Oracle Cloud Infrastructure

v0.5.0 published on Monday, Sep 12, 2022 by Pulumi

getIpsecConnectionTunnels

This data source provides the list of Ip Sec Connection Tunnels in Oracle Cloud Infrastructure Core service.

Lists the tunnel information for the specified IPSec connection.

Example Usage

using System.Collections.Generic;
using Pulumi;
using Oci = Pulumi.Oci;

return await Deployment.RunAsync(() => 
{
    var testIpSecConnectionTunnels = Oci.Core.GetIpsecConnectionTunnels.Invoke(new()
    {
        IpsecId = oci_core_ipsec.Test_ipsec.Id,
    });

});
package main

import (
	"github.com/pulumi/pulumi-oci/sdk/go/oci/Core"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := Core.GetIpsecConnectionTunnels(ctx, &core.GetIpsecConnectionTunnelsArgs{
			IpsecId: oci_core_ipsec.Test_ipsec.Id,
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.Core.CoreFunctions;
import com.pulumi.oci.Core.inputs.GetIpsecConnectionTunnelsArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var testIpSecConnectionTunnels = CoreFunctions.getIpsecConnectionTunnels(GetIpsecConnectionTunnelsArgs.builder()
            .ipsecId(oci_core_ipsec.test_ipsec().id())
            .build());

    }
}
import pulumi
import pulumi_oci as oci

test_ip_sec_connection_tunnels = oci.Core.get_ipsec_connection_tunnels(ipsec_id=oci_core_ipsec["test_ipsec"]["id"])
import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";

const testIpSecConnectionTunnels = oci.Core.getIpsecConnectionTunnels({
    ipsecId: oci_core_ipsec.test_ipsec.id,
});
variables:
  testIpSecConnectionTunnels:
    Fn::Invoke:
      Function: oci:Core:getIpsecConnectionTunnels
      Arguments:
        ipsecId: ${oci_core_ipsec.test_ipsec.id}

Using getIpsecConnectionTunnels

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getIpsecConnectionTunnels(args: GetIpsecConnectionTunnelsArgs, opts?: InvokeOptions): Promise<GetIpsecConnectionTunnelsResult>
function getIpsecConnectionTunnelsOutput(args: GetIpsecConnectionTunnelsOutputArgs, opts?: InvokeOptions): Output<GetIpsecConnectionTunnelsResult>
def get_ipsec_connection_tunnels(filters: Optional[Sequence[_core.GetIpsecConnectionTunnelsFilter]] = None,
                                 ipsec_id: Optional[str] = None,
                                 opts: Optional[InvokeOptions] = None) -> GetIpsecConnectionTunnelsResult
def get_ipsec_connection_tunnels_output(filters: Optional[pulumi.Input[Sequence[pulumi.Input[_core.GetIpsecConnectionTunnelsFilterArgs]]]] = None,
                                 ipsec_id: Optional[pulumi.Input[str]] = None,
                                 opts: Optional[InvokeOptions] = None) -> Output[GetIpsecConnectionTunnelsResult]
func GetIpsecConnectionTunnels(ctx *Context, args *GetIpsecConnectionTunnelsArgs, opts ...InvokeOption) (*GetIpsecConnectionTunnelsResult, error)
func GetIpsecConnectionTunnelsOutput(ctx *Context, args *GetIpsecConnectionTunnelsOutputArgs, opts ...InvokeOption) GetIpsecConnectionTunnelsResultOutput

> Note: This function is named GetIpsecConnectionTunnels in the Go SDK.

public static class GetIpsecConnectionTunnels 
{
    public static Task<GetIpsecConnectionTunnelsResult> InvokeAsync(GetIpsecConnectionTunnelsArgs args, InvokeOptions? opts = null)
    public static Output<GetIpsecConnectionTunnelsResult> Invoke(GetIpsecConnectionTunnelsInvokeArgs args, InvokeOptions? opts = null)
}
public static CompletableFuture<GetIpsecConnectionTunnelsResult> getIpsecConnectionTunnels(GetIpsecConnectionTunnelsArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet
fn::invoke:
  function: oci:Core/getIpsecConnectionTunnels:getIpsecConnectionTunnels
  arguments:
    # arguments dictionary

The following arguments are supported:

IpsecId string

The OCID of the IPSec connection.

Filters List<GetIpsecConnectionTunnelsFilter>
IpsecId string

The OCID of the IPSec connection.

Filters []GetIpsecConnectionTunnelsFilter
ipsecId String

The OCID of the IPSec connection.

filters List<GetIpsecConnectionTunnelsFilter>
ipsecId string

The OCID of the IPSec connection.

filters GetIpsecConnectionTunnelsFilter[]
ipsec_id str

The OCID of the IPSec connection.

filters GetIpsecConnectionTunnelsFilter]
ipsecId String

The OCID of the IPSec connection.

filters List<Property Map>

getIpsecConnectionTunnels Result

The following output properties are available:

Id string

The provider-assigned unique ID for this managed resource.

IpSecConnectionTunnels List<GetIpsecConnectionTunnelsIpSecConnectionTunnel>

The list of ip_sec_connection_tunnels.

IpsecId string
Filters List<GetIpsecConnectionTunnelsFilter>
Id string

The provider-assigned unique ID for this managed resource.

IpSecConnectionTunnels []GetIpsecConnectionTunnelsIpSecConnectionTunnel

The list of ip_sec_connection_tunnels.

IpsecId string
Filters []GetIpsecConnectionTunnelsFilter
id String

The provider-assigned unique ID for this managed resource.

ipSecConnectionTunnels List<GetIpsecConnectionTunnelsIpSecConnectionTunnel>

The list of ip_sec_connection_tunnels.

ipsecId String
filters List<GetIpsecConnectionTunnelsFilter>
id string

The provider-assigned unique ID for this managed resource.

ipSecConnectionTunnels GetIpsecConnectionTunnelsIpSecConnectionTunnel[]

The list of ip_sec_connection_tunnels.

ipsecId string
filters GetIpsecConnectionTunnelsFilter[]
id str

The provider-assigned unique ID for this managed resource.

ip_sec_connection_tunnels GetIpsecConnectionTunnelsIpSecConnectionTunnel]

The list of ip_sec_connection_tunnels.

ipsec_id str
filters GetIpsecConnectionTunnelsFilter]
id String

The provider-assigned unique ID for this managed resource.

ipSecConnectionTunnels List<Property Map>

The list of ip_sec_connection_tunnels.

ipsecId String
filters List<Property Map>

Supporting Types

GetIpsecConnectionTunnelsFilter

Name string
Values List<string>
Regex bool
Name string
Values []string
Regex bool
name String
values List<String>
regex Boolean
name string
values string[]
regex boolean
name str
values Sequence[str]
regex bool
name String
values List<String>
regex Boolean

GetIpsecConnectionTunnelsIpSecConnectionTunnel

BgpSessionInfos List<GetIpsecConnectionTunnelsIpSecConnectionTunnelBgpSessionInfo>

Information for establishing a BGP session for the IPSec tunnel.

CompartmentId string

The OCID of the compartment containing the tunnel.

CpeIp string

The IP address of the CPE device's VPN headend. Example: 203.0.113.22

DisplayName string

A user-friendly name. Does not have to be unique, and it's changeable. Avoid entering confidential information.

DpdMode string

Dead peer detection (DPD) mode set on the Oracle side of the connection. This mode sets whether Oracle can only respond to a request from the CPE device to start DPD, or both respond to and initiate requests.

DpdTimeoutInSec int

DPD timeout in seconds.

EncryptionDomainConfigs List<GetIpsecConnectionTunnelsIpSecConnectionTunnelEncryptionDomainConfig>

Configuration information used by the encryption domain policy.

Id string

The OCID of the tunnel.

IkeVersion string

Internet Key Exchange protocol version.

NatTranslationEnabled string

By default (the AUTO setting), IKE sends packets with a source and destination port set to 500, and when it detects that the port used to forward packets has changed (most likely because a NAT device is between the CPE device and the Oracle VPN headend) it will try to negotiate the use of NAT-T.

OracleCanInitiate string

Indicates whether Oracle can only respond to a request to start an IPSec tunnel from the CPE device, or both respond to and initiate requests.

PhaseOneDetails List<GetIpsecConnectionTunnelsIpSecConnectionTunnelPhaseOneDetail>

IPSec tunnel details specific to ISAKMP phase one.

PhaseTwoDetails List<GetIpsecConnectionTunnelsIpSecConnectionTunnelPhaseTwoDetail>

IPsec tunnel detail information specific to phase two.

Routing string

The type of routing used for this tunnel (BGP dynamic routing, static routing, or policy-based routing).

State string

The tunnel's lifecycle state.

Status string

The status of the tunnel based on IPSec protocol characteristics.

TimeCreated string

The date and time the IPSec tunnel was created, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

TimeStatusUpdated string

When the status of the IPSec tunnel last changed, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

VpnIp string

The IP address of the Oracle VPN headend for the connection. Example: 203.0.113.21

BgpSessionInfos []GetIpsecConnectionTunnelsIpSecConnectionTunnelBgpSessionInfo

Information for establishing a BGP session for the IPSec tunnel.

CompartmentId string

The OCID of the compartment containing the tunnel.

CpeIp string

The IP address of the CPE device's VPN headend. Example: 203.0.113.22

DisplayName string

A user-friendly name. Does not have to be unique, and it's changeable. Avoid entering confidential information.

DpdMode string

Dead peer detection (DPD) mode set on the Oracle side of the connection. This mode sets whether Oracle can only respond to a request from the CPE device to start DPD, or both respond to and initiate requests.

DpdTimeoutInSec int

DPD timeout in seconds.

EncryptionDomainConfigs []GetIpsecConnectionTunnelsIpSecConnectionTunnelEncryptionDomainConfig

Configuration information used by the encryption domain policy.

Id string

The OCID of the tunnel.

IkeVersion string

Internet Key Exchange protocol version.

NatTranslationEnabled string

By default (the AUTO setting), IKE sends packets with a source and destination port set to 500, and when it detects that the port used to forward packets has changed (most likely because a NAT device is between the CPE device and the Oracle VPN headend) it will try to negotiate the use of NAT-T.

OracleCanInitiate string

Indicates whether Oracle can only respond to a request to start an IPSec tunnel from the CPE device, or both respond to and initiate requests.

PhaseOneDetails []GetIpsecConnectionTunnelsIpSecConnectionTunnelPhaseOneDetail

IPSec tunnel details specific to ISAKMP phase one.

PhaseTwoDetails []GetIpsecConnectionTunnelsIpSecConnectionTunnelPhaseTwoDetail

IPsec tunnel detail information specific to phase two.

Routing string

The type of routing used for this tunnel (BGP dynamic routing, static routing, or policy-based routing).

State string

The tunnel's lifecycle state.

Status string

The status of the tunnel based on IPSec protocol characteristics.

TimeCreated string

The date and time the IPSec tunnel was created, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

TimeStatusUpdated string

When the status of the IPSec tunnel last changed, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

VpnIp string

The IP address of the Oracle VPN headend for the connection. Example: 203.0.113.21

bgpSessionInfos List<GetIpsecConnectionTunnelsIpSecConnectionTunnelBgpSessionInfo>

Information for establishing a BGP session for the IPSec tunnel.

compartmentId String

The OCID of the compartment containing the tunnel.

cpeIp String

The IP address of the CPE device's VPN headend. Example: 203.0.113.22

displayName String

A user-friendly name. Does not have to be unique, and it's changeable. Avoid entering confidential information.

dpdMode String

Dead peer detection (DPD) mode set on the Oracle side of the connection. This mode sets whether Oracle can only respond to a request from the CPE device to start DPD, or both respond to and initiate requests.

dpdTimeoutInSec Integer

DPD timeout in seconds.

encryptionDomainConfigs List<GetIpsecConnectionTunnelsIpSecConnectionTunnelEncryptionDomainConfig>

Configuration information used by the encryption domain policy.

id String

The OCID of the tunnel.

ikeVersion String

Internet Key Exchange protocol version.

natTranslationEnabled String

By default (the AUTO setting), IKE sends packets with a source and destination port set to 500, and when it detects that the port used to forward packets has changed (most likely because a NAT device is between the CPE device and the Oracle VPN headend) it will try to negotiate the use of NAT-T.

oracleCanInitiate String

Indicates whether Oracle can only respond to a request to start an IPSec tunnel from the CPE device, or both respond to and initiate requests.

phaseOneDetails List<GetIpsecConnectionTunnelsIpSecConnectionTunnelPhaseOneDetail>

IPSec tunnel details specific to ISAKMP phase one.

phaseTwoDetails List<GetIpsecConnectionTunnelsIpSecConnectionTunnelPhaseTwoDetail>

IPsec tunnel detail information specific to phase two.

routing String

The type of routing used for this tunnel (BGP dynamic routing, static routing, or policy-based routing).

state String

The tunnel's lifecycle state.

status String

The status of the tunnel based on IPSec protocol characteristics.

timeCreated String

The date and time the IPSec tunnel was created, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

timeStatusUpdated String

When the status of the IPSec tunnel last changed, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

vpnIp String

The IP address of the Oracle VPN headend for the connection. Example: 203.0.113.21

bgpSessionInfos GetIpsecConnectionTunnelsIpSecConnectionTunnelBgpSessionInfo[]

Information for establishing a BGP session for the IPSec tunnel.

compartmentId string

The OCID of the compartment containing the tunnel.

cpeIp string

The IP address of the CPE device's VPN headend. Example: 203.0.113.22

displayName string

A user-friendly name. Does not have to be unique, and it's changeable. Avoid entering confidential information.

dpdMode string

Dead peer detection (DPD) mode set on the Oracle side of the connection. This mode sets whether Oracle can only respond to a request from the CPE device to start DPD, or both respond to and initiate requests.

dpdTimeoutInSec number

DPD timeout in seconds.

encryptionDomainConfigs GetIpsecConnectionTunnelsIpSecConnectionTunnelEncryptionDomainConfig[]

Configuration information used by the encryption domain policy.

id string

The OCID of the tunnel.

ikeVersion string

Internet Key Exchange protocol version.

natTranslationEnabled string

By default (the AUTO setting), IKE sends packets with a source and destination port set to 500, and when it detects that the port used to forward packets has changed (most likely because a NAT device is between the CPE device and the Oracle VPN headend) it will try to negotiate the use of NAT-T.

oracleCanInitiate string

Indicates whether Oracle can only respond to a request to start an IPSec tunnel from the CPE device, or both respond to and initiate requests.

phaseOneDetails GetIpsecConnectionTunnelsIpSecConnectionTunnelPhaseOneDetail[]

IPSec tunnel details specific to ISAKMP phase one.

phaseTwoDetails GetIpsecConnectionTunnelsIpSecConnectionTunnelPhaseTwoDetail[]

IPsec tunnel detail information specific to phase two.

routing string

The type of routing used for this tunnel (BGP dynamic routing, static routing, or policy-based routing).

state string

The tunnel's lifecycle state.

status string

The status of the tunnel based on IPSec protocol characteristics.

timeCreated string

The date and time the IPSec tunnel was created, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

timeStatusUpdated string

When the status of the IPSec tunnel last changed, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

vpnIp string

The IP address of the Oracle VPN headend for the connection. Example: 203.0.113.21

bgp_session_infos GetIpsecConnectionTunnelsIpSecConnectionTunnelBgpSessionInfo]

Information for establishing a BGP session for the IPSec tunnel.

compartment_id str

The OCID of the compartment containing the tunnel.

cpe_ip str

The IP address of the CPE device's VPN headend. Example: 203.0.113.22

display_name str

A user-friendly name. Does not have to be unique, and it's changeable. Avoid entering confidential information.

dpd_mode str

Dead peer detection (DPD) mode set on the Oracle side of the connection. This mode sets whether Oracle can only respond to a request from the CPE device to start DPD, or both respond to and initiate requests.

dpd_timeout_in_sec int

DPD timeout in seconds.

encryption_domain_configs GetIpsecConnectionTunnelsIpSecConnectionTunnelEncryptionDomainConfig]

Configuration information used by the encryption domain policy.

id str

The OCID of the tunnel.

ike_version str

Internet Key Exchange protocol version.

nat_translation_enabled str

By default (the AUTO setting), IKE sends packets with a source and destination port set to 500, and when it detects that the port used to forward packets has changed (most likely because a NAT device is between the CPE device and the Oracle VPN headend) it will try to negotiate the use of NAT-T.

oracle_can_initiate str

Indicates whether Oracle can only respond to a request to start an IPSec tunnel from the CPE device, or both respond to and initiate requests.

phase_one_details GetIpsecConnectionTunnelsIpSecConnectionTunnelPhaseOneDetail]

IPSec tunnel details specific to ISAKMP phase one.

phase_two_details GetIpsecConnectionTunnelsIpSecConnectionTunnelPhaseTwoDetail]

IPsec tunnel detail information specific to phase two.

routing str

The type of routing used for this tunnel (BGP dynamic routing, static routing, or policy-based routing).

state str

The tunnel's lifecycle state.

status str

The status of the tunnel based on IPSec protocol characteristics.

time_created str

The date and time the IPSec tunnel was created, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

time_status_updated str

When the status of the IPSec tunnel last changed, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

vpn_ip str

The IP address of the Oracle VPN headend for the connection. Example: 203.0.113.21

bgpSessionInfos List<Property Map>

Information for establishing a BGP session for the IPSec tunnel.

compartmentId String

The OCID of the compartment containing the tunnel.

cpeIp String

The IP address of the CPE device's VPN headend. Example: 203.0.113.22

displayName String

A user-friendly name. Does not have to be unique, and it's changeable. Avoid entering confidential information.

dpdMode String

Dead peer detection (DPD) mode set on the Oracle side of the connection. This mode sets whether Oracle can only respond to a request from the CPE device to start DPD, or both respond to and initiate requests.

dpdTimeoutInSec Number

DPD timeout in seconds.

encryptionDomainConfigs List<Property Map>

Configuration information used by the encryption domain policy.

id String

The OCID of the tunnel.

ikeVersion String

Internet Key Exchange protocol version.

natTranslationEnabled String

By default (the AUTO setting), IKE sends packets with a source and destination port set to 500, and when it detects that the port used to forward packets has changed (most likely because a NAT device is between the CPE device and the Oracle VPN headend) it will try to negotiate the use of NAT-T.

oracleCanInitiate String

Indicates whether Oracle can only respond to a request to start an IPSec tunnel from the CPE device, or both respond to and initiate requests.

phaseOneDetails List<Property Map>

IPSec tunnel details specific to ISAKMP phase one.

phaseTwoDetails List<Property Map>

IPsec tunnel detail information specific to phase two.

routing String

The type of routing used for this tunnel (BGP dynamic routing, static routing, or policy-based routing).

state String

The tunnel's lifecycle state.

status String

The status of the tunnel based on IPSec protocol characteristics.

timeCreated String

The date and time the IPSec tunnel was created, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

timeStatusUpdated String

When the status of the IPSec tunnel last changed, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

vpnIp String

The IP address of the Oracle VPN headend for the connection. Example: 203.0.113.21

GetIpsecConnectionTunnelsIpSecConnectionTunnelBgpSessionInfo

BgpIpv6state string

The state of the BGP IPv6 session.

BgpState string

The state of the BGP session.

CustomerBgpAsn string

If the tunnel's routing attribute is set to BGP (see IPSecConnectionTunnel), this ASN is required and used for the tunnel's BGP session. This is the ASN of the network on the CPE end of the BGP session. Can be a 2-byte or 4-byte ASN. Uses "asplain" format.

CustomerInterfaceIp string

The IP address for the CPE end of the inside tunnel interface.

CustomerInterfaceIpv6 string

The IPv6 address for the CPE end of the inside tunnel interface. This IP address is optional.

OracleBgpAsn string

The Oracle BGP ASN.

OracleInterfaceIp string

The IP address for the Oracle end of the inside tunnel interface.

OracleInterfaceIpv6 string

The IPv6 address for the Oracle end of the inside tunnel interface. This IP address is optional.

BgpIpv6state string

The state of the BGP IPv6 session.

BgpState string

The state of the BGP session.

CustomerBgpAsn string

If the tunnel's routing attribute is set to BGP (see IPSecConnectionTunnel), this ASN is required and used for the tunnel's BGP session. This is the ASN of the network on the CPE end of the BGP session. Can be a 2-byte or 4-byte ASN. Uses "asplain" format.

CustomerInterfaceIp string

The IP address for the CPE end of the inside tunnel interface.

CustomerInterfaceIpv6 string

The IPv6 address for the CPE end of the inside tunnel interface. This IP address is optional.

OracleBgpAsn string

The Oracle BGP ASN.

OracleInterfaceIp string

The IP address for the Oracle end of the inside tunnel interface.

OracleInterfaceIpv6 string

The IPv6 address for the Oracle end of the inside tunnel interface. This IP address is optional.

bgpIpv6state String

The state of the BGP IPv6 session.

bgpState String

The state of the BGP session.

customerBgpAsn String

If the tunnel's routing attribute is set to BGP (see IPSecConnectionTunnel), this ASN is required and used for the tunnel's BGP session. This is the ASN of the network on the CPE end of the BGP session. Can be a 2-byte or 4-byte ASN. Uses "asplain" format.

customerInterfaceIp String

The IP address for the CPE end of the inside tunnel interface.

customerInterfaceIpv6 String

The IPv6 address for the CPE end of the inside tunnel interface. This IP address is optional.

oracleBgpAsn String

The Oracle BGP ASN.

oracleInterfaceIp String

The IP address for the Oracle end of the inside tunnel interface.

oracleInterfaceIpv6 String

The IPv6 address for the Oracle end of the inside tunnel interface. This IP address is optional.

bgpIpv6state string

The state of the BGP IPv6 session.

bgpState string

The state of the BGP session.

customerBgpAsn string

If the tunnel's routing attribute is set to BGP (see IPSecConnectionTunnel), this ASN is required and used for the tunnel's BGP session. This is the ASN of the network on the CPE end of the BGP session. Can be a 2-byte or 4-byte ASN. Uses "asplain" format.

customerInterfaceIp string

The IP address for the CPE end of the inside tunnel interface.

customerInterfaceIpv6 string

The IPv6 address for the CPE end of the inside tunnel interface. This IP address is optional.

oracleBgpAsn string

The Oracle BGP ASN.

oracleInterfaceIp string

The IP address for the Oracle end of the inside tunnel interface.

oracleInterfaceIpv6 string

The IPv6 address for the Oracle end of the inside tunnel interface. This IP address is optional.

bgp_ipv6state str

The state of the BGP IPv6 session.

bgp_state str

The state of the BGP session.

customer_bgp_asn str

If the tunnel's routing attribute is set to BGP (see IPSecConnectionTunnel), this ASN is required and used for the tunnel's BGP session. This is the ASN of the network on the CPE end of the BGP session. Can be a 2-byte or 4-byte ASN. Uses "asplain" format.

customer_interface_ip str

The IP address for the CPE end of the inside tunnel interface.

customer_interface_ipv6 str

The IPv6 address for the CPE end of the inside tunnel interface. This IP address is optional.

oracle_bgp_asn str

The Oracle BGP ASN.

oracle_interface_ip str

The IP address for the Oracle end of the inside tunnel interface.

oracle_interface_ipv6 str

The IPv6 address for the Oracle end of the inside tunnel interface. This IP address is optional.

bgpIpv6state String

The state of the BGP IPv6 session.

bgpState String

The state of the BGP session.

customerBgpAsn String

If the tunnel's routing attribute is set to BGP (see IPSecConnectionTunnel), this ASN is required and used for the tunnel's BGP session. This is the ASN of the network on the CPE end of the BGP session. Can be a 2-byte or 4-byte ASN. Uses "asplain" format.

customerInterfaceIp String

The IP address for the CPE end of the inside tunnel interface.

customerInterfaceIpv6 String

The IPv6 address for the CPE end of the inside tunnel interface. This IP address is optional.

oracleBgpAsn String

The Oracle BGP ASN.

oracleInterfaceIp String

The IP address for the Oracle end of the inside tunnel interface.

oracleInterfaceIpv6 String

The IPv6 address for the Oracle end of the inside tunnel interface. This IP address is optional.

GetIpsecConnectionTunnelsIpSecConnectionTunnelEncryptionDomainConfig

CpeTrafficSelectors List<string>

Lists IPv4 or IPv6-enabled subnets in your on-premises network.

OracleTrafficSelectors List<string>

Lists IPv4 or IPv6-enabled subnets in your Oracle tenancy.

CpeTrafficSelectors []string

Lists IPv4 or IPv6-enabled subnets in your on-premises network.

OracleTrafficSelectors []string

Lists IPv4 or IPv6-enabled subnets in your Oracle tenancy.

cpeTrafficSelectors List<String>

Lists IPv4 or IPv6-enabled subnets in your on-premises network.

oracleTrafficSelectors List<String>

Lists IPv4 or IPv6-enabled subnets in your Oracle tenancy.

cpeTrafficSelectors string[]

Lists IPv4 or IPv6-enabled subnets in your on-premises network.

oracleTrafficSelectors string[]

Lists IPv4 or IPv6-enabled subnets in your Oracle tenancy.

cpe_traffic_selectors Sequence[str]

Lists IPv4 or IPv6-enabled subnets in your on-premises network.

oracle_traffic_selectors Sequence[str]

Lists IPv4 or IPv6-enabled subnets in your Oracle tenancy.

cpeTrafficSelectors List<String>

Lists IPv4 or IPv6-enabled subnets in your on-premises network.

oracleTrafficSelectors List<String>

Lists IPv4 or IPv6-enabled subnets in your Oracle tenancy.

GetIpsecConnectionTunnelsIpSecConnectionTunnelPhaseOneDetail

CustomAuthenticationAlgorithm string

Phase two authentication algorithm proposed during tunnel negotiation.

CustomDhGroup string

The proposed custom Diffie-Hellman group.

CustomEncryptionAlgorithm string

The proposed custom phase two encryption algorithm.

IsCustomPhaseOneConfig bool

Indicates whether custom phase one configuration is enabled. If this option is not enabled, default settings are proposed.

IsIkeEstablished bool

Indicates whether IKE phase one is established.

Lifetime int

The total configured lifetime of the IKE security association.

NegotiatedAuthenticationAlgorithm string

The negotiated phase two authentication algorithm.

NegotiatedDhGroup string

The negotiated Diffie-Hellman group.

NegotiatedEncryptionAlgorithm string

The negotiated encryption algorithm.

RemainingLifetime string

The remaining lifetime before the key is refreshed.

RemainingLifetimeLastRetrieved string

The date and time the remaining lifetime was last retrieved, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

CustomAuthenticationAlgorithm string

Phase two authentication algorithm proposed during tunnel negotiation.

CustomDhGroup string

The proposed custom Diffie-Hellman group.

CustomEncryptionAlgorithm string

The proposed custom phase two encryption algorithm.

IsCustomPhaseOneConfig bool

Indicates whether custom phase one configuration is enabled. If this option is not enabled, default settings are proposed.

IsIkeEstablished bool

Indicates whether IKE phase one is established.

Lifetime int

The total configured lifetime of the IKE security association.

NegotiatedAuthenticationAlgorithm string

The negotiated phase two authentication algorithm.

NegotiatedDhGroup string

The negotiated Diffie-Hellman group.

NegotiatedEncryptionAlgorithm string

The negotiated encryption algorithm.

RemainingLifetime string

The remaining lifetime before the key is refreshed.

RemainingLifetimeLastRetrieved string

The date and time the remaining lifetime was last retrieved, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

customAuthenticationAlgorithm String

Phase two authentication algorithm proposed during tunnel negotiation.

customDhGroup String

The proposed custom Diffie-Hellman group.

customEncryptionAlgorithm String

The proposed custom phase two encryption algorithm.

isCustomPhaseOneConfig Boolean

Indicates whether custom phase one configuration is enabled. If this option is not enabled, default settings are proposed.

isIkeEstablished Boolean

Indicates whether IKE phase one is established.

lifetime Integer

The total configured lifetime of the IKE security association.

negotiatedAuthenticationAlgorithm String

The negotiated phase two authentication algorithm.

negotiatedDhGroup String

The negotiated Diffie-Hellman group.

negotiatedEncryptionAlgorithm String

The negotiated encryption algorithm.

remainingLifetime String

The remaining lifetime before the key is refreshed.

remainingLifetimeLastRetrieved String

The date and time the remaining lifetime was last retrieved, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

customAuthenticationAlgorithm string

Phase two authentication algorithm proposed during tunnel negotiation.

customDhGroup string

The proposed custom Diffie-Hellman group.

customEncryptionAlgorithm string

The proposed custom phase two encryption algorithm.

isCustomPhaseOneConfig boolean

Indicates whether custom phase one configuration is enabled. If this option is not enabled, default settings are proposed.

isIkeEstablished boolean

Indicates whether IKE phase one is established.

lifetime number

The total configured lifetime of the IKE security association.

negotiatedAuthenticationAlgorithm string

The negotiated phase two authentication algorithm.

negotiatedDhGroup string

The negotiated Diffie-Hellman group.

negotiatedEncryptionAlgorithm string

The negotiated encryption algorithm.

remainingLifetime string

The remaining lifetime before the key is refreshed.

remainingLifetimeLastRetrieved string

The date and time the remaining lifetime was last retrieved, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

custom_authentication_algorithm str

Phase two authentication algorithm proposed during tunnel negotiation.

custom_dh_group str

The proposed custom Diffie-Hellman group.

custom_encryption_algorithm str

The proposed custom phase two encryption algorithm.

is_custom_phase_one_config bool

Indicates whether custom phase one configuration is enabled. If this option is not enabled, default settings are proposed.

is_ike_established bool

Indicates whether IKE phase one is established.

lifetime int

The total configured lifetime of the IKE security association.

negotiated_authentication_algorithm str

The negotiated phase two authentication algorithm.

negotiated_dh_group str

The negotiated Diffie-Hellman group.

negotiated_encryption_algorithm str

The negotiated encryption algorithm.

remaining_lifetime str

The remaining lifetime before the key is refreshed.

remaining_lifetime_last_retrieved str

The date and time the remaining lifetime was last retrieved, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

customAuthenticationAlgorithm String

Phase two authentication algorithm proposed during tunnel negotiation.

customDhGroup String

The proposed custom Diffie-Hellman group.

customEncryptionAlgorithm String

The proposed custom phase two encryption algorithm.

isCustomPhaseOneConfig Boolean

Indicates whether custom phase one configuration is enabled. If this option is not enabled, default settings are proposed.

isIkeEstablished Boolean

Indicates whether IKE phase one is established.

lifetime Number

The total configured lifetime of the IKE security association.

negotiatedAuthenticationAlgorithm String

The negotiated phase two authentication algorithm.

negotiatedDhGroup String

The negotiated Diffie-Hellman group.

negotiatedEncryptionAlgorithm String

The negotiated encryption algorithm.

remainingLifetime String

The remaining lifetime before the key is refreshed.

remainingLifetimeLastRetrieved String

The date and time the remaining lifetime was last retrieved, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

GetIpsecConnectionTunnelsIpSecConnectionTunnelPhaseTwoDetail

CustomAuthenticationAlgorithm string

Phase two authentication algorithm proposed during tunnel negotiation.

CustomEncryptionAlgorithm string

The proposed custom phase two encryption algorithm.

DhGroup string

The proposed Diffie-Hellman group.

IsCustomPhaseTwoConfig bool

Indicates whether custom phase two configuration is enabled. If this option is not enabled, default settings are proposed.

IsEspEstablished bool

Indicates that ESP phase two is established.

IsPfsEnabled bool

Indicates that PFS (perfect forward secrecy) is enabled.

Lifetime int

The total configured lifetime of the IKE security association.

NegotiatedAuthenticationAlgorithm string

The negotiated phase two authentication algorithm.

NegotiatedDhGroup string

The negotiated Diffie-Hellman group.

NegotiatedEncryptionAlgorithm string

The negotiated encryption algorithm.

RemainingLifetime string

The remaining lifetime before the key is refreshed.

RemainingLifetimeLastRetrieved string

The date and time the remaining lifetime was last retrieved, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

CustomAuthenticationAlgorithm string

Phase two authentication algorithm proposed during tunnel negotiation.

CustomEncryptionAlgorithm string

The proposed custom phase two encryption algorithm.

DhGroup string

The proposed Diffie-Hellman group.

IsCustomPhaseTwoConfig bool

Indicates whether custom phase two configuration is enabled. If this option is not enabled, default settings are proposed.

IsEspEstablished bool

Indicates that ESP phase two is established.

IsPfsEnabled bool

Indicates that PFS (perfect forward secrecy) is enabled.

Lifetime int

The total configured lifetime of the IKE security association.

NegotiatedAuthenticationAlgorithm string

The negotiated phase two authentication algorithm.

NegotiatedDhGroup string

The negotiated Diffie-Hellman group.

NegotiatedEncryptionAlgorithm string

The negotiated encryption algorithm.

RemainingLifetime string

The remaining lifetime before the key is refreshed.

RemainingLifetimeLastRetrieved string

The date and time the remaining lifetime was last retrieved, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

customAuthenticationAlgorithm String

Phase two authentication algorithm proposed during tunnel negotiation.

customEncryptionAlgorithm String

The proposed custom phase two encryption algorithm.

dhGroup String

The proposed Diffie-Hellman group.

isCustomPhaseTwoConfig Boolean

Indicates whether custom phase two configuration is enabled. If this option is not enabled, default settings are proposed.

isEspEstablished Boolean

Indicates that ESP phase two is established.

isPfsEnabled Boolean

Indicates that PFS (perfect forward secrecy) is enabled.

lifetime Integer

The total configured lifetime of the IKE security association.

negotiatedAuthenticationAlgorithm String

The negotiated phase two authentication algorithm.

negotiatedDhGroup String

The negotiated Diffie-Hellman group.

negotiatedEncryptionAlgorithm String

The negotiated encryption algorithm.

remainingLifetime String

The remaining lifetime before the key is refreshed.

remainingLifetimeLastRetrieved String

The date and time the remaining lifetime was last retrieved, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

customAuthenticationAlgorithm string

Phase two authentication algorithm proposed during tunnel negotiation.

customEncryptionAlgorithm string

The proposed custom phase two encryption algorithm.

dhGroup string

The proposed Diffie-Hellman group.

isCustomPhaseTwoConfig boolean

Indicates whether custom phase two configuration is enabled. If this option is not enabled, default settings are proposed.

isEspEstablished boolean

Indicates that ESP phase two is established.

isPfsEnabled boolean

Indicates that PFS (perfect forward secrecy) is enabled.

lifetime number

The total configured lifetime of the IKE security association.

negotiatedAuthenticationAlgorithm string

The negotiated phase two authentication algorithm.

negotiatedDhGroup string

The negotiated Diffie-Hellman group.

negotiatedEncryptionAlgorithm string

The negotiated encryption algorithm.

remainingLifetime string

The remaining lifetime before the key is refreshed.

remainingLifetimeLastRetrieved string

The date and time the remaining lifetime was last retrieved, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

custom_authentication_algorithm str

Phase two authentication algorithm proposed during tunnel negotiation.

custom_encryption_algorithm str

The proposed custom phase two encryption algorithm.

dh_group str

The proposed Diffie-Hellman group.

is_custom_phase_two_config bool

Indicates whether custom phase two configuration is enabled. If this option is not enabled, default settings are proposed.

is_esp_established bool

Indicates that ESP phase two is established.

is_pfs_enabled bool

Indicates that PFS (perfect forward secrecy) is enabled.

lifetime int

The total configured lifetime of the IKE security association.

negotiated_authentication_algorithm str

The negotiated phase two authentication algorithm.

negotiated_dh_group str

The negotiated Diffie-Hellman group.

negotiated_encryption_algorithm str

The negotiated encryption algorithm.

remaining_lifetime str

The remaining lifetime before the key is refreshed.

remaining_lifetime_last_retrieved str

The date and time the remaining lifetime was last retrieved, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

customAuthenticationAlgorithm String

Phase two authentication algorithm proposed during tunnel negotiation.

customEncryptionAlgorithm String

The proposed custom phase two encryption algorithm.

dhGroup String

The proposed Diffie-Hellman group.

isCustomPhaseTwoConfig Boolean

Indicates whether custom phase two configuration is enabled. If this option is not enabled, default settings are proposed.

isEspEstablished Boolean

Indicates that ESP phase two is established.

isPfsEnabled Boolean

Indicates that PFS (perfect forward secrecy) is enabled.

lifetime Number

The total configured lifetime of the IKE security association.

negotiatedAuthenticationAlgorithm String

The negotiated phase two authentication algorithm.

negotiatedDhGroup String

The negotiated Diffie-Hellman group.

negotiatedEncryptionAlgorithm String

The negotiated encryption algorithm.

remainingLifetime String

The remaining lifetime before the key is refreshed.

remainingLifetimeLastRetrieved String

The date and time the remaining lifetime was last retrieved, in the format defined by RFC3339. Example: 2016-08-25T21:10:29.600Z

Package Details

Repository
https://github.com/pulumi/pulumi-oci
License
Apache-2.0
Notes

This Pulumi package is based on the oci Terraform Provider.