Docs Home
panos 2.0.0 published on Tuesday, Apr 15, 2025 by paloaltonetworks
panos.IpsecTunnel
Explore with Pulumi AI
panos 2.0.0 published on Tuesday, Apr 15, 2025 by paloaltonetworks
Create IpsecTunnel Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new IpsecTunnel(name: string, args: IpsecTunnelArgs, opts?: CustomResourceOptions);@overload
def IpsecTunnel(resource_name: str,
args: IpsecTunnelArgs,
opts: Optional[ResourceOptions] = None)
@overload
def IpsecTunnel(resource_name: str,
opts: Optional[ResourceOptions] = None,
location: Optional[IpsecTunnelLocationArgs] = None,
global_protect_satellite: Optional[IpsecTunnelGlobalProtectSatelliteArgs] = None,
anti_replay_window: Optional[str] = None,
comment: Optional[str] = None,
copy_flow_label: Optional[bool] = None,
copy_tos: Optional[bool] = None,
disabled: Optional[bool] = None,
auto_key: Optional[IpsecTunnelAutoKeyArgs] = None,
ipsec_mode: Optional[str] = None,
enable_gre_encapsulation: Optional[bool] = None,
ipv6: Optional[bool] = None,
anti_replay: Optional[bool] = None,
manual_key: Optional[IpsecTunnelManualKeyArgs] = None,
name: Optional[str] = None,
tunnel_interface: Optional[str] = None,
tunnel_monitor: Optional[IpsecTunnelTunnelMonitorArgs] = None)func NewIpsecTunnel(ctx *Context, name string, args IpsecTunnelArgs, opts ...ResourceOption) (*IpsecTunnel, error)public IpsecTunnel(string name, IpsecTunnelArgs args, CustomResourceOptions? opts = null)
public IpsecTunnel(String name, IpsecTunnelArgs args)
public IpsecTunnel(String name, IpsecTunnelArgs args, CustomResourceOptions options)
type: panos:IpsecTunnel
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args IpsecTunnelArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args IpsecTunnelArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args IpsecTunnelArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args IpsecTunnelArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args IpsecTunnelArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var ipsecTunnelResource = new Panos.IpsecTunnel("ipsecTunnelResource", new()
{
Location = new Panos.Inputs.IpsecTunnelLocationArgs
{
Template = new Panos.Inputs.IpsecTunnelLocationTemplateArgs
{
Name = "string",
NgfwDevice = "string",
PanoramaDevice = "string",
},
TemplateStack = new Panos.Inputs.IpsecTunnelLocationTemplateStackArgs
{
Name = "string",
NgfwDevice = "string",
PanoramaDevice = "string",
},
},
GlobalProtectSatellite = new Panos.Inputs.IpsecTunnelGlobalProtectSatelliteArgs
{
ExternalCa = new Panos.Inputs.IpsecTunnelGlobalProtectSatelliteExternalCaArgs
{
CertificateProfile = "string",
LocalCertificate = "string",
},
Ipv6Preferred = false,
LocalAddress = new Panos.Inputs.IpsecTunnelGlobalProtectSatelliteLocalAddressArgs
{
FloatingIp = new Panos.Inputs.IpsecTunnelGlobalProtectSatelliteLocalAddressFloatingIpArgs
{
Ipv4 = "string",
Ipv6 = "string",
},
Interface = "string",
Ip = new Panos.Inputs.IpsecTunnelGlobalProtectSatelliteLocalAddressIpArgs
{
Ipv4 = "string",
Ipv6 = "string",
},
},
PortalAddress = "string",
PublishConnectedRoutes = new Panos.Inputs.IpsecTunnelGlobalProtectSatellitePublishConnectedRoutesArgs
{
Enable = false,
},
PublishRoutes = new[]
{
"string",
},
},
AntiReplayWindow = "string",
Comment = "string",
CopyFlowLabel = false,
CopyTos = false,
Disabled = false,
AutoKey = new Panos.Inputs.IpsecTunnelAutoKeyArgs
{
IkeGateways = new[]
{
new Panos.Inputs.IpsecTunnelAutoKeyIkeGatewayArgs
{
Name = "string",
},
},
IpsecCryptoProfile = "string",
ProxyIdV6s = new[]
{
new Panos.Inputs.IpsecTunnelAutoKeyProxyIdV6Args
{
Name = "string",
Local = "string",
Protocol = new Panos.Inputs.IpsecTunnelAutoKeyProxyIdV6ProtocolArgs
{
Any = null,
Number = 0,
Tcp = new Panos.Inputs.IpsecTunnelAutoKeyProxyIdV6ProtocolTcpArgs
{
LocalPort = 0,
RemotePort = 0,
},
Udp = new Panos.Inputs.IpsecTunnelAutoKeyProxyIdV6ProtocolUdpArgs
{
LocalPort = 0,
RemotePort = 0,
},
},
Remote = "string",
},
},
ProxyIds = new[]
{
new Panos.Inputs.IpsecTunnelAutoKeyProxyIdArgs
{
Name = "string",
Local = "string",
Protocol = new Panos.Inputs.IpsecTunnelAutoKeyProxyIdProtocolArgs
{
Any = null,
Number = 0,
Tcp = new Panos.Inputs.IpsecTunnelAutoKeyProxyIdProtocolTcpArgs
{
LocalPort = 0,
RemotePort = 0,
},
Udp = new Panos.Inputs.IpsecTunnelAutoKeyProxyIdProtocolUdpArgs
{
LocalPort = 0,
RemotePort = 0,
},
},
Remote = "string",
},
},
},
IpsecMode = "string",
EnableGreEncapsulation = false,
Ipv6 = false,
AntiReplay = false,
ManualKey = new Panos.Inputs.IpsecTunnelManualKeyArgs
{
Ah = new Panos.Inputs.IpsecTunnelManualKeyAhArgs
{
Md5 = new Panos.Inputs.IpsecTunnelManualKeyAhMd5Args
{
Key = "string",
},
Sha1 = new Panos.Inputs.IpsecTunnelManualKeyAhSha1Args
{
Key = "string",
},
Sha256 = new Panos.Inputs.IpsecTunnelManualKeyAhSha256Args
{
Key = "string",
},
Sha384 = new Panos.Inputs.IpsecTunnelManualKeyAhSha384Args
{
Key = "string",
},
Sha512 = new Panos.Inputs.IpsecTunnelManualKeyAhSha512Args
{
Key = "string",
},
},
Esp = new Panos.Inputs.IpsecTunnelManualKeyEspArgs
{
Authentication = new Panos.Inputs.IpsecTunnelManualKeyEspAuthenticationArgs
{
Md5 = new Panos.Inputs.IpsecTunnelManualKeyEspAuthenticationMd5Args
{
Key = "string",
},
None = null,
Sha1 = new Panos.Inputs.IpsecTunnelManualKeyEspAuthenticationSha1Args
{
Key = "string",
},
Sha256 = new Panos.Inputs.IpsecTunnelManualKeyEspAuthenticationSha256Args
{
Key = "string",
},
Sha384 = new Panos.Inputs.IpsecTunnelManualKeyEspAuthenticationSha384Args
{
Key = "string",
},
Sha512 = new Panos.Inputs.IpsecTunnelManualKeyEspAuthenticationSha512Args
{
Key = "string",
},
},
Encryption = new Panos.Inputs.IpsecTunnelManualKeyEspEncryptionArgs
{
Algorithm = "string",
Key = "string",
},
},
LocalAddress = new Panos.Inputs.IpsecTunnelManualKeyLocalAddressArgs
{
FloatingIp = "string",
Interface = "string",
Ip = "string",
},
LocalSpi = "string",
PeerAddress = new Panos.Inputs.IpsecTunnelManualKeyPeerAddressArgs
{
Ip = "string",
},
RemoteSpi = "string",
},
Name = "string",
TunnelInterface = "string",
TunnelMonitor = new Panos.Inputs.IpsecTunnelTunnelMonitorArgs
{
DestinationIp = "string",
Enable = false,
ProxyId = "string",
TunnelMonitorProfile = "string",
},
});
example, err := panos.NewIpsecTunnel(ctx, "ipsecTunnelResource", &panos.IpsecTunnelArgs{
Location: &panos.IpsecTunnelLocationArgs{
Template: &panos.IpsecTunnelLocationTemplateArgs{
Name: pulumi.String("string"),
NgfwDevice: pulumi.String("string"),
PanoramaDevice: pulumi.String("string"),
},
TemplateStack: &panos.IpsecTunnelLocationTemplateStackArgs{
Name: pulumi.String("string"),
NgfwDevice: pulumi.String("string"),
PanoramaDevice: pulumi.String("string"),
},
},
GlobalProtectSatellite: &panos.IpsecTunnelGlobalProtectSatelliteArgs{
ExternalCa: &panos.IpsecTunnelGlobalProtectSatelliteExternalCaArgs{
CertificateProfile: pulumi.String("string"),
LocalCertificate: pulumi.String("string"),
},
Ipv6Preferred: pulumi.Bool(false),
LocalAddress: &panos.IpsecTunnelGlobalProtectSatelliteLocalAddressArgs{
FloatingIp: &panos.IpsecTunnelGlobalProtectSatelliteLocalAddressFloatingIpArgs{
Ipv4: pulumi.String("string"),
Ipv6: pulumi.String("string"),
},
Interface: pulumi.String("string"),
Ip: &panos.IpsecTunnelGlobalProtectSatelliteLocalAddressIpArgs{
Ipv4: pulumi.String("string"),
Ipv6: pulumi.String("string"),
},
},
PortalAddress: pulumi.String("string"),
PublishConnectedRoutes: &panos.IpsecTunnelGlobalProtectSatellitePublishConnectedRoutesArgs{
Enable: pulumi.Bool(false),
},
PublishRoutes: pulumi.StringArray{
pulumi.String("string"),
},
},
AntiReplayWindow: pulumi.String("string"),
Comment: pulumi.String("string"),
CopyFlowLabel: pulumi.Bool(false),
CopyTos: pulumi.Bool(false),
Disabled: pulumi.Bool(false),
AutoKey: &panos.IpsecTunnelAutoKeyArgs{
IkeGateways: panos.IpsecTunnelAutoKeyIkeGatewayArray{
&panos.IpsecTunnelAutoKeyIkeGatewayArgs{
Name: pulumi.String("string"),
},
},
IpsecCryptoProfile: pulumi.String("string"),
ProxyIdV6s: panos.IpsecTunnelAutoKeyProxyIdV6Array{
&panos.IpsecTunnelAutoKeyProxyIdV6Args{
Name: pulumi.String("string"),
Local: pulumi.String("string"),
Protocol: &panos.IpsecTunnelAutoKeyProxyIdV6ProtocolArgs{
Any: &panos.IpsecTunnelAutoKeyProxyIdV6ProtocolAnyArgs{},
Number: pulumi.Float64(0),
Tcp: &panos.IpsecTunnelAutoKeyProxyIdV6ProtocolTcpArgs{
LocalPort: pulumi.Float64(0),
RemotePort: pulumi.Float64(0),
},
Udp: &panos.IpsecTunnelAutoKeyProxyIdV6ProtocolUdpArgs{
LocalPort: pulumi.Float64(0),
RemotePort: pulumi.Float64(0),
},
},
Remote: pulumi.String("string"),
},
},
ProxyIds: panos.IpsecTunnelAutoKeyProxyIdArray{
&panos.IpsecTunnelAutoKeyProxyIdArgs{
Name: pulumi.String("string"),
Local: pulumi.String("string"),
Protocol: &panos.IpsecTunnelAutoKeyProxyIdProtocolArgs{
Any: &panos.IpsecTunnelAutoKeyProxyIdProtocolAnyArgs{},
Number: pulumi.Float64(0),
Tcp: &panos.IpsecTunnelAutoKeyProxyIdProtocolTcpArgs{
LocalPort: pulumi.Float64(0),
RemotePort: pulumi.Float64(0),
},
Udp: &panos.IpsecTunnelAutoKeyProxyIdProtocolUdpArgs{
LocalPort: pulumi.Float64(0),
RemotePort: pulumi.Float64(0),
},
},
Remote: pulumi.String("string"),
},
},
},
IpsecMode: pulumi.String("string"),
EnableGreEncapsulation: pulumi.Bool(false),
Ipv6: pulumi.Bool(false),
AntiReplay: pulumi.Bool(false),
ManualKey: &panos.IpsecTunnelManualKeyArgs{
Ah: &panos.IpsecTunnelManualKeyAhArgs{
Md5: &panos.IpsecTunnelManualKeyAhMd5Args{
Key: pulumi.String("string"),
},
Sha1: &panos.IpsecTunnelManualKeyAhSha1Args{
Key: pulumi.String("string"),
},
Sha256: &panos.IpsecTunnelManualKeyAhSha256Args{
Key: pulumi.String("string"),
},
Sha384: &panos.IpsecTunnelManualKeyAhSha384Args{
Key: pulumi.String("string"),
},
Sha512: &panos.IpsecTunnelManualKeyAhSha512Args{
Key: pulumi.String("string"),
},
},
Esp: &panos.IpsecTunnelManualKeyEspArgs{
Authentication: &panos.IpsecTunnelManualKeyEspAuthenticationArgs{
Md5: &panos.IpsecTunnelManualKeyEspAuthenticationMd5Args{
Key: pulumi.String("string"),
},
None: &panos.IpsecTunnelManualKeyEspAuthenticationNoneArgs{},
Sha1: &panos.IpsecTunnelManualKeyEspAuthenticationSha1Args{
Key: pulumi.String("string"),
},
Sha256: &panos.IpsecTunnelManualKeyEspAuthenticationSha256Args{
Key: pulumi.String("string"),
},
Sha384: &panos.IpsecTunnelManualKeyEspAuthenticationSha384Args{
Key: pulumi.String("string"),
},
Sha512: &panos.IpsecTunnelManualKeyEspAuthenticationSha512Args{
Key: pulumi.String("string"),
},
},
Encryption: &panos.IpsecTunnelManualKeyEspEncryptionArgs{
Algorithm: pulumi.String("string"),
Key: pulumi.String("string"),
},
},
LocalAddress: &panos.IpsecTunnelManualKeyLocalAddressArgs{
FloatingIp: pulumi.String("string"),
Interface: pulumi.String("string"),
Ip: pulumi.String("string"),
},
LocalSpi: pulumi.String("string"),
PeerAddress: &panos.IpsecTunnelManualKeyPeerAddressArgs{
Ip: pulumi.String("string"),
},
RemoteSpi: pulumi.String("string"),
},
Name: pulumi.String("string"),
TunnelInterface: pulumi.String("string"),
TunnelMonitor: &panos.IpsecTunnelTunnelMonitorArgs{
DestinationIp: pulumi.String("string"),
Enable: pulumi.Bool(false),
ProxyId: pulumi.String("string"),
TunnelMonitorProfile: pulumi.String("string"),
},
})
var ipsecTunnelResource = new IpsecTunnel("ipsecTunnelResource", IpsecTunnelArgs.builder()
.location(IpsecTunnelLocationArgs.builder()
.template(IpsecTunnelLocationTemplateArgs.builder()
.name("string")
.ngfwDevice("string")
.panoramaDevice("string")
.build())
.templateStack(IpsecTunnelLocationTemplateStackArgs.builder()
.name("string")
.ngfwDevice("string")
.panoramaDevice("string")
.build())
.build())
.globalProtectSatellite(IpsecTunnelGlobalProtectSatelliteArgs.builder()
.externalCa(IpsecTunnelGlobalProtectSatelliteExternalCaArgs.builder()
.certificateProfile("string")
.localCertificate("string")
.build())
.ipv6Preferred(false)
.localAddress(IpsecTunnelGlobalProtectSatelliteLocalAddressArgs.builder()
.floatingIp(IpsecTunnelGlobalProtectSatelliteLocalAddressFloatingIpArgs.builder()
.ipv4("string")
.ipv6("string")
.build())
.interface_("string")
.ip(IpsecTunnelGlobalProtectSatelliteLocalAddressIpArgs.builder()
.ipv4("string")
.ipv6("string")
.build())
.build())
.portalAddress("string")
.publishConnectedRoutes(IpsecTunnelGlobalProtectSatellitePublishConnectedRoutesArgs.builder()
.enable(false)
.build())
.publishRoutes("string")
.build())
.antiReplayWindow("string")
.comment("string")
.copyFlowLabel(false)
.copyTos(false)
.disabled(false)
.autoKey(IpsecTunnelAutoKeyArgs.builder()
.ikeGateways(IpsecTunnelAutoKeyIkeGatewayArgs.builder()
.name("string")
.build())
.ipsecCryptoProfile("string")
.proxyIdV6s(IpsecTunnelAutoKeyProxyIdV6Args.builder()
.name("string")
.local("string")
.protocol(IpsecTunnelAutoKeyProxyIdV6ProtocolArgs.builder()
.any()
.number(0)
.tcp(IpsecTunnelAutoKeyProxyIdV6ProtocolTcpArgs.builder()
.localPort(0)
.remotePort(0)
.build())
.udp(IpsecTunnelAutoKeyProxyIdV6ProtocolUdpArgs.builder()
.localPort(0)
.remotePort(0)
.build())
.build())
.remote("string")
.build())
.proxyIds(IpsecTunnelAutoKeyProxyIdArgs.builder()
.name("string")
.local("string")
.protocol(IpsecTunnelAutoKeyProxyIdProtocolArgs.builder()
.any()
.number(0)
.tcp(IpsecTunnelAutoKeyProxyIdProtocolTcpArgs.builder()
.localPort(0)
.remotePort(0)
.build())
.udp(IpsecTunnelAutoKeyProxyIdProtocolUdpArgs.builder()
.localPort(0)
.remotePort(0)
.build())
.build())
.remote("string")
.build())
.build())
.ipsecMode("string")
.enableGreEncapsulation(false)
.ipv6(false)
.antiReplay(false)
.manualKey(IpsecTunnelManualKeyArgs.builder()
.ah(IpsecTunnelManualKeyAhArgs.builder()
.md5(IpsecTunnelManualKeyAhMd5Args.builder()
.key("string")
.build())
.sha1(IpsecTunnelManualKeyAhSha1Args.builder()
.key("string")
.build())
.sha256(IpsecTunnelManualKeyAhSha256Args.builder()
.key("string")
.build())
.sha384(IpsecTunnelManualKeyAhSha384Args.builder()
.key("string")
.build())
.sha512(IpsecTunnelManualKeyAhSha512Args.builder()
.key("string")
.build())
.build())
.esp(IpsecTunnelManualKeyEspArgs.builder()
.authentication(IpsecTunnelManualKeyEspAuthenticationArgs.builder()
.md5(IpsecTunnelManualKeyEspAuthenticationMd5Args.builder()
.key("string")
.build())
.none()
.sha1(IpsecTunnelManualKeyEspAuthenticationSha1Args.builder()
.key("string")
.build())
.sha256(IpsecTunnelManualKeyEspAuthenticationSha256Args.builder()
.key("string")
.build())
.sha384(IpsecTunnelManualKeyEspAuthenticationSha384Args.builder()
.key("string")
.build())
.sha512(IpsecTunnelManualKeyEspAuthenticationSha512Args.builder()
.key("string")
.build())
.build())
.encryption(IpsecTunnelManualKeyEspEncryptionArgs.builder()
.algorithm("string")
.key("string")
.build())
.build())
.localAddress(IpsecTunnelManualKeyLocalAddressArgs.builder()
.floatingIp("string")
.interface_("string")
.ip("string")
.build())
.localSpi("string")
.peerAddress(IpsecTunnelManualKeyPeerAddressArgs.builder()
.ip("string")
.build())
.remoteSpi("string")
.build())
.name("string")
.tunnelInterface("string")
.tunnelMonitor(IpsecTunnelTunnelMonitorArgs.builder()
.destinationIp("string")
.enable(false)
.proxyId("string")
.tunnelMonitorProfile("string")
.build())
.build());
ipsec_tunnel_resource = panos.IpsecTunnel("ipsecTunnelResource",
location={
"template": {
"name": "string",
"ngfw_device": "string",
"panorama_device": "string",
},
"template_stack": {
"name": "string",
"ngfw_device": "string",
"panorama_device": "string",
},
},
global_protect_satellite={
"external_ca": {
"certificate_profile": "string",
"local_certificate": "string",
},
"ipv6_preferred": False,
"local_address": {
"floating_ip": {
"ipv4": "string",
"ipv6": "string",
},
"interface": "string",
"ip": {
"ipv4": "string",
"ipv6": "string",
},
},
"portal_address": "string",
"publish_connected_routes": {
"enable": False,
},
"publish_routes": ["string"],
},
anti_replay_window="string",
comment="string",
copy_flow_label=False,
copy_tos=False,
disabled=False,
auto_key={
"ike_gateways": [{
"name": "string",
}],
"ipsec_crypto_profile": "string",
"proxy_id_v6s": [{
"name": "string",
"local": "string",
"protocol": {
"any": {},
"number": 0,
"tcp": {
"local_port": 0,
"remote_port": 0,
},
"udp": {
"local_port": 0,
"remote_port": 0,
},
},
"remote": "string",
}],
"proxy_ids": [{
"name": "string",
"local": "string",
"protocol": {
"any": {},
"number": 0,
"tcp": {
"local_port": 0,
"remote_port": 0,
},
"udp": {
"local_port": 0,
"remote_port": 0,
},
},
"remote": "string",
}],
},
ipsec_mode="string",
enable_gre_encapsulation=False,
ipv6=False,
anti_replay=False,
manual_key={
"ah": {
"md5": {
"key": "string",
},
"sha1": {
"key": "string",
},
"sha256": {
"key": "string",
},
"sha384": {
"key": "string",
},
"sha512": {
"key": "string",
},
},
"esp": {
"authentication": {
"md5": {
"key": "string",
},
"none": {},
"sha1": {
"key": "string",
},
"sha256": {
"key": "string",
},
"sha384": {
"key": "string",
},
"sha512": {
"key": "string",
},
},
"encryption": {
"algorithm": "string",
"key": "string",
},
},
"local_address": {
"floating_ip": "string",
"interface": "string",
"ip": "string",
},
"local_spi": "string",
"peer_address": {
"ip": "string",
},
"remote_spi": "string",
},
name="string",
tunnel_interface="string",
tunnel_monitor={
"destination_ip": "string",
"enable": False,
"proxy_id": "string",
"tunnel_monitor_profile": "string",
})
const ipsecTunnelResource = new panos.IpsecTunnel("ipsecTunnelResource", {
location: {
template: {
name: "string",
ngfwDevice: "string",
panoramaDevice: "string",
},
templateStack: {
name: "string",
ngfwDevice: "string",
panoramaDevice: "string",
},
},
globalProtectSatellite: {
externalCa: {
certificateProfile: "string",
localCertificate: "string",
},
ipv6Preferred: false,
localAddress: {
floatingIp: {
ipv4: "string",
ipv6: "string",
},
"interface": "string",
ip: {
ipv4: "string",
ipv6: "string",
},
},
portalAddress: "string",
publishConnectedRoutes: {
enable: false,
},
publishRoutes: ["string"],
},
antiReplayWindow: "string",
comment: "string",
copyFlowLabel: false,
copyTos: false,
disabled: false,
autoKey: {
ikeGateways: [{
name: "string",
}],
ipsecCryptoProfile: "string",
proxyIdV6s: [{
name: "string",
local: "string",
protocol: {
any: {},
number: 0,
tcp: {
localPort: 0,
remotePort: 0,
},
udp: {
localPort: 0,
remotePort: 0,
},
},
remote: "string",
}],
proxyIds: [{
name: "string",
local: "string",
protocol: {
any: {},
number: 0,
tcp: {
localPort: 0,
remotePort: 0,
},
udp: {
localPort: 0,
remotePort: 0,
},
},
remote: "string",
}],
},
ipsecMode: "string",
enableGreEncapsulation: false,
ipv6: false,
antiReplay: false,
manualKey: {
ah: {
md5: {
key: "string",
},
sha1: {
key: "string",
},
sha256: {
key: "string",
},
sha384: {
key: "string",
},
sha512: {
key: "string",
},
},
esp: {
authentication: {
md5: {
key: "string",
},
none: {},
sha1: {
key: "string",
},
sha256: {
key: "string",
},
sha384: {
key: "string",
},
sha512: {
key: "string",
},
},
encryption: {
algorithm: "string",
key: "string",
},
},
localAddress: {
floatingIp: "string",
"interface": "string",
ip: "string",
},
localSpi: "string",
peerAddress: {
ip: "string",
},
remoteSpi: "string",
},
name: "string",
tunnelInterface: "string",
tunnelMonitor: {
destinationIp: "string",
enable: false,
proxyId: "string",
tunnelMonitorProfile: "string",
},
});
type: panos:IpsecTunnel
properties:
antiReplay: false
antiReplayWindow: string
autoKey:
ikeGateways:
- name: string
ipsecCryptoProfile: string
proxyIdV6s:
- local: string
name: string
protocol:
any: {}
number: 0
tcp:
localPort: 0
remotePort: 0
udp:
localPort: 0
remotePort: 0
remote: string
proxyIds:
- local: string
name: string
protocol:
any: {}
number: 0
tcp:
localPort: 0
remotePort: 0
udp:
localPort: 0
remotePort: 0
remote: string
comment: string
copyFlowLabel: false
copyTos: false
disabled: false
enableGreEncapsulation: false
globalProtectSatellite:
externalCa:
certificateProfile: string
localCertificate: string
ipv6Preferred: false
localAddress:
floatingIp:
ipv4: string
ipv6: string
interface: string
ip:
ipv4: string
ipv6: string
portalAddress: string
publishConnectedRoutes:
enable: false
publishRoutes:
- string
ipsecMode: string
ipv6: false
location:
template:
name: string
ngfwDevice: string
panoramaDevice: string
templateStack:
name: string
ngfwDevice: string
panoramaDevice: string
manualKey:
ah:
md5:
key: string
sha1:
key: string
sha256:
key: string
sha384:
key: string
sha512:
key: string
esp:
authentication:
md5:
key: string
none: {}
sha1:
key: string
sha256:
key: string
sha384:
key: string
sha512:
key: string
encryption:
algorithm: string
key: string
localAddress:
floatingIp: string
interface: string
ip: string
localSpi: string
peerAddress:
ip: string
remoteSpi: string
name: string
tunnelInterface: string
tunnelMonitor:
destinationIp: string
enable: false
proxyId: string
tunnelMonitorProfile: string
IpsecTunnel Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The IpsecTunnel resource accepts the following input properties:
- Location
Ipsec
Tunnel Location - The location of this object.
- Anti
Replay bool - Enable Anti-Replay check on this tunnel
- Anti
Replay stringWindow - 64,128,256,512,1024,2048,4096
- Auto
Key IpsecTunnel Auto Key - Comment string
- Copy
Flow boolLabel - Copy IPv6 flow label for 6in6 tunnel from inner packet to IPSec packet (not recommended)
- Copy
Tos bool - Copy IP TOS bits from inner packet to IPSec packet (not recommended)
- Disabled bool
- Disable the IPSec tunnel
- Enable
Gre boolEncapsulation - allow GRE over IPSec
- Global
Protect IpsecSatellite Tunnel Global Protect Satellite - Ipsec
Mode string - Ipv6 bool
- use IPv6 for the IPSec tunnel
- Manual
Key IpsecTunnel Manual Key - Name string
- Tunnel
Interface string - to apply IPSec VPN tunnels to tunnel interface
- Tunnel
Monitor IpsecTunnel Tunnel Monitor
- Location
Ipsec
Tunnel Location Args - The location of this object.
- Anti
Replay bool - Enable Anti-Replay check on this tunnel
- Anti
Replay stringWindow - 64,128,256,512,1024,2048,4096
- Auto
Key IpsecTunnel Auto Key Args - Comment string
- Copy
Flow boolLabel - Copy IPv6 flow label for 6in6 tunnel from inner packet to IPSec packet (not recommended)
- Copy
Tos bool - Copy IP TOS bits from inner packet to IPSec packet (not recommended)
- Disabled bool
- Disable the IPSec tunnel
- Enable
Gre boolEncapsulation - allow GRE over IPSec
- Global
Protect IpsecSatellite Tunnel Global Protect Satellite Args - Ipsec
Mode string - Ipv6 bool
- use IPv6 for the IPSec tunnel
- Manual
Key IpsecTunnel Manual Key Args - Name string
- Tunnel
Interface string - to apply IPSec VPN tunnels to tunnel interface
- Tunnel
Monitor IpsecTunnel Tunnel Monitor Args
- location
Ipsec
Tunnel Location - The location of this object.
- anti
Replay Boolean - Enable Anti-Replay check on this tunnel
- anti
Replay StringWindow - 64,128,256,512,1024,2048,4096
- auto
Key IpsecTunnel Auto Key - comment String
- copy
Flow BooleanLabel - Copy IPv6 flow label for 6in6 tunnel from inner packet to IPSec packet (not recommended)
- copy
Tos Boolean - Copy IP TOS bits from inner packet to IPSec packet (not recommended)
- disabled Boolean
- Disable the IPSec tunnel
- enable
Gre BooleanEncapsulation - allow GRE over IPSec
- global
Protect IpsecSatellite Tunnel Global Protect Satellite - ipsec
Mode String - ipv6 Boolean
- use IPv6 for the IPSec tunnel
- manual
Key IpsecTunnel Manual Key - name String
- tunnel
Interface String - to apply IPSec VPN tunnels to tunnel interface
- tunnel
Monitor IpsecTunnel Tunnel Monitor
- location
Ipsec
Tunnel Location - The location of this object.
- anti
Replay boolean - Enable Anti-Replay check on this tunnel
- anti
Replay stringWindow - 64,128,256,512,1024,2048,4096
- auto
Key IpsecTunnel Auto Key - comment string
- copy
Flow booleanLabel - Copy IPv6 flow label for 6in6 tunnel from inner packet to IPSec packet (not recommended)
- copy
Tos boolean - Copy IP TOS bits from inner packet to IPSec packet (not recommended)
- disabled boolean
- Disable the IPSec tunnel
- enable
Gre booleanEncapsulation - allow GRE over IPSec
- global
Protect IpsecSatellite Tunnel Global Protect Satellite - ipsec
Mode string - ipv6 boolean
- use IPv6 for the IPSec tunnel
- manual
Key IpsecTunnel Manual Key - name string
- tunnel
Interface string - to apply IPSec VPN tunnels to tunnel interface
- tunnel
Monitor IpsecTunnel Tunnel Monitor
- location
Ipsec
Tunnel Location Args - The location of this object.
- anti_
replay bool - Enable Anti-Replay check on this tunnel
- anti_
replay_ strwindow - 64,128,256,512,1024,2048,4096
- auto_
key IpsecTunnel Auto Key Args - comment str
- copy_
flow_ boollabel - Copy IPv6 flow label for 6in6 tunnel from inner packet to IPSec packet (not recommended)
- copy_
tos bool - Copy IP TOS bits from inner packet to IPSec packet (not recommended)
- disabled bool
- Disable the IPSec tunnel
- enable_
gre_ boolencapsulation - allow GRE over IPSec
- global_
protect_ Ipsecsatellite Tunnel Global Protect Satellite Args - ipsec_
mode str - ipv6 bool
- use IPv6 for the IPSec tunnel
- manual_
key IpsecTunnel Manual Key Args - name str
- tunnel_
interface str - to apply IPSec VPN tunnels to tunnel interface
- tunnel_
monitor IpsecTunnel Tunnel Monitor Args
- location Property Map
- The location of this object.
- anti
Replay Boolean - Enable Anti-Replay check on this tunnel
- anti
Replay StringWindow - 64,128,256,512,1024,2048,4096
- auto
Key Property Map - comment String
- copy
Flow BooleanLabel - Copy IPv6 flow label for 6in6 tunnel from inner packet to IPSec packet (not recommended)
- copy
Tos Boolean - Copy IP TOS bits from inner packet to IPSec packet (not recommended)
- disabled Boolean
- Disable the IPSec tunnel
- enable
Gre BooleanEncapsulation - allow GRE over IPSec
- global
Protect Property MapSatellite - ipsec
Mode String - ipv6 Boolean
- use IPv6 for the IPSec tunnel
- manual
Key Property Map - name String
- tunnel
Interface String - to apply IPSec VPN tunnels to tunnel interface
- tunnel
Monitor Property Map
Outputs
All input properties are implicitly available as output properties. Additionally, the IpsecTunnel resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing IpsecTunnel Resource
Get an existing IpsecTunnel resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: IpsecTunnelState, opts?: CustomResourceOptions): IpsecTunnel@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
anti_replay: Optional[bool] = None,
anti_replay_window: Optional[str] = None,
auto_key: Optional[IpsecTunnelAutoKeyArgs] = None,
comment: Optional[str] = None,
copy_flow_label: Optional[bool] = None,
copy_tos: Optional[bool] = None,
disabled: Optional[bool] = None,
enable_gre_encapsulation: Optional[bool] = None,
global_protect_satellite: Optional[IpsecTunnelGlobalProtectSatelliteArgs] = None,
ipsec_mode: Optional[str] = None,
ipv6: Optional[bool] = None,
location: Optional[IpsecTunnelLocationArgs] = None,
manual_key: Optional[IpsecTunnelManualKeyArgs] = None,
name: Optional[str] = None,
tunnel_interface: Optional[str] = None,
tunnel_monitor: Optional[IpsecTunnelTunnelMonitorArgs] = None) -> IpsecTunnelfunc GetIpsecTunnel(ctx *Context, name string, id IDInput, state *IpsecTunnelState, opts ...ResourceOption) (*IpsecTunnel, error)public static IpsecTunnel Get(string name, Input<string> id, IpsecTunnelState? state, CustomResourceOptions? opts = null)public static IpsecTunnel get(String name, Output<String> id, IpsecTunnelState state, CustomResourceOptions options)resources: _: type: panos:IpsecTunnel get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Anti
Replay bool - Enable Anti-Replay check on this tunnel
- Anti
Replay stringWindow - 64,128,256,512,1024,2048,4096
- Auto
Key IpsecTunnel Auto Key - Comment string
- Copy
Flow boolLabel - Copy IPv6 flow label for 6in6 tunnel from inner packet to IPSec packet (not recommended)
- Copy
Tos bool - Copy IP TOS bits from inner packet to IPSec packet (not recommended)
- Disabled bool
- Disable the IPSec tunnel
- Enable
Gre boolEncapsulation - allow GRE over IPSec
- Global
Protect IpsecSatellite Tunnel Global Protect Satellite - Ipsec
Mode string - Ipv6 bool
- use IPv6 for the IPSec tunnel
- Location
Ipsec
Tunnel Location - The location of this object.
- Manual
Key IpsecTunnel Manual Key - Name string
- Tunnel
Interface string - to apply IPSec VPN tunnels to tunnel interface
- Tunnel
Monitor IpsecTunnel Tunnel Monitor
- Anti
Replay bool - Enable Anti-Replay check on this tunnel
- Anti
Replay stringWindow - 64,128,256,512,1024,2048,4096
- Auto
Key IpsecTunnel Auto Key Args - Comment string
- Copy
Flow boolLabel - Copy IPv6 flow label for 6in6 tunnel from inner packet to IPSec packet (not recommended)
- Copy
Tos bool - Copy IP TOS bits from inner packet to IPSec packet (not recommended)
- Disabled bool
- Disable the IPSec tunnel
- Enable
Gre boolEncapsulation - allow GRE over IPSec
- Global
Protect IpsecSatellite Tunnel Global Protect Satellite Args - Ipsec
Mode string - Ipv6 bool
- use IPv6 for the IPSec tunnel
- Location
Ipsec
Tunnel Location Args - The location of this object.
- Manual
Key IpsecTunnel Manual Key Args - Name string
- Tunnel
Interface string - to apply IPSec VPN tunnels to tunnel interface
- Tunnel
Monitor IpsecTunnel Tunnel Monitor Args
- anti
Replay Boolean - Enable Anti-Replay check on this tunnel
- anti
Replay StringWindow - 64,128,256,512,1024,2048,4096
- auto
Key IpsecTunnel Auto Key - comment String
- copy
Flow BooleanLabel - Copy IPv6 flow label for 6in6 tunnel from inner packet to IPSec packet (not recommended)
- copy
Tos Boolean - Copy IP TOS bits from inner packet to IPSec packet (not recommended)
- disabled Boolean
- Disable the IPSec tunnel
- enable
Gre BooleanEncapsulation - allow GRE over IPSec
- global
Protect IpsecSatellite Tunnel Global Protect Satellite - ipsec
Mode String - ipv6 Boolean
- use IPv6 for the IPSec tunnel
- location
Ipsec
Tunnel Location - The location of this object.
- manual
Key IpsecTunnel Manual Key - name String
- tunnel
Interface String - to apply IPSec VPN tunnels to tunnel interface
- tunnel
Monitor IpsecTunnel Tunnel Monitor
- anti
Replay boolean - Enable Anti-Replay check on this tunnel
- anti
Replay stringWindow - 64,128,256,512,1024,2048,4096
- auto
Key IpsecTunnel Auto Key - comment string
- copy
Flow booleanLabel - Copy IPv6 flow label for 6in6 tunnel from inner packet to IPSec packet (not recommended)
- copy
Tos boolean - Copy IP TOS bits from inner packet to IPSec packet (not recommended)
- disabled boolean
- Disable the IPSec tunnel
- enable
Gre booleanEncapsulation - allow GRE over IPSec
- global
Protect IpsecSatellite Tunnel Global Protect Satellite - ipsec
Mode string - ipv6 boolean
- use IPv6 for the IPSec tunnel
- location
Ipsec
Tunnel Location - The location of this object.
- manual
Key IpsecTunnel Manual Key - name string
- tunnel
Interface string - to apply IPSec VPN tunnels to tunnel interface
- tunnel
Monitor IpsecTunnel Tunnel Monitor
- anti_
replay bool - Enable Anti-Replay check on this tunnel
- anti_
replay_ strwindow - 64,128,256,512,1024,2048,4096
- auto_
key IpsecTunnel Auto Key Args - comment str
- copy_
flow_ boollabel - Copy IPv6 flow label for 6in6 tunnel from inner packet to IPSec packet (not recommended)
- copy_
tos bool - Copy IP TOS bits from inner packet to IPSec packet (not recommended)
- disabled bool
- Disable the IPSec tunnel
- enable_
gre_ boolencapsulation - allow GRE over IPSec
- global_
protect_ Ipsecsatellite Tunnel Global Protect Satellite Args - ipsec_
mode str - ipv6 bool
- use IPv6 for the IPSec tunnel
- location
Ipsec
Tunnel Location Args - The location of this object.
- manual_
key IpsecTunnel Manual Key Args - name str
- tunnel_
interface str - to apply IPSec VPN tunnels to tunnel interface
- tunnel_
monitor IpsecTunnel Tunnel Monitor Args
- anti
Replay Boolean - Enable Anti-Replay check on this tunnel
- anti
Replay StringWindow - 64,128,256,512,1024,2048,4096
- auto
Key Property Map - comment String
- copy
Flow BooleanLabel - Copy IPv6 flow label for 6in6 tunnel from inner packet to IPSec packet (not recommended)
- copy
Tos Boolean - Copy IP TOS bits from inner packet to IPSec packet (not recommended)
- disabled Boolean
- Disable the IPSec tunnel
- enable
Gre BooleanEncapsulation - allow GRE over IPSec
- global
Protect Property MapSatellite - ipsec
Mode String - ipv6 Boolean
- use IPv6 for the IPSec tunnel
- location Property Map
- The location of this object.
- manual
Key Property Map - name String
- tunnel
Interface String - to apply IPSec VPN tunnels to tunnel interface
- tunnel
Monitor Property Map
Supporting Types
IpsecTunnelAutoKey, IpsecTunnelAutoKeyArgs
- Ike
Gateways []IpsecTunnel Auto Key Ike Gateway - Ipsec
Crypto stringProfile - IPSec crypto profile name
- Proxy
Id []IpsecV6s Tunnel Auto Key Proxy Id V6 - Proxy
Ids []IpsecTunnel Auto Key Proxy Id
- ike
Gateways IpsecTunnel Auto Key Ike Gateway[] - ipsec
Crypto stringProfile - IPSec crypto profile name
- proxy
Id IpsecV6s Tunnel Auto Key Proxy Id V6[] - proxy
Ids IpsecTunnel Auto Key Proxy Id[]
- ike
Gateways List<Property Map> - ipsec
Crypto StringProfile - IPSec crypto profile name
- proxy
Id List<Property Map>V6s - proxy
Ids List<Property Map>
IpsecTunnelAutoKeyIkeGateway, IpsecTunnelAutoKeyIkeGatewayArgs
- Name string
- Name string
- name String
- name string
- name str
- name String
IpsecTunnelAutoKeyProxyId, IpsecTunnelAutoKeyProxyIdArgs
- Name string
- Local string
- IP subnet or IP address represents local network
- Protocol
Ipsec
Tunnel Auto Key Proxy Id Protocol - Remote string
- IP subnet or IP address represents remote network
- Name string
- Local string
- IP subnet or IP address represents local network
- Protocol
Ipsec
Tunnel Auto Key Proxy Id Protocol - Remote string
- IP subnet or IP address represents remote network
- name String
- local String
- IP subnet or IP address represents local network
- protocol
Ipsec
Tunnel Auto Key Proxy Id Protocol - remote String
- IP subnet or IP address represents remote network
- name string
- local string
- IP subnet or IP address represents local network
- protocol
Ipsec
Tunnel Auto Key Proxy Id Protocol - remote string
- IP subnet or IP address represents remote network
- name str
- local str
- IP subnet or IP address represents local network
- protocol
Ipsec
Tunnel Auto Key Proxy Id Protocol - remote str
- IP subnet or IP address represents remote network
- name String
- local String
- IP subnet or IP address represents local network
- protocol Property Map
- remote String
- IP subnet or IP address represents remote network
IpsecTunnelAutoKeyProxyIdProtocol, IpsecTunnelAutoKeyProxyIdProtocolArgs
- any Property Map
- number Number
- IP protocol number
- tcp Property Map
- udp Property Map
IpsecTunnelAutoKeyProxyIdProtocolTcp, IpsecTunnelAutoKeyProxyIdProtocolTcpArgs
- Local
Port double - Remote
Port double
- Local
Port float64 - Remote
Port float64
- local
Port Double - remote
Port Double
- local
Port number - remote
Port number
- local_
port float - remote_
port float
- local
Port Number - remote
Port Number
IpsecTunnelAutoKeyProxyIdProtocolUdp, IpsecTunnelAutoKeyProxyIdProtocolUdpArgs
- Local
Port double - Remote
Port double
- Local
Port float64 - Remote
Port float64
- local
Port Double - remote
Port Double
- local
Port number - remote
Port number
- local_
port float - remote_
port float
- local
Port Number - remote
Port Number
IpsecTunnelAutoKeyProxyIdV6, IpsecTunnelAutoKeyProxyIdV6Args
- Name string
- Local string
- IP subnet or IP address represents local network
- Protocol
Ipsec
Tunnel Auto Key Proxy Id V6Protocol - Remote string
- IP subnet or IP address represents remote network
- Name string
- Local string
- IP subnet or IP address represents local network
- Protocol
Ipsec
Tunnel Auto Key Proxy Id V6Protocol - Remote string
- IP subnet or IP address represents remote network
- name String
- local String
- IP subnet or IP address represents local network
- protocol
Ipsec
Tunnel Auto Key Proxy Id V6Protocol - remote String
- IP subnet or IP address represents remote network
- name string
- local string
- IP subnet or IP address represents local network
- protocol
Ipsec
Tunnel Auto Key Proxy Id V6Protocol - remote string
- IP subnet or IP address represents remote network
- name str
- local str
- IP subnet or IP address represents local network
- protocol
Ipsec
Tunnel Auto Key Proxy Id V6Protocol - remote str
- IP subnet or IP address represents remote network
- name String
- local String
- IP subnet or IP address represents local network
- protocol Property Map
- remote String
- IP subnet or IP address represents remote network
IpsecTunnelAutoKeyProxyIdV6Protocol, IpsecTunnelAutoKeyProxyIdV6ProtocolArgs
- any Property Map
- number Number
- IP protocol number
- tcp Property Map
- udp Property Map
IpsecTunnelAutoKeyProxyIdV6ProtocolTcp, IpsecTunnelAutoKeyProxyIdV6ProtocolTcpArgs
- Local
Port double - Remote
Port double
- Local
Port float64 - Remote
Port float64
- local
Port Double - remote
Port Double
- local
Port number - remote
Port number
- local_
port float - remote_
port float
- local
Port Number - remote
Port Number
IpsecTunnelAutoKeyProxyIdV6ProtocolUdp, IpsecTunnelAutoKeyProxyIdV6ProtocolUdpArgs
- Local
Port double - Remote
Port double
- Local
Port float64 - Remote
Port float64
- local
Port Double - remote
Port Double
- local
Port number - remote
Port number
- local_
port float - remote_
port float
- local
Port Number - remote
Port Number
IpsecTunnelGlobalProtectSatellite, IpsecTunnelGlobalProtectSatelliteArgs
- External
Ca IpsecTunnel Global Protect Satellite External Ca - Ipv6Preferred bool
- Prefer to register to portal in ipv6. Only applicable to fqdn portal-address
- Local
Address IpsecTunnel Global Protect Satellite Local Address - Portal
Address string - GlobalProtect portal address
- Publish
Connected IpsecRoutes Tunnel Global Protect Satellite Publish Connected Routes - Publish
Routes List<string>
- External
Ca IpsecTunnel Global Protect Satellite External Ca - Ipv6Preferred bool
- Prefer to register to portal in ipv6. Only applicable to fqdn portal-address
- Local
Address IpsecTunnel Global Protect Satellite Local Address - Portal
Address string - GlobalProtect portal address
- Publish
Connected IpsecRoutes Tunnel Global Protect Satellite Publish Connected Routes - Publish
Routes []string
- external
Ca IpsecTunnel Global Protect Satellite External Ca - ipv6Preferred Boolean
- Prefer to register to portal in ipv6. Only applicable to fqdn portal-address
- local
Address IpsecTunnel Global Protect Satellite Local Address - portal
Address String - GlobalProtect portal address
- publish
Connected IpsecRoutes Tunnel Global Protect Satellite Publish Connected Routes - publish
Routes List<String>
- external
Ca IpsecTunnel Global Protect Satellite External Ca - ipv6Preferred boolean
- Prefer to register to portal in ipv6. Only applicable to fqdn portal-address
- local
Address IpsecTunnel Global Protect Satellite Local Address - portal
Address string - GlobalProtect portal address
- publish
Connected IpsecRoutes Tunnel Global Protect Satellite Publish Connected Routes - publish
Routes string[]
- external_
ca IpsecTunnel Global Protect Satellite External Ca - ipv6_
preferred bool - Prefer to register to portal in ipv6. Only applicable to fqdn portal-address
- local_
address IpsecTunnel Global Protect Satellite Local Address - portal_
address str - GlobalProtect portal address
- publish_
connected_ Ipsecroutes Tunnel Global Protect Satellite Publish Connected Routes - publish_
routes Sequence[str]
- external
Ca Property Map - ipv6Preferred Boolean
- Prefer to register to portal in ipv6. Only applicable to fqdn portal-address
- local
Address Property Map - portal
Address String - GlobalProtect portal address
- publish
Connected Property MapRoutes - publish
Routes List<String>
IpsecTunnelGlobalProtectSatelliteExternalCa, IpsecTunnelGlobalProtectSatelliteExternalCaArgs
- Certificate
Profile string - Profile for authenticating GlobalProtect gateway certificates
- Local
Certificate string - GlobalProtect satellite certificate file name
- Certificate
Profile string - Profile for authenticating GlobalProtect gateway certificates
- Local
Certificate string - GlobalProtect satellite certificate file name
- certificate
Profile String - Profile for authenticating GlobalProtect gateway certificates
- local
Certificate String - GlobalProtect satellite certificate file name
- certificate
Profile string - Profile for authenticating GlobalProtect gateway certificates
- local
Certificate string - GlobalProtect satellite certificate file name
- certificate_
profile str - Profile for authenticating GlobalProtect gateway certificates
- local_
certificate str - GlobalProtect satellite certificate file name
- certificate
Profile String - Profile for authenticating GlobalProtect gateway certificates
- local
Certificate String - GlobalProtect satellite certificate file name
IpsecTunnelGlobalProtectSatelliteLocalAddress, IpsecTunnelGlobalProtectSatelliteLocalAddressArgs
- Floating
Ip IpsecTunnel Global Protect Satellite Local Address Floating Ip - Interface string
- Interface to communicate with Portal
- Ip
Ipsec
Tunnel Global Protect Satellite Local Address Ip
- Floating
Ip IpsecTunnel Global Protect Satellite Local Address Floating Ip - Interface string
- Interface to communicate with Portal
- Ip
Ipsec
Tunnel Global Protect Satellite Local Address Ip
- floating
Ip IpsecTunnel Global Protect Satellite Local Address Floating Ip - interface_ String
- Interface to communicate with Portal
- ip
Ipsec
Tunnel Global Protect Satellite Local Address Ip
- floating
Ip IpsecTunnel Global Protect Satellite Local Address Floating Ip - interface string
- Interface to communicate with Portal
- ip
Ipsec
Tunnel Global Protect Satellite Local Address Ip
- floating_
ip IpsecTunnel Global Protect Satellite Local Address Floating Ip - interface str
- Interface to communicate with Portal
- ip
Ipsec
Tunnel Global Protect Satellite Local Address Ip
- floating
Ip Property Map - interface String
- Interface to communicate with Portal
- ip Property Map
IpsecTunnelGlobalProtectSatelliteLocalAddressFloatingIp, IpsecTunnelGlobalProtectSatelliteLocalAddressFloatingIpArgs
IpsecTunnelGlobalProtectSatelliteLocalAddressIp, IpsecTunnelGlobalProtectSatelliteLocalAddressIpArgs
IpsecTunnelGlobalProtectSatellitePublishConnectedRoutes, IpsecTunnelGlobalProtectSatellitePublishConnectedRoutesArgs
- Enable bool
- Enable publishing of connected and static routes
- Enable bool
- Enable publishing of connected and static routes
- enable Boolean
- Enable publishing of connected and static routes
- enable boolean
- Enable publishing of connected and static routes
- enable bool
- Enable publishing of connected and static routes
- enable Boolean
- Enable publishing of connected and static routes
IpsecTunnelLocation, IpsecTunnelLocationArgs
- Template
Ipsec
Tunnel Location Template - Located in a specific template
- Template
Stack IpsecTunnel Location Template Stack - Located in a specific template stack
- Template
Ipsec
Tunnel Location Template - Located in a specific template
- Template
Stack IpsecTunnel Location Template Stack - Located in a specific template stack
- template
Ipsec
Tunnel Location Template - Located in a specific template
- template
Stack IpsecTunnel Location Template Stack - Located in a specific template stack
- template
Ipsec
Tunnel Location Template - Located in a specific template
- template
Stack IpsecTunnel Location Template Stack - Located in a specific template stack
- template
Ipsec
Tunnel Location Template - Located in a specific template
- template_
stack IpsecTunnel Location Template Stack - Located in a specific template stack
- template Property Map
- Located in a specific template
- template
Stack Property Map - Located in a specific template stack
IpsecTunnelLocationTemplate, IpsecTunnelLocationTemplateArgs
- Name string
- Specific Panorama template
- Ngfw
Device string - The NGFW device
- Panorama
Device string - Specific Panorama device
- Name string
- Specific Panorama template
- Ngfw
Device string - The NGFW device
- Panorama
Device string - Specific Panorama device
- name String
- Specific Panorama template
- ngfw
Device String - The NGFW device
- panorama
Device String - Specific Panorama device
- name string
- Specific Panorama template
- ngfw
Device string - The NGFW device
- panorama
Device string - Specific Panorama device
- name str
- Specific Panorama template
- ngfw_
device str - The NGFW device
- panorama_
device str - Specific Panorama device
- name String
- Specific Panorama template
- ngfw
Device String - The NGFW device
- panorama
Device String - Specific Panorama device
IpsecTunnelLocationTemplateStack, IpsecTunnelLocationTemplateStackArgs
- Name string
- Specific Panorama template stack
- Ngfw
Device string - The NGFW device
- Panorama
Device string - Specific Panorama device
- Name string
- Specific Panorama template stack
- Ngfw
Device string - The NGFW device
- Panorama
Device string - Specific Panorama device
- name String
- Specific Panorama template stack
- ngfw
Device String - The NGFW device
- panorama
Device String - Specific Panorama device
- name string
- Specific Panorama template stack
- ngfw
Device string - The NGFW device
- panorama
Device string - Specific Panorama device
- name str
- Specific Panorama template stack
- ngfw_
device str - The NGFW device
- panorama_
device str - Specific Panorama device
- name String
- Specific Panorama template stack
- ngfw
Device String - The NGFW device
- panorama
Device String - Specific Panorama device
IpsecTunnelManualKey, IpsecTunnelManualKeyArgs
- Ah
Ipsec
Tunnel Manual Key Ah - Esp
Ipsec
Tunnel Manual Key Esp - Local
Address IpsecTunnel Manual Key Local Address - Local
Spi string - Outbound SPI, hex format xxxxxxxx. range 00001000 to 1FFFFFFF
- Peer
Address IpsecTunnel Manual Key Peer Address - Remote
Spi string - Inbound SPI, hex format xxxxxxxx.
- Ah
Ipsec
Tunnel Manual Key Ah - Esp
Ipsec
Tunnel Manual Key Esp - Local
Address IpsecTunnel Manual Key Local Address - Local
Spi string - Outbound SPI, hex format xxxxxxxx. range 00001000 to 1FFFFFFF
- Peer
Address IpsecTunnel Manual Key Peer Address - Remote
Spi string - Inbound SPI, hex format xxxxxxxx.
- ah
Ipsec
Tunnel Manual Key Ah - esp
Ipsec
Tunnel Manual Key Esp - local
Address IpsecTunnel Manual Key Local Address - local
Spi String - Outbound SPI, hex format xxxxxxxx. range 00001000 to 1FFFFFFF
- peer
Address IpsecTunnel Manual Key Peer Address - remote
Spi String - Inbound SPI, hex format xxxxxxxx.
- ah
Ipsec
Tunnel Manual Key Ah - esp
Ipsec
Tunnel Manual Key Esp - local
Address IpsecTunnel Manual Key Local Address - local
Spi string - Outbound SPI, hex format xxxxxxxx. range 00001000 to 1FFFFFFF
- peer
Address IpsecTunnel Manual Key Peer Address - remote
Spi string - Inbound SPI, hex format xxxxxxxx.
- ah
Ipsec
Tunnel Manual Key Ah - esp
Ipsec
Tunnel Manual Key Esp - local_
address IpsecTunnel Manual Key Local Address - local_
spi str - Outbound SPI, hex format xxxxxxxx. range 00001000 to 1FFFFFFF
- peer_
address IpsecTunnel Manual Key Peer Address - remote_
spi str - Inbound SPI, hex format xxxxxxxx.
- ah Property Map
- esp Property Map
- local
Address Property Map - local
Spi String - Outbound SPI, hex format xxxxxxxx. range 00001000 to 1FFFFFFF
- peer
Address Property Map - remote
Spi String - Inbound SPI, hex format xxxxxxxx.
IpsecTunnelManualKeyAh, IpsecTunnelManualKeyAhArgs
IpsecTunnelManualKeyAhMd5, IpsecTunnelManualKeyAhMd5Args
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 4 sections
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 4 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 4 sections
- key string
- hex format xxxxxxxx[-xxxxxxxx]... total 4 sections
- key str
- hex format xxxxxxxx[-xxxxxxxx]... total 4 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 4 sections
IpsecTunnelManualKeyAhSha1, IpsecTunnelManualKeyAhSha1Args
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 5 sections
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 5 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 5 sections
- key string
- hex format xxxxxxxx[-xxxxxxxx]... total 5 sections
- key str
- hex format xxxxxxxx[-xxxxxxxx]... total 5 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 5 sections
IpsecTunnelManualKeyAhSha256, IpsecTunnelManualKeyAhSha256Args
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 8 sections
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 8 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 8 sections
- key string
- hex format xxxxxxxx[-xxxxxxxx]... total 8 sections
- key str
- hex format xxxxxxxx[-xxxxxxxx]... total 8 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 8 sections
IpsecTunnelManualKeyAhSha384, IpsecTunnelManualKeyAhSha384Args
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 12 sections
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 12 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 12 sections
- key string
- hex format xxxxxxxx[-xxxxxxxx]... total 12 sections
- key str
- hex format xxxxxxxx[-xxxxxxxx]... total 12 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 12 sections
IpsecTunnelManualKeyAhSha512, IpsecTunnelManualKeyAhSha512Args
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 16 sections
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 16 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 16 sections
- key string
- hex format xxxxxxxx[-xxxxxxxx]... total 16 sections
- key str
- hex format xxxxxxxx[-xxxxxxxx]... total 16 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 16 sections
IpsecTunnelManualKeyEsp, IpsecTunnelManualKeyEspArgs
IpsecTunnelManualKeyEspAuthentication, IpsecTunnelManualKeyEspAuthenticationArgs
IpsecTunnelManualKeyEspAuthenticationMd5, IpsecTunnelManualKeyEspAuthenticationMd5Args
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 4 sections
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 4 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 4 sections
- key string
- hex format xxxxxxxx[-xxxxxxxx]... total 4 sections
- key str
- hex format xxxxxxxx[-xxxxxxxx]... total 4 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 4 sections
IpsecTunnelManualKeyEspAuthenticationSha1, IpsecTunnelManualKeyEspAuthenticationSha1Args
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 5 sections
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 5 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 5 sections
- key string
- hex format xxxxxxxx[-xxxxxxxx]... total 5 sections
- key str
- hex format xxxxxxxx[-xxxxxxxx]... total 5 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 5 sections
IpsecTunnelManualKeyEspAuthenticationSha256, IpsecTunnelManualKeyEspAuthenticationSha256Args
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 8 sections
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 8 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 8 sections
- key string
- hex format xxxxxxxx[-xxxxxxxx]... total 8 sections
- key str
- hex format xxxxxxxx[-xxxxxxxx]... total 8 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 8 sections
IpsecTunnelManualKeyEspAuthenticationSha384, IpsecTunnelManualKeyEspAuthenticationSha384Args
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 12 sections
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 12 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 12 sections
- key string
- hex format xxxxxxxx[-xxxxxxxx]... total 12 sections
- key str
- hex format xxxxxxxx[-xxxxxxxx]... total 12 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 12 sections
IpsecTunnelManualKeyEspAuthenticationSha512, IpsecTunnelManualKeyEspAuthenticationSha512Args
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 16 sections
- Key string
- hex format xxxxxxxx[-xxxxxxxx]... total 16 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 16 sections
- key string
- hex format xxxxxxxx[-xxxxxxxx]... total 16 sections
- key str
- hex format xxxxxxxx[-xxxxxxxx]... total 16 sections
- key String
- hex format xxxxxxxx[-xxxxxxxx]... total 16 sections
IpsecTunnelManualKeyEspEncryption, IpsecTunnelManualKeyEspEncryptionArgs
IpsecTunnelManualKeyLocalAddress, IpsecTunnelManualKeyLocalAddressArgs
- Floating
Ip string - Floating IP address in HA Active-Active configuration
- Interface string
- Interface to termate tunnel
- Ip string
- specify exact IP address if interface has multiple addresses
- Floating
Ip string - Floating IP address in HA Active-Active configuration
- Interface string
- Interface to termate tunnel
- Ip string
- specify exact IP address if interface has multiple addresses
- floating
Ip String - Floating IP address in HA Active-Active configuration
- interface_ String
- Interface to termate tunnel
- ip String
- specify exact IP address if interface has multiple addresses
- floating
Ip string - Floating IP address in HA Active-Active configuration
- interface string
- Interface to termate tunnel
- ip string
- specify exact IP address if interface has multiple addresses
- floating_
ip str - Floating IP address in HA Active-Active configuration
- interface str
- Interface to termate tunnel
- ip str
- specify exact IP address if interface has multiple addresses
- floating
Ip String - Floating IP address in HA Active-Active configuration
- interface String
- Interface to termate tunnel
- ip String
- specify exact IP address if interface has multiple addresses
IpsecTunnelManualKeyPeerAddress, IpsecTunnelManualKeyPeerAddressArgs
- Ip string
- Tunnel peer IP address
- Ip string
- Tunnel peer IP address
- ip String
- Tunnel peer IP address
- ip string
- Tunnel peer IP address
- ip str
- Tunnel peer IP address
- ip String
- Tunnel peer IP address
IpsecTunnelTunnelMonitor, IpsecTunnelTunnelMonitorArgs
- Destination
Ip string - Destination IP to send ICMP probe
- Enable bool
- Enable tunnel monitoring on this tunnel
- Proxy
Id string - Which proxy-id (or proxy-id-v6) the monitoring traffic will use
- Tunnel
Monitor stringProfile - monitoring action
- Destination
Ip string - Destination IP to send ICMP probe
- Enable bool
- Enable tunnel monitoring on this tunnel
- Proxy
Id string - Which proxy-id (or proxy-id-v6) the monitoring traffic will use
- Tunnel
Monitor stringProfile - monitoring action
- destination
Ip String - Destination IP to send ICMP probe
- enable Boolean
- Enable tunnel monitoring on this tunnel
- proxy
Id String - Which proxy-id (or proxy-id-v6) the monitoring traffic will use
- tunnel
Monitor StringProfile - monitoring action
- destination
Ip string - Destination IP to send ICMP probe
- enable boolean
- Enable tunnel monitoring on this tunnel
- proxy
Id string - Which proxy-id (or proxy-id-v6) the monitoring traffic will use
- tunnel
Monitor stringProfile - monitoring action
- destination_
ip str - Destination IP to send ICMP probe
- enable bool
- Enable tunnel monitoring on this tunnel
- proxy_
id str - Which proxy-id (or proxy-id-v6) the monitoring traffic will use
- tunnel_
monitor_ strprofile - monitoring action
- destination
Ip String - Destination IP to send ICMP probe
- enable Boolean
- Enable tunnel monitoring on this tunnel
- proxy
Id String - Which proxy-id (or proxy-id-v6) the monitoring traffic will use
- tunnel
Monitor StringProfile - monitoring action
Package Details
- Repository
- panos paloaltonetworks/terraform-provider-panos
- License
- Notes
- This Pulumi package is based on the
panosTerraform Provider.
panos 2.0.0 published on Tuesday, Apr 15, 2025 by paloaltonetworks