panos 2.0.0, Apr 15 25

panos 2.0.0 published on Tuesday, Apr 15, 2025 by paloaltonetworks

paloaltonetworks/terraform-provider-panos

panos.getSecurityPolicy

Explore with Pulumi AI

panos 2.0.0 published on Tuesday, Apr 15, 2025 by paloaltonetworks

paloaltonetworks/terraform-provider-panos

Using getSecurityPolicy

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getSecurityPolicy(args: GetSecurityPolicyArgs, opts?: InvokeOptions): Promise<GetSecurityPolicyResult>
function getSecurityPolicyOutput(args: GetSecurityPolicyOutputArgs, opts?: InvokeOptions): Output<GetSecurityPolicyResult>

def get_security_policy(location: Optional[GetSecurityPolicyLocation] = None,
                        rules: Optional[Sequence[GetSecurityPolicyRule]] = None,
                        opts: Optional[InvokeOptions] = None) -> GetSecurityPolicyResult
def get_security_policy_output(location: Optional[pulumi.Input[GetSecurityPolicyLocationArgs]] = None,
                        rules: Optional[pulumi.Input[Sequence[pulumi.Input[GetSecurityPolicyRuleArgs]]]] = None,
                        opts: Optional[InvokeOptions] = None) -> Output[GetSecurityPolicyResult]

func LookupSecurityPolicy(ctx *Context, args *LookupSecurityPolicyArgs, opts ...InvokeOption) (*LookupSecurityPolicyResult, error)
func LookupSecurityPolicyOutput(ctx *Context, args *LookupSecurityPolicyOutputArgs, opts ...InvokeOption) LookupSecurityPolicyResultOutput

> Note: This function is named LookupSecurityPolicy in the Go SDK.

public static class GetSecurityPolicy 
{
    public static Task<GetSecurityPolicyResult> InvokeAsync(GetSecurityPolicyArgs args, InvokeOptions? opts = null)
    public static Output<GetSecurityPolicyResult> Invoke(GetSecurityPolicyInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetSecurityPolicyResult> getSecurityPolicy(GetSecurityPolicyArgs args, InvokeOptions options)
public static Output<GetSecurityPolicyResult> getSecurityPolicy(GetSecurityPolicyArgs args, InvokeOptions options)

fn::invoke:
  function: panos:index/getSecurityPolicy:getSecurityPolicy
  arguments:
    # arguments dictionary

The following arguments are supported:

Location GetSecurityPolicyLocation: The location of this object.
Rules List<GetSecurityPolicyRule>

Location GetSecurityPolicyLocation: The location of this object.
Rules []GetSecurityPolicyRule

location GetSecurityPolicyLocation: The location of this object.
rules List<GetSecurityPolicyRule>

location GetSecurityPolicyLocation: The location of this object.
rules GetSecurityPolicyRule[]

location GetSecurityPolicyLocation: The location of this object.
rules Sequence[GetSecurityPolicyRule]

location Property Map: The location of this object.
rules List<Property Map>

getSecurityPolicy Result

The following output properties are available:

Id string: The provider-assigned unique ID for this managed resource.
Location GetSecurityPolicyLocation: The location of this object.
Rules List<GetSecurityPolicyRule>

Id string: The provider-assigned unique ID for this managed resource.
Location GetSecurityPolicyLocation: The location of this object.
Rules []GetSecurityPolicyRule

id String: The provider-assigned unique ID for this managed resource.
location GetSecurityPolicyLocation: The location of this object.
rules List<GetSecurityPolicyRule>

id string: The provider-assigned unique ID for this managed resource.
location GetSecurityPolicyLocation: The location of this object.
rules GetSecurityPolicyRule[]

id str: The provider-assigned unique ID for this managed resource.
location GetSecurityPolicyLocation: The location of this object.
rules Sequence[GetSecurityPolicyRule]

id String: The provider-assigned unique ID for this managed resource.
location Property Map: The location of this object.
rules List<Property Map>

Supporting Types

GetSecurityPolicyLocation

DeviceGroup GetSecurityPolicyLocationDeviceGroup: Located in a specific device group.
Shared GetSecurityPolicyLocationShared: Located in a shared rulebase
Vsys GetSecurityPolicyLocationVsys: Located in a specific vsys.

DeviceGroup GetSecurityPolicyLocationDeviceGroup: Located in a specific device group.
Shared GetSecurityPolicyLocationShared: Located in a shared rulebase
Vsys GetSecurityPolicyLocationVsys: Located in a specific vsys.

deviceGroup GetSecurityPolicyLocationDeviceGroup: Located in a specific device group.
shared GetSecurityPolicyLocationShared: Located in a shared rulebase
vsys GetSecurityPolicyLocationVsys: Located in a specific vsys.

deviceGroup GetSecurityPolicyLocationDeviceGroup: Located in a specific device group.
shared GetSecurityPolicyLocationShared: Located in a shared rulebase
vsys GetSecurityPolicyLocationVsys: Located in a specific vsys.

device_group GetSecurityPolicyLocationDeviceGroup: Located in a specific device group.
shared GetSecurityPolicyLocationShared: Located in a shared rulebase
vsys GetSecurityPolicyLocationVsys: Located in a specific vsys.

deviceGroup Property Map: Located in a specific device group.
shared Property Map: Located in a shared rulebase
vsys Property Map: Located in a specific vsys.

GetSecurityPolicyLocationDeviceGroup

Name string: The device group.
PanoramaDevice string: The panorama device.
Rulebase string: The rulebase.

Name string: The device group.
PanoramaDevice string: The panorama device.
Rulebase string: The rulebase.

name String: The device group.
panoramaDevice String: The panorama device.
rulebase String: The rulebase.

name string: The device group.
panoramaDevice string: The panorama device.
rulebase string: The rulebase.

name str: The device group.
panorama_device str: The panorama device.
rulebase str: The rulebase.

name String: The device group.
panoramaDevice String: The panorama device.
rulebase String: The rulebase.

GetSecurityPolicyLocationShared

Rulebase string: Rulebase name

Rulebase string: Rulebase name

rulebase String: Rulebase name

rulebase string: Rulebase name

rulebase str: Rulebase name

rulebase String: Rulebase name

GetSecurityPolicyLocationVsys

Name string: The vsys name
NgfwDevice string: The NGFW device

Name string: The vsys name
NgfwDevice string: The NGFW device

name String: The vsys name
ngfwDevice String: The NGFW device

name string: The vsys name
ngfwDevice string: The NGFW device

name str: The vsys name
ngfw_device str: The NGFW device

name String: The vsys name
ngfwDevice String: The NGFW device

GetSecurityPolicyRule

Action string
Applications List<string>
Categories List<string>
Description string
DestinationAddresses List<string>
DestinationHips List<string>
DestinationZones List<string>
DisableInspect bool
DisableServerResponseInspection bool: Disable inspection of server side traffic
Disabled bool: Disable the rule
GroupTag string
IcmpUnreachable bool: Send ICMP unreachable error when action is drop or reset
LogEnd bool: Log at session end (required for certain ACC tables)
LogSetting string
LogStart bool: Log at session start
Name string
NegateDestination bool
NegateSource bool
ProfileSetting GetSecurityPolicyRuleProfileSetting
Qos GetSecurityPolicyRuleQos
RuleType string
Schedule string
Services List<string>
SourceAddresses List<string>
SourceHips List<string>
SourceImeis List<string>
SourceImsis List<string>
SourceNwSlices List<string>
SourceUsers List<string>
SourceZones List<string>
Tags List<string>
Target GetSecurityPolicyRuleTarget

Action string
Applications []string
Categories []string
Description string
DestinationAddresses []string
DestinationHips []string
DestinationZones []string
DisableInspect bool
DisableServerResponseInspection bool: Disable inspection of server side traffic
Disabled bool: Disable the rule
GroupTag string
IcmpUnreachable bool: Send ICMP unreachable error when action is drop or reset
LogEnd bool: Log at session end (required for certain ACC tables)
LogSetting string
LogStart bool: Log at session start
Name string
NegateDestination bool
NegateSource bool
ProfileSetting GetSecurityPolicyRuleProfileSetting
Qos GetSecurityPolicyRuleQos
RuleType string
Schedule string
Services []string
SourceAddresses []string
SourceHips []string
SourceImeis []string
SourceImsis []string
SourceNwSlices []string
SourceUsers []string
SourceZones []string
Tags []string
Target GetSecurityPolicyRuleTarget

action String
applications List<String>
categories List<String>
description String
destinationAddresses List<String>
destinationHips List<String>
destinationZones List<String>
disableInspect Boolean
disableServerResponseInspection Boolean: Disable inspection of server side traffic
disabled Boolean: Disable the rule
groupTag String
icmpUnreachable Boolean: Send ICMP unreachable error when action is drop or reset
logEnd Boolean: Log at session end (required for certain ACC tables)
logSetting String
logStart Boolean: Log at session start
name String
negateDestination Boolean
negateSource Boolean
profileSetting GetSecurityPolicyRuleProfileSetting
qos GetSecurityPolicyRuleQos
ruleType String
schedule String
services List<String>
sourceAddresses List<String>
sourceHips List<String>
sourceImeis List<String>
sourceImsis List<String>
sourceNwSlices List<String>
sourceUsers List<String>
sourceZones List<String>
tags List<String>
target GetSecurityPolicyRuleTarget

action string
applications string[]
categories string[]
description string
destinationAddresses string[]
destinationHips string[]
destinationZones string[]
disableInspect boolean
disableServerResponseInspection boolean: Disable inspection of server side traffic
disabled boolean: Disable the rule
groupTag string
icmpUnreachable boolean: Send ICMP unreachable error when action is drop or reset
logEnd boolean: Log at session end (required for certain ACC tables)
logSetting string
logStart boolean: Log at session start
name string
negateDestination boolean
negateSource boolean
profileSetting GetSecurityPolicyRuleProfileSetting
qos GetSecurityPolicyRuleQos
ruleType string
schedule string
services string[]
sourceAddresses string[]
sourceHips string[]
sourceImeis string[]
sourceImsis string[]
sourceNwSlices string[]
sourceUsers string[]
sourceZones string[]
tags string[]
target GetSecurityPolicyRuleTarget

action str
applications Sequence[str]
categories Sequence[str]
description str
destination_addresses Sequence[str]
destination_hips Sequence[str]
destination_zones Sequence[str]
disable_inspect bool
disable_server_response_inspection bool: Disable inspection of server side traffic
disabled bool: Disable the rule
group_tag str
icmp_unreachable bool: Send ICMP unreachable error when action is drop or reset
log_end bool: Log at session end (required for certain ACC tables)
log_setting str
log_start bool: Log at session start
name str
negate_destination bool
negate_source bool
profile_setting GetSecurityPolicyRuleProfileSetting
qos GetSecurityPolicyRuleQos
rule_type str
schedule str
services Sequence[str]
source_addresses Sequence[str]
source_hips Sequence[str]
source_imeis Sequence[str]
source_imsis Sequence[str]
source_nw_slices Sequence[str]
source_users Sequence[str]
source_zones Sequence[str]
tags Sequence[str]
target GetSecurityPolicyRuleTarget

action String
applications List<String>
categories List<String>
description String
destinationAddresses List<String>
destinationHips List<String>
destinationZones List<String>
disableInspect Boolean
disableServerResponseInspection Boolean: Disable inspection of server side traffic
disabled Boolean: Disable the rule
groupTag String
icmpUnreachable Boolean: Send ICMP unreachable error when action is drop or reset
logEnd Boolean: Log at session end (required for certain ACC tables)
logSetting String
logStart Boolean: Log at session start
name String
negateDestination Boolean
negateSource Boolean
profileSetting Property Map
qos Property Map
ruleType String
schedule String
services List<String>
sourceAddresses List<String>
sourceHips List<String>
sourceImeis List<String>
sourceImsis List<String>
sourceNwSlices List<String>
sourceUsers List<String>
sourceZones List<String>
tags List<String>
target Property Map

GetSecurityPolicyRuleProfileSetting

Groups List<string>
Profiles GetSecurityPolicyRuleProfileSettingProfiles

Groups []string
Profiles GetSecurityPolicyRuleProfileSettingProfiles

groups List<String>
profiles GetSecurityPolicyRuleProfileSettingProfiles

groups string[]
profiles GetSecurityPolicyRuleProfileSettingProfiles

groups Sequence[str]
profiles GetSecurityPolicyRuleProfileSettingProfiles

groups List<String>
profiles Property Map

GetSecurityPolicyRuleProfileSettingProfiles

DataFilterings List<string>
FileBlockings List<string>
Gtps List<string>
Sctps List<string>
Spywares List<string>
UrlFilterings List<string>
Viri List<string>
Vulnerabilities List<string>
WildfireAnalyses List<string>

DataFilterings []string
FileBlockings []string
Gtps []string
Sctps []string
Spywares []string
UrlFilterings []string
Viri []string
Vulnerabilities []string
WildfireAnalyses []string

dataFilterings List<String>
fileBlockings List<String>
gtps List<String>
sctps List<String>
spywares List<String>
urlFilterings List<String>
viri List<String>
vulnerabilities List<String>
wildfireAnalyses List<String>

dataFilterings string[]
fileBlockings string[]
gtps string[]
sctps string[]
spywares string[]
urlFilterings string[]
viri string[]
vulnerabilities string[]
wildfireAnalyses string[]

data_filterings Sequence[str]
file_blockings Sequence[str]
gtps Sequence[str]
sctps Sequence[str]
spywares Sequence[str]
url_filterings Sequence[str]
viri Sequence[str]
vulnerabilities Sequence[str]
wildfire_analyses Sequence[str]

dataFilterings List<String>
fileBlockings List<String>
gtps List<String>
sctps List<String>
spywares List<String>
urlFilterings List<String>
viri List<String>
vulnerabilities List<String>
wildfireAnalyses List<String>

GetSecurityPolicyRuleQos

Marking GetSecurityPolicyRuleQosMarking

Marking GetSecurityPolicyRuleQosMarking

marking GetSecurityPolicyRuleQosMarking

marking GetSecurityPolicyRuleQosMarking

marking GetSecurityPolicyRuleQosMarking

marking Property Map

GetSecurityPolicyRuleQosMarking

FollowC2sFlow GetSecurityPolicyRuleQosMarkingFollowC2sFlow
IpDscp string: IP DSCP
IpPrecedence string: IP Precedence

FollowC2sFlow GetSecurityPolicyRuleQosMarkingFollowC2sFlow
IpDscp string: IP DSCP
IpPrecedence string: IP Precedence

followC2sFlow GetSecurityPolicyRuleQosMarkingFollowC2sFlow
ipDscp String: IP DSCP
ipPrecedence String: IP Precedence

followC2sFlow GetSecurityPolicyRuleQosMarkingFollowC2sFlow
ipDscp string: IP DSCP
ipPrecedence string: IP Precedence

follow_c2s_flow GetSecurityPolicyRuleQosMarkingFollowC2sFlow
ip_dscp str: IP DSCP
ip_precedence str: IP Precedence

followC2sFlow Property Map
ipDscp String: IP DSCP
ipPrecedence String: IP Precedence

GetSecurityPolicyRuleTarget

Devices List<GetSecurityPolicyRuleTargetDevice>
Negate bool: Target to all but these specified devices and tags
Tags List<string>

Devices []GetSecurityPolicyRuleTargetDevice
Negate bool: Target to all but these specified devices and tags
Tags []string

devices List<GetSecurityPolicyRuleTargetDevice>
negate Boolean: Target to all but these specified devices and tags
tags List<String>

devices GetSecurityPolicyRuleTargetDevice[]
negate boolean: Target to all but these specified devices and tags
tags string[]

devices Sequence[GetSecurityPolicyRuleTargetDevice]
negate bool: Target to all but these specified devices and tags
tags Sequence[str]

devices List<Property Map>
negate Boolean: Target to all but these specified devices and tags
tags List<String>

GetSecurityPolicyRuleTargetDevice

Name string
Vsys List<GetSecurityPolicyRuleTargetDeviceVsy>

Name string
Vsys []GetSecurityPolicyRuleTargetDeviceVsy

name String
vsys List<GetSecurityPolicyRuleTargetDeviceVsy>

name string
vsys GetSecurityPolicyRuleTargetDeviceVsy[]

name str
vsys Sequence[GetSecurityPolicyRuleTargetDeviceVsy]

name String
vsys List<Property Map>

GetSecurityPolicyRuleTargetDeviceVsy

Name string

Name string

name String

name string

name str

name String

Package Details

Repository: panos paloaltonetworks/terraform-provider-panos
License
Notes: This Pulumi package is based on the panos Terraform Provider.

panos 2.0.0 published on Tuesday, Apr 15, 2025 by paloaltonetworks

paloaltonetworks/terraform-provider-panos

panos.getSecurityPolicy

On this page

On this page

Using getSecurityPolicy

getSecurityPolicy Result

Supporting Types

GetSecurityPolicyLocation

GetSecurityPolicyLocationDeviceGroup

GetSecurityPolicyLocationShared

GetSecurityPolicyLocationVsys

GetSecurityPolicyRule

GetSecurityPolicyRuleProfileSetting

GetSecurityPolicyRuleProfileSettingProfiles

GetSecurityPolicyRuleQos

GetSecurityPolicyRuleQosMarking

GetSecurityPolicyRuleTarget

GetSecurityPolicyRuleTargetDevice

GetSecurityPolicyRuleTargetDeviceVsy

Package Details

On this page

On this page