1. Packages
  2. Fortios
  3. API Docs
  4. system
  5. Interface
Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse

fortios.system.Interface

Explore with Pulumi AI

fortios logo
Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse

    Configure interfaces.

    Example Usage

    import * as pulumi from "@pulumi/pulumi";
    import * as fortios from "@pulumiverse/fortios";
    
    const trname = new fortios.system.Interface("trname", {
        algorithm: "L4",
        defaultgw: "enable",
        description: "Created by Terraform Provider for FortiOS",
        distance: 5,
        ip: "0.0.0.0 0.0.0.0",
        ipv6: {
            ndMode: "basic",
        },
        mode: "dhcp",
        mtu: 1500,
        mtuOverride: "disable",
        snmpIndex: 3,
        type: "physical",
        vdom: "root",
    });
    
    import pulumi
    import pulumiverse_fortios as fortios
    
    trname = fortios.system.Interface("trname",
        algorithm="L4",
        defaultgw="enable",
        description="Created by Terraform Provider for FortiOS",
        distance=5,
        ip="0.0.0.0 0.0.0.0",
        ipv6=fortios.system.InterfaceIpv6Args(
            nd_mode="basic",
        ),
        mode="dhcp",
        mtu=1500,
        mtu_override="disable",
        snmp_index=3,
        type="physical",
        vdom="root")
    
    package main
    
    import (
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    	"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/system"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		_, err := system.NewInterface(ctx, "trname", &system.InterfaceArgs{
    			Algorithm:   pulumi.String("L4"),
    			Defaultgw:   pulumi.String("enable"),
    			Description: pulumi.String("Created by Terraform Provider for FortiOS"),
    			Distance:    pulumi.Int(5),
    			Ip:          pulumi.String("0.0.0.0 0.0.0.0"),
    			Ipv6: &system.InterfaceIpv6Args{
    				NdMode: pulumi.String("basic"),
    			},
    			Mode:        pulumi.String("dhcp"),
    			Mtu:         pulumi.Int(1500),
    			MtuOverride: pulumi.String("disable"),
    			SnmpIndex:   pulumi.Int(3),
    			Type:        pulumi.String("physical"),
    			Vdom:        pulumi.String("root"),
    		})
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Fortios = Pulumiverse.Fortios;
    
    return await Deployment.RunAsync(() => 
    {
        var trname = new Fortios.System.Interface("trname", new()
        {
            Algorithm = "L4",
            Defaultgw = "enable",
            Description = "Created by Terraform Provider for FortiOS",
            Distance = 5,
            Ip = "0.0.0.0 0.0.0.0",
            Ipv6 = new Fortios.System.Inputs.InterfaceIpv6Args
            {
                NdMode = "basic",
            },
            Mode = "dhcp",
            Mtu = 1500,
            MtuOverride = "disable",
            SnmpIndex = 3,
            Type = "physical",
            Vdom = "root",
        });
    
    });
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.fortios.system.Interface;
    import com.pulumi.fortios.system.InterfaceArgs;
    import com.pulumi.fortios.system.inputs.InterfaceIpv6Args;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var trname = new Interface("trname", InterfaceArgs.builder()
                .algorithm("L4")
                .defaultgw("enable")
                .description("Created by Terraform Provider for FortiOS")
                .distance(5)
                .ip("0.0.0.0 0.0.0.0")
                .ipv6(InterfaceIpv6Args.builder()
                    .ndMode("basic")
                    .build())
                .mode("dhcp")
                .mtu(1500)
                .mtuOverride("disable")
                .snmpIndex(3)
                .type("physical")
                .vdom("root")
                .build());
    
        }
    }
    
    resources:
      trname:
        type: fortios:system:Interface
        properties:
          algorithm: L4
          defaultgw: enable
          description: Created by Terraform Provider for FortiOS
          distance: 5
          ip: 0.0.0.0 0.0.0.0
          ipv6:
            ndMode: basic
          mode: dhcp
          mtu: 1500
          mtuOverride: disable
          snmpIndex: 3
          type: physical
          vdom: root
    

    Create Interface Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new Interface(name: string, args: InterfaceArgs, opts?: CustomResourceOptions);
    @overload
    def Interface(resource_name: str,
                  args: InterfaceArgs,
                  opts: Optional[ResourceOptions] = None)
    
    @overload
    def Interface(resource_name: str,
                  opts: Optional[ResourceOptions] = None,
                  vdom: Optional[str] = None,
                  ac_name: Optional[str] = None,
                  aggregate: Optional[str] = None,
                  aggregate_type: Optional[str] = None,
                  algorithm: Optional[str] = None,
                  alias: Optional[str] = None,
                  allowaccess: Optional[str] = None,
                  ap_discover: Optional[str] = None,
                  arpforward: Optional[str] = None,
                  auth_cert: Optional[str] = None,
                  auth_portal_addr: Optional[str] = None,
                  auth_type: Optional[str] = None,
                  auto_auth_extension_device: Optional[str] = None,
                  autogenerated: Optional[str] = None,
                  bandwidth_measure_time: Optional[int] = None,
                  bfd: Optional[str] = None,
                  bfd_desired_min_tx: Optional[int] = None,
                  bfd_detect_mult: Optional[int] = None,
                  bfd_required_min_rx: Optional[int] = None,
                  broadcast_forticlient_discovery: Optional[str] = None,
                  broadcast_forward: Optional[str] = None,
                  captive_portal: Optional[int] = None,
                  cli_conn_status: Optional[int] = None,
                  client_options: Optional[Sequence[InterfaceClientOptionArgs]] = None,
                  color: Optional[int] = None,
                  dedicated_to: Optional[str] = None,
                  default_purdue_level: Optional[str] = None,
                  defaultgw: Optional[str] = None,
                  description: Optional[str] = None,
                  detected_peer_mtu: Optional[int] = None,
                  detectprotocol: Optional[str] = None,
                  detectserver: Optional[str] = None,
                  device_access_list: Optional[str] = None,
                  device_identification: Optional[str] = None,
                  device_identification_active_scan: Optional[str] = None,
                  device_netscan: Optional[str] = None,
                  device_user_identification: Optional[str] = None,
                  devindex: Optional[int] = None,
                  dhcp_broadcast_flag: Optional[str] = None,
                  dhcp_classless_route_addition: Optional[str] = None,
                  dhcp_client_identifier: Optional[str] = None,
                  dhcp_relay_agent_option: Optional[str] = None,
                  dhcp_relay_allow_no_end_option: Optional[str] = None,
                  dhcp_relay_circuit_id: Optional[str] = None,
                  dhcp_relay_interface: Optional[str] = None,
                  dhcp_relay_interface_select_method: Optional[str] = None,
                  dhcp_relay_ip: Optional[str] = None,
                  dhcp_relay_link_selection: Optional[str] = None,
                  dhcp_relay_request_all_server: Optional[str] = None,
                  dhcp_relay_service: Optional[str] = None,
                  dhcp_relay_source_ip: Optional[str] = None,
                  dhcp_relay_type: Optional[str] = None,
                  dhcp_renew_time: Optional[int] = None,
                  dhcp_smart_relay: Optional[str] = None,
                  dhcp_snooping_server_lists: Optional[Sequence[InterfaceDhcpSnoopingServerListArgs]] = None,
                  disc_retry_timeout: Optional[int] = None,
                  disconnect_threshold: Optional[int] = None,
                  distance: Optional[int] = None,
                  dns_server_override: Optional[str] = None,
                  dns_server_protocol: Optional[str] = None,
                  drop_fragment: Optional[str] = None,
                  drop_overlapped_fragment: Optional[str] = None,
                  dynamic_sort_subtable: Optional[str] = None,
                  eap_ca_cert: Optional[str] = None,
                  eap_identity: Optional[str] = None,
                  eap_method: Optional[str] = None,
                  eap_password: Optional[str] = None,
                  eap_supplicant: Optional[str] = None,
                  eap_user_cert: Optional[str] = None,
                  egress_shaping_profile: Optional[str] = None,
                  endpoint_compliance: Optional[str] = None,
                  estimated_downstream_bandwidth: Optional[int] = None,
                  estimated_upstream_bandwidth: Optional[int] = None,
                  explicit_ftp_proxy: Optional[str] = None,
                  explicit_web_proxy: Optional[str] = None,
                  external: Optional[str] = None,
                  fail_action_on_extender: Optional[str] = None,
                  fail_alert_interfaces: Optional[Sequence[InterfaceFailAlertInterfaceArgs]] = None,
                  fail_alert_method: Optional[str] = None,
                  fail_detect: Optional[str] = None,
                  fail_detect_option: Optional[str] = None,
                  fortiheartbeat: Optional[str] = None,
                  fortilink: Optional[str] = None,
                  fortilink_backup_link: Optional[int] = None,
                  fortilink_neighbor_detect: Optional[str] = None,
                  fortilink_split_interface: Optional[str] = None,
                  fortilink_stacking: Optional[str] = None,
                  forward_domain: Optional[int] = None,
                  forward_error_correction: Optional[str] = None,
                  get_all_tables: Optional[str] = None,
                  gwdetect: Optional[str] = None,
                  ha_priority: Optional[int] = None,
                  icmp_accept_redirect: Optional[str] = None,
                  icmp_send_redirect: Optional[str] = None,
                  ident_accept: Optional[str] = None,
                  idle_timeout: Optional[int] = None,
                  ike_saml_server: Optional[str] = None,
                  inbandwidth: Optional[int] = None,
                  ingress_shaping_profile: Optional[str] = None,
                  ingress_spillover_threshold: Optional[int] = None,
                  interface: Optional[str] = None,
                  internal: Optional[int] = None,
                  ip: Optional[str] = None,
                  ip_managed_by_fortiipam: Optional[str] = None,
                  ipmac: Optional[str] = None,
                  ips_sniffer_mode: Optional[str] = None,
                  ipunnumbered: Optional[str] = None,
                  ipv6: Optional[InterfaceIpv6Args] = None,
                  l2forward: Optional[str] = None,
                  lacp_ha_secondary: Optional[str] = None,
                  lacp_ha_slave: Optional[str] = None,
                  lacp_mode: Optional[str] = None,
                  lacp_speed: Optional[str] = None,
                  lcp_echo_interval: Optional[int] = None,
                  lcp_max_echo_fails: Optional[int] = None,
                  link_up_delay: Optional[int] = None,
                  lldp_network_policy: Optional[str] = None,
                  lldp_reception: Optional[str] = None,
                  lldp_transmission: Optional[str] = None,
                  macaddr: Optional[str] = None,
                  managed_devices: Optional[Sequence[InterfaceManagedDeviceArgs]] = None,
                  managed_subnetwork_size: Optional[str] = None,
                  management_ip: Optional[str] = None,
                  measured_downstream_bandwidth: Optional[int] = None,
                  measured_upstream_bandwidth: Optional[int] = None,
                  mediatype: Optional[str] = None,
                  members: Optional[Sequence[InterfaceMemberArgs]] = None,
                  min_links: Optional[int] = None,
                  min_links_down: Optional[str] = None,
                  mode: Optional[str] = None,
                  monitor_bandwidth: Optional[str] = None,
                  mtu: Optional[int] = None,
                  mtu_override: Optional[str] = None,
                  name: Optional[str] = None,
                  ndiscforward: Optional[str] = None,
                  netbios_forward: Optional[str] = None,
                  netflow_sampler: Optional[str] = None,
                  outbandwidth: Optional[int] = None,
                  padt_retry_timeout: Optional[int] = None,
                  password: Optional[str] = None,
                  ping_serv_status: Optional[int] = None,
                  polling_interval: Optional[int] = None,
                  pppoe_unnumbered_negotiate: Optional[str] = None,
                  pptp_auth_type: Optional[str] = None,
                  pptp_client: Optional[str] = None,
                  pptp_password: Optional[str] = None,
                  pptp_server_ip: Optional[str] = None,
                  pptp_timeout: Optional[int] = None,
                  pptp_user: Optional[str] = None,
                  preserve_session_route: Optional[str] = None,
                  priority: Optional[int] = None,
                  priority_override: Optional[str] = None,
                  proxy_captive_portal: Optional[str] = None,
                  reachable_time: Optional[int] = None,
                  redundant_interface: Optional[str] = None,
                  remote_ip: Optional[str] = None,
                  replacemsg_override_group: Optional[str] = None,
                  ring_rx: Optional[int] = None,
                  ring_tx: Optional[int] = None,
                  role: Optional[str] = None,
                  sample_direction: Optional[str] = None,
                  sample_rate: Optional[int] = None,
                  scan_botnet_connections: Optional[str] = None,
                  secondary_ip: Optional[str] = None,
                  secondaryips: Optional[Sequence[InterfaceSecondaryipArgs]] = None,
                  security_exempt_list: Optional[str] = None,
                  security_external_logout: Optional[str] = None,
                  security_external_web: Optional[str] = None,
                  security_groups: Optional[Sequence[InterfaceSecurityGroupArgs]] = None,
                  security_mac_auth_bypass: Optional[str] = None,
                  security_mode: Optional[str] = None,
                  security_redirect_url: Optional[str] = None,
                  service_name: Optional[str] = None,
                  sflow_sampler: Optional[str] = None,
                  snmp_index: Optional[int] = None,
                  speed: Optional[str] = None,
                  spillover_threshold: Optional[int] = None,
                  src_check: Optional[str] = None,
                  status: Optional[str] = None,
                  stp: Optional[str] = None,
                  stp_ha_secondary: Optional[str] = None,
                  stpforward: Optional[str] = None,
                  stpforward_mode: Optional[str] = None,
                  subst: Optional[str] = None,
                  substitute_dst_mac: Optional[str] = None,
                  swc_first_create: Optional[int] = None,
                  swc_vlan: Optional[int] = None,
                  switch: Optional[str] = None,
                  switch_controller_access_vlan: Optional[str] = None,
                  switch_controller_arp_inspection: Optional[str] = None,
                  switch_controller_dhcp_snooping: Optional[str] = None,
                  switch_controller_dhcp_snooping_option82: Optional[str] = None,
                  switch_controller_dhcp_snooping_verify_mac: Optional[str] = None,
                  switch_controller_dynamic: Optional[str] = None,
                  switch_controller_feature: Optional[str] = None,
                  switch_controller_igmp_snooping: Optional[str] = None,
                  switch_controller_igmp_snooping_fast_leave: Optional[str] = None,
                  switch_controller_igmp_snooping_proxy: Optional[str] = None,
                  switch_controller_iot_scanning: Optional[str] = None,
                  switch_controller_learning_limit: Optional[int] = None,
                  switch_controller_mgmt_vlan: Optional[int] = None,
                  switch_controller_nac: Optional[str] = None,
                  switch_controller_netflow_collect: Optional[str] = None,
                  switch_controller_offload: Optional[str] = None,
                  switch_controller_offload_gw: Optional[str] = None,
                  switch_controller_offload_ip: Optional[str] = None,
                  switch_controller_rspan_mode: Optional[str] = None,
                  switch_controller_source_ip: Optional[str] = None,
                  switch_controller_traffic_policy: Optional[str] = None,
                  system_id: Optional[str] = None,
                  system_id_type: Optional[str] = None,
                  taggings: Optional[Sequence[InterfaceTaggingArgs]] = None,
                  tcp_mss: Optional[int] = None,
                  trunk: Optional[str] = None,
                  trust_ip1: Optional[str] = None,
                  trust_ip2: Optional[str] = None,
                  trust_ip3: Optional[str] = None,
                  trust_ip61: Optional[str] = None,
                  trust_ip62: Optional[str] = None,
                  trust_ip63: Optional[str] = None,
                  type: Optional[str] = None,
                  username: Optional[str] = None,
                  vdomparam: Optional[str] = None,
                  vindex: Optional[int] = None,
                  vlan_protocol: Optional[str] = None,
                  vlanforward: Optional[str] = None,
                  vlanid: Optional[int] = None,
                  vrf: Optional[int] = None,
                  vrrp_virtual_mac: Optional[str] = None,
                  vrrps: Optional[Sequence[InterfaceVrrpArgs]] = None,
                  wccp: Optional[str] = None,
                  weight: Optional[int] = None,
                  wins_ip: Optional[str] = None)
    func NewInterface(ctx *Context, name string, args InterfaceArgs, opts ...ResourceOption) (*Interface, error)
    public Interface(string name, InterfaceArgs args, CustomResourceOptions? opts = null)
    public Interface(String name, InterfaceArgs args)
    public Interface(String name, InterfaceArgs args, CustomResourceOptions options)
    
    type: fortios:system:Interface
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args InterfaceArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args InterfaceArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args InterfaceArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args InterfaceArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args InterfaceArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var interfaceResource = new Fortios.System.Interface("interfaceResource", new()
    {
        Vdom = "string",
        AcName = "string",
        Aggregate = "string",
        AggregateType = "string",
        Algorithm = "string",
        Alias = "string",
        Allowaccess = "string",
        ApDiscover = "string",
        Arpforward = "string",
        AuthCert = "string",
        AuthPortalAddr = "string",
        AuthType = "string",
        AutoAuthExtensionDevice = "string",
        Autogenerated = "string",
        BandwidthMeasureTime = 0,
        Bfd = "string",
        BfdDesiredMinTx = 0,
        BfdDetectMult = 0,
        BfdRequiredMinRx = 0,
        BroadcastForticlientDiscovery = "string",
        BroadcastForward = "string",
        CaptivePortal = 0,
        CliConnStatus = 0,
        ClientOptions = new[]
        {
            new Fortios.System.Inputs.InterfaceClientOptionArgs
            {
                Code = 0,
                Id = 0,
                Ip = "string",
                Type = "string",
                Value = "string",
            },
        },
        Color = 0,
        DedicatedTo = "string",
        DefaultPurdueLevel = "string",
        Defaultgw = "string",
        Description = "string",
        DetectedPeerMtu = 0,
        Detectprotocol = "string",
        Detectserver = "string",
        DeviceAccessList = "string",
        DeviceIdentification = "string",
        DeviceIdentificationActiveScan = "string",
        DeviceNetscan = "string",
        DeviceUserIdentification = "string",
        Devindex = 0,
        DhcpBroadcastFlag = "string",
        DhcpClasslessRouteAddition = "string",
        DhcpClientIdentifier = "string",
        DhcpRelayAgentOption = "string",
        DhcpRelayAllowNoEndOption = "string",
        DhcpRelayCircuitId = "string",
        DhcpRelayInterface = "string",
        DhcpRelayInterfaceSelectMethod = "string",
        DhcpRelayIp = "string",
        DhcpRelayLinkSelection = "string",
        DhcpRelayRequestAllServer = "string",
        DhcpRelayService = "string",
        DhcpRelaySourceIp = "string",
        DhcpRelayType = "string",
        DhcpRenewTime = 0,
        DhcpSmartRelay = "string",
        DhcpSnoopingServerLists = new[]
        {
            new Fortios.System.Inputs.InterfaceDhcpSnoopingServerListArgs
            {
                Name = "string",
                ServerIp = "string",
            },
        },
        DiscRetryTimeout = 0,
        DisconnectThreshold = 0,
        Distance = 0,
        DnsServerOverride = "string",
        DnsServerProtocol = "string",
        DropFragment = "string",
        DropOverlappedFragment = "string",
        DynamicSortSubtable = "string",
        EapCaCert = "string",
        EapIdentity = "string",
        EapMethod = "string",
        EapPassword = "string",
        EapSupplicant = "string",
        EapUserCert = "string",
        EgressShapingProfile = "string",
        EndpointCompliance = "string",
        EstimatedDownstreamBandwidth = 0,
        EstimatedUpstreamBandwidth = 0,
        ExplicitFtpProxy = "string",
        ExplicitWebProxy = "string",
        External = "string",
        FailActionOnExtender = "string",
        FailAlertInterfaces = new[]
        {
            new Fortios.System.Inputs.InterfaceFailAlertInterfaceArgs
            {
                Name = "string",
            },
        },
        FailAlertMethod = "string",
        FailDetect = "string",
        FailDetectOption = "string",
        Fortiheartbeat = "string",
        Fortilink = "string",
        FortilinkBackupLink = 0,
        FortilinkNeighborDetect = "string",
        FortilinkSplitInterface = "string",
        FortilinkStacking = "string",
        ForwardDomain = 0,
        ForwardErrorCorrection = "string",
        GetAllTables = "string",
        Gwdetect = "string",
        HaPriority = 0,
        IcmpAcceptRedirect = "string",
        IcmpSendRedirect = "string",
        IdentAccept = "string",
        IdleTimeout = 0,
        IkeSamlServer = "string",
        Inbandwidth = 0,
        IngressShapingProfile = "string",
        IngressSpilloverThreshold = 0,
        Data = "string",
        Internal = 0,
        Ip = "string",
        IpManagedByFortiipam = "string",
        Ipmac = "string",
        IpsSnifferMode = "string",
        Ipunnumbered = "string",
        Ipv6 = new Fortios.System.Inputs.InterfaceIpv6Args
        {
            Autoconf = "string",
            CliConn6Status = 0,
            Dhcp6ClientOptions = "string",
            Dhcp6IapdLists = new[]
            {
                new Fortios.System.Inputs.InterfaceIpv6Dhcp6IapdListArgs
                {
                    Iaid = 0,
                    PrefixHint = "string",
                    PrefixHintPlt = 0,
                    PrefixHintVlt = 0,
                },
            },
            Dhcp6InformationRequest = "string",
            Dhcp6PrefixDelegation = "string",
            Dhcp6PrefixHint = "string",
            Dhcp6PrefixHintPlt = 0,
            Dhcp6PrefixHintVlt = 0,
            Dhcp6RelayInterfaceId = "string",
            Dhcp6RelayIp = "string",
            Dhcp6RelayService = "string",
            Dhcp6RelaySourceInterface = "string",
            Dhcp6RelaySourceIp = "string",
            Dhcp6RelayType = "string",
            Icmp6SendRedirect = "string",
            InterfaceIdentifier = "string",
            Ip6Address = "string",
            Ip6Allowaccess = "string",
            Ip6DefaultLife = 0,
            Ip6DelegatedPrefixIaid = 0,
            Ip6DelegatedPrefixLists = new[]
            {
                new Fortios.System.Inputs.InterfaceIpv6Ip6DelegatedPrefixListArgs
                {
                    AutonomousFlag = "string",
                    DelegatedPrefixIaid = 0,
                    OnlinkFlag = "string",
                    PrefixId = 0,
                    Rdnss = "string",
                    RdnssService = "string",
                    Subnet = "string",
                    UpstreamInterface = "string",
                },
            },
            Ip6DnsServerOverride = "string",
            Ip6ExtraAddrs = new[]
            {
                new Fortios.System.Inputs.InterfaceIpv6Ip6ExtraAddrArgs
                {
                    Prefix = "string",
                },
            },
            Ip6HopLimit = 0,
            Ip6LinkMtu = 0,
            Ip6ManageFlag = "string",
            Ip6MaxInterval = 0,
            Ip6MinInterval = 0,
            Ip6Mode = "string",
            Ip6OtherFlag = "string",
            Ip6PrefixLists = new[]
            {
                new Fortios.System.Inputs.InterfaceIpv6Ip6PrefixListArgs
                {
                    AutonomousFlag = "string",
                    Dnssls = new[]
                    {
                        new Fortios.System.Inputs.InterfaceIpv6Ip6PrefixListDnsslArgs
                        {
                            Domain = "string",
                        },
                    },
                    OnlinkFlag = "string",
                    PreferredLifeTime = 0,
                    Prefix = "string",
                    Rdnss = "string",
                    ValidLifeTime = 0,
                },
            },
            Ip6PrefixMode = "string",
            Ip6ReachableTime = 0,
            Ip6RetransTime = 0,
            Ip6SendAdv = "string",
            Ip6Subnet = "string",
            Ip6UpstreamInterface = "string",
            NdCert = "string",
            NdCgaModifier = "string",
            NdMode = "string",
            NdSecurityLevel = 0,
            NdTimestampDelta = 0,
            NdTimestampFuzz = 0,
            RaSendMtu = "string",
            UniqueAutoconfAddr = "string",
            Vrip6LinkLocal = "string",
            Vrrp6s = new[]
            {
                new Fortios.System.Inputs.InterfaceIpv6Vrrp6Args
                {
                    AcceptMode = "string",
                    AdvInterval = 0,
                    IgnoreDefaultRoute = "string",
                    Preempt = "string",
                    Priority = 0,
                    StartTime = 0,
                    Status = "string",
                    Vrdst6 = "string",
                    Vrgrp = 0,
                    Vrid = 0,
                    Vrip6 = "string",
                },
            },
            VrrpVirtualMac6 = "string",
        },
        L2forward = "string",
        LacpHaSecondary = "string",
        LacpHaSlave = "string",
        LacpMode = "string",
        LacpSpeed = "string",
        LcpEchoInterval = 0,
        LcpMaxEchoFails = 0,
        LinkUpDelay = 0,
        LldpNetworkPolicy = "string",
        LldpReception = "string",
        LldpTransmission = "string",
        Macaddr = "string",
        ManagedDevices = new[]
        {
            new Fortios.System.Inputs.InterfaceManagedDeviceArgs
            {
                Name = "string",
            },
        },
        ManagedSubnetworkSize = "string",
        ManagementIp = "string",
        MeasuredDownstreamBandwidth = 0,
        MeasuredUpstreamBandwidth = 0,
        Mediatype = "string",
        Members = new[]
        {
            new Fortios.System.Inputs.InterfaceMemberArgs
            {
                InterfaceName = "string",
            },
        },
        MinLinks = 0,
        MinLinksDown = "string",
        Mode = "string",
        MonitorBandwidth = "string",
        Mtu = 0,
        MtuOverride = "string",
        Name = "string",
        Ndiscforward = "string",
        NetbiosForward = "string",
        NetflowSampler = "string",
        Outbandwidth = 0,
        PadtRetryTimeout = 0,
        Password = "string",
        PingServStatus = 0,
        PollingInterval = 0,
        PppoeUnnumberedNegotiate = "string",
        PptpAuthType = "string",
        PptpClient = "string",
        PptpPassword = "string",
        PptpServerIp = "string",
        PptpTimeout = 0,
        PptpUser = "string",
        PreserveSessionRoute = "string",
        Priority = 0,
        PriorityOverride = "string",
        ProxyCaptivePortal = "string",
        ReachableTime = 0,
        RedundantInterface = "string",
        RemoteIp = "string",
        ReplacemsgOverrideGroup = "string",
        RingRx = 0,
        RingTx = 0,
        Role = "string",
        SampleDirection = "string",
        SampleRate = 0,
        ScanBotnetConnections = "string",
        SecondaryIp = "string",
        Secondaryips = new[]
        {
            new Fortios.System.Inputs.InterfaceSecondaryipArgs
            {
                Allowaccess = "string",
                Detectprotocol = "string",
                Detectserver = "string",
                Gwdetect = "string",
                HaPriority = 0,
                Id = 0,
                Ip = "string",
                PingServStatus = 0,
                SecipRelayIp = "string",
            },
        },
        SecurityExemptList = "string",
        SecurityExternalLogout = "string",
        SecurityExternalWeb = "string",
        SecurityGroups = new[]
        {
            new Fortios.System.Inputs.InterfaceSecurityGroupArgs
            {
                Name = "string",
            },
        },
        SecurityMacAuthBypass = "string",
        SecurityMode = "string",
        SecurityRedirectUrl = "string",
        ServiceName = "string",
        SflowSampler = "string",
        SnmpIndex = 0,
        Speed = "string",
        SpilloverThreshold = 0,
        SrcCheck = "string",
        Status = "string",
        Stp = "string",
        StpHaSecondary = "string",
        Stpforward = "string",
        StpforwardMode = "string",
        Subst = "string",
        SubstituteDstMac = "string",
        SwcFirstCreate = 0,
        SwcVlan = 0,
        Switch = "string",
        SwitchControllerAccessVlan = "string",
        SwitchControllerArpInspection = "string",
        SwitchControllerDhcpSnooping = "string",
        SwitchControllerDhcpSnoopingOption82 = "string",
        SwitchControllerDhcpSnoopingVerifyMac = "string",
        SwitchControllerDynamic = "string",
        SwitchControllerFeature = "string",
        SwitchControllerIgmpSnooping = "string",
        SwitchControllerIgmpSnoopingFastLeave = "string",
        SwitchControllerIgmpSnoopingProxy = "string",
        SwitchControllerIotScanning = "string",
        SwitchControllerLearningLimit = 0,
        SwitchControllerMgmtVlan = 0,
        SwitchControllerNac = "string",
        SwitchControllerNetflowCollect = "string",
        SwitchControllerOffload = "string",
        SwitchControllerOffloadGw = "string",
        SwitchControllerOffloadIp = "string",
        SwitchControllerRspanMode = "string",
        SwitchControllerSourceIp = "string",
        SwitchControllerTrafficPolicy = "string",
        SystemId = "string",
        SystemIdType = "string",
        Taggings = new[]
        {
            new Fortios.System.Inputs.InterfaceTaggingArgs
            {
                Category = "string",
                Name = "string",
                Tags = new[]
                {
                    new Fortios.System.Inputs.InterfaceTaggingTagArgs
                    {
                        Name = "string",
                    },
                },
            },
        },
        TcpMss = 0,
        Trunk = "string",
        TrustIp1 = "string",
        TrustIp2 = "string",
        TrustIp3 = "string",
        TrustIp61 = "string",
        TrustIp62 = "string",
        TrustIp63 = "string",
        Type = "string",
        Username = "string",
        Vdomparam = "string",
        Vindex = 0,
        VlanProtocol = "string",
        Vlanforward = "string",
        Vlanid = 0,
        Vrf = 0,
        VrrpVirtualMac = "string",
        Vrrps = new[]
        {
            new Fortios.System.Inputs.InterfaceVrrpArgs
            {
                AcceptMode = "string",
                AdvInterval = 0,
                IgnoreDefaultRoute = "string",
                Preempt = "string",
                Priority = 0,
                ProxyArps = new[]
                {
                    new Fortios.System.Inputs.InterfaceVrrpProxyArpArgs
                    {
                        Id = 0,
                        Ip = "string",
                    },
                },
                StartTime = 0,
                Status = "string",
                Version = "string",
                Vrdst = "string",
                VrdstPriority = 0,
                Vrgrp = 0,
                Vrid = 0,
                Vrip = "string",
            },
        },
        Wccp = "string",
        Weight = 0,
        WinsIp = "string",
    });
    
    example, err := system.NewInterface(ctx, "interfaceResource", &system.InterfaceArgs{
    	Vdom:                          pulumi.String("string"),
    	AcName:                        pulumi.String("string"),
    	Aggregate:                     pulumi.String("string"),
    	AggregateType:                 pulumi.String("string"),
    	Algorithm:                     pulumi.String("string"),
    	Alias:                         pulumi.String("string"),
    	Allowaccess:                   pulumi.String("string"),
    	ApDiscover:                    pulumi.String("string"),
    	Arpforward:                    pulumi.String("string"),
    	AuthCert:                      pulumi.String("string"),
    	AuthPortalAddr:                pulumi.String("string"),
    	AuthType:                      pulumi.String("string"),
    	AutoAuthExtensionDevice:       pulumi.String("string"),
    	Autogenerated:                 pulumi.String("string"),
    	BandwidthMeasureTime:          pulumi.Int(0),
    	Bfd:                           pulumi.String("string"),
    	BfdDesiredMinTx:               pulumi.Int(0),
    	BfdDetectMult:                 pulumi.Int(0),
    	BfdRequiredMinRx:              pulumi.Int(0),
    	BroadcastForticlientDiscovery: pulumi.String("string"),
    	BroadcastForward:              pulumi.String("string"),
    	CaptivePortal:                 pulumi.Int(0),
    	CliConnStatus:                 pulumi.Int(0),
    	ClientOptions: system.InterfaceClientOptionArray{
    		&system.InterfaceClientOptionArgs{
    			Code:  pulumi.Int(0),
    			Id:    pulumi.Int(0),
    			Ip:    pulumi.String("string"),
    			Type:  pulumi.String("string"),
    			Value: pulumi.String("string"),
    		},
    	},
    	Color:                          pulumi.Int(0),
    	DedicatedTo:                    pulumi.String("string"),
    	DefaultPurdueLevel:             pulumi.String("string"),
    	Defaultgw:                      pulumi.String("string"),
    	Description:                    pulumi.String("string"),
    	DetectedPeerMtu:                pulumi.Int(0),
    	Detectprotocol:                 pulumi.String("string"),
    	Detectserver:                   pulumi.String("string"),
    	DeviceAccessList:               pulumi.String("string"),
    	DeviceIdentification:           pulumi.String("string"),
    	DeviceIdentificationActiveScan: pulumi.String("string"),
    	DeviceNetscan:                  pulumi.String("string"),
    	DeviceUserIdentification:       pulumi.String("string"),
    	Devindex:                       pulumi.Int(0),
    	DhcpBroadcastFlag:              pulumi.String("string"),
    	DhcpClasslessRouteAddition:     pulumi.String("string"),
    	DhcpClientIdentifier:           pulumi.String("string"),
    	DhcpRelayAgentOption:           pulumi.String("string"),
    	DhcpRelayAllowNoEndOption:      pulumi.String("string"),
    	DhcpRelayCircuitId:             pulumi.String("string"),
    	DhcpRelayInterface:             pulumi.String("string"),
    	DhcpRelayInterfaceSelectMethod: pulumi.String("string"),
    	DhcpRelayIp:                    pulumi.String("string"),
    	DhcpRelayLinkSelection:         pulumi.String("string"),
    	DhcpRelayRequestAllServer:      pulumi.String("string"),
    	DhcpRelayService:               pulumi.String("string"),
    	DhcpRelaySourceIp:              pulumi.String("string"),
    	DhcpRelayType:                  pulumi.String("string"),
    	DhcpRenewTime:                  pulumi.Int(0),
    	DhcpSmartRelay:                 pulumi.String("string"),
    	DhcpSnoopingServerLists: system.InterfaceDhcpSnoopingServerListArray{
    		&system.InterfaceDhcpSnoopingServerListArgs{
    			Name:     pulumi.String("string"),
    			ServerIp: pulumi.String("string"),
    		},
    	},
    	DiscRetryTimeout:             pulumi.Int(0),
    	DisconnectThreshold:          pulumi.Int(0),
    	Distance:                     pulumi.Int(0),
    	DnsServerOverride:            pulumi.String("string"),
    	DnsServerProtocol:            pulumi.String("string"),
    	DropFragment:                 pulumi.String("string"),
    	DropOverlappedFragment:       pulumi.String("string"),
    	DynamicSortSubtable:          pulumi.String("string"),
    	EapCaCert:                    pulumi.String("string"),
    	EapIdentity:                  pulumi.String("string"),
    	EapMethod:                    pulumi.String("string"),
    	EapPassword:                  pulumi.String("string"),
    	EapSupplicant:                pulumi.String("string"),
    	EapUserCert:                  pulumi.String("string"),
    	EgressShapingProfile:         pulumi.String("string"),
    	EndpointCompliance:           pulumi.String("string"),
    	EstimatedDownstreamBandwidth: pulumi.Int(0),
    	EstimatedUpstreamBandwidth:   pulumi.Int(0),
    	ExplicitFtpProxy:             pulumi.String("string"),
    	ExplicitWebProxy:             pulumi.String("string"),
    	External:                     pulumi.String("string"),
    	FailActionOnExtender:         pulumi.String("string"),
    	FailAlertInterfaces: system.InterfaceFailAlertInterfaceArray{
    		&system.InterfaceFailAlertInterfaceArgs{
    			Name: pulumi.String("string"),
    		},
    	},
    	FailAlertMethod:           pulumi.String("string"),
    	FailDetect:                pulumi.String("string"),
    	FailDetectOption:          pulumi.String("string"),
    	Fortiheartbeat:            pulumi.String("string"),
    	Fortilink:                 pulumi.String("string"),
    	FortilinkBackupLink:       pulumi.Int(0),
    	FortilinkNeighborDetect:   pulumi.String("string"),
    	FortilinkSplitInterface:   pulumi.String("string"),
    	FortilinkStacking:         pulumi.String("string"),
    	ForwardDomain:             pulumi.Int(0),
    	ForwardErrorCorrection:    pulumi.String("string"),
    	GetAllTables:              pulumi.String("string"),
    	Gwdetect:                  pulumi.String("string"),
    	HaPriority:                pulumi.Int(0),
    	IcmpAcceptRedirect:        pulumi.String("string"),
    	IcmpSendRedirect:          pulumi.String("string"),
    	IdentAccept:               pulumi.String("string"),
    	IdleTimeout:               pulumi.Int(0),
    	IkeSamlServer:             pulumi.String("string"),
    	Inbandwidth:               pulumi.Int(0),
    	IngressShapingProfile:     pulumi.String("string"),
    	IngressSpilloverThreshold: pulumi.Int(0),
    	Interface:                 pulumi.String("string"),
    	Internal:                  pulumi.Int(0),
    	Ip:                        pulumi.String("string"),
    	IpManagedByFortiipam:      pulumi.String("string"),
    	Ipmac:                     pulumi.String("string"),
    	IpsSnifferMode:            pulumi.String("string"),
    	Ipunnumbered:              pulumi.String("string"),
    	Ipv6: &system.InterfaceIpv6Args{
    		Autoconf:           pulumi.String("string"),
    		CliConn6Status:     pulumi.Int(0),
    		Dhcp6ClientOptions: pulumi.String("string"),
    		Dhcp6IapdLists: system.InterfaceIpv6Dhcp6IapdListArray{
    			&system.InterfaceIpv6Dhcp6IapdListArgs{
    				Iaid:          pulumi.Int(0),
    				PrefixHint:    pulumi.String("string"),
    				PrefixHintPlt: pulumi.Int(0),
    				PrefixHintVlt: pulumi.Int(0),
    			},
    		},
    		Dhcp6InformationRequest:   pulumi.String("string"),
    		Dhcp6PrefixDelegation:     pulumi.String("string"),
    		Dhcp6PrefixHint:           pulumi.String("string"),
    		Dhcp6PrefixHintPlt:        pulumi.Int(0),
    		Dhcp6PrefixHintVlt:        pulumi.Int(0),
    		Dhcp6RelayInterfaceId:     pulumi.String("string"),
    		Dhcp6RelayIp:              pulumi.String("string"),
    		Dhcp6RelayService:         pulumi.String("string"),
    		Dhcp6RelaySourceInterface: pulumi.String("string"),
    		Dhcp6RelaySourceIp:        pulumi.String("string"),
    		Dhcp6RelayType:            pulumi.String("string"),
    		Icmp6SendRedirect:         pulumi.String("string"),
    		InterfaceIdentifier:       pulumi.String("string"),
    		Ip6Address:                pulumi.String("string"),
    		Ip6Allowaccess:            pulumi.String("string"),
    		Ip6DefaultLife:            pulumi.Int(0),
    		Ip6DelegatedPrefixIaid:    pulumi.Int(0),
    		Ip6DelegatedPrefixLists: system.InterfaceIpv6Ip6DelegatedPrefixListArray{
    			&system.InterfaceIpv6Ip6DelegatedPrefixListArgs{
    				AutonomousFlag:      pulumi.String("string"),
    				DelegatedPrefixIaid: pulumi.Int(0),
    				OnlinkFlag:          pulumi.String("string"),
    				PrefixId:            pulumi.Int(0),
    				Rdnss:               pulumi.String("string"),
    				RdnssService:        pulumi.String("string"),
    				Subnet:              pulumi.String("string"),
    				UpstreamInterface:   pulumi.String("string"),
    			},
    		},
    		Ip6DnsServerOverride: pulumi.String("string"),
    		Ip6ExtraAddrs: system.InterfaceIpv6Ip6ExtraAddrArray{
    			&system.InterfaceIpv6Ip6ExtraAddrArgs{
    				Prefix: pulumi.String("string"),
    			},
    		},
    		Ip6HopLimit:    pulumi.Int(0),
    		Ip6LinkMtu:     pulumi.Int(0),
    		Ip6ManageFlag:  pulumi.String("string"),
    		Ip6MaxInterval: pulumi.Int(0),
    		Ip6MinInterval: pulumi.Int(0),
    		Ip6Mode:        pulumi.String("string"),
    		Ip6OtherFlag:   pulumi.String("string"),
    		Ip6PrefixLists: system.InterfaceIpv6Ip6PrefixListArray{
    			&system.InterfaceIpv6Ip6PrefixListArgs{
    				AutonomousFlag: pulumi.String("string"),
    				Dnssls: system.InterfaceIpv6Ip6PrefixListDnsslArray{
    					&system.InterfaceIpv6Ip6PrefixListDnsslArgs{
    						Domain: pulumi.String("string"),
    					},
    				},
    				OnlinkFlag:        pulumi.String("string"),
    				PreferredLifeTime: pulumi.Int(0),
    				Prefix:            pulumi.String("string"),
    				Rdnss:             pulumi.String("string"),
    				ValidLifeTime:     pulumi.Int(0),
    			},
    		},
    		Ip6PrefixMode:        pulumi.String("string"),
    		Ip6ReachableTime:     pulumi.Int(0),
    		Ip6RetransTime:       pulumi.Int(0),
    		Ip6SendAdv:           pulumi.String("string"),
    		Ip6Subnet:            pulumi.String("string"),
    		Ip6UpstreamInterface: pulumi.String("string"),
    		NdCert:               pulumi.String("string"),
    		NdCgaModifier:        pulumi.String("string"),
    		NdMode:               pulumi.String("string"),
    		NdSecurityLevel:      pulumi.Int(0),
    		NdTimestampDelta:     pulumi.Int(0),
    		NdTimestampFuzz:      pulumi.Int(0),
    		RaSendMtu:            pulumi.String("string"),
    		UniqueAutoconfAddr:   pulumi.String("string"),
    		Vrip6LinkLocal:       pulumi.String("string"),
    		Vrrp6s: system.InterfaceIpv6Vrrp6Array{
    			&system.InterfaceIpv6Vrrp6Args{
    				AcceptMode:         pulumi.String("string"),
    				AdvInterval:        pulumi.Int(0),
    				IgnoreDefaultRoute: pulumi.String("string"),
    				Preempt:            pulumi.String("string"),
    				Priority:           pulumi.Int(0),
    				StartTime:          pulumi.Int(0),
    				Status:             pulumi.String("string"),
    				Vrdst6:             pulumi.String("string"),
    				Vrgrp:              pulumi.Int(0),
    				Vrid:               pulumi.Int(0),
    				Vrip6:              pulumi.String("string"),
    			},
    		},
    		VrrpVirtualMac6: pulumi.String("string"),
    	},
    	L2forward:         pulumi.String("string"),
    	LacpHaSecondary:   pulumi.String("string"),
    	LacpHaSlave:       pulumi.String("string"),
    	LacpMode:          pulumi.String("string"),
    	LacpSpeed:         pulumi.String("string"),
    	LcpEchoInterval:   pulumi.Int(0),
    	LcpMaxEchoFails:   pulumi.Int(0),
    	LinkUpDelay:       pulumi.Int(0),
    	LldpNetworkPolicy: pulumi.String("string"),
    	LldpReception:     pulumi.String("string"),
    	LldpTransmission:  pulumi.String("string"),
    	Macaddr:           pulumi.String("string"),
    	ManagedDevices: system.InterfaceManagedDeviceArray{
    		&system.InterfaceManagedDeviceArgs{
    			Name: pulumi.String("string"),
    		},
    	},
    	ManagedSubnetworkSize:       pulumi.String("string"),
    	ManagementIp:                pulumi.String("string"),
    	MeasuredDownstreamBandwidth: pulumi.Int(0),
    	MeasuredUpstreamBandwidth:   pulumi.Int(0),
    	Mediatype:                   pulumi.String("string"),
    	Members: system.InterfaceMemberArray{
    		&system.InterfaceMemberArgs{
    			InterfaceName: pulumi.String("string"),
    		},
    	},
    	MinLinks:                 pulumi.Int(0),
    	MinLinksDown:             pulumi.String("string"),
    	Mode:                     pulumi.String("string"),
    	MonitorBandwidth:         pulumi.String("string"),
    	Mtu:                      pulumi.Int(0),
    	MtuOverride:              pulumi.String("string"),
    	Name:                     pulumi.String("string"),
    	Ndiscforward:             pulumi.String("string"),
    	NetbiosForward:           pulumi.String("string"),
    	NetflowSampler:           pulumi.String("string"),
    	Outbandwidth:             pulumi.Int(0),
    	PadtRetryTimeout:         pulumi.Int(0),
    	Password:                 pulumi.String("string"),
    	PingServStatus:           pulumi.Int(0),
    	PollingInterval:          pulumi.Int(0),
    	PppoeUnnumberedNegotiate: pulumi.String("string"),
    	PptpAuthType:             pulumi.String("string"),
    	PptpClient:               pulumi.String("string"),
    	PptpPassword:             pulumi.String("string"),
    	PptpServerIp:             pulumi.String("string"),
    	PptpTimeout:              pulumi.Int(0),
    	PptpUser:                 pulumi.String("string"),
    	PreserveSessionRoute:     pulumi.String("string"),
    	Priority:                 pulumi.Int(0),
    	PriorityOverride:         pulumi.String("string"),
    	ProxyCaptivePortal:       pulumi.String("string"),
    	ReachableTime:            pulumi.Int(0),
    	RedundantInterface:       pulumi.String("string"),
    	RemoteIp:                 pulumi.String("string"),
    	ReplacemsgOverrideGroup:  pulumi.String("string"),
    	RingRx:                   pulumi.Int(0),
    	RingTx:                   pulumi.Int(0),
    	Role:                     pulumi.String("string"),
    	SampleDirection:          pulumi.String("string"),
    	SampleRate:               pulumi.Int(0),
    	ScanBotnetConnections:    pulumi.String("string"),
    	SecondaryIp:              pulumi.String("string"),
    	Secondaryips: system.InterfaceSecondaryipArray{
    		&system.InterfaceSecondaryipArgs{
    			Allowaccess:    pulumi.String("string"),
    			Detectprotocol: pulumi.String("string"),
    			Detectserver:   pulumi.String("string"),
    			Gwdetect:       pulumi.String("string"),
    			HaPriority:     pulumi.Int(0),
    			Id:             pulumi.Int(0),
    			Ip:             pulumi.String("string"),
    			PingServStatus: pulumi.Int(0),
    			SecipRelayIp:   pulumi.String("string"),
    		},
    	},
    	SecurityExemptList:     pulumi.String("string"),
    	SecurityExternalLogout: pulumi.String("string"),
    	SecurityExternalWeb:    pulumi.String("string"),
    	SecurityGroups: system.InterfaceSecurityGroupArray{
    		&system.InterfaceSecurityGroupArgs{
    			Name: pulumi.String("string"),
    		},
    	},
    	SecurityMacAuthBypass:                 pulumi.String("string"),
    	SecurityMode:                          pulumi.String("string"),
    	SecurityRedirectUrl:                   pulumi.String("string"),
    	ServiceName:                           pulumi.String("string"),
    	SflowSampler:                          pulumi.String("string"),
    	SnmpIndex:                             pulumi.Int(0),
    	Speed:                                 pulumi.String("string"),
    	SpilloverThreshold:                    pulumi.Int(0),
    	SrcCheck:                              pulumi.String("string"),
    	Status:                                pulumi.String("string"),
    	Stp:                                   pulumi.String("string"),
    	StpHaSecondary:                        pulumi.String("string"),
    	Stpforward:                            pulumi.String("string"),
    	StpforwardMode:                        pulumi.String("string"),
    	Subst:                                 pulumi.String("string"),
    	SubstituteDstMac:                      pulumi.String("string"),
    	SwcFirstCreate:                        pulumi.Int(0),
    	SwcVlan:                               pulumi.Int(0),
    	Switch:                                pulumi.String("string"),
    	SwitchControllerAccessVlan:            pulumi.String("string"),
    	SwitchControllerArpInspection:         pulumi.String("string"),
    	SwitchControllerDhcpSnooping:          pulumi.String("string"),
    	SwitchControllerDhcpSnoopingOption82:  pulumi.String("string"),
    	SwitchControllerDhcpSnoopingVerifyMac: pulumi.String("string"),
    	SwitchControllerDynamic:               pulumi.String("string"),
    	SwitchControllerFeature:               pulumi.String("string"),
    	SwitchControllerIgmpSnooping:          pulumi.String("string"),
    	SwitchControllerIgmpSnoopingFastLeave: pulumi.String("string"),
    	SwitchControllerIgmpSnoopingProxy:     pulumi.String("string"),
    	SwitchControllerIotScanning:           pulumi.String("string"),
    	SwitchControllerLearningLimit:         pulumi.Int(0),
    	SwitchControllerMgmtVlan:              pulumi.Int(0),
    	SwitchControllerNac:                   pulumi.String("string"),
    	SwitchControllerNetflowCollect:        pulumi.String("string"),
    	SwitchControllerOffload:               pulumi.String("string"),
    	SwitchControllerOffloadGw:             pulumi.String("string"),
    	SwitchControllerOffloadIp:             pulumi.String("string"),
    	SwitchControllerRspanMode:             pulumi.String("string"),
    	SwitchControllerSourceIp:              pulumi.String("string"),
    	SwitchControllerTrafficPolicy:         pulumi.String("string"),
    	SystemId:                              pulumi.String("string"),
    	SystemIdType:                          pulumi.String("string"),
    	Taggings: system.InterfaceTaggingArray{
    		&system.InterfaceTaggingArgs{
    			Category: pulumi.String("string"),
    			Name:     pulumi.String("string"),
    			Tags: system.InterfaceTaggingTagArray{
    				&system.InterfaceTaggingTagArgs{
    					Name: pulumi.String("string"),
    				},
    			},
    		},
    	},
    	TcpMss:         pulumi.Int(0),
    	Trunk:          pulumi.String("string"),
    	TrustIp1:       pulumi.String("string"),
    	TrustIp2:       pulumi.String("string"),
    	TrustIp3:       pulumi.String("string"),
    	TrustIp61:      pulumi.String("string"),
    	TrustIp62:      pulumi.String("string"),
    	TrustIp63:      pulumi.String("string"),
    	Type:           pulumi.String("string"),
    	Username:       pulumi.String("string"),
    	Vdomparam:      pulumi.String("string"),
    	Vindex:         pulumi.Int(0),
    	VlanProtocol:   pulumi.String("string"),
    	Vlanforward:    pulumi.String("string"),
    	Vlanid:         pulumi.Int(0),
    	Vrf:            pulumi.Int(0),
    	VrrpVirtualMac: pulumi.String("string"),
    	Vrrps: system.InterfaceVrrpArray{
    		&system.InterfaceVrrpArgs{
    			AcceptMode:         pulumi.String("string"),
    			AdvInterval:        pulumi.Int(0),
    			IgnoreDefaultRoute: pulumi.String("string"),
    			Preempt:            pulumi.String("string"),
    			Priority:           pulumi.Int(0),
    			ProxyArps: system.InterfaceVrrpProxyArpArray{
    				&system.InterfaceVrrpProxyArpArgs{
    					Id: pulumi.Int(0),
    					Ip: pulumi.String("string"),
    				},
    			},
    			StartTime:     pulumi.Int(0),
    			Status:        pulumi.String("string"),
    			Version:       pulumi.String("string"),
    			Vrdst:         pulumi.String("string"),
    			VrdstPriority: pulumi.Int(0),
    			Vrgrp:         pulumi.Int(0),
    			Vrid:          pulumi.Int(0),
    			Vrip:          pulumi.String("string"),
    		},
    	},
    	Wccp:   pulumi.String("string"),
    	Weight: pulumi.Int(0),
    	WinsIp: pulumi.String("string"),
    })
    
    var interfaceResource = new Interface("interfaceResource", InterfaceArgs.builder()
        .vdom("string")
        .acName("string")
        .aggregate("string")
        .aggregateType("string")
        .algorithm("string")
        .alias("string")
        .allowaccess("string")
        .apDiscover("string")
        .arpforward("string")
        .authCert("string")
        .authPortalAddr("string")
        .authType("string")
        .autoAuthExtensionDevice("string")
        .autogenerated("string")
        .bandwidthMeasureTime(0)
        .bfd("string")
        .bfdDesiredMinTx(0)
        .bfdDetectMult(0)
        .bfdRequiredMinRx(0)
        .broadcastForticlientDiscovery("string")
        .broadcastForward("string")
        .captivePortal(0)
        .cliConnStatus(0)
        .clientOptions(InterfaceClientOptionArgs.builder()
            .code(0)
            .id(0)
            .ip("string")
            .type("string")
            .value("string")
            .build())
        .color(0)
        .dedicatedTo("string")
        .defaultPurdueLevel("string")
        .defaultgw("string")
        .description("string")
        .detectedPeerMtu(0)
        .detectprotocol("string")
        .detectserver("string")
        .deviceAccessList("string")
        .deviceIdentification("string")
        .deviceIdentificationActiveScan("string")
        .deviceNetscan("string")
        .deviceUserIdentification("string")
        .devindex(0)
        .dhcpBroadcastFlag("string")
        .dhcpClasslessRouteAddition("string")
        .dhcpClientIdentifier("string")
        .dhcpRelayAgentOption("string")
        .dhcpRelayAllowNoEndOption("string")
        .dhcpRelayCircuitId("string")
        .dhcpRelayInterface("string")
        .dhcpRelayInterfaceSelectMethod("string")
        .dhcpRelayIp("string")
        .dhcpRelayLinkSelection("string")
        .dhcpRelayRequestAllServer("string")
        .dhcpRelayService("string")
        .dhcpRelaySourceIp("string")
        .dhcpRelayType("string")
        .dhcpRenewTime(0)
        .dhcpSmartRelay("string")
        .dhcpSnoopingServerLists(InterfaceDhcpSnoopingServerListArgs.builder()
            .name("string")
            .serverIp("string")
            .build())
        .discRetryTimeout(0)
        .disconnectThreshold(0)
        .distance(0)
        .dnsServerOverride("string")
        .dnsServerProtocol("string")
        .dropFragment("string")
        .dropOverlappedFragment("string")
        .dynamicSortSubtable("string")
        .eapCaCert("string")
        .eapIdentity("string")
        .eapMethod("string")
        .eapPassword("string")
        .eapSupplicant("string")
        .eapUserCert("string")
        .egressShapingProfile("string")
        .endpointCompliance("string")
        .estimatedDownstreamBandwidth(0)
        .estimatedUpstreamBandwidth(0)
        .explicitFtpProxy("string")
        .explicitWebProxy("string")
        .external("string")
        .failActionOnExtender("string")
        .failAlertInterfaces(InterfaceFailAlertInterfaceArgs.builder()
            .name("string")
            .build())
        .failAlertMethod("string")
        .failDetect("string")
        .failDetectOption("string")
        .fortiheartbeat("string")
        .fortilink("string")
        .fortilinkBackupLink(0)
        .fortilinkNeighborDetect("string")
        .fortilinkSplitInterface("string")
        .fortilinkStacking("string")
        .forwardDomain(0)
        .forwardErrorCorrection("string")
        .getAllTables("string")
        .gwdetect("string")
        .haPriority(0)
        .icmpAcceptRedirect("string")
        .icmpSendRedirect("string")
        .identAccept("string")
        .idleTimeout(0)
        .ikeSamlServer("string")
        .inbandwidth(0)
        .ingressShapingProfile("string")
        .ingressSpilloverThreshold(0)
        .interface_("string")
        .internal(0)
        .ip("string")
        .ipManagedByFortiipam("string")
        .ipmac("string")
        .ipsSnifferMode("string")
        .ipunnumbered("string")
        .ipv6(InterfaceIpv6Args.builder()
            .autoconf("string")
            .cliConn6Status(0)
            .dhcp6ClientOptions("string")
            .dhcp6IapdLists(InterfaceIpv6Dhcp6IapdListArgs.builder()
                .iaid(0)
                .prefixHint("string")
                .prefixHintPlt(0)
                .prefixHintVlt(0)
                .build())
            .dhcp6InformationRequest("string")
            .dhcp6PrefixDelegation("string")
            .dhcp6PrefixHint("string")
            .dhcp6PrefixHintPlt(0)
            .dhcp6PrefixHintVlt(0)
            .dhcp6RelayInterfaceId("string")
            .dhcp6RelayIp("string")
            .dhcp6RelayService("string")
            .dhcp6RelaySourceInterface("string")
            .dhcp6RelaySourceIp("string")
            .dhcp6RelayType("string")
            .icmp6SendRedirect("string")
            .interfaceIdentifier("string")
            .ip6Address("string")
            .ip6Allowaccess("string")
            .ip6DefaultLife(0)
            .ip6DelegatedPrefixIaid(0)
            .ip6DelegatedPrefixLists(InterfaceIpv6Ip6DelegatedPrefixListArgs.builder()
                .autonomousFlag("string")
                .delegatedPrefixIaid(0)
                .onlinkFlag("string")
                .prefixId(0)
                .rdnss("string")
                .rdnssService("string")
                .subnet("string")
                .upstreamInterface("string")
                .build())
            .ip6DnsServerOverride("string")
            .ip6ExtraAddrs(InterfaceIpv6Ip6ExtraAddrArgs.builder()
                .prefix("string")
                .build())
            .ip6HopLimit(0)
            .ip6LinkMtu(0)
            .ip6ManageFlag("string")
            .ip6MaxInterval(0)
            .ip6MinInterval(0)
            .ip6Mode("string")
            .ip6OtherFlag("string")
            .ip6PrefixLists(InterfaceIpv6Ip6PrefixListArgs.builder()
                .autonomousFlag("string")
                .dnssls(InterfaceIpv6Ip6PrefixListDnsslArgs.builder()
                    .domain("string")
                    .build())
                .onlinkFlag("string")
                .preferredLifeTime(0)
                .prefix("string")
                .rdnss("string")
                .validLifeTime(0)
                .build())
            .ip6PrefixMode("string")
            .ip6ReachableTime(0)
            .ip6RetransTime(0)
            .ip6SendAdv("string")
            .ip6Subnet("string")
            .ip6UpstreamInterface("string")
            .ndCert("string")
            .ndCgaModifier("string")
            .ndMode("string")
            .ndSecurityLevel(0)
            .ndTimestampDelta(0)
            .ndTimestampFuzz(0)
            .raSendMtu("string")
            .uniqueAutoconfAddr("string")
            .vrip6LinkLocal("string")
            .vrrp6s(InterfaceIpv6Vrrp6Args.builder()
                .acceptMode("string")
                .advInterval(0)
                .ignoreDefaultRoute("string")
                .preempt("string")
                .priority(0)
                .startTime(0)
                .status("string")
                .vrdst6("string")
                .vrgrp(0)
                .vrid(0)
                .vrip6("string")
                .build())
            .vrrpVirtualMac6("string")
            .build())
        .l2forward("string")
        .lacpHaSecondary("string")
        .lacpHaSlave("string")
        .lacpMode("string")
        .lacpSpeed("string")
        .lcpEchoInterval(0)
        .lcpMaxEchoFails(0)
        .linkUpDelay(0)
        .lldpNetworkPolicy("string")
        .lldpReception("string")
        .lldpTransmission("string")
        .macaddr("string")
        .managedDevices(InterfaceManagedDeviceArgs.builder()
            .name("string")
            .build())
        .managedSubnetworkSize("string")
        .managementIp("string")
        .measuredDownstreamBandwidth(0)
        .measuredUpstreamBandwidth(0)
        .mediatype("string")
        .members(InterfaceMemberArgs.builder()
            .interfaceName("string")
            .build())
        .minLinks(0)
        .minLinksDown("string")
        .mode("string")
        .monitorBandwidth("string")
        .mtu(0)
        .mtuOverride("string")
        .name("string")
        .ndiscforward("string")
        .netbiosForward("string")
        .netflowSampler("string")
        .outbandwidth(0)
        .padtRetryTimeout(0)
        .password("string")
        .pingServStatus(0)
        .pollingInterval(0)
        .pppoeUnnumberedNegotiate("string")
        .pptpAuthType("string")
        .pptpClient("string")
        .pptpPassword("string")
        .pptpServerIp("string")
        .pptpTimeout(0)
        .pptpUser("string")
        .preserveSessionRoute("string")
        .priority(0)
        .priorityOverride("string")
        .proxyCaptivePortal("string")
        .reachableTime(0)
        .redundantInterface("string")
        .remoteIp("string")
        .replacemsgOverrideGroup("string")
        .ringRx(0)
        .ringTx(0)
        .role("string")
        .sampleDirection("string")
        .sampleRate(0)
        .scanBotnetConnections("string")
        .secondaryIp("string")
        .secondaryips(InterfaceSecondaryipArgs.builder()
            .allowaccess("string")
            .detectprotocol("string")
            .detectserver("string")
            .gwdetect("string")
            .haPriority(0)
            .id(0)
            .ip("string")
            .pingServStatus(0)
            .secipRelayIp("string")
            .build())
        .securityExemptList("string")
        .securityExternalLogout("string")
        .securityExternalWeb("string")
        .securityGroups(InterfaceSecurityGroupArgs.builder()
            .name("string")
            .build())
        .securityMacAuthBypass("string")
        .securityMode("string")
        .securityRedirectUrl("string")
        .serviceName("string")
        .sflowSampler("string")
        .snmpIndex(0)
        .speed("string")
        .spilloverThreshold(0)
        .srcCheck("string")
        .status("string")
        .stp("string")
        .stpHaSecondary("string")
        .stpforward("string")
        .stpforwardMode("string")
        .subst("string")
        .substituteDstMac("string")
        .swcFirstCreate(0)
        .swcVlan(0)
        .switch_("string")
        .switchControllerAccessVlan("string")
        .switchControllerArpInspection("string")
        .switchControllerDhcpSnooping("string")
        .switchControllerDhcpSnoopingOption82("string")
        .switchControllerDhcpSnoopingVerifyMac("string")
        .switchControllerDynamic("string")
        .switchControllerFeature("string")
        .switchControllerIgmpSnooping("string")
        .switchControllerIgmpSnoopingFastLeave("string")
        .switchControllerIgmpSnoopingProxy("string")
        .switchControllerIotScanning("string")
        .switchControllerLearningLimit(0)
        .switchControllerMgmtVlan(0)
        .switchControllerNac("string")
        .switchControllerNetflowCollect("string")
        .switchControllerOffload("string")
        .switchControllerOffloadGw("string")
        .switchControllerOffloadIp("string")
        .switchControllerRspanMode("string")
        .switchControllerSourceIp("string")
        .switchControllerTrafficPolicy("string")
        .systemId("string")
        .systemIdType("string")
        .taggings(InterfaceTaggingArgs.builder()
            .category("string")
            .name("string")
            .tags(InterfaceTaggingTagArgs.builder()
                .name("string")
                .build())
            .build())
        .tcpMss(0)
        .trunk("string")
        .trustIp1("string")
        .trustIp2("string")
        .trustIp3("string")
        .trustIp61("string")
        .trustIp62("string")
        .trustIp63("string")
        .type("string")
        .username("string")
        .vdomparam("string")
        .vindex(0)
        .vlanProtocol("string")
        .vlanforward("string")
        .vlanid(0)
        .vrf(0)
        .vrrpVirtualMac("string")
        .vrrps(InterfaceVrrpArgs.builder()
            .acceptMode("string")
            .advInterval(0)
            .ignoreDefaultRoute("string")
            .preempt("string")
            .priority(0)
            .proxyArps(InterfaceVrrpProxyArpArgs.builder()
                .id(0)
                .ip("string")
                .build())
            .startTime(0)
            .status("string")
            .version("string")
            .vrdst("string")
            .vrdstPriority(0)
            .vrgrp(0)
            .vrid(0)
            .vrip("string")
            .build())
        .wccp("string")
        .weight(0)
        .winsIp("string")
        .build());
    
    interface_resource = fortios.system.Interface("interfaceResource",
        vdom="string",
        ac_name="string",
        aggregate="string",
        aggregate_type="string",
        algorithm="string",
        alias="string",
        allowaccess="string",
        ap_discover="string",
        arpforward="string",
        auth_cert="string",
        auth_portal_addr="string",
        auth_type="string",
        auto_auth_extension_device="string",
        autogenerated="string",
        bandwidth_measure_time=0,
        bfd="string",
        bfd_desired_min_tx=0,
        bfd_detect_mult=0,
        bfd_required_min_rx=0,
        broadcast_forticlient_discovery="string",
        broadcast_forward="string",
        captive_portal=0,
        cli_conn_status=0,
        client_options=[{
            "code": 0,
            "id": 0,
            "ip": "string",
            "type": "string",
            "value": "string",
        }],
        color=0,
        dedicated_to="string",
        default_purdue_level="string",
        defaultgw="string",
        description="string",
        detected_peer_mtu=0,
        detectprotocol="string",
        detectserver="string",
        device_access_list="string",
        device_identification="string",
        device_identification_active_scan="string",
        device_netscan="string",
        device_user_identification="string",
        devindex=0,
        dhcp_broadcast_flag="string",
        dhcp_classless_route_addition="string",
        dhcp_client_identifier="string",
        dhcp_relay_agent_option="string",
        dhcp_relay_allow_no_end_option="string",
        dhcp_relay_circuit_id="string",
        dhcp_relay_interface="string",
        dhcp_relay_interface_select_method="string",
        dhcp_relay_ip="string",
        dhcp_relay_link_selection="string",
        dhcp_relay_request_all_server="string",
        dhcp_relay_service="string",
        dhcp_relay_source_ip="string",
        dhcp_relay_type="string",
        dhcp_renew_time=0,
        dhcp_smart_relay="string",
        dhcp_snooping_server_lists=[{
            "name": "string",
            "server_ip": "string",
        }],
        disc_retry_timeout=0,
        disconnect_threshold=0,
        distance=0,
        dns_server_override="string",
        dns_server_protocol="string",
        drop_fragment="string",
        drop_overlapped_fragment="string",
        dynamic_sort_subtable="string",
        eap_ca_cert="string",
        eap_identity="string",
        eap_method="string",
        eap_password="string",
        eap_supplicant="string",
        eap_user_cert="string",
        egress_shaping_profile="string",
        endpoint_compliance="string",
        estimated_downstream_bandwidth=0,
        estimated_upstream_bandwidth=0,
        explicit_ftp_proxy="string",
        explicit_web_proxy="string",
        external="string",
        fail_action_on_extender="string",
        fail_alert_interfaces=[{
            "name": "string",
        }],
        fail_alert_method="string",
        fail_detect="string",
        fail_detect_option="string",
        fortiheartbeat="string",
        fortilink="string",
        fortilink_backup_link=0,
        fortilink_neighbor_detect="string",
        fortilink_split_interface="string",
        fortilink_stacking="string",
        forward_domain=0,
        forward_error_correction="string",
        get_all_tables="string",
        gwdetect="string",
        ha_priority=0,
        icmp_accept_redirect="string",
        icmp_send_redirect="string",
        ident_accept="string",
        idle_timeout=0,
        ike_saml_server="string",
        inbandwidth=0,
        ingress_shaping_profile="string",
        ingress_spillover_threshold=0,
        interface="string",
        internal=0,
        ip="string",
        ip_managed_by_fortiipam="string",
        ipmac="string",
        ips_sniffer_mode="string",
        ipunnumbered="string",
        ipv6={
            "autoconf": "string",
            "cli_conn6_status": 0,
            "dhcp6_client_options": "string",
            "dhcp6_iapd_lists": [{
                "iaid": 0,
                "prefix_hint": "string",
                "prefix_hint_plt": 0,
                "prefix_hint_vlt": 0,
            }],
            "dhcp6_information_request": "string",
            "dhcp6_prefix_delegation": "string",
            "dhcp6_prefix_hint": "string",
            "dhcp6_prefix_hint_plt": 0,
            "dhcp6_prefix_hint_vlt": 0,
            "dhcp6_relay_interface_id": "string",
            "dhcp6_relay_ip": "string",
            "dhcp6_relay_service": "string",
            "dhcp6_relay_source_interface": "string",
            "dhcp6_relay_source_ip": "string",
            "dhcp6_relay_type": "string",
            "icmp6_send_redirect": "string",
            "interface_identifier": "string",
            "ip6_address": "string",
            "ip6_allowaccess": "string",
            "ip6_default_life": 0,
            "ip6_delegated_prefix_iaid": 0,
            "ip6_delegated_prefix_lists": [{
                "autonomous_flag": "string",
                "delegated_prefix_iaid": 0,
                "onlink_flag": "string",
                "prefix_id": 0,
                "rdnss": "string",
                "rdnss_service": "string",
                "subnet": "string",
                "upstream_interface": "string",
            }],
            "ip6_dns_server_override": "string",
            "ip6_extra_addrs": [{
                "prefix": "string",
            }],
            "ip6_hop_limit": 0,
            "ip6_link_mtu": 0,
            "ip6_manage_flag": "string",
            "ip6_max_interval": 0,
            "ip6_min_interval": 0,
            "ip6_mode": "string",
            "ip6_other_flag": "string",
            "ip6_prefix_lists": [{
                "autonomous_flag": "string",
                "dnssls": [{
                    "domain": "string",
                }],
                "onlink_flag": "string",
                "preferred_life_time": 0,
                "prefix": "string",
                "rdnss": "string",
                "valid_life_time": 0,
            }],
            "ip6_prefix_mode": "string",
            "ip6_reachable_time": 0,
            "ip6_retrans_time": 0,
            "ip6_send_adv": "string",
            "ip6_subnet": "string",
            "ip6_upstream_interface": "string",
            "nd_cert": "string",
            "nd_cga_modifier": "string",
            "nd_mode": "string",
            "nd_security_level": 0,
            "nd_timestamp_delta": 0,
            "nd_timestamp_fuzz": 0,
            "ra_send_mtu": "string",
            "unique_autoconf_addr": "string",
            "vrip6_link_local": "string",
            "vrrp6s": [{
                "accept_mode": "string",
                "adv_interval": 0,
                "ignore_default_route": "string",
                "preempt": "string",
                "priority": 0,
                "start_time": 0,
                "status": "string",
                "vrdst6": "string",
                "vrgrp": 0,
                "vrid": 0,
                "vrip6": "string",
            }],
            "vrrp_virtual_mac6": "string",
        },
        l2forward="string",
        lacp_ha_secondary="string",
        lacp_ha_slave="string",
        lacp_mode="string",
        lacp_speed="string",
        lcp_echo_interval=0,
        lcp_max_echo_fails=0,
        link_up_delay=0,
        lldp_network_policy="string",
        lldp_reception="string",
        lldp_transmission="string",
        macaddr="string",
        managed_devices=[{
            "name": "string",
        }],
        managed_subnetwork_size="string",
        management_ip="string",
        measured_downstream_bandwidth=0,
        measured_upstream_bandwidth=0,
        mediatype="string",
        members=[{
            "interface_name": "string",
        }],
        min_links=0,
        min_links_down="string",
        mode="string",
        monitor_bandwidth="string",
        mtu=0,
        mtu_override="string",
        name="string",
        ndiscforward="string",
        netbios_forward="string",
        netflow_sampler="string",
        outbandwidth=0,
        padt_retry_timeout=0,
        password="string",
        ping_serv_status=0,
        polling_interval=0,
        pppoe_unnumbered_negotiate="string",
        pptp_auth_type="string",
        pptp_client="string",
        pptp_password="string",
        pptp_server_ip="string",
        pptp_timeout=0,
        pptp_user="string",
        preserve_session_route="string",
        priority=0,
        priority_override="string",
        proxy_captive_portal="string",
        reachable_time=0,
        redundant_interface="string",
        remote_ip="string",
        replacemsg_override_group="string",
        ring_rx=0,
        ring_tx=0,
        role="string",
        sample_direction="string",
        sample_rate=0,
        scan_botnet_connections="string",
        secondary_ip="string",
        secondaryips=[{
            "allowaccess": "string",
            "detectprotocol": "string",
            "detectserver": "string",
            "gwdetect": "string",
            "ha_priority": 0,
            "id": 0,
            "ip": "string",
            "ping_serv_status": 0,
            "secip_relay_ip": "string",
        }],
        security_exempt_list="string",
        security_external_logout="string",
        security_external_web="string",
        security_groups=[{
            "name": "string",
        }],
        security_mac_auth_bypass="string",
        security_mode="string",
        security_redirect_url="string",
        service_name="string",
        sflow_sampler="string",
        snmp_index=0,
        speed="string",
        spillover_threshold=0,
        src_check="string",
        status="string",
        stp="string",
        stp_ha_secondary="string",
        stpforward="string",
        stpforward_mode="string",
        subst="string",
        substitute_dst_mac="string",
        swc_first_create=0,
        swc_vlan=0,
        switch="string",
        switch_controller_access_vlan="string",
        switch_controller_arp_inspection="string",
        switch_controller_dhcp_snooping="string",
        switch_controller_dhcp_snooping_option82="string",
        switch_controller_dhcp_snooping_verify_mac="string",
        switch_controller_dynamic="string",
        switch_controller_feature="string",
        switch_controller_igmp_snooping="string",
        switch_controller_igmp_snooping_fast_leave="string",
        switch_controller_igmp_snooping_proxy="string",
        switch_controller_iot_scanning="string",
        switch_controller_learning_limit=0,
        switch_controller_mgmt_vlan=0,
        switch_controller_nac="string",
        switch_controller_netflow_collect="string",
        switch_controller_offload="string",
        switch_controller_offload_gw="string",
        switch_controller_offload_ip="string",
        switch_controller_rspan_mode="string",
        switch_controller_source_ip="string",
        switch_controller_traffic_policy="string",
        system_id="string",
        system_id_type="string",
        taggings=[{
            "category": "string",
            "name": "string",
            "tags": [{
                "name": "string",
            }],
        }],
        tcp_mss=0,
        trunk="string",
        trust_ip1="string",
        trust_ip2="string",
        trust_ip3="string",
        trust_ip61="string",
        trust_ip62="string",
        trust_ip63="string",
        type="string",
        username="string",
        vdomparam="string",
        vindex=0,
        vlan_protocol="string",
        vlanforward="string",
        vlanid=0,
        vrf=0,
        vrrp_virtual_mac="string",
        vrrps=[{
            "accept_mode": "string",
            "adv_interval": 0,
            "ignore_default_route": "string",
            "preempt": "string",
            "priority": 0,
            "proxy_arps": [{
                "id": 0,
                "ip": "string",
            }],
            "start_time": 0,
            "status": "string",
            "version": "string",
            "vrdst": "string",
            "vrdst_priority": 0,
            "vrgrp": 0,
            "vrid": 0,
            "vrip": "string",
        }],
        wccp="string",
        weight=0,
        wins_ip="string")
    
    const interfaceResource = new fortios.system.Interface("interfaceResource", {
        vdom: "string",
        acName: "string",
        aggregate: "string",
        aggregateType: "string",
        algorithm: "string",
        alias: "string",
        allowaccess: "string",
        apDiscover: "string",
        arpforward: "string",
        authCert: "string",
        authPortalAddr: "string",
        authType: "string",
        autoAuthExtensionDevice: "string",
        autogenerated: "string",
        bandwidthMeasureTime: 0,
        bfd: "string",
        bfdDesiredMinTx: 0,
        bfdDetectMult: 0,
        bfdRequiredMinRx: 0,
        broadcastForticlientDiscovery: "string",
        broadcastForward: "string",
        captivePortal: 0,
        cliConnStatus: 0,
        clientOptions: [{
            code: 0,
            id: 0,
            ip: "string",
            type: "string",
            value: "string",
        }],
        color: 0,
        dedicatedTo: "string",
        defaultPurdueLevel: "string",
        defaultgw: "string",
        description: "string",
        detectedPeerMtu: 0,
        detectprotocol: "string",
        detectserver: "string",
        deviceAccessList: "string",
        deviceIdentification: "string",
        deviceIdentificationActiveScan: "string",
        deviceNetscan: "string",
        deviceUserIdentification: "string",
        devindex: 0,
        dhcpBroadcastFlag: "string",
        dhcpClasslessRouteAddition: "string",
        dhcpClientIdentifier: "string",
        dhcpRelayAgentOption: "string",
        dhcpRelayAllowNoEndOption: "string",
        dhcpRelayCircuitId: "string",
        dhcpRelayInterface: "string",
        dhcpRelayInterfaceSelectMethod: "string",
        dhcpRelayIp: "string",
        dhcpRelayLinkSelection: "string",
        dhcpRelayRequestAllServer: "string",
        dhcpRelayService: "string",
        dhcpRelaySourceIp: "string",
        dhcpRelayType: "string",
        dhcpRenewTime: 0,
        dhcpSmartRelay: "string",
        dhcpSnoopingServerLists: [{
            name: "string",
            serverIp: "string",
        }],
        discRetryTimeout: 0,
        disconnectThreshold: 0,
        distance: 0,
        dnsServerOverride: "string",
        dnsServerProtocol: "string",
        dropFragment: "string",
        dropOverlappedFragment: "string",
        dynamicSortSubtable: "string",
        eapCaCert: "string",
        eapIdentity: "string",
        eapMethod: "string",
        eapPassword: "string",
        eapSupplicant: "string",
        eapUserCert: "string",
        egressShapingProfile: "string",
        endpointCompliance: "string",
        estimatedDownstreamBandwidth: 0,
        estimatedUpstreamBandwidth: 0,
        explicitFtpProxy: "string",
        explicitWebProxy: "string",
        external: "string",
        failActionOnExtender: "string",
        failAlertInterfaces: [{
            name: "string",
        }],
        failAlertMethod: "string",
        failDetect: "string",
        failDetectOption: "string",
        fortiheartbeat: "string",
        fortilink: "string",
        fortilinkBackupLink: 0,
        fortilinkNeighborDetect: "string",
        fortilinkSplitInterface: "string",
        fortilinkStacking: "string",
        forwardDomain: 0,
        forwardErrorCorrection: "string",
        getAllTables: "string",
        gwdetect: "string",
        haPriority: 0,
        icmpAcceptRedirect: "string",
        icmpSendRedirect: "string",
        identAccept: "string",
        idleTimeout: 0,
        ikeSamlServer: "string",
        inbandwidth: 0,
        ingressShapingProfile: "string",
        ingressSpilloverThreshold: 0,
        "interface": "string",
        internal: 0,
        ip: "string",
        ipManagedByFortiipam: "string",
        ipmac: "string",
        ipsSnifferMode: "string",
        ipunnumbered: "string",
        ipv6: {
            autoconf: "string",
            cliConn6Status: 0,
            dhcp6ClientOptions: "string",
            dhcp6IapdLists: [{
                iaid: 0,
                prefixHint: "string",
                prefixHintPlt: 0,
                prefixHintVlt: 0,
            }],
            dhcp6InformationRequest: "string",
            dhcp6PrefixDelegation: "string",
            dhcp6PrefixHint: "string",
            dhcp6PrefixHintPlt: 0,
            dhcp6PrefixHintVlt: 0,
            dhcp6RelayInterfaceId: "string",
            dhcp6RelayIp: "string",
            dhcp6RelayService: "string",
            dhcp6RelaySourceInterface: "string",
            dhcp6RelaySourceIp: "string",
            dhcp6RelayType: "string",
            icmp6SendRedirect: "string",
            interfaceIdentifier: "string",
            ip6Address: "string",
            ip6Allowaccess: "string",
            ip6DefaultLife: 0,
            ip6DelegatedPrefixIaid: 0,
            ip6DelegatedPrefixLists: [{
                autonomousFlag: "string",
                delegatedPrefixIaid: 0,
                onlinkFlag: "string",
                prefixId: 0,
                rdnss: "string",
                rdnssService: "string",
                subnet: "string",
                upstreamInterface: "string",
            }],
            ip6DnsServerOverride: "string",
            ip6ExtraAddrs: [{
                prefix: "string",
            }],
            ip6HopLimit: 0,
            ip6LinkMtu: 0,
            ip6ManageFlag: "string",
            ip6MaxInterval: 0,
            ip6MinInterval: 0,
            ip6Mode: "string",
            ip6OtherFlag: "string",
            ip6PrefixLists: [{
                autonomousFlag: "string",
                dnssls: [{
                    domain: "string",
                }],
                onlinkFlag: "string",
                preferredLifeTime: 0,
                prefix: "string",
                rdnss: "string",
                validLifeTime: 0,
            }],
            ip6PrefixMode: "string",
            ip6ReachableTime: 0,
            ip6RetransTime: 0,
            ip6SendAdv: "string",
            ip6Subnet: "string",
            ip6UpstreamInterface: "string",
            ndCert: "string",
            ndCgaModifier: "string",
            ndMode: "string",
            ndSecurityLevel: 0,
            ndTimestampDelta: 0,
            ndTimestampFuzz: 0,
            raSendMtu: "string",
            uniqueAutoconfAddr: "string",
            vrip6LinkLocal: "string",
            vrrp6s: [{
                acceptMode: "string",
                advInterval: 0,
                ignoreDefaultRoute: "string",
                preempt: "string",
                priority: 0,
                startTime: 0,
                status: "string",
                vrdst6: "string",
                vrgrp: 0,
                vrid: 0,
                vrip6: "string",
            }],
            vrrpVirtualMac6: "string",
        },
        l2forward: "string",
        lacpHaSecondary: "string",
        lacpHaSlave: "string",
        lacpMode: "string",
        lacpSpeed: "string",
        lcpEchoInterval: 0,
        lcpMaxEchoFails: 0,
        linkUpDelay: 0,
        lldpNetworkPolicy: "string",
        lldpReception: "string",
        lldpTransmission: "string",
        macaddr: "string",
        managedDevices: [{
            name: "string",
        }],
        managedSubnetworkSize: "string",
        managementIp: "string",
        measuredDownstreamBandwidth: 0,
        measuredUpstreamBandwidth: 0,
        mediatype: "string",
        members: [{
            interfaceName: "string",
        }],
        minLinks: 0,
        minLinksDown: "string",
        mode: "string",
        monitorBandwidth: "string",
        mtu: 0,
        mtuOverride: "string",
        name: "string",
        ndiscforward: "string",
        netbiosForward: "string",
        netflowSampler: "string",
        outbandwidth: 0,
        padtRetryTimeout: 0,
        password: "string",
        pingServStatus: 0,
        pollingInterval: 0,
        pppoeUnnumberedNegotiate: "string",
        pptpAuthType: "string",
        pptpClient: "string",
        pptpPassword: "string",
        pptpServerIp: "string",
        pptpTimeout: 0,
        pptpUser: "string",
        preserveSessionRoute: "string",
        priority: 0,
        priorityOverride: "string",
        proxyCaptivePortal: "string",
        reachableTime: 0,
        redundantInterface: "string",
        remoteIp: "string",
        replacemsgOverrideGroup: "string",
        ringRx: 0,
        ringTx: 0,
        role: "string",
        sampleDirection: "string",
        sampleRate: 0,
        scanBotnetConnections: "string",
        secondaryIp: "string",
        secondaryips: [{
            allowaccess: "string",
            detectprotocol: "string",
            detectserver: "string",
            gwdetect: "string",
            haPriority: 0,
            id: 0,
            ip: "string",
            pingServStatus: 0,
            secipRelayIp: "string",
        }],
        securityExemptList: "string",
        securityExternalLogout: "string",
        securityExternalWeb: "string",
        securityGroups: [{
            name: "string",
        }],
        securityMacAuthBypass: "string",
        securityMode: "string",
        securityRedirectUrl: "string",
        serviceName: "string",
        sflowSampler: "string",
        snmpIndex: 0,
        speed: "string",
        spilloverThreshold: 0,
        srcCheck: "string",
        status: "string",
        stp: "string",
        stpHaSecondary: "string",
        stpforward: "string",
        stpforwardMode: "string",
        subst: "string",
        substituteDstMac: "string",
        swcFirstCreate: 0,
        swcVlan: 0,
        "switch": "string",
        switchControllerAccessVlan: "string",
        switchControllerArpInspection: "string",
        switchControllerDhcpSnooping: "string",
        switchControllerDhcpSnoopingOption82: "string",
        switchControllerDhcpSnoopingVerifyMac: "string",
        switchControllerDynamic: "string",
        switchControllerFeature: "string",
        switchControllerIgmpSnooping: "string",
        switchControllerIgmpSnoopingFastLeave: "string",
        switchControllerIgmpSnoopingProxy: "string",
        switchControllerIotScanning: "string",
        switchControllerLearningLimit: 0,
        switchControllerMgmtVlan: 0,
        switchControllerNac: "string",
        switchControllerNetflowCollect: "string",
        switchControllerOffload: "string",
        switchControllerOffloadGw: "string",
        switchControllerOffloadIp: "string",
        switchControllerRspanMode: "string",
        switchControllerSourceIp: "string",
        switchControllerTrafficPolicy: "string",
        systemId: "string",
        systemIdType: "string",
        taggings: [{
            category: "string",
            name: "string",
            tags: [{
                name: "string",
            }],
        }],
        tcpMss: 0,
        trunk: "string",
        trustIp1: "string",
        trustIp2: "string",
        trustIp3: "string",
        trustIp61: "string",
        trustIp62: "string",
        trustIp63: "string",
        type: "string",
        username: "string",
        vdomparam: "string",
        vindex: 0,
        vlanProtocol: "string",
        vlanforward: "string",
        vlanid: 0,
        vrf: 0,
        vrrpVirtualMac: "string",
        vrrps: [{
            acceptMode: "string",
            advInterval: 0,
            ignoreDefaultRoute: "string",
            preempt: "string",
            priority: 0,
            proxyArps: [{
                id: 0,
                ip: "string",
            }],
            startTime: 0,
            status: "string",
            version: "string",
            vrdst: "string",
            vrdstPriority: 0,
            vrgrp: 0,
            vrid: 0,
            vrip: "string",
        }],
        wccp: "string",
        weight: 0,
        winsIp: "string",
    });
    
    type: fortios:system:Interface
    properties:
        acName: string
        aggregate: string
        aggregateType: string
        algorithm: string
        alias: string
        allowaccess: string
        apDiscover: string
        arpforward: string
        authCert: string
        authPortalAddr: string
        authType: string
        autoAuthExtensionDevice: string
        autogenerated: string
        bandwidthMeasureTime: 0
        bfd: string
        bfdDesiredMinTx: 0
        bfdDetectMult: 0
        bfdRequiredMinRx: 0
        broadcastForticlientDiscovery: string
        broadcastForward: string
        captivePortal: 0
        cliConnStatus: 0
        clientOptions:
            - code: 0
              id: 0
              ip: string
              type: string
              value: string
        color: 0
        dedicatedTo: string
        defaultPurdueLevel: string
        defaultgw: string
        description: string
        detectedPeerMtu: 0
        detectprotocol: string
        detectserver: string
        deviceAccessList: string
        deviceIdentification: string
        deviceIdentificationActiveScan: string
        deviceNetscan: string
        deviceUserIdentification: string
        devindex: 0
        dhcpBroadcastFlag: string
        dhcpClasslessRouteAddition: string
        dhcpClientIdentifier: string
        dhcpRelayAgentOption: string
        dhcpRelayAllowNoEndOption: string
        dhcpRelayCircuitId: string
        dhcpRelayInterface: string
        dhcpRelayInterfaceSelectMethod: string
        dhcpRelayIp: string
        dhcpRelayLinkSelection: string
        dhcpRelayRequestAllServer: string
        dhcpRelayService: string
        dhcpRelaySourceIp: string
        dhcpRelayType: string
        dhcpRenewTime: 0
        dhcpSmartRelay: string
        dhcpSnoopingServerLists:
            - name: string
              serverIp: string
        discRetryTimeout: 0
        disconnectThreshold: 0
        distance: 0
        dnsServerOverride: string
        dnsServerProtocol: string
        dropFragment: string
        dropOverlappedFragment: string
        dynamicSortSubtable: string
        eapCaCert: string
        eapIdentity: string
        eapMethod: string
        eapPassword: string
        eapSupplicant: string
        eapUserCert: string
        egressShapingProfile: string
        endpointCompliance: string
        estimatedDownstreamBandwidth: 0
        estimatedUpstreamBandwidth: 0
        explicitFtpProxy: string
        explicitWebProxy: string
        external: string
        failActionOnExtender: string
        failAlertInterfaces:
            - name: string
        failAlertMethod: string
        failDetect: string
        failDetectOption: string
        fortiheartbeat: string
        fortilink: string
        fortilinkBackupLink: 0
        fortilinkNeighborDetect: string
        fortilinkSplitInterface: string
        fortilinkStacking: string
        forwardDomain: 0
        forwardErrorCorrection: string
        getAllTables: string
        gwdetect: string
        haPriority: 0
        icmpAcceptRedirect: string
        icmpSendRedirect: string
        identAccept: string
        idleTimeout: 0
        ikeSamlServer: string
        inbandwidth: 0
        ingressShapingProfile: string
        ingressSpilloverThreshold: 0
        interface: string
        internal: 0
        ip: string
        ipManagedByFortiipam: string
        ipmac: string
        ipsSnifferMode: string
        ipunnumbered: string
        ipv6:
            autoconf: string
            cliConn6Status: 0
            dhcp6ClientOptions: string
            dhcp6IapdLists:
                - iaid: 0
                  prefixHint: string
                  prefixHintPlt: 0
                  prefixHintVlt: 0
            dhcp6InformationRequest: string
            dhcp6PrefixDelegation: string
            dhcp6PrefixHint: string
            dhcp6PrefixHintPlt: 0
            dhcp6PrefixHintVlt: 0
            dhcp6RelayInterfaceId: string
            dhcp6RelayIp: string
            dhcp6RelayService: string
            dhcp6RelaySourceInterface: string
            dhcp6RelaySourceIp: string
            dhcp6RelayType: string
            icmp6SendRedirect: string
            interfaceIdentifier: string
            ip6Address: string
            ip6Allowaccess: string
            ip6DefaultLife: 0
            ip6DelegatedPrefixIaid: 0
            ip6DelegatedPrefixLists:
                - autonomousFlag: string
                  delegatedPrefixIaid: 0
                  onlinkFlag: string
                  prefixId: 0
                  rdnss: string
                  rdnssService: string
                  subnet: string
                  upstreamInterface: string
            ip6DnsServerOverride: string
            ip6ExtraAddrs:
                - prefix: string
            ip6HopLimit: 0
            ip6LinkMtu: 0
            ip6ManageFlag: string
            ip6MaxInterval: 0
            ip6MinInterval: 0
            ip6Mode: string
            ip6OtherFlag: string
            ip6PrefixLists:
                - autonomousFlag: string
                  dnssls:
                    - domain: string
                  onlinkFlag: string
                  preferredLifeTime: 0
                  prefix: string
                  rdnss: string
                  validLifeTime: 0
            ip6PrefixMode: string
            ip6ReachableTime: 0
            ip6RetransTime: 0
            ip6SendAdv: string
            ip6Subnet: string
            ip6UpstreamInterface: string
            ndCert: string
            ndCgaModifier: string
            ndMode: string
            ndSecurityLevel: 0
            ndTimestampDelta: 0
            ndTimestampFuzz: 0
            raSendMtu: string
            uniqueAutoconfAddr: string
            vrip6LinkLocal: string
            vrrp6s:
                - acceptMode: string
                  advInterval: 0
                  ignoreDefaultRoute: string
                  preempt: string
                  priority: 0
                  startTime: 0
                  status: string
                  vrdst6: string
                  vrgrp: 0
                  vrid: 0
                  vrip6: string
            vrrpVirtualMac6: string
        l2forward: string
        lacpHaSecondary: string
        lacpHaSlave: string
        lacpMode: string
        lacpSpeed: string
        lcpEchoInterval: 0
        lcpMaxEchoFails: 0
        linkUpDelay: 0
        lldpNetworkPolicy: string
        lldpReception: string
        lldpTransmission: string
        macaddr: string
        managedDevices:
            - name: string
        managedSubnetworkSize: string
        managementIp: string
        measuredDownstreamBandwidth: 0
        measuredUpstreamBandwidth: 0
        mediatype: string
        members:
            - interfaceName: string
        minLinks: 0
        minLinksDown: string
        mode: string
        monitorBandwidth: string
        mtu: 0
        mtuOverride: string
        name: string
        ndiscforward: string
        netbiosForward: string
        netflowSampler: string
        outbandwidth: 0
        padtRetryTimeout: 0
        password: string
        pingServStatus: 0
        pollingInterval: 0
        pppoeUnnumberedNegotiate: string
        pptpAuthType: string
        pptpClient: string
        pptpPassword: string
        pptpServerIp: string
        pptpTimeout: 0
        pptpUser: string
        preserveSessionRoute: string
        priority: 0
        priorityOverride: string
        proxyCaptivePortal: string
        reachableTime: 0
        redundantInterface: string
        remoteIp: string
        replacemsgOverrideGroup: string
        ringRx: 0
        ringTx: 0
        role: string
        sampleDirection: string
        sampleRate: 0
        scanBotnetConnections: string
        secondaryIp: string
        secondaryips:
            - allowaccess: string
              detectprotocol: string
              detectserver: string
              gwdetect: string
              haPriority: 0
              id: 0
              ip: string
              pingServStatus: 0
              secipRelayIp: string
        securityExemptList: string
        securityExternalLogout: string
        securityExternalWeb: string
        securityGroups:
            - name: string
        securityMacAuthBypass: string
        securityMode: string
        securityRedirectUrl: string
        serviceName: string
        sflowSampler: string
        snmpIndex: 0
        speed: string
        spilloverThreshold: 0
        srcCheck: string
        status: string
        stp: string
        stpHaSecondary: string
        stpforward: string
        stpforwardMode: string
        subst: string
        substituteDstMac: string
        swcFirstCreate: 0
        swcVlan: 0
        switch: string
        switchControllerAccessVlan: string
        switchControllerArpInspection: string
        switchControllerDhcpSnooping: string
        switchControllerDhcpSnoopingOption82: string
        switchControllerDhcpSnoopingVerifyMac: string
        switchControllerDynamic: string
        switchControllerFeature: string
        switchControllerIgmpSnooping: string
        switchControllerIgmpSnoopingFastLeave: string
        switchControllerIgmpSnoopingProxy: string
        switchControllerIotScanning: string
        switchControllerLearningLimit: 0
        switchControllerMgmtVlan: 0
        switchControllerNac: string
        switchControllerNetflowCollect: string
        switchControllerOffload: string
        switchControllerOffloadGw: string
        switchControllerOffloadIp: string
        switchControllerRspanMode: string
        switchControllerSourceIp: string
        switchControllerTrafficPolicy: string
        systemId: string
        systemIdType: string
        taggings:
            - category: string
              name: string
              tags:
                - name: string
        tcpMss: 0
        trunk: string
        trustIp1: string
        trustIp2: string
        trustIp3: string
        trustIp61: string
        trustIp62: string
        trustIp63: string
        type: string
        username: string
        vdom: string
        vdomparam: string
        vindex: 0
        vlanProtocol: string
        vlanforward: string
        vlanid: 0
        vrf: 0
        vrrpVirtualMac: string
        vrrps:
            - acceptMode: string
              advInterval: 0
              ignoreDefaultRoute: string
              preempt: string
              priority: 0
              proxyArps:
                - id: 0
                  ip: string
              startTime: 0
              status: string
              version: string
              vrdst: string
              vrdstPriority: 0
              vrgrp: 0
              vrid: 0
              vrip: string
        wccp: string
        weight: 0
        winsIp: string
    

    Interface Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The Interface resource accepts the following input properties:

    Vdom string
    Interface is in this virtual domain (VDOM).
    AcName string
    PPPoE server name.
    Aggregate string
    Aggregate interface.
    AggregateType string
    Type of aggregation. Valid values: physical, vxlan.
    Algorithm string
    Frame distribution algorithm.
    Alias string
    Alias will be displayed with the interface name to make it easier to distinguish.
    Allowaccess string
    Permitted types of management access to this interface.
    ApDiscover string
    Enable/disable automatic registration of unknown FortiAP devices. Valid values: enable, disable.
    Arpforward string
    Enable/disable ARP forwarding. Valid values: enable, disable.
    AuthCert string
    HTTPS server certificate.
    AuthPortalAddr string
    Address of captive portal.
    AuthType string
    PPP authentication type to use. Valid values: auto, pap, chap, mschapv1, mschapv2.
    AutoAuthExtensionDevice string
    Enable/disable automatic authorization of dedicated Fortinet extension device on this interface. Valid values: enable, disable.
    Autogenerated string
    Indicates whether the interface is automatically created by FortiGate, for example, created during the VPN creation process. If it is, set it to "auto", else keep it empty.
    BandwidthMeasureTime int
    Bandwidth measure time
    Bfd string
    Bidirectional Forwarding Detection (BFD) settings. Valid values: global, enable, disable.
    BfdDesiredMinTx int
    BFD desired minimal transmit interval.
    BfdDetectMult int
    BFD detection multiplier.
    BfdRequiredMinRx int
    BFD required minimal receive interval.
    BroadcastForticlientDiscovery string
    Enable/disable broadcasting FortiClient discovery messages. Valid values: enable, disable.
    BroadcastForward string
    Enable/disable broadcast forwarding. Valid values: enable, disable.
    CaptivePortal int
    Enable/disable captive portal.
    CliConnStatus int
    CLI connection status.
    ClientOptions List<Pulumiverse.Fortios.System.Inputs.InterfaceClientOption>
    DHCP client options. The structure of client_options block is documented below.
    Color int
    Color of icon on the GUI.
    Data string
    Interface name.
    DedicatedTo string
    Configure interface for single purpose. Valid values: none, management.
    DefaultPurdueLevel string
    default purdue level of device detected on this interface. Valid values: 1, 1.5, 2, 2.5, 3, 3.5, 4, 5, 5.5.
    Defaultgw string
    Enable to get the gateway IP from the DHCP or PPPoE server. Valid values: enable, disable.
    Description string
    Description.
    DetectedPeerMtu int
    MTU of detected peer (0 - 4294967295).
    Detectprotocol string
    Protocols used to detect the server. Valid values: ping, tcp-echo, udp-echo.
    Detectserver string
    Gateway's ping server for this IP.
    DeviceAccessList string
    Device access list.
    DeviceIdentification string
    Enable/disable passively gathering of device identity information about the devices on the network connected to this interface. Valid values: enable, disable.
    DeviceIdentificationActiveScan string
    Enable/disable active gathering of device identity information about the devices on the network connected to this interface. Valid values: enable, disable.
    DeviceNetscan string
    Enable/disable inclusion of devices detected on this interface in network vulnerability scans. Valid values: disable, enable.
    DeviceUserIdentification string
    Enable/disable passive gathering of user identity information about users on this interface. Valid values: enable, disable.
    Devindex int
    Device Index.
    DhcpBroadcastFlag string
    Enable/disable setting of the broadcast flag in messages sent by the DHCP client (default = enable). Valid values: disable, enable.
    DhcpClasslessRouteAddition string
    Enable/disable addition of classless static routes retrieved from DHCP server. Valid values: enable, disable.
    DhcpClientIdentifier string
    DHCP client identifier.
    DhcpRelayAgentOption string
    Enable/disable DHCP relay agent option. Valid values: enable, disable.
    DhcpRelayAllowNoEndOption string
    Enable/disable relaying DHCP messages with no end option. Valid values: disable, enable.
    DhcpRelayCircuitId string
    DHCP relay circuit ID.
    DhcpRelayInterface string
    Specify outgoing interface to reach server.
    DhcpRelayInterfaceSelectMethod string
    Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
    DhcpRelayIp string
    DHCP relay IP address.
    DhcpRelayLinkSelection string
    DHCP relay link selection.
    DhcpRelayRequestAllServer string
    Enable/disable sending DHCP request to all servers. Valid values: disable, enable.
    DhcpRelayService string
    Enable/disable allowing this interface to act as a DHCP relay. Valid values: disable, enable.
    DhcpRelaySourceIp string
    IP address used by the DHCP relay as its source IP.
    DhcpRelayType string
    DHCP relay type (regular or IPsec). Valid values: regular, ipsec.
    DhcpRenewTime int
    DHCP renew time in seconds (300-604800), 0 means use the renew time provided by the server.
    DhcpSmartRelay string
    Enable/disable DHCP smart relay. Valid values: disable, enable.
    DhcpSnoopingServerLists List<Pulumiverse.Fortios.System.Inputs.InterfaceDhcpSnoopingServerList>
    Configure DHCP server access list. The structure of dhcp_snooping_server_list block is documented below.
    DiscRetryTimeout int
    Time in seconds to wait before retrying to start a PPPoE discovery, 0 means no timeout.
    DisconnectThreshold int
    Time in milliseconds to wait before sending a notification that this interface is down or disconnected.
    Distance int
    Distance for routes learned through PPPoE or DHCP, lower distance indicates preferred route.
    DnsServerOverride string
    Enable/disable use DNS acquired by DHCP or PPPoE. Valid values: enable, disable.
    DnsServerProtocol string
    DNS transport protocols. Valid values: cleartext, dot, doh.
    DropFragment string
    Enable/disable drop fragment packets. Valid values: enable, disable.
    DropOverlappedFragment string
    Enable/disable drop overlapped fragment packets. Valid values: enable, disable.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    EapCaCert string
    EAP CA certificate name.
    EapIdentity string
    EAP identity.
    EapMethod string
    EAP method. Valid values: tls, peap.
    EapPassword string
    EAP password.
    EapSupplicant string
    Enable/disable EAP-Supplicant. Valid values: enable, disable.
    EapUserCert string
    EAP user certificate name.
    EgressShapingProfile string
    Outgoing traffic shaping profile.
    EndpointCompliance string
    Enable/disable endpoint compliance enforcement. Valid values: enable, disable.
    EstimatedDownstreamBandwidth int
    Estimated maximum downstream bandwidth (kbps). Used to estimate link utilization.
    EstimatedUpstreamBandwidth int
    Estimated maximum upstream bandwidth (kbps). Used to estimate link utilization.
    ExplicitFtpProxy string
    Enable/disable the explicit FTP proxy on this interface. Valid values: enable, disable.
    ExplicitWebProxy string
    Enable/disable the explicit web proxy on this interface. Valid values: enable, disable.
    External string
    Enable/disable identifying the interface as an external interface (which usually means it's connected to the Internet). Valid values: enable, disable.
    FailActionOnExtender string
    Action on extender when interface fail . Valid values: soft-restart, hard-restart, reboot.
    FailAlertInterfaces List<Pulumiverse.Fortios.System.Inputs.InterfaceFailAlertInterface>
    Names of the FortiGate interfaces from which the link failure alert is sent for this interface. The structure of fail_alert_interfaces block is documented below.
    FailAlertMethod string
    Select link-failed-signal or link-down method to alert about a failed link. Valid values: link-failed-signal, link-down.
    FailDetect string
    Enable/disable fail detection features for this interface. Valid values: enable, disable.
    FailDetectOption string
    Options for detecting that this interface has failed. Valid values: detectserver, link-down.
    Fortiheartbeat string
    Enable/disable FortiHeartBeat (FortiTelemetry on GUI). Valid values: enable, disable.
    Fortilink string
    Enable FortiLink to dedicate this interface to manage other Fortinet devices. Valid values: enable, disable.
    FortilinkBackupLink int
    fortilink split interface backup link.
    FortilinkNeighborDetect string
    Protocol for FortiGate neighbor discovery. Valid values: lldp, fortilink.
    FortilinkSplitInterface string
    Enable/disable FortiLink split interface to connect member link to different FortiSwitch in stack for uplink redundancy. Valid values: enable, disable.
    FortilinkStacking string
    Enable/disable FortiLink switch-stacking on this interface. Valid values: enable, disable.
    ForwardDomain int
    Transparent mode forward domain.
    ForwardErrorCorrection string
    Configure forward error correction (FEC). Valid values: none, disable, cl91-rs-fec, cl74-fc-fec.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    Gwdetect string
    Enable/disable detect gateway alive for first. Valid values: enable, disable.
    HaPriority int
    HA election priority for the PING server.
    IcmpAcceptRedirect string
    Enable/disable ICMP accept redirect. Valid values: enable, disable.
    IcmpSendRedirect string
    Enable/disable ICMP send redirect. Valid values: enable, disable.
    IdentAccept string
    Enable/disable authentication for this interface. Valid values: enable, disable.
    IdleTimeout int
    PPPoE auto disconnect after idle timeout seconds, 0 means no timeout.
    IkeSamlServer string
    Configure IKE authentication SAML server.
    Inbandwidth int
    Bandwidth limit for incoming traffic, 0 means unlimited. On FortiOS versions 6.2.0-6.4.2, 7.0.0-7.0.5, 7.2.0: 0 - 16776000 kbps. On FortiOS versions 6.4.10-6.4.15, 7.0.6-7.0.15, >= 7.2.1: 0 - 80000000 kbps.
    IngressShapingProfile string
    Incoming traffic shaping profile.
    IngressSpilloverThreshold int
    Ingress Spillover threshold (0 - 16776000 kbps), 0 means unlimited.
    Internal int
    Implicitly created.
    Ip string
    Interface IPv4 address and subnet mask, syntax: X.X.X.X/24.
    IpManagedByFortiipam string
    Enable/disable automatic IP address assignment of this interface by FortiIPAM.
    Ipmac string
    Enable/disable IP/MAC binding. Valid values: enable, disable.
    IpsSnifferMode string
    Enable/disable the use of this interface as a one-armed sniffer. Valid values: enable, disable.
    Ipunnumbered string
    Unnumbered IP used for PPPoE interfaces for which no unique local address is provided.
    Ipv6 Pulumiverse.Fortios.System.Inputs.InterfaceIpv6
    IPv6 of interface. The structure of ipv6 block is documented below.
    L2forward string
    Enable/disable l2 forwarding. Valid values: enable, disable.
    LacpHaSecondary string
    LACP HA secondary member. Valid values: enable, disable.
    LacpHaSlave string
    LACP HA slave. Valid values: enable, disable.
    LacpMode string
    LACP mode. Valid values: static, passive, active.
    LacpSpeed string
    How often the interface sends LACP messages. Valid values: slow, fast.
    LcpEchoInterval int
    Time in seconds between PPPoE Link Control Protocol (LCP) echo requests.
    LcpMaxEchoFails int
    Maximum missed LCP echo messages before disconnect.
    LinkUpDelay int
    Number of milliseconds to wait before considering a link is up.
    LldpNetworkPolicy string
    LLDP-MED network policy profile.
    LldpReception string
    Enable/disable Link Layer Discovery Protocol (LLDP) reception. Valid values: enable, disable, vdom.
    LldpTransmission string
    Enable/disable Link Layer Discovery Protocol (LLDP) transmission. Valid values: enable, disable, vdom.
    Macaddr string
    Change the interface's MAC address.
    ManagedDevices List<Pulumiverse.Fortios.System.Inputs.InterfaceManagedDevice>
    Available when FortiLink is enabled, used for managed devices through FortiLink interface. The structure of managed_device block is documented below.
    ManagedSubnetworkSize string
    Number of IP addresses to be allocated by FortiIPAM and used by this FortiGate unit's DHCP server settings.
    ManagementIp string
    High Availability in-band management IP address of this interface.
    MeasuredDownstreamBandwidth int
    Measured downstream bandwidth (kbps).
    MeasuredUpstreamBandwidth int
    Measured upstream bandwidth (kbps).
    Mediatype string
    Select SFP media interface type Valid values: none, gmii, sgmii, sr, lr, cr, sr4, lr4, cr4.
    Members List<Pulumiverse.Fortios.System.Inputs.InterfaceMember>
    Physical interfaces that belong to the aggregate or redundant interface. The structure of member block is documented below.
    MinLinks int
    Minimum number of aggregated ports that must be up.
    MinLinksDown string
    Action to take when less than the configured minimum number of links are active. Valid values: operational, administrative.
    Mode string
    Addressing mode (static, DHCP, PPPoE). Valid values: static, dhcp, pppoe.
    MonitorBandwidth string
    Enable monitoring bandwidth on this interface. Valid values: enable, disable.
    Mtu int
    MTU value for this interface.
    MtuOverride string
    Enable to set a custom MTU for this interface. Valid values: enable, disable.
    Name string
    Name.
    Ndiscforward string
    Enable/disable NDISC forwarding. Valid values: enable, disable.
    NetbiosForward string
    Enable/disable NETBIOS forwarding. Valid values: disable, enable.
    NetflowSampler string
    Enable/disable NetFlow on this interface and set the data that NetFlow collects (rx, tx, or both). Valid values: disable, tx, rx, both.
    Outbandwidth int
    Bandwidth limit for outgoing traffic, 0 means unlimited. On FortiOS versions 6.2.0-6.2.6: 0 - 16776000 kbps. On FortiOS versions 6.4.10-6.4.15, 7.0.6-7.0.15, >= 7.2.1: 0 - 80000000 kbps.
    PadtRetryTimeout int
    PPPoE Active Discovery Terminate (PADT) used to terminate sessions after an idle time.
    Password string
    PPPoE account's password.
    PingServStatus int
    PING server status.
    PollingInterval int
    sFlow polling interval in seconds (1 - 255).
    PppoeUnnumberedNegotiate string
    Enable/disable PPPoE unnumbered negotiation. Valid values: enable, disable.
    PptpAuthType string
    PPTP authentication type. Valid values: auto, pap, chap, mschapv1, mschapv2.
    PptpClient string
    Enable/disable PPTP client. Valid values: enable, disable.
    PptpPassword string
    PPTP password.
    PptpServerIp string
    PPTP server IP address.
    PptpTimeout int
    Idle timer in minutes (0 for disabled).
    PptpUser string
    PPTP user name.
    PreserveSessionRoute string
    Enable/disable preservation of session route when dirty. Valid values: enable, disable.
    Priority int
    Priority of learned routes.
    PriorityOverride string
    Enable/disable fail back to higher priority port once recovered. Valid values: enable, disable.
    ProxyCaptivePortal string
    Enable/disable proxy captive portal on this interface. Valid values: enable, disable.
    ReachableTime int
    IPv4 reachable time in milliseconds (30000 - 3600000, default = 30000).
    RedundantInterface string
    Redundant interface.
    RemoteIp string
    Remote IP address of tunnel.
    ReplacemsgOverrideGroup string
    Replacement message override group.
    RingRx int
    RX ring size.
    RingTx int
    TX ring size.
    Role string
    Interface role. Valid values: lan, wan, dmz, undefined.
    SampleDirection string
    Data that NetFlow collects (rx, tx, or both). Valid values: tx, rx, both.
    SampleRate int
    sFlow sample rate (10 - 99999).
    ScanBotnetConnections string
    Enable monitoring or blocking connections to Botnet servers through this interface. Valid values: disable, block, monitor.
    SecondaryIp string
    Enable/disable adding a secondary IP to this interface. Valid values: enable, disable.
    Secondaryips List<Pulumiverse.Fortios.System.Inputs.InterfaceSecondaryip>
    Second IP address of interface. The structure of secondaryip block is documented below.
    SecurityExemptList string
    Name of security-exempt-list.
    SecurityExternalLogout string
    URL of external authentication logout server.
    SecurityExternalWeb string
    URL of external authentication web server.
    SecurityGroups List<Pulumiverse.Fortios.System.Inputs.InterfaceSecurityGroup>
    User groups that can authenticate with the captive portal. The structure of security_groups block is documented below.
    SecurityMacAuthBypass string
    Enable/disable MAC authentication bypass. Valid values: mac-auth-only, enable, disable.
    SecurityMode string
    Turn on captive portal authentication for this interface. Valid values: none, captive-portal, 802.1X.
    SecurityRedirectUrl string
    URL redirection after disclaimer/authentication.
    ServiceName string
    PPPoE service name.
    SflowSampler string
    Enable/disable sFlow on this interface. Valid values: enable, disable.
    SnmpIndex int
    Permanent SNMP Index of the interface.
    Speed string
    Interface speed. The default setting and the options available depend on the interface hardware.
    SpilloverThreshold int
    Egress Spillover threshold (0 - 16776000 kbps), 0 means unlimited.
    SrcCheck string
    Enable/disable source IP check. Valid values: enable, disable.
    Status string
    Bring the interface up or shut the interface down. Valid values: up, down.
    Stp string
    Enable/disable STP. Valid values: disable, enable.
    StpHaSecondary string
    Control STP behaviour on HA secondary. Valid values: disable, enable, priority-adjust.
    Stpforward string
    Enable/disable STP forwarding. Valid values: enable, disable.
    StpforwardMode string
    Configure STP forwarding mode. Valid values: rpl-all-ext-id, rpl-bridge-ext-id, rpl-nothing.
    Subst string
    Enable to always send packets from this interface to a destination MAC address. Valid values: enable, disable.
    SubstituteDstMac string
    Destination MAC address that all packets are sent to from this interface.
    SwcFirstCreate int
    Initial create for switch-controller VLANs.
    SwcVlan int
    Creation status for switch-controller VLANs.
    Switch string
    Contained in switch.
    SwitchControllerAccessVlan string
    Block FortiSwitch port-to-port traffic. Valid values: enable, disable.
    SwitchControllerArpInspection string
    Enable/disable FortiSwitch ARP inspection.
    SwitchControllerDhcpSnooping string
    Switch controller DHCP snooping. Valid values: enable, disable.
    SwitchControllerDhcpSnoopingOption82 string
    Switch controller DHCP snooping option82. Valid values: enable, disable.
    SwitchControllerDhcpSnoopingVerifyMac string
    Switch controller DHCP snooping verify MAC. Valid values: enable, disable.
    SwitchControllerDynamic string
    Integrated FortiLink settings for managed FortiSwitch.
    SwitchControllerFeature string
    Interface's purpose when assigning traffic (read only).
    SwitchControllerIgmpSnooping string
    Switch controller IGMP snooping. Valid values: enable, disable.
    SwitchControllerIgmpSnoopingFastLeave string
    Switch controller IGMP snooping fast-leave. Valid values: enable, disable.
    SwitchControllerIgmpSnoopingProxy string
    Switch controller IGMP snooping proxy. Valid values: enable, disable.
    SwitchControllerIotScanning string
    Enable/disable managed FortiSwitch IoT scanning. Valid values: enable, disable.
    SwitchControllerLearningLimit int
    Limit the number of dynamic MAC addresses on this VLAN (1 - 128, 0 = no limit, default).
    SwitchControllerMgmtVlan int
    VLAN to use for FortiLink management purposes.
    SwitchControllerNac string
    Integrated NAC settings for managed FortiSwitch.
    SwitchControllerNetflowCollect string
    NetFlow collection and processing. Valid values: disable, enable.
    SwitchControllerOffload string
    Enable/disable managed FortiSwitch routing offload. Valid values: enable, disable.
    SwitchControllerOffloadGw string
    Enable/disable managed FortiSwitch routing offload gateway. Valid values: enable, disable.
    SwitchControllerOffloadIp string
    IP for routing offload on FortiSwitch.
    SwitchControllerRspanMode string
    Stop Layer2 MAC learning and interception of BPDUs and other packets on this interface. Valid values: disable, enable.
    SwitchControllerSourceIp string
    Source IP address used in FortiLink over L3 connections. Valid values: outbound, fixed.
    SwitchControllerTrafficPolicy string
    Switch controller traffic policy for the VLAN.
    SystemId string
    Define a system ID for the aggregate interface.
    SystemIdType string
    Method in which system ID is generated. Valid values: auto, user.
    Taggings List<Pulumiverse.Fortios.System.Inputs.InterfaceTagging>
    Config object tagging. The structure of tagging block is documented below.
    TcpMss int
    TCP maximum segment size. 0 means do not change segment size.
    Trunk string
    Enable/disable VLAN trunk. Valid values: enable, disable.
    TrustIp1 string
    Trusted host for dedicated management traffic (0.0.0.0/24 for all hosts).
    TrustIp2 string
    Trusted host for dedicated management traffic (0.0.0.0/24 for all hosts).
    TrustIp3 string
    Trusted host for dedicated management traffic (0.0.0.0/24 for all hosts).
    TrustIp61 string
    Trusted IPv6 host for dedicated management traffic (::/0 for all hosts).
    TrustIp62 string
    Trusted IPv6 host for dedicated management traffic (::/0 for all hosts).
    TrustIp63 string
    Trusted IPv6 host for dedicated management traffic (::/0 for all hosts).
    Type string
    Interface type.
    Username string
    Username of the PPPoE account, provided by your ISP.
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    Vindex int
    Switch control interface VLAN ID.
    VlanProtocol string
    Ethernet protocol of VLAN. Valid values: 8021q, 8021ad.
    Vlanforward string
    Enable/disable traffic forwarding between VLANs on this interface. Valid values: enable, disable.
    Vlanid int
    VLAN ID (1 - 4094).
    Vrf int
    Virtual Routing Forwarding ID.
    VrrpVirtualMac string
    Enable/disable use of virtual MAC for VRRP. Valid values: enable, disable.
    Vrrps List<Pulumiverse.Fortios.System.Inputs.InterfaceVrrp>
    VRRP configuration. The structure of vrrp block is documented below.
    Wccp string
    Enable/disable WCCP on this interface. Used for encapsulated WCCP communication between WCCP clients and servers. Valid values: enable, disable.
    Weight int
    Default weight for static routes (if route has no weight configured).
    WinsIp string
    WINS server IP.
    Vdom string
    Interface is in this virtual domain (VDOM).
    AcName string
    PPPoE server name.
    Aggregate string
    Aggregate interface.
    AggregateType string
    Type of aggregation. Valid values: physical, vxlan.
    Algorithm string
    Frame distribution algorithm.
    Alias string
    Alias will be displayed with the interface name to make it easier to distinguish.
    Allowaccess string
    Permitted types of management access to this interface.
    ApDiscover string
    Enable/disable automatic registration of unknown FortiAP devices. Valid values: enable, disable.
    Arpforward string
    Enable/disable ARP forwarding. Valid values: enable, disable.
    AuthCert string
    HTTPS server certificate.
    AuthPortalAddr string
    Address of captive portal.
    AuthType string
    PPP authentication type to use. Valid values: auto, pap, chap, mschapv1, mschapv2.
    AutoAuthExtensionDevice string
    Enable/disable automatic authorization of dedicated Fortinet extension device on this interface. Valid values: enable, disable.
    Autogenerated string
    Indicates whether the interface is automatically created by FortiGate, for example, created during the VPN creation process. If it is, set it to "auto", else keep it empty.
    BandwidthMeasureTime int
    Bandwidth measure time
    Bfd string
    Bidirectional Forwarding Detection (BFD) settings. Valid values: global, enable, disable.
    BfdDesiredMinTx int
    BFD desired minimal transmit interval.
    BfdDetectMult int
    BFD detection multiplier.
    BfdRequiredMinRx int
    BFD required minimal receive interval.
    BroadcastForticlientDiscovery string
    Enable/disable broadcasting FortiClient discovery messages. Valid values: enable, disable.
    BroadcastForward string
    Enable/disable broadcast forwarding. Valid values: enable, disable.
    CaptivePortal int
    Enable/disable captive portal.
    CliConnStatus int
    CLI connection status.
    ClientOptions []InterfaceClientOptionArgs
    DHCP client options. The structure of client_options block is documented below.
    Color int
    Color of icon on the GUI.
    DedicatedTo string
    Configure interface for single purpose. Valid values: none, management.
    DefaultPurdueLevel string
    default purdue level of device detected on this interface. Valid values: 1, 1.5, 2, 2.5, 3, 3.5, 4, 5, 5.5.
    Defaultgw string
    Enable to get the gateway IP from the DHCP or PPPoE server. Valid values: enable, disable.
    Description string
    Description.
    DetectedPeerMtu int
    MTU of detected peer (0 - 4294967295).
    Detectprotocol string
    Protocols used to detect the server. Valid values: ping, tcp-echo, udp-echo.
    Detectserver string
    Gateway's ping server for this IP.
    DeviceAccessList string
    Device access list.
    DeviceIdentification string
    Enable/disable passively gathering of device identity information about the devices on the network connected to this interface. Valid values: enable, disable.
    DeviceIdentificationActiveScan string
    Enable/disable active gathering of device identity information about the devices on the network connected to this interface. Valid values: enable, disable.
    DeviceNetscan string
    Enable/disable inclusion of devices detected on this interface in network vulnerability scans. Valid values: disable, enable.
    DeviceUserIdentification string
    Enable/disable passive gathering of user identity information about users on this interface. Valid values: enable, disable.
    Devindex int
    Device Index.
    DhcpBroadcastFlag string
    Enable/disable setting of the broadcast flag in messages sent by the DHCP client (default = enable). Valid values: disable, enable.
    DhcpClasslessRouteAddition string
    Enable/disable addition of classless static routes retrieved from DHCP server. Valid values: enable, disable.
    DhcpClientIdentifier string
    DHCP client identifier.
    DhcpRelayAgentOption string
    Enable/disable DHCP relay agent option. Valid values: enable, disable.
    DhcpRelayAllowNoEndOption string
    Enable/disable relaying DHCP messages with no end option. Valid values: disable, enable.
    DhcpRelayCircuitId string
    DHCP relay circuit ID.
    DhcpRelayInterface string
    Specify outgoing interface to reach server.
    DhcpRelayInterfaceSelectMethod string
    Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
    DhcpRelayIp string
    DHCP relay IP address.
    DhcpRelayLinkSelection string
    DHCP relay link selection.
    DhcpRelayRequestAllServer string
    Enable/disable sending DHCP request to all servers. Valid values: disable, enable.
    DhcpRelayService string
    Enable/disable allowing this interface to act as a DHCP relay. Valid values: disable, enable.
    DhcpRelaySourceIp string
    IP address used by the DHCP relay as its source IP.
    DhcpRelayType string
    DHCP relay type (regular or IPsec). Valid values: regular, ipsec.
    DhcpRenewTime int
    DHCP renew time in seconds (300-604800), 0 means use the renew time provided by the server.
    DhcpSmartRelay string
    Enable/disable DHCP smart relay. Valid values: disable, enable.
    DhcpSnoopingServerLists []InterfaceDhcpSnoopingServerListArgs
    Configure DHCP server access list. The structure of dhcp_snooping_server_list block is documented below.
    DiscRetryTimeout int
    Time in seconds to wait before retrying to start a PPPoE discovery, 0 means no timeout.
    DisconnectThreshold int
    Time in milliseconds to wait before sending a notification that this interface is down or disconnected.
    Distance int
    Distance for routes learned through PPPoE or DHCP, lower distance indicates preferred route.
    DnsServerOverride string
    Enable/disable use DNS acquired by DHCP or PPPoE. Valid values: enable, disable.
    DnsServerProtocol string
    DNS transport protocols. Valid values: cleartext, dot, doh.
    DropFragment string
    Enable/disable drop fragment packets. Valid values: enable, disable.
    DropOverlappedFragment string
    Enable/disable drop overlapped fragment packets. Valid values: enable, disable.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    EapCaCert string
    EAP CA certificate name.
    EapIdentity string
    EAP identity.
    EapMethod string
    EAP method. Valid values: tls, peap.
    EapPassword string
    EAP password.
    EapSupplicant string
    Enable/disable EAP-Supplicant. Valid values: enable, disable.
    EapUserCert string
    EAP user certificate name.
    EgressShapingProfile string
    Outgoing traffic shaping profile.
    EndpointCompliance string
    Enable/disable endpoint compliance enforcement. Valid values: enable, disable.
    EstimatedDownstreamBandwidth int
    Estimated maximum downstream bandwidth (kbps). Used to estimate link utilization.
    EstimatedUpstreamBandwidth int
    Estimated maximum upstream bandwidth (kbps). Used to estimate link utilization.
    ExplicitFtpProxy string
    Enable/disable the explicit FTP proxy on this interface. Valid values: enable, disable.
    ExplicitWebProxy string
    Enable/disable the explicit web proxy on this interface. Valid values: enable, disable.
    External string
    Enable/disable identifying the interface as an external interface (which usually means it's connected to the Internet). Valid values: enable, disable.
    FailActionOnExtender string
    Action on extender when interface fail . Valid values: soft-restart, hard-restart, reboot.
    FailAlertInterfaces []InterfaceFailAlertInterfaceArgs
    Names of the FortiGate interfaces from which the link failure alert is sent for this interface. The structure of fail_alert_interfaces block is documented below.
    FailAlertMethod string
    Select link-failed-signal or link-down method to alert about a failed link. Valid values: link-failed-signal, link-down.
    FailDetect string
    Enable/disable fail detection features for this interface. Valid values: enable, disable.
    FailDetectOption string
    Options for detecting that this interface has failed. Valid values: detectserver, link-down.
    Fortiheartbeat string
    Enable/disable FortiHeartBeat (FortiTelemetry on GUI). Valid values: enable, disable.
    Fortilink string
    Enable FortiLink to dedicate this interface to manage other Fortinet devices. Valid values: enable, disable.
    FortilinkBackupLink int
    fortilink split interface backup link.
    FortilinkNeighborDetect string
    Protocol for FortiGate neighbor discovery. Valid values: lldp, fortilink.
    FortilinkSplitInterface string
    Enable/disable FortiLink split interface to connect member link to different FortiSwitch in stack for uplink redundancy. Valid values: enable, disable.
    FortilinkStacking string
    Enable/disable FortiLink switch-stacking on this interface. Valid values: enable, disable.
    ForwardDomain int
    Transparent mode forward domain.
    ForwardErrorCorrection string
    Configure forward error correction (FEC). Valid values: none, disable, cl91-rs-fec, cl74-fc-fec.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    Gwdetect string
    Enable/disable detect gateway alive for first. Valid values: enable, disable.
    HaPriority int
    HA election priority for the PING server.
    IcmpAcceptRedirect string
    Enable/disable ICMP accept redirect. Valid values: enable, disable.
    IcmpSendRedirect string
    Enable/disable ICMP send redirect. Valid values: enable, disable.
    IdentAccept string
    Enable/disable authentication for this interface. Valid values: enable, disable.
    IdleTimeout int
    PPPoE auto disconnect after idle timeout seconds, 0 means no timeout.
    IkeSamlServer string
    Configure IKE authentication SAML server.
    Inbandwidth int
    Bandwidth limit for incoming traffic, 0 means unlimited. On FortiOS versions 6.2.0-6.4.2, 7.0.0-7.0.5, 7.2.0: 0 - 16776000 kbps. On FortiOS versions 6.4.10-6.4.15, 7.0.6-7.0.15, >= 7.2.1: 0 - 80000000 kbps.
    IngressShapingProfile string
    Incoming traffic shaping profile.
    IngressSpilloverThreshold int
    Ingress Spillover threshold (0 - 16776000 kbps), 0 means unlimited.
    Interface string
    Interface name.
    Internal int
    Implicitly created.
    Ip string
    Interface IPv4 address and subnet mask, syntax: X.X.X.X/24.
    IpManagedByFortiipam string
    Enable/disable automatic IP address assignment of this interface by FortiIPAM.
    Ipmac string
    Enable/disable IP/MAC binding. Valid values: enable, disable.
    IpsSnifferMode string
    Enable/disable the use of this interface as a one-armed sniffer. Valid values: enable, disable.
    Ipunnumbered string
    Unnumbered IP used for PPPoE interfaces for which no unique local address is provided.
    Ipv6 InterfaceIpv6Args
    IPv6 of interface. The structure of ipv6 block is documented below.
    L2forward string
    Enable/disable l2 forwarding. Valid values: enable, disable.
    LacpHaSecondary string
    LACP HA secondary member. Valid values: enable, disable.
    LacpHaSlave string
    LACP HA slave. Valid values: enable, disable.
    LacpMode string
    LACP mode. Valid values: static, passive, active.
    LacpSpeed string
    How often the interface sends LACP messages. Valid values: slow, fast.
    LcpEchoInterval int
    Time in seconds between PPPoE Link Control Protocol (LCP) echo requests.
    LcpMaxEchoFails int
    Maximum missed LCP echo messages before disconnect.
    LinkUpDelay int
    Number of milliseconds to wait before considering a link is up.
    LldpNetworkPolicy string
    LLDP-MED network policy profile.
    LldpReception string
    Enable/disable Link Layer Discovery Protocol (LLDP) reception. Valid values: enable, disable, vdom.
    LldpTransmission string
    Enable/disable Link Layer Discovery Protocol (LLDP) transmission. Valid values: enable, disable, vdom.
    Macaddr string
    Change the interface's MAC address.
    ManagedDevices []InterfaceManagedDeviceArgs
    Available when FortiLink is enabled, used for managed devices through FortiLink interface. The structure of managed_device block is documented below.
    ManagedSubnetworkSize string
    Number of IP addresses to be allocated by FortiIPAM and used by this FortiGate unit's DHCP server settings.
    ManagementIp string
    High Availability in-band management IP address of this interface.
    MeasuredDownstreamBandwidth int
    Measured downstream bandwidth (kbps).
    MeasuredUpstreamBandwidth int
    Measured upstream bandwidth (kbps).
    Mediatype string
    Select SFP media interface type Valid values: none, gmii, sgmii, sr, lr, cr, sr4, lr4, cr4.
    Members []InterfaceMemberArgs
    Physical interfaces that belong to the aggregate or redundant interface. The structure of member block is documented below.
    MinLinks int
    Minimum number of aggregated ports that must be up.
    MinLinksDown string
    Action to take when less than the configured minimum number of links are active. Valid values: operational, administrative.
    Mode string
    Addressing mode (static, DHCP, PPPoE). Valid values: static, dhcp, pppoe.
    MonitorBandwidth string
    Enable monitoring bandwidth on this interface. Valid values: enable, disable.
    Mtu int
    MTU value for this interface.
    MtuOverride string
    Enable to set a custom MTU for this interface. Valid values: enable, disable.
    Name string
    Name.
    Ndiscforward string
    Enable/disable NDISC forwarding. Valid values: enable, disable.
    NetbiosForward string
    Enable/disable NETBIOS forwarding. Valid values: disable, enable.
    NetflowSampler string
    Enable/disable NetFlow on this interface and set the data that NetFlow collects (rx, tx, or both). Valid values: disable, tx, rx, both.
    Outbandwidth int
    Bandwidth limit for outgoing traffic, 0 means unlimited. On FortiOS versions 6.2.0-6.2.6: 0 - 16776000 kbps. On FortiOS versions 6.4.10-6.4.15, 7.0.6-7.0.15, >= 7.2.1: 0 - 80000000 kbps.
    PadtRetryTimeout int
    PPPoE Active Discovery Terminate (PADT) used to terminate sessions after an idle time.
    Password string
    PPPoE account's password.
    PingServStatus int
    PING server status.
    PollingInterval int
    sFlow polling interval in seconds (1 - 255).
    PppoeUnnumberedNegotiate string
    Enable/disable PPPoE unnumbered negotiation. Valid values: enable, disable.
    PptpAuthType string
    PPTP authentication type. Valid values: auto, pap, chap, mschapv1, mschapv2.
    PptpClient string
    Enable/disable PPTP client. Valid values: enable, disable.
    PptpPassword string
    PPTP password.
    PptpServerIp string
    PPTP server IP address.
    PptpTimeout int
    Idle timer in minutes (0 for disabled).
    PptpUser string
    PPTP user name.
    PreserveSessionRoute string
    Enable/disable preservation of session route when dirty. Valid values: enable, disable.
    Priority int
    Priority of learned routes.
    PriorityOverride string
    Enable/disable fail back to higher priority port once recovered. Valid values: enable, disable.
    ProxyCaptivePortal string
    Enable/disable proxy captive portal on this interface. Valid values: enable, disable.
    ReachableTime int
    IPv4 reachable time in milliseconds (30000 - 3600000, default = 30000).
    RedundantInterface string
    Redundant interface.
    RemoteIp string
    Remote IP address of tunnel.
    ReplacemsgOverrideGroup string
    Replacement message override group.
    RingRx int
    RX ring size.
    RingTx int
    TX ring size.
    Role string
    Interface role. Valid values: lan, wan, dmz, undefined.
    SampleDirection string
    Data that NetFlow collects (rx, tx, or both). Valid values: tx, rx, both.
    SampleRate int
    sFlow sample rate (10 - 99999).
    ScanBotnetConnections string
    Enable monitoring or blocking connections to Botnet servers through this interface. Valid values: disable, block, monitor.
    SecondaryIp string
    Enable/disable adding a secondary IP to this interface. Valid values: enable, disable.
    Secondaryips []InterfaceSecondaryipArgs
    Second IP address of interface. The structure of secondaryip block is documented below.
    SecurityExemptList string
    Name of security-exempt-list.
    SecurityExternalLogout string
    URL of external authentication logout server.
    SecurityExternalWeb string
    URL of external authentication web server.
    SecurityGroups []InterfaceSecurityGroupArgs
    User groups that can authenticate with the captive portal. The structure of security_groups block is documented below.
    SecurityMacAuthBypass string
    Enable/disable MAC authentication bypass. Valid values: mac-auth-only, enable, disable.
    SecurityMode string
    Turn on captive portal authentication for this interface. Valid values: none, captive-portal, 802.1X.
    SecurityRedirectUrl string
    URL redirection after disclaimer/authentication.
    ServiceName string
    PPPoE service name.
    SflowSampler string
    Enable/disable sFlow on this interface. Valid values: enable, disable.
    SnmpIndex int
    Permanent SNMP Index of the interface.
    Speed string
    Interface speed. The default setting and the options available depend on the interface hardware.
    SpilloverThreshold int
    Egress Spillover threshold (0 - 16776000 kbps), 0 means unlimited.
    SrcCheck string
    Enable/disable source IP check. Valid values: enable, disable.
    Status string
    Bring the interface up or shut the interface down. Valid values: up, down.
    Stp string
    Enable/disable STP. Valid values: disable, enable.
    StpHaSecondary string
    Control STP behaviour on HA secondary. Valid values: disable, enable, priority-adjust.
    Stpforward string
    Enable/disable STP forwarding. Valid values: enable, disable.
    StpforwardMode string
    Configure STP forwarding mode. Valid values: rpl-all-ext-id, rpl-bridge-ext-id, rpl-nothing.
    Subst string
    Enable to always send packets from this interface to a destination MAC address. Valid values: enable, disable.
    SubstituteDstMac string
    Destination MAC address that all packets are sent to from this interface.
    SwcFirstCreate int
    Initial create for switch-controller VLANs.
    SwcVlan int
    Creation status for switch-controller VLANs.
    Switch string
    Contained in switch.
    SwitchControllerAccessVlan string
    Block FortiSwitch port-to-port traffic. Valid values: enable, disable.
    SwitchControllerArpInspection string
    Enable/disable FortiSwitch ARP inspection.
    SwitchControllerDhcpSnooping string
    Switch controller DHCP snooping. Valid values: enable, disable.
    SwitchControllerDhcpSnoopingOption82 string
    Switch controller DHCP snooping option82. Valid values: enable, disable.
    SwitchControllerDhcpSnoopingVerifyMac string
    Switch controller DHCP snooping verify MAC. Valid values: enable, disable.
    SwitchControllerDynamic string
    Integrated FortiLink settings for managed FortiSwitch.
    SwitchControllerFeature string
    Interface's purpose when assigning traffic (read only).
    SwitchControllerIgmpSnooping string
    Switch controller IGMP snooping. Valid values: enable, disable.
    SwitchControllerIgmpSnoopingFastLeave string
    Switch controller IGMP snooping fast-leave. Valid values: enable, disable.
    SwitchControllerIgmpSnoopingProxy string
    Switch controller IGMP snooping proxy. Valid values: enable, disable.
    SwitchControllerIotScanning string
    Enable/disable managed FortiSwitch IoT scanning. Valid values: enable, disable.
    SwitchControllerLearningLimit int
    Limit the number of dynamic MAC addresses on this VLAN (1 - 128, 0 = no limit, default).
    SwitchControllerMgmtVlan int
    VLAN to use for FortiLink management purposes.
    SwitchControllerNac string
    Integrated NAC settings for managed FortiSwitch.
    SwitchControllerNetflowCollect string
    NetFlow collection and processing. Valid values: disable, enable.
    SwitchControllerOffload string
    Enable/disable managed FortiSwitch routing offload. Valid values: enable, disable.
    SwitchControllerOffloadGw string
    Enable/disable managed FortiSwitch routing offload gateway. Valid values: enable, disable.
    SwitchControllerOffloadIp string
    IP for routing offload on FortiSwitch.
    SwitchControllerRspanMode string
    Stop Layer2 MAC learning and interception of BPDUs and other packets on this interface. Valid values: disable, enable.
    SwitchControllerSourceIp string
    Source IP address used in FortiLink over L3 connections. Valid values: outbound, fixed.
    SwitchControllerTrafficPolicy string
    Switch controller traffic policy for the VLAN.
    SystemId string
    Define a system ID for the aggregate interface.
    SystemIdType string
    Method in which system ID is generated. Valid values: auto, user.
    Taggings []InterfaceTaggingArgs
    Config object tagging. The structure of tagging block is documented below.
    TcpMss int
    TCP maximum segment size. 0 means do not change segment size.
    Trunk string
    Enable/disable VLAN trunk. Valid values: enable, disable.
    TrustIp1 string
    Trusted host for dedicated management traffic (0.0.0.0/24 for all hosts).
    TrustIp2 string
    Trusted host for dedicated management traffic (0.0.0.0/24 for all hosts).
    TrustIp3 string
    Trusted host for dedicated management traffic (0.0.0.0/24 for all hosts).
    TrustIp61 string
    Trusted IPv6 host for dedicated management traffic (::/0 for all hosts).
    TrustIp62 string
    Trusted IPv6 host for dedicated management traffic (::/0 for all hosts).
    TrustIp63 string
    Trusted IPv6 host for dedicated management traffic (::/0 for all hosts).
    Type string
    Interface type.
    Username string
    Username of the PPPoE account, provided by your ISP.
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    Vindex int
    Switch control interface VLAN ID.
    VlanProtocol string
    Ethernet protocol of VLAN. Valid values: 8021q, 8021ad.
    Vlanforward string
    Enable/disable traffic forwarding between VLANs on this interface. Valid values: enable, disable.
    Vlanid int
    VLAN ID (1 - 4094).
    Vrf int
    Virtual Routing Forwarding ID.
    VrrpVirtualMac string
    Enable/disable use of virtual MAC for VRRP. Valid values: enable, disable.
    Vrrps []InterfaceVrrpArgs
    VRRP configuration. The structure of vrrp block is documented below.
    Wccp string
    Enable/disable WCCP on this interface. Used for encapsulated WCCP communication between WCCP clients and servers. Valid values: enable, disable.
    Weight int
    Default weight for static routes (if route has no weight configured).
    WinsIp string
    WINS server IP.
    vdom String
    Interface is in this virtual domain (VDOM).
    acName String
    PPPoE server name.
    aggregate String
    Aggregate interface.
    aggregateType String
    Type of aggregation. Valid values: physical, vxlan.
    algorithm String
    Frame distribution algorithm.
    alias String
    Alias will be displayed with the interface name to make it easier to distinguish.
    allowaccess String
    Permitted types of management access to this interface.
    apDiscover String
    Enable/disable automatic registration of unknown FortiAP devices. Valid values: enable, disable.
    arpforward String
    Enable/disable ARP forwarding. Valid values: enable, disable.
    authCert String
    HTTPS server certificate.
    authPortalAddr String
    Address of captive portal.
    authType String
    PPP authentication type to use. Valid values: auto, pap, chap, mschapv1, mschapv2.
    autoAuthExtensionDevice String
    Enable/disable automatic authorization of dedicated Fortinet extension device on this interface. Valid values: enable, disable.
    autogenerated String
    Indicates whether the interface is automatically created by FortiGate, for example, created during the VPN creation process. If it is, set it to "auto", else keep it empty.
    bandwidthMeasureTime Integer
    Bandwidth measure time
    bfd String
    Bidirectional Forwarding Detection (BFD) settings. Valid values: global, enable, disable.
    bfdDesiredMinTx Integer
    BFD desired minimal transmit interval.
    bfdDetectMult Integer
    BFD detection multiplier.
    bfdRequiredMinRx Integer
    BFD required minimal receive interval.
    broadcastForticlientDiscovery String
    Enable/disable broadcasting FortiClient discovery messages. Valid values: enable, disable.
    broadcastForward String
    Enable/disable broadcast forwarding. Valid values: enable, disable.
    captivePortal Integer
    Enable/disable captive portal.
    cliConnStatus Integer
    CLI connection status.
    clientOptions List<InterfaceClientOption>
    DHCP client options. The structure of client_options block is documented below.
    color Integer
    Color of icon on the GUI.
    dedicatedTo String
    Configure interface for single purpose. Valid values: none, management.
    defaultPurdueLevel String
    default purdue level of device detected on this interface. Valid values: 1, 1.5, 2, 2.5, 3, 3.5, 4, 5, 5.5.
    defaultgw String
    Enable to get the gateway IP from the DHCP or PPPoE server. Valid values: enable, disable.
    description String
    Description.
    detectedPeerMtu Integer
    MTU of detected peer (0 - 4294967295).
    detectprotocol String
    Protocols used to detect the server. Valid values: ping, tcp-echo, udp-echo.
    detectserver String
    Gateway's ping server for this IP.
    deviceAccessList String
    Device access list.
    deviceIdentification String
    Enable/disable passively gathering of device identity information about the devices on the network connected to this interface. Valid values: enable, disable.
    deviceIdentificationActiveScan String
    Enable/disable active gathering of device identity information about the devices on the network connected to this interface. Valid values: enable, disable.
    deviceNetscan String
    Enable/disable inclusion of devices detected on this interface in network vulnerability scans. Valid values: disable, enable.
    deviceUserIdentification String
    Enable/disable passive gathering of user identity information about users on this interface. Valid values: enable, disable.
    devindex Integer
    Device Index.
    dhcpBroadcastFlag String
    Enable/disable setting of the broadcast flag in messages sent by the DHCP client (default = enable). Valid values: disable, enable.
    dhcpClasslessRouteAddition String
    Enable/disable addition of classless static routes retrieved from DHCP server. Valid values: enable, disable.
    dhcpClientIdentifier String
    DHCP client identifier.
    dhcpRelayAgentOption String
    Enable/disable DHCP relay agent option. Valid values: enable, disable.
    dhcpRelayAllowNoEndOption String
    Enable/disable relaying DHCP messages with no end option. Valid values: disable, enable.
    dhcpRelayCircuitId String
    DHCP relay circuit ID.
    dhcpRelayInterface String
    Specify outgoing interface to reach server.
    dhcpRelayInterfaceSelectMethod String
    Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
    dhcpRelayIp String
    DHCP relay IP address.
    dhcpRelayLinkSelection String
    DHCP relay link selection.
    dhcpRelayRequestAllServer String
    Enable/disable sending DHCP request to all servers. Valid values: disable, enable.
    dhcpRelayService String
    Enable/disable allowing this interface to act as a DHCP relay. Valid values: disable, enable.
    dhcpRelaySourceIp String
    IP address used by the DHCP relay as its source IP.
    dhcpRelayType String
    DHCP relay type (regular or IPsec). Valid values: regular, ipsec.
    dhcpRenewTime Integer
    DHCP renew time in seconds (300-604800), 0 means use the renew time provided by the server.
    dhcpSmartRelay String
    Enable/disable DHCP smart relay. Valid values: disable, enable.
    dhcpSnoopingServerLists List<InterfaceDhcpSnoopingServerList>
    Configure DHCP server access list. The structure of dhcp_snooping_server_list block is documented below.
    discRetryTimeout Integer
    Time in seconds to wait before retrying to start a PPPoE discovery, 0 means no timeout.
    disconnectThreshold Integer
    Time in milliseconds to wait before sending a notification that this interface is down or disconnected.
    distance Integer
    Distance for routes learned through PPPoE or DHCP, lower distance indicates preferred route.
    dnsServerOverride String
    Enable/disable use DNS acquired by DHCP or PPPoE. Valid values: enable, disable.
    dnsServerProtocol String
    DNS transport protocols. Valid values: cleartext, dot, doh.
    dropFragment String
    Enable/disable drop fragment packets. Valid values: enable, disable.
    dropOverlappedFragment String
    Enable/disable drop overlapped fragment packets. Valid values: enable, disable.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    eapCaCert String
    EAP CA certificate name.
    eapIdentity String
    EAP identity.
    eapMethod String
    EAP method. Valid values: tls, peap.
    eapPassword String
    EAP password.
    eapSupplicant String
    Enable/disable EAP-Supplicant. Valid values: enable, disable.
    eapUserCert String
    EAP user certificate name.
    egressShapingProfile String
    Outgoing traffic shaping profile.
    endpointCompliance String
    Enable/disable endpoint compliance enforcement. Valid values: enable, disable.
    estimatedDownstreamBandwidth Integer
    Estimated maximum downstream bandwidth (kbps). Used to estimate link utilization.
    estimatedUpstreamBandwidth Integer
    Estimated maximum upstream bandwidth (kbps). Used to estimate link utilization.
    explicitFtpProxy String
    Enable/disable the explicit FTP proxy on this interface. Valid values: enable, disable.
    explicitWebProxy String
    Enable/disable the explicit web proxy on this interface. Valid values: enable, disable.
    external String
    Enable/disable identifying the interface as an external interface (which usually means it's connected to the Internet). Valid values: enable, disable.
    failActionOnExtender String
    Action on extender when interface fail . Valid values: soft-restart, hard-restart, reboot.
    failAlertInterfaces List<InterfaceFailAlertInterface>
    Names of the FortiGate interfaces from which the link failure alert is sent for this interface. The structure of fail_alert_interfaces block is documented below.
    failAlertMethod String
    Select link-failed-signal or link-down method to alert about a failed link. Valid values: link-failed-signal, link-down.
    failDetect String
    Enable/disable fail detection features for this interface. Valid values: enable, disable.
    failDetectOption String
    Options for detecting that this interface has failed. Valid values: detectserver, link-down.
    fortiheartbeat String
    Enable/disable FortiHeartBeat (FortiTelemetry on GUI). Valid values: enable, disable.
    fortilink String
    Enable FortiLink to dedicate this interface to manage other Fortinet devices. Valid values: enable, disable.
    fortilinkBackupLink Integer
    fortilink split interface backup link.
    fortilinkNeighborDetect String
    Protocol for FortiGate neighbor discovery. Valid values: lldp, fortilink.
    fortilinkSplitInterface String
    Enable/disable FortiLink split interface to connect member link to different FortiSwitch in stack for uplink redundancy. Valid values: enable, disable.
    fortilinkStacking String
    Enable/disable FortiLink switch-stacking on this interface. Valid values: enable, disable.
    forwardDomain Integer
    Transparent mode forward domain.
    forwardErrorCorrection String
    Configure forward error correction (FEC). Valid values: none, disable, cl91-rs-fec, cl74-fc-fec.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    gwdetect String
    Enable/disable detect gateway alive for first. Valid values: enable, disable.
    haPriority Integer
    HA election priority for the PING server.
    icmpAcceptRedirect String
    Enable/disable ICMP accept redirect. Valid values: enable, disable.
    icmpSendRedirect String
    Enable/disable ICMP send redirect. Valid values: enable, disable.
    identAccept String
    Enable/disable authentication for this interface. Valid values: enable, disable.
    idleTimeout Integer
    PPPoE auto disconnect after idle timeout seconds, 0 means no timeout.
    ikeSamlServer String
    Configure IKE authentication SAML server.
    inbandwidth Integer
    Bandwidth limit for incoming traffic, 0 means unlimited. On FortiOS versions 6.2.0-6.4.2, 7.0.0-7.0.5, 7.2.0: 0 - 16776000 kbps. On FortiOS versions 6.4.10-6.4.15, 7.0.6-7.0.15, >= 7.2.1: 0 - 80000000 kbps.
    ingressShapingProfile String
    Incoming traffic shaping profile.
    ingressSpilloverThreshold Integer
    Ingress Spillover threshold (0 - 16776000 kbps), 0 means unlimited.
    interface_ String
    Interface name.
    internal Integer
    Implicitly created.
    ip String
    Interface IPv4 address and subnet mask, syntax: X.X.X.X/24.
    ipManagedByFortiipam String
    Enable/disable automatic IP address assignment of this interface by FortiIPAM.
    ipmac String
    Enable/disable IP/MAC binding. Valid values: enable, disable.
    ipsSnifferMode String
    Enable/disable the use of this interface as a one-armed sniffer. Valid values: enable, disable.
    ipunnumbered String
    Unnumbered IP used for PPPoE interfaces for which no unique local address is provided.
    ipv6 InterfaceIpv6
    IPv6 of interface. The structure of ipv6 block is documented below.
    l2forward String
    Enable/disable l2 forwarding. Valid values: enable, disable.
    lacpHaSecondary String
    LACP HA secondary member. Valid values: enable, disable.
    lacpHaSlave String
    LACP HA slave. Valid values: enable, disable.
    lacpMode String
    LACP mode. Valid values: static, passive, active.
    lacpSpeed String
    How often the interface sends LACP messages. Valid values: slow, fast.
    lcpEchoInterval Integer
    Time in seconds between PPPoE Link Control Protocol (LCP) echo requests.
    lcpMaxEchoFails Integer
    Maximum missed LCP echo messages before disconnect.
    linkUpDelay Integer
    Number of milliseconds to wait before considering a link is up.
    lldpNetworkPolicy String
    LLDP-MED network policy profile.
    lldpReception String
    Enable/disable Link Layer Discovery Protocol (LLDP) reception. Valid values: enable, disable, vdom.
    lldpTransmission String
    Enable/disable Link Layer Discovery Protocol (LLDP) transmission. Valid values: enable, disable, vdom.
    macaddr String
    Change the interface's MAC address.
    managedDevices List<InterfaceManagedDevice>
    Available when FortiLink is enabled, used for managed devices through FortiLink interface. The structure of managed_device block is documented below.
    managedSubnetworkSize String
    Number of IP addresses to be allocated by FortiIPAM and used by this FortiGate unit's DHCP server settings.
    managementIp String
    High Availability in-band management IP address of this interface.
    measuredDownstreamBandwidth Integer
    Measured downstream bandwidth (kbps).
    measuredUpstreamBandwidth Integer
    Measured upstream bandwidth (kbps).
    mediatype String
    Select SFP media interface type Valid values: none, gmii, sgmii, sr, lr, cr, sr4, lr4, cr4.
    members List<InterfaceMember>
    Physical interfaces that belong to the aggregate or redundant interface. The structure of member block is documented below.
    minLinks Integer
    Minimum number of aggregated ports that must be up.
    minLinksDown String
    Action to take when less than the configured minimum number of links are active. Valid values: operational, administrative.
    mode String
    Addressing mode (static, DHCP, PPPoE). Valid values: static, dhcp, pppoe.
    monitorBandwidth String
    Enable monitoring bandwidth on this interface. Valid values: enable, disable.
    mtu Integer
    MTU value for this interface.
    mtuOverride String
    Enable to set a custom MTU for this interface. Valid values: enable, disable.
    name String
    Name.
    ndiscforward String
    Enable/disable NDISC forwarding. Valid values: enable, disable.
    netbiosForward String
    Enable/disable NETBIOS forwarding. Valid values: disable, enable.
    netflowSampler String
    Enable/disable NetFlow on this interface and set the data that NetFlow collects (rx, tx, or both). Valid values: disable, tx, rx, both.
    outbandwidth Integer
    Bandwidth limit for outgoing traffic, 0 means unlimited. On FortiOS versions 6.2.0-6.2.6: 0 - 16776000 kbps. On FortiOS versions 6.4.10-6.4.15, 7.0.6-7.0.15, >= 7.2.1: 0 - 80000000 kbps.
    padtRetryTimeout Integer
    PPPoE Active Discovery Terminate (PADT) used to terminate sessions after an idle time.
    password String
    PPPoE account's password.
    pingServStatus Integer
    PING server status.
    pollingInterval Integer
    sFlow polling interval in seconds (1 - 255).
    pppoeUnnumberedNegotiate String
    Enable/disable PPPoE unnumbered negotiation. Valid values: enable, disable.
    pptpAuthType String
    PPTP authentication type. Valid values: auto, pap, chap, mschapv1, mschapv2.
    pptpClient String
    Enable/disable PPTP client. Valid values: enable, disable.
    pptpPassword String
    PPTP password.
    pptpServerIp String
    PPTP server IP address.
    pptpTimeout Integer
    Idle timer in minutes (0 for disabled).
    pptpUser String
    PPTP user name.
    preserveSessionRoute String
    Enable/disable preservation of session route when dirty. Valid values: enable, disable.
    priority Integer
    Priority of learned routes.
    priorityOverride String
    Enable/disable fail back to higher priority port once recovered. Valid values: enable, disable.
    proxyCaptivePortal String
    Enable/disable proxy captive portal on this interface. Valid values: enable, disable.
    reachableTime Integer
    IPv4 reachable time in milliseconds (30000 - 3600000, default = 30000).
    redundantInterface String
    Redundant interface.
    remoteIp String
    Remote IP address of tunnel.
    replacemsgOverrideGroup String
    Replacement message override group.
    ringRx Integer
    RX ring size.
    ringTx Integer
    TX ring size.
    role String
    Interface role. Valid values: lan, wan, dmz, undefined.
    sampleDirection String
    Data that NetFlow collects (rx, tx, or both). Valid values: tx, rx, both.
    sampleRate Integer
    sFlow sample rate (10 - 99999).
    scanBotnetConnections String
    Enable monitoring or blocking connections to Botnet servers through this interface. Valid values: disable, block, monitor.
    secondaryIp String
    Enable/disable adding a secondary IP to this interface. Valid values: enable, disable.
    secondaryips List<InterfaceSecondaryip>
    Second IP address of interface. The structure of secondaryip block is documented below.
    securityExemptList String
    Name of security-exempt-list.
    securityExternalLogout String
    URL of external authentication logout server.
    securityExternalWeb String
    URL of external authentication web server.
    securityGroups List<InterfaceSecurityGroup>
    User groups that can authenticate with the captive portal. The structure of security_groups block is documented below.
    securityMacAuthBypass String
    Enable/disable MAC authentication bypass. Valid values: mac-auth-only, enable, disable.
    securityMode String
    Turn on captive portal authentication for this interface. Valid values: none, captive-portal, 802.1X.
    securityRedirectUrl String
    URL redirection after disclaimer/authentication.
    serviceName String
    PPPoE service name.
    sflowSampler String
    Enable/disable sFlow on this interface. Valid values: enable, disable.
    snmpIndex Integer
    Permanent SNMP Index of the interface.
    speed String
    Interface speed. The default setting and the options available depend on the interface hardware.
    spilloverThreshold Integer
    Egress Spillover threshold (0 - 16776000 kbps), 0 means unlimited.
    srcCheck String
    Enable/disable source IP check. Valid values: enable, disable.
    status String
    Bring the interface up or shut the interface down. Valid values: up, down.
    stp String
    Enable/disable STP. Valid values: disable, enable.
    stpHaSecondary String
    Control STP behaviour on HA secondary. Valid values: disable, enable, priority-adjust.
    stpforward String
    Enable/disable STP forwarding. Valid values: enable, disable.
    stpforwardMode String
    Configure STP forwarding mode. Valid values: rpl-all-ext-id, rpl-bridge-ext-id, rpl-nothing.
    subst String
    Enable to always send packets from this interface to a destination MAC address. Valid values: enable, disable.
    substituteDstMac String
    Destination MAC address that all packets are sent to from this interface.
    swcFirstCreate Integer
    Initial create for switch-controller VLANs.
    swcVlan Integer
    Creation status for switch-controller VLANs.
    switchControllerAccessVlan String
    Block FortiSwitch port-to-port traffic. Valid values: enable, disable.
    switchControllerArpInspection String
    Enable/disable FortiSwitch ARP inspection.
    switchControllerDhcpSnooping String
    Switch controller DHCP snooping. Valid values: enable, disable.
    switchControllerDhcpSnoopingOption82 String
    Switch controller DHCP snooping option82. Valid values: enable, disable.
    switchControllerDhcpSnoopingVerifyMac String
    Switch controller DHCP snooping verify MAC. Valid values: enable, disable.
    switchControllerDynamic String
    Integrated FortiLink settings for managed FortiSwitch.
    switchControllerFeature String
    Interface's purpose when assigning traffic (read only).
    switchControllerIgmpSnooping String
    Switch controller IGMP snooping. Valid values: enable, disable.
    switchControllerIgmpSnoopingFastLeave String
    Switch controller IGMP snooping fast-leave. Valid values: enable, disable.
    switchControllerIgmpSnoopingProxy String
    Switch controller IGMP snooping proxy. Valid values: enable, disable.
    switchControllerIotScanning String
    Enable/disable managed FortiSwitch IoT scanning. Valid values: enable, disable.
    switchControllerLearningLimit Integer
    Limit the number of dynamic MAC addresses on this VLAN (1 - 128, 0 = no limit, default).
    switchControllerMgmtVlan Integer
    VLAN to use for FortiLink management purposes.
    switchControllerNac String
    Integrated NAC settings for managed FortiSwitch.
    switchControllerNetflowCollect String
    NetFlow collection and processing. Valid values: disable, enable.
    switchControllerOffload String
    Enable/disable managed FortiSwitch routing offload. Valid values: enable, disable.
    switchControllerOffloadGw String
    Enable/disable managed FortiSwitch routing offload gateway. Valid values: enable, disable.
    switchControllerOffloadIp String
    IP for routing offload on FortiSwitch.
    switchControllerRspanMode String
    Stop Layer2 MAC learning and interception of BPDUs and other packets on this interface. Valid values: disable, enable.
    switchControllerSourceIp String
    Source IP address used in FortiLink over L3 connections. Valid values: outbound, fixed.
    switchControllerTrafficPolicy String
    Switch controller traffic policy for the VLAN.
    switch_ String
    Contained in switch.
    systemId String
    Define a system ID for the aggregate interface.
    systemIdType String
    Method in which system ID is generated. Valid values: auto, user.
    taggings List<InterfaceTagging>
    Config object tagging. The structure of tagging block is documented below.
    tcpMss Integer
    TCP maximum segment size. 0 means do not change segment size.
    trunk String
    Enable/disable VLAN trunk. Valid values: enable, disable.
    trustIp1 String
    Trusted host for dedicated management traffic (0.0.0.0/24 for all hosts).
    trustIp2 String
    Trusted host for dedicated management traffic (0.0.0.0/24 for all hosts).
    trustIp3 String
    Trusted host for dedicated management traffic (0.0.0.0/24 for all hosts).
    trustIp61 String
    Trusted IPv6 host for dedicated management traffic (::/0 for all hosts).
    trustIp62 String
    Trusted IPv6 host for dedicated management traffic (::/0 for all hosts).
    trustIp63 String
    Trusted IPv6 host for dedicated management traffic (::/0 for all hosts).
    type String
    Interface type.
    username String
    Username of the PPPoE account, provided by your ISP.
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    vindex Integer
    Switch control interface VLAN ID.
    vlanProtocol String
    Ethernet protocol of VLAN. Valid values: 8021q, 8021ad.
    vlanforward String
    Enable/disable traffic forwarding between VLANs on this interface. Valid values: enable, disable.
    vlanid Integer
    VLAN ID (1 - 4094).
    vrf Integer
    Virtual Routing Forwarding ID.
    vrrpVirtualMac String
    Enable/disable use of virtual MAC for VRRP. Valid values: enable, disable.
    vrrps List<InterfaceVrrp>
    VRRP configuration. The structure of vrrp block is documented below.
    wccp String
    Enable/disable WCCP on this interface. Used for encapsulated WCCP communication between WCCP clients and servers. Valid values: enable, disable.
    weight Integer
    Default weight for static routes (if route has no weight configured).
    winsIp String
    WINS server IP.
    vdom string
    Interface is in this virtual domain (VDOM).
    acName string
    PPPoE server name.
    aggregate string
    Aggregate interface.
    aggregateType string
    Type of aggregation. Valid values: physical, vxlan.
    algorithm string
    Frame distribution algorithm.
    alias string
    Alias will be displayed with the interface name to make it easier to distinguish.
    allowaccess string
    Permitted types of management access to this interface.
    apDiscover string
    Enable/disable automatic registration of unknown FortiAP devices. Valid values: enable, disable.
    arpforward string
    Enable/disable ARP forwarding. Valid values: enable, disable.
    authCert string
    HTTPS server certificate.
    authPortalAddr string
    Address of captive portal.
    authType string
    PPP authentication type to use. Valid values: auto, pap, chap, mschapv1, mschapv2.
    autoAuthExtensionDevice string
    Enable/disable automatic authorization of dedicated Fortinet extension device on this interface. Valid values: enable, disable.
    autogenerated string
    Indicates whether the interface is automatically created by FortiGate, for example, created during the VPN creation process. If it is, set it to "auto", else keep it empty.
    bandwidthMeasureTime number
    Bandwidth measure time
    bfd string
    Bidirectional Forwarding Detection (BFD) settings. Valid values: global, enable, disable.
    bfdDesiredMinTx number
    BFD desired minimal transmit interval.
    bfdDetectMult number
    BFD detection multiplier.
    bfdRequiredMinRx number
    BFD required minimal receive interval.
    broadcastForticlientDiscovery string
    Enable/disable broadcasting FortiClient discovery messages. Valid values: enable, disable.
    broadcastForward string
    Enable/disable broadcast forwarding. Valid values: enable, disable.
    captivePortal number
    Enable/disable captive portal.
    cliConnStatus number
    CLI connection status.
    clientOptions InterfaceClientOption[]
    DHCP client options. The structure of client_options block is documented below.
    color number
    Color of icon on the GUI.
    dedicatedTo string
    Configure interface for single purpose. Valid values: none, management.
    defaultPurdueLevel string
    default purdue level of device detected on this interface. Valid values: 1, 1.5, 2, 2.5, 3, 3.5, 4, 5, 5.5.
    defaultgw string
    Enable to get the gateway IP from the DHCP or PPPoE server. Valid values: enable, disable.
    description string
    Description.
    detectedPeerMtu number
    MTU of detected peer (0 - 4294967295).
    detectprotocol string
    Protocols used to detect the server. Valid values: ping, tcp-echo, udp-echo.
    detectserver string
    Gateway's ping server for this IP.
    deviceAccessList string
    Device access list.
    deviceIdentification string
    Enable/disable passively gathering of device identity information about the devices on the network connected to this interface. Valid values: enable, disable.
    deviceIdentificationActiveScan string
    Enable/disable active gathering of device identity information about the devices on the network connected to this interface. Valid values: enable, disable.
    deviceNetscan string
    Enable/disable inclusion of devices detected on this interface in network vulnerability scans. Valid values: disable, enable.
    deviceUserIdentification string
    Enable/disable passive gathering of user identity information about users on this interface. Valid values: enable, disable.
    devindex number
    Device Index.
    dhcpBroadcastFlag string
    Enable/disable setting of the broadcast flag in messages sent by the DHCP client (default = enable). Valid values: disable, enable.
    dhcpClasslessRouteAddition string
    Enable/disable addition of classless static routes retrieved from DHCP server. Valid values: enable, disable.
    dhcpClientIdentifier string
    DHCP client identifier.
    dhcpRelayAgentOption string
    Enable/disable DHCP relay agent option. Valid values: enable, disable.
    dhcpRelayAllowNoEndOption string
    Enable/disable relaying DHCP messages with no end option. Valid values: disable, enable.
    dhcpRelayCircuitId string
    DHCP relay circuit ID.
    dhcpRelayInterface string
    Specify outgoing interface to reach server.
    dhcpRelayInterfaceSelectMethod string
    Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
    dhcpRelayIp string
    DHCP relay IP address.
    dhcpRelayLinkSelection string
    DHCP relay link selection.
    dhcpRelayRequestAllServer string
    Enable/disable sending DHCP request to all servers. Valid values: disable, enable.
    dhcpRelayService string
    Enable/disable allowing this interface to act as a DHCP relay. Valid values: disable, enable.
    dhcpRelaySourceIp string
    IP address used by the DHCP relay as its source IP.
    dhcpRelayType string
    DHCP relay type (regular or IPsec). Valid values: regular, ipsec.
    dhcpRenewTime number
    DHCP renew time in seconds (300-604800), 0 means use the renew time provided by the server.
    dhcpSmartRelay string
    Enable/disable DHCP smart relay. Valid values: disable, enable.
    dhcpSnoopingServerLists InterfaceDhcpSnoopingServerList[]
    Configure DHCP server access list. The structure of dhcp_snooping_server_list block is documented below.
    discRetryTimeout number
    Time in seconds to wait before retrying to start a PPPoE discovery, 0 means no timeout.
    disconnectThreshold number
    Time in milliseconds to wait before sending a notification that this interface is down or disconnected.
    distance number
    Distance for routes learned through PPPoE or DHCP, lower distance indicates preferred route.
    dnsServerOverride string
    Enable/disable use DNS acquired by DHCP or PPPoE. Valid values: enable, disable.
    dnsServerProtocol string
    DNS transport protocols. Valid values: cleartext, dot, doh.
    dropFragment string
    Enable/disable drop fragment packets. Valid values: enable, disable.
    dropOverlappedFragment string
    Enable/disable drop overlapped fragment packets. Valid values: enable, disable.
    dynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    eapCaCert string
    EAP CA certificate name.
    eapIdentity string
    EAP identity.
    eapMethod string
    EAP method. Valid values: tls, peap.
    eapPassword string
    EAP password.
    eapSupplicant string
    Enable/disable EAP-Supplicant. Valid values: enable, disable.
    eapUserCert string
    EAP user certificate name.
    egressShapingProfile string
    Outgoing traffic shaping profile.
    endpointCompliance string
    Enable/disable endpoint compliance enforcement. Valid values: enable, disable.
    estimatedDownstreamBandwidth number
    Estimated maximum downstream bandwidth (kbps). Used to estimate link utilization.
    estimatedUpstreamBandwidth number
    Estimated maximum upstream bandwidth (kbps). Used to estimate link utilization.
    explicitFtpProxy string
    Enable/disable the explicit FTP proxy on this interface. Valid values: enable, disable.
    explicitWebProxy string
    Enable/disable the explicit web proxy on this interface. Valid values: enable, disable.
    external string
    Enable/disable identifying the interface as an external interface (which usually means it's connected to the Internet). Valid values: enable, disable.
    failActionOnExtender string
    Action on extender when interface fail . Valid values: soft-restart, hard-restart, reboot.
    failAlertInterfaces InterfaceFailAlertInterface[]
    Names of the FortiGate interfaces from which the link failure alert is sent for this interface. The structure of fail_alert_interfaces block is documented below.
    failAlertMethod string
    Select link-failed-signal or link-down method to alert about a failed link. Valid values: link-failed-signal, link-down.
    failDetect string
    Enable/disable fail detection features for this interface. Valid values: enable, disable.
    failDetectOption string
    Options for detecting that this interface has failed. Valid values: detectserver, link-down.
    fortiheartbeat string
    Enable/disable FortiHeartBeat (FortiTelemetry on GUI). Valid values: enable, disable.
    fortilink string
    Enable FortiLink to dedicate this interface to manage other Fortinet devices. Valid values: enable, disable.
    fortilinkBackupLink number
    fortilink split interface backup link.
    fortilinkNeighborDetect string
    Protocol for FortiGate neighbor discovery. Valid values: lldp, fortilink.
    fortilinkSplitInterface string
    Enable/disable FortiLink split interface to connect member link to different FortiSwitch in stack for uplink redundancy. Valid values: enable, disable.
    fortilinkStacking string
    Enable/disable FortiLink switch-stacking on this interface. Valid values: enable, disable.
    forwardDomain number
    Transparent mode forward domain.
    forwardErrorCorrection string
    Configure forward error correction (FEC). Valid values: none, disable, cl91-rs-fec, cl74-fc-fec.
    getAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    gwdetect string
    Enable/disable detect gateway alive for first. Valid values: enable, disable.
    haPriority number
    HA election priority for the PING server.
    icmpAcceptRedirect string
    Enable/disable ICMP accept redirect. Valid values: enable, disable.
    icmpSendRedirect string
    Enable/disable ICMP send redirect. Valid values: enable, disable.
    identAccept string
    Enable/disable authentication for this interface. Valid values: enable, disable.
    idleTimeout number
    PPPoE auto disconnect after idle timeout seconds, 0 means no timeout.
    ikeSamlServer string
    Configure IKE authentication SAML server.
    inbandwidth number
    Bandwidth limit for incoming traffic, 0 means unlimited. On FortiOS versions 6.2.0-6.4.2, 7.0.0-7.0.5, 7.2.0: 0 - 16776000 kbps. On FortiOS versions 6.4.10-6.4.15, 7.0.6-7.0.15, >= 7.2.1: 0 - 80000000 kbps.
    ingressShapingProfile string
    Incoming traffic shaping profile.
    ingressSpilloverThreshold number
    Ingress Spillover threshold (0 - 16776000 kbps), 0 means unlimited.
    interface string
    Interface name.
    internal number
    Implicitly created.
    ip string
    Interface IPv4 address and subnet mask, syntax: X.X.X.X/24.
    ipManagedByFortiipam string
    Enable/disable automatic IP address assignment of this interface by FortiIPAM.
    ipmac string
    Enable/disable IP/MAC binding. Valid values: enable, disable.
    ipsSnifferMode string
    Enable/disable the use of this interface as a one-armed sniffer. Valid values: enable, disable.
    ipunnumbered string
    Unnumbered IP used for PPPoE interfaces for which no unique local address is provided.
    ipv6 InterfaceIpv6
    IPv6 of interface. The structure of ipv6 block is documented below.
    l2forward string
    Enable/disable l2 forwarding. Valid values: enable, disable.
    lacpHaSecondary string
    LACP HA secondary member. Valid values: enable, disable.
    lacpHaSlave string
    LACP HA slave. Valid values: enable, disable.
    lacpMode string
    LACP mode. Valid values: static, passive, active.
    lacpSpeed string
    How often the interface sends LACP messages. Valid values: slow, fast.
    lcpEchoInterval number
    Time in seconds between PPPoE Link Control Protocol (LCP) echo requests.
    lcpMaxEchoFails number
    Maximum missed LCP echo messages before disconnect.
    linkUpDelay number
    Number of milliseconds to wait before considering a link is up.
    lldpNetworkPolicy string
    LLDP-MED network policy profile.
    lldpReception string
    Enable/disable Link Layer Discovery Protocol (LLDP) reception. Valid values: enable, disable, vdom.
    lldpTransmission string
    Enable/disable Link Layer Discovery Protocol (LLDP) transmission. Valid values: enable, disable, vdom.
    macaddr string
    Change the interface's MAC address.
    managedDevices InterfaceManagedDevice[]
    Available when FortiLink is enabled, used for managed devices through FortiLink interface. The structure of managed_device block is documented below.
    managedSubnetworkSize string
    Number of IP addresses to be allocated by FortiIPAM and used by this FortiGate unit's DHCP server settings.
    managementIp string
    High Availability in-band management IP address of this interface.
    measuredDownstreamBandwidth number
    Measured downstream bandwidth (kbps).
    measuredUpstreamBandwidth number
    Measured upstream bandwidth (kbps).
    mediatype string
    Select SFP media interface type Valid values: none, gmii, sgmii, sr, lr, cr, sr4, lr4, cr4.
    members InterfaceMember[]
    Physical interfaces that belong to the aggregate or redundant interface. The structure of member block is documented below.
    minLinks number
    Minimum number of aggregated ports that must be up.
    minLinksDown string
    Action to take when less than the configured minimum number of links are active. Valid values: operational, administrative.
    mode string
    Addressing mode (static, DHCP, PPPoE). Valid values: static, dhcp, pppoe.
    monitorBandwidth string
    Enable monitoring bandwidth on this interface. Valid values: enable, disable.
    mtu number
    MTU value for this interface.
    mtuOverride string
    Enable to set a custom MTU for this interface. Valid values: enable, disable.
    name string
    Name.
    ndiscforward string
    Enable/disable NDISC forwarding. Valid values: enable, disable.
    netbiosForward string
    Enable/disable NETBIOS forwarding. Valid values: disable, enable.
    netflowSampler string
    Enable/disable NetFlow on this interface and set the data that NetFlow collects (rx, tx, or both). Valid values: disable, tx, rx, both.
    outbandwidth number
    Bandwidth limit for outgoing traffic, 0 means unlimited. On FortiOS versions 6.2.0-6.2.6: 0 - 16776000 kbps. On FortiOS versions 6.4.10-6.4.15, 7.0.6-7.0.15, >= 7.2.1: 0 - 80000000 kbps.
    padtRetryTimeout number
    PPPoE Active Discovery Terminate (PADT) used to terminate sessions after an idle time.
    password string
    PPPoE account's password.
    pingServStatus number
    PING server status.
    pollingInterval number
    sFlow polling interval in seconds (1 - 255).
    pppoeUnnumberedNegotiate string
    Enable/disable PPPoE unnumbered negotiation. Valid values: enable, disable.
    pptpAuthType string
    PPTP authentication type. Valid values: auto, pap, chap, mschapv1, mschapv2.
    pptpClient string
    Enable/disable PPTP client. Valid values: enable, disable.
    pptpPassword string
    PPTP password.
    pptpServerIp string
    PPTP server IP address.
    pptpTimeout number
    Idle timer in minutes (0 for disabled).
    pptpUser string
    PPTP user name.
    preserveSessionRoute string
    Enable/disable preservation of session route when dirty. Valid values: enable, disable.
    priority number
    Priority of learned routes.
    priorityOverride string
    Enable/disable fail back to higher priority port once recovered. Valid values: enable, disable.
    proxyCaptivePortal string
    Enable/disable proxy captive portal on this interface. Valid values: enable, disable.
    reachableTime number
    IPv4 reachable time in milliseconds (30000 - 3600000, default = 30000).
    redundantInterface string
    Redundant interface.
    remoteIp string
    Remote IP address of tunnel.
    replacemsgOverrideGroup string
    Replacement message override group.
    ringRx number
    RX ring size.
    ringTx number
    TX ring size.
    role string
    Interface role. Valid values: lan, wan, dmz, undefined.
    sampleDirection string
    Data that NetFlow collects (rx, tx, or both). Valid values: tx, rx, both.
    sampleRate number
    sFlow sample rate (10 - 99999).
    scanBotnetConnections string
    Enable monitoring or blocking connections to Botnet servers through this interface. Valid values: disable, block, monitor.
    secondaryIp string
    Enable/disable adding a secondary IP to this interface. Valid values: enable, disable.
    secondaryips InterfaceSecondaryip[]
    Second IP address of interface. The structure of secondaryip block is documented below.
    securityExemptList string
    Name of security-exempt-list.
    securityExternalLogout string
    URL of external authentication logout server.
    securityExternalWeb string
    URL of external authentication web server.
    securityGroups InterfaceSecurityGroup[]
    User groups that can authenticate with the captive portal. The structure of security_groups block is documented below.
    securityMacAuthBypass string
    Enable/disable MAC authentication bypass. Valid values: mac-auth-only, enable, disable.
    securityMode string
    Turn on captive portal authentication for this interface. Valid values: none, captive-portal, 802.1X.
    securityRedirectUrl string
    URL redirection after disclaimer/authentication.
    serviceName string
    PPPoE service name.
    sflowSampler string
    Enable/disable sFlow on this interface. Valid values: enable, disable.
    snmpIndex number
    Permanent SNMP Index of the interface.
    speed string
    Interface speed. The default setting and the options available depend on the interface hardware.
    spilloverThreshold number
    Egress Spillover threshold (0 - 16776000 kbps), 0 means unlimited.
    srcCheck string
    Enable/disable source IP check. Valid values: enable, disable.
    status string
    Bring the interface up or shut the interface down. Valid values: up, down.
    stp string
    Enable/disable STP. Valid values: disable, enable.
    stpHaSecondary string
    Control STP behaviour on HA secondary. Valid values: disable, enable, priority-adjust.
    stpforward string
    Enable/disable STP forwarding. Valid values: enable, disable.
    stpforwardMode string
    Configure STP forwarding mode. Valid values: rpl-all-ext-id, rpl-bridge-ext-id, rpl-nothing.
    subst string
    Enable to always send packets from this interface to a destination MAC address. Valid values: enable, disable.
    substituteDstMac string
    Destination MAC address that all packets are sent to from this interface.
    swcFirstCreate number
    Initial create for switch-controller VLANs.
    swcVlan number
    Creation status for switch-controller VLANs.
    switch string
    Contained in switch.
    switchControllerAccessVlan string
    Block FortiSwitch port-to-port traffic. Valid values: enable, disable.
    switchControllerArpInspection string
    Enable/disable FortiSwitch ARP inspection.
    switchControllerDhcpSnooping string
    Switch controller DHCP snooping. Valid values: enable, disable.
    switchControllerDhcpSnoopingOption82 string
    Switch controller DHCP snooping option82. Valid values: enable, disable.
    switchControllerDhcpSnoopingVerifyMac string
    Switch controller DHCP snooping verify MAC. Valid values: enable, disable.
    switchControllerDynamic string
    Integrated FortiLink settings for managed FortiSwitch.
    switchControllerFeature string
    Interface's purpose when assigning traffic (read only).
    switchControllerIgmpSnooping string
    Switch controller IGMP snooping. Valid values: enable, disable.
    switchControllerIgmpSnoopingFastLeave string
    Switch controller IGMP snooping fast-leave. Valid values: enable, disable.
    switchControllerIgmpSnoopingProxy string
    Switch controller IGMP snooping proxy. Valid values: enable, disable.
    switchControllerIotScanning string
    Enable/disable managed FortiSwitch IoT scanning. Valid values: enable, disable.
    switchControllerLearningLimit number
    Limit the number of dynamic MAC addresses on this VLAN (1 - 128, 0 = no limit, default).
    switchControllerMgmtVlan number
    VLAN to use for FortiLink management purposes.
    switchControllerNac string
    Integrated NAC settings for managed FortiSwitch.
    switchControllerNetflowCollect string
    NetFlow collection and processing. Valid values: disable, enable.
    switchControllerOffload string
    Enable/disable managed FortiSwitch routing offload. Valid values: enable, disable.
    switchControllerOffloadGw string
    Enable/disable managed FortiSwitch routing offload gateway. Valid values: enable, disable.
    switchControllerOffloadIp string
    IP for routing offload on FortiSwitch.
    switchControllerRspanMode string
    Stop Layer2 MAC learning and interception of BPDUs and other packets on this interface. Valid values: disable, enable.
    switchControllerSourceIp string
    Source IP address used in FortiLink over L3 connections. Valid values: outbound, fixed.
    switchControllerTrafficPolicy string
    Switch controller traffic policy for the VLAN.
    systemId string
    Define a system ID for the aggregate interface.
    systemIdType string
    Method in which system ID is generated. Valid values: auto, user.
    taggings InterfaceTagging[]
    Config object tagging. The structure of tagging block is documented below.
    tcpMss number
    TCP maximum segment size. 0 means do not change segment size.
    trunk string
    Enable/disable VLAN trunk. Valid values: enable, disable.
    trustIp1 string
    Trusted host for dedicated management traffic (0.0.0.0/24 for all hosts).
    trustIp2 string
    Trusted host for dedicated management traffic (0.0.0.0/24 for all hosts).
    trustIp3 string
    Trusted host for dedicated management traffic (0.0.0.0/24 for all hosts).
    trustIp61 string
    Trusted IPv6 host for dedicated management traffic (::/0 for all hosts).
    trustIp62 string
    Trusted IPv6 host for dedicated management traffic (::/0 for all hosts).
    trustIp63 string
    Trusted IPv6 host for dedicated management traffic (::/0 for all hosts).
    type string
    Interface type.
    username string
    Username of the PPPoE account, provided by your ISP.
    vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    vindex number
    Switch control interface VLAN ID.
    vlanProtocol string
    Ethernet protocol of VLAN. Valid values: 8021q, 8021ad.
    vlanforward string
    Enable/disable traffic forwarding between VLANs on this interface. Valid values: enable, disable.
    vlanid number
    VLAN ID (1 - 4094).
    vrf number
    Virtual Routing Forwarding ID.
    vrrpVirtualMac string
    Enable/disable use of virtual MAC for VRRP. Valid values: enable, disable.
    vrrps InterfaceVrrp[]
    VRRP configuration. The structure of vrrp block is documented below.
    wccp string
    Enable/disable WCCP on this interface. Used for encapsulated WCCP communication between WCCP clients and servers. Valid values: enable, disable.
    weight number
    Default weight for static routes (if route has no weight configured).
    winsIp string
    WINS server IP.
    vdom str
    Interface is in this virtual domain (VDOM).
    ac_name str
    PPPoE server name.
    aggregate str
    Aggregate interface.
    aggregate_type str
    Type of aggregation. Valid values: physical, vxlan.
    algorithm str
    Frame distribution algorithm.
    alias str
    Alias will be displayed with the interface name to make it easier to distinguish.
    allowaccess str
    Permitted types of management access to this interface.
    ap_discover str
    Enable/disable automatic registration of unknown FortiAP devices. Valid values: enable, disable.
    arpforward str
    Enable/disable ARP forwarding. Valid values: enable, disable.
    auth_cert str
    HTTPS server certificate.
    auth_portal_addr str
    Address of captive portal.
    auth_type str
    PPP authentication type to use. Valid values: auto, pap, chap, mschapv1, mschapv2.
    auto_auth_extension_device str
    Enable/disable automatic authorization of dedicated Fortinet extension device on this interface. Valid values: enable, disable.
    autogenerated str
    Indicates whether the interface is automatically created by FortiGate, for example, created during the VPN creation process. If it is, set it to "auto", else keep it empty.
    bandwidth_measure_time int
    Bandwidth measure time
    bfd str
    Bidirectional Forwarding Detection (BFD) settings. Valid values: global, enable, disable.
    bfd_desired_min_tx int
    BFD desired minimal transmit interval.
    bfd_detect_mult int
    BFD detection multiplier.
    bfd_required_min_rx int
    BFD required minimal receive interval.
    broadcast_forticlient_discovery str
    Enable/disable broadcasting FortiClient discovery messages. Valid values: enable, disable.
    broadcast_forward str
    Enable/disable broadcast forwarding. Valid values: enable, disable.
    captive_portal int
    Enable/disable captive portal.
    cli_conn_status int
    CLI connection status.
    client_options Sequence[InterfaceClientOptionArgs]
    DHCP client options. The structure of client_options block is documented below.
    color int
    Color of icon on the GUI.
    dedicated_to str
    Configure interface for single purpose. Valid values: none, management.
    default_purdue_level str
    default purdue level of device detected on this interface. Valid values: 1, 1.5, 2, 2.5, 3, 3.5, 4, 5, 5.5.
    defaultgw str
    Enable to get the gateway IP from the DHCP or PPPoE server. Valid values: enable, disable.
    description str
    Description.
    detected_peer_mtu int
    MTU of detected peer (0 - 4294967295).
    detectprotocol str
    Protocols used to detect the server. Valid values: ping, tcp-echo, udp-echo.
    detectserver str
    Gateway's ping server for this IP.
    device_access_list str
    Device access list.
    device_identification str
    Enable/disable passively gathering of device identity information about the devices on the network connected to this interface. Valid values: enable, disable.
    device_identification_active_scan str
    Enable/disable active gathering of device identity information about the devices on the network connected to this interface. Valid values: enable, disable.
    device_netscan str
    Enable/disable inclusion of devices detected on this interface in network vulnerability scans. Valid values: disable, enable.
    device_user_identification str
    Enable/disable passive gathering of user identity information about users on this interface. Valid values: enable, disable.
    devindex int
    Device Index.
    dhcp_broadcast_flag str
    Enable/disable setting of the broadcast flag in messages sent by the DHCP client (default = enable). Valid values: disable, enable.
    dhcp_classless_route_addition str
    Enable/disable addition of classless static routes retrieved from DHCP server. Valid values: enable, disable.
    dhcp_client_identifier str
    DHCP client identifier.
    dhcp_relay_agent_option str
    Enable/disable DHCP relay agent option. Valid values: enable, disable.
    dhcp_relay_allow_no_end_option str
    Enable/disable relaying DHCP messages with no end option. Valid values: disable, enable.
    dhcp_relay_circuit_id str
    DHCP relay circuit ID.
    dhcp_relay_interface str
    Specify outgoing interface to reach server.
    dhcp_relay_interface_select_method str
    Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
    dhcp_relay_ip str
    DHCP relay IP address.
    dhcp_relay_link_selection str
    DHCP relay link selection.
    dhcp_relay_request_all_server str
    Enable/disable sending DHCP request to all servers. Valid values: disable, enable.
    dhcp_relay_service str
    Enable/disable allowing this interface to act as a DHCP relay. Valid values: disable, enable.
    dhcp_relay_source_ip str
    IP address used by the DHCP relay as its source IP.
    dhcp_relay_type str
    DHCP relay type (regular or IPsec). Valid values: regular, ipsec.
    dhcp_renew_time int
    DHCP renew time in seconds (300-604800), 0 means use the renew time provided by the server.
    dhcp_smart_relay str
    Enable/disable DHCP smart relay. Valid values: disable, enable.
    dhcp_snooping_server_lists Sequence[InterfaceDhcpSnoopingServerListArgs]
    Configure DHCP server access list. The structure of dhcp_snooping_server_list block is documented below.
    disc_retry_timeout int
    Time in seconds to wait before retrying to start a PPPoE discovery, 0 means no timeout.
    disconnect_threshold int
    Time in milliseconds to wait before sending a notification that this interface is down or disconnected.
    distance int
    Distance for routes learned through PPPoE or DHCP, lower distance indicates preferred route.
    dns_server_override str
    Enable/disable use DNS acquired by DHCP or PPPoE. Valid values: enable, disable.
    dns_server_protocol str
    DNS transport protocols. Valid values: cleartext, dot, doh.
    drop_fragment str
    Enable/disable drop fragment packets. Valid values: enable, disable.
    drop_overlapped_fragment str
    Enable/disable drop overlapped fragment packets. Valid values: enable, disable.
    dynamic_sort_subtable str
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    eap_ca_cert str
    EAP CA certificate name.
    eap_identity str
    EAP identity.
    eap_method str
    EAP method. Valid values: tls, peap.
    eap_password str
    EAP password.
    eap_supplicant str
    Enable/disable EAP-Supplicant. Valid values: enable, disable.
    eap_user_cert str
    EAP user certificate name.
    egress_shaping_profile str
    Outgoing traffic shaping profile.
    endpoint_compliance str
    Enable/disable endpoint compliance enforcement. Valid values: enable, disable.
    estimated_downstream_bandwidth int
    Estimated maximum downstream bandwidth (kbps). Used to estimate link utilization.
    estimated_upstream_bandwidth int
    Estimated maximum upstream bandwidth (kbps). Used to estimate link utilization.
    explicit_ftp_proxy str
    Enable/disable the explicit FTP proxy on this interface. Valid values: enable, disable.
    explicit_web_proxy str
    Enable/disable the explicit web proxy on this interface. Valid values: enable, disable.
    external str
    Enable/disable identifying the interface as an external interface (which usually means it's connected to the Internet). Valid values: enable, disable.
    fail_action_on_extender str
    Action on extender when interface fail . Valid values: soft-restart, hard-restart, reboot.
    fail_alert_interfaces Sequence[InterfaceFailAlertInterfaceArgs]
    Names of the FortiGate interfaces from which the link failure alert is sent for this interface. The structure of fail_alert_interfaces block is documented below.
    fail_alert_method str
    Select link-failed-signal or link-down method to alert about a failed link. Valid values: link-failed-signal, link-down.
    fail_detect str
    Enable/disable fail detection features for this interface. Valid values: enable, disable.
    fail_detect_option str
    Options for detecting that this interface has failed. Valid values: detectserver, link-down.
    fortiheartbeat str
    Enable/disable FortiHeartBeat (FortiTelemetry on GUI). Valid values: enable, disable.
    fortilink str
    Enable FortiLink to dedicate this interface to manage other Fortinet devices. Valid values: enable, disable.
    fortilink_backup_link int
    fortilink split interface backup link.
    fortilink_neighbor_detect str
    Protocol for FortiGate neighbor discovery. Valid values: lldp, fortilink.
    fortilink_split_interface str
    Enable/disable FortiLink split interface to connect member link to different FortiSwitch in stack for uplink redundancy. Valid values: enable, disable.
    fortilink_stacking str
    Enable/disable FortiLink switch-stacking on this interface. Valid values: enable, disable.
    forward_domain int
    Transparent mode forward domain.
    forward_error_correction str
    Configure forward error correction (FEC). Valid values: none, disable, cl91-rs-fec, cl74-fc-fec.
    get_all_tables str
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    gwdetect str
    Enable/disable detect gateway alive for first. Valid values: enable, disable.
    ha_priority int
    HA election priority for the PING server.
    icmp_accept_redirect str
    Enable/disable ICMP accept redirect. Valid values: enable, disable.
    icmp_send_redirect str
    Enable/disable ICMP send redirect. Valid values: enable, disable.
    ident_accept str
    Enable/disable authentication for this interface. Valid values: enable, disable.
    idle_timeout int
    PPPoE auto disconnect after idle timeout seconds, 0 means no timeout.
    ike_saml_server str
    Configure IKE authentication SAML server.
    inbandwidth int
    Bandwidth limit for incoming traffic, 0 means unlimited. On FortiOS versions 6.2.0-6.4.2, 7.0.0-7.0.5, 7.2.0: 0 - 16776000 kbps. On FortiOS versions 6.4.10-6.4.15, 7.0.6-7.0.15, >= 7.2.1: 0 - 80000000 kbps.
    ingress_shaping_profile str
    Incoming traffic shaping profile.
    ingress_spillover_threshold int
    Ingress Spillover threshold (0 - 16776000 kbps), 0 means unlimited.
    interface str
    Interface name.
    internal int
    Implicitly created.
    ip str
    Interface IPv4 address and subnet mask, syntax: X.X.X.X/24.
    ip_managed_by_fortiipam str
    Enable/disable automatic IP address assignment of this interface by FortiIPAM.
    ipmac str
    Enable/disable IP/MAC binding. Valid values: enable, disable.
    ips_sniffer_mode str
    Enable/disable the use of this interface as a one-armed sniffer. Valid values: enable, disable.
    ipunnumbered str
    Unnumbered IP used for PPPoE interfaces for which no unique local address is provided.
    ipv6 InterfaceIpv6Args
    IPv6 of interface. The structure of ipv6 block is documented below.
    l2forward str
    Enable/disable l2 forwarding. Valid values: enable, disable.
    lacp_ha_secondary str
    LACP HA secondary member. Valid values: enable, disable.
    lacp_ha_slave str
    LACP HA slave. Valid values: enable, disable.
    lacp_mode str
    LACP mode. Valid values: static, passive, active.
    lacp_speed str
    How often the interface sends LACP messages. Valid values: slow, fast.
    lcp_echo_interval int
    Time in seconds between PPPoE Link Control Protocol (LCP) echo requests.
    lcp_max_echo_fails int
    Maximum missed LCP echo messages before disconnect.
    link_up_delay int
    Number of milliseconds to wait before considering a link is up.
    lldp_network_policy str
    LLDP-MED network policy profile.
    lldp_reception str
    Enable/disable Link Layer Discovery Protocol (LLDP) reception. Valid values: enable, disable, vdom.
    lldp_transmission str
    Enable/disable Link Layer Discovery Protocol (LLDP) transmission. Valid values: enable, disable, vdom.
    macaddr str
    Change the interface's MAC address.
    managed_devices Sequence[InterfaceManagedDeviceArgs]
    Available when FortiLink is enabled, used for managed devices through FortiLink interface. The structure of managed_device block is documented below.
    managed_subnetwork_size str
    Number of IP addresses to be allocated by FortiIPAM and used by this FortiGate unit's DHCP server settings.
    management_ip str
    High Availability in-band management IP address of this interface.
    measured_downstream_bandwidth int
    Measured downstream bandwidth (kbps).
    measured_upstream_bandwidth int
    Measured upstream bandwidth (kbps).
    mediatype str
    Select SFP media interface type Valid values: none, gmii, sgmii, sr, lr, cr, sr4, lr4, cr4.
    members Sequence[InterfaceMemberArgs]
    Physical interfaces that belong to the aggregate or redundant interface. The structure of member block is documented below.
    min_links int
    Minimum number of aggregated ports that must be up.
    min_links_down str
    Action to take when less than the configured minimum number of links are active. Valid values: operational, administrative.
    mode str
    Addressing mode (static, DHCP, PPPoE). Valid values: static, dhcp, pppoe.
    monitor_bandwidth str
    Enable monitoring bandwidth on this interface. Valid values: enable, disable.
    mtu int
    MTU value for this interface.
    mtu_override str
    Enable to set a custom MTU for this interface. Valid values: enable, disable.
    name str
    Name.
    ndiscforward str
    Enable/disable NDISC forwarding. Valid values: enable, disable.
    netbios_forward str
    Enable/disable NETBIOS forwarding. Valid values: disable, enable.
    netflow_sampler str
    Enable/disable NetFlow on this interface and set the data that NetFlow collects (rx, tx, or both). Valid values: disable, tx, rx, both.
    outbandwidth int
    Bandwidth limit for outgoing traffic, 0 means unlimited. On FortiOS versions 6.2.0-6.2.6: 0 - 16776000 kbps. On FortiOS versions 6.4.10-6.4.15, 7.0.6-7.0.15, >= 7.2.1: 0 - 80000000 kbps.
    padt_retry_timeout int
    PPPoE Active Discovery Terminate (PADT) used to terminate sessions after an idle time.
    password str
    PPPoE account's password.
    ping_serv_status int
    PING server status.
    polling_interval int
    sFlow polling interval in seconds (1 - 255).
    pppoe_unnumbered_negotiate str
    Enable/disable PPPoE unnumbered negotiation. Valid values: enable, disable.
    pptp_auth_type str
    PPTP authentication type. Valid values: auto, pap, chap, mschapv1, mschapv2.
    pptp_client str
    Enable/disable PPTP client. Valid values: enable, disable.
    pptp_password str
    PPTP password.
    pptp_server_ip str
    PPTP server IP address.
    pptp_timeout int
    Idle timer in minutes (0 for disabled).
    pptp_user str
    PPTP user name.
    preserve_session_route str
    Enable/disable preservation of session route when dirty. Valid values: enable, disable.
    priority int
    Priority of learned routes.
    priority_override str
    Enable/disable fail back to higher priority port once recovered. Valid values: enable, disable.
    proxy_captive_portal str
    Enable/disable proxy captive portal on this interface. Valid values: enable, disable.
    reachable_time int
    IPv4 reachable time in milliseconds (30000 - 3600000, default = 30000).
    redundant_interface str
    Redundant interface.
    remote_ip str
    Remote IP address of tunnel.
    replacemsg_override_group str
    Replacement message override group.
    ring_rx int
    RX ring size.
    ring_tx int
    TX ring size.
    role str
    Interface role. Valid values: lan, wan, dmz, undefined.
    sample_direction str
    Data that NetFlow collects (rx, tx, or both). Valid values: tx, rx, both.
    sample_rate int
    sFlow sample rate (10 - 99999).
    scan_botnet_connections str
    Enable monitoring or blocking connections to Botnet servers through this interface. Valid values: disable, block, monitor.
    secondary_ip str
    Enable/disable adding a secondary IP to this interface. Valid values: enable, disable.
    secondaryips Sequence[InterfaceSecondaryipArgs]
    Second IP address of interface. The structure of secondaryip block is documented below.
    security_exempt_list str
    Name of security-exempt-list.
    security_external_logout str
    URL of external authentication logout server.
    security_external_web str
    URL of external authentication web server.
    security_groups Sequence[InterfaceSecurityGroupArgs]
    User groups that can authenticate with the captive portal. The structure of security_groups block is documented below.
    security_mac_auth_bypass str
    Enable/disable MAC authentication bypass. Valid values: mac-auth-only, enable, disable.
    security_mode str
    Turn on captive portal authentication for this interface. Valid values: none, captive-portal, 802.1X.
    security_redirect_url str
    URL redirection after disclaimer/authentication.
    service_name str
    PPPoE service name.
    sflow_sampler str
    Enable/disable sFlow on this interface. Valid values: enable, disable.
    snmp_index int
    Permanent SNMP Index of the interface.
    speed str
    Interface speed. The default setting and the options available depend on the interface hardware.
    spillover_threshold int
    Egress Spillover threshold (0 - 16776000 kbps), 0 means unlimited.
    src_check str
    Enable/disable source IP check. Valid values: enable, disable.
    status str
    Bring the interface up or shut the interface down. Valid values: up, down.
    stp str
    Enable/disable STP. Valid values: disable, enable.
    stp_ha_secondary str
    Control STP behaviour on HA secondary. Valid values: disable, enable, priority-adjust.
    stpforward str
    Enable/disable STP forwarding. Valid values: enable, disable.
    stpforward_mode str
    Configure STP forwarding mode. Valid values: rpl-all-ext-id, rpl-bridge-ext-id, rpl-nothing.
    subst str
    Enable to always send packets from this interface to a destination MAC address. Valid values: enable, disable.
    substitute_dst_mac str
    Destination MAC address that all packets are sent to from this interface.
    swc_first_create int
    Initial create for switch-controller VLANs.
    swc_vlan int
    Creation status for switch-controller VLANs.
    switch str
    Contained in switch.
    switch_controller_access_vlan str
    Block FortiSwitch port-to-port traffic. Valid values: enable, disable.
    switch_controller_arp_inspection str
    Enable/disable FortiSwitch ARP inspection.
    switch_controller_dhcp_snooping str
    Switch controller DHCP snooping. Valid values: enable, disable.
    switch_controller_dhcp_snooping_option82 str
    Switch controller DHCP snooping option82. Valid values: enable, disable.
    switch_controller_dhcp_snooping_verify_mac str
    Switch controller DHCP snooping verify MAC. Valid values: enable, disable.
    switch_controller_dynamic str
    Integrated FortiLink settings for managed FortiSwitch.
    switch_controller_feature str
    Interface's purpose when assigning traffic (read only).
    switch_controller_igmp_snooping str
    Switch controller IGMP snooping. Valid values: enable, disable.
    switch_controller_igmp_snooping_fast_leave str
    Switch controller IGMP snooping fast-leave. Valid values: enable, disable.
    switch_controller_igmp_snooping_proxy str
    Switch controller IGMP snooping proxy. Valid values: enable, disable.
    switch_controller_iot_scanning str
    Enable/disable managed FortiSwitch IoT scanning. Valid values: enable, disable.
    switch_controller_learning_limit int
    Limit the number of dynamic MAC addresses on this VLAN (1 - 128, 0 = no limit, default).
    switch_controller_mgmt_vlan int
    VLAN to use for FortiLink management purposes.
    switch_controller_nac str
    Integrated NAC settings for managed FortiSwitch.
    switch_controller_netflow_collect str
    NetFlow collection and processing. Valid values: disable, enable.
    switch_controller_offload str
    Enable/disable managed FortiSwitch routing offload. Valid values: enable, disable.
    switch_controller_offload_gw str
    Enable/disable managed FortiSwitch routing offload gateway. Valid values: enable, disable.
    switch_controller_offload_ip str
    IP for routing offload on FortiSwitch.
    switch_controller_rspan_mode str
    Stop Layer2 MAC learning and interception of BPDUs and other packets on this interface. Valid values: disable, enable.
    switch_controller_source_ip str
    Source IP address used in FortiLink over L3 connections. Valid values: outbound, fixed.
    switch_controller_traffic_policy str
    Switch controller traffic policy for the VLAN.
    system_id str
    Define a system ID for the aggregate interface.
    system_id_type str
    Method in which system ID is generated. Valid values: auto, user.
    taggings Sequence[InterfaceTaggingArgs]
    Config object tagging. The structure of tagging block is documented below.
    tcp_mss int
    TCP maximum segment size. 0 means do not change segment size.
    trunk str
    Enable/disable VLAN trunk. Valid values: enable, disable.
    trust_ip1 str
    Trusted host for dedicated management traffic (0.0.0.0/24 for all hosts).
    trust_ip2 str
    Trusted host for dedicated management traffic (0.0.0.0/24 for all hosts).
    trust_ip3 str
    Trusted host for dedicated management traffic (0.0.0.0/24 for all hosts).
    trust_ip61 str
    Trusted IPv6 host for dedicated management traffic (::/0 for all hosts).
    trust_ip62 str
    Trusted IPv6 host for dedicated management traffic (::/0 for all hosts).
    trust_ip63 str
    Trusted IPv6 host for dedicated management traffic (::/0 for all hosts).
    type str
    Interface type.
    username str
    Username of the PPPoE account, provided by your ISP.
    vdomparam str
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    vindex int
    Switch control interface VLAN ID.
    vlan_protocol str
    Ethernet protocol of VLAN. Valid values: 8021q, 8021ad.
    vlanforward str
    Enable/disable traffic forwarding between VLANs on this interface. Valid values: enable, disable.
    vlanid int
    VLAN ID (1 - 4094).
    vrf int
    Virtual Routing Forwarding ID.
    vrrp_virtual_mac str
    Enable/disable use of virtual MAC for VRRP. Valid values: enable, disable.
    vrrps Sequence[InterfaceVrrpArgs]
    VRRP configuration. The structure of vrrp block is documented below.
    wccp str
    Enable/disable WCCP on this interface. Used for encapsulated WCCP communication between WCCP clients and servers. Valid values: enable, disable.
    weight int
    Default weight for static routes (if route has no weight configured).
    wins_ip str
    WINS server IP.
    vdom String
    Interface is in this virtual domain (VDOM).
    acName String
    PPPoE server name.
    aggregate String
    Aggregate interface.
    aggregateType String
    Type of aggregation. Valid values: physical, vxlan.
    algorithm String
    Frame distribution algorithm.
    alias String
    Alias will be displayed with the interface name to make it easier to distinguish.
    allowaccess String
    Permitted types of management access to this interface.
    apDiscover String
    Enable/disable automatic registration of unknown FortiAP devices. Valid values: enable, disable.
    arpforward String
    Enable/disable ARP forwarding. Valid values: enable, disable.
    authCert String
    HTTPS server certificate.
    authPortalAddr String
    Address of captive portal.
    authType String
    PPP authentication type to use. Valid values: auto, pap, chap, mschapv1, mschapv2.
    autoAuthExtensionDevice String
    Enable/disable automatic authorization of dedicated Fortinet extension device on this interface. Valid values: enable, disable.
    autogenerated String
    Indicates whether the interface is automatically created by FortiGate, for example, created during the VPN creation process. If it is, set it to "auto", else keep it empty.
    bandwidthMeasureTime Number
    Bandwidth measure time
    bfd String
    Bidirectional Forwarding Detection (BFD) settings. Valid values: global, enable, disable.
    bfdDesiredMinTx Number
    BFD desired minimal transmit interval.
    bfdDetectMult Number
    BFD detection multiplier.
    bfdRequiredMinRx Number
    BFD required minimal receive interval.
    broadcastForticlientDiscovery String
    Enable/disable broadcasting FortiClient discovery messages. Valid values: enable, disable.
    broadcastForward String
    Enable/disable broadcast forwarding. Valid values: enable, disable.
    captivePortal Number
    Enable/disable captive portal.
    cliConnStatus Number
    CLI connection status.
    clientOptions List<Property Map>
    DHCP client options. The structure of client_options block is documented below.
    color Number
    Color of icon on the GUI.
    dedicatedTo String
    Configure interface for single purpose. Valid values: none, management.
    defaultPurdueLevel String
    default purdue level of device detected on this interface. Valid values: 1, 1.5, 2, 2.5, 3, 3.5, 4, 5, 5.5.
    defaultgw String
    Enable to get the gateway IP from the DHCP or PPPoE server. Valid values: enable, disable.
    description String
    Description.
    detectedPeerMtu Number
    MTU of detected peer (0 - 4294967295).
    detectprotocol String
    Protocols used to detect the server. Valid values: ping, tcp-echo, udp-echo.
    detectserver String
    Gateway's ping server for this IP.
    deviceAccessList String
    Device access list.
    deviceIdentification String
    Enable/disable passively gathering of device identity information about the devices on the network connected to this interface. Valid values: enable, disable.
    deviceIdentificationActiveScan String
    Enable/disable active gathering of device identity information about the devices on the network connected to this interface. Valid values: enable, disable.
    deviceNetscan String
    Enable/disable inclusion of devices detected on this interface in network vulnerability scans. Valid values: disable, enable.
    deviceUserIdentification String
    Enable/disable passive gathering of user identity information about users on this interface. Valid values: enable, disable.
    devindex Number
    Device Index.
    dhcpBroadcastFlag String
    Enable/disable setting of the broadcast flag in messages sent by the DHCP client (default = enable). Valid values: disable, enable.
    dhcpClasslessRouteAddition String
    Enable/disable addition of classless static routes retrieved from DHCP server. Valid values: enable, disable.
    dhcpClientIdentifier String
    DHCP client identifier.
    dhcpRelayAgentOption String
    Enable/disable DHCP relay agent option. Valid values: enable, disable.
    dhcpRelayAllowNoEndOption String
    Enable/disable relaying DHCP messages with no end option. Valid values: disable, enable.
    dhcpRelayCircuitId String
    DHCP relay circuit ID.
    dhcpRelayInterface String
    Specify outgoing interface to reach server.