Support:                pulumi.String("string"),
			H3Support:                pulumi.String("string"),
			HttpCookieAge:            pulumi.Int(0),
			HttpCookieDomain:         pulumi.String("string"),
			HttpCookieDomainFromHost: pulumi.String("string"),
			HttpCookieGeneration:     pulumi.Int(0),
			HttpCookiePath:           pulumi.String("string"),
			HttpCookieShare:          pulumi.String("string"),
			HttpsCookieSecure:        pulumi.String("string"),
			Id:                       pulumi.Int(0),
			LdbMethod:                pulumi.String("string"),
			Persistence:              pulumi.String("string"),
			Quic: &firewall.AccessproxyApiGatewayQuicArgs{
				AckDelayExponent:        pulumi.Int(0),
				ActiveConnectionIdLimit: pulumi.Int(0),
				ActiveMigration:         pulumi.String("string"),
				GreaseQuicBit:           pulumi.String("string"),
				MaxAckDelay:             pulumi.Int(0),
				MaxDatagramFrameSize:    pulumi.Int(0),
				MaxIdleTimeout:          pulumi.Int(0),
				MaxUdpPayloadSize:       pulumi.Int(0),
			},
			Realservers: firewall.AccessproxyApiGatewayRealserverArray{
				&firewall.AccessproxyApiGatewayRealserverArgs{
					AddrType:             pulumi.String("string"),
					Address:              pulumi.String("string"),
					Domain:               pulumi.String("string"),
					ExternalAuth:         pulumi.String("string"),
					HealthCheck:          pulumi.String("string"),
					HealthCheckProto:     pulumi.String("string"),
					HolddownInterval:     pulumi.String("string"),
					HttpHost:             pulumi.String("string"),
					Id:                   pulumi.Int(0),
					Ip:                   pulumi.String("string"),
					Mappedport:           pulumi.String("string"),
					Port:                 pulumi.Int(0),
					SshClientCert:        pulumi.String("string"),
					SshHostKeyValidation: pulumi.String("string"),
					SshHostKeys: firewall.AccessproxyApiGatewayRealserverSshHostKeyArray{
						&firewall.AccessproxyApiGatewayRealserverSshHostKeyArgs{
							Name: pulumi.String("string"),
						},
					},
					Status:           pulumi.String("string"),
					TranslateHost:    pulumi.String("string"),
					TunnelEncryption: pulumi.String("string"),
					Type:             pulumi.String("string"),
					Weight:           pulumi.Int(0),
				},
			},
			SamlRedirect: pulumi.String("string"),
			SamlServer:   pulumi.String("string"),
			Service:      pulumi.String("string"),
			SslAlgorithm: pulumi.String("string"),
			SslCipherSuites: firewall.AccessproxyApiGatewaySslCipherSuiteArray{
				&firewall.AccessproxyApiGatewaySslCipherSuiteArgs{
					Cipher:   pulumi.String("string"),
					Priority: pulumi.Int(0),
					Versions: pulumi.String("string"),
				},
			},
			SslDhBits:        pulumi.String("string"),
			SslMaxVersion:    pulumi.String("string"),
			SslMinVersion:    pulumi.String("string"),
			SslRenegotiation: pulumi.String("string"),
			SslVpnWebPortal:  pulumi.String("string"),
			UrlMap:           pulumi.String("string"),
			UrlMapType:       pulumi.String("string"),
			VirtualHost:      pulumi.String("string"),
		},
	},
	AuthPortal:                        pulumi.String("string"),
	AuthVirtualHost:                   pulumi.String("string"),
	ClientCert:                        pulumi.String("string"),
	DecryptedTrafficMirror:            pulumi.String("string"),
	DynamicSortSubtable:               pulumi.String("string"),
	EmptyCertAction:                   pulumi.String("string"),
	GetAllTables:                      pulumi.String("string"),
	HttpSupportedMaxVersion:           pulumi.String("string"),
	LogBlockedTraffic:                 pulumi.String("string"),
	Name:                              pulumi.String("string"),
	SvrPoolMultiplex:                  pulumi.String("string"),
	SvrPoolServerMaxConcurrentRequest: pulumi.Int(0),
	SvrPoolServerMaxRequest:           pulumi.Int(0),
	SvrPoolTtl:                        pulumi.Int(0),
	UserAgentDetect:                   pulumi.String("string"),
	Vdomparam:                         pulumi.String("string"),
	Vip:                               pulumi.String("string"),
})

var accessproxyResource = new Accessproxy("accessproxyResource", AccessproxyArgs.builder()
    .addVhostDomainToDnsdb("string")
    .apiGateway6s(AccessproxyApiGateway6Args.builder()
        .applications(AccessproxyApiGateway6ApplicationArgs.builder()
            .name("string")
            .build())
        .h2Support("string")
        .h3Support("string")
        .httpCookieAge(0)
        .httpCookieDomain("string")
        .httpCookieDomainFromHost("string")
        .httpCookieGeneration(0)
        .httpCookiePath("string")
        .httpCookieShare("string")
        .httpsCookieSecure("string")
        .id(0)
        .ldbMethod("string")
        .persistence("string")
        .quic(AccessproxyApiGateway6QuicArgs.builder()
            .ackDelayExponent(0)
            .activeConnectionIdLimit(0)
            .activeMigration("string")
            .greaseQuicBit("string")
            .maxAckDelay(0)
            .maxDatagramFrameSize(0)
            .maxIdleTimeout(0)
            .maxUdpPayloadSize(0)
            .build())
        .realservers(AccessproxyApiGateway6RealserverArgs.builder()
            .addrType("string")
            .address("string")
            .domain("string")
            .externalAuth("string")
            .healthCheck("string")
            .healthCheckProto("string")
            .holddownInterval("string")
            .httpHost("string")
            .id(0)
            .ip("string")
            .mappedport("string")
            .port(0)
            .sshClientCert("string")
            .sshHostKeyValidation("string")
            .sshHostKeys(AccessproxyApiGateway6RealserverSshHostKeyArgs.builder()
                .name("string")
                .build())
            .status("string")
            .translateHost("string")
            .tunnelEncryption("string")
            .type("string")
            .weight(0)
            .build())
        .samlRedirect("string")
        .samlServer("string")
        .service("string")
        .sslAlgorithm("string")
        .sslCipherSuites(AccessproxyApiGateway6SslCipherSuiteArgs.builder()
            .cipher("string")
            .priority(0)
            .versions("string")
            .build())
        .sslDhBits("string")
        .sslMaxVersion("string")
        .sslMinVersion("string")
        .sslRenegotiation("string")
        .sslVpnWebPortal("string")
        .urlMap("string")
        .urlMapType("string")
        .virtualHost("string")
        .build())
    .apiGateways(AccessproxyApiGatewayArgs.builder()
        .applications(AccessproxyApiGatewayApplicationArgs.builder()
            .name("string")
            .build())
        .h2Support("string")
        .h3Support("string")
        .httpCookieAge(0)
        .httpCookieDomain("string")
        .httpCookieDomainFromHost("string")
        .httpCookieGeneration(0)
        .httpCookiePath("string")
        .httpCookieShare("string")
        .httpsCookieSecure("string")
        .id(0)
        .ldbMethod("string")
        .persistence("string")
        .quic(AccessproxyApiGatewayQuicArgs.builder()
            .ackDelayExponent(0)
            .activeConnectionIdLimit(0)
            .activeMigration("string")
            .greaseQuicBit("string")
            .maxAckDelay(0)
            .maxDatagramFrameSize(0)
            .maxIdleTimeout(0)
            .maxUdpPayloadSize(0)
            .build())
        .realservers(AccessproxyApiGatewayRealserverArgs.builder()
            .addrType("string")
            .address("string")
            .domain("string")
            .externalAuth("string")
            .healthCheck("string")
            .healthCheckProto("string")
            .holddownInterval("string")
            .httpHost("string")
            .id(0)
            .ip("string")
            .mappedport("string")
            .port(0)
            .sshClientCert("string")
            .sshHostKeyValidation("string")
            .sshHostKeys(AccessproxyApiGatewayRealserverSshHostKeyArgs.builder()
                .name("string")
                .build())
            .status("string")
            .translateHost("string")
            .tunnelEncryption("string")
            .type("string")
            .weight(0)
            .build())
        .samlRedirect("string")
        .samlServer("string")
        .service("string")
        .sslAlgorithm("string")
        .sslCipherSuites(AccessproxyApiGatewaySslCipherSuiteArgs.builder()
            .cipher("string")
            .priority(0)
            .versions("string")
            .build())
        .sslDhBits("string")
        .sslMaxVersion("string")
        .sslMinVersion("string")
        .sslRenegotiation("string")
        .sslVpnWebPortal("string")
        .urlMap("string")
        .urlMapType("string")
        .virtualHost("string")
        .build())
    .authPortal("string")
    .authVirtualHost("string")
    .clientCert("string")
    .decryptedTrafficMirror("string")
    .dynamicSortSubtable("string")
    .emptyCertAction("string")
    .getAllTables("string")
    .httpSupportedMaxVersion("string")
    .logBlockedTraffic("string")
    .name("string")
    .svrPoolMultiplex("string")
    .svrPoolServerMaxConcurrentRequest(0)
    .svrPoolServerMaxRequest(0)
    .svrPoolTtl(0)
    .userAgentDetect("string")
    .vdomparam("string")
    .vip("string")
    .build());

accessproxy_resource = fortios.firewall.Accessproxy("accessproxyResource",
    add_vhost_domain_to_dnsdb="string",
    api_gateway6s=[fortios.firewall.AccessproxyApiGateway6Args(
        applications=[fortios.firewall.AccessproxyApiGateway6ApplicationArgs(
            name="string",
        )],
        h2_support="string",
        h3_support="string",
        http_cookie_age=0,
        http_cookie_domain="string",
        http_cookie_domain_from_host="string",
        http_cookie_generation=0,
        http_cookie_path="string",
        http_cookie_share="string",
        https_cookie_secure="string",
        id=0,
        ldb_method="string",
        persistence="string",
        quic=fortios.firewall.AccessproxyApiGateway6QuicArgs(
            ack_delay_exponent=0,
            active_connection_id_limit=0,
            active_migration="string",
            grease_quic_bit="string",
            max_ack_delay=0,
            max_datagram_frame_size=0,
            max_idle_timeout=0,
            max_udp_payload_size=0,
        ),
        realservers=[fortios.firewall.AccessproxyApiGateway6RealserverArgs(
            addr_type="string",
            address="string",
            domain="string",
            external_auth="string",
            health_check="string",
            health_check_proto="string",
            holddown_interval="string",
            http_host="string",
            id=0,
            ip="string",
            mappedport="string",
            port=0,
            ssh_client_cert="string",
            ssh_host_key_validation="string",
            ssh_host_keys=[fortios.firewall.AccessproxyApiGateway6RealserverSshHostKeyArgs(
                name="string",
            )],
            status="string",
            translate_host="string",
            tunnel_encryption="string",
            type="string",
            weight=0,
        )],
        saml_redirect="string",
        saml_server="string",
        service="string",
        ssl_algorithm="string",
        ssl_cipher_suites=[fortios.firewall.AccessproxyApiGateway6SslCipherSuiteArgs(
            cipher="string",
            priority=0,
            versions="string",
        )],
        ssl_dh_bits="string",
        ssl_max_version="string",
        ssl_min_version="string",
        ssl_renegotiation="string",
        ssl_vpn_web_portal="string",
        url_map="string",
        url_map_type="string",
        virtual_host="string",
    )],
    api_gateways=[fortios.firewall.AccessproxyApiGatewayArgs(
        applications=[fortios.firewall.AccessproxyApiGatewayApplicationArgs(
            name="string",
        )],
        h2_support="string",
        h3_support="string",
        http_cookie_age=0,
        http_cookie_domain="string",
        http_cookie_domain_from_host="string",
        http_cookie_generation=0,
        http_cookie_path="string",
        http_cookie_share="string",
        https_cookie_secure="string",
        id=0,
        ldb_method="string",
        persistence="string",
        quic=fortios.firewall.AccessproxyApiGatewayQuicArgs(
            ack_delay_exponent=0,
            active_connection_id_limit=0,
            active_migration="string",
            grease_quic_bit="string",
            max_ack_delay=0,
            max_datagram_frame_size=0,
            max_idle_timeout=0,
            max_udp_payload_size=0,
        ),
        realservers=[fortios.firewall.AccessproxyApiGatewayRealserverArgs(
            addr_type="string",
            address="string",
            domain="string",
            external_auth="string",
            health_check="string",
            health_check_proto="string",
            holddown_interval="string",
            http_host="string",
            id=0,
            ip="string",
            mappedport="string",
            port=0,
            ssh_client_cert="string",
            ssh_host_key_validation="string",
            ssh_host_keys=[fortios.firewall.AccessproxyApiGatewayRealserverSshHostKeyArgs(
                name="string",
            )],
            status="string",
            translate_host="string",
            tunnel_encryption="string",
            type="string",
            weight=0,
        )],
        saml_redirect="string",
        saml_server="string",
        service="string",
        ssl_algorithm="string",
        ssl_cipher_suites=[fortios.firewall.AccessproxyApiGatewaySslCipherSuiteArgs(
            cipher="string",
            priority=0,
            versions="string",
        )],
        ssl_dh_bits="string",
        ssl_max_version="string",
        ssl_min_version="string",
        ssl_renegotiation="string",
        ssl_vpn_web_portal="string",
        url_map="string",
        url_map_type="string",
        virtual_host="string",
    )],
    auth_portal="string",
    auth_virtual_host="string",
    client_cert="string",
    decrypted_traffic_mirror="string",
    dynamic_sort_subtable="string",
    empty_cert_action="string",
    get_all_tables="string",
    http_supported_max_version="string",
    log_blocked_traffic="string",
    name="string",
    svr_pool_multiplex="string",
    svr_pool_server_max_concurrent_request=0,
    svr_pool_server_max_request=0,
    svr_pool_ttl=0,
    user_agent_detect="string",
    vdomparam="string",
    vip="string")

const accessproxyResource = new fortios.firewall.Accessproxy("accessproxyResource", {
    addVhostDomainToDnsdb: "string",
    apiGateway6s: [{
        applications: [{
            name: "string",
        }],
        h2Support: "string",
        h3Support: "string",
        httpCookieAge: 0,
        httpCookieDomain: "string",
        httpCookieDomainFromHost: "string",
        httpCookieGeneration: 0,
        httpCookiePath: "string",
        httpCookieShare: "string",
        httpsCookieSecure: "string",
        id: 0,
        ldbMethod: "string",
        persistence: "string",
        quic: {
            ackDelayExponent: 0,
            activeConnectionIdLimit: 0,
            activeMigration: "string",
            greaseQuicBit: "string",
            maxAckDelay: 0,
            maxDatagramFrameSize: 0,
            maxIdleTimeout: 0,
            maxUdpPayloadSize: 0,
        },
        realservers: [{
            addrType: "string",
            address: "string",
            domain: "string",
            externalAuth: "string",
            healthCheck: "string",
            healthCheckProto: "string",
            holddownInterval: "string",
            httpHost: "string",
            id: 0,
            ip: "string",
            mappedport: "string",
            port: 0,
            sshClientCert: "string",
            sshHostKeyValidation: "string",
            sshHostKeys: [{
                name: "string",
            }],
            status: "string",
            translateHost: "string",
            tunnelEncryption: "string",
            type: "string",
            weight: 0,
        }],
        samlRedirect: "string",
        samlServer: "string",
        service: "string",
        sslAlgorithm: "string",
        sslCipherSuites: [{
            cipher: "string",
            priority: 0,
            versions: "string",
        }],
        sslDhBits: "string",
        sslMaxVersion: "string",
        sslMinVersion: "string",
        sslRenegotiation: "string",
        sslVpnWebPortal: "string",
        urlMap: "string",
        urlMapType: "string",
        virtualHost: "string",
    }],
    apiGateways: [{
        applications: [{
            name: "string",
        }],
        h2Support: "string",
        h3Support: "string",
        httpCookieAge: 0,
        httpCookieDomain: "string",
        httpCookieDomainFromHost: "string",
        httpCookieGeneration: 0,
        httpCookiePath: "string",
        httpCookieShare: "string",
        httpsCookieSecure: "string",
        id: 0,
        ldbMethod: "string",
        persistence: "string",
        quic: {
            ackDelayExponent: 0,
            activeConnectionIdLimit: 0,
            activeMigration: "string",
            greaseQuicBit: "string",
            maxAckDelay: 0,
            maxDatagramFrameSize: 0,
            maxIdleTimeout: 0,
            maxUdpPayloadSize: 0,
        },
        realservers: [{
            addrType: "string",
            address: "string",
            domain: "string",
            externalAuth: "string",
            healthCheck: "string",
            healthCheckProto: "string",
            holddownInterval: "string",
            httpHost: "string",
            id: 0,
            ip: "string",
            mappedport: "string",
            port: 0,
            sshClientCert: "string",
            sshHostKeyValidation: "string",
            sshHostKeys: [{
                name: "string",
            }],
            status: "string",
            translateHost: "string",
            tunnelEncryption: "string",
            type: "string",
            weight: 0,
        }],
        samlRedirect: "string",
        samlServer: "string",
        service: "string",
        sslAlgorithm: "string",
        sslCipherSuites: [{
            cipher: "string",
            priority: 0,
            versions: "string",
        }],
        sslDhBits: "string",
        sslMaxVersion: "string",
        sslMinVersion: "string",
        sslRenegotiation: "string",
        sslVpnWebPortal: "string",
        urlMap: "string",
        urlMapType: "string",
        virtualHost: "string",
    }],
    authPortal: "string",
    authVirtualHost: "string",
    clientCert: "string",
    decryptedTrafficMirror: "string",
    dynamicSortSubtable: "string",
    emptyCertAction: "string",
    getAllTables: "string",
    httpSupportedMaxVersion: "string",
    logBlockedTraffic: "string",
    name: "string",
    svrPoolMultiplex: "string",
    svrPoolServerMaxConcurrentRequest: 0,
    svrPoolServerMaxRequest: 0,
    svrPoolTtl: 0,
    userAgentDetect: "string",
    vdomparam: "string",
    vip: "string",
});

type: fortios:firewall:Accessproxy
properties:
    addVhostDomainToDnsdb: string
    apiGateway6s:
        - applications:
            - name: string
          h2Support: string
          h3Support: string
          httpCookieAge: 0
          httpCookieDomain: string
          httpCookieDomainFromHost: string
          httpCookieGeneration: 0
          httpCookiePath: string
          httpCookieShare: string
          httpsCookieSecure: string
          id: 0
          ldbMethod: string
          persistence: string
          quic:
            ackDelayExponent: 0
            activeConnectionIdLimit: 0
            activeMigration: string
            greaseQuicBit: string
            maxAckDelay: 0
            maxDatagramFrameSize: 0
            maxIdleTimeout: 0
            maxUdpPayloadSize: 0
          realservers:
            - addrType: string
              address: string
              domain: string
              externalAuth: string
              healthCheck: string
              healthCheckProto: string
              holddownInterval: string
              httpHost: string
              id: 0
              ip: string
              mappedport: string
              port: 0
              sshClientCert: string
              sshHostKeyValidation: string
              sshHostKeys:
                - name: string
              status: string
              translateHost: string
              tunnelEncryption: string
              type: string
              weight: 0
          samlRedirect: string
          samlServer: string
          service: string
          sslAlgorithm: string
          sslCipherSuites:
            - cipher: string
              priority: 0
              versions: string
          sslDhBits: string
          sslMaxVersion: string
          sslMinVersion: string
          sslRenegotiation: string
          sslVpnWebPortal: string
          urlMap: string
          urlMapType: string
          virtualHost: string
    apiGateways:
        - applications:
            - name: string
          h2Support: string
          h3Support: string
          httpCookieAge: 0
          httpCookieDomain: string
          httpCookieDomainFromHost: string
          httpCookieGeneration: 0
          httpCookiePath: string
          httpCookieShare: string
          httpsCookieSecure: string
          id: 0
          ldbMethod: string
          persistence: string
          quic:
            ackDelayExponent: 0
            activeConnectionIdLimit: 0
            activeMigration: string
            greaseQuicBit: string
            maxAckDelay: 0
            maxDatagramFrameSize: 0
            maxIdleTimeout: 0
            maxUdpPayloadSize: 0
          realservers:
            - addrType: string
              address: string
              domain: string
              externalAuth: string
              healthCheck: string
              healthCheckProto: string
              holddownInterval: string
              httpHost: string
              id: 0
              ip: string
              mappedport: string
              port: 0
              sshClientCert: string
              sshHostKeyValidation: string
              sshHostKeys:
                - name: string
              status: string
              translateHost: string
              tunnelEncryption: string
              type: string
              weight: 0
          samlRedirect: string
          samlServer: string
          service: string
          sslAlgorithm: string
          sslCipherSuites:
            - cipher: string
              priority: 0
              versions: string
          sslDhBits: string
          sslMaxVersion: string
          sslMinVersion: string
          sslRenegotiation: string
          sslVpnWebPortal: string
          urlMap: string
          urlMapType: string
          virtualHost: string
    authPortal: string
    authVirtualHost: string
    clientCert: string
    decryptedTrafficMirror: string
    dynamicSortSubtable: string
    emptyCertAction: string
    getAllTables: string
    httpSupportedMaxVersion: string
    logBlockedTraffic: string
    name: string
    svrPoolMultiplex: string
    svrPoolServerMaxConcurrentRequest: 0
    svrPoolServerMaxRequest: 0
    svrPoolTtl: 0
    userAgentDetect: string
    vdomparam: string
    vip: string

Accessproxy Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The Accessproxy resource accepts the following input properties:

AddVhostDomainToDnsdb string: Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
ApiGateway6s List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway6>: Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
ApiGateways List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway>: Set IPv4 API Gateway. The structure of api_gateway block is documented below.
AuthPortal string: Enable/disable authentication portal. Valid values: disable, enable.
AuthVirtualHost string: Virtual host for authentication portal.
ClientCert string: Enable/disable to request client certificate. Valid values: disable, enable.
DecryptedTrafficMirror string: Decrypted traffic mirror.
DynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
EmptyCertAction string: Action of an empty client certificate.
GetAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
HttpSupportedMaxVersion string: Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
LogBlockedTraffic string: Enable/disable logging of blocked traffic. Valid values: enable, disable.
Name string: Access Proxy name.
SvrPoolMultiplex string: Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
SvrPoolServerMaxConcurrentRequest int: Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
SvrPoolServerMaxRequest int: Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
SvrPoolTtl int: Time-to-live in the server pool for idle connections to servers.
UserAgentDetect string: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
Vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Vip string: Virtual IP name.

AddVhostDomainToDnsdb string: Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
ApiGateway6s []AccessproxyApiGateway6Args: Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
ApiGateways []AccessproxyApiGatewayArgs: Set IPv4 API Gateway. The structure of api_gateway block is documented below.
AuthPortal string: Enable/disable authentication portal. Valid values: disable, enable.
AuthVirtualHost string: Virtual host for authentication portal.
ClientCert string: Enable/disable to request client certificate. Valid values: disable, enable.
DecryptedTrafficMirror string: Decrypted traffic mirror.
DynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
EmptyCertAction string: Action of an empty client certificate.
GetAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
HttpSupportedMaxVersion string: Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
LogBlockedTraffic string: Enable/disable logging of blocked traffic. Valid values: enable, disable.
Name string: Access Proxy name.
SvrPoolMultiplex string: Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
SvrPoolServerMaxConcurrentRequest int: Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
SvrPoolServerMaxRequest int: Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
SvrPoolTtl int: Time-to-live in the server pool for idle connections to servers.
UserAgentDetect string: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
Vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Vip string: Virtual IP name.

addVhostDomainToDnsdb String: Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
apiGateway6s List<AccessproxyApiGateway6>: Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
apiGateways List<AccessproxyApiGateway>: Set IPv4 API Gateway. The structure of api_gateway block is documented below.
authPortal String: Enable/disable authentication portal. Valid values: disable, enable.
authVirtualHost String: Virtual host for authentication portal.
clientCert String: Enable/disable to request client certificate. Valid values: disable, enable.
decryptedTrafficMirror String: Decrypted traffic mirror.
dynamicSortSubtable String: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
emptyCertAction String: Action of an empty client certificate.
getAllTables String: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
httpSupportedMaxVersion String: Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
logBlockedTraffic String: Enable/disable logging of blocked traffic. Valid values: enable, disable.
name String: Access Proxy name.
svrPoolMultiplex String: Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
svrPoolServerMaxConcurrentRequest Integer: Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
svrPoolServerMaxRequest Integer: Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
svrPoolTtl Integer: Time-to-live in the server pool for idle connections to servers.
userAgentDetect String: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
vdomparam String: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
vip String: Virtual IP name.

addVhostDomainToDnsdb string: Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
apiGateway6s AccessproxyApiGateway6[]: Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
apiGateways AccessproxyApiGateway[]: Set IPv4 API Gateway. The structure of api_gateway block is documented below.
authPortal string: Enable/disable authentication portal. Valid values: disable, enable.
authVirtualHost string: Virtual host for authentication portal.
clientCert string: Enable/disable to request client certificate. Valid values: disable, enable.
decryptedTrafficMirror string: Decrypted traffic mirror.
dynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
emptyCertAction string: Action of an empty client certificate.
getAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
httpSupportedMaxVersion string: Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
logBlockedTraffic string: Enable/disable logging of blocked traffic. Valid values: enable, disable.
name string: Access Proxy name.
svrPoolMultiplex string: Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
svrPoolServerMaxConcurrentRequest number: Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
svrPoolServerMaxRequest number: Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
svrPoolTtl number: Time-to-live in the server pool for idle connections to servers.
userAgentDetect string: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
vip string: Virtual IP name.

add_vhost_domain_to_dnsdb str: Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
api_gateway6s Sequence[AccessproxyApiGateway6Args]: Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
api_gateways Sequence[AccessproxyApiGatewayArgs]: Set IPv4 API Gateway. The structure of api_gateway block is documented below.
auth_portal str: Enable/disable authentication portal. Valid values: disable, enable.
auth_virtual_host str: Virtual host for authentication portal.
client_cert str: Enable/disable to request client certificate. Valid values: disable, enable.
decrypted_traffic_mirror str: Decrypted traffic mirror.
dynamic_sort_subtable str: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
empty_cert_action str: Action of an empty client certificate.
get_all_tables str: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
http_supported_max_version str: Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
log_blocked_traffic str: Enable/disable logging of blocked traffic. Valid values: enable, disable.
name str: Access Proxy name.
svr_pool_multiplex str: Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
svr_pool_server_max_concurrent_request int: Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
svr_pool_server_max_request int: Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
svr_pool_ttl int: Time-to-live in the server pool for idle connections to servers.
user_agent_detect str: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
vdomparam str: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
vip str: Virtual IP name.

addVhostDomainToDnsdb String: Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
apiGateway6s List<Property Map>: Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
apiGateways List<Property Map>: Set IPv4 API Gateway. The structure of api_gateway block is documented below.
authPortal String: Enable/disable authentication portal. Valid values: disable, enable.
authVirtualHost String: Virtual host for authentication portal.
clientCert String: Enable/disable to request client certificate. Valid values: disable, enable.
decryptedTrafficMirror String: Decrypted traffic mirror.
dynamicSortSubtable String: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
emptyCertAction String: Action of an empty client certificate.
getAllTables String: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
httpSupportedMaxVersion String: Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
logBlockedTraffic String: Enable/disable logging of blocked traffic. Valid values: enable, disable.
name String: Access Proxy name.
svrPoolMultiplex String: Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
svrPoolServerMaxConcurrentRequest Number: Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
svrPoolServerMaxRequest Number: Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
svrPoolTtl Number: Time-to-live in the server pool for idle connections to servers.
userAgentDetect String: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
vdomparam String: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
vip String: Virtual IP name.

Outputs

All input properties are implicitly available as output properties. Additionally, the Accessproxy resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing Accessproxy Resource

Get an existing Accessproxy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: AccessproxyState, opts?: CustomResourceOptions): Accessproxy

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        add_vhost_domain_to_dnsdb: Optional[str] = None,
        api_gateway6s: Optional[Sequence[AccessproxyApiGateway6Args]] = None,
        api_gateways: Optional[Sequence[AccessproxyApiGatewayArgs]] = None,
        auth_portal: Optional[str] = None,
        auth_virtual_host: Optional[str] = None,
        client_cert: Optional[str] = None,
        decrypted_traffic_mirror: Optional[str] = None,
        dynamic_sort_subtable: Optional[str] = None,
        empty_cert_action: Optional[str] = None,
        get_all_tables: Optional[str] = None,
        http_supported_max_version: Optional[str] = None,
        log_blocked_traffic: Optional[str] = None,
        name: Optional[str] = None,
        svr_pool_multiplex: Optional[str] = None,
        svr_pool_server_max_concurrent_request: Optional[int] = None,
        svr_pool_server_max_request: Optional[int] = None,
        svr_pool_ttl: Optional[int] = None,
        user_agent_detect: Optional[str] = None,
        vdomparam: Optional[str] = None,
        vip: Optional[str] = None) -> Accessproxy

func GetAccessproxy(ctx *Context, name string, id IDInput, state *AccessproxyState, opts ...ResourceOption) (*Accessproxy, error)

public static Accessproxy Get(string name, Input<string> id, AccessproxyState? state, CustomResourceOptions? opts = null)

public static Accessproxy get(String name, Output<String> id, AccessproxyState state, CustomResourceOptions options)

Resource lookup is not supported in YAML

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AddVhostDomainToDnsdb string: Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
ApiGateway6s List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway6>: Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
ApiGateways List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway>: Set IPv4 API Gateway. The structure of api_gateway block is documented below.
AuthPortal string: Enable/disable authentication portal. Valid values: disable, enable.
AuthVirtualHost string: Virtual host for authentication portal.
ClientCert string: Enable/disable to request client certificate. Valid values: disable, enable.
DecryptedTrafficMirror string: Decrypted traffic mirror.
DynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
EmptyCertAction string: Action of an empty client certificate.
GetAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
HttpSupportedMaxVersion string: Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
LogBlockedTraffic string: Enable/disable logging of blocked traffic. Valid values: enable, disable.
Name string: Access Proxy name.
SvrPoolMultiplex string: Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
SvrPoolServerMaxConcurrentRequest int: Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
SvrPoolServerMaxRequest int: Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
SvrPoolTtl int: Time-to-live in the server pool for idle connections to servers.
UserAgentDetect string: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
Vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Vip string: Virtual IP name.

AddVhostDomainToDnsdb string: Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
ApiGateway6s []AccessproxyApiGateway6Args: Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
ApiGateways []AccessproxyApiGatewayArgs: Set IPv4 API Gateway. The structure of api_gateway block is documented below.
AuthPortal string: Enable/disable authentication portal. Valid values: disable, enable.
AuthVirtualHost string: Virtual host for authentication portal.
ClientCert string: Enable/disable to request client certificate. Valid values: disable, enable.
DecryptedTrafficMirror string: Decrypted traffic mirror.
DynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
EmptyCertAction string: Action of an empty client certificate.
GetAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
HttpSupportedMaxVersion string: Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
LogBlockedTraffic string: Enable/disable logging of blocked traffic. Valid values: enable, disable.
Name string: Access Proxy name.
SvrPoolMultiplex string: Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
SvrPoolServerMaxConcurrentRequest int: Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
SvrPoolServerMaxRequest int: Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
SvrPoolTtl int: Time-to-live in the server pool for idle connections to servers.
UserAgentDetect string: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
Vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Vip string: Virtual IP name.

addVhostDomainToDnsdb String: Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
apiGateway6s List<AccessproxyApiGateway6>: Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
apiGateways List<AccessproxyApiGateway>: Set IPv4 API Gateway. The structure of api_gateway block is documented below.
authPortal String: Enable/disable authentication portal. Valid values: disable, enable.
authVirtualHost String: Virtual host for authentication portal.
clientCert String: Enable/disable to request client certificate. Valid values: disable, enable.
decryptedTrafficMirror String: Decrypted traffic mirror.
dynamicSortSubtable String: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
emptyCertAction String: Action of an empty client certificate.
getAllTables String: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
httpSupportedMaxVersion String: Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
logBlockedTraffic String: Enable/disable logging of blocked traffic. Valid values: enable, disable.
name String: Access Proxy name.
svrPoolMultiplex String: Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
svrPoolServerMaxConcurrentRequest Integer: Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
svrPoolServerMaxRequest Integer: Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
svrPoolTtl Integer: Time-to-live in the server pool for idle connections to servers.
userAgentDetect String: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
vdomparam String: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
vip String: Virtual IP name.

addVhostDomainToDnsdb string: Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
apiGateway6s AccessproxyApiGateway6[]: Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
apiGateways AccessproxyApiGateway[]: Set IPv4 API Gateway. The structure of api_gateway block is documented below.
authPortal string: Enable/disable authentication portal. Valid values: disable, enable.
authVirtualHost string: Virtual host for authentication portal.
clientCert string: Enable/disable to request client certificate. Valid values: disable, enable.
decryptedTrafficMirror string: Decrypted traffic mirror.
dynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
emptyCertAction string: Action of an empty client certificate.
getAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
httpSupportedMaxVersion string: Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
logBlockedTraffic string: Enable/disable logging of blocked traffic. Valid values: enable, disable.
name string: Access Proxy name.
svrPoolMultiplex string: Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
svrPoolServerMaxConcurrentRequest number: Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
svrPoolServerMaxRequest number: Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
svrPoolTtl number: Time-to-live in the server pool for idle connections to servers.
userAgentDetect string: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
vip string: Virtual IP name.

add_vhost_domain_to_dnsdb str: Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
api_gateway6s Sequence[AccessproxyApiGateway6Args]: Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
api_gateways Sequence[AccessproxyApiGatewayArgs]: Set IPv4 API Gateway. The structure of api_gateway block is documented below.
auth_portal str: Enable/disable authentication portal. Valid values: disable, enable.
auth_virtual_host str: Virtual host for authentication portal.
client_cert str: Enable/disable to request client certificate. Valid values: disable, enable.
decrypted_traffic_mirror str: Decrypted traffic mirror.
dynamic_sort_subtable str: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
empty_cert_action str: Action of an empty client certificate.
get_all_tables str: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
http_supported_max_version str: Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
log_blocked_traffic str: Enable/disable logging of blocked traffic. Valid values: enable, disable.
name str: Access Proxy name.
svr_pool_multiplex str: Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
svr_pool_server_max_concurrent_request int: Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
svr_pool_server_max_request int: Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
svr_pool_ttl int: Time-to-live in the server pool for idle connections to servers.
user_agent_detect str: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
vdomparam str: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
vip str: Virtual IP name.

addVhostDomainToDnsdb String: Enable/disable adding vhost/domain to dnsdb for ztna dox tunnel. Valid values: enable, disable.
apiGateway6s List<Property Map>: Set IPv6 API Gateway. The structure of api_gateway6 block is documented below.
apiGateways List<Property Map>: Set IPv4 API Gateway. The structure of api_gateway block is documented below.
authPortal String: Enable/disable authentication portal. Valid values: disable, enable.
authVirtualHost String: Virtual host for authentication portal.
clientCert String: Enable/disable to request client certificate. Valid values: disable, enable.
decryptedTrafficMirror String: Decrypted traffic mirror.
dynamicSortSubtable String: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
emptyCertAction String: Action of an empty client certificate.
getAllTables String: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
httpSupportedMaxVersion String: Maximum supported HTTP versions. default = HTTP2 Valid values: http1, http2.
logBlockedTraffic String: Enable/disable logging of blocked traffic. Valid values: enable, disable.
name String: Access Proxy name.
svrPoolMultiplex String: Enable/disable server pool multiplexing. Share connected server in HTTP, HTTPS, and web-portal api-gateway. Valid values: enable, disable.
svrPoolServerMaxConcurrentRequest Number: Maximum number of concurrent requests that servers in server pool could handle (default = unlimited).
svrPoolServerMaxRequest Number: Maximum number of requests that servers in server pool handle before disconnecting (default = unlimited).
svrPoolTtl Number: Time-to-live in the server pool for idle connections to servers.
userAgentDetect String: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
vdomparam String: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
vip String: Virtual IP name.

Supporting Types

AccessproxyApiGateway, AccessproxyApiGatewayArgs

Applications List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGatewayApplication>: SaaS application controlled by this Access Proxy. The structure of application block is documented below.
H2Support string: HTTP2 support, default=Enable. Valid values: enable, disable.
H3Support string: HTTP3/QUIC support, default=Disable. Valid values: enable, disable.
HttpCookieAge int: Time in minutes that client web browsers should keep a cookie. Default is 60 minutes. 0 = no time limit.
HttpCookieDomain string: Domain that HTTP cookie persistence should apply to.
HttpCookieDomainFromHost string: Enable/disable use of HTTP cookie domain from host field in HTTP. Valid values: disable, enable.
HttpCookieGeneration int: Generation of HTTP cookie to be accepted. Changing invalidates all existing cookies.
HttpCookiePath string: Limit HTTP cookie persistence to the specified path.
HttpCookieShare string: Control sharing of cookies across API Gateway. same-ip means a cookie from one virtual server can be used by another. Disable stops cookie sharing. Valid values: disable, same-ip.
HttpsCookieSecure string: Enable/disable verification that inserted HTTPS cookies are secure. Valid values: disable, enable.
Id int: API Gateway ID.
LdbMethod string: Method used to distribute sessions to real servers. Valid values: static, round-robin, weighted, first-alive, http-host.
Persistence string: Configure how to make sure that clients connect to the same server every time they make a request that is part of the same session. Valid values: none, http-cookie.
Quic Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGatewayQuic: QUIC setting. The structure of quic block is documented below.
Realservers List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGatewayRealserver>: Select the real servers that this Access Proxy will distribute traffic to. The structure of realservers block is documented below.
SamlRedirect string: Enable/disable SAML redirection after successful authentication. Valid values: disable, enable.
SamlServer string: SAML service provider configuration for VIP authentication.
Service string: Service.
SslAlgorithm string: Permitted encryption algorithms for the server side of SSL full mode sessions according to encryption strength. Valid values: high, medium, low.
SslCipherSuites List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGatewaySslCipherSuite>: SSL/TLS cipher suites to offer to a server, ordered by priority. The structure of ssl_cipher_suites block is documented below.
SslDhBits string: Number of bits to use in the Diffie-Hellman exchange for RSA encryption of SSL sessions. Valid values: 768, 1024, 1536, 2048, 3072, 4096.
SslMaxVersion string: Highest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
SslMinVersion string: Lowest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
SslRenegotiation string: Enable/disable secure renegotiation to comply with RFC 5746. Valid values: enable, disable.
SslVpnWebPortal string: SSL-VPN web portal.
UrlMap string: URL pattern to match.
UrlMapType string: Type of url-map. Valid values: sub-string, wildcard, regex.
VirtualHost string: Virtual host.

Applications []AccessproxyApiGatewayApplication: SaaS application controlled by this Access Proxy. The structure of application block is documented below.
H2Support string: HTTP2 support, default=Enable. Valid values: enable, disable.
H3Support string: HTTP3/QUIC support, default=Disable. Valid values: enable, disable.
HttpCookieAge int: Time in minutes that client web browsers should keep a cookie. Default is 60 minutes. 0 = no time limit.
HttpCookieDomain string: Domain that HTTP cookie persistence should apply to.
HttpCookieDomainFromHost string: Enable/disable use of HTTP cookie domain from host field in HTTP. Valid values: disable, enable.
HttpCookieGeneration int: Generation of HTTP cookie to be accepted. Changing invalidates all existing cookies.
HttpCookiePath string: Limit HTTP cookie persistence to the specified path.
HttpCookieShare string: Control sharing of cookies across API Gateway. same-ip means a cookie from one virtual server can be used by another. Disable stops cookie sharing. Valid values: disable, same-ip.
HttpsCookieSecure string: Enable/disable verification that inserted HTTPS cookies are secure. Valid values: disable, enable.
Id int: API Gateway ID.
LdbMethod string: Method used to distribute sessions to real servers. Valid values: static, round-robin, weighted, first-alive, http-host.
Persistence string: Configure how to make sure that clients connect to the same server every time they make a request that is part of the same session. Valid values: none, http-cookie.
Quic AccessproxyApiGatewayQuic: QUIC setting. The structure of quic block is documented below.
Realservers []AccessproxyApiGatewayRealserver: Select the real servers that this Access Proxy will distribute traffic to. The structure of realservers block is documented below.
SamlRedirect string: Enable/disable SAML redirection after successful authentication. Valid values: disable, enable.
SamlServer string: SAML service provider configuration for VIP authentication.
Service string: Service.
SslAlgorithm string: Permitted encryption algorithms for the server side of SSL full mode sessions according to encryption strength. Valid values: high, medium, low.
SslCipherSuites []AccessproxyApiGatewaySslCipherSuite: SSL/TLS cipher suites to offer to a server, ordered by priority. The structure of ssl_cipher_suites block is documented below.
SslDhBits string: Number of bits to use in the Diffie-Hellman exchange for RSA encryption of SSL sessions. Valid values: 768, 1024, 1536, 2048, 3072, 4096.
SslMaxVersion string: Highest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
SslMinVersion string: Lowest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
SslRenegotiation string: Enable/disable secure renegotiation to comply with RFC 5746. Valid values: enable, disable.
SslVpnWebPortal string: SSL-VPN web portal.
UrlMap string: URL pattern to match.
UrlMapType string: Type of url-map. Valid values: sub-string, wildcard, regex.
VirtualHost string: Virtual host.

applications List<AccessproxyApiGatewayApplication>: SaaS application controlled by this Access Proxy. The structure of application block is documented below.
h2Support String: HTTP2 support, default=Enable. Valid values: enable, disable.
h3Support String: HTTP3/QUIC support, default=Disable. Valid values: enable, disable.
httpCookieAge Integer: Time in minutes that client web browsers should keep a cookie. Default is 60 minutes. 0 = no time limit.
httpCookieDomain String: Domain that HTTP cookie persistence should apply to.
httpCookieDomainFromHost String: Enable/disable use of HTTP cookie domain from host field in HTTP. Valid values: disable, enable.
httpCookieGeneration Integer: Generation of HTTP cookie to be accepted. Changing invalidates all existing cookies.
httpCookiePath String: Limit HTTP cookie persistence to the specified path.
httpCookieShare String: Control sharing of cookies across API Gateway. same-ip means a cookie from one virtual server can be used by another. Disable stops cookie sharing. Valid values: disable, same-ip.
httpsCookieSecure String: Enable/disable verification that inserted HTTPS cookies are secure. Valid values: disable, enable.
id Integer: API Gateway ID.
ldbMethod String: Method used to distribute sessions to real servers. Valid values: static, round-robin, weighted, first-alive, http-host.
persistence String: Configure how to make sure that clients connect to the same server every time they make a request that is part of the same session. Valid values: none, http-cookie.
quic AccessproxyApiGatewayQuic: QUIC setting. The structure of quic block is documented below.
realservers List<AccessproxyApiGatewayRealserver>: Select the real servers that this Access Proxy will distribute traffic to. The structure of realservers block is documented below.
samlRedirect String: Enable/disable SAML redirection after successful authentication. Valid values: disable, enable.
samlServer String: SAML service provider configuration for VIP authentication.
service String: Service.
sslAlgorithm String: Permitted encryption algorithms for the server side of SSL full mode sessions according to encryption strength. Valid values: high, medium, low.
sslCipherSuites List<AccessproxyApiGatewaySslCipherSuite>: SSL/TLS cipher suites to offer to a server, ordered by priority. The structure of ssl_cipher_suites block is documented below.
sslDhBits String: Number of bits to use in the Diffie-Hellman exchange for RSA encryption of SSL sessions. Valid values: 768, 1024, 1536, 2048, 3072, 4096.
sslMaxVersion String: Highest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
sslMinVersion String: Lowest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
sslRenegotiation String: Enable/disable secure renegotiation to comply with RFC 5746. Valid values: enable, disable.
sslVpnWebPortal String: SSL-VPN web portal.
urlMap String: URL pattern to match.
urlMapType String: Type of url-map. Valid values: sub-string, wildcard, regex.
virtualHost String: Virtual host.

applications AccessproxyApiGatewayApplication[]: SaaS application controlled by this Access Proxy. The structure of application block is documented below.
h2Support string: HTTP2 support, default=Enable. Valid values: enable, disable.
h3Support string: HTTP3/QUIC support, default=Disable. Valid values: enable, disable.
httpCookieAge number: Time in minutes that client web browsers should keep a cookie. Default is 60 minutes. 0 = no time limit.
httpCookieDomain string: Domain that HTTP cookie persistence should apply to.
httpCookieDomainFromHost string: Enable/disable use of HTTP cookie domain from host field in HTTP. Valid values: disable, enable.
httpCookieGeneration number: Generation of HTTP cookie to be accepted. Changing invalidates all existing cookies.
httpCookiePath string: Limit HTTP cookie persistence to the specified path.
httpCookieShare string: Control sharing of cookies across API Gateway. same-ip means a cookie from one virtual server can be used by another. Disable stops cookie sharing. Valid values: disable, same-ip.
httpsCookieSecure string: Enable/disable verification that inserted HTTPS cookies are secure. Valid values: disable, enable.
id number: API Gateway ID.
ldbMethod string: Method used to distribute sessions to real servers. Valid values: static, round-robin, weighted, first-alive, http-host.
persistence string: Configure how to make sure that clients connect to the same server every time they make a request that is part of the same session. Valid values: none, http-cookie.
quic AccessproxyApiGatewayQuic: QUIC setting. The structure of quic block is documented below.
realservers AccessproxyApiGatewayRealserver[]: Select the real servers that this Access Proxy will distribute traffic to. The structure of realservers block is documented below.
samlRedirect string: Enable/disable SAML redirection after successful authentication. Valid values: disable, enable.
samlServer string: SAML service provider configuration for VIP authentication.
service string: Service.
sslAlgorithm string: Permitted encryption algorithms for the server side of SSL full mode sessions according to encryption strength. Valid values: high, medium, low.
sslCipherSuites AccessproxyApiGatewaySslCipherSuite[]: SSL/TLS cipher suites to offer to a server, ordered by priority. The structure of ssl_cipher_suites block is documented below.
sslDhBits string: Number of bits to use in the Diffie-Hellman exchange for RSA encryption of SSL sessions. Valid values: 768, 1024, 1536, 2048, 3072, 4096.
sslMaxVersion string: Highest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
sslMinVersion string: Lowest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
sslRenegotiation string: Enable/disable secure renegotiation to comply with RFC 5746. Valid values: enable, disable.
sslVpnWebPortal string: SSL-VPN web portal.
urlMap string: URL pattern to match.
urlMapType string: Type of url-map. Valid values: sub-string, wildcard, regex.
virtualHost string: Virtual host.

applications Sequence[AccessproxyApiGatewayApplication]: SaaS application controlled by this Access Proxy. The structure of application block is documented below.
h2_support str: HTTP2 support, default=Enable. Valid values: enable, disable.
h3_support str: HTTP3/QUIC support, default=Disable. Valid values: enable, disable.
http_cookie_age int: Time in minutes that client web browsers should keep a cookie. Default is 60 minutes. 0 = no time limit.
http_cookie_domain str: Domain that HTTP cookie persistence should apply to.
http_cookie_domain_from_host str: Enable/disable use of HTTP cookie domain from host field in HTTP. Valid values: disable, enable.
http_cookie_generation int: Generation of HTTP cookie to be accepted. Changing invalidates all existing cookies.
http_cookie_path str: Limit HTTP cookie persistence to the specified path.
http_cookie_share str: Control sharing of cookies across API Gateway. same-ip means a cookie from one virtual server can be used by another. Disable stops cookie sharing. Valid values: disable, same-ip.
https_cookie_secure str: Enable/disable verification that inserted HTTPS cookies are secure. Valid values: disable, enable.
id int: API Gateway ID.
ldb_method str: Method used to distribute sessions to real servers. Valid values: static, round-robin, weighted, first-alive, http-host.
persistence str: Configure how to make sure that clients connect to the same server every time they make a request that is part of the same session. Valid values: none, http-cookie.
quic AccessproxyApiGatewayQuic: QUIC setting. The structure of quic block is documented below.
realservers Sequence[AccessproxyApiGatewayRealserver]: Select the real servers that this Access Proxy will distribute traffic to. The structure of realservers block is documented below.
saml_redirect str: Enable/disable SAML redirection after successful authentication. Valid values: disable, enable.
saml_server str: SAML service provider configuration for VIP authentication.
service str: Service.
ssl_algorithm str: Permitted encryption algorithms for the server side of SSL full mode sessions according to encryption strength. Valid values: high, medium, low.
ssl_cipher_suites Sequence[AccessproxyApiGatewaySslCipherSuite]: SSL/TLS cipher suites to offer to a server, ordered by priority. The structure of ssl_cipher_suites block is documented below.
ssl_dh_bits str: Number of bits to use in the Diffie-Hellman exchange for RSA encryption of SSL sessions. Valid values: 768, 1024, 1536, 2048, 3072, 4096.
ssl_max_version str: Highest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
ssl_min_version str: Lowest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
ssl_renegotiation str: Enable/disable secure renegotiation to comply with RFC 5746. Valid values: enable, disable.
ssl_vpn_web_portal str: SSL-VPN web portal.
url_map str: URL pattern to match.
url_map_type str: Type of url-map. Valid values: sub-string, wildcard, regex.
virtual_host str: Virtual host.

applications List<Property Map>: SaaS application controlled by this Access Proxy. The structure of application block is documented below.
h2Support String: HTTP2 support, default=Enable. Valid values: enable, disable.
h3Support String: HTTP3/QUIC support, default=Disable. Valid values: enable, disable.
httpCookieAge Number: Time in minutes that client web browsers should keep a cookie. Default is 60 minutes. 0 = no time limit.
httpCookieDomain String: Domain that HTTP cookie persistence should apply to.
httpCookieDomainFromHost String: Enable/disable use of HTTP cookie domain from host field in HTTP. Valid values: disable, enable.
httpCookieGeneration Number: Generation of HTTP cookie to be accepted. Changing invalidates all existing cookies.
httpCookiePath String: Limit HTTP cookie persistence to the specified path.
httpCookieShare String: Control sharing of cookies across API Gateway. same-ip means a cookie from one virtual server can be used by another. Disable stops cookie sharing. Valid values: disable, same-ip.
httpsCookieSecure String: Enable/disable verification that inserted HTTPS cookies are secure. Valid values: disable, enable.
id Number: API Gateway ID.
ldbMethod String: Method used to distribute sessions to real servers. Valid values: static, round-robin, weighted, first-alive, http-host.
persistence String: Configure how to make sure that clients connect to the same server every time they make a request that is part of the same session. Valid values: none, http-cookie.
quic Property Map: QUIC setting. The structure of quic block is documented below.
realservers List<Property Map>: Select the real servers that this Access Proxy will distribute traffic to. The structure of realservers block is documented below.
samlRedirect String: Enable/disable SAML redirection after successful authentication. Valid values: disable, enable.
samlServer String: SAML service provider configuration for VIP authentication.
service String: Service.
sslAlgorithm String: Permitted encryption algorithms for the server side of SSL full mode sessions according to encryption strength. Valid values: high, medium, low.
sslCipherSuites List<Property Map>: SSL/TLS cipher suites to offer to a server, ordered by priority. The structure of ssl_cipher_suites block is documented below.
sslDhBits String: Number of bits to use in the Diffie-Hellman exchange for RSA encryption of SSL sessions. Valid values: 768, 1024, 1536, 2048, 3072, 4096.
sslMaxVersion String: Highest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
sslMinVersion String: Lowest SSL/TLS version acceptable from a server. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.
sslRenegotiation String: Enable/disable secure renegotiation to comply with RFC 5746. Valid values: enable, disable.
sslVpnWebPortal String: SSL-VPN web portal.
urlMap String: URL pattern to match.
urlMapType String: Type of url-map. Valid values: sub-string, wildcard, regex.
virtualHost String: Virtual host.

AccessproxyApiGateway6, AccessproxyApiGateway6Args

Applications List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway6Application>
H2Support string
H3Support string
HttpCookieAge int
HttpCookieDomain string
HttpCookieDomainFromHost string
HttpCookieGeneration int
HttpCookiePath string
HttpCookieShare string
HttpsCookieSecure string
Id int: an identifier for the resource with format {{name}}.
LdbMethod string
Persistence string
Quic Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway6Quic
Realservers List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway6Realserver>
SamlRedirect string
SamlServer string
Service string
SslAlgorithm string
SslCipherSuites List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway6SslCipherSuite>
SslDhBits string
SslMaxVersion string
SslMinVersion string
SslRenegotiation string
SslVpnWebPortal string
UrlMap string
UrlMapType string
VirtualHost string

Applications []AccessproxyApiGateway6Application
H2Support string
H3Support string
HttpCookieAge int
HttpCookieDomain string
HttpCookieDomainFromHost string
HttpCookieGeneration int
HttpCookiePath string
HttpCookieShare string
HttpsCookieSecure string
Id int: an identifier for the resource with format {{name}}.
LdbMethod string
Persistence string
Quic AccessproxyApiGateway6Quic
Realservers []AccessproxyApiGateway6Realserver
SamlRedirect string
SamlServer string
Service string
SslAlgorithm string
SslCipherSuites []AccessproxyApiGateway6SslCipherSuite
SslDhBits string
SslMaxVersion string
SslMinVersion string
SslRenegotiation string
SslVpnWebPortal string
UrlMap string
UrlMapType string
VirtualHost string

applications List<AccessproxyApiGateway6Application>
h2Support String
h3Support String
httpCookieAge Integer
httpCookieDomain String
httpCookieDomainFromHost String
httpCookieGeneration Integer
httpCookiePath String
httpCookieShare String
httpsCookieSecure String
id Integer: an identifier for the resource with format {{name}}.
ldbMethod String
persistence String
quic AccessproxyApiGateway6Quic
realservers List<AccessproxyApiGateway6Realserver>
samlRedirect String
samlServer String
service String
sslAlgorithm String
sslCipherSuites List<AccessproxyApiGateway6SslCipherSuite>
sslDhBits String
sslMaxVersion String
sslMinVersion String
sslRenegotiation String
sslVpnWebPortal String
urlMap String
urlMapType String
virtualHost String

applications AccessproxyApiGateway6Application[]
h2Support string
h3Support string
httpCookieAge number
httpCookieDomain string
httpCookieDomainFromHost string
httpCookieGeneration number
httpCookiePath string
httpCookieShare string
httpsCookieSecure string
id number: an identifier for the resource with format {{name}}.
ldbMethod string
persistence string
quic AccessproxyApiGateway6Quic
realservers AccessproxyApiGateway6Realserver[]
samlRedirect string
samlServer string
service string
sslAlgorithm string
sslCipherSuites AccessproxyApiGateway6SslCipherSuite[]
sslDhBits string
sslMaxVersion string
sslMinVersion string
sslRenegotiation string
sslVpnWebPortal string
urlMap string
urlMapType string
virtualHost string

applications Sequence[AccessproxyApiGateway6Application]
h2_support str
h3_support str
http_cookie_age int
http_cookie_domain str
http_cookie_domain_from_host str
http_cookie_generation int
http_cookie_path str
http_cookie_share str
https_cookie_secure str
id int: an identifier for the resource with format {{name}}.
ldb_method str
persistence str
quic AccessproxyApiGateway6Quic
realservers Sequence[AccessproxyApiGateway6Realserver]
saml_redirect str
saml_server str
service str
ssl_algorithm str
ssl_cipher_suites Sequence[AccessproxyApiGateway6SslCipherSuite]
ssl_dh_bits str
ssl_max_version str
ssl_min_version str
ssl_renegotiation str
ssl_vpn_web_portal str
url_map str
url_map_type str
virtual_host str

applications List<Property Map>
h2Support String
h3Support String
httpCookieAge Number
httpCookieDomain String
httpCookieDomainFromHost String
httpCookieGeneration Number
httpCookiePath String
httpCookieShare String
httpsCookieSecure String
id Number: an identifier for the resource with format {{name}}.
ldbMethod String
persistence String
quic Property Map
realservers List<Property Map>
samlRedirect String
samlServer String
service String
sslAlgorithm String
sslCipherSuites List<Property Map>
sslDhBits String
sslMaxVersion String
sslMinVersion String
sslRenegotiation String
sslVpnWebPortal String
urlMap String
urlMapType String
virtualHost String

AccessproxyApiGateway6Application, AccessproxyApiGateway6ApplicationArgs

Name string: SaaS application name.

Name string: SaaS application name.

name String: SaaS application name.

name string: SaaS application name.

name str: SaaS application name.

name String: SaaS application name.

AccessproxyApiGateway6Quic, AccessproxyApiGateway6QuicArgs

AckDelayExponent int: ACK delay exponent (1 - 20, default = 3).
ActiveConnectionIdLimit int: Active connection ID limit (1 - 8, default = 2).
ActiveMigration string: Enable/disable active migration (default = disable). Valid values: enable, disable.
GreaseQuicBit string: Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
MaxAckDelay int: Maximum ACK delay in milliseconds (1 - 16383, default = 25).
MaxDatagramFrameSize int: Maximum datagram frame size in bytes (1 - 1500, default = 1500).
MaxIdleTimeout int: Maximum idle timeout milliseconds (1 - 60000, default = 30000).
MaxUdpPayloadSize int: Maximum UDP payload size in bytes (1200 - 1500, default = 1500).

AckDelayExponent int: ACK delay exponent (1 - 20, default = 3).
ActiveConnectionIdLimit int: Active connection ID limit (1 - 8, default = 2).
ActiveMigration string: Enable/disable active migration (default = disable). Valid values: enable, disable.
GreaseQuicBit string: Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
MaxAckDelay int: Maximum ACK delay in milliseconds (1 - 16383, default = 25).
MaxDatagramFrameSize int: Maximum datagram frame size in bytes (1 - 1500, default = 1500).
MaxIdleTimeout int: Maximum idle timeout milliseconds (1 - 60000, default = 30000).
MaxUdpPayloadSize int: Maximum UDP payload size in bytes (1200 - 1500, default = 1500).

ackDelayExponent Integer: ACK delay exponent (1 - 20, default = 3).
activeConnectionIdLimit Integer: Active connection ID limit (1 - 8, default = 2).
activeMigration String: Enable/disable active migration (default = disable). Valid values: enable, disable.
greaseQuicBit String: Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
maxAckDelay Integer: Maximum ACK delay in milliseconds (1 - 16383, default = 25).
maxDatagramFrameSize Integer: Maximum datagram frame size in bytes (1 - 1500, default = 1500).
maxIdleTimeout Integer: Maximum idle timeout milliseconds (1 - 60000, default = 30000).
maxUdpPayloadSize Integer: Maximum UDP payload size in bytes (1200 - 1500, default = 1500).

ackDelayExponent number: ACK delay exponent (1 - 20, default = 3).
activeConnectionIdLimit number: Active connection ID limit (1 - 8, default = 2).
activeMigration string: Enable/disable active migration (default = disable). Valid values: enable, disable.
greaseQuicBit string: Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
maxAckDelay number: Maximum ACK delay in milliseconds (1 - 16383, default = 25).
maxDatagramFrameSize number: Maximum datagram frame size in bytes (1 - 1500, default = 1500).
maxIdleTimeout number: Maximum idle timeout milliseconds (1 - 60000, default = 30000).
maxUdpPayloadSize number: Maximum UDP payload size in bytes (1200 - 1500, default = 1500).

ack_delay_exponent int: ACK delay exponent (1 - 20, default = 3).
active_connection_id_limit int: Active connection ID limit (1 - 8, default = 2).
active_migration str: Enable/disable active migration (default = disable). Valid values: enable, disable.
grease_quic_bit str: Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
max_ack_delay int: Maximum ACK delay in milliseconds (1 - 16383, default = 25).
max_datagram_frame_size int: Maximum datagram frame size in bytes (1 - 1500, default = 1500).
max_idle_timeout int: Maximum idle timeout milliseconds (1 - 60000, default = 30000).
max_udp_payload_size int: Maximum UDP payload size in bytes (1200 - 1500, default = 1500).

ackDelayExponent Number: ACK delay exponent (1 - 20, default = 3).
activeConnectionIdLimit Number: Active connection ID limit (1 - 8, default = 2).
activeMigration String: Enable/disable active migration (default = disable). Valid values: enable, disable.
greaseQuicBit String: Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
maxAckDelay Number: Maximum ACK delay in milliseconds (1 - 16383, default = 25).
maxDatagramFrameSize Number: Maximum datagram frame size in bytes (1 - 1500, default = 1500).
maxIdleTimeout Number: Maximum idle timeout milliseconds (1 - 60000, default = 30000).
maxUdpPayloadSize Number: Maximum UDP payload size in bytes (1200 - 1500, default = 1500).

AccessproxyApiGateway6Realserver, AccessproxyApiGateway6RealserverArgs

AddrType string: Type of address. Valid values: ip, fqdn.
Address string: Address or address group of the real server.
Domain string: Wildcard domain name of the real server.
ExternalAuth string: Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
HealthCheck string: Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
HealthCheckProto string: Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
HolddownInterval string: Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
HttpHost string: HTTP server domain name in HTTP header.
Id int: Real server ID.
Ip string: IPv6 address of the real server.
Mappedport string: Port for communicating with the real server.
Port int: Port for communicating with the real server.
SshClientCert string: Set access-proxy SSH client certificate profile.
SshHostKeyValidation string: Enable/disable SSH real server host key validation. Valid values: disable, enable.
SshHostKeys List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGateway6RealserverSshHostKey>: One or more server host key. The structure of ssh_host_key block is documented below.
Status string: Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
TranslateHost string: Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
TunnelEncryption string: Tunnel encryption. Valid values: enable, disable.
Type string: TCP forwarding server type. Valid values: tcp-forwarding, ssh.
Weight int: Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.

AddrType string: Type of address. Valid values: ip, fqdn.
Address string: Address or address group of the real server.
Domain string: Wildcard domain name of the real server.
ExternalAuth string: Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
HealthCheck string: Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
HealthCheckProto string: Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
HolddownInterval string: Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
HttpHost string: HTTP server domain name in HTTP header.
Id int: Real server ID.
Ip string: IPv6 address of the real server.
Mappedport string: Port for communicating with the real server.
Port int: Port for communicating with the real server.
SshClientCert string: Set access-proxy SSH client certificate profile.
SshHostKeyValidation string: Enable/disable SSH real server host key validation. Valid values: disable, enable.
SshHostKeys []AccessproxyApiGateway6RealserverSshHostKey: One or more server host key. The structure of ssh_host_key block is documented below.
Status string: Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
TranslateHost string: Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
TunnelEncryption string: Tunnel encryption. Valid values: enable, disable.
Type string: TCP forwarding server type. Valid values: tcp-forwarding, ssh.
Weight int: Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.

addrType String: Type of address. Valid values: ip, fqdn.
address String: Address or address group of the real server.
domain String: Wildcard domain name of the real server.
externalAuth String: Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
healthCheck String: Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
healthCheckProto String: Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
holddownInterval String: Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
httpHost String: HTTP server domain name in HTTP header.
id Integer: Real server ID.
ip String: IPv6 address of the real server.
mappedport String: Port for communicating with the real server.
port Integer: Port for communicating with the real server.
sshClientCert String: Set access-proxy SSH client certificate profile.
sshHostKeyValidation String: Enable/disable SSH real server host key validation. Valid values: disable, enable.
sshHostKeys List<AccessproxyApiGateway6RealserverSshHostKey>: One or more server host key. The structure of ssh_host_key block is documented below.
status String: Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
translateHost String: Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
tunnelEncryption String: Tunnel encryption. Valid values: enable, disable.
type String: TCP forwarding server type. Valid values: tcp-forwarding, ssh.
weight Integer: Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.

addrType string: Type of address. Valid values: ip, fqdn.
address string: Address or address group of the real server.
domain string: Wildcard domain name of the real server.
externalAuth string: Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
healthCheck string: Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
healthCheckProto string: Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
holddownInterval string: Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
httpHost string: HTTP server domain name in HTTP header.
id number: Real server ID.
ip string: IPv6 address of the real server.
mappedport string: Port for communicating with the real server.
port number: Port for communicating with the real server.
sshClientCert string: Set access-proxy SSH client certificate profile.
sshHostKeyValidation string: Enable/disable SSH real server host key validation. Valid values: disable, enable.
sshHostKeys AccessproxyApiGateway6RealserverSshHostKey[]: One or more server host key. The structure of ssh_host_key block is documented below.
status string: Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
translateHost string: Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
tunnelEncryption string: Tunnel encryption. Valid values: enable, disable.
type string: TCP forwarding server type. Valid values: tcp-forwarding, ssh.
weight number: Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.

addr_type str: Type of address. Valid values: ip, fqdn.
address str: Address or address group of the real server.
domain str: Wildcard domain name of the real server.
external_auth str: Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
health_check str: Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
health_check_proto str: Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
holddown_interval str: Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
http_host str: HTTP server domain name in HTTP header.
id int: Real server ID.
ip str: IPv6 address of the real server.
mappedport str: Port for communicating with the real server.
port int: Port for communicating with the real server.
ssh_client_cert str: Set access-proxy SSH client certificate profile.
ssh_host_key_validation str: Enable/disable SSH real server host key validation. Valid values: disable, enable.
ssh_host_keys Sequence[AccessproxyApiGateway6RealserverSshHostKey]: One or more server host key. The structure of ssh_host_key block is documented below.
status str: Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
translate_host str: Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
tunnel_encryption str: Tunnel encryption. Valid values: enable, disable.
type str: TCP forwarding server type. Valid values: tcp-forwarding, ssh.
weight int: Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.

addrType String: Type of address. Valid values: ip, fqdn.
address String: Address or address group of the real server.
domain String: Wildcard domain name of the real server.
externalAuth String: Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
healthCheck String: Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
healthCheckProto String: Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
holddownInterval String: Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
httpHost String: HTTP server domain name in HTTP header.
id Number: Real server ID.
ip String: IPv6 address of the real server.
mappedport String: Port for communicating with the real server.
port Number: Port for communicating with the real server.
sshClientCert String: Set access-proxy SSH client certificate profile.
sshHostKeyValidation String: Enable/disable SSH real server host key validation. Valid values: disable, enable.
sshHostKeys List<Property Map>: One or more server host key. The structure of ssh_host_key block is documented below.
status String: Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
translateHost String: Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
tunnelEncryption String: Tunnel encryption. Valid values: enable, disable.
type String: TCP forwarding server type. Valid values: tcp-forwarding, ssh.
weight Number: Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.

AccessproxyApiGateway6RealserverSshHostKey, AccessproxyApiGateway6RealserverSshHostKeyArgs

Name string: Server host key name.

Name string: Server host key name.

name String: Server host key name.

name string: Server host key name.

name str: Server host key name.

name String: Server host key name.

AccessproxyApiGateway6SslCipherSuite, AccessproxyApiGateway6SslCipherSuiteArgs

Cipher string: Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
Priority int: SSL/TLS cipher suites priority.
Versions string: SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.

Cipher string: Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
Priority int: SSL/TLS cipher suites priority.
Versions string: SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.

cipher String: Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
priority Integer: SSL/TLS cipher suites priority.
versions String: SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.

cipher string: Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
priority number: SSL/TLS cipher suites priority.
versions string: SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.

cipher str: Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
priority int: SSL/TLS cipher suites priority.
versions str: SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.

cipher String: Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
priority Number: SSL/TLS cipher suites priority.
versions String: SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.

AccessproxyApiGatewayApplication, AccessproxyApiGatewayApplicationArgs

Name string: SaaS application name.

Name string: SaaS application name.

name String: SaaS application name.

name string: SaaS application name.

name str: SaaS application name.

name String: SaaS application name.

AccessproxyApiGatewayQuic, AccessproxyApiGatewayQuicArgs

AckDelayExponent int: ACK delay exponent (1 - 20, default = 3).
ActiveConnectionIdLimit int: Active connection ID limit (1 - 8, default = 2).
ActiveMigration string: Enable/disable active migration (default = disable). Valid values: enable, disable.
GreaseQuicBit string: Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
MaxAckDelay int: Maximum ACK delay in milliseconds (1 - 16383, default = 25).
MaxDatagramFrameSize int: Maximum datagram frame size in bytes (1 - 1500, default = 1500).
MaxIdleTimeout int: Maximum idle timeout milliseconds (1 - 60000, default = 30000).
MaxUdpPayloadSize int: Maximum UDP payload size in bytes (1200 - 1500, default = 1500).

AckDelayExponent int: ACK delay exponent (1 - 20, default = 3).
ActiveConnectionIdLimit int: Active connection ID limit (1 - 8, default = 2).
ActiveMigration string: Enable/disable active migration (default = disable). Valid values: enable, disable.
GreaseQuicBit string: Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
MaxAckDelay int: Maximum ACK delay in milliseconds (1 - 16383, default = 25).
MaxDatagramFrameSize int: Maximum datagram frame size in bytes (1 - 1500, default = 1500).
MaxIdleTimeout int: Maximum idle timeout milliseconds (1 - 60000, default = 30000).
MaxUdpPayloadSize int: Maximum UDP payload size in bytes (1200 - 1500, default = 1500).

ackDelayExponent Integer: ACK delay exponent (1 - 20, default = 3).
activeConnectionIdLimit Integer: Active connection ID limit (1 - 8, default = 2).
activeMigration String: Enable/disable active migration (default = disable). Valid values: enable, disable.
greaseQuicBit String: Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
maxAckDelay Integer: Maximum ACK delay in milliseconds (1 - 16383, default = 25).
maxDatagramFrameSize Integer: Maximum datagram frame size in bytes (1 - 1500, default = 1500).
maxIdleTimeout Integer: Maximum idle timeout milliseconds (1 - 60000, default = 30000).
maxUdpPayloadSize Integer: Maximum UDP payload size in bytes (1200 - 1500, default = 1500).

ackDelayExponent number: ACK delay exponent (1 - 20, default = 3).
activeConnectionIdLimit number: Active connection ID limit (1 - 8, default = 2).
activeMigration string: Enable/disable active migration (default = disable). Valid values: enable, disable.
greaseQuicBit string: Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
maxAckDelay number: Maximum ACK delay in milliseconds (1 - 16383, default = 25).
maxDatagramFrameSize number: Maximum datagram frame size in bytes (1 - 1500, default = 1500).
maxIdleTimeout number: Maximum idle timeout milliseconds (1 - 60000, default = 30000).
maxUdpPayloadSize number: Maximum UDP payload size in bytes (1200 - 1500, default = 1500).

ack_delay_exponent int: ACK delay exponent (1 - 20, default = 3).
active_connection_id_limit int: Active connection ID limit (1 - 8, default = 2).
active_migration str: Enable/disable active migration (default = disable). Valid values: enable, disable.
grease_quic_bit str: Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
max_ack_delay int: Maximum ACK delay in milliseconds (1 - 16383, default = 25).
max_datagram_frame_size int: Maximum datagram frame size in bytes (1 - 1500, default = 1500).
max_idle_timeout int: Maximum idle timeout milliseconds (1 - 60000, default = 30000).
max_udp_payload_size int: Maximum UDP payload size in bytes (1200 - 1500, default = 1500).

ackDelayExponent Number: ACK delay exponent (1 - 20, default = 3).
activeConnectionIdLimit Number: Active connection ID limit (1 - 8, default = 2).
activeMigration String: Enable/disable active migration (default = disable). Valid values: enable, disable.
greaseQuicBit String: Enable/disable grease QUIC bit (default = enable). Valid values: enable, disable.
maxAckDelay Number: Maximum ACK delay in milliseconds (1 - 16383, default = 25).
maxDatagramFrameSize Number: Maximum datagram frame size in bytes (1 - 1500, default = 1500).
maxIdleTimeout Number: Maximum idle timeout milliseconds (1 - 60000, default = 30000).
maxUdpPayloadSize Number: Maximum UDP payload size in bytes (1200 - 1500, default = 1500).

AccessproxyApiGatewayRealserver, AccessproxyApiGatewayRealserverArgs

AddrType string: Type of address. Valid values: ip, fqdn.
Address string: Address or address group of the real server.
Domain string: Wildcard domain name of the real server.
ExternalAuth string: Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
HealthCheck string: Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
HealthCheckProto string: Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
HolddownInterval string: Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
HttpHost string: HTTP server domain name in HTTP header.
Id int: Real server ID.
Ip string: IPv6 address of the real server.
Mappedport string: Port for communicating with the real server.
Port int: Port for communicating with the real server.
SshClientCert string: Set access-proxy SSH client certificate profile.
SshHostKeyValidation string: Enable/disable SSH real server host key validation. Valid values: disable, enable.
SshHostKeys List<Pulumiverse.Fortios.Firewall.Inputs.AccessproxyApiGatewayRealserverSshHostKey>: One or more server host key. The structure of ssh_host_key block is documented below.
Status string: Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
TranslateHost string: Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
TunnelEncryption string: Tunnel encryption. Valid values: enable, disable.
Type string: TCP forwarding server type. Valid values: tcp-forwarding, ssh.
Weight int: Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.

AddrType string: Type of address. Valid values: ip, fqdn.
Address string: Address or address group of the real server.
Domain string: Wildcard domain name of the real server.
ExternalAuth string: Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
HealthCheck string: Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
HealthCheckProto string: Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
HolddownInterval string: Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
HttpHost string: HTTP server domain name in HTTP header.
Id int: Real server ID.
Ip string: IPv6 address of the real server.
Mappedport string: Port for communicating with the real server.
Port int: Port for communicating with the real server.
SshClientCert string: Set access-proxy SSH client certificate profile.
SshHostKeyValidation string: Enable/disable SSH real server host key validation. Valid values: disable, enable.
SshHostKeys []AccessproxyApiGatewayRealserverSshHostKey: One or more server host key. The structure of ssh_host_key block is documented below.
Status string: Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
TranslateHost string: Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
TunnelEncryption string: Tunnel encryption. Valid values: enable, disable.
Type string: TCP forwarding server type. Valid values: tcp-forwarding, ssh.
Weight int: Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.

addrType String: Type of address. Valid values: ip, fqdn.
address String: Address or address group of the real server.
domain String: Wildcard domain name of the real server.
externalAuth String: Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
healthCheck String: Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
healthCheckProto String: Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
holddownInterval String: Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
httpHost String: HTTP server domain name in HTTP header.
id Integer: Real server ID.
ip String: IPv6 address of the real server.
mappedport String: Port for communicating with the real server.
port Integer: Port for communicating with the real server.
sshClientCert String: Set access-proxy SSH client certificate profile.
sshHostKeyValidation String: Enable/disable SSH real server host key validation. Valid values: disable, enable.
sshHostKeys List<AccessproxyApiGatewayRealserverSshHostKey>: One or more server host key. The structure of ssh_host_key block is documented below.
status String: Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
translateHost String: Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
tunnelEncryption String: Tunnel encryption. Valid values: enable, disable.
type String: TCP forwarding server type. Valid values: tcp-forwarding, ssh.
weight Integer: Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.

addrType string: Type of address. Valid values: ip, fqdn.
address string: Address or address group of the real server.
domain string: Wildcard domain name of the real server.
externalAuth string: Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
healthCheck string: Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
healthCheckProto string: Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
holddownInterval string: Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
httpHost string: HTTP server domain name in HTTP header.
id number: Real server ID.
ip string: IPv6 address of the real server.
mappedport string: Port for communicating with the real server.
port number: Port for communicating with the real server.
sshClientCert string: Set access-proxy SSH client certificate profile.
sshHostKeyValidation string: Enable/disable SSH real server host key validation. Valid values: disable, enable.
sshHostKeys AccessproxyApiGatewayRealserverSshHostKey[]: One or more server host key. The structure of ssh_host_key block is documented below.
status string: Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
translateHost string: Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
tunnelEncryption string: Tunnel encryption. Valid values: enable, disable.
type string: TCP forwarding server type. Valid values: tcp-forwarding, ssh.
weight number: Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.

addr_type str: Type of address. Valid values: ip, fqdn.
address str: Address or address group of the real server.
domain str: Wildcard domain name of the real server.
external_auth str: Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
health_check str: Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
health_check_proto str: Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
holddown_interval str: Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
http_host str: HTTP server domain name in HTTP header.
id int: Real server ID.
ip str: IPv6 address of the real server.
mappedport str: Port for communicating with the real server.
port int: Port for communicating with the real server.
ssh_client_cert str: Set access-proxy SSH client certificate profile.
ssh_host_key_validation str: Enable/disable SSH real server host key validation. Valid values: disable, enable.
ssh_host_keys Sequence[AccessproxyApiGatewayRealserverSshHostKey]: One or more server host key. The structure of ssh_host_key block is documented below.
status str: Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
translate_host str: Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
tunnel_encryption str: Tunnel encryption. Valid values: enable, disable.
type str: TCP forwarding server type. Valid values: tcp-forwarding, ssh.
weight int: Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.

addrType String: Type of address. Valid values: ip, fqdn.
address String: Address or address group of the real server.
domain String: Wildcard domain name of the real server.
externalAuth String: Enable/disable use of external browser as user-agent for SAML user authentication. Valid values: enable, disable.
healthCheck String: Enable to check the responsiveness of the real server before forwarding traffic. Valid values: disable, enable.
healthCheckProto String: Protocol of the health check monitor to use when polling to determine server's connectivity status. Valid values: ping, http, tcp-connect.
holddownInterval String: Enable/disable holddown timer. Server will be considered active and reachable once the holddown period has expired (30 seconds). Valid values: enable, disable.
httpHost String: HTTP server domain name in HTTP header.
id Number: Real server ID.
ip String: IPv6 address of the real server.
mappedport String: Port for communicating with the real server.
port Number: Port for communicating with the real server.
sshClientCert String: Set access-proxy SSH client certificate profile.
sshHostKeyValidation String: Enable/disable SSH real server host key validation. Valid values: disable, enable.
sshHostKeys List<Property Map>: One or more server host key. The structure of ssh_host_key block is documented below.
status String: Set the status of the real server to active so that it can accept traffic, or on standby or disabled so no traffic is sent. Valid values: active, standby, disable.
translateHost String: Enable/disable translation of hostname/IP from virtual server to real server. Valid values: enable, disable.
tunnelEncryption String: Tunnel encryption. Valid values: enable, disable.
type String: TCP forwarding server type. Valid values: tcp-forwarding, ssh.
weight Number: Weight of the real server. If weighted load balancing is enabled, the server with the highest weight gets more connections.

AccessproxyApiGatewayRealserverSshHostKey, AccessproxyApiGatewayRealserverSshHostKeyArgs

Name string: Server host key name.

Name string: Server host key name.

name String: Server host key name.

name string: Server host key name.

name str: Server host key name.

name String: Server host key name.

AccessproxyApiGatewaySslCipherSuite, AccessproxyApiGatewaySslCipherSuiteArgs

Cipher string: Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
Priority int: SSL/TLS cipher suites priority.
Versions string: SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.

Cipher string: Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
Priority int: SSL/TLS cipher suites priority.
Versions string: SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.

cipher String: Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
priority Integer: SSL/TLS cipher suites priority.
versions String: SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.

cipher string: Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
priority number: SSL/TLS cipher suites priority.
versions string: SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.

cipher str: Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
priority int: SSL/TLS cipher suites priority.
versions str: SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.

cipher String: Cipher suite name. Valid values: TLS-AES-128-GCM-SHA256, TLS-AES-256-GCM-SHA384, TLS-CHACHA20-POLY1305-SHA256, TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256, TLS-DHE-RSA-WITH-AES-128-CBC-SHA, TLS-DHE-RSA-WITH-AES-256-CBC-SHA, TLS-DHE-RSA-WITH-AES-128-CBC-SHA256, TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, TLS-DHE-RSA-WITH-AES-256-GCM-SHA384, TLS-DHE-DSS-WITH-AES-128-CBC-SHA, TLS-DHE-DSS-WITH-AES-256-CBC-SHA, TLS-DHE-DSS-WITH-AES-128-CBC-SHA256, TLS-DHE-DSS-WITH-AES-128-GCM-SHA256, TLS-DHE-DSS-WITH-AES-256-CBC-SHA256, TLS-DHE-DSS-WITH-AES-256-GCM-SHA384, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA, TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-AES-128-CBC-SHA, TLS-RSA-WITH-AES-256-CBC-SHA, TLS-RSA-WITH-AES-128-CBC-SHA256, TLS-RSA-WITH-AES-128-GCM-SHA256, TLS-RSA-WITH-AES-256-CBC-SHA256, TLS-RSA-WITH-AES-256-GCM-SHA384, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA, TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-DSS-WITH-CAMELLIA-256-CBC-SHA256, TLS-DHE-RSA-WITH-SEED-CBC-SHA, TLS-DHE-DSS-WITH-SEED-CBC-SHA, TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-DHE-DSS-WITH-ARIA-128-CBC-SHA256, TLS-DHE-DSS-WITH-ARIA-256-CBC-SHA384, TLS-RSA-WITH-SEED-CBC-SHA, TLS-RSA-WITH-ARIA-128-CBC-SHA256, TLS-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256, TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384, TLS-ECDHE-RSA-WITH-RC4-128-SHA, TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA, TLS-DHE-DSS-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-3DES-EDE-CBC-SHA, TLS-RSA-WITH-RC4-128-MD5, TLS-RSA-WITH-RC4-128-SHA, TLS-DHE-RSA-WITH-DES-CBC-SHA, TLS-DHE-DSS-WITH-DES-CBC-SHA, TLS-RSA-WITH-DES-CBC-SHA.
priority Number: SSL/TLS cipher suites priority.
versions String: SSL/TLS versions that the cipher suite can be used with. Valid values: tls-1.0, tls-1.1, tls-1.2, tls-1.3.

Import

Firewall AccessProxy can be imported using any of these accepted formats:

$ pulumi import fortios:firewall/accessproxy:Accessproxy labelname {{name}}

If you do not want to import arguments of block:

$ export “FORTIOS_IMPORT_TABLE”=“false”

$ pulumi import fortios:firewall/accessproxy:Accessproxy labelname {{name}}

$ unset “FORTIOS_IMPORT_TABLE”

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: fortios pulumiverse/pulumi-fortios
License: Apache-2.0
Notes: This Pulumi package is based on the fortios Terraform Provider.

Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse

pulumiverse/pulumi-fortios

fortios.firewall.Accessproxy

On this page

On this page

Create Accessproxy Resource

Constructor syntax

Parameters

Constructor example

Accessproxy Resource Properties

Inputs

Outputs

Look up Existing Accessproxy Resource

Supporting Types

AccessproxyApiGateway, AccessproxyApiGatewayArgs

AccessproxyApiGateway6, AccessproxyApiGateway6Args

AccessproxyApiGateway6Application, AccessproxyApiGateway6ApplicationArgs

AccessproxyApiGateway6Quic, AccessproxyApiGateway6QuicArgs

AccessproxyApiGateway6Realserver, AccessproxyApiGateway6RealserverArgs

AccessproxyApiGateway6RealserverSshHostKey, AccessproxyApiGateway6RealserverSshHostKeyArgs

AccessproxyApiGateway6SslCipherSuite, AccessproxyApiGateway6SslCipherSuiteArgs

AccessproxyApiGatewayApplication, AccessproxyApiGatewayApplicationArgs

AccessproxyApiGatewayQuic, AccessproxyApiGatewayQuicArgs

AccessproxyApiGatewayRealserver, AccessproxyApiGatewayRealserverArgs

AccessproxyApiGatewayRealserverSshHostKey, AccessproxyApiGatewayRealserverSshHostKeyArgs

AccessproxyApiGatewaySslCipherSuite, AccessproxyApiGatewaySslCipherSuiteArgs

Import

Package Details

On this page

On this page