nutanix.getNetworkSecurityPolicyV2

Nutanix v0.11.0, Nov 24 25

Viewing docs for Nutanix v0.11.0
published on Monday, Nov 24, 2025 by Piers Karsenbarg

Schema (JSON)

pierskarsenbarg/pulumi-nutanix

Viewing docs for Nutanix v0.11.0
published on Monday, Nov 24, 2025 by Piers Karsenbarg

Schema (JSON)

pierskarsenbarg/pulumi-nutanix

Using getNetworkSecurityPolicyV2

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getNetworkSecurityPolicyV2(args: GetNetworkSecurityPolicyV2Args, opts?: InvokeOptions): Promise<GetNetworkSecurityPolicyV2Result>
function getNetworkSecurityPolicyV2Output(args: GetNetworkSecurityPolicyV2OutputArgs, opts?: InvokeOptions): Output<GetNetworkSecurityPolicyV2Result>

def get_network_security_policy_v2(ext_id: Optional[str] = None,
                                   opts: Optional[InvokeOptions] = None) -> GetNetworkSecurityPolicyV2Result
def get_network_security_policy_v2_output(ext_id: Optional[pulumi.Input[str]] = None,
                                   opts: Optional[InvokeOptions] = None) -> Output[GetNetworkSecurityPolicyV2Result]

func LookupNetworkSecurityPolicyV2(ctx *Context, args *LookupNetworkSecurityPolicyV2Args, opts ...InvokeOption) (*LookupNetworkSecurityPolicyV2Result, error)
func LookupNetworkSecurityPolicyV2Output(ctx *Context, args *LookupNetworkSecurityPolicyV2OutputArgs, opts ...InvokeOption) LookupNetworkSecurityPolicyV2ResultOutput

> Note: This function is named LookupNetworkSecurityPolicyV2 in the Go SDK.

public static class GetNetworkSecurityPolicyV2 
{
    public static Task<GetNetworkSecurityPolicyV2Result> InvokeAsync(GetNetworkSecurityPolicyV2Args args, InvokeOptions? opts = null)
    public static Output<GetNetworkSecurityPolicyV2Result> Invoke(GetNetworkSecurityPolicyV2InvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetNetworkSecurityPolicyV2Result> getNetworkSecurityPolicyV2(GetNetworkSecurityPolicyV2Args args, InvokeOptions options)
public static Output<GetNetworkSecurityPolicyV2Result> getNetworkSecurityPolicyV2(GetNetworkSecurityPolicyV2Args args, InvokeOptions options)

fn::invoke:
  function: nutanix:index/getNetworkSecurityPolicyV2:getNetworkSecurityPolicyV2
  arguments:
    # arguments dictionary

The following arguments are supported:

ExtId string: Network security policy UUID.

ExtId string: Network security policy UUID.

extId String: Network security policy UUID.

extId string: Network security policy UUID.

ext_id str: Network security policy UUID.

extId String: Network security policy UUID.

getNetworkSecurityPolicyV2 Result

The following output properties are available:

CreatedBy string: created by.
CreationTime string: creation time of NSP
Description string: A user defined annotation for a rule.
ExtId string: A globally unique identifier of an instance that is suitable for external consumption.
Id string: The provider-assigned unique ID for this managed resource.
IsHitlogEnabled bool: If Hitlog is enabled.
IsIpv6TrafficAllowed bool: If Ipv6 Traffic is allowed.
IsSystemDefined bool: Is system defined NSP
LastUpdateTime string: last updated time
Links List<PiersKarsenbarg.Nutanix.Outputs.GetNetworkSecurityPolicyV2Link>: A HATEOAS style link for the response. Each link contains a user-friendly name identifying the link and an address for retrieving the particular resource.
Name string: Name of the Flow Network Security Policy.
Rules List<PiersKarsenbarg.Nutanix.Outputs.GetNetworkSecurityPolicyV2Rule>: A list of rules that form a policy. For isolation policies, use isolation rules; for application or quarantine policies, use application rules.
Scope string: Defines the scope of the policy. Currently, only ALL_VLAN and VPC_LIST are supported. If scope is not provided, the default is set based on whether vpcReferences field is provided or not.
SecuredGroups List<string>: Uuids of the secured groups in the NSP.
State string: Whether the policy is applied or monitored; can be omitted or set null to save the policy without applying or monitoring it.
TenantId string: A globally unique identifier that represents the tenant that owns this entity
Type string: Icmp service Type. Ignore this field if Type has to be ANY.
VpcReferences List<string>: A list of external ids for VPCs, used only when the scope of policy is a list of VPCs.

CreatedBy string: created by.
CreationTime string: creation time of NSP
Description string: A user defined annotation for a rule.
ExtId string: A globally unique identifier of an instance that is suitable for external consumption.
Id string: The provider-assigned unique ID for this managed resource.
IsHitlogEnabled bool: If Hitlog is enabled.
IsIpv6TrafficAllowed bool: If Ipv6 Traffic is allowed.
IsSystemDefined bool: Is system defined NSP
LastUpdateTime string: last updated time
Links []GetNetworkSecurityPolicyV2Link: A HATEOAS style link for the response. Each link contains a user-friendly name identifying the link and an address for retrieving the particular resource.
Name string: Name of the Flow Network Security Policy.
Rules []GetNetworkSecurityPolicyV2Rule: A list of rules that form a policy. For isolation policies, use isolation rules; for application or quarantine policies, use application rules.
Scope string: Defines the scope of the policy. Currently, only ALL_VLAN and VPC_LIST are supported. If scope is not provided, the default is set based on whether vpcReferences field is provided or not.
SecuredGroups []string: Uuids of the secured groups in the NSP.
State string: Whether the policy is applied or monitored; can be omitted or set null to save the policy without applying or monitoring it.
TenantId string: A globally unique identifier that represents the tenant that owns this entity
Type string: Icmp service Type. Ignore this field if Type has to be ANY.
VpcReferences []string: A list of external ids for VPCs, used only when the scope of policy is a list of VPCs.

createdBy String: created by.
creationTime String: creation time of NSP
description String: A user defined annotation for a rule.
extId String: A globally unique identifier of an instance that is suitable for external consumption.
id String: The provider-assigned unique ID for this managed resource.
isHitlogEnabled Boolean: If Hitlog is enabled.
isIpv6TrafficAllowed Boolean: If Ipv6 Traffic is allowed.
isSystemDefined Boolean: Is system defined NSP
lastUpdateTime String: last updated time
links List<GetNetworkSecurityPolicyV2Link>: A HATEOAS style link for the response. Each link contains a user-friendly name identifying the link and an address for retrieving the particular resource.
name String: Name of the Flow Network Security Policy.
rules List<GetNetworkSecurityPolicyV2Rule>: A list of rules that form a policy. For isolation policies, use isolation rules; for application or quarantine policies, use application rules.
scope String: Defines the scope of the policy. Currently, only ALL_VLAN and VPC_LIST are supported. If scope is not provided, the default is set based on whether vpcReferences field is provided or not.
securedGroups List<String>: Uuids of the secured groups in the NSP.
state String: Whether the policy is applied or monitored; can be omitted or set null to save the policy without applying or monitoring it.
tenantId String: A globally unique identifier that represents the tenant that owns this entity
type String: Icmp service Type. Ignore this field if Type has to be ANY.
vpcReferences List<String>: A list of external ids for VPCs, used only when the scope of policy is a list of VPCs.

createdBy string: created by.
creationTime string: creation time of NSP
description string: A user defined annotation for a rule.
extId string: A globally unique identifier of an instance that is suitable for external consumption.
id string: The provider-assigned unique ID for this managed resource.
isHitlogEnabled boolean: If Hitlog is enabled.
isIpv6TrafficAllowed boolean: If Ipv6 Traffic is allowed.
isSystemDefined boolean: Is system defined NSP
lastUpdateTime string: last updated time
links GetNetworkSecurityPolicyV2Link[]: A HATEOAS style link for the response. Each link contains a user-friendly name identifying the link and an address for retrieving the particular resource.
name string: Name of the Flow Network Security Policy.
rules GetNetworkSecurityPolicyV2Rule[]: A list of rules that form a policy. For isolation policies, use isolation rules; for application or quarantine policies, use application rules.
scope string: Defines the scope of the policy. Currently, only ALL_VLAN and VPC_LIST are supported. If scope is not provided, the default is set based on whether vpcReferences field is provided or not.
securedGroups string[]: Uuids of the secured groups in the NSP.
state string: Whether the policy is applied or monitored; can be omitted or set null to save the policy without applying or monitoring it.
tenantId string: A globally unique identifier that represents the tenant that owns this entity
type string: Icmp service Type. Ignore this field if Type has to be ANY.
vpcReferences string[]: A list of external ids for VPCs, used only when the scope of policy is a list of VPCs.

created_by str: created by.
creation_time str: creation time of NSP
description str: A user defined annotation for a rule.
ext_id str: A globally unique identifier of an instance that is suitable for external consumption.
id str: The provider-assigned unique ID for this managed resource.
is_hitlog_enabled bool: If Hitlog is enabled.
is_ipv6_traffic_allowed bool: If Ipv6 Traffic is allowed.
is_system_defined bool: Is system defined NSP
last_update_time str: last updated time
links Sequence[GetNetworkSecurityPolicyV2Link]: A HATEOAS style link for the response. Each link contains a user-friendly name identifying the link and an address for retrieving the particular resource.
name str: Name of the Flow Network Security Policy.
rules Sequence[GetNetworkSecurityPolicyV2Rule]: A list of rules that form a policy. For isolation policies, use isolation rules; for application or quarantine policies, use application rules.
scope str: Defines the scope of the policy. Currently, only ALL_VLAN and VPC_LIST are supported. If scope is not provided, the default is set based on whether vpcReferences field is provided or not.
secured_groups Sequence[str]: Uuids of the secured groups in the NSP.
state str: Whether the policy is applied or monitored; can be omitted or set null to save the policy without applying or monitoring it.
tenant_id str: A globally unique identifier that represents the tenant that owns this entity
type str: Icmp service Type. Ignore this field if Type has to be ANY.
vpc_references Sequence[str]: A list of external ids for VPCs, used only when the scope of policy is a list of VPCs.

createdBy String: created by.
creationTime String: creation time of NSP
description String: A user defined annotation for a rule.
extId String: A globally unique identifier of an instance that is suitable for external consumption.
id String: The provider-assigned unique ID for this managed resource.
isHitlogEnabled Boolean: If Hitlog is enabled.
isIpv6TrafficAllowed Boolean: If Ipv6 Traffic is allowed.
isSystemDefined Boolean: Is system defined NSP
lastUpdateTime String: last updated time
links List<Property Map>: A HATEOAS style link for the response. Each link contains a user-friendly name identifying the link and an address for retrieving the particular resource.
name String: Name of the Flow Network Security Policy.
rules List<Property Map>: A list of rules that form a policy. For isolation policies, use isolation rules; for application or quarantine policies, use application rules.
scope String: Defines the scope of the policy. Currently, only ALL_VLAN and VPC_LIST are supported. If scope is not provided, the default is set based on whether vpcReferences field is provided or not.
securedGroups List<String>: Uuids of the secured groups in the NSP.
state String: Whether the policy is applied or monitored; can be omitted or set null to save the policy without applying or monitoring it.
tenantId String: A globally unique identifier that represents the tenant that owns this entity
type String: Icmp service Type. Ignore this field if Type has to be ANY.
vpcReferences List<String>: A list of external ids for VPCs, used only when the scope of policy is a list of VPCs.

Supporting Types

GetNetworkSecurityPolicyV2Link

Href string

The URL at which the entity described by the link can be accessed.

Rel string

A name that identifies the relationship of the link to the object that is returned by the URL. The unique value of "self" identifies the URL for the object.

Href string

The URL at which the entity described by the link can be accessed.

Rel string

A name that identifies the relationship of the link to the object that is returned by the URL. The unique value of "self" identifies the URL for the object.

href String

The URL at which the entity described by the link can be accessed.

rel String

A name that identifies the relationship of the link to the object that is returned by the URL. The unique value of "self" identifies the URL for the object.

href string

The URL at which the entity described by the link can be accessed.

rel string

A name that identifies the relationship of the link to the object that is returned by the URL. The unique value of "self" identifies the URL for the object.

href str

The URL at which the entity described by the link can be accessed.

rel str

A name that identifies the relationship of the link to the object that is returned by the URL. The unique value of "self" identifies the URL for the object.

href String

The URL at which the entity described by the link can be accessed.

rel String

A name that identifies the relationship of the link to the object that is returned by the URL. The unique value of "self" identifies the URL for the object.

GetNetworkSecurityPolicyV2Rule

Description string: A user defined annotation for a rule.
ExtId string: Network security policy UUID.
Links List<PiersKarsenbarg.Nutanix.Inputs.GetNetworkSecurityPolicyV2RuleLink>: A HATEOAS style link for the response. Each link contains a user-friendly name identifying the link and an address for retrieving the particular resource.
Specs List<PiersKarsenbarg.Nutanix.Inputs.GetNetworkSecurityPolicyV2RuleSpec>: Multi Environment Isolation Rule Spec.
Type string: Icmp service Type. Ignore this field if Type has to be ANY.

Description string: A user defined annotation for a rule.
ExtId string: Network security policy UUID.
Links []GetNetworkSecurityPolicyV2RuleLink: A HATEOAS style link for the response. Each link contains a user-friendly name identifying the link and an address for retrieving the particular resource.
Specs []GetNetworkSecurityPolicyV2RuleSpec: Multi Environment Isolation Rule Spec.
Type string: Icmp service Type. Ignore this field if Type has to be ANY.

description String: A user defined annotation for a rule.
extId String: Network security policy UUID.
links List<GetNetworkSecurityPolicyV2RuleLink>: A HATEOAS style link for the response. Each link contains a user-friendly name identifying the link and an address for retrieving the particular resource.
specs List<GetNetworkSecurityPolicyV2RuleSpec>: Multi Environment Isolation Rule Spec.
type String: Icmp service Type. Ignore this field if Type has to be ANY.

description string: A user defined annotation for a rule.
extId string: Network security policy UUID.
links GetNetworkSecurityPolicyV2RuleLink[]: A HATEOAS style link for the response. Each link contains a user-friendly name identifying the link and an address for retrieving the particular resource.
specs GetNetworkSecurityPolicyV2RuleSpec[]: Multi Environment Isolation Rule Spec.
type string: Icmp service Type. Ignore this field if Type has to be ANY.

description str: A user defined annotation for a rule.
ext_id str: Network security policy UUID.
links Sequence[GetNetworkSecurityPolicyV2RuleLink]: A HATEOAS style link for the response. Each link contains a user-friendly name identifying the link and an address for retrieving the particular resource.
specs Sequence[GetNetworkSecurityPolicyV2RuleSpec]: Multi Environment Isolation Rule Spec.
type str: Icmp service Type. Ignore this field if Type has to be ANY.

description String: A user defined annotation for a rule.
extId String: Network security policy UUID.
links List<Property Map>: A HATEOAS style link for the response. Each link contains a user-friendly name identifying the link and an address for retrieving the particular resource.
specs List<Property Map>: Multi Environment Isolation Rule Spec.
type String: Icmp service Type. Ignore this field if Type has to be ANY.

GetNetworkSecurityPolicyV2RuleLink

Href string

The URL at which the entity described by the link can be accessed.

Rel string

A name that identifies the relationship of the link to the object that is returned by the URL. The unique value of "self" identifies the URL for the object.

Href string

The URL at which the entity described by the link can be accessed.

Rel string

A name that identifies the relationship of the link to the object that is returned by the URL. The unique value of "self" identifies the URL for the object.

href String

The URL at which the entity described by the link can be accessed.

rel String

A name that identifies the relationship of the link to the object that is returned by the URL. The unique value of "self" identifies the URL for the object.

href string

The URL at which the entity described by the link can be accessed.

rel string

A name that identifies the relationship of the link to the object that is returned by the URL. The unique value of "self" identifies the URL for the object.

href str

The URL at which the entity described by the link can be accessed.

rel str

A name that identifies the relationship of the link to the object that is returned by the URL. The unique value of "self" identifies the URL for the object.

href String

The URL at which the entity described by the link can be accessed.

rel String

A name that identifies the relationship of the link to the object that is returned by the URL. The unique value of "self" identifies the URL for the object.

GetNetworkSecurityPolicyV2RuleSpec

ApplicationRuleSpecs List<PiersKarsenbarg.Nutanix.Inputs.GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpec>: Application Rule Spec.
IntraEntityGroupRuleSpecs List<PiersKarsenbarg.Nutanix.Inputs.GetNetworkSecurityPolicyV2RuleSpecIntraEntityGroupRuleSpec>: Intra entity group Rule Spec
MultiEnvIsolationRuleSpecs List<PiersKarsenbarg.Nutanix.Inputs.GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpec>: Multi Environment Isolation Rule Spec.
TwoEnvIsolationRuleSpecs List<PiersKarsenbarg.Nutanix.Inputs.GetNetworkSecurityPolicyV2RuleSpecTwoEnvIsolationRuleSpec>: Two Environment Isolation Rule Spec.

ApplicationRuleSpecs []GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpec: Application Rule Spec.
IntraEntityGroupRuleSpecs []GetNetworkSecurityPolicyV2RuleSpecIntraEntityGroupRuleSpec: Intra entity group Rule Spec
MultiEnvIsolationRuleSpecs []GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpec: Multi Environment Isolation Rule Spec.
TwoEnvIsolationRuleSpecs []GetNetworkSecurityPolicyV2RuleSpecTwoEnvIsolationRuleSpec: Two Environment Isolation Rule Spec.

applicationRuleSpecs List<GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpec>: Application Rule Spec.
intraEntityGroupRuleSpecs List<GetNetworkSecurityPolicyV2RuleSpecIntraEntityGroupRuleSpec>: Intra entity group Rule Spec
multiEnvIsolationRuleSpecs List<GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpec>: Multi Environment Isolation Rule Spec.
twoEnvIsolationRuleSpecs List<GetNetworkSecurityPolicyV2RuleSpecTwoEnvIsolationRuleSpec>: Two Environment Isolation Rule Spec.

applicationRuleSpecs GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpec[]: Application Rule Spec.
intraEntityGroupRuleSpecs GetNetworkSecurityPolicyV2RuleSpecIntraEntityGroupRuleSpec[]: Intra entity group Rule Spec
multiEnvIsolationRuleSpecs GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpec[]: Multi Environment Isolation Rule Spec.
twoEnvIsolationRuleSpecs GetNetworkSecurityPolicyV2RuleSpecTwoEnvIsolationRuleSpec[]: Two Environment Isolation Rule Spec.

application_rule_specs Sequence[GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpec]: Application Rule Spec.
intra_entity_group_rule_specs Sequence[GetNetworkSecurityPolicyV2RuleSpecIntraEntityGroupRuleSpec]: Intra entity group Rule Spec
multi_env_isolation_rule_specs Sequence[GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpec]: Multi Environment Isolation Rule Spec.
two_env_isolation_rule_specs Sequence[GetNetworkSecurityPolicyV2RuleSpecTwoEnvIsolationRuleSpec]: Two Environment Isolation Rule Spec.

applicationRuleSpecs List<Property Map>: Application Rule Spec.
intraEntityGroupRuleSpecs List<Property Map>: Intra entity group Rule Spec
multiEnvIsolationRuleSpecs List<Property Map>: Multi Environment Isolation Rule Spec.
twoEnvIsolationRuleSpecs List<Property Map>: Two Environment Isolation Rule Spec.

GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpec

DestAddressGroupReferences List<string>: A list of address group references.
DestAllowSpec string: A specification to how allow mode traffic should be applied, either ALL or NONE.
DestCategoryReferences List<string>: List of categories that define a set of network endpoints as outbound.
DestSubnets List<PiersKarsenbarg.Nutanix.Inputs.GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecDestSubnet>: destination subnet value
IcmpServices List<PiersKarsenbarg.Nutanix.Inputs.GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecIcmpService>: icmp services
IsAllProtocolAllowed bool: Denotes if rule allows traffic for all protocol.
NetworkFunctionChainReference string: A reference to the network function chain in the rule.
SecuredGroupCategoryReferences List<string>: A specification to whether traffic between intra secured group entities should be allowed or denied.
ServiceGroupReferences List<string>: A list of service group references.
SrcAddressGroupReferences List<string>: A list of address group references.
SrcAllowSpec string: A specification to how allow mode traffic should be applied, either ALL or NONE.
SrcCategoryReferences List<string>: List of categories that define a set of network endpoints as inbound.
SrcSubnets List<PiersKarsenbarg.Nutanix.Inputs.GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecSrcSubnet>: source subnet value
TcpServices List<PiersKarsenbarg.Nutanix.Inputs.GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecTcpService>: tcp services
UdpServices List<PiersKarsenbarg.Nutanix.Inputs.GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecUdpService>: udp services

DestAddressGroupReferences []string: A list of address group references.
DestAllowSpec string: A specification to how allow mode traffic should be applied, either ALL or NONE.
DestCategoryReferences []string: List of categories that define a set of network endpoints as outbound.
DestSubnets []GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecDestSubnet: destination subnet value
IcmpServices []GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecIcmpService: icmp services
IsAllProtocolAllowed bool: Denotes if rule allows traffic for all protocol.
NetworkFunctionChainReference string: A reference to the network function chain in the rule.
SecuredGroupCategoryReferences []string: A specification to whether traffic between intra secured group entities should be allowed or denied.
ServiceGroupReferences []string: A list of service group references.
SrcAddressGroupReferences []string: A list of address group references.
SrcAllowSpec string: A specification to how allow mode traffic should be applied, either ALL or NONE.
SrcCategoryReferences []string: List of categories that define a set of network endpoints as inbound.
SrcSubnets []GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecSrcSubnet: source subnet value
TcpServices []GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecTcpService: tcp services
UdpServices []GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecUdpService: udp services

destAddressGroupReferences List<String>: A list of address group references.
destAllowSpec String: A specification to how allow mode traffic should be applied, either ALL or NONE.
destCategoryReferences List<String>: List of categories that define a set of network endpoints as outbound.
destSubnets List<GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecDestSubnet>: destination subnet value
icmpServices List<GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecIcmpService>: icmp services
isAllProtocolAllowed Boolean: Denotes if rule allows traffic for all protocol.
networkFunctionChainReference String: A reference to the network function chain in the rule.
securedGroupCategoryReferences List<String>: A specification to whether traffic between intra secured group entities should be allowed or denied.
serviceGroupReferences List<String>: A list of service group references.
srcAddressGroupReferences List<String>: A list of address group references.
srcAllowSpec String: A specification to how allow mode traffic should be applied, either ALL or NONE.
srcCategoryReferences List<String>: List of categories that define a set of network endpoints as inbound.
srcSubnets List<GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecSrcSubnet>: source subnet value
tcpServices List<GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecTcpService>: tcp services
udpServices List<GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecUdpService>: udp services

destAddressGroupReferences string[]: A list of address group references.
destAllowSpec string: A specification to how allow mode traffic should be applied, either ALL or NONE.
destCategoryReferences string[]: List of categories that define a set of network endpoints as outbound.
destSubnets GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecDestSubnet[]: destination subnet value
icmpServices GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecIcmpService[]: icmp services
isAllProtocolAllowed boolean: Denotes if rule allows traffic for all protocol.
networkFunctionChainReference string: A reference to the network function chain in the rule.
securedGroupCategoryReferences string[]: A specification to whether traffic between intra secured group entities should be allowed or denied.
serviceGroupReferences string[]: A list of service group references.
srcAddressGroupReferences string[]: A list of address group references.
srcAllowSpec string: A specification to how allow mode traffic should be applied, either ALL or NONE.
srcCategoryReferences string[]: List of categories that define a set of network endpoints as inbound.
srcSubnets GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecSrcSubnet[]: source subnet value
tcpServices GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecTcpService[]: tcp services
udpServices GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecUdpService[]: udp services

dest_address_group_references Sequence[str]: A list of address group references.
dest_allow_spec str: A specification to how allow mode traffic should be applied, either ALL or NONE.
dest_category_references Sequence[str]: List of categories that define a set of network endpoints as outbound.
dest_subnets Sequence[GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecDestSubnet]: destination subnet value
icmp_services Sequence[GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecIcmpService]: icmp services
is_all_protocol_allowed bool: Denotes if rule allows traffic for all protocol.
network_function_chain_reference str: A reference to the network function chain in the rule.
secured_group_category_references Sequence[str]: A specification to whether traffic between intra secured group entities should be allowed or denied.
service_group_references Sequence[str]: A list of service group references.
src_address_group_references Sequence[str]: A list of address group references.
src_allow_spec str: A specification to how allow mode traffic should be applied, either ALL or NONE.
src_category_references Sequence[str]: List of categories that define a set of network endpoints as inbound.
src_subnets Sequence[GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecSrcSubnet]: source subnet value
tcp_services Sequence[GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecTcpService]: tcp services
udp_services Sequence[GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecUdpService]: udp services

destAddressGroupReferences List<String>: A list of address group references.
destAllowSpec String: A specification to how allow mode traffic should be applied, either ALL or NONE.
destCategoryReferences List<String>: List of categories that define a set of network endpoints as outbound.
destSubnets List<Property Map>: destination subnet value
icmpServices List<Property Map>: icmp services
isAllProtocolAllowed Boolean: Denotes if rule allows traffic for all protocol.
networkFunctionChainReference String: A reference to the network function chain in the rule.
securedGroupCategoryReferences List<String>: A specification to whether traffic between intra secured group entities should be allowed or denied.
serviceGroupReferences List<String>: A list of service group references.
srcAddressGroupReferences List<String>: A list of address group references.
srcAllowSpec String: A specification to how allow mode traffic should be applied, either ALL or NONE.
srcCategoryReferences List<String>: List of categories that define a set of network endpoints as inbound.
srcSubnets List<Property Map>: source subnet value
tcpServices List<Property Map>: tcp services
udpServices List<Property Map>: udp services

GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecDestSubnet

PrefixLength int
Value string

PrefixLength int
Value string

prefixLength Integer
value String

prefixLength number
value string

prefix_length int
value str

prefixLength Number
value String

GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecIcmpService

Code int: Icmp service Code. Ignore this field if Code has to be ANY.
IsAllAllowed bool: Set this field to true if both Type and Code is ANY.
Type int: Icmp service Type. Ignore this field if Type has to be ANY.

Code int: Icmp service Code. Ignore this field if Code has to be ANY.
IsAllAllowed bool: Set this field to true if both Type and Code is ANY.
Type int: Icmp service Type. Ignore this field if Type has to be ANY.

code Integer: Icmp service Code. Ignore this field if Code has to be ANY.
isAllAllowed Boolean: Set this field to true if both Type and Code is ANY.
type Integer: Icmp service Type. Ignore this field if Type has to be ANY.

code number: Icmp service Code. Ignore this field if Code has to be ANY.
isAllAllowed boolean: Set this field to true if both Type and Code is ANY.
type number: Icmp service Type. Ignore this field if Type has to be ANY.

code int: Icmp service Code. Ignore this field if Code has to be ANY.
is_all_allowed bool: Set this field to true if both Type and Code is ANY.
type int: Icmp service Type. Ignore this field if Type has to be ANY.

code Number: Icmp service Code. Ignore this field if Code has to be ANY.
isAllAllowed Boolean: Set this field to true if both Type and Code is ANY.
type Number: Icmp service Type. Ignore this field if Type has to be ANY.

GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecSrcSubnet

PrefixLength int
Value string

PrefixLength int
Value string

prefixLength Integer
value String

prefixLength number
value string

prefix_length int
value str

prefixLength Number
value String

GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecTcpService

EndPort int: end port
StartPort int: start port

EndPort int: end port
StartPort int: start port

endPort Integer: end port
startPort Integer: start port

endPort number: end port
startPort number: start port

end_port int: end port
start_port int: start port

endPort Number: end port
startPort Number: start port

GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecUdpService

EndPort int: end port
StartPort int: start port

EndPort int: end port
StartPort int: start port

endPort Integer: end port
startPort Integer: start port

endPort number: end port
startPort number: start port

end_port int: end port
start_port int: start port

endPort Number: end port
startPort Number: start port

GetNetworkSecurityPolicyV2RuleSpecIntraEntityGroupRuleSpec

SecuredGroupAction string: List of secured group action.
SecuredGroupCategoryReferences List<string>: A specification to whether traffic between intra secured group entities should be allowed or denied.

SecuredGroupAction string: List of secured group action.
SecuredGroupCategoryReferences []string: A specification to whether traffic between intra secured group entities should be allowed or denied.

securedGroupAction String: List of secured group action.
securedGroupCategoryReferences List<String>: A specification to whether traffic between intra secured group entities should be allowed or denied.

securedGroupAction string: List of secured group action.
securedGroupCategoryReferences string[]: A specification to whether traffic between intra secured group entities should be allowed or denied.

secured_group_action str: List of secured group action.
secured_group_category_references Sequence[str]: A specification to whether traffic between intra secured group entities should be allowed or denied.

securedGroupAction String: List of secured group action.
securedGroupCategoryReferences List<String>: A specification to whether traffic between intra secured group entities should be allowed or denied.

GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpec

Specs List<PiersKarsenbarg.Nutanix.Inputs.GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpec>: Multi Environment Isolation Rule Spec.

Specs []GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpec: Multi Environment Isolation Rule Spec.

specs List<GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpec>: Multi Environment Isolation Rule Spec.

specs GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpec[]: Multi Environment Isolation Rule Spec.

specs Sequence[GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpec]: Multi Environment Isolation Rule Spec.

specs List<Property Map>: Multi Environment Isolation Rule Spec.

GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpec

AllToAllIsolationGroups List<PiersKarsenbarg.Nutanix.Inputs.GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpecAllToAllIsolationGroup>: all to all isolation group

AllToAllIsolationGroups []GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpecAllToAllIsolationGroup: all to all isolation group

allToAllIsolationGroups List<GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpecAllToAllIsolationGroup>: all to all isolation group

allToAllIsolationGroups GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpecAllToAllIsolationGroup[]: all to all isolation group

all_to_all_isolation_groups Sequence[GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpecAllToAllIsolationGroup]: all to all isolation group

allToAllIsolationGroups List<Property Map>: all to all isolation group

GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpecAllToAllIsolationGroup

IsolationGroups List<PiersKarsenbarg.Nutanix.Inputs.GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpecAllToAllIsolationGroupIsolationGroup>: Denotes the list of secured groups that will be used in All to All mutual isolation.

IsolationGroups []GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpecAllToAllIsolationGroupIsolationGroup: Denotes the list of secured groups that will be used in All to All mutual isolation.

isolationGroups List<GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpecAllToAllIsolationGroupIsolationGroup>: Denotes the list of secured groups that will be used in All to All mutual isolation.

isolationGroups GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpecAllToAllIsolationGroupIsolationGroup[]: Denotes the list of secured groups that will be used in All to All mutual isolation.

isolation_groups Sequence[GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpecAllToAllIsolationGroupIsolationGroup]: Denotes the list of secured groups that will be used in All to All mutual isolation.

isolationGroups List<Property Map>: Denotes the list of secured groups that will be used in All to All mutual isolation.

GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpecAllToAllIsolationGroupIsolationGroup

GroupCategoryReferences List<string>: External identifiers of categories belonging to the isolation group.

GroupCategoryReferences []string: External identifiers of categories belonging to the isolation group.

groupCategoryReferences List<String>: External identifiers of categories belonging to the isolation group.

groupCategoryReferences string[]: External identifiers of categories belonging to the isolation group.

group_category_references Sequence[str]: External identifiers of categories belonging to the isolation group.

groupCategoryReferences List<String>: External identifiers of categories belonging to the isolation group.

GetNetworkSecurityPolicyV2RuleSpecTwoEnvIsolationRuleSpec

FirstIsolationGroups List<string>: Denotes the first group of category uuids that will be used in an isolation policy.
SecondIsolationGroups List<string>: Denotes the second group of category uuids that will be used in an isolation policy.

FirstIsolationGroups []string: Denotes the first group of category uuids that will be used in an isolation policy.
SecondIsolationGroups []string: Denotes the second group of category uuids that will be used in an isolation policy.

firstIsolationGroups List<String>: Denotes the first group of category uuids that will be used in an isolation policy.
secondIsolationGroups List<String>: Denotes the second group of category uuids that will be used in an isolation policy.

firstIsolationGroups string[]: Denotes the first group of category uuids that will be used in an isolation policy.
secondIsolationGroups string[]: Denotes the second group of category uuids that will be used in an isolation policy.

first_isolation_groups Sequence[str]: Denotes the first group of category uuids that will be used in an isolation policy.
second_isolation_groups Sequence[str]: Denotes the second group of category uuids that will be used in an isolation policy.

firstIsolationGroups List<String>: Denotes the first group of category uuids that will be used in an isolation policy.
secondIsolationGroups List<String>: Denotes the second group of category uuids that will be used in an isolation policy.

Package Details

Repository: nutanix pierskarsenbarg/pulumi-nutanix
License: Apache-2.0
Notes: This Pulumi package is based on the nutanix Terraform Provider.

Viewing docs for Nutanix v0.11.0
published on Monday, Nov 24, 2025 by Piers Karsenbarg

Schema (JSON)

pierskarsenbarg/pulumi-nutanix

nutanix.getNetworkSecurityPolicyV2

On this page

On this page

Using getNetworkSecurityPolicyV2

getNetworkSecurityPolicyV2 Result

Supporting Types

GetNetworkSecurityPolicyV2Link

GetNetworkSecurityPolicyV2Rule

GetNetworkSecurityPolicyV2RuleLink

GetNetworkSecurityPolicyV2RuleSpec

GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpec

GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecDestSubnet

GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecIcmpService

GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecSrcSubnet

GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecTcpService

GetNetworkSecurityPolicyV2RuleSpecApplicationRuleSpecUdpService

GetNetworkSecurityPolicyV2RuleSpecIntraEntityGroupRuleSpec

GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpec

GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpec

GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpecAllToAllIsolationGroup

GetNetworkSecurityPolicyV2RuleSpecMultiEnvIsolationRuleSpecSpecAllToAllIsolationGroupIsolationGroup

GetNetworkSecurityPolicyV2RuleSpecTwoEnvIsolationRuleSpec

Package Details

On this page

On this page