oci.Bastion.Bastion
Explore with Pulumi AI
This resource provides the Bastion resource in Oracle Cloud Infrastructure Bastion service.
Creates a new bastion. A bastion provides secured, public access to target resources in the cloud that you cannot otherwise reach from the internet. A bastion resides in a public subnet and establishes the network infrastructure needed to connect a user to a target resource in a private subnet.
Example Usage
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;
return await Deployment.RunAsync(() =>
{
var testBastion = new Oci.Bastion.Bastion("testBastion", new()
{
BastionType = @var.Bastion_bastion_type,
CompartmentId = @var.Compartment_id,
TargetSubnetId = oci_core_subnet.Test_subnet.Id,
ClientCidrBlockAllowLists = @var.Bastion_client_cidr_block_allow_list,
DefinedTags =
{
{ "foo-namespace.bar-key", "value" },
},
DnsProxyStatus = @var.Bastion_dns_proxy_status,
FreeformTags =
{
{ "bar-key", "value" },
},
MaxSessionTtlInSeconds = @var.Bastion_max_session_ttl_in_seconds,
PhoneBookEntry = @var.Bastion_phone_book_entry,
StaticJumpHostIpAddresses = @var.Bastion_static_jump_host_ip_addresses,
});
});
package main
import (
"github.com/pulumi/pulumi-oci/sdk/go/oci/Bastion"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := Bastion.NewBastion(ctx, "testBastion", &Bastion.BastionArgs{
BastionType: pulumi.Any(_var.Bastion_bastion_type),
CompartmentId: pulumi.Any(_var.Compartment_id),
TargetSubnetId: pulumi.Any(oci_core_subnet.Test_subnet.Id),
ClientCidrBlockAllowLists: pulumi.Any(_var.Bastion_client_cidr_block_allow_list),
DefinedTags: pulumi.AnyMap{
"foo-namespace.bar-key": pulumi.Any("value"),
},
DnsProxyStatus: pulumi.Any(_var.Bastion_dns_proxy_status),
FreeformTags: pulumi.AnyMap{
"bar-key": pulumi.Any("value"),
},
MaxSessionTtlInSeconds: pulumi.Any(_var.Bastion_max_session_ttl_in_seconds),
PhoneBookEntry: pulumi.Any(_var.Bastion_phone_book_entry),
StaticJumpHostIpAddresses: pulumi.Any(_var.Bastion_static_jump_host_ip_addresses),
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.Bastion.Bastion;
import com.pulumi.oci.Bastion.BastionArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var testBastion = new Bastion("testBastion", BastionArgs.builder()
.bastionType(var_.bastion_bastion_type())
.compartmentId(var_.compartment_id())
.targetSubnetId(oci_core_subnet.test_subnet().id())
.clientCidrBlockAllowLists(var_.bastion_client_cidr_block_allow_list())
.definedTags(Map.of("foo-namespace.bar-key", "value"))
.dnsProxyStatus(var_.bastion_dns_proxy_status())
.freeformTags(Map.of("bar-key", "value"))
.maxSessionTtlInSeconds(var_.bastion_max_session_ttl_in_seconds())
.phoneBookEntry(var_.bastion_phone_book_entry())
.staticJumpHostIpAddresses(var_.bastion_static_jump_host_ip_addresses())
.build());
}
}
import pulumi
import pulumi_oci as oci
test_bastion = oci.bastion.Bastion("testBastion",
bastion_type=var["bastion_bastion_type"],
compartment_id=var["compartment_id"],
target_subnet_id=oci_core_subnet["test_subnet"]["id"],
client_cidr_block_allow_lists=var["bastion_client_cidr_block_allow_list"],
defined_tags={
"foo-namespace.bar-key": "value",
},
dns_proxy_status=var["bastion_dns_proxy_status"],
freeform_tags={
"bar-key": "value",
},
max_session_ttl_in_seconds=var["bastion_max_session_ttl_in_seconds"],
phone_book_entry=var["bastion_phone_book_entry"],
static_jump_host_ip_addresses=var["bastion_static_jump_host_ip_addresses"])
import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";
const testBastion = new oci.bastion.Bastion("testBastion", {
bastionType: _var.bastion_bastion_type,
compartmentId: _var.compartment_id,
targetSubnetId: oci_core_subnet.test_subnet.id,
clientCidrBlockAllowLists: _var.bastion_client_cidr_block_allow_list,
definedTags: {
"foo-namespace.bar-key": "value",
},
dnsProxyStatus: _var.bastion_dns_proxy_status,
freeformTags: {
"bar-key": "value",
},
maxSessionTtlInSeconds: _var.bastion_max_session_ttl_in_seconds,
phoneBookEntry: _var.bastion_phone_book_entry,
staticJumpHostIpAddresses: _var.bastion_static_jump_host_ip_addresses,
});
resources:
testBastion:
type: oci:Bastion:Bastion
properties:
#Required
bastionType: ${var.bastion_bastion_type}
compartmentId: ${var.compartment_id}
targetSubnetId: ${oci_core_subnet.test_subnet.id}
#Optional
clientCidrBlockAllowLists: ${var.bastion_client_cidr_block_allow_list}
definedTags:
foo-namespace.bar-key: value
dnsProxyStatus: ${var.bastion_dns_proxy_status}
freeformTags:
bar-key: value
maxSessionTtlInSeconds: ${var.bastion_max_session_ttl_in_seconds}
phoneBookEntry: ${var.bastion_phone_book_entry}
staticJumpHostIpAddresses: ${var.bastion_static_jump_host_ip_addresses}
Create Bastion Resource
new Bastion(name: string, args: BastionArgs, opts?: CustomResourceOptions);
@overload
def Bastion(resource_name: str,
opts: Optional[ResourceOptions] = None,
bastion_type: Optional[str] = None,
client_cidr_block_allow_lists: Optional[Sequence[str]] = None,
compartment_id: Optional[str] = None,
defined_tags: Optional[Mapping[str, Any]] = None,
dns_proxy_status: Optional[str] = None,
freeform_tags: Optional[Mapping[str, Any]] = None,
max_session_ttl_in_seconds: Optional[int] = None,
name: Optional[str] = None,
phone_book_entry: Optional[str] = None,
static_jump_host_ip_addresses: Optional[Sequence[str]] = None,
target_subnet_id: Optional[str] = None)
@overload
def Bastion(resource_name: str,
args: BastionArgs,
opts: Optional[ResourceOptions] = None)
func NewBastion(ctx *Context, name string, args BastionArgs, opts ...ResourceOption) (*Bastion, error)
public Bastion(string name, BastionArgs args, CustomResourceOptions? opts = null)
public Bastion(String name, BastionArgs args)
public Bastion(String name, BastionArgs args, CustomResourceOptions options)
type: oci:Bastion:Bastion
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args BastionArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args BastionArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args BastionArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args BastionArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args BastionArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Bastion Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The Bastion resource accepts the following input properties:
- Bastion
Type string The type of bastion. Use
standard
.- Compartment
Id string (Updatable) The unique identifier (OCID) of the compartment where the bastion is located.
- Target
Subnet stringId The unique identifier (OCID) of the subnet that the bastion connects to.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Client
Cidr List<string>Block Allow Lists (Updatable) A list of address ranges in CIDR notation that you want to allow to connect to sessions hosted by this bastion.
- Dictionary<string, object>
(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"foo-namespace.bar-key": "value"}
- Dns
Proxy stringStatus Flag to enable FQDN and SOCKS5 Proxy Support. Example:
ENABLED
,DISABLED
- Dictionary<string, object>
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- Max
Session intTtl In Seconds (Updatable) The maximum amount of time that any session on the bastion can remain active.
- Name string
The name of the bastion, which can't be changed after creation.
- Phone
Book stringEntry The phonebook entry of the customer's team, which can't be changed after creation. Not applicable to
standard
bastions.- Static
Jump List<string>Host Ip Addresses (Updatable) A list of IP addresses of the hosts that the bastion has access to. Not applicable to
standard
bastions.
- Bastion
Type string The type of bastion. Use
standard
.- Compartment
Id string (Updatable) The unique identifier (OCID) of the compartment where the bastion is located.
- Target
Subnet stringId The unique identifier (OCID) of the subnet that the bastion connects to.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Client
Cidr []stringBlock Allow Lists (Updatable) A list of address ranges in CIDR notation that you want to allow to connect to sessions hosted by this bastion.
- map[string]interface{}
(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"foo-namespace.bar-key": "value"}
- Dns
Proxy stringStatus Flag to enable FQDN and SOCKS5 Proxy Support. Example:
ENABLED
,DISABLED
- map[string]interface{}
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- Max
Session intTtl In Seconds (Updatable) The maximum amount of time that any session on the bastion can remain active.
- Name string
The name of the bastion, which can't be changed after creation.
- Phone
Book stringEntry The phonebook entry of the customer's team, which can't be changed after creation. Not applicable to
standard
bastions.- Static
Jump []stringHost Ip Addresses (Updatable) A list of IP addresses of the hosts that the bastion has access to. Not applicable to
standard
bastions.
- bastion
Type String The type of bastion. Use
standard
.- compartment
Id String (Updatable) The unique identifier (OCID) of the compartment where the bastion is located.
- target
Subnet StringId The unique identifier (OCID) of the subnet that the bastion connects to.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- client
Cidr List<String>Block Allow Lists (Updatable) A list of address ranges in CIDR notation that you want to allow to connect to sessions hosted by this bastion.
- Map<String,Object>
(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"foo-namespace.bar-key": "value"}
- dns
Proxy StringStatus Flag to enable FQDN and SOCKS5 Proxy Support. Example:
ENABLED
,DISABLED
- Map<String,Object>
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- max
Session IntegerTtl In Seconds (Updatable) The maximum amount of time that any session on the bastion can remain active.
- name String
The name of the bastion, which can't be changed after creation.
- phone
Book StringEntry The phonebook entry of the customer's team, which can't be changed after creation. Not applicable to
standard
bastions.- static
Jump List<String>Host Ip Addresses (Updatable) A list of IP addresses of the hosts that the bastion has access to. Not applicable to
standard
bastions.
- bastion
Type string The type of bastion. Use
standard
.- compartment
Id string (Updatable) The unique identifier (OCID) of the compartment where the bastion is located.
- target
Subnet stringId The unique identifier (OCID) of the subnet that the bastion connects to.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- client
Cidr string[]Block Allow Lists (Updatable) A list of address ranges in CIDR notation that you want to allow to connect to sessions hosted by this bastion.
- {[key: string]: any}
(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"foo-namespace.bar-key": "value"}
- dns
Proxy stringStatus Flag to enable FQDN and SOCKS5 Proxy Support. Example:
ENABLED
,DISABLED
- {[key: string]: any}
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- max
Session numberTtl In Seconds (Updatable) The maximum amount of time that any session on the bastion can remain active.
- name string
The name of the bastion, which can't be changed after creation.
- phone
Book stringEntry The phonebook entry of the customer's team, which can't be changed after creation. Not applicable to
standard
bastions.- static
Jump string[]Host Ip Addresses (Updatable) A list of IP addresses of the hosts that the bastion has access to. Not applicable to
standard
bastions.
- bastion_
type str The type of bastion. Use
standard
.- compartment_
id str (Updatable) The unique identifier (OCID) of the compartment where the bastion is located.
- target_
subnet_ strid The unique identifier (OCID) of the subnet that the bastion connects to.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- client_
cidr_ Sequence[str]block_ allow_ lists (Updatable) A list of address ranges in CIDR notation that you want to allow to connect to sessions hosted by this bastion.
- Mapping[str, Any]
(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"foo-namespace.bar-key": "value"}
- dns_
proxy_ strstatus Flag to enable FQDN and SOCKS5 Proxy Support. Example:
ENABLED
,DISABLED
- Mapping[str, Any]
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- max_
session_ intttl_ in_ seconds (Updatable) The maximum amount of time that any session on the bastion can remain active.
- name str
The name of the bastion, which can't be changed after creation.
- phone_
book_ strentry The phonebook entry of the customer's team, which can't be changed after creation. Not applicable to
standard
bastions.- static_
jump_ Sequence[str]host_ ip_ addresses (Updatable) A list of IP addresses of the hosts that the bastion has access to. Not applicable to
standard
bastions.
- bastion
Type String The type of bastion. Use
standard
.- compartment
Id String (Updatable) The unique identifier (OCID) of the compartment where the bastion is located.
- target
Subnet StringId The unique identifier (OCID) of the subnet that the bastion connects to.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- client
Cidr List<String>Block Allow Lists (Updatable) A list of address ranges in CIDR notation that you want to allow to connect to sessions hosted by this bastion.
- Map<Any>
(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"foo-namespace.bar-key": "value"}
- dns
Proxy StringStatus Flag to enable FQDN and SOCKS5 Proxy Support. Example:
ENABLED
,DISABLED
- Map<Any>
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- max
Session NumberTtl In Seconds (Updatable) The maximum amount of time that any session on the bastion can remain active.
- name String
The name of the bastion, which can't be changed after creation.
- phone
Book StringEntry The phonebook entry of the customer's team, which can't be changed after creation. Not applicable to
standard
bastions.- static
Jump List<String>Host Ip Addresses (Updatable) A list of IP addresses of the hosts that the bastion has access to. Not applicable to
standard
bastions.
Outputs
All input properties are implicitly available as output properties. Additionally, the Bastion resource produces the following output properties:
- Id string
The provider-assigned unique ID for this managed resource.
- Lifecycle
Details string A message describing the current state in more detail.
- Max
Sessions intAllowed The maximum number of active sessions allowed on the bastion.
- Private
Endpoint stringIp Address The private IP address of the created private endpoint.
- State string
The current state of the bastion.
- Dictionary<string, object>
Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"}
- Target
Vcn stringId The unique identifier (OCID) of the virtual cloud network (VCN) that the bastion connects to.
- Time
Created string The time the bastion was created. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- Time
Updated string The time the bastion was updated. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- Id string
The provider-assigned unique ID for this managed resource.
- Lifecycle
Details string A message describing the current state in more detail.
- Max
Sessions intAllowed The maximum number of active sessions allowed on the bastion.
- Private
Endpoint stringIp Address The private IP address of the created private endpoint.
- State string
The current state of the bastion.
- map[string]interface{}
Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"}
- Target
Vcn stringId The unique identifier (OCID) of the virtual cloud network (VCN) that the bastion connects to.
- Time
Created string The time the bastion was created. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- Time
Updated string The time the bastion was updated. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- id String
The provider-assigned unique ID for this managed resource.
- lifecycle
Details String A message describing the current state in more detail.
- max
Sessions IntegerAllowed The maximum number of active sessions allowed on the bastion.
- private
Endpoint StringIp Address The private IP address of the created private endpoint.
- state String
The current state of the bastion.
- Map<String,Object>
Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"}
- target
Vcn StringId The unique identifier (OCID) of the virtual cloud network (VCN) that the bastion connects to.
- time
Created String The time the bastion was created. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- time
Updated String The time the bastion was updated. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- id string
The provider-assigned unique ID for this managed resource.
- lifecycle
Details string A message describing the current state in more detail.
- max
Sessions numberAllowed The maximum number of active sessions allowed on the bastion.
- private
Endpoint stringIp Address The private IP address of the created private endpoint.
- state string
The current state of the bastion.
- {[key: string]: any}
Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"}
- target
Vcn stringId The unique identifier (OCID) of the virtual cloud network (VCN) that the bastion connects to.
- time
Created string The time the bastion was created. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- time
Updated string The time the bastion was updated. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- id str
The provider-assigned unique ID for this managed resource.
- lifecycle_
details str A message describing the current state in more detail.
- max_
sessions_ intallowed The maximum number of active sessions allowed on the bastion.
- private_
endpoint_ strip_ address The private IP address of the created private endpoint.
- state str
The current state of the bastion.
- Mapping[str, Any]
Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"}
- target_
vcn_ strid The unique identifier (OCID) of the virtual cloud network (VCN) that the bastion connects to.
- time_
created str The time the bastion was created. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- time_
updated str The time the bastion was updated. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- id String
The provider-assigned unique ID for this managed resource.
- lifecycle
Details String A message describing the current state in more detail.
- max
Sessions NumberAllowed The maximum number of active sessions allowed on the bastion.
- private
Endpoint StringIp Address The private IP address of the created private endpoint.
- state String
The current state of the bastion.
- Map<Any>
Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"}
- target
Vcn StringId The unique identifier (OCID) of the virtual cloud network (VCN) that the bastion connects to.
- time
Created String The time the bastion was created. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- time
Updated String The time the bastion was updated. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
Look up Existing Bastion Resource
Get an existing Bastion resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: BastionState, opts?: CustomResourceOptions): Bastion
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
bastion_type: Optional[str] = None,
client_cidr_block_allow_lists: Optional[Sequence[str]] = None,
compartment_id: Optional[str] = None,
defined_tags: Optional[Mapping[str, Any]] = None,
dns_proxy_status: Optional[str] = None,
freeform_tags: Optional[Mapping[str, Any]] = None,
lifecycle_details: Optional[str] = None,
max_session_ttl_in_seconds: Optional[int] = None,
max_sessions_allowed: Optional[int] = None,
name: Optional[str] = None,
phone_book_entry: Optional[str] = None,
private_endpoint_ip_address: Optional[str] = None,
state: Optional[str] = None,
static_jump_host_ip_addresses: Optional[Sequence[str]] = None,
system_tags: Optional[Mapping[str, Any]] = None,
target_subnet_id: Optional[str] = None,
target_vcn_id: Optional[str] = None,
time_created: Optional[str] = None,
time_updated: Optional[str] = None) -> Bastion
func GetBastion(ctx *Context, name string, id IDInput, state *BastionState, opts ...ResourceOption) (*Bastion, error)
public static Bastion Get(string name, Input<string> id, BastionState? state, CustomResourceOptions? opts = null)
public static Bastion get(String name, Output<String> id, BastionState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Bastion
Type string The type of bastion. Use
standard
.- Client
Cidr List<string>Block Allow Lists (Updatable) A list of address ranges in CIDR notation that you want to allow to connect to sessions hosted by this bastion.
- Compartment
Id string (Updatable) The unique identifier (OCID) of the compartment where the bastion is located.
- Dictionary<string, object>
(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"foo-namespace.bar-key": "value"}
- Dns
Proxy stringStatus Flag to enable FQDN and SOCKS5 Proxy Support. Example:
ENABLED
,DISABLED
- Dictionary<string, object>
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- Lifecycle
Details string A message describing the current state in more detail.
- Max
Session intTtl In Seconds (Updatable) The maximum amount of time that any session on the bastion can remain active.
- Max
Sessions intAllowed The maximum number of active sessions allowed on the bastion.
- Name string
The name of the bastion, which can't be changed after creation.
- Phone
Book stringEntry The phonebook entry of the customer's team, which can't be changed after creation. Not applicable to
standard
bastions.- Private
Endpoint stringIp Address The private IP address of the created private endpoint.
- State string
The current state of the bastion.
- Static
Jump List<string>Host Ip Addresses (Updatable) A list of IP addresses of the hosts that the bastion has access to. Not applicable to
standard
bastions.- Dictionary<string, object>
Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"}
- Target
Subnet stringId The unique identifier (OCID) of the subnet that the bastion connects to.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Target
Vcn stringId The unique identifier (OCID) of the virtual cloud network (VCN) that the bastion connects to.
- Time
Created string The time the bastion was created. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- Time
Updated string The time the bastion was updated. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- Bastion
Type string The type of bastion. Use
standard
.- Client
Cidr []stringBlock Allow Lists (Updatable) A list of address ranges in CIDR notation that you want to allow to connect to sessions hosted by this bastion.
- Compartment
Id string (Updatable) The unique identifier (OCID) of the compartment where the bastion is located.
- map[string]interface{}
(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"foo-namespace.bar-key": "value"}
- Dns
Proxy stringStatus Flag to enable FQDN and SOCKS5 Proxy Support. Example:
ENABLED
,DISABLED
- map[string]interface{}
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- Lifecycle
Details string A message describing the current state in more detail.
- Max
Session intTtl In Seconds (Updatable) The maximum amount of time that any session on the bastion can remain active.
- Max
Sessions intAllowed The maximum number of active sessions allowed on the bastion.
- Name string
The name of the bastion, which can't be changed after creation.
- Phone
Book stringEntry The phonebook entry of the customer's team, which can't be changed after creation. Not applicable to
standard
bastions.- Private
Endpoint stringIp Address The private IP address of the created private endpoint.
- State string
The current state of the bastion.
- Static
Jump []stringHost Ip Addresses (Updatable) A list of IP addresses of the hosts that the bastion has access to. Not applicable to
standard
bastions.- map[string]interface{}
Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"}
- Target
Subnet stringId The unique identifier (OCID) of the subnet that the bastion connects to.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Target
Vcn stringId The unique identifier (OCID) of the virtual cloud network (VCN) that the bastion connects to.
- Time
Created string The time the bastion was created. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- Time
Updated string The time the bastion was updated. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- bastion
Type String The type of bastion. Use
standard
.- client
Cidr List<String>Block Allow Lists (Updatable) A list of address ranges in CIDR notation that you want to allow to connect to sessions hosted by this bastion.
- compartment
Id String (Updatable) The unique identifier (OCID) of the compartment where the bastion is located.
- Map<String,Object>
(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"foo-namespace.bar-key": "value"}
- dns
Proxy StringStatus Flag to enable FQDN and SOCKS5 Proxy Support. Example:
ENABLED
,DISABLED
- Map<String,Object>
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- lifecycle
Details String A message describing the current state in more detail.
- max
Session IntegerTtl In Seconds (Updatable) The maximum amount of time that any session on the bastion can remain active.
- max
Sessions IntegerAllowed The maximum number of active sessions allowed on the bastion.
- name String
The name of the bastion, which can't be changed after creation.
- phone
Book StringEntry The phonebook entry of the customer's team, which can't be changed after creation. Not applicable to
standard
bastions.- private
Endpoint StringIp Address The private IP address of the created private endpoint.
- state String
The current state of the bastion.
- static
Jump List<String>Host Ip Addresses (Updatable) A list of IP addresses of the hosts that the bastion has access to. Not applicable to
standard
bastions.- Map<String,Object>
Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"}
- target
Subnet StringId The unique identifier (OCID) of the subnet that the bastion connects to.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- target
Vcn StringId The unique identifier (OCID) of the virtual cloud network (VCN) that the bastion connects to.
- time
Created String The time the bastion was created. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- time
Updated String The time the bastion was updated. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- bastion
Type string The type of bastion. Use
standard
.- client
Cidr string[]Block Allow Lists (Updatable) A list of address ranges in CIDR notation that you want to allow to connect to sessions hosted by this bastion.
- compartment
Id string (Updatable) The unique identifier (OCID) of the compartment where the bastion is located.
- {[key: string]: any}
(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"foo-namespace.bar-key": "value"}
- dns
Proxy stringStatus Flag to enable FQDN and SOCKS5 Proxy Support. Example:
ENABLED
,DISABLED
- {[key: string]: any}
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- lifecycle
Details string A message describing the current state in more detail.
- max
Session numberTtl In Seconds (Updatable) The maximum amount of time that any session on the bastion can remain active.
- max
Sessions numberAllowed The maximum number of active sessions allowed on the bastion.
- name string
The name of the bastion, which can't be changed after creation.
- phone
Book stringEntry The phonebook entry of the customer's team, which can't be changed after creation. Not applicable to
standard
bastions.- private
Endpoint stringIp Address The private IP address of the created private endpoint.
- state string
The current state of the bastion.
- static
Jump string[]Host Ip Addresses (Updatable) A list of IP addresses of the hosts that the bastion has access to. Not applicable to
standard
bastions.- {[key: string]: any}
Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"}
- target
Subnet stringId The unique identifier (OCID) of the subnet that the bastion connects to.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- target
Vcn stringId The unique identifier (OCID) of the virtual cloud network (VCN) that the bastion connects to.
- time
Created string The time the bastion was created. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- time
Updated string The time the bastion was updated. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- bastion_
type str The type of bastion. Use
standard
.- client_
cidr_ Sequence[str]block_ allow_ lists (Updatable) A list of address ranges in CIDR notation that you want to allow to connect to sessions hosted by this bastion.
- compartment_
id str (Updatable) The unique identifier (OCID) of the compartment where the bastion is located.
- Mapping[str, Any]
(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"foo-namespace.bar-key": "value"}
- dns_
proxy_ strstatus Flag to enable FQDN and SOCKS5 Proxy Support. Example:
ENABLED
,DISABLED
- Mapping[str, Any]
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- lifecycle_
details str A message describing the current state in more detail.
- max_
session_ intttl_ in_ seconds (Updatable) The maximum amount of time that any session on the bastion can remain active.
- max_
sessions_ intallowed The maximum number of active sessions allowed on the bastion.
- name str
The name of the bastion, which can't be changed after creation.
- phone_
book_ strentry The phonebook entry of the customer's team, which can't be changed after creation. Not applicable to
standard
bastions.- private_
endpoint_ strip_ address The private IP address of the created private endpoint.
- state str
The current state of the bastion.
- static_
jump_ Sequence[str]host_ ip_ addresses (Updatable) A list of IP addresses of the hosts that the bastion has access to. Not applicable to
standard
bastions.- Mapping[str, Any]
Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"}
- target_
subnet_ strid The unique identifier (OCID) of the subnet that the bastion connects to.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- target_
vcn_ strid The unique identifier (OCID) of the virtual cloud network (VCN) that the bastion connects to.
- time_
created str The time the bastion was created. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- time_
updated str The time the bastion was updated. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- bastion
Type String The type of bastion. Use
standard
.- client
Cidr List<String>Block Allow Lists (Updatable) A list of address ranges in CIDR notation that you want to allow to connect to sessions hosted by this bastion.
- compartment
Id String (Updatable) The unique identifier (OCID) of the compartment where the bastion is located.
- Map<Any>
(Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example:
{"foo-namespace.bar-key": "value"}
- dns
Proxy StringStatus Flag to enable FQDN and SOCKS5 Proxy Support. Example:
ENABLED
,DISABLED
- Map<Any>
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- lifecycle
Details String A message describing the current state in more detail.
- max
Session NumberTtl In Seconds (Updatable) The maximum amount of time that any session on the bastion can remain active.
- max
Sessions NumberAllowed The maximum number of active sessions allowed on the bastion.
- name String
The name of the bastion, which can't be changed after creation.
- phone
Book StringEntry The phonebook entry of the customer's team, which can't be changed after creation. Not applicable to
standard
bastions.- private
Endpoint StringIp Address The private IP address of the created private endpoint.
- state String
The current state of the bastion.
- static
Jump List<String>Host Ip Addresses (Updatable) A list of IP addresses of the hosts that the bastion has access to. Not applicable to
standard
bastions.- Map<Any>
Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"}
- target
Subnet StringId The unique identifier (OCID) of the subnet that the bastion connects to.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- target
Vcn StringId The unique identifier (OCID) of the virtual cloud network (VCN) that the bastion connects to.
- time
Created String The time the bastion was created. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
- time
Updated String The time the bastion was updated. Format is defined by RFC3339. Example:
2020-01-25T21:10:29.600Z
Import
Bastions can be imported using the id
, e.g.
$ pulumi import oci:Bastion/bastion:Bastion test_bastion "id"
Package Details
- Repository
- oci pulumi/pulumi-oci
- License
- Apache-2.0
- Notes
This Pulumi package is based on the
oci
Terraform Provider.