Docs Home
Oracle Cloud Infrastructure v3.0.0 published on Thursday, Jun 5, 2025 by Pulumi
oci.NetworkFirewall.NetworkFirewallPolicyNatRule
Explore with Pulumi AI
This resource provides the Network Firewall Policy Nat Rule resource in Oracle Cloud Infrastructure Network Firewall service.
Creates a new NAT Rule for the Network Firewall Policy.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";
const testNetworkFirewallPolicyNatRule = new oci.networkfirewall.NetworkFirewallPolicyNatRule("test_network_firewall_policy_nat_rule", {
action: networkFirewallPolicyNatRuleAction,
condition: {
destinationAddresses: networkFirewallPolicyNatRuleConditionDestinationAddress,
service: networkFirewallPolicyNatRuleConditionService,
sourceAddresses: networkFirewallPolicyNatRuleConditionSourceAddress,
},
name: networkFirewallPolicyNatRuleName,
networkFirewallPolicyId: testNetworkFirewallPolicy.id,
type: networkFirewallPolicyNatRuleType,
description: networkFirewallPolicyNatRuleDescription,
position: {
afterRule: networkFirewallPolicyNatRulePositionAfterRule,
beforeRule: networkFirewallPolicyNatRulePositionBeforeRule,
},
});
import pulumi
import pulumi_oci as oci
test_network_firewall_policy_nat_rule = oci.network_firewall.NetworkFirewallPolicyNatRule("test_network_firewall_policy_nat_rule",
action=network_firewall_policy_nat_rule_action,
condition={
"destination_addresses": network_firewall_policy_nat_rule_condition_destination_address,
"service": network_firewall_policy_nat_rule_condition_service,
"source_addresses": network_firewall_policy_nat_rule_condition_source_address,
},
name=network_firewall_policy_nat_rule_name,
network_firewall_policy_id=test_network_firewall_policy["id"],
type=network_firewall_policy_nat_rule_type,
description=network_firewall_policy_nat_rule_description,
position={
"after_rule": network_firewall_policy_nat_rule_position_after_rule,
"before_rule": network_firewall_policy_nat_rule_position_before_rule,
})
package main
import (
"github.com/pulumi/pulumi-oci/sdk/v3/go/oci/networkfirewall"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := networkfirewall.NewNetworkFirewallPolicyNatRule(ctx, "test_network_firewall_policy_nat_rule", &networkfirewall.NetworkFirewallPolicyNatRuleArgs{
Action: pulumi.Any(networkFirewallPolicyNatRuleAction),
Condition: &networkfirewall.NetworkFirewallPolicyNatRuleConditionArgs{
DestinationAddresses: pulumi.Any(networkFirewallPolicyNatRuleConditionDestinationAddress),
Service: pulumi.Any(networkFirewallPolicyNatRuleConditionService),
SourceAddresses: pulumi.Any(networkFirewallPolicyNatRuleConditionSourceAddress),
},
Name: pulumi.Any(networkFirewallPolicyNatRuleName),
NetworkFirewallPolicyId: pulumi.Any(testNetworkFirewallPolicy.Id),
Type: pulumi.Any(networkFirewallPolicyNatRuleType),
Description: pulumi.Any(networkFirewallPolicyNatRuleDescription),
Position: &networkfirewall.NetworkFirewallPolicyNatRulePositionArgs{
AfterRule: pulumi.Any(networkFirewallPolicyNatRulePositionAfterRule),
BeforeRule: pulumi.Any(networkFirewallPolicyNatRulePositionBeforeRule),
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;
return await Deployment.RunAsync(() =>
{
var testNetworkFirewallPolicyNatRule = new Oci.NetworkFirewall.NetworkFirewallPolicyNatRule("test_network_firewall_policy_nat_rule", new()
{
Action = networkFirewallPolicyNatRuleAction,
Condition = new Oci.NetworkFirewall.Inputs.NetworkFirewallPolicyNatRuleConditionArgs
{
DestinationAddresses = networkFirewallPolicyNatRuleConditionDestinationAddress,
Service = networkFirewallPolicyNatRuleConditionService,
SourceAddresses = networkFirewallPolicyNatRuleConditionSourceAddress,
},
Name = networkFirewallPolicyNatRuleName,
NetworkFirewallPolicyId = testNetworkFirewallPolicy.Id,
Type = networkFirewallPolicyNatRuleType,
Description = networkFirewallPolicyNatRuleDescription,
Position = new Oci.NetworkFirewall.Inputs.NetworkFirewallPolicyNatRulePositionArgs
{
AfterRule = networkFirewallPolicyNatRulePositionAfterRule,
BeforeRule = networkFirewallPolicyNatRulePositionBeforeRule,
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.NetworkFirewall.NetworkFirewallPolicyNatRule;
import com.pulumi.oci.NetworkFirewall.NetworkFirewallPolicyNatRuleArgs;
import com.pulumi.oci.NetworkFirewall.inputs.NetworkFirewallPolicyNatRuleConditionArgs;
import com.pulumi.oci.NetworkFirewall.inputs.NetworkFirewallPolicyNatRulePositionArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var testNetworkFirewallPolicyNatRule = new NetworkFirewallPolicyNatRule("testNetworkFirewallPolicyNatRule", NetworkFirewallPolicyNatRuleArgs.builder()
.action(networkFirewallPolicyNatRuleAction)
.condition(NetworkFirewallPolicyNatRuleConditionArgs.builder()
.destinationAddresses(networkFirewallPolicyNatRuleConditionDestinationAddress)
.service(networkFirewallPolicyNatRuleConditionService)
.sourceAddresses(networkFirewallPolicyNatRuleConditionSourceAddress)
.build())
.name(networkFirewallPolicyNatRuleName)
.networkFirewallPolicyId(testNetworkFirewallPolicy.id())
.type(networkFirewallPolicyNatRuleType)
.description(networkFirewallPolicyNatRuleDescription)
.position(NetworkFirewallPolicyNatRulePositionArgs.builder()
.afterRule(networkFirewallPolicyNatRulePositionAfterRule)
.beforeRule(networkFirewallPolicyNatRulePositionBeforeRule)
.build())
.build());
}
}
resources:
testNetworkFirewallPolicyNatRule:
type: oci:NetworkFirewall:NetworkFirewallPolicyNatRule
name: test_network_firewall_policy_nat_rule
properties:
action: ${networkFirewallPolicyNatRuleAction}
condition:
destinationAddresses: ${networkFirewallPolicyNatRuleConditionDestinationAddress}
service: ${networkFirewallPolicyNatRuleConditionService}
sourceAddresses: ${networkFirewallPolicyNatRuleConditionSourceAddress}
name: ${networkFirewallPolicyNatRuleName}
networkFirewallPolicyId: ${testNetworkFirewallPolicy.id}
type: ${networkFirewallPolicyNatRuleType}
description: ${networkFirewallPolicyNatRuleDescription}
position:
afterRule: ${networkFirewallPolicyNatRulePositionAfterRule}
beforeRule: ${networkFirewallPolicyNatRulePositionBeforeRule}
Create NetworkFirewallPolicyNatRule Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new NetworkFirewallPolicyNatRule(name: string, args: NetworkFirewallPolicyNatRuleArgs, opts?: CustomResourceOptions);@overload
def NetworkFirewallPolicyNatRule(resource_name: str,
args: NetworkFirewallPolicyNatRuleArgs,
opts: Optional[ResourceOptions] = None)
@overload
def NetworkFirewallPolicyNatRule(resource_name: str,
opts: Optional[ResourceOptions] = None,
action: Optional[str] = None,
condition: Optional[NetworkFirewallPolicyNatRuleConditionArgs] = None,
network_firewall_policy_id: Optional[str] = None,
type: Optional[str] = None,
description: Optional[str] = None,
name: Optional[str] = None,
position: Optional[NetworkFirewallPolicyNatRulePositionArgs] = None)func NewNetworkFirewallPolicyNatRule(ctx *Context, name string, args NetworkFirewallPolicyNatRuleArgs, opts ...ResourceOption) (*NetworkFirewallPolicyNatRule, error)public NetworkFirewallPolicyNatRule(string name, NetworkFirewallPolicyNatRuleArgs args, CustomResourceOptions? opts = null)
public NetworkFirewallPolicyNatRule(String name, NetworkFirewallPolicyNatRuleArgs args)
public NetworkFirewallPolicyNatRule(String name, NetworkFirewallPolicyNatRuleArgs args, CustomResourceOptions options)
type: oci:NetworkFirewall:NetworkFirewallPolicyNatRule
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args NetworkFirewallPolicyNatRuleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args NetworkFirewallPolicyNatRuleArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args NetworkFirewallPolicyNatRuleArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args NetworkFirewallPolicyNatRuleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args NetworkFirewallPolicyNatRuleArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var networkFirewallPolicyNatRuleResource = new Oci.NetworkFirewall.NetworkFirewallPolicyNatRule("networkFirewallPolicyNatRuleResource", new()
{
Action = "string",
Condition = new Oci.NetworkFirewall.Inputs.NetworkFirewallPolicyNatRuleConditionArgs
{
DestinationAddresses = new[]
{
"string",
},
Service = "string",
SourceAddresses = new[]
{
"string",
},
},
NetworkFirewallPolicyId = "string",
Type = "string",
Description = "string",
Name = "string",
Position = new Oci.NetworkFirewall.Inputs.NetworkFirewallPolicyNatRulePositionArgs
{
AfterRule = "string",
BeforeRule = "string",
},
});
example, err := networkfirewall.NewNetworkFirewallPolicyNatRule(ctx, "networkFirewallPolicyNatRuleResource", &networkfirewall.NetworkFirewallPolicyNatRuleArgs{
Action: pulumi.String("string"),
Condition: &networkfirewall.NetworkFirewallPolicyNatRuleConditionArgs{
DestinationAddresses: pulumi.StringArray{
pulumi.String("string"),
},
Service: pulumi.String("string"),
SourceAddresses: pulumi.StringArray{
pulumi.String("string"),
},
},
NetworkFirewallPolicyId: pulumi.String("string"),
Type: pulumi.String("string"),
Description: pulumi.String("string"),
Name: pulumi.String("string"),
Position: &networkfirewall.NetworkFirewallPolicyNatRulePositionArgs{
AfterRule: pulumi.String("string"),
BeforeRule: pulumi.String("string"),
},
})
var networkFirewallPolicyNatRuleResource = new NetworkFirewallPolicyNatRule("networkFirewallPolicyNatRuleResource", NetworkFirewallPolicyNatRuleArgs.builder()
.action("string")
.condition(NetworkFirewallPolicyNatRuleConditionArgs.builder()
.destinationAddresses("string")
.service("string")
.sourceAddresses("string")
.build())
.networkFirewallPolicyId("string")
.type("string")
.description("string")
.name("string")
.position(NetworkFirewallPolicyNatRulePositionArgs.builder()
.afterRule("string")
.beforeRule("string")
.build())
.build());
network_firewall_policy_nat_rule_resource = oci.network_firewall.NetworkFirewallPolicyNatRule("networkFirewallPolicyNatRuleResource",
action="string",
condition={
"destination_addresses": ["string"],
"service": "string",
"source_addresses": ["string"],
},
network_firewall_policy_id="string",
type="string",
description="string",
name="string",
position={
"after_rule": "string",
"before_rule": "string",
})
const networkFirewallPolicyNatRuleResource = new oci.networkfirewall.NetworkFirewallPolicyNatRule("networkFirewallPolicyNatRuleResource", {
action: "string",
condition: {
destinationAddresses: ["string"],
service: "string",
sourceAddresses: ["string"],
},
networkFirewallPolicyId: "string",
type: "string",
description: "string",
name: "string",
position: {
afterRule: "string",
beforeRule: "string",
},
});
type: oci:NetworkFirewall:NetworkFirewallPolicyNatRule
properties:
action: string
condition:
destinationAddresses:
- string
service: string
sourceAddresses:
- string
description: string
name: string
networkFirewallPolicyId: string
position:
afterRule: string
beforeRule: string
type: string
NetworkFirewallPolicyNatRule Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The NetworkFirewallPolicyNatRule resource accepts the following input properties:
- Action string
- (Updatable) action:
- DIPP_SRC_NAT - Dynamic-ip-port source NAT.
- Condition
Network
Firewall Policy Nat Rule Condition - (Updatable) Match criteria used in NAT Rule used on the firewall policy.
- Network
Firewall stringPolicy Id - Unique Network Firewall Policy identifier
- Type string
(Updatable) NAT type:
- NATV4 - NATV4 type NAT.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Description string
- (Updatable) Description of a NAT rule. This field can be used to add additional info.
- Name string
- Name for the NAT rule, must be unique within the policy.
- Position
Network
Firewall Policy Nat Rule Position - (Updatable) An object which defines the position of the rule.
- Action string
- (Updatable) action:
- DIPP_SRC_NAT - Dynamic-ip-port source NAT.
- Condition
Network
Firewall Policy Nat Rule Condition Args - (Updatable) Match criteria used in NAT Rule used on the firewall policy.
- Network
Firewall stringPolicy Id - Unique Network Firewall Policy identifier
- Type string
(Updatable) NAT type:
- NATV4 - NATV4 type NAT.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Description string
- (Updatable) Description of a NAT rule. This field can be used to add additional info.
- Name string
- Name for the NAT rule, must be unique within the policy.
- Position
Network
Firewall Policy Nat Rule Position Args - (Updatable) An object which defines the position of the rule.
- action String
- (Updatable) action:
- DIPP_SRC_NAT - Dynamic-ip-port source NAT.
- condition
Policy
Nat Rule Condition - (Updatable) Match criteria used in NAT Rule used on the firewall policy.
- network
Firewall StringPolicy Id - Unique Network Firewall Policy identifier
- type String
(Updatable) NAT type:
- NATV4 - NATV4 type NAT.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- description String
- (Updatable) Description of a NAT rule. This field can be used to add additional info.
- name String
- Name for the NAT rule, must be unique within the policy.
- position
Policy
Nat Rule Position - (Updatable) An object which defines the position of the rule.
- action string
- (Updatable) action:
- DIPP_SRC_NAT - Dynamic-ip-port source NAT.
- condition
Network
Firewall Policy Nat Rule Condition - (Updatable) Match criteria used in NAT Rule used on the firewall policy.
- network
Firewall stringPolicy Id - Unique Network Firewall Policy identifier
- type string
(Updatable) NAT type:
- NATV4 - NATV4 type NAT.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- description string
- (Updatable) Description of a NAT rule. This field can be used to add additional info.
- name string
- Name for the NAT rule, must be unique within the policy.
- position
Network
Firewall Policy Nat Rule Position - (Updatable) An object which defines the position of the rule.
- action str
- (Updatable) action:
- DIPP_SRC_NAT - Dynamic-ip-port source NAT.
- condition
Network
Firewall Policy Nat Rule Condition Args - (Updatable) Match criteria used in NAT Rule used on the firewall policy.
- network_
firewall_ strpolicy_ id - Unique Network Firewall Policy identifier
- type str
(Updatable) NAT type:
- NATV4 - NATV4 type NAT.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- description str
- (Updatable) Description of a NAT rule. This field can be used to add additional info.
- name str
- Name for the NAT rule, must be unique within the policy.
- position
Network
Firewall Policy Nat Rule Position Args - (Updatable) An object which defines the position of the rule.
- action String
- (Updatable) action:
- DIPP_SRC_NAT - Dynamic-ip-port source NAT.
- condition Property Map
- (Updatable) Match criteria used in NAT Rule used on the firewall policy.
- network
Firewall StringPolicy Id - Unique Network Firewall Policy identifier
- type String
(Updatable) NAT type:
- NATV4 - NATV4 type NAT.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- description String
- (Updatable) Description of a NAT rule. This field can be used to add additional info.
- name String
- Name for the NAT rule, must be unique within the policy.
- position Property Map
- (Updatable) An object which defines the position of the rule.
Outputs
All input properties are implicitly available as output properties. Additionally, the NetworkFirewallPolicyNatRule resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Parent
Resource stringId - OCID of the Network Firewall Policy this decryption profile belongs to.
- Priority
Order string - The priority order in which this rule should be evaluated
- Id string
- The provider-assigned unique ID for this managed resource.
- Parent
Resource stringId - OCID of the Network Firewall Policy this decryption profile belongs to.
- Priority
Order string - The priority order in which this rule should be evaluated
- id String
- The provider-assigned unique ID for this managed resource.
- parent
Resource StringId - OCID of the Network Firewall Policy this decryption profile belongs to.
- priority
Order String - The priority order in which this rule should be evaluated
- id string
- The provider-assigned unique ID for this managed resource.
- parent
Resource stringId - OCID of the Network Firewall Policy this decryption profile belongs to.
- priority
Order string - The priority order in which this rule should be evaluated
- id str
- The provider-assigned unique ID for this managed resource.
- parent_
resource_ strid - OCID of the Network Firewall Policy this decryption profile belongs to.
- priority_
order str - The priority order in which this rule should be evaluated
- id String
- The provider-assigned unique ID for this managed resource.
- parent
Resource StringId - OCID of the Network Firewall Policy this decryption profile belongs to.
- priority
Order String - The priority order in which this rule should be evaluated
Look up Existing NetworkFirewallPolicyNatRule Resource
Get an existing NetworkFirewallPolicyNatRule resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: NetworkFirewallPolicyNatRuleState, opts?: CustomResourceOptions): NetworkFirewallPolicyNatRule@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
action: Optional[str] = None,
condition: Optional[NetworkFirewallPolicyNatRuleConditionArgs] = None,
description: Optional[str] = None,
name: Optional[str] = None,
network_firewall_policy_id: Optional[str] = None,
parent_resource_id: Optional[str] = None,
position: Optional[NetworkFirewallPolicyNatRulePositionArgs] = None,
priority_order: Optional[str] = None,
type: Optional[str] = None) -> NetworkFirewallPolicyNatRulefunc GetNetworkFirewallPolicyNatRule(ctx *Context, name string, id IDInput, state *NetworkFirewallPolicyNatRuleState, opts ...ResourceOption) (*NetworkFirewallPolicyNatRule, error)public static NetworkFirewallPolicyNatRule Get(string name, Input<string> id, NetworkFirewallPolicyNatRuleState? state, CustomResourceOptions? opts = null)public static NetworkFirewallPolicyNatRule get(String name, Output<String> id, NetworkFirewallPolicyNatRuleState state, CustomResourceOptions options)resources: _: type: oci:NetworkFirewall:NetworkFirewallPolicyNatRule get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Action string
- (Updatable) action:
- DIPP_SRC_NAT - Dynamic-ip-port source NAT.
- Condition
Network
Firewall Policy Nat Rule Condition - (Updatable) Match criteria used in NAT Rule used on the firewall policy.
- Description string
- (Updatable) Description of a NAT rule. This field can be used to add additional info.
- Name string
- Name for the NAT rule, must be unique within the policy.
- Network
Firewall stringPolicy Id - Unique Network Firewall Policy identifier
- Parent
Resource stringId - OCID of the Network Firewall Policy this decryption profile belongs to.
- Position
Network
Firewall Policy Nat Rule Position - (Updatable) An object which defines the position of the rule.
- Priority
Order string - The priority order in which this rule should be evaluated
- Type string
(Updatable) NAT type:
- NATV4 - NATV4 type NAT.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Action string
- (Updatable) action:
- DIPP_SRC_NAT - Dynamic-ip-port source NAT.
- Condition
Network
Firewall Policy Nat Rule Condition Args - (Updatable) Match criteria used in NAT Rule used on the firewall policy.
- Description string
- (Updatable) Description of a NAT rule. This field can be used to add additional info.
- Name string
- Name for the NAT rule, must be unique within the policy.
- Network
Firewall stringPolicy Id - Unique Network Firewall Policy identifier
- Parent
Resource stringId - OCID of the Network Firewall Policy this decryption profile belongs to.
- Position
Network
Firewall Policy Nat Rule Position Args - (Updatable) An object which defines the position of the rule.
- Priority
Order string - The priority order in which this rule should be evaluated
- Type string
(Updatable) NAT type:
- NATV4 - NATV4 type NAT.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- action String
- (Updatable) action:
- DIPP_SRC_NAT - Dynamic-ip-port source NAT.
- condition
Policy
Nat Rule Condition - (Updatable) Match criteria used in NAT Rule used on the firewall policy.
- description String
- (Updatable) Description of a NAT rule. This field can be used to add additional info.
- name String
- Name for the NAT rule, must be unique within the policy.
- network
Firewall StringPolicy Id - Unique Network Firewall Policy identifier
- parent
Resource StringId - OCID of the Network Firewall Policy this decryption profile belongs to.
- position
Policy
Nat Rule Position - (Updatable) An object which defines the position of the rule.
- priority
Order String - The priority order in which this rule should be evaluated
- type String
(Updatable) NAT type:
- NATV4 - NATV4 type NAT.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- action string
- (Updatable) action:
- DIPP_SRC_NAT - Dynamic-ip-port source NAT.
- condition
Network
Firewall Policy Nat Rule Condition - (Updatable) Match criteria used in NAT Rule used on the firewall policy.
- description string
- (Updatable) Description of a NAT rule. This field can be used to add additional info.
- name string
- Name for the NAT rule, must be unique within the policy.
- network
Firewall stringPolicy Id - Unique Network Firewall Policy identifier
- parent
Resource stringId - OCID of the Network Firewall Policy this decryption profile belongs to.
- position
Network
Firewall Policy Nat Rule Position - (Updatable) An object which defines the position of the rule.
- priority
Order string - The priority order in which this rule should be evaluated
- type string
(Updatable) NAT type:
- NATV4 - NATV4 type NAT.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- action str
- (Updatable) action:
- DIPP_SRC_NAT - Dynamic-ip-port source NAT.
- condition
Network
Firewall Policy Nat Rule Condition Args - (Updatable) Match criteria used in NAT Rule used on the firewall policy.
- description str
- (Updatable) Description of a NAT rule. This field can be used to add additional info.
- name str
- Name for the NAT rule, must be unique within the policy.
- network_
firewall_ strpolicy_ id - Unique Network Firewall Policy identifier
- parent_
resource_ strid - OCID of the Network Firewall Policy this decryption profile belongs to.
- position
Network
Firewall Policy Nat Rule Position Args - (Updatable) An object which defines the position of the rule.
- priority_
order str - The priority order in which this rule should be evaluated
- type str
(Updatable) NAT type:
- NATV4 - NATV4 type NAT.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- action String
- (Updatable) action:
- DIPP_SRC_NAT - Dynamic-ip-port source NAT.
- condition Property Map
- (Updatable) Match criteria used in NAT Rule used on the firewall policy.
- description String
- (Updatable) Description of a NAT rule. This field can be used to add additional info.
- name String
- Name for the NAT rule, must be unique within the policy.
- network
Firewall StringPolicy Id - Unique Network Firewall Policy identifier
- parent
Resource StringId - OCID of the Network Firewall Policy this decryption profile belongs to.
- position Property Map
- (Updatable) An object which defines the position of the rule.
- priority
Order String - The priority order in which this rule should be evaluated
- type String
(Updatable) NAT type:
- NATV4 - NATV4 type NAT.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
Supporting Types
NetworkFirewallPolicyNatRuleCondition, NetworkFirewallPolicyNatRuleConditionArgs
- Destination
Addresses List<string> - (Updatable) An array of IP address list names to be evaluated against the traffic destination address.
- Service string
- (Updatable) A Service name to be evaluated against the traffic protocol and protocol-specific parameters.
- Source
Addresses List<string> - (Updatable) An array of IP address list names to be evaluated against the traffic source address.
- Destination
Addresses []string - (Updatable) An array of IP address list names to be evaluated against the traffic destination address.
- Service string
- (Updatable) A Service name to be evaluated against the traffic protocol and protocol-specific parameters.
- Source
Addresses []string - (Updatable) An array of IP address list names to be evaluated against the traffic source address.
- destination
Addresses List<String> - (Updatable) An array of IP address list names to be evaluated against the traffic destination address.
- service String
- (Updatable) A Service name to be evaluated against the traffic protocol and protocol-specific parameters.
- source
Addresses List<String> - (Updatable) An array of IP address list names to be evaluated against the traffic source address.
- destination
Addresses string[] - (Updatable) An array of IP address list names to be evaluated against the traffic destination address.
- service string
- (Updatable) A Service name to be evaluated against the traffic protocol and protocol-specific parameters.
- source
Addresses string[] - (Updatable) An array of IP address list names to be evaluated against the traffic source address.
- destination_
addresses Sequence[str] - (Updatable) An array of IP address list names to be evaluated against the traffic destination address.
- service str
- (Updatable) A Service name to be evaluated against the traffic protocol and protocol-specific parameters.
- source_
addresses Sequence[str] - (Updatable) An array of IP address list names to be evaluated against the traffic source address.
- destination
Addresses List<String> - (Updatable) An array of IP address list names to be evaluated against the traffic destination address.
- service String
- (Updatable) A Service name to be evaluated against the traffic protocol and protocol-specific parameters.
- source
Addresses List<String> - (Updatable) An array of IP address list names to be evaluated against the traffic source address.
NetworkFirewallPolicyNatRulePosition, NetworkFirewallPolicyNatRulePositionArgs
- After
Rule string - (Updatable) Identifier for rule after which this rule lies.
- Before
Rule string - (Updatable) Identifier for rule before which this rule lies.
- After
Rule string - (Updatable) Identifier for rule after which this rule lies.
- Before
Rule string - (Updatable) Identifier for rule before which this rule lies.
- after
Rule String - (Updatable) Identifier for rule after which this rule lies.
- before
Rule String - (Updatable) Identifier for rule before which this rule lies.
- after
Rule string - (Updatable) Identifier for rule after which this rule lies.
- before
Rule string - (Updatable) Identifier for rule before which this rule lies.
- after_
rule str - (Updatable) Identifier for rule after which this rule lies.
- before_
rule str - (Updatable) Identifier for rule before which this rule lies.
- after
Rule String - (Updatable) Identifier for rule after which this rule lies.
- before
Rule String - (Updatable) Identifier for rule before which this rule lies.
Import
NetworkFirewallPolicyNatRules can be imported using the id, e.g.
$ pulumi import oci:NetworkFirewall/networkFirewallPolicyNatRule:NetworkFirewallPolicyNatRule test_network_firewall_policy_nat_rule "networkFirewallPolicies/{networkFirewallPolicyId}/natRules/{natRuleName}"
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- oci pulumi/pulumi-oci
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
ociTerraform Provider.