Docs Home
nsxt 3.9.0 published on Friday, Jun 20, 2025 by vmware
nsxt.VpcSecurityPolicy
Explore with Pulumi AI
Create VpcSecurityPolicy Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new VpcSecurityPolicy(name: string, args: VpcSecurityPolicyArgs, opts?: CustomResourceOptions);@overload
def VpcSecurityPolicy(resource_name: str,
args: VpcSecurityPolicyArgs,
opts: Optional[ResourceOptions] = None)
@overload
def VpcSecurityPolicy(resource_name: str,
opts: Optional[ResourceOptions] = None,
display_name: Optional[str] = None,
context: Optional[VpcSecurityPolicyContextArgs] = None,
rules: Optional[Sequence[VpcSecurityPolicyRuleArgs]] = None,
description: Optional[str] = None,
locked: Optional[bool] = None,
nsx_id: Optional[str] = None,
comments: Optional[str] = None,
scopes: Optional[Sequence[str]] = None,
sequence_number: Optional[float] = None,
stateful: Optional[bool] = None,
tags: Optional[Sequence[VpcSecurityPolicyTagArgs]] = None,
tcp_strict: Optional[bool] = None,
vpc_security_policy_id: Optional[str] = None)func NewVpcSecurityPolicy(ctx *Context, name string, args VpcSecurityPolicyArgs, opts ...ResourceOption) (*VpcSecurityPolicy, error)public VpcSecurityPolicy(string name, VpcSecurityPolicyArgs args, CustomResourceOptions? opts = null)
public VpcSecurityPolicy(String name, VpcSecurityPolicyArgs args)
public VpcSecurityPolicy(String name, VpcSecurityPolicyArgs args, CustomResourceOptions options)
type: nsxt:VpcSecurityPolicy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args VpcSecurityPolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args VpcSecurityPolicyArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args VpcSecurityPolicyArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args VpcSecurityPolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args VpcSecurityPolicyArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var vpcSecurityPolicyResource = new Nsxt.VpcSecurityPolicy("vpcSecurityPolicyResource", new()
{
DisplayName = "string",
Context = new Nsxt.Inputs.VpcSecurityPolicyContextArgs
{
ProjectId = "string",
VpcId = "string",
},
Rules = new[]
{
new Nsxt.Inputs.VpcSecurityPolicyRuleArgs
{
DisplayName = "string",
Notes = "string",
Path = "string",
DestinationsExcluded = false,
Direction = "string",
Disabled = false,
Description = "string",
IpVersion = "string",
LogLabel = "string",
Logged = false,
Profiles = new[]
{
"string",
},
DestinationGroups = new[]
{
"string",
},
NsxId = "string",
Action = "string",
Revision = 0,
RuleId = 0,
Scopes = new[]
{
"string",
},
SequenceNumber = 0,
ServiceEntries = new Nsxt.Inputs.VpcSecurityPolicyRuleServiceEntriesArgs
{
AlgorithmEntries = new[]
{
new Nsxt.Inputs.VpcSecurityPolicyRuleServiceEntriesAlgorithmEntryArgs
{
Algorithm = "string",
DestinationPort = "string",
Description = "string",
DisplayName = "string",
SourcePorts = new[]
{
"string",
},
},
},
EtherTypeEntries = new[]
{
new Nsxt.Inputs.VpcSecurityPolicyRuleServiceEntriesEtherTypeEntryArgs
{
EtherType = 0,
Description = "string",
DisplayName = "string",
},
},
IcmpEntries = new[]
{
new Nsxt.Inputs.VpcSecurityPolicyRuleServiceEntriesIcmpEntryArgs
{
Protocol = "string",
Description = "string",
DisplayName = "string",
IcmpCode = "string",
IcmpType = "string",
},
},
IgmpEntries = new[]
{
new Nsxt.Inputs.VpcSecurityPolicyRuleServiceEntriesIgmpEntryArgs
{
Description = "string",
DisplayName = "string",
},
},
IpProtocolEntries = new[]
{
new Nsxt.Inputs.VpcSecurityPolicyRuleServiceEntriesIpProtocolEntryArgs
{
Protocol = 0,
Description = "string",
DisplayName = "string",
},
},
L4PortSetEntries = new[]
{
new Nsxt.Inputs.VpcSecurityPolicyRuleServiceEntriesL4PortSetEntryArgs
{
Protocol = "string",
Description = "string",
DestinationPorts = new[]
{
"string",
},
DisplayName = "string",
SourcePorts = new[]
{
"string",
},
},
},
},
Services = new[]
{
"string",
},
SourceGroups = new[]
{
"string",
},
SourcesExcluded = false,
Tags = new[]
{
new Nsxt.Inputs.VpcSecurityPolicyRuleTagArgs
{
Scope = "string",
Tag = "string",
},
},
},
},
Description = "string",
Locked = false,
NsxId = "string",
Comments = "string",
Scopes = new[]
{
"string",
},
SequenceNumber = 0,
Stateful = false,
Tags = new[]
{
new Nsxt.Inputs.VpcSecurityPolicyTagArgs
{
Scope = "string",
Tag = "string",
},
},
TcpStrict = false,
VpcSecurityPolicyId = "string",
});
example, err := nsxt.NewVpcSecurityPolicy(ctx, "vpcSecurityPolicyResource", &nsxt.VpcSecurityPolicyArgs{
DisplayName: pulumi.String("string"),
Context: &nsxt.VpcSecurityPolicyContextArgs{
ProjectId: pulumi.String("string"),
VpcId: pulumi.String("string"),
},
Rules: nsxt.VpcSecurityPolicyRuleArray{
&nsxt.VpcSecurityPolicyRuleArgs{
DisplayName: pulumi.String("string"),
Notes: pulumi.String("string"),
Path: pulumi.String("string"),
DestinationsExcluded: pulumi.Bool(false),
Direction: pulumi.String("string"),
Disabled: pulumi.Bool(false),
Description: pulumi.String("string"),
IpVersion: pulumi.String("string"),
LogLabel: pulumi.String("string"),
Logged: pulumi.Bool(false),
Profiles: pulumi.StringArray{
pulumi.String("string"),
},
DestinationGroups: pulumi.StringArray{
pulumi.String("string"),
},
NsxId: pulumi.String("string"),
Action: pulumi.String("string"),
Revision: pulumi.Float64(0),
RuleId: pulumi.Float64(0),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
SequenceNumber: pulumi.Float64(0),
ServiceEntries: &nsxt.VpcSecurityPolicyRuleServiceEntriesArgs{
AlgorithmEntries: nsxt.VpcSecurityPolicyRuleServiceEntriesAlgorithmEntryArray{
&nsxt.VpcSecurityPolicyRuleServiceEntriesAlgorithmEntryArgs{
Algorithm: pulumi.String("string"),
DestinationPort: pulumi.String("string"),
Description: pulumi.String("string"),
DisplayName: pulumi.String("string"),
SourcePorts: pulumi.StringArray{
pulumi.String("string"),
},
},
},
EtherTypeEntries: nsxt.VpcSecurityPolicyRuleServiceEntriesEtherTypeEntryArray{
&nsxt.VpcSecurityPolicyRuleServiceEntriesEtherTypeEntryArgs{
EtherType: pulumi.Float64(0),
Description: pulumi.String("string"),
DisplayName: pulumi.String("string"),
},
},
IcmpEntries: nsxt.VpcSecurityPolicyRuleServiceEntriesIcmpEntryArray{
&nsxt.VpcSecurityPolicyRuleServiceEntriesIcmpEntryArgs{
Protocol: pulumi.String("string"),
Description: pulumi.String("string"),
DisplayName: pulumi.String("string"),
IcmpCode: pulumi.String("string"),
IcmpType: pulumi.String("string"),
},
},
IgmpEntries: nsxt.VpcSecurityPolicyRuleServiceEntriesIgmpEntryArray{
&nsxt.VpcSecurityPolicyRuleServiceEntriesIgmpEntryArgs{
Description: pulumi.String("string"),
DisplayName: pulumi.String("string"),
},
},
IpProtocolEntries: nsxt.VpcSecurityPolicyRuleServiceEntriesIpProtocolEntryArray{
&nsxt.VpcSecurityPolicyRuleServiceEntriesIpProtocolEntryArgs{
Protocol: pulumi.Float64(0),
Description: pulumi.String("string"),
DisplayName: pulumi.String("string"),
},
},
L4PortSetEntries: nsxt.VpcSecurityPolicyRuleServiceEntriesL4PortSetEntryArray{
&nsxt.VpcSecurityPolicyRuleServiceEntriesL4PortSetEntryArgs{
Protocol: pulumi.String("string"),
Description: pulumi.String("string"),
DestinationPorts: pulumi.StringArray{
pulumi.String("string"),
},
DisplayName: pulumi.String("string"),
SourcePorts: pulumi.StringArray{
pulumi.String("string"),
},
},
},
},
Services: pulumi.StringArray{
pulumi.String("string"),
},
SourceGroups: pulumi.StringArray{
pulumi.String("string"),
},
SourcesExcluded: pulumi.Bool(false),
Tags: nsxt.VpcSecurityPolicyRuleTagArray{
&nsxt.VpcSecurityPolicyRuleTagArgs{
Scope: pulumi.String("string"),
Tag: pulumi.String("string"),
},
},
},
},
Description: pulumi.String("string"),
Locked: pulumi.Bool(false),
NsxId: pulumi.String("string"),
Comments: pulumi.String("string"),
Scopes: pulumi.StringArray{
pulumi.String("string"),
},
SequenceNumber: pulumi.Float64(0),
Stateful: pulumi.Bool(false),
Tags: nsxt.VpcSecurityPolicyTagArray{
&nsxt.VpcSecurityPolicyTagArgs{
Scope: pulumi.String("string"),
Tag: pulumi.String("string"),
},
},
TcpStrict: pulumi.Bool(false),
VpcSecurityPolicyId: pulumi.String("string"),
})
var vpcSecurityPolicyResource = new VpcSecurityPolicy("vpcSecurityPolicyResource", VpcSecurityPolicyArgs.builder()
.displayName("string")
.context(VpcSecurityPolicyContextArgs.builder()
.projectId("string")
.vpcId("string")
.build())
.rules(VpcSecurityPolicyRuleArgs.builder()
.displayName("string")
.notes("string")
.path("string")
.destinationsExcluded(false)
.direction("string")
.disabled(false)
.description("string")
.ipVersion("string")
.logLabel("string")
.logged(false)
.profiles("string")
.destinationGroups("string")
.nsxId("string")
.action("string")
.revision(0.0)
.ruleId(0.0)
.scopes("string")
.sequenceNumber(0.0)
.serviceEntries(VpcSecurityPolicyRuleServiceEntriesArgs.builder()
.algorithmEntries(VpcSecurityPolicyRuleServiceEntriesAlgorithmEntryArgs.builder()
.algorithm("string")
.destinationPort("string")
.description("string")
.displayName("string")
.sourcePorts("string")
.build())
.etherTypeEntries(VpcSecurityPolicyRuleServiceEntriesEtherTypeEntryArgs.builder()
.etherType(0.0)
.description("string")
.displayName("string")
.build())
.icmpEntries(VpcSecurityPolicyRuleServiceEntriesIcmpEntryArgs.builder()
.protocol("string")
.description("string")
.displayName("string")
.icmpCode("string")
.icmpType("string")
.build())
.igmpEntries(VpcSecurityPolicyRuleServiceEntriesIgmpEntryArgs.builder()
.description("string")
.displayName("string")
.build())
.ipProtocolEntries(VpcSecurityPolicyRuleServiceEntriesIpProtocolEntryArgs.builder()
.protocol(0.0)
.description("string")
.displayName("string")
.build())
.l4PortSetEntries(VpcSecurityPolicyRuleServiceEntriesL4PortSetEntryArgs.builder()
.protocol("string")
.description("string")
.destinationPorts("string")
.displayName("string")
.sourcePorts("string")
.build())
.build())
.services("string")
.sourceGroups("string")
.sourcesExcluded(false)
.tags(VpcSecurityPolicyRuleTagArgs.builder()
.scope("string")
.tag("string")
.build())
.build())
.description("string")
.locked(false)
.nsxId("string")
.comments("string")
.scopes("string")
.sequenceNumber(0.0)
.stateful(false)
.tags(VpcSecurityPolicyTagArgs.builder()
.scope("string")
.tag("string")
.build())
.tcpStrict(false)
.vpcSecurityPolicyId("string")
.build());
vpc_security_policy_resource = nsxt.VpcSecurityPolicy("vpcSecurityPolicyResource",
display_name="string",
context={
"project_id": "string",
"vpc_id": "string",
},
rules=[{
"display_name": "string",
"notes": "string",
"path": "string",
"destinations_excluded": False,
"direction": "string",
"disabled": False,
"description": "string",
"ip_version": "string",
"log_label": "string",
"logged": False,
"profiles": ["string"],
"destination_groups": ["string"],
"nsx_id": "string",
"action": "string",
"revision": 0,
"rule_id": 0,
"scopes": ["string"],
"sequence_number": 0,
"service_entries": {
"algorithm_entries": [{
"algorithm": "string",
"destination_port": "string",
"description": "string",
"display_name": "string",
"source_ports": ["string"],
}],
"ether_type_entries": [{
"ether_type": 0,
"description": "string",
"display_name": "string",
}],
"icmp_entries": [{
"protocol": "string",
"description": "string",
"display_name": "string",
"icmp_code": "string",
"icmp_type": "string",
}],
"igmp_entries": [{
"description": "string",
"display_name": "string",
}],
"ip_protocol_entries": [{
"protocol": 0,
"description": "string",
"display_name": "string",
}],
"l4_port_set_entries": [{
"protocol": "string",
"description": "string",
"destination_ports": ["string"],
"display_name": "string",
"source_ports": ["string"],
}],
},
"services": ["string"],
"source_groups": ["string"],
"sources_excluded": False,
"tags": [{
"scope": "string",
"tag": "string",
}],
}],
description="string",
locked=False,
nsx_id="string",
comments="string",
scopes=["string"],
sequence_number=0,
stateful=False,
tags=[{
"scope": "string",
"tag": "string",
}],
tcp_strict=False,
vpc_security_policy_id="string")
const vpcSecurityPolicyResource = new nsxt.VpcSecurityPolicy("vpcSecurityPolicyResource", {
displayName: "string",
context: {
projectId: "string",
vpcId: "string",
},
rules: [{
displayName: "string",
notes: "string",
path: "string",
destinationsExcluded: false,
direction: "string",
disabled: false,
description: "string",
ipVersion: "string",
logLabel: "string",
logged: false,
profiles: ["string"],
destinationGroups: ["string"],
nsxId: "string",
action: "string",
revision: 0,
ruleId: 0,
scopes: ["string"],
sequenceNumber: 0,
serviceEntries: {
algorithmEntries: [{
algorithm: "string",
destinationPort: "string",
description: "string",
displayName: "string",
sourcePorts: ["string"],
}],
etherTypeEntries: [{
etherType: 0,
description: "string",
displayName: "string",
}],
icmpEntries: [{
protocol: "string",
description: "string",
displayName: "string",
icmpCode: "string",
icmpType: "string",
}],
igmpEntries: [{
description: "string",
displayName: "string",
}],
ipProtocolEntries: [{
protocol: 0,
description: "string",
displayName: "string",
}],
l4PortSetEntries: [{
protocol: "string",
description: "string",
destinationPorts: ["string"],
displayName: "string",
sourcePorts: ["string"],
}],
},
services: ["string"],
sourceGroups: ["string"],
sourcesExcluded: false,
tags: [{
scope: "string",
tag: "string",
}],
}],
description: "string",
locked: false,
nsxId: "string",
comments: "string",
scopes: ["string"],
sequenceNumber: 0,
stateful: false,
tags: [{
scope: "string",
tag: "string",
}],
tcpStrict: false,
vpcSecurityPolicyId: "string",
});
type: nsxt:VpcSecurityPolicy
properties:
comments: string
context:
projectId: string
vpcId: string
description: string
displayName: string
locked: false
nsxId: string
rules:
- action: string
description: string
destinationGroups:
- string
destinationsExcluded: false
direction: string
disabled: false
displayName: string
ipVersion: string
logLabel: string
logged: false
notes: string
nsxId: string
path: string
profiles:
- string
revision: 0
ruleId: 0
scopes:
- string
sequenceNumber: 0
serviceEntries:
algorithmEntries:
- algorithm: string
description: string
destinationPort: string
displayName: string
sourcePorts:
- string
etherTypeEntries:
- description: string
displayName: string
etherType: 0
icmpEntries:
- description: string
displayName: string
icmpCode: string
icmpType: string
protocol: string
igmpEntries:
- description: string
displayName: string
ipProtocolEntries:
- description: string
displayName: string
protocol: 0
l4PortSetEntries:
- description: string
destinationPorts:
- string
displayName: string
protocol: string
sourcePorts:
- string
services:
- string
sourceGroups:
- string
sourcesExcluded: false
tags:
- scope: string
tag: string
scopes:
- string
sequenceNumber: 0
stateful: false
tags:
- scope: string
tag: string
tcpStrict: false
vpcSecurityPolicyId: string
VpcSecurityPolicy Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The VpcSecurityPolicy resource accepts the following input properties:
- Context
Vpc
Security Policy Context - The context which the object belongs to
- Display
Name string - Display name of the resource.
- Comments string
- Comments for security policy lock/unlock.
- Description string
- Description of the resource.
- Locked bool
- Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
- Nsx
Id string - The NSX ID of this resource. If set, this ID will be used to create the resource.
- Rules
List<Vpc
Security Policy Rule> - A repeatable block to specify rules for the Security Policy. Each rule includes the following fields:
- Scopes List<string>
- The list of policy object paths where the rules in this policy will get applied.
- Sequence
Number double - This field is used to resolve conflicts between security policies.
- Stateful bool
- If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
-
List<Vpc
Security Policy Tag> - A list of scope + tag pairs to associate with this policy.
- Tcp
Strict bool - Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
- Vpc
Security stringPolicy Id - ID of the Security Policy.
- Context
Vpc
Security Policy Context Args - The context which the object belongs to
- Display
Name string - Display name of the resource.
- Comments string
- Comments for security policy lock/unlock.
- Description string
- Description of the resource.
- Locked bool
- Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
- Nsx
Id string - The NSX ID of this resource. If set, this ID will be used to create the resource.
- Rules
[]Vpc
Security Policy Rule Args - A repeatable block to specify rules for the Security Policy. Each rule includes the following fields:
- Scopes []string
- The list of policy object paths where the rules in this policy will get applied.
- Sequence
Number float64 - This field is used to resolve conflicts between security policies.
- Stateful bool
- If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
-
[]Vpc
Security Policy Tag Args - A list of scope + tag pairs to associate with this policy.
- Tcp
Strict bool - Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
- Vpc
Security stringPolicy Id - ID of the Security Policy.
- context
Vpc
Security Policy Context - The context which the object belongs to
- display
Name String - Display name of the resource.
- comments String
- Comments for security policy lock/unlock.
- description String
- Description of the resource.
- locked Boolean
- Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
- nsx
Id String - The NSX ID of this resource. If set, this ID will be used to create the resource.
- rules
List<Vpc
Security Policy Rule> - A repeatable block to specify rules for the Security Policy. Each rule includes the following fields:
- scopes List<String>
- The list of policy object paths where the rules in this policy will get applied.
- sequence
Number Double - This field is used to resolve conflicts between security policies.
- stateful Boolean
- If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
-
List<Vpc
Security Policy Tag> - A list of scope + tag pairs to associate with this policy.
- tcp
Strict Boolean - Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
- vpc
Security StringPolicy Id - ID of the Security Policy.
- context
Vpc
Security Policy Context - The context which the object belongs to
- display
Name string - Display name of the resource.
- comments string
- Comments for security policy lock/unlock.
- description string
- Description of the resource.
- locked boolean
- Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
- nsx
Id string - The NSX ID of this resource. If set, this ID will be used to create the resource.
- rules
Vpc
Security Policy Rule[] - A repeatable block to specify rules for the Security Policy. Each rule includes the following fields:
- scopes string[]
- The list of policy object paths where the rules in this policy will get applied.
- sequence
Number number - This field is used to resolve conflicts between security policies.
- stateful boolean
- If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
-
Vpc
Security Policy Tag[] - A list of scope + tag pairs to associate with this policy.
- tcp
Strict boolean - Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
- vpc
Security stringPolicy Id - ID of the Security Policy.
- context
Vpc
Security Policy Context Args - The context which the object belongs to
- display_
name str - Display name of the resource.
- comments str
- Comments for security policy lock/unlock.
- description str
- Description of the resource.
- locked bool
- Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
- nsx_
id str - The NSX ID of this resource. If set, this ID will be used to create the resource.
- rules
Sequence[Vpc
Security Policy Rule Args] - A repeatable block to specify rules for the Security Policy. Each rule includes the following fields:
- scopes Sequence[str]
- The list of policy object paths where the rules in this policy will get applied.
- sequence_
number float - This field is used to resolve conflicts between security policies.
- stateful bool
- If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
-
Sequence[Vpc
Security Policy Tag Args] - A list of scope + tag pairs to associate with this policy.
- tcp_
strict bool - Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
- vpc_
security_ strpolicy_ id - ID of the Security Policy.
- context Property Map
- The context which the object belongs to
- display
Name String - Display name of the resource.
- comments String
- Comments for security policy lock/unlock.
- description String
- Description of the resource.
- locked Boolean
- Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
- nsx
Id String - The NSX ID of this resource. If set, this ID will be used to create the resource.
- rules List<Property Map>
- A repeatable block to specify rules for the Security Policy. Each rule includes the following fields:
- scopes List<String>
- The list of policy object paths where the rules in this policy will get applied.
- sequence
Number Number - This field is used to resolve conflicts between security policies.
- stateful Boolean
- If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
- List<Property Map>
- A list of scope + tag pairs to associate with this policy.
- tcp
Strict Boolean - Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
- vpc
Security StringPolicy Id - ID of the Security Policy.
Outputs
All input properties are implicitly available as output properties. Additionally, the VpcSecurityPolicy resource produces the following output properties:
Look up Existing VpcSecurityPolicy Resource
Get an existing VpcSecurityPolicy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: VpcSecurityPolicyState, opts?: CustomResourceOptions): VpcSecurityPolicy@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
comments: Optional[str] = None,
context: Optional[VpcSecurityPolicyContextArgs] = None,
description: Optional[str] = None,
display_name: Optional[str] = None,
locked: Optional[bool] = None,
nsx_id: Optional[str] = None,
path: Optional[str] = None,
revision: Optional[float] = None,
rules: Optional[Sequence[VpcSecurityPolicyRuleArgs]] = None,
scopes: Optional[Sequence[str]] = None,
sequence_number: Optional[float] = None,
stateful: Optional[bool] = None,
tags: Optional[Sequence[VpcSecurityPolicyTagArgs]] = None,
tcp_strict: Optional[bool] = None,
vpc_security_policy_id: Optional[str] = None) -> VpcSecurityPolicyfunc GetVpcSecurityPolicy(ctx *Context, name string, id IDInput, state *VpcSecurityPolicyState, opts ...ResourceOption) (*VpcSecurityPolicy, error)public static VpcSecurityPolicy Get(string name, Input<string> id, VpcSecurityPolicyState? state, CustomResourceOptions? opts = null)public static VpcSecurityPolicy get(String name, Output<String> id, VpcSecurityPolicyState state, CustomResourceOptions options)resources: _: type: nsxt:VpcSecurityPolicy get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Comments string
- Comments for security policy lock/unlock.
- Context
Vpc
Security Policy Context - The context which the object belongs to
- Description string
- Description of the resource.
- Display
Name string - Display name of the resource.
- Locked bool
- Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
- Nsx
Id string - The NSX ID of this resource. If set, this ID will be used to create the resource.
- Path string
- The NSX path of the policy resource.
- Revision double
- Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
- Rules
List<Vpc
Security Policy Rule> - A repeatable block to specify rules for the Security Policy. Each rule includes the following fields:
- Scopes List<string>
- The list of policy object paths where the rules in this policy will get applied.
- Sequence
Number double - This field is used to resolve conflicts between security policies.
- Stateful bool
- If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
-
List<Vpc
Security Policy Tag> - A list of scope + tag pairs to associate with this policy.
- Tcp
Strict bool - Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
- Vpc
Security stringPolicy Id - ID of the Security Policy.
- Comments string
- Comments for security policy lock/unlock.
- Context
Vpc
Security Policy Context Args - The context which the object belongs to
- Description string
- Description of the resource.
- Display
Name string - Display name of the resource.
- Locked bool
- Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
- Nsx
Id string - The NSX ID of this resource. If set, this ID will be used to create the resource.
- Path string
- The NSX path of the policy resource.
- Revision float64
- Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
- Rules
[]Vpc
Security Policy Rule Args - A repeatable block to specify rules for the Security Policy. Each rule includes the following fields:
- Scopes []string
- The list of policy object paths where the rules in this policy will get applied.
- Sequence
Number float64 - This field is used to resolve conflicts between security policies.
- Stateful bool
- If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
-
[]Vpc
Security Policy Tag Args - A list of scope + tag pairs to associate with this policy.
- Tcp
Strict bool - Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
- Vpc
Security stringPolicy Id - ID of the Security Policy.
- comments String
- Comments for security policy lock/unlock.
- context
Vpc
Security Policy Context - The context which the object belongs to
- description String
- Description of the resource.
- display
Name String - Display name of the resource.
- locked Boolean
- Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
- nsx
Id String - The NSX ID of this resource. If set, this ID will be used to create the resource.
- path String
- The NSX path of the policy resource.
- revision Double
- Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
- rules
List<Vpc
Security Policy Rule> - A repeatable block to specify rules for the Security Policy. Each rule includes the following fields:
- scopes List<String>
- The list of policy object paths where the rules in this policy will get applied.
- sequence
Number Double - This field is used to resolve conflicts between security policies.
- stateful Boolean
- If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
-
List<Vpc
Security Policy Tag> - A list of scope + tag pairs to associate with this policy.
- tcp
Strict Boolean - Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
- vpc
Security StringPolicy Id - ID of the Security Policy.
- comments string
- Comments for security policy lock/unlock.
- context
Vpc
Security Policy Context - The context which the object belongs to
- description string
- Description of the resource.
- display
Name string - Display name of the resource.
- locked boolean
- Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
- nsx
Id string - The NSX ID of this resource. If set, this ID will be used to create the resource.
- path string
- The NSX path of the policy resource.
- revision number
- Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
- rules
Vpc
Security Policy Rule[] - A repeatable block to specify rules for the Security Policy. Each rule includes the following fields:
- scopes string[]
- The list of policy object paths where the rules in this policy will get applied.
- sequence
Number number - This field is used to resolve conflicts between security policies.
- stateful boolean
- If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
-
Vpc
Security Policy Tag[] - A list of scope + tag pairs to associate with this policy.
- tcp
Strict boolean - Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
- vpc
Security stringPolicy Id - ID of the Security Policy.
- comments str
- Comments for security policy lock/unlock.
- context
Vpc
Security Policy Context Args - The context which the object belongs to
- description str
- Description of the resource.
- display_
name str - Display name of the resource.
- locked bool
- Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
- nsx_
id str - The NSX ID of this resource. If set, this ID will be used to create the resource.
- path str
- The NSX path of the policy resource.
- revision float
- Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
- rules
Sequence[Vpc
Security Policy Rule Args] - A repeatable block to specify rules for the Security Policy. Each rule includes the following fields:
- scopes Sequence[str]
- The list of policy object paths where the rules in this policy will get applied.
- sequence_
number float - This field is used to resolve conflicts between security policies.
- stateful bool
- If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
-
Sequence[Vpc
Security Policy Tag Args] - A list of scope + tag pairs to associate with this policy.
- tcp_
strict bool - Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
- vpc_
security_ strpolicy_ id - ID of the Security Policy.
- comments String
- Comments for security policy lock/unlock.
- context Property Map
- The context which the object belongs to
- description String
- Description of the resource.
- display
Name String - Display name of the resource.
- locked Boolean
- Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy.
- nsx
Id String - The NSX ID of this resource. If set, this ID will be used to create the resource.
- path String
- The NSX path of the policy resource.
- revision Number
- Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
- rules List<Property Map>
- A repeatable block to specify rules for the Security Policy. Each rule includes the following fields:
- scopes List<String>
- The list of policy object paths where the rules in this policy will get applied.
- sequence
Number Number - This field is used to resolve conflicts between security policies.
- stateful Boolean
- If true, state of the network connects are tracked and a stateful packet inspection is performed. Default is true.
- List<Property Map>
- A list of scope + tag pairs to associate with this policy.
- tcp
Strict Boolean - Ensures that a 3 way TCP handshake is done before the data packets are sent. Default is false.
- vpc
Security StringPolicy Id - ID of the Security Policy.
Supporting Types
VpcSecurityPolicyContext, VpcSecurityPolicyContextArgs
- project_
id str - The ID of the project which the object belongs to
- vpc_
id str - The ID of the VPC which the object belongs to
VpcSecurityPolicyRule, VpcSecurityPolicyRuleArgs
- Display
Name string - Display name of the resource.
- Action string
- Rule action, one of
ALLOW,DROPandREJECT. Default isALLOW.. - Description string
- Description of the resource.
- Destination
Groups List<string> - Set of group paths that serve as the destination for this rule. IPs, IP ranges, or CIDRs may also be used starting in NSX-T 3.0. An empty set can be used to specify "Any".
- Destinations
Excluded bool - A boolean value indicating negation of destination groups.
- Direction string
- Traffic direction, one of
IN,OUTorIN_OUT. Default isIN_OUT. - Disabled bool
- Flag to disable this rule. Default is false.
- Ip
Version string - Version of IP protocol, one of
NONE,IPV4,IPV6,IPV4_IPV6. Default isIPV4_IPV6. - Log
Label string - Additional information (string) which will be propagated to the rule syslog.
- Logged bool
- Flag to enable packet logging. Default is false.
- Notes string
- Additional notes on changes.
- Nsx
Id string - The NSX ID of this resource. If set, this ID will be used to create the resource.
- Path string
- The NSX path of the policy resource.
- Profiles List<string>
- Set of profile paths relevant for this rule.
- Revision double
- Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
- Rule
Id double - Unique positive number that is assigned by the system and is useful for debugging.
- Scopes List<string>
- Set of policy object paths where the rule is applied.
- Sequence
Number double - It is recommended not to specify sequence number for rules, and rely on provider to auto-assign them. If you choose to specify sequence numbers, you must make sure the numbers are consistent with order of the rules in configuration. Please note that sequence numbers should start with 1 and not 0. To avoid confusion, either specify sequence numbers in all rules, or none at all.
- Service
Entries VpcSecurity Policy Rule Service Entries - List of services to match
- Services List<string>
- Set of service paths to match.
- Source
Groups List<string> - Set of group paths that serve as the source for this rule. IPs, IP ranges, or CIDRs may also be used starting in NSX-T 3.0. An empty set can be used to specify "Any".
- Sources
Excluded bool - A boolean value indicating negation of source groups.
-
List<Vpc
Security Policy Rule Tag> - A list of scope + tag pairs to associate with this Rule.
- Display
Name string - Display name of the resource.
- Action string
- Rule action, one of
ALLOW,DROPandREJECT. Default isALLOW.. - Description string
- Description of the resource.
- Destination
Groups []string - Set of group paths that serve as the destination for this rule. IPs, IP ranges, or CIDRs may also be used starting in NSX-T 3.0. An empty set can be used to specify "Any".
- Destinations
Excluded bool - A boolean value indicating negation of destination groups.
- Direction string
- Traffic direction, one of
IN,OUTorIN_OUT. Default isIN_OUT. - Disabled bool
- Flag to disable this rule. Default is false.
- Ip
Version string - Version of IP protocol, one of
NONE,IPV4,IPV6,IPV4_IPV6. Default isIPV4_IPV6. - Log
Label string - Additional information (string) which will be propagated to the rule syslog.
- Logged bool
- Flag to enable packet logging. Default is false.
- Notes string
- Additional notes on changes.
- Nsx
Id string - The NSX ID of this resource. If set, this ID will be used to create the resource.
- Path string
- The NSX path of the policy resource.
- Profiles []string
- Set of profile paths relevant for this rule.
- Revision float64
- Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
- Rule
Id float64 - Unique positive number that is assigned by the system and is useful for debugging.
- Scopes []string
- Set of policy object paths where the rule is applied.
- Sequence
Number float64 - It is recommended not to specify sequence number for rules, and rely on provider to auto-assign them. If you choose to specify sequence numbers, you must make sure the numbers are consistent with order of the rules in configuration. Please note that sequence numbers should start with 1 and not 0. To avoid confusion, either specify sequence numbers in all rules, or none at all.
- Service
Entries VpcSecurity Policy Rule Service Entries - List of services to match
- Services []string
- Set of service paths to match.
- Source
Groups []string - Set of group paths that serve as the source for this rule. IPs, IP ranges, or CIDRs may also be used starting in NSX-T 3.0. An empty set can be used to specify "Any".
- Sources
Excluded bool - A boolean value indicating negation of source groups.
-
[]Vpc
Security Policy Rule Tag - A list of scope + tag pairs to associate with this Rule.
- display
Name String - Display name of the resource.
- action String
- Rule action, one of
ALLOW,DROPandREJECT. Default isALLOW.. - description String
- Description of the resource.
- destination
Groups List<String> - Set of group paths that serve as the destination for this rule. IPs, IP ranges, or CIDRs may also be used starting in NSX-T 3.0. An empty set can be used to specify "Any".
- destinations
Excluded Boolean - A boolean value indicating negation of destination groups.
- direction String
- Traffic direction, one of
IN,OUTorIN_OUT. Default isIN_OUT. - disabled Boolean
- Flag to disable this rule. Default is false.
- ip
Version String - Version of IP protocol, one of
NONE,IPV4,IPV6,IPV4_IPV6. Default isIPV4_IPV6. - log
Label String - Additional information (string) which will be propagated to the rule syslog.
- logged Boolean
- Flag to enable packet logging. Default is false.
- notes String
- Additional notes on changes.
- nsx
Id String - The NSX ID of this resource. If set, this ID will be used to create the resource.
- path String
- The NSX path of the policy resource.
- profiles List<String>
- Set of profile paths relevant for this rule.
- revision Double
- Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
- rule
Id Double - Unique positive number that is assigned by the system and is useful for debugging.
- scopes List<String>
- Set of policy object paths where the rule is applied.
- sequence
Number Double - It is recommended not to specify sequence number for rules, and rely on provider to auto-assign them. If you choose to specify sequence numbers, you must make sure the numbers are consistent with order of the rules in configuration. Please note that sequence numbers should start with 1 and not 0. To avoid confusion, either specify sequence numbers in all rules, or none at all.
- service
Entries VpcSecurity Policy Rule Service Entries - List of services to match
- services List<String>
- Set of service paths to match.
- source
Groups List<String> - Set of group paths that serve as the source for this rule. IPs, IP ranges, or CIDRs may also be used starting in NSX-T 3.0. An empty set can be used to specify "Any".
- sources
Excluded Boolean - A boolean value indicating negation of source groups.
-
List<Vpc
Security Policy Rule Tag> - A list of scope + tag pairs to associate with this Rule.
- display
Name string - Display name of the resource.
- action string
- Rule action, one of
ALLOW,DROPandREJECT. Default isALLOW.. - description string
- Description of the resource.
- destination
Groups string[] - Set of group paths that serve as the destination for this rule. IPs, IP ranges, or CIDRs may also be used starting in NSX-T 3.0. An empty set can be used to specify "Any".
- destinations
Excluded boolean - A boolean value indicating negation of destination groups.
- direction string
- Traffic direction, one of
IN,OUTorIN_OUT. Default isIN_OUT. - disabled boolean
- Flag to disable this rule. Default is false.
- ip
Version string - Version of IP protocol, one of
NONE,IPV4,IPV6,IPV4_IPV6. Default isIPV4_IPV6. - log
Label string - Additional information (string) which will be propagated to the rule syslog.
- logged boolean
- Flag to enable packet logging. Default is false.
- notes string
- Additional notes on changes.
- nsx
Id string - The NSX ID of this resource. If set, this ID will be used to create the resource.
- path string
- The NSX path of the policy resource.
- profiles string[]
- Set of profile paths relevant for this rule.
- revision number
- Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
- rule
Id number - Unique positive number that is assigned by the system and is useful for debugging.
- scopes string[]
- Set of policy object paths where the rule is applied.
- sequence
Number number - It is recommended not to specify sequence number for rules, and rely on provider to auto-assign them. If you choose to specify sequence numbers, you must make sure the numbers are consistent with order of the rules in configuration. Please note that sequence numbers should start with 1 and not 0. To avoid confusion, either specify sequence numbers in all rules, or none at all.
- service
Entries VpcSecurity Policy Rule Service Entries - List of services to match
- services string[]
- Set of service paths to match.
- source
Groups string[] - Set of group paths that serve as the source for this rule. IPs, IP ranges, or CIDRs may also be used starting in NSX-T 3.0. An empty set can be used to specify "Any".
- sources
Excluded boolean - A boolean value indicating negation of source groups.
-
Vpc
Security Policy Rule Tag[] - A list of scope + tag pairs to associate with this Rule.
- display_
name str - Display name of the resource.
- action str
- Rule action, one of
ALLOW,DROPandREJECT. Default isALLOW.. - description str
- Description of the resource.
- destination_
groups Sequence[str] - Set of group paths that serve as the destination for this rule. IPs, IP ranges, or CIDRs may also be used starting in NSX-T 3.0. An empty set can be used to specify "Any".
- destinations_
excluded bool - A boolean value indicating negation of destination groups.
- direction str
- Traffic direction, one of
IN,OUTorIN_OUT. Default isIN_OUT. - disabled bool
- Flag to disable this rule. Default is false.
- ip_
version str - Version of IP protocol, one of
NONE,IPV4,IPV6,IPV4_IPV6. Default isIPV4_IPV6. - log_
label str - Additional information (string) which will be propagated to the rule syslog.
- logged bool
- Flag to enable packet logging. Default is false.
- notes str
- Additional notes on changes.
- nsx_
id str - The NSX ID of this resource. If set, this ID will be used to create the resource.
- path str
- The NSX path of the policy resource.
- profiles Sequence[str]
- Set of profile paths relevant for this rule.
- revision float
- Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
- rule_
id float - Unique positive number that is assigned by the system and is useful for debugging.
- scopes Sequence[str]
- Set of policy object paths where the rule is applied.
- sequence_
number float - It is recommended not to specify sequence number for rules, and rely on provider to auto-assign them. If you choose to specify sequence numbers, you must make sure the numbers are consistent with order of the rules in configuration. Please note that sequence numbers should start with 1 and not 0. To avoid confusion, either specify sequence numbers in all rules, or none at all.
- service_
entries VpcSecurity Policy Rule Service Entries - List of services to match
- services Sequence[str]
- Set of service paths to match.
- source_
groups Sequence[str] - Set of group paths that serve as the source for this rule. IPs, IP ranges, or CIDRs may also be used starting in NSX-T 3.0. An empty set can be used to specify "Any".
- sources_
excluded bool - A boolean value indicating negation of source groups.
-
Sequence[Vpc
Security Policy Rule Tag] - A list of scope + tag pairs to associate with this Rule.
- display
Name String - Display name of the resource.
- action String
- Rule action, one of
ALLOW,DROPandREJECT. Default isALLOW.. - description String
- Description of the resource.
- destination
Groups List<String> - Set of group paths that serve as the destination for this rule. IPs, IP ranges, or CIDRs may also be used starting in NSX-T 3.0. An empty set can be used to specify "Any".
- destinations
Excluded Boolean - A boolean value indicating negation of destination groups.
- direction String
- Traffic direction, one of
IN,OUTorIN_OUT. Default isIN_OUT. - disabled Boolean
- Flag to disable this rule. Default is false.
- ip
Version String - Version of IP protocol, one of
NONE,IPV4,IPV6,IPV4_IPV6. Default isIPV4_IPV6. - log
Label String - Additional information (string) which will be propagated to the rule syslog.
- logged Boolean
- Flag to enable packet logging. Default is false.
- notes String
- Additional notes on changes.
- nsx
Id String - The NSX ID of this resource. If set, this ID will be used to create the resource.
- path String
- The NSX path of the policy resource.
- profiles List<String>
- Set of profile paths relevant for this rule.
- revision Number
- Indicates current revision number of the object as seen by NSX-T API server. This attribute can be useful for debugging.
- rule
Id Number - Unique positive number that is assigned by the system and is useful for debugging.
- scopes List<String>
- Set of policy object paths where the rule is applied.
- sequence
Number Number - It is recommended not to specify sequence number for rules, and rely on provider to auto-assign them. If you choose to specify sequence numbers, you must make sure the numbers are consistent with order of the rules in configuration. Please note that sequence numbers should start with 1 and not 0. To avoid confusion, either specify sequence numbers in all rules, or none at all.
- service
Entries Property Map - List of services to match
- services List<String>
- Set of service paths to match.
- source
Groups List<String> - Set of group paths that serve as the source for this rule. IPs, IP ranges, or CIDRs may also be used starting in NSX-T 3.0. An empty set can be used to specify "Any".
- sources
Excluded Boolean - A boolean value indicating negation of source groups.
- List<Property Map>
- A list of scope + tag pairs to associate with this Rule.
VpcSecurityPolicyRuleServiceEntries, VpcSecurityPolicyRuleServiceEntriesArgs
- Algorithm
Entries List<VpcSecurity Policy Rule Service Entries Algorithm Entry> - Algorithm type service entry
- Ether
Type List<VpcEntries Security Policy Rule Service Entries Ether Type Entry> - Ether type service entry
- Icmp
Entries List<VpcSecurity Policy Rule Service Entries Icmp Entry> - ICMP type service entry
- Igmp
Entries List<VpcSecurity Policy Rule Service Entries Igmp Entry> - IGMP type service entry
- Ip
Protocol List<VpcEntries Security Policy Rule Service Entries Ip Protocol Entry> - IP Protocol type service entry
- L4Port
Set List<VpcEntries Security Policy Rule Service Entries L4Port Set Entry> - L4 port set type service entry
- Algorithm
Entries []VpcSecurity Policy Rule Service Entries Algorithm Entry - Algorithm type service entry
- Ether
Type []VpcEntries Security Policy Rule Service Entries Ether Type Entry - Ether type service entry
- Icmp
Entries []VpcSecurity Policy Rule Service Entries Icmp Entry - ICMP type service entry
- Igmp
Entries []VpcSecurity Policy Rule Service Entries Igmp Entry - IGMP type service entry
- Ip
Protocol []VpcEntries Security Policy Rule Service Entries Ip Protocol Entry - IP Protocol type service entry
- L4Port
Set []VpcEntries Security Policy Rule Service Entries L4Port Set Entry - L4 port set type service entry
- algorithm
Entries List<VpcSecurity Policy Rule Service Entries Algorithm Entry> - Algorithm type service entry
- ether
Type List<VpcEntries Security Policy Rule Service Entries Ether Type Entry> - Ether type service entry
- icmp
Entries List<VpcSecurity Policy Rule Service Entries Icmp Entry> - ICMP type service entry
- igmp
Entries List<VpcSecurity Policy Rule Service Entries Igmp Entry> - IGMP type service entry
- ip
Protocol List<VpcEntries Security Policy Rule Service Entries Ip Protocol Entry> - IP Protocol type service entry
- l4Port
Set List<VpcEntries Security Policy Rule Service Entries L4Port Set Entry> - L4 port set type service entry
- algorithm
Entries VpcSecurity Policy Rule Service Entries Algorithm Entry[] - Algorithm type service entry
- ether
Type VpcEntries Security Policy Rule Service Entries Ether Type Entry[] - Ether type service entry
- icmp
Entries VpcSecurity Policy Rule Service Entries Icmp Entry[] - ICMP type service entry
- igmp
Entries VpcSecurity Policy Rule Service Entries Igmp Entry[] - IGMP type service entry
- ip
Protocol VpcEntries Security Policy Rule Service Entries Ip Protocol Entry[] - IP Protocol type service entry
- l4Port
Set VpcEntries Security Policy Rule Service Entries L4Port Set Entry[] - L4 port set type service entry
- algorithm_
entries Sequence[VpcSecurity Policy Rule Service Entries Algorithm Entry] - Algorithm type service entry
- ether_
type_ Sequence[Vpcentries Security Policy Rule Service Entries Ether Type Entry] - Ether type service entry
- icmp_
entries Sequence[VpcSecurity Policy Rule Service Entries Icmp Entry] - ICMP type service entry
- igmp_
entries Sequence[VpcSecurity Policy Rule Service Entries Igmp Entry] - IGMP type service entry
- ip_
protocol_ Sequence[Vpcentries Security Policy Rule Service Entries Ip Protocol Entry] - IP Protocol type service entry
- l4_
port_ Sequence[Vpcset_ entries Security Policy Rule Service Entries L4Port Set Entry] - L4 port set type service entry
- algorithm
Entries List<Property Map> - Algorithm type service entry
- ether
Type List<Property Map>Entries - Ether type service entry
- icmp
Entries List<Property Map> - ICMP type service entry
- igmp
Entries List<Property Map> - IGMP type service entry
- ip
Protocol List<Property Map>Entries - IP Protocol type service entry
- l4Port
Set List<Property Map>Entries - L4 port set type service entry
VpcSecurityPolicyRuleServiceEntriesAlgorithmEntry, VpcSecurityPolicyRuleServiceEntriesAlgorithmEntryArgs
- Algorithm string
- Algorithm
- Destination
Port string - A single destination port
- Description string
- Description of the resource.
- Display
Name string - Display name of the resource.
- Source
Ports List<string> - Set of source ports or ranges
- Algorithm string
- Algorithm
- Destination
Port string - A single destination port
- Description string
- Description of the resource.
- Display
Name string - Display name of the resource.
- Source
Ports []string - Set of source ports or ranges
- algorithm String
- Algorithm
- destination
Port String - A single destination port
- description String
- Description of the resource.
- display
Name String - Display name of the resource.
- source
Ports List<String> - Set of source ports or ranges
- algorithm string
- Algorithm
- destination
Port string - A single destination port
- description string
- Description of the resource.
- display
Name string - Display name of the resource.
- source
Ports string[] - Set of source ports or ranges
- algorithm str
- Algorithm
- destination_
port str - A single destination port
- description str
- Description of the resource.
- display_
name str - Display name of the resource.
- source_
ports Sequence[str] - Set of source ports or ranges
- algorithm String
- Algorithm
- destination
Port String - A single destination port
- description String
- Description of the resource.
- display
Name String - Display name of the resource.
- source
Ports List<String> - Set of source ports or ranges
VpcSecurityPolicyRuleServiceEntriesEtherTypeEntry, VpcSecurityPolicyRuleServiceEntriesEtherTypeEntryArgs
- Ether
Type double - Type of the encapsulated protocol
- Description string
- Description of the resource.
- Display
Name string - Display name of the resource.
- Ether
Type float64 - Type of the encapsulated protocol
- Description string
- Description of the resource.
- Display
Name string - Display name of the resource.
- ether
Type Double - Type of the encapsulated protocol
- description String
- Description of the resource.
- display
Name String - Display name of the resource.
- ether
Type number - Type of the encapsulated protocol
- description string
- Description of the resource.
- display
Name string - Display name of the resource.
- ether_
type float - Type of the encapsulated protocol
- description str
- Description of the resource.
- display_
name str - Display name of the resource.
- ether
Type Number - Type of the encapsulated protocol
- description String
- Description of the resource.
- display
Name String - Display name of the resource.
VpcSecurityPolicyRuleServiceEntriesIcmpEntry, VpcSecurityPolicyRuleServiceEntriesIcmpEntryArgs
- Protocol string
- Version of ICMP protocol (ICMPv4/ICMPv6)
- Description string
- Description of the resource.
- Display
Name string - Display name of the resource.
- Icmp
Code string - ICMP message code
- Icmp
Type string - ICMP message type
- Protocol string
- Version of ICMP protocol (ICMPv4/ICMPv6)
- Description string
- Description of the resource.
- Display
Name string - Display name of the resource.
- Icmp
Code string - ICMP message code
- Icmp
Type string - ICMP message type
- protocol String
- Version of ICMP protocol (ICMPv4/ICMPv6)
- description String
- Description of the resource.
- display
Name String - Display name of the resource.
- icmp
Code String - ICMP message code
- icmp
Type String - ICMP message type
- protocol string
- Version of ICMP protocol (ICMPv4/ICMPv6)
- description string
- Description of the resource.
- display
Name string - Display name of the resource.
- icmp
Code string - ICMP message code
- icmp
Type string - ICMP message type
- protocol str
- Version of ICMP protocol (ICMPv4/ICMPv6)
- description str
- Description of the resource.
- display_
name str - Display name of the resource.
- icmp_
code str - ICMP message code
- icmp_
type str - ICMP message type
- protocol String
- Version of ICMP protocol (ICMPv4/ICMPv6)
- description String
- Description of the resource.
- display
Name String - Display name of the resource.
- icmp
Code String - ICMP message code
- icmp
Type String - ICMP message type
VpcSecurityPolicyRuleServiceEntriesIgmpEntry, VpcSecurityPolicyRuleServiceEntriesIgmpEntryArgs
- Description string
- Description of the resource.
- Display
Name string - Display name of the resource.
- Description string
- Description of the resource.
- Display
Name string - Display name of the resource.
- description String
- Description of the resource.
- display
Name String - Display name of the resource.
- description string
- Description of the resource.
- display
Name string - Display name of the resource.
- description str
- Description of the resource.
- display_
name str - Display name of the resource.
- description String
- Description of the resource.
- display
Name String - Display name of the resource.
VpcSecurityPolicyRuleServiceEntriesIpProtocolEntry, VpcSecurityPolicyRuleServiceEntriesIpProtocolEntryArgs
- Protocol double
- IP protocol number
- Description string
- Description of the resource.
- Display
Name string - Display name of the resource.
- Protocol float64
- IP protocol number
- Description string
- Description of the resource.
- Display
Name string - Display name of the resource.
- protocol Double
- IP protocol number
- description String
- Description of the resource.
- display
Name String - Display name of the resource.
- protocol number
- IP protocol number
- description string
- Description of the resource.
- display
Name string - Display name of the resource.
- protocol float
- IP protocol number
- description str
- Description of the resource.
- display_
name str - Display name of the resource.
- protocol Number
- IP protocol number
- description String
- Description of the resource.
- display
Name String - Display name of the resource.
VpcSecurityPolicyRuleServiceEntriesL4PortSetEntry, VpcSecurityPolicyRuleServiceEntriesL4PortSetEntryArgs
- Protocol string
- L4 Protocol
- Description string
- Description of the resource.
- Destination
Ports List<string> - Set of destination ports
- Display
Name string - Display name of the resource.
- Source
Ports List<string> - Set of source ports
- Protocol string
- L4 Protocol
- Description string
- Description of the resource.
- Destination
Ports []string - Set of destination ports
- Display
Name string - Display name of the resource.
- Source
Ports []string - Set of source ports
- protocol String
- L4 Protocol
- description String
- Description of the resource.
- destination
Ports List<String> - Set of destination ports
- display
Name String - Display name of the resource.
- source
Ports List<String> - Set of source ports
- protocol string
- L4 Protocol
- description string
- Description of the resource.
- destination
Ports string[] - Set of destination ports
- display
Name string - Display name of the resource.
- source
Ports string[] - Set of source ports
- protocol str
- L4 Protocol
- description str
- Description of the resource.
- destination_
ports Sequence[str] - Set of destination ports
- display_
name str - Display name of the resource.
- source_
ports Sequence[str] - Set of source ports
- protocol String
- L4 Protocol
- description String
- Description of the resource.
- destination
Ports List<String> - Set of destination ports
- display
Name String - Display name of the resource.
- source
Ports List<String> - Set of source ports
VpcSecurityPolicyRuleTag, VpcSecurityPolicyRuleTagArgs
VpcSecurityPolicyTag, VpcSecurityPolicyTagArgs
Package Details
- Repository
- nsxt vmware/terraform-provider-nsxt
- License
- Notes
- This Pulumi package is based on the
nsxtTerraform Provider.