Viewing docs for Cisco Catalyst SD-WAN v0.8.1
published on Tuesday, Apr 7, 2026 by Pulumi
published on Tuesday, Apr 7, 2026 by Pulumi
Viewing docs for Cisco Catalyst SD-WAN v0.8.1
published on Tuesday, Apr 7, 2026 by Pulumi
published on Tuesday, Apr 7, 2026 by Pulumi
This resource can manage a Embedded Security NGFW Policy.
- Minimum SD-WAN Manager version:
20.15.0
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as sdwan from "@pulumi/sdwan";
const example = new sdwan.EmbeddedSecurityNgfwPolicy("example", {
name: "Example",
description: "My Example",
featureProfileId: "f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac",
defaultAction: "pass",
sequences: [{
sequenceId: "1",
sequenceName: "security",
baseAction: "drop",
sequenceType: "ngfirewall",
disableSequence: false,
matchEntries: [{
sourcePorts: ["123"],
}],
actions: [{
type: "log",
parameter: "true",
}],
}],
});
import pulumi
import pulumi_sdwan as sdwan
example = sdwan.EmbeddedSecurityNgfwPolicy("example",
name="Example",
description="My Example",
feature_profile_id="f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac",
default_action="pass",
sequences=[{
"sequence_id": "1",
"sequence_name": "security",
"base_action": "drop",
"sequence_type": "ngfirewall",
"disable_sequence": False,
"match_entries": [{
"source_ports": ["123"],
}],
"actions": [{
"type": "log",
"parameter": "true",
}],
}])
package main
import (
"github.com/pulumi/pulumi-sdwan/sdk/go/sdwan"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := sdwan.NewEmbeddedSecurityNgfwPolicy(ctx, "example", &sdwan.EmbeddedSecurityNgfwPolicyArgs{
Name: pulumi.String("Example"),
Description: pulumi.String("My Example"),
FeatureProfileId: pulumi.String("f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac"),
DefaultAction: pulumi.String("pass"),
Sequences: sdwan.EmbeddedSecurityNgfwPolicySequenceArray{
&sdwan.EmbeddedSecurityNgfwPolicySequenceArgs{
SequenceId: pulumi.String("1"),
SequenceName: pulumi.String("security"),
BaseAction: pulumi.String("drop"),
SequenceType: pulumi.String("ngfirewall"),
DisableSequence: pulumi.Bool(false),
MatchEntries: sdwan.EmbeddedSecurityNgfwPolicySequenceMatchEntryArray{
&sdwan.EmbeddedSecurityNgfwPolicySequenceMatchEntryArgs{
SourcePorts: pulumi.StringArray{
pulumi.String("123"),
},
},
},
Actions: sdwan.EmbeddedSecurityNgfwPolicySequenceActionArray{
&sdwan.EmbeddedSecurityNgfwPolicySequenceActionArgs{
Type: pulumi.String("log"),
Parameter: pulumi.String("true"),
},
},
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Sdwan = Pulumi.Sdwan;
return await Deployment.RunAsync(() =>
{
var example = new Sdwan.EmbeddedSecurityNgfwPolicy("example", new()
{
Name = "Example",
Description = "My Example",
FeatureProfileId = "f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac",
DefaultAction = "pass",
Sequences = new[]
{
new Sdwan.Inputs.EmbeddedSecurityNgfwPolicySequenceArgs
{
SequenceId = "1",
SequenceName = "security",
BaseAction = "drop",
SequenceType = "ngfirewall",
DisableSequence = false,
MatchEntries = new[]
{
new Sdwan.Inputs.EmbeddedSecurityNgfwPolicySequenceMatchEntryArgs
{
SourcePorts = new[]
{
"123",
},
},
},
Actions = new[]
{
new Sdwan.Inputs.EmbeddedSecurityNgfwPolicySequenceActionArgs
{
Type = "log",
Parameter = "true",
},
},
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.sdwan.EmbeddedSecurityNgfwPolicy;
import com.pulumi.sdwan.EmbeddedSecurityNgfwPolicyArgs;
import com.pulumi.sdwan.inputs.EmbeddedSecurityNgfwPolicySequenceArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new EmbeddedSecurityNgfwPolicy("example", EmbeddedSecurityNgfwPolicyArgs.builder()
.name("Example")
.description("My Example")
.featureProfileId("f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac")
.defaultAction("pass")
.sequences(EmbeddedSecurityNgfwPolicySequenceArgs.builder()
.sequenceId("1")
.sequenceName("security")
.baseAction("drop")
.sequenceType("ngfirewall")
.disableSequence(false)
.matchEntries(EmbeddedSecurityNgfwPolicySequenceMatchEntryArgs.builder()
.sourcePorts("123")
.build())
.actions(EmbeddedSecurityNgfwPolicySequenceActionArgs.builder()
.type("log")
.parameter("true")
.build())
.build())
.build());
}
}
resources:
example:
type: sdwan:EmbeddedSecurityNgfwPolicy
properties:
name: Example
description: My Example
featureProfileId: f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac
defaultAction: pass
sequences:
- sequenceId: '1'
sequenceName: security
baseAction: drop
sequenceType: ngfirewall
disableSequence: false
matchEntries:
- sourcePorts:
- '123'
actions:
- type: log
parameter: 'true'
Example coming soon!
Create EmbeddedSecurityNgfwPolicy Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new EmbeddedSecurityNgfwPolicy(name: string, args: EmbeddedSecurityNgfwPolicyArgs, opts?: CustomResourceOptions);@overload
def EmbeddedSecurityNgfwPolicy(resource_name: str,
args: EmbeddedSecurityNgfwPolicyArgs,
opts: Optional[ResourceOptions] = None)
@overload
def EmbeddedSecurityNgfwPolicy(resource_name: str,
opts: Optional[ResourceOptions] = None,
default_action: Optional[str] = None,
feature_profile_id: Optional[str] = None,
description: Optional[str] = None,
name: Optional[str] = None,
sequences: Optional[Sequence[EmbeddedSecurityNgfwPolicySequenceArgs]] = None)func NewEmbeddedSecurityNgfwPolicy(ctx *Context, name string, args EmbeddedSecurityNgfwPolicyArgs, opts ...ResourceOption) (*EmbeddedSecurityNgfwPolicy, error)public EmbeddedSecurityNgfwPolicy(string name, EmbeddedSecurityNgfwPolicyArgs args, CustomResourceOptions? opts = null)
public EmbeddedSecurityNgfwPolicy(String name, EmbeddedSecurityNgfwPolicyArgs args)
public EmbeddedSecurityNgfwPolicy(String name, EmbeddedSecurityNgfwPolicyArgs args, CustomResourceOptions options)
type: sdwan:EmbeddedSecurityNgfwPolicy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
resource "sdwan_embeddedsecurityngfwpolicy" "name" {
# resource properties
}Parameters
- name string
- The unique name of the resource.
- args EmbeddedSecurityNgfwPolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args EmbeddedSecurityNgfwPolicyArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args EmbeddedSecurityNgfwPolicyArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args EmbeddedSecurityNgfwPolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args EmbeddedSecurityNgfwPolicyArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var embeddedSecurityNgfwPolicyResource = new Sdwan.EmbeddedSecurityNgfwPolicy("embeddedSecurityNgfwPolicyResource", new()
{
DefaultAction = "string",
FeatureProfileId = "string",
Description = "string",
Name = "string",
Sequences = new[]
{
new Sdwan.Inputs.EmbeddedSecurityNgfwPolicySequenceArgs
{
Actions = new[]
{
new Sdwan.Inputs.EmbeddedSecurityNgfwPolicySequenceActionArgs
{
Parameter = "string",
ParameterId = "string",
Type = "string",
},
},
BaseAction = "string",
DisableSequence = false,
MatchEntries = new[]
{
new Sdwan.Inputs.EmbeddedSecurityNgfwPolicySequenceMatchEntryArgs
{
AppListIds = new[]
{
"string",
},
ApplicationFamilies = new[]
{
"string",
},
Applications = new[]
{
"string",
},
DestinationDataPrefixListIds = new[]
{
"string",
},
DestinationDataPrefixes = new[]
{
"string",
},
DestinationDataPrefixesVariable = "string",
DestinationFqdnListIds = new[]
{
"string",
},
DestinationFqdns = new[]
{
"string",
},
DestinationFqdnsVariable = "string",
DestinationGeoLocationListIds = new[]
{
"string",
},
DestinationGeoLocations = new[]
{
"string",
},
DestinationGeoLocationsVariable = "string",
DestinationPortListIds = new[]
{
"string",
},
DestinationPorts = new[]
{
"string",
},
DestinationPortsVariable = "string",
DestinationScalableGroupTagListIds = new[]
{
"string",
},
DestinationSecurityGroupListIds = new[]
{
"string",
},
FlatAppListIds = new[]
{
"string",
},
ProtocolNameListIds = new[]
{
"string",
},
ProtocolNames = new[]
{
"string",
},
Protocols = new[]
{
"string",
},
SourceDataPrefixListIds = new[]
{
"string",
},
SourceDataPrefixes = new[]
{
"string",
},
SourceDataPrefixesVariable = "string",
SourceGeoLocationListIds = new[]
{
"string",
},
SourceGeoLocations = new[]
{
"string",
},
SourceGeoLocationsVariable = "string",
SourceIdentityListIds = new[]
{
"string",
},
SourceIdentityUsergroups = new[]
{
"string",
},
SourceIdentityUsers = new[]
{
"string",
},
SourcePortListIds = new[]
{
"string",
},
SourcePorts = new[]
{
"string",
},
SourcePortsVariable = "string",
SourceScalableGroupTagListIds = new[]
{
"string",
},
SourceSecurityGroupListIds = new[]
{
"string",
},
},
},
SequenceId = "string",
SequenceName = "string",
SequenceType = "string",
},
},
});
example, err := sdwan.NewEmbeddedSecurityNgfwPolicy(ctx, "embeddedSecurityNgfwPolicyResource", &sdwan.EmbeddedSecurityNgfwPolicyArgs{
DefaultAction: pulumi.String("string"),
FeatureProfileId: pulumi.String("string"),
Description: pulumi.String("string"),
Name: pulumi.String("string"),
Sequences: sdwan.EmbeddedSecurityNgfwPolicySequenceArray{
&sdwan.EmbeddedSecurityNgfwPolicySequenceArgs{
Actions: sdwan.EmbeddedSecurityNgfwPolicySequenceActionArray{
&sdwan.EmbeddedSecurityNgfwPolicySequenceActionArgs{
Parameter: pulumi.String("string"),
ParameterId: pulumi.String("string"),
Type: pulumi.String("string"),
},
},
BaseAction: pulumi.String("string"),
DisableSequence: pulumi.Bool(false),
MatchEntries: sdwan.EmbeddedSecurityNgfwPolicySequenceMatchEntryArray{
&sdwan.EmbeddedSecurityNgfwPolicySequenceMatchEntryArgs{
AppListIds: pulumi.StringArray{
pulumi.String("string"),
},
ApplicationFamilies: pulumi.StringArray{
pulumi.String("string"),
},
Applications: pulumi.StringArray{
pulumi.String("string"),
},
DestinationDataPrefixListIds: pulumi.StringArray{
pulumi.String("string"),
},
DestinationDataPrefixes: pulumi.StringArray{
pulumi.String("string"),
},
DestinationDataPrefixesVariable: pulumi.String("string"),
DestinationFqdnListIds: pulumi.StringArray{
pulumi.String("string"),
},
DestinationFqdns: pulumi.StringArray{
pulumi.String("string"),
},
DestinationFqdnsVariable: pulumi.String("string"),
DestinationGeoLocationListIds: pulumi.StringArray{
pulumi.String("string"),
},
DestinationGeoLocations: pulumi.StringArray{
pulumi.String("string"),
},
DestinationGeoLocationsVariable: pulumi.String("string"),
DestinationPortListIds: pulumi.StringArray{
pulumi.String("string"),
},
DestinationPorts: pulumi.StringArray{
pulumi.String("string"),
},
DestinationPortsVariable: pulumi.String("string"),
DestinationScalableGroupTagListIds: pulumi.StringArray{
pulumi.String("string"),
},
DestinationSecurityGroupListIds: pulumi.StringArray{
pulumi.String("string"),
},
FlatAppListIds: pulumi.StringArray{
pulumi.String("string"),
},
ProtocolNameListIds: pulumi.StringArray{
pulumi.String("string"),
},
ProtocolNames: pulumi.StringArray{
pulumi.String("string"),
},
Protocols: pulumi.StringArray{
pulumi.String("string"),
},
SourceDataPrefixListIds: pulumi.StringArray{
pulumi.String("string"),
},
SourceDataPrefixes: pulumi.StringArray{
pulumi.String("string"),
},
SourceDataPrefixesVariable: pulumi.String("string"),
SourceGeoLocationListIds: pulumi.StringArray{
pulumi.String("string"),
},
SourceGeoLocations: pulumi.StringArray{
pulumi.String("string"),
},
SourceGeoLocationsVariable: pulumi.String("string"),
SourceIdentityListIds: pulumi.StringArray{
pulumi.String("string"),
},
SourceIdentityUsergroups: pulumi.StringArray{
pulumi.String("string"),
},
SourceIdentityUsers: pulumi.StringArray{
pulumi.String("string"),
},
SourcePortListIds: pulumi.StringArray{
pulumi.String("string"),
},
SourcePorts: pulumi.StringArray{
pulumi.String("string"),
},
SourcePortsVariable: pulumi.String("string"),
SourceScalableGroupTagListIds: pulumi.StringArray{
pulumi.String("string"),
},
SourceSecurityGroupListIds: pulumi.StringArray{
pulumi.String("string"),
},
},
},
SequenceId: pulumi.String("string"),
SequenceName: pulumi.String("string"),
SequenceType: pulumi.String("string"),
},
},
})
resource "sdwan_embeddedsecurityngfwpolicy" "embeddedSecurityNgfwPolicyResource" {
default_action = "string"
feature_profile_id = "string"
description = "string"
name = "string"
sequences {
actions {
parameter = "string"
parameter_id = "string"
type = "string"
}
base_action = "string"
disable_sequence = false
match_entries {
app_list_ids = ["string"]
application_families = ["string"]
applications = ["string"]
destination_data_prefix_list_ids = ["string"]
destination_data_prefixes = ["string"]
destination_data_prefixes_variable = "string"
destination_fqdn_list_ids = ["string"]
destination_fqdns = ["string"]
destination_fqdns_variable = "string"
destination_geo_location_list_ids = ["string"]
destination_geo_locations = ["string"]
destination_geo_locations_variable = "string"
destination_port_list_ids = ["string"]
destination_ports = ["string"]
destination_ports_variable = "string"
destination_scalable_group_tag_list_ids = ["string"]
destination_security_group_list_ids = ["string"]
flat_app_list_ids = ["string"]
protocol_name_list_ids = ["string"]
protocol_names = ["string"]
protocols = ["string"]
source_data_prefix_list_ids = ["string"]
source_data_prefixes = ["string"]
source_data_prefixes_variable = "string"
source_geo_location_list_ids = ["string"]
source_geo_locations = ["string"]
source_geo_locations_variable = "string"
source_identity_list_ids = ["string"]
source_identity_usergroups = ["string"]
source_identity_users = ["string"]
source_port_list_ids = ["string"]
source_ports = ["string"]
source_ports_variable = "string"
source_scalable_group_tag_list_ids = ["string"]
source_security_group_list_ids = ["string"]
}
sequence_id = "string"
sequence_name = "string"
sequence_type = "string"
}
}
var embeddedSecurityNgfwPolicyResource = new EmbeddedSecurityNgfwPolicy("embeddedSecurityNgfwPolicyResource", EmbeddedSecurityNgfwPolicyArgs.builder()
.defaultAction("string")
.featureProfileId("string")
.description("string")
.name("string")
.sequences(EmbeddedSecurityNgfwPolicySequenceArgs.builder()
.actions(EmbeddedSecurityNgfwPolicySequenceActionArgs.builder()
.parameter("string")
.parameterId("string")
.type("string")
.build())
.baseAction("string")
.disableSequence(false)
.matchEntries(EmbeddedSecurityNgfwPolicySequenceMatchEntryArgs.builder()
.appListIds("string")
.applicationFamilies("string")
.applications("string")
.destinationDataPrefixListIds("string")
.destinationDataPrefixes("string")
.destinationDataPrefixesVariable("string")
.destinationFqdnListIds("string")
.destinationFqdns("string")
.destinationFqdnsVariable("string")
.destinationGeoLocationListIds("string")
.destinationGeoLocations("string")
.destinationGeoLocationsVariable("string")
.destinationPortListIds("string")
.destinationPorts("string")
.destinationPortsVariable("string")
.destinationScalableGroupTagListIds("string")
.destinationSecurityGroupListIds("string")
.flatAppListIds("string")
.protocolNameListIds("string")
.protocolNames("string")
.protocols("string")
.sourceDataPrefixListIds("string")
.sourceDataPrefixes("string")
.sourceDataPrefixesVariable("string")
.sourceGeoLocationListIds("string")
.sourceGeoLocations("string")
.sourceGeoLocationsVariable("string")
.sourceIdentityListIds("string")
.sourceIdentityUsergroups("string")
.sourceIdentityUsers("string")
.sourcePortListIds("string")
.sourcePorts("string")
.sourcePortsVariable("string")
.sourceScalableGroupTagListIds("string")
.sourceSecurityGroupListIds("string")
.build())
.sequenceId("string")
.sequenceName("string")
.sequenceType("string")
.build())
.build());
embedded_security_ngfw_policy_resource = sdwan.EmbeddedSecurityNgfwPolicy("embeddedSecurityNgfwPolicyResource",
default_action="string",
feature_profile_id="string",
description="string",
name="string",
sequences=[{
"actions": [{
"parameter": "string",
"parameter_id": "string",
"type": "string",
}],
"base_action": "string",
"disable_sequence": False,
"match_entries": [{
"app_list_ids": ["string"],
"application_families": ["string"],
"applications": ["string"],
"destination_data_prefix_list_ids": ["string"],
"destination_data_prefixes": ["string"],
"destination_data_prefixes_variable": "string",
"destination_fqdn_list_ids": ["string"],
"destination_fqdns": ["string"],
"destination_fqdns_variable": "string",
"destination_geo_location_list_ids": ["string"],
"destination_geo_locations": ["string"],
"destination_geo_locations_variable": "string",
"destination_port_list_ids": ["string"],
"destination_ports": ["string"],
"destination_ports_variable": "string",
"destination_scalable_group_tag_list_ids": ["string"],
"destination_security_group_list_ids": ["string"],
"flat_app_list_ids": ["string"],
"protocol_name_list_ids": ["string"],
"protocol_names": ["string"],
"protocols": ["string"],
"source_data_prefix_list_ids": ["string"],
"source_data_prefixes": ["string"],
"source_data_prefixes_variable": "string",
"source_geo_location_list_ids": ["string"],
"source_geo_locations": ["string"],
"source_geo_locations_variable": "string",
"source_identity_list_ids": ["string"],
"source_identity_usergroups": ["string"],
"source_identity_users": ["string"],
"source_port_list_ids": ["string"],
"source_ports": ["string"],
"source_ports_variable": "string",
"source_scalable_group_tag_list_ids": ["string"],
"source_security_group_list_ids": ["string"],
}],
"sequence_id": "string",
"sequence_name": "string",
"sequence_type": "string",
}])
const embeddedSecurityNgfwPolicyResource = new sdwan.EmbeddedSecurityNgfwPolicy("embeddedSecurityNgfwPolicyResource", {
defaultAction: "string",
featureProfileId: "string",
description: "string",
name: "string",
sequences: [{
actions: [{
parameter: "string",
parameterId: "string",
type: "string",
}],
baseAction: "string",
disableSequence: false,
matchEntries: [{
appListIds: ["string"],
applicationFamilies: ["string"],
applications: ["string"],
destinationDataPrefixListIds: ["string"],
destinationDataPrefixes: ["string"],
destinationDataPrefixesVariable: "string",
destinationFqdnListIds: ["string"],
destinationFqdns: ["string"],
destinationFqdnsVariable: "string",
destinationGeoLocationListIds: ["string"],
destinationGeoLocations: ["string"],
destinationGeoLocationsVariable: "string",
destinationPortListIds: ["string"],
destinationPorts: ["string"],
destinationPortsVariable: "string",
destinationScalableGroupTagListIds: ["string"],
destinationSecurityGroupListIds: ["string"],
flatAppListIds: ["string"],
protocolNameListIds: ["string"],
protocolNames: ["string"],
protocols: ["string"],
sourceDataPrefixListIds: ["string"],
sourceDataPrefixes: ["string"],
sourceDataPrefixesVariable: "string",
sourceGeoLocationListIds: ["string"],
sourceGeoLocations: ["string"],
sourceGeoLocationsVariable: "string",
sourceIdentityListIds: ["string"],
sourceIdentityUsergroups: ["string"],
sourceIdentityUsers: ["string"],
sourcePortListIds: ["string"],
sourcePorts: ["string"],
sourcePortsVariable: "string",
sourceScalableGroupTagListIds: ["string"],
sourceSecurityGroupListIds: ["string"],
}],
sequenceId: "string",
sequenceName: "string",
sequenceType: "string",
}],
});
type: sdwan:EmbeddedSecurityNgfwPolicy
properties:
defaultAction: string
description: string
featureProfileId: string
name: string
sequences:
- actions:
- parameter: string
parameterId: string
type: string
baseAction: string
disableSequence: false
matchEntries:
- appListIds:
- string
applicationFamilies:
- string
applications:
- string
destinationDataPrefixListIds:
- string
destinationDataPrefixes:
- string
destinationDataPrefixesVariable: string
destinationFqdnListIds:
- string
destinationFqdns:
- string
destinationFqdnsVariable: string
destinationGeoLocationListIds:
- string
destinationGeoLocations:
- string
destinationGeoLocationsVariable: string
destinationPortListIds:
- string
destinationPorts:
- string
destinationPortsVariable: string
destinationScalableGroupTagListIds:
- string
destinationSecurityGroupListIds:
- string
flatAppListIds:
- string
protocolNameListIds:
- string
protocolNames:
- string
protocols:
- string
sourceDataPrefixListIds:
- string
sourceDataPrefixes:
- string
sourceDataPrefixesVariable: string
sourceGeoLocationListIds:
- string
sourceGeoLocations:
- string
sourceGeoLocationsVariable: string
sourceIdentityListIds:
- string
sourceIdentityUsergroups:
- string
sourceIdentityUsers:
- string
sourcePortListIds:
- string
sourcePorts:
- string
sourcePortsVariable: string
sourceScalableGroupTagListIds:
- string
sourceSecurityGroupListIds:
- string
sequenceId: string
sequenceName: string
sequenceType: string
EmbeddedSecurityNgfwPolicy Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The EmbeddedSecurityNgfwPolicy resource accepts the following input properties:
- Default
Action string - Choices:
pass,drop
- Choices:
- Feature
Profile stringId - Feature Profile ID
- Description string
- The description of the Policy
- Name string
- The name of the Policy
- Sequences
List<Embedded
Security Ngfw Policy Sequence>
- Default
Action string - Choices:
pass,drop
- Choices:
- Feature
Profile stringId - Feature Profile ID
- Description string
- The description of the Policy
- Name string
- The name of the Policy
- Sequences
[]Embedded
Security Ngfw Policy Sequence Args
- default_
action string - Choices:
pass,drop
- Choices:
- feature_
profile_ stringid - Feature Profile ID
- description string
- The description of the Policy
- name string
- The name of the Policy
- sequences list(object)
- default
Action String - Choices:
pass,drop
- Choices:
- feature
Profile StringId - Feature Profile ID
- description String
- The description of the Policy
- name String
- The name of the Policy
- sequences
List<Embedded
Security Ngfw Policy Sequence>
- default
Action string - Choices:
pass,drop
- Choices:
- feature
Profile stringId - Feature Profile ID
- description string
- The description of the Policy
- name string
- The name of the Policy
- sequences
Embedded
Security Ngfw Policy Sequence[]
- default_
action str - Choices:
pass,drop
- Choices:
- feature_
profile_ strid - Feature Profile ID
- description str
- The description of the Policy
- name str
- The name of the Policy
- sequences
Sequence[Embedded
Security Ngfw Policy Sequence Args]
- default
Action String - Choices:
pass,drop
- Choices:
- feature
Profile StringId - Feature Profile ID
- description String
- The description of the Policy
- name String
- The name of the Policy
- sequences List<Property Map>
Outputs
All input properties are implicitly available as output properties. Additionally, the EmbeddedSecurityNgfwPolicy resource produces the following output properties:
Look up Existing EmbeddedSecurityNgfwPolicy Resource
Get an existing EmbeddedSecurityNgfwPolicy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: EmbeddedSecurityNgfwPolicyState, opts?: CustomResourceOptions): EmbeddedSecurityNgfwPolicy@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
default_action: Optional[str] = None,
description: Optional[str] = None,
feature_profile_id: Optional[str] = None,
name: Optional[str] = None,
sequences: Optional[Sequence[EmbeddedSecurityNgfwPolicySequenceArgs]] = None,
version: Optional[int] = None) -> EmbeddedSecurityNgfwPolicyfunc GetEmbeddedSecurityNgfwPolicy(ctx *Context, name string, id IDInput, state *EmbeddedSecurityNgfwPolicyState, opts ...ResourceOption) (*EmbeddedSecurityNgfwPolicy, error)public static EmbeddedSecurityNgfwPolicy Get(string name, Input<string> id, EmbeddedSecurityNgfwPolicyState? state, CustomResourceOptions? opts = null)public static EmbeddedSecurityNgfwPolicy get(String name, Output<String> id, EmbeddedSecurityNgfwPolicyState state, CustomResourceOptions options)resources: _: type: sdwan:EmbeddedSecurityNgfwPolicy get: id: ${id}import {
to = sdwan_embeddedsecurityngfwpolicy.example
id = "${id}"
}
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Default
Action string - Choices:
pass,drop
- Choices:
- Description string
- The description of the Policy
- Feature
Profile stringId - Feature Profile ID
- Name string
- The name of the Policy
- Sequences
List<Embedded
Security Ngfw Policy Sequence> - Version int
- The version of the Policy
- Default
Action string - Choices:
pass,drop
- Choices:
- Description string
- The description of the Policy
- Feature
Profile stringId - Feature Profile ID
- Name string
- The name of the Policy
- Sequences
[]Embedded
Security Ngfw Policy Sequence Args - Version int
- The version of the Policy
- default_
action string - Choices:
pass,drop
- Choices:
- description string
- The description of the Policy
- feature_
profile_ stringid - Feature Profile ID
- name string
- The name of the Policy
- sequences list(object)
- version number
- The version of the Policy
- default
Action String - Choices:
pass,drop
- Choices:
- description String
- The description of the Policy
- feature
Profile StringId - Feature Profile ID
- name String
- The name of the Policy
- sequences
List<Embedded
Security Ngfw Policy Sequence> - version Integer
- The version of the Policy
- default
Action string - Choices:
pass,drop
- Choices:
- description string
- The description of the Policy
- feature
Profile stringId - Feature Profile ID
- name string
- The name of the Policy
- sequences
Embedded
Security Ngfw Policy Sequence[] - version number
- The version of the Policy
- default_
action str - Choices:
pass,drop
- Choices:
- description str
- The description of the Policy
- feature_
profile_ strid - Feature Profile ID
- name str
- The name of the Policy
- sequences
Sequence[Embedded
Security Ngfw Policy Sequence Args] - version int
- The version of the Policy
- default
Action String - Choices:
pass,drop
- Choices:
- description String
- The description of the Policy
- feature
Profile StringId - Feature Profile ID
- name String
- The name of the Policy
- sequences List<Property Map>
- version Number
- The version of the Policy
Supporting Types
EmbeddedSecurityNgfwPolicySequence, EmbeddedSecurityNgfwPolicySequenceArgs
- Actions
List<Embedded
Security Ngfw Policy Sequence Action> - can be empty array or with type or parameter
- Base
Action string - Choices:
pass,inspect,drop
- Choices:
- Disable
Sequence bool - Match
Entries List<EmbeddedSecurity Ngfw Policy Sequence Match Entry> - Sequence
Id string - Sequence
Name string - Sequence
Type string
- Actions
[]Embedded
Security Ngfw Policy Sequence Action - can be empty array or with type or parameter
- Base
Action string - Choices:
pass,inspect,drop
- Choices:
- Disable
Sequence bool - Match
Entries []EmbeddedSecurity Ngfw Policy Sequence Match Entry - Sequence
Id string - Sequence
Name string - Sequence
Type string
- actions list(object)
- can be empty array or with type or parameter
- base_
action string - Choices:
pass,inspect,drop
- Choices:
- disable_
sequence bool - match_
entries list(object) - sequence_
id string - sequence_
name string - sequence_
type string
- actions
List<Embedded
Security Ngfw Policy Sequence Action> - can be empty array or with type or parameter
- base
Action String - Choices:
pass,inspect,drop
- Choices:
- disable
Sequence Boolean - match
Entries List<EmbeddedSecurity Ngfw Policy Sequence Match Entry> - sequence
Id String - sequence
Name String - sequence
Type String
- actions
Embedded
Security Ngfw Policy Sequence Action[] - can be empty array or with type or parameter
- base
Action string - Choices:
pass,inspect,drop
- Choices:
- disable
Sequence boolean - match
Entries EmbeddedSecurity Ngfw Policy Sequence Match Entry[] - sequence
Id string - sequence
Name string - sequence
Type string
- actions
Sequence[Embedded
Security Ngfw Policy Sequence Action] - can be empty array or with type or parameter
- base_
action str - Choices:
pass,inspect,drop
- Choices:
- disable_
sequence bool - match_
entries Sequence[EmbeddedSecurity Ngfw Policy Sequence Match Entry] - sequence_
id str - sequence_
name str - sequence_
type str
- actions List<Property Map>
- can be empty array or with type or parameter
- base
Action String - Choices:
pass,inspect,drop
- Choices:
- disable
Sequence Boolean - match
Entries List<Property Map> - sequence
Id String - sequence
Name String - sequence
Type String
EmbeddedSecurityNgfwPolicySequenceAction, EmbeddedSecurityNgfwPolicySequenceActionArgs
- Parameter string
- Parameter
Id string - Type string
- Choices:
log,connectionEvents,advancedInspectionProfile,log,connectionEvents
- Choices:
- Parameter string
- Parameter
Id string - Type string
- Choices:
log,connectionEvents,advancedInspectionProfile,log,connectionEvents
- Choices:
- parameter string
- parameter_
id string - type string
- Choices:
log,connectionEvents,advancedInspectionProfile,log,connectionEvents
- Choices:
- parameter String
- parameter
Id String - type String
- Choices:
log,connectionEvents,advancedInspectionProfile,log,connectionEvents
- Choices:
- parameter string
- parameter
Id string - type string
- Choices:
log,connectionEvents,advancedInspectionProfile,log,connectionEvents
- Choices:
- parameter str
- parameter_
id str - type str
- Choices:
log,connectionEvents,advancedInspectionProfile,log,connectionEvents
- Choices:
- parameter String
- parameter
Id String - type String
- Choices:
log,connectionEvents,advancedInspectionProfile,log,connectionEvents
- Choices:
EmbeddedSecurityNgfwPolicySequenceMatchEntry, EmbeddedSecurityNgfwPolicySequenceMatchEntryArgs
- App
List List<string>Ids - Application
Families List<string> - Applications List<string>
- Destination
Data List<string>Prefix List Ids - Destination
Data List<string>Prefixes - Destination
Data stringPrefixes Variable - Variable name
- Destination
Fqdn List<string>List Ids - Destination
Fqdns List<string> - Destination
Fqdns stringVariable - Variable name
- Destination
Geo List<string>Location List Ids - Destination
Geo List<string>Locations - Destination
Geo stringLocations Variable - Variable name
- Destination
Port List<string>List Ids - Destination
Ports List<string> - Destination
Ports stringVariable - Variable name
- Destination
Scalable List<string>Group Tag List Ids - Destination
Security List<string>Group List Ids - Flat
App List<string>List Ids - Protocol
Name List<string>List Ids - Protocol
Names List<string> - Protocols List<string>
- Source
Data List<string>Prefix List Ids - Source
Data List<string>Prefixes - Source
Data stringPrefixes Variable - Variable name
- Source
Geo List<string>Location List Ids - Source
Geo List<string>Locations - Source
Geo stringLocations Variable - Variable name
- Source
Identity List<string>List Ids - Source
Identity List<string>Usergroups - Source
Identity List<string>Users - Source
Port List<string>List Ids - Source
Ports List<string> - Source
Ports stringVariable - Variable name
- Source
Scalable List<string>Group Tag List Ids - Source
Security List<string>Group List Ids
- App
List []stringIds - Application
Families []string - Applications []string
- Destination
Data []stringPrefix List Ids - Destination
Data []stringPrefixes - Destination
Data stringPrefixes Variable - Variable name
- Destination
Fqdn []stringList Ids - Destination
Fqdns []string - Destination
Fqdns stringVariable - Variable name
- Destination
Geo []stringLocation List Ids - Destination
Geo []stringLocations - Destination
Geo stringLocations Variable - Variable name
- Destination
Port []stringList Ids - Destination
Ports []string - Destination
Ports stringVariable - Variable name
- Destination
Scalable []stringGroup Tag List Ids - Destination
Security []stringGroup List Ids - Flat
App []stringList Ids - Protocol
Name []stringList Ids - Protocol
Names []string - Protocols []string
- Source
Data []stringPrefix List Ids - Source
Data []stringPrefixes - Source
Data stringPrefixes Variable - Variable name
- Source
Geo []stringLocation List Ids - Source
Geo []stringLocations - Source
Geo stringLocations Variable - Variable name
- Source
Identity []stringList Ids - Source
Identity []stringUsergroups - Source
Identity []stringUsers - Source
Port []stringList Ids - Source
Ports []string - Source
Ports stringVariable - Variable name
- Source
Scalable []stringGroup Tag List Ids - Source
Security []stringGroup List Ids
- app_
list_ list(string)ids - application_
families list(string) - applications list(string)
- destination_
data_ list(string)prefix_ list_ ids - destination_
data_ list(string)prefixes - destination_
data_ stringprefixes_ variable - Variable name
- destination_
fqdn_ list(string)list_ ids - destination_
fqdns list(string) - destination_
fqdns_ stringvariable - Variable name
- destination_
geo_ list(string)location_ list_ ids - destination_
geo_ list(string)locations - destination_
geo_ stringlocations_ variable - Variable name
- destination_
port_ list(string)list_ ids - destination_
ports list(string) - destination_
ports_ stringvariable - Variable name
- destination_
scalable_ list(string)group_ tag_ list_ ids - destination_
security_ list(string)group_ list_ ids - flat_
app_ list(string)list_ ids - protocol_
name_ list(string)list_ ids - protocol_
names list(string) - protocols list(string)
- source_
data_ list(string)prefix_ list_ ids - source_
data_ list(string)prefixes - source_
data_ stringprefixes_ variable - Variable name
- source_
geo_ list(string)location_ list_ ids - source_
geo_ list(string)locations - source_
geo_ stringlocations_ variable - Variable name
- source_
identity_ list(string)list_ ids - source_
identity_ list(string)usergroups - source_
identity_ list(string)users - source_
port_ list(string)list_ ids - source_
ports list(string) - source_
ports_ stringvariable - Variable name
- source_
scalable_ list(string)group_ tag_ list_ ids - source_
security_ list(string)group_ list_ ids
- app
List List<String>Ids - application
Families List<String> - applications List<String>
- destination
Data List<String>Prefix List Ids - destination
Data List<String>Prefixes - destination
Data StringPrefixes Variable - Variable name
- destination
Fqdn List<String>List Ids - destination
Fqdns List<String> - destination
Fqdns StringVariable - Variable name
- destination
Geo List<String>Location List Ids - destination
Geo List<String>Locations - destination
Geo StringLocations Variable - Variable name
- destination
Port List<String>List Ids - destination
Ports List<String> - destination
Ports StringVariable - Variable name
- destination
Scalable List<String>Group Tag List Ids - destination
Security List<String>Group List Ids - flat
App List<String>List Ids - protocol
Name List<String>List Ids - protocol
Names List<String> - protocols List<String>
- source
Data List<String>Prefix List Ids - source
Data List<String>Prefixes - source
Data StringPrefixes Variable - Variable name
- source
Geo List<String>Location List Ids - source
Geo List<String>Locations - source
Geo StringLocations Variable - Variable name
- source
Identity List<String>List Ids - source
Identity List<String>Usergroups - source
Identity List<String>Users - source
Port List<String>List Ids - source
Ports List<String> - source
Ports StringVariable - Variable name
- source
Scalable List<String>Group Tag List Ids - source
Security List<String>Group List Ids
- app
List string[]Ids - application
Families string[] - applications string[]
- destination
Data string[]Prefix List Ids - destination
Data string[]Prefixes - destination
Data stringPrefixes Variable - Variable name
- destination
Fqdn string[]List Ids - destination
Fqdns string[] - destination
Fqdns stringVariable - Variable name
- destination
Geo string[]Location List Ids - destination
Geo string[]Locations - destination
Geo stringLocations Variable - Variable name
- destination
Port string[]List Ids - destination
Ports string[] - destination
Ports stringVariable - Variable name
- destination
Scalable string[]Group Tag List Ids - destination
Security string[]Group List Ids - flat
App string[]List Ids - protocol
Name string[]List Ids - protocol
Names string[] - protocols string[]
- source
Data string[]Prefix List Ids - source
Data string[]Prefixes - source
Data stringPrefixes Variable - Variable name
- source
Geo string[]Location List Ids - source
Geo string[]Locations - source
Geo stringLocations Variable - Variable name
- source
Identity string[]List Ids - source
Identity string[]Usergroups - source
Identity string[]Users - source
Port string[]List Ids - source
Ports string[] - source
Ports stringVariable - Variable name
- source
Scalable string[]Group Tag List Ids - source
Security string[]Group List Ids
- app_
list_ Sequence[str]ids - application_
families Sequence[str] - applications Sequence[str]
- destination_
data_ Sequence[str]prefix_ list_ ids - destination_
data_ Sequence[str]prefixes - destination_
data_ strprefixes_ variable - Variable name
- destination_
fqdn_ Sequence[str]list_ ids - destination_
fqdns Sequence[str] - destination_
fqdns_ strvariable - Variable name
- destination_
geo_ Sequence[str]location_ list_ ids - destination_
geo_ Sequence[str]locations - destination_
geo_ strlocations_ variable - Variable name
- destination_
port_ Sequence[str]list_ ids - destination_
ports Sequence[str] - destination_
ports_ strvariable - Variable name
- destination_
scalable_ Sequence[str]group_ tag_ list_ ids - destination_
security_ Sequence[str]group_ list_ ids - flat_
app_ Sequence[str]list_ ids - protocol_
name_ Sequence[str]list_ ids - protocol_
names Sequence[str] - protocols Sequence[str]
- source_
data_ Sequence[str]prefix_ list_ ids - source_
data_ Sequence[str]prefixes - source_
data_ strprefixes_ variable - Variable name
- source_
geo_ Sequence[str]location_ list_ ids - source_
geo_ Sequence[str]locations - source_
geo_ strlocations_ variable - Variable name
- source_
identity_ Sequence[str]list_ ids - source_
identity_ Sequence[str]usergroups - source_
identity_ Sequence[str]users - source_
port_ Sequence[str]list_ ids - source_
ports Sequence[str] - source_
ports_ strvariable - Variable name
- source_
scalable_ Sequence[str]group_ tag_ list_ ids - source_
security_ Sequence[str]group_ list_ ids
- app
List List<String>Ids - application
Families List<String> - applications List<String>
- destination
Data List<String>Prefix List Ids - destination
Data List<String>Prefixes - destination
Data StringPrefixes Variable - Variable name
- destination
Fqdn List<String>List Ids - destination
Fqdns List<String> - destination
Fqdns StringVariable - Variable name
- destination
Geo List<String>Location List Ids - destination
Geo List<String>Locations - destination
Geo StringLocations Variable - Variable name
- destination
Port List<String>List Ids - destination
Ports List<String> - destination
Ports StringVariable - Variable name
- destination
Scalable List<String>Group Tag List Ids - destination
Security List<String>Group List Ids - flat
App List<String>List Ids - protocol
Name List<String>List Ids - protocol
Names List<String> - protocols List<String>
- source
Data List<String>Prefix List Ids - source
Data List<String>Prefixes - source
Data StringPrefixes Variable - Variable name
- source
Geo List<String>Location List Ids - source
Geo List<String>Locations - source
Geo StringLocations Variable - Variable name
- source
Identity List<String>List Ids - source
Identity List<String>Usergroups - source
Identity List<String>Users - source
Port List<String>List Ids - source
Ports List<String> - source
Ports StringVariable - Variable name
- source
Scalable List<String>Group Tag List Ids - source
Security List<String>Group List Ids
Import
The pulumi import command can be used, for example:
Expected import identifier with the format: “embedded_security_ngfw_policy_id,feature_profile_id”
$ pulumi import sdwan:index/embeddedSecurityNgfwPolicy:EmbeddedSecurityNgfwPolicy example "f6b2c44c-693c-4763-b010-895aa3d236bd,f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac"
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- sdwan pulumi/pulumi-sdwan
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
sdwanTerraform Provider.
Viewing docs for Cisco Catalyst SD-WAN v0.8.1
published on Tuesday, Apr 7, 2026 by Pulumi
published on Tuesday, Apr 7, 2026 by Pulumi
