Viewing docs for Oracle Cloud Infrastructure v4.2.0
published on Friday, Mar 6, 2026 by Pulumi
published on Friday, Mar 6, 2026 by Pulumi
Viewing docs for Oracle Cloud Infrastructure v4.2.0
published on Friday, Mar 6, 2026 by Pulumi
published on Friday, Mar 6, 2026 by Pulumi
This data source provides details about a specific Network Firewall resource in Oracle Cloud Infrastructure Network Firewall service.
Gets a NetworkFirewall by identifier
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";
const testNetworkFirewall = oci.NetworkFirewall.getNetworkFirewall({
networkFirewallId: testNetworkFirewallOciNetworkFirewallNetworkFirewall.id,
});
import pulumi
import pulumi_oci as oci
test_network_firewall = oci.NetworkFirewall.get_network_firewall(network_firewall_id=test_network_firewall_oci_network_firewall_network_firewall["id"])
package main
import (
"github.com/pulumi/pulumi-oci/sdk/v4/go/oci/networkfirewall"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := networkfirewall.GetNetworkFirewall(ctx, &networkfirewall.GetNetworkFirewallArgs{
NetworkFirewallId: testNetworkFirewallOciNetworkFirewallNetworkFirewall.Id,
}, nil)
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;
return await Deployment.RunAsync(() =>
{
var testNetworkFirewall = Oci.NetworkFirewall.GetNetworkFirewall.Invoke(new()
{
NetworkFirewallId = testNetworkFirewallOciNetworkFirewallNetworkFirewall.Id,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.NetworkFirewall.NetworkFirewallFunctions;
import com.pulumi.oci.NetworkFirewall.inputs.GetNetworkFirewallArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var testNetworkFirewall = NetworkFirewallFunctions.getNetworkFirewall(GetNetworkFirewallArgs.builder()
.networkFirewallId(testNetworkFirewallOciNetworkFirewallNetworkFirewall.id())
.build());
}
}
variables:
testNetworkFirewall:
fn::invoke:
function: oci:NetworkFirewall:getNetworkFirewall
arguments:
networkFirewallId: ${testNetworkFirewallOciNetworkFirewallNetworkFirewall.id}
Using getNetworkFirewall
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getNetworkFirewall(args: GetNetworkFirewallArgs, opts?: InvokeOptions): Promise<GetNetworkFirewallResult>
function getNetworkFirewallOutput(args: GetNetworkFirewallOutputArgs, opts?: InvokeOptions): Output<GetNetworkFirewallResult>def get_network_firewall(network_firewall_id: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetNetworkFirewallResult
def get_network_firewall_output(network_firewall_id: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetNetworkFirewallResult]func LookupNetworkFirewall(ctx *Context, args *LookupNetworkFirewallArgs, opts ...InvokeOption) (*LookupNetworkFirewallResult, error)
func LookupNetworkFirewallOutput(ctx *Context, args *LookupNetworkFirewallOutputArgs, opts ...InvokeOption) LookupNetworkFirewallResultOutput> Note: This function is named LookupNetworkFirewall in the Go SDK.
public static class GetNetworkFirewall
{
public static Task<GetNetworkFirewallResult> InvokeAsync(GetNetworkFirewallArgs args, InvokeOptions? opts = null)
public static Output<GetNetworkFirewallResult> Invoke(GetNetworkFirewallInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetNetworkFirewallResult> getNetworkFirewall(GetNetworkFirewallArgs args, InvokeOptions options)
public static Output<GetNetworkFirewallResult> getNetworkFirewall(GetNetworkFirewallArgs args, InvokeOptions options)
fn::invoke:
function: oci:NetworkFirewall/getNetworkFirewall:getNetworkFirewall
arguments:
# arguments dictionaryThe following arguments are supported:
- Network
Firewall stringId - The OCID of the Network Firewall resource.
- Network
Firewall stringId - The OCID of the Network Firewall resource.
- network
Firewall StringId - The OCID of the Network Firewall resource.
- network
Firewall stringId - The OCID of the Network Firewall resource.
- network_
firewall_ strid - The OCID of the Network Firewall resource.
- network
Firewall StringId - The OCID of the Network Firewall resource.
getNetworkFirewall Result
The following output properties are available:
- Availability
Domain string - Availability Domain where Network Firewall instance is created. To get a list of availability domains for a tenancy, use the ListAvailabilityDomains operation. Example:
kIdk:PHX-AD-1 - Compartment
Id string - The OCID of the compartment containing the Network Firewall.
- Dictionary<string, string>
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"Operations.CostCenter": "42"} - Display
Name string - A user-friendly name for the Network Firewall. Does not have to be unique, and it's changeable. Avoid entering confidential information.
- Dictionary<string, string>
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example:
{"Department": "Finance"} - Id string
- The OCID of the Network Firewall resource.
- Ipv4address string
- IPv4 address for the Network Firewall.
- Ipv6address string
- IPv6 address for the Network Firewall.
- Lifecycle
Details string - A message describing the current state in more detail. For example, it can be used to provide actionable information for a resource in 'FAILED' state.
- Nat
Configurations List<GetNetwork Firewall Nat Configuration> - Response to a request to configure Network Address Translation (NAT) on a firewall. To perform NAT on traffic passing the private NAT IPs to the firewall, the attached network firewall policy must also have NAT rules and NAT configuration must be enabled. If NAT configuration is enabled and the attached firewall policy does not contain NAT rule then NAT IPs will get allocated but NAT will not be performed on any traffic.
- Network
Firewall stringId - Network
Firewall stringPolicy Id - The OCID of the Network Firewall Policy.
- Network
Security List<string>Group Ids - An array of network security groups OCID associated with the Network Firewall.
- Shape string
- The shape of a firewall to determine the bandwidth that the firewall allows.
- State string
- The current state of the Network Firewall.
- Subnet
Id string - The OCID of the subnet associated with the Network Firewall.
- Dictionary<string, string>
- Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"} - Time
Created string - The time at which the Network Firewall was created in the format defined by RFC3339. Example:
2016-08-25T21:10:29.600Z - Time
Updated string - The time at which the Network Firewall was updated in the format defined by RFC3339. Example:
2016-08-25T21:10:29.600Z
- Availability
Domain string - Availability Domain where Network Firewall instance is created. To get a list of availability domains for a tenancy, use the ListAvailabilityDomains operation. Example:
kIdk:PHX-AD-1 - Compartment
Id string - The OCID of the compartment containing the Network Firewall.
- map[string]string
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"Operations.CostCenter": "42"} - Display
Name string - A user-friendly name for the Network Firewall. Does not have to be unique, and it's changeable. Avoid entering confidential information.
- map[string]string
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example:
{"Department": "Finance"} - Id string
- The OCID of the Network Firewall resource.
- Ipv4address string
- IPv4 address for the Network Firewall.
- Ipv6address string
- IPv6 address for the Network Firewall.
- Lifecycle
Details string - A message describing the current state in more detail. For example, it can be used to provide actionable information for a resource in 'FAILED' state.
- Nat
Configurations []GetNetwork Firewall Nat Configuration - Response to a request to configure Network Address Translation (NAT) on a firewall. To perform NAT on traffic passing the private NAT IPs to the firewall, the attached network firewall policy must also have NAT rules and NAT configuration must be enabled. If NAT configuration is enabled and the attached firewall policy does not contain NAT rule then NAT IPs will get allocated but NAT will not be performed on any traffic.
- Network
Firewall stringId - Network
Firewall stringPolicy Id - The OCID of the Network Firewall Policy.
- Network
Security []stringGroup Ids - An array of network security groups OCID associated with the Network Firewall.
- Shape string
- The shape of a firewall to determine the bandwidth that the firewall allows.
- State string
- The current state of the Network Firewall.
- Subnet
Id string - The OCID of the subnet associated with the Network Firewall.
- map[string]string
- Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"} - Time
Created string - The time at which the Network Firewall was created in the format defined by RFC3339. Example:
2016-08-25T21:10:29.600Z - Time
Updated string - The time at which the Network Firewall was updated in the format defined by RFC3339. Example:
2016-08-25T21:10:29.600Z
- availability
Domain String - Availability Domain where Network Firewall instance is created. To get a list of availability domains for a tenancy, use the ListAvailabilityDomains operation. Example:
kIdk:PHX-AD-1 - compartment
Id String - The OCID of the compartment containing the Network Firewall.
- Map<String,String>
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"Operations.CostCenter": "42"} - display
Name String - A user-friendly name for the Network Firewall. Does not have to be unique, and it's changeable. Avoid entering confidential information.
- Map<String,String>
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example:
{"Department": "Finance"} - id String
- The OCID of the Network Firewall resource.
- ipv4address String
- IPv4 address for the Network Firewall.
- ipv6address String
- IPv6 address for the Network Firewall.
- lifecycle
Details String - A message describing the current state in more detail. For example, it can be used to provide actionable information for a resource in 'FAILED' state.
- nat
Configurations List<GetNat Configuration> - Response to a request to configure Network Address Translation (NAT) on a firewall. To perform NAT on traffic passing the private NAT IPs to the firewall, the attached network firewall policy must also have NAT rules and NAT configuration must be enabled. If NAT configuration is enabled and the attached firewall policy does not contain NAT rule then NAT IPs will get allocated but NAT will not be performed on any traffic.
- network
Firewall StringId - network
Firewall StringPolicy Id - The OCID of the Network Firewall Policy.
- network
Security List<String>Group Ids - An array of network security groups OCID associated with the Network Firewall.
- shape String
- The shape of a firewall to determine the bandwidth that the firewall allows.
- state String
- The current state of the Network Firewall.
- subnet
Id String - The OCID of the subnet associated with the Network Firewall.
- Map<String,String>
- Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"} - time
Created String - The time at which the Network Firewall was created in the format defined by RFC3339. Example:
2016-08-25T21:10:29.600Z - time
Updated String - The time at which the Network Firewall was updated in the format defined by RFC3339. Example:
2016-08-25T21:10:29.600Z
- availability
Domain string - Availability Domain where Network Firewall instance is created. To get a list of availability domains for a tenancy, use the ListAvailabilityDomains operation. Example:
kIdk:PHX-AD-1 - compartment
Id string - The OCID of the compartment containing the Network Firewall.
- {[key: string]: string}
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"Operations.CostCenter": "42"} - display
Name string - A user-friendly name for the Network Firewall. Does not have to be unique, and it's changeable. Avoid entering confidential information.
- {[key: string]: string}
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example:
{"Department": "Finance"} - id string
- The OCID of the Network Firewall resource.
- ipv4address string
- IPv4 address for the Network Firewall.
- ipv6address string
- IPv6 address for the Network Firewall.
- lifecycle
Details string - A message describing the current state in more detail. For example, it can be used to provide actionable information for a resource in 'FAILED' state.
- nat
Configurations GetNetwork Firewall Nat Configuration[] - Response to a request to configure Network Address Translation (NAT) on a firewall. To perform NAT on traffic passing the private NAT IPs to the firewall, the attached network firewall policy must also have NAT rules and NAT configuration must be enabled. If NAT configuration is enabled and the attached firewall policy does not contain NAT rule then NAT IPs will get allocated but NAT will not be performed on any traffic.
- network
Firewall stringId - network
Firewall stringPolicy Id - The OCID of the Network Firewall Policy.
- network
Security string[]Group Ids - An array of network security groups OCID associated with the Network Firewall.
- shape string
- The shape of a firewall to determine the bandwidth that the firewall allows.
- state string
- The current state of the Network Firewall.
- subnet
Id string - The OCID of the subnet associated with the Network Firewall.
- {[key: string]: string}
- Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"} - time
Created string - The time at which the Network Firewall was created in the format defined by RFC3339. Example:
2016-08-25T21:10:29.600Z - time
Updated string - The time at which the Network Firewall was updated in the format defined by RFC3339. Example:
2016-08-25T21:10:29.600Z
- availability_
domain str - Availability Domain where Network Firewall instance is created. To get a list of availability domains for a tenancy, use the ListAvailabilityDomains operation. Example:
kIdk:PHX-AD-1 - compartment_
id str - The OCID of the compartment containing the Network Firewall.
- Mapping[str, str]
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"Operations.CostCenter": "42"} - display_
name str - A user-friendly name for the Network Firewall. Does not have to be unique, and it's changeable. Avoid entering confidential information.
- Mapping[str, str]
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example:
{"Department": "Finance"} - id str
- The OCID of the Network Firewall resource.
- ipv4address str
- IPv4 address for the Network Firewall.
- ipv6address str
- IPv6 address for the Network Firewall.
- lifecycle_
details str - A message describing the current state in more detail. For example, it can be used to provide actionable information for a resource in 'FAILED' state.
- nat_
configurations Sequence[GetNetwork Firewall Nat Configuration] - Response to a request to configure Network Address Translation (NAT) on a firewall. To perform NAT on traffic passing the private NAT IPs to the firewall, the attached network firewall policy must also have NAT rules and NAT configuration must be enabled. If NAT configuration is enabled and the attached firewall policy does not contain NAT rule then NAT IPs will get allocated but NAT will not be performed on any traffic.
- network_
firewall_ strid - network_
firewall_ strpolicy_ id - The OCID of the Network Firewall Policy.
- network_
security_ Sequence[str]group_ ids - An array of network security groups OCID associated with the Network Firewall.
- shape str
- The shape of a firewall to determine the bandwidth that the firewall allows.
- state str
- The current state of the Network Firewall.
- subnet_
id str - The OCID of the subnet associated with the Network Firewall.
- Mapping[str, str]
- Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"} - time_
created str - The time at which the Network Firewall was created in the format defined by RFC3339. Example:
2016-08-25T21:10:29.600Z - time_
updated str - The time at which the Network Firewall was updated in the format defined by RFC3339. Example:
2016-08-25T21:10:29.600Z
- availability
Domain String - Availability Domain where Network Firewall instance is created. To get a list of availability domains for a tenancy, use the ListAvailabilityDomains operation. Example:
kIdk:PHX-AD-1 - compartment
Id String - The OCID of the compartment containing the Network Firewall.
- Map<String>
- Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example:
{"Operations.CostCenter": "42"} - display
Name String - A user-friendly name for the Network Firewall. Does not have to be unique, and it's changeable. Avoid entering confidential information.
- Map<String>
- Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example:
{"Department": "Finance"} - id String
- The OCID of the Network Firewall resource.
- ipv4address String
- IPv4 address for the Network Firewall.
- ipv6address String
- IPv6 address for the Network Firewall.
- lifecycle
Details String - A message describing the current state in more detail. For example, it can be used to provide actionable information for a resource in 'FAILED' state.
- nat
Configurations List<Property Map> - Response to a request to configure Network Address Translation (NAT) on a firewall. To perform NAT on traffic passing the private NAT IPs to the firewall, the attached network firewall policy must also have NAT rules and NAT configuration must be enabled. If NAT configuration is enabled and the attached firewall policy does not contain NAT rule then NAT IPs will get allocated but NAT will not be performed on any traffic.
- network
Firewall StringId - network
Firewall StringPolicy Id - The OCID of the Network Firewall Policy.
- network
Security List<String>Group Ids - An array of network security groups OCID associated with the Network Firewall.
- shape String
- The shape of a firewall to determine the bandwidth that the firewall allows.
- state String
- The current state of the Network Firewall.
- subnet
Id String - The OCID of the subnet associated with the Network Firewall.
- Map<String>
- Usage of system tag keys. These predefined keys are scoped to namespaces. Example:
{"orcl-cloud.free-tier-retained": "true"} - time
Created String - The time at which the Network Firewall was created in the format defined by RFC3339. Example:
2016-08-25T21:10:29.600Z - time
Updated String - The time at which the Network Firewall was updated in the format defined by RFC3339. Example:
2016-08-25T21:10:29.600Z
Supporting Types
GetNetworkFirewallNatConfiguration
- Must
Enable boolPrivate Nat - True indicates that NAT configuration is enabled. False indicates NAT configuration is disabled.
- Nat
Ip List<string>Address Lists - An array of Private NAT IP addresses that are associated with the Network Firewall. These IP addresses are reserved for NAT and shouldn't be used for any other purpose in the subnet. This list contains IP addresses when NAT configuration is enabled. This list is empty or null IP when NAT configuration is disabled.
- Must
Enable boolPrivate Nat - True indicates that NAT configuration is enabled. False indicates NAT configuration is disabled.
- Nat
Ip []stringAddress Lists - An array of Private NAT IP addresses that are associated with the Network Firewall. These IP addresses are reserved for NAT and shouldn't be used for any other purpose in the subnet. This list contains IP addresses when NAT configuration is enabled. This list is empty or null IP when NAT configuration is disabled.
- must
Enable BooleanPrivate Nat - True indicates that NAT configuration is enabled. False indicates NAT configuration is disabled.
- nat
Ip List<String>Address Lists - An array of Private NAT IP addresses that are associated with the Network Firewall. These IP addresses are reserved for NAT and shouldn't be used for any other purpose in the subnet. This list contains IP addresses when NAT configuration is enabled. This list is empty or null IP when NAT configuration is disabled.
- must
Enable booleanPrivate Nat - True indicates that NAT configuration is enabled. False indicates NAT configuration is disabled.
- nat
Ip string[]Address Lists - An array of Private NAT IP addresses that are associated with the Network Firewall. These IP addresses are reserved for NAT and shouldn't be used for any other purpose in the subnet. This list contains IP addresses when NAT configuration is enabled. This list is empty or null IP when NAT configuration is disabled.
- must_
enable_ boolprivate_ nat - True indicates that NAT configuration is enabled. False indicates NAT configuration is disabled.
- nat_
ip_ Sequence[str]address_ lists - An array of Private NAT IP addresses that are associated with the Network Firewall. These IP addresses are reserved for NAT and shouldn't be used for any other purpose in the subnet. This list contains IP addresses when NAT configuration is enabled. This list is empty or null IP when NAT configuration is disabled.
- must
Enable BooleanPrivate Nat - True indicates that NAT configuration is enabled. False indicates NAT configuration is disabled.
- nat
Ip List<String>Address Lists - An array of Private NAT IP addresses that are associated with the Network Firewall. These IP addresses are reserved for NAT and shouldn't be used for any other purpose in the subnet. This list contains IP addresses when NAT configuration is enabled. This list is empty or null IP when NAT configuration is disabled.
Package Details
- Repository
- oci pulumi/pulumi-oci
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
ociTerraform Provider.
Viewing docs for Oracle Cloud Infrastructure v4.2.0
published on Friday, Mar 6, 2026 by Pulumi
published on Friday, Mar 6, 2026 by Pulumi
