nsxt.PolicyGatewaySecurityConfig

nsxt 3.12.0, May 18 26

Viewing docs for nsxt 3.12.0
published on Monday, May 18, 2026 by vmware

Create PolicyGatewaySecurityConfig Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new PolicyGatewaySecurityConfig(name: string, args?: PolicyGatewaySecurityConfigArgs, opts?: CustomResourceOptions);

@overload
def PolicyGatewaySecurityConfig(resource_name: str,
                                args: Optional[PolicyGatewaySecurityConfigArgs] = None,
                                opts: Optional[ResourceOptions] = None)

@overload
def PolicyGatewaySecurityConfig(resource_name: str,
                                opts: Optional[ResourceOptions] = None,
                                idfw_enabled: Optional[bool] = None,
                                idps_enabled: Optional[bool] = None,
                                malware_prevention_enabled: Optional[bool] = None,
                                policy_gateway_security_config_id: Optional[str] = None,
                                tier0_id: Optional[str] = None,
                                tier1_id: Optional[str] = None,
                                tls_enabled: Optional[bool] = None)

func NewPolicyGatewaySecurityConfig(ctx *Context, name string, args *PolicyGatewaySecurityConfigArgs, opts ...ResourceOption) (*PolicyGatewaySecurityConfig, error)

public PolicyGatewaySecurityConfig(string name, PolicyGatewaySecurityConfigArgs? args = null, CustomResourceOptions? opts = null)

public PolicyGatewaySecurityConfig(String name, PolicyGatewaySecurityConfigArgs args)
public PolicyGatewaySecurityConfig(String name, PolicyGatewaySecurityConfigArgs args, CustomResourceOptions options)

type: nsxt:PolicyGatewaySecurityConfig
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

resource "nsxt_policygatewaysecurityconfig" "name" {
    # resource properties
}

Parameters

name string: The unique name of the resource.
args PolicyGatewaySecurityConfigArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args PolicyGatewaySecurityConfigArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args PolicyGatewaySecurityConfigArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args PolicyGatewaySecurityConfigArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args PolicyGatewaySecurityConfigArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var policyGatewaySecurityConfigResource = new Nsxt.PolicyGatewaySecurityConfig("policyGatewaySecurityConfigResource", new()
{
    IdfwEnabled = false,
    IdpsEnabled = false,
    MalwarePreventionEnabled = false,
    PolicyGatewaySecurityConfigId = "string",
    Tier0Id = "string",
    Tier1Id = "string",
    TlsEnabled = false,
});

example, err := nsxt.NewPolicyGatewaySecurityConfig(ctx, "policyGatewaySecurityConfigResource", &nsxt.PolicyGatewaySecurityConfigArgs{
	IdfwEnabled:                   pulumi.Bool(false),
	IdpsEnabled:                   pulumi.Bool(false),
	MalwarePreventionEnabled:      pulumi.Bool(false),
	PolicyGatewaySecurityConfigId: pulumi.String("string"),
	Tier0Id:                       pulumi.String("string"),
	Tier1Id:                       pulumi.String("string"),
	TlsEnabled:                    pulumi.Bool(false),
})

resource "nsxt_policygatewaysecurityconfig" "policyGatewaySecurityConfigResource" {
  idfw_enabled                      = false
  idps_enabled                      = false
  malware_prevention_enabled        = false
  policy_gateway_security_config_id = "string"
  tier0_id                          = "string"
  tier1_id                          = "string"
  tls_enabled                       = false
}

var policyGatewaySecurityConfigResource = new PolicyGatewaySecurityConfig("policyGatewaySecurityConfigResource", PolicyGatewaySecurityConfigArgs.builder()
    .idfwEnabled(false)
    .idpsEnabled(false)
    .malwarePreventionEnabled(false)
    .policyGatewaySecurityConfigId("string")
    .tier0Id("string")
    .tier1Id("string")
    .tlsEnabled(false)
    .build());

policy_gateway_security_config_resource = nsxt.PolicyGatewaySecurityConfig("policyGatewaySecurityConfigResource",
    idfw_enabled=False,
    idps_enabled=False,
    malware_prevention_enabled=False,
    policy_gateway_security_config_id="string",
    tier0_id="string",
    tier1_id="string",
    tls_enabled=False)

const policyGatewaySecurityConfigResource = new nsxt.PolicyGatewaySecurityConfig("policyGatewaySecurityConfigResource", {
    idfwEnabled: false,
    idpsEnabled: false,
    malwarePreventionEnabled: false,
    policyGatewaySecurityConfigId: "string",
    tier0Id: "string",
    tier1Id: "string",
    tlsEnabled: false,
});

type: nsxt:PolicyGatewaySecurityConfig
properties:
    idfwEnabled: false
    idpsEnabled: false
    malwarePreventionEnabled: false
    policyGatewaySecurityConfigId: string
    tier0Id: string
    tier1Id: string
    tlsEnabled: false

PolicyGatewaySecurityConfig Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The PolicyGatewaySecurityConfig resource accepts the following input properties:

IdfwEnabled bool: Enable or disable Identity Firewall (IDFW) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
IdpsEnabled bool: Enable or disable Intrusion Detection and Prevention System (IDPS) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
MalwarePreventionEnabled bool: Enable or disable Malware Prevention on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.
PolicyGatewaySecurityConfigId string: The resource ID in the format tier0/<gateway-id> or tier1/<gateway-id>.
Tier0Id string: The ID of the Tier-0 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
Tier1Id string: The ID of the Tier-1 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
TlsEnabled bool: Enable or disable TLS (Transport Layer Security) Inspection on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.

IdfwEnabled bool: Enable or disable Identity Firewall (IDFW) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
IdpsEnabled bool: Enable or disable Intrusion Detection and Prevention System (IDPS) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
MalwarePreventionEnabled bool: Enable or disable Malware Prevention on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.
PolicyGatewaySecurityConfigId string: The resource ID in the format tier0/<gateway-id> or tier1/<gateway-id>.
Tier0Id string: The ID of the Tier-0 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
Tier1Id string: The ID of the Tier-1 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
TlsEnabled bool: Enable or disable TLS (Transport Layer Security) Inspection on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.

idfw_enabled bool: Enable or disable Identity Firewall (IDFW) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
idps_enabled bool: Enable or disable Intrusion Detection and Prevention System (IDPS) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
malware_prevention_enabled bool: Enable or disable Malware Prevention on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.
policy_gateway_security_config_id string: The resource ID in the format tier0/<gateway-id> or tier1/<gateway-id>.
tier0_id string: The ID of the Tier-0 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tier1_id string: The ID of the Tier-1 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tls_enabled bool: Enable or disable TLS (Transport Layer Security) Inspection on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.

idfwEnabled Boolean: Enable or disable Identity Firewall (IDFW) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
idpsEnabled Boolean: Enable or disable Intrusion Detection and Prevention System (IDPS) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
malwarePreventionEnabled Boolean: Enable or disable Malware Prevention on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.
policyGatewaySecurityConfigId String: The resource ID in the format tier0/<gateway-id> or tier1/<gateway-id>.
tier0Id String: The ID of the Tier-0 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tier1Id String: The ID of the Tier-1 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tlsEnabled Boolean: Enable or disable TLS (Transport Layer Security) Inspection on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.

idfwEnabled boolean: Enable or disable Identity Firewall (IDFW) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
idpsEnabled boolean: Enable or disable Intrusion Detection and Prevention System (IDPS) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
malwarePreventionEnabled boolean: Enable or disable Malware Prevention on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.
policyGatewaySecurityConfigId string: The resource ID in the format tier0/<gateway-id> or tier1/<gateway-id>.
tier0Id string: The ID of the Tier-0 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tier1Id string: The ID of the Tier-1 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tlsEnabled boolean: Enable or disable TLS (Transport Layer Security) Inspection on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.

idfw_enabled bool: Enable or disable Identity Firewall (IDFW) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
idps_enabled bool: Enable or disable Intrusion Detection and Prevention System (IDPS) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
malware_prevention_enabled bool: Enable or disable Malware Prevention on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.
policy_gateway_security_config_id str: The resource ID in the format tier0/<gateway-id> or tier1/<gateway-id>.
tier0_id str: The ID of the Tier-0 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tier1_id str: The ID of the Tier-1 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tls_enabled bool: Enable or disable TLS (Transport Layer Security) Inspection on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.

idfwEnabled Boolean: Enable or disable Identity Firewall (IDFW) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
idpsEnabled Boolean: Enable or disable Intrusion Detection and Prevention System (IDPS) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
malwarePreventionEnabled Boolean: Enable or disable Malware Prevention on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.
policyGatewaySecurityConfigId String: The resource ID in the format tier0/<gateway-id> or tier1/<gateway-id>.
tier0Id String: The ID of the Tier-0 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tier1Id String: The ID of the Tier-1 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tlsEnabled Boolean: Enable or disable TLS (Transport Layer Security) Inspection on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.

Outputs

All input properties are implicitly available as output properties. Additionally, the PolicyGatewaySecurityConfig resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.
Path string: The NSX path of the gateway security configuration.
Revision double: The revision number of the gateway security configuration.

Id string: The provider-assigned unique ID for this managed resource.
Path string: The NSX path of the gateway security configuration.
Revision float64: The revision number of the gateway security configuration.

id string: The provider-assigned unique ID for this managed resource.
path string: The NSX path of the gateway security configuration.
revision number: The revision number of the gateway security configuration.

id String: The provider-assigned unique ID for this managed resource.
path String: The NSX path of the gateway security configuration.
revision Double: The revision number of the gateway security configuration.

id string: The provider-assigned unique ID for this managed resource.
path string: The NSX path of the gateway security configuration.
revision number: The revision number of the gateway security configuration.

id str: The provider-assigned unique ID for this managed resource.
path str: The NSX path of the gateway security configuration.
revision float: The revision number of the gateway security configuration.

id String: The provider-assigned unique ID for this managed resource.
path String: The NSX path of the gateway security configuration.
revision Number: The revision number of the gateway security configuration.

Look up Existing PolicyGatewaySecurityConfig Resource

Get an existing PolicyGatewaySecurityConfig resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: PolicyGatewaySecurityConfigState, opts?: CustomResourceOptions): PolicyGatewaySecurityConfig

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        idfw_enabled: Optional[bool] = None,
        idps_enabled: Optional[bool] = None,
        malware_prevention_enabled: Optional[bool] = None,
        path: Optional[str] = None,
        policy_gateway_security_config_id: Optional[str] = None,
        revision: Optional[float] = None,
        tier0_id: Optional[str] = None,
        tier1_id: Optional[str] = None,
        tls_enabled: Optional[bool] = None) -> PolicyGatewaySecurityConfig

func GetPolicyGatewaySecurityConfig(ctx *Context, name string, id IDInput, state *PolicyGatewaySecurityConfigState, opts ...ResourceOption) (*PolicyGatewaySecurityConfig, error)

public static PolicyGatewaySecurityConfig Get(string name, Input<string> id, PolicyGatewaySecurityConfigState? state, CustomResourceOptions? opts = null)

public static PolicyGatewaySecurityConfig get(String name, Output<String> id, PolicyGatewaySecurityConfigState state, CustomResourceOptions options)

resources:  _:    type: nsxt:PolicyGatewaySecurityConfig    get:      id: ${id}

import {
  to = nsxt_policygatewaysecurityconfig.example
  id = "${id}"
}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

IdfwEnabled bool: Enable or disable Identity Firewall (IDFW) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
IdpsEnabled bool: Enable or disable Intrusion Detection and Prevention System (IDPS) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
MalwarePreventionEnabled bool: Enable or disable Malware Prevention on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.
Path string: The NSX path of the gateway security configuration.
PolicyGatewaySecurityConfigId string: The resource ID in the format tier0/<gateway-id> or tier1/<gateway-id>.
Revision double: The revision number of the gateway security configuration.
Tier0Id string: The ID of the Tier-0 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
Tier1Id string: The ID of the Tier-1 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
TlsEnabled bool: Enable or disable TLS (Transport Layer Security) Inspection on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.

IdfwEnabled bool: Enable or disable Identity Firewall (IDFW) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
IdpsEnabled bool: Enable or disable Intrusion Detection and Prevention System (IDPS) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
MalwarePreventionEnabled bool: Enable or disable Malware Prevention on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.
Path string: The NSX path of the gateway security configuration.
PolicyGatewaySecurityConfigId string: The resource ID in the format tier0/<gateway-id> or tier1/<gateway-id>.
Revision float64: The revision number of the gateway security configuration.
Tier0Id string: The ID of the Tier-0 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
Tier1Id string: The ID of the Tier-1 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
TlsEnabled bool: Enable or disable TLS (Transport Layer Security) Inspection on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.

idfw_enabled bool: Enable or disable Identity Firewall (IDFW) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
idps_enabled bool: Enable or disable Intrusion Detection and Prevention System (IDPS) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
malware_prevention_enabled bool: Enable or disable Malware Prevention on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.
path string: The NSX path of the gateway security configuration.
policy_gateway_security_config_id string: The resource ID in the format tier0/<gateway-id> or tier1/<gateway-id>.
revision number: The revision number of the gateway security configuration.
tier0_id string: The ID of the Tier-0 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tier1_id string: The ID of the Tier-1 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tls_enabled bool: Enable or disable TLS (Transport Layer Security) Inspection on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.

idfwEnabled Boolean: Enable or disable Identity Firewall (IDFW) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
idpsEnabled Boolean: Enable or disable Intrusion Detection and Prevention System (IDPS) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
malwarePreventionEnabled Boolean: Enable or disable Malware Prevention on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.
path String: The NSX path of the gateway security configuration.
policyGatewaySecurityConfigId String: The resource ID in the format tier0/<gateway-id> or tier1/<gateway-id>.
revision Double: The revision number of the gateway security configuration.
tier0Id String: The ID of the Tier-0 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tier1Id String: The ID of the Tier-1 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tlsEnabled Boolean: Enable or disable TLS (Transport Layer Security) Inspection on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.

idfwEnabled boolean: Enable or disable Identity Firewall (IDFW) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
idpsEnabled boolean: Enable or disable Intrusion Detection and Prevention System (IDPS) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
malwarePreventionEnabled boolean: Enable or disable Malware Prevention on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.
path string: The NSX path of the gateway security configuration.
policyGatewaySecurityConfigId string: The resource ID in the format tier0/<gateway-id> or tier1/<gateway-id>.
revision number: The revision number of the gateway security configuration.
tier0Id string: The ID of the Tier-0 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tier1Id string: The ID of the Tier-1 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tlsEnabled boolean: Enable or disable TLS (Transport Layer Security) Inspection on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.

idfw_enabled bool: Enable or disable Identity Firewall (IDFW) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
idps_enabled bool: Enable or disable Intrusion Detection and Prevention System (IDPS) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
malware_prevention_enabled bool: Enable or disable Malware Prevention on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.
path str: The NSX path of the gateway security configuration.
policy_gateway_security_config_id str: The resource ID in the format tier0/<gateway-id> or tier1/<gateway-id>.
revision float: The revision number of the gateway security configuration.
tier0_id str: The ID of the Tier-0 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tier1_id str: The ID of the Tier-1 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tls_enabled bool: Enable or disable TLS (Transport Layer Security) Inspection on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.

idfwEnabled Boolean: Enable or disable Identity Firewall (IDFW) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
idpsEnabled Boolean: Enable or disable Intrusion Detection and Prevention System (IDPS) on the gateway. Supported for both Tier-0 and Tier-1 gateways. Defaults to false.
malwarePreventionEnabled Boolean: Enable or disable Malware Prevention on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.
path String: The NSX path of the gateway security configuration.
policyGatewaySecurityConfigId String: The resource ID in the format tier0/<gateway-id> or tier1/<gateway-id>.
revision Number: The revision number of the gateway security configuration.
tier0Id String: The ID of the Tier-0 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tier1Id String: The ID of the Tier-1 gateway. Exactly one of tier0_id or tier1_id must be specified. Changing this forces a new resource to be created.
tlsEnabled Boolean: Enable or disable TLS (Transport Layer Security) Inspection on the gateway. Supported for Tier-1 gateways only. Setting this on a Tier-0 gateway will be ignored (always false). Defaults to false.

Package Details

Repository: nsxt vmware/terraform-provider-nsxt
License
Notes: This Pulumi package is based on the nsxt Terraform Provider.

Viewing docs for nsxt 3.12.0
published on Monday, May 18, 2026 by vmware

Schema (JSON)

vmware/terraform-provider-nsxt

nsxt.PolicyGatewaySecurityConfig

On this page

On this page

Create PolicyGatewaySecurityConfig Resource

Constructor syntax

Parameters

Constructor example

PolicyGatewaySecurityConfig Resource Properties

Inputs

Outputs

Look up Existing PolicyGatewaySecurityConfig Resource

Package Details

On this page

On this page

Try Pulumi Cloud free.
Your team will thank you.

nsxt.PolicyGatewaySecurityConfig

On this page

On this page

Create PolicyGatewaySecurityConfig Resource

Constructor syntax

Parameters

Constructor example

PolicyGatewaySecurityConfig Resource Properties

Inputs

Outputs

Look up Existing PolicyGatewaySecurityConfig Resource

Package Details

On this page

On this page

Try Pulumi Cloud free.Your team will thank you.

Try Pulumi Cloud free.
Your team will thank you.