This is the latest version of Azure Native. Use the Azure Native v1 docs if using the v1 version of this package.
Azure Native v2.47.1 published on Monday, Jun 24, 2024 by Pulumi
azure-native.network.getFirewallPolicy
Explore with Pulumi AI
This is the latest version of Azure Native. Use the Azure Native v1 docs if using the v1 version of this package.
Azure Native v2.47.1 published on Monday, Jun 24, 2024 by Pulumi
Gets the specified Firewall Policy. Azure REST API version: 2023-02-01.
Other available API versions: 2020-04-01, 2021-08-01, 2023-04-01, 2023-05-01, 2023-06-01, 2023-09-01, 2023-11-01, 2024-01-01.
Using getFirewallPolicy
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getFirewallPolicy(args: GetFirewallPolicyArgs, opts?: InvokeOptions): Promise<GetFirewallPolicyResult>
function getFirewallPolicyOutput(args: GetFirewallPolicyOutputArgs, opts?: InvokeOptions): Output<GetFirewallPolicyResult>
def get_firewall_policy(expand: Optional[str] = None,
firewall_policy_name: Optional[str] = None,
resource_group_name: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetFirewallPolicyResult
def get_firewall_policy_output(expand: Optional[pulumi.Input[str]] = None,
firewall_policy_name: Optional[pulumi.Input[str]] = None,
resource_group_name: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetFirewallPolicyResult]
func LookupFirewallPolicy(ctx *Context, args *LookupFirewallPolicyArgs, opts ...InvokeOption) (*LookupFirewallPolicyResult, error)
func LookupFirewallPolicyOutput(ctx *Context, args *LookupFirewallPolicyOutputArgs, opts ...InvokeOption) LookupFirewallPolicyResultOutput
> Note: This function is named LookupFirewallPolicy
in the Go SDK.
public static class GetFirewallPolicy
{
public static Task<GetFirewallPolicyResult> InvokeAsync(GetFirewallPolicyArgs args, InvokeOptions? opts = null)
public static Output<GetFirewallPolicyResult> Invoke(GetFirewallPolicyInvokeArgs args, InvokeOptions? opts = null)
}
public static CompletableFuture<GetFirewallPolicyResult> getFirewallPolicy(GetFirewallPolicyArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet
fn::invoke:
function: azure-native:network:getFirewallPolicy
arguments:
# arguments dictionary
The following arguments are supported:
- Firewall
Policy stringName - The name of the Firewall Policy.
- Resource
Group stringName - The name of the resource group.
- Expand string
- Expands referenced resources.
- Firewall
Policy stringName - The name of the Firewall Policy.
- Resource
Group stringName - The name of the resource group.
- Expand string
- Expands referenced resources.
- firewall
Policy StringName - The name of the Firewall Policy.
- resource
Group StringName - The name of the resource group.
- expand String
- Expands referenced resources.
- firewall
Policy stringName - The name of the Firewall Policy.
- resource
Group stringName - The name of the resource group.
- expand string
- Expands referenced resources.
- firewall_
policy_ strname - The name of the Firewall Policy.
- resource_
group_ strname - The name of the resource group.
- expand str
- Expands referenced resources.
- firewall
Policy StringName - The name of the Firewall Policy.
- resource
Group StringName - The name of the resource group.
- expand String
- Expands referenced resources.
getFirewallPolicy Result
The following output properties are available:
- Child
Policies List<Pulumi.Azure Native. Network. Outputs. Sub Resource Response> - List of references to Child Firewall Policies.
- Etag string
- A unique read-only string that changes whenever the resource is updated.
- Firewalls
List<Pulumi.
Azure Native. Network. Outputs. Sub Resource Response> - List of references to Azure Firewalls that this Firewall Policy is associated with.
- Name string
- Resource name.
- Provisioning
State string - The provisioning state of the firewall policy resource.
- Rule
Collection List<Pulumi.Groups Azure Native. Network. Outputs. Sub Resource Response> - List of references to FirewallPolicyRuleCollectionGroups.
- Type string
- Resource type.
- Base
Policy Pulumi.Azure Native. Network. Outputs. Sub Resource Response - The parent firewall policy from which rules are inherited.
- Dns
Settings Pulumi.Azure Native. Network. Outputs. Dns Settings Response - DNS Proxy Settings definition.
- Explicit
Proxy Pulumi.Azure Native. Network. Outputs. Explicit Proxy Response - Explicit Proxy Settings definition.
- Id string
- Resource ID.
- Identity
Pulumi.
Azure Native. Network. Outputs. Managed Service Identity Response - The identity of the firewall policy.
- Insights
Pulumi.
Azure Native. Network. Outputs. Firewall Policy Insights Response - Insights on Firewall Policy.
- Intrusion
Detection Pulumi.Azure Native. Network. Outputs. Firewall Policy Intrusion Detection Response - The configuration for Intrusion detection.
- Location string
- Resource location.
- Sku
Pulumi.
Azure Native. Network. Outputs. Firewall Policy Sku Response - The Firewall Policy SKU.
- Snat
Pulumi.
Azure Native. Network. Outputs. Firewall Policy SNATResponse - The private IP addresses/IP ranges to which traffic will not be SNAT.
- Sql
Pulumi.
Azure Native. Network. Outputs. Firewall Policy SQLResponse - SQL Settings definition.
- Dictionary<string, string>
- Resource tags.
- Threat
Intel stringMode - The operation mode for Threat Intelligence.
- Threat
Intel Pulumi.Whitelist Azure Native. Network. Outputs. Firewall Policy Threat Intel Whitelist Response - ThreatIntel Whitelist for Firewall Policy.
- Transport
Security Pulumi.Azure Native. Network. Outputs. Firewall Policy Transport Security Response - TLS Configuration definition.
- Child
Policies []SubResource Response - List of references to Child Firewall Policies.
- Etag string
- A unique read-only string that changes whenever the resource is updated.
- Firewalls
[]Sub
Resource Response - List of references to Azure Firewalls that this Firewall Policy is associated with.
- Name string
- Resource name.
- Provisioning
State string - The provisioning state of the firewall policy resource.
- Rule
Collection []SubGroups Resource Response - List of references to FirewallPolicyRuleCollectionGroups.
- Type string
- Resource type.
- Base
Policy SubResource Response - The parent firewall policy from which rules are inherited.
- Dns
Settings DnsSettings Response - DNS Proxy Settings definition.
- Explicit
Proxy ExplicitProxy Response - Explicit Proxy Settings definition.
- Id string
- Resource ID.
- Identity
Managed
Service Identity Response - The identity of the firewall policy.
- Insights
Firewall
Policy Insights Response - Insights on Firewall Policy.
- Intrusion
Detection FirewallPolicy Intrusion Detection Response - The configuration for Intrusion detection.
- Location string
- Resource location.
- Sku
Firewall
Policy Sku Response - The Firewall Policy SKU.
- Snat
Firewall
Policy SNATResponse - The private IP addresses/IP ranges to which traffic will not be SNAT.
- Sql
Firewall
Policy SQLResponse - SQL Settings definition.
- map[string]string
- Resource tags.
- Threat
Intel stringMode - The operation mode for Threat Intelligence.
- Threat
Intel FirewallWhitelist Policy Threat Intel Whitelist Response - ThreatIntel Whitelist for Firewall Policy.
- Transport
Security FirewallPolicy Transport Security Response - TLS Configuration definition.
- child
Policies List<SubResource Response> - List of references to Child Firewall Policies.
- etag String
- A unique read-only string that changes whenever the resource is updated.
- firewalls
List<Sub
Resource Response> - List of references to Azure Firewalls that this Firewall Policy is associated with.
- name String
- Resource name.
- provisioning
State String - The provisioning state of the firewall policy resource.
- rule
Collection List<SubGroups Resource Response> - List of references to FirewallPolicyRuleCollectionGroups.
- type String
- Resource type.
- base
Policy SubResource Response - The parent firewall policy from which rules are inherited.
- dns
Settings DnsSettings Response - DNS Proxy Settings definition.
- explicit
Proxy ExplicitProxy Response - Explicit Proxy Settings definition.
- id String
- Resource ID.
- identity
Managed
Service Identity Response - The identity of the firewall policy.
- insights
Firewall
Policy Insights Response - Insights on Firewall Policy.
- intrusion
Detection FirewallPolicy Intrusion Detection Response - The configuration for Intrusion detection.
- location String
- Resource location.
- sku
Firewall
Policy Sku Response - The Firewall Policy SKU.
- snat
Firewall
Policy SNATResponse - The private IP addresses/IP ranges to which traffic will not be SNAT.
- sql
Firewall
Policy SQLResponse - SQL Settings definition.
- Map<String,String>
- Resource tags.
- threat
Intel StringMode - The operation mode for Threat Intelligence.
- threat
Intel FirewallWhitelist Policy Threat Intel Whitelist Response - ThreatIntel Whitelist for Firewall Policy.
- transport
Security FirewallPolicy Transport Security Response - TLS Configuration definition.
- child
Policies SubResource Response[] - List of references to Child Firewall Policies.
- etag string
- A unique read-only string that changes whenever the resource is updated.
- firewalls
Sub
Resource Response[] - List of references to Azure Firewalls that this Firewall Policy is associated with.
- name string
- Resource name.
- provisioning
State string - The provisioning state of the firewall policy resource.
- rule
Collection SubGroups Resource Response[] - List of references to FirewallPolicyRuleCollectionGroups.
- type string
- Resource type.
- base
Policy SubResource Response - The parent firewall policy from which rules are inherited.
- dns
Settings DnsSettings Response - DNS Proxy Settings definition.
- explicit
Proxy ExplicitProxy Response - Explicit Proxy Settings definition.
- id string
- Resource ID.
- identity
Managed
Service Identity Response - The identity of the firewall policy.
- insights
Firewall
Policy Insights Response - Insights on Firewall Policy.
- intrusion
Detection FirewallPolicy Intrusion Detection Response - The configuration for Intrusion detection.
- location string
- Resource location.
- sku
Firewall
Policy Sku Response - The Firewall Policy SKU.
- snat
Firewall
Policy SNATResponse - The private IP addresses/IP ranges to which traffic will not be SNAT.
- sql
Firewall
Policy SQLResponse - SQL Settings definition.
- {[key: string]: string}
- Resource tags.
- threat
Intel stringMode - The operation mode for Threat Intelligence.
- threat
Intel FirewallWhitelist Policy Threat Intel Whitelist Response - ThreatIntel Whitelist for Firewall Policy.
- transport
Security FirewallPolicy Transport Security Response - TLS Configuration definition.
- child_
policies Sequence[SubResource Response] - List of references to Child Firewall Policies.
- etag str
- A unique read-only string that changes whenever the resource is updated.
- firewalls
Sequence[Sub
Resource Response] - List of references to Azure Firewalls that this Firewall Policy is associated with.
- name str
- Resource name.
- provisioning_
state str - The provisioning state of the firewall policy resource.
- rule_
collection_ Sequence[Subgroups Resource Response] - List of references to FirewallPolicyRuleCollectionGroups.
- type str
- Resource type.
- base_
policy SubResource Response - The parent firewall policy from which rules are inherited.
- dns_
settings DnsSettings Response - DNS Proxy Settings definition.
- explicit_
proxy ExplicitProxy Response - Explicit Proxy Settings definition.
- id str
- Resource ID.
- identity
Managed
Service Identity Response - The identity of the firewall policy.
- insights
Firewall
Policy Insights Response - Insights on Firewall Policy.
- intrusion_
detection FirewallPolicy Intrusion Detection Response - The configuration for Intrusion detection.
- location str
- Resource location.
- sku
Firewall
Policy Sku Response - The Firewall Policy SKU.
- snat
Firewall
Policy SNATResponse - The private IP addresses/IP ranges to which traffic will not be SNAT.
- sql
Firewall
Policy SQLResponse - SQL Settings definition.
- Mapping[str, str]
- Resource tags.
- threat_
intel_ strmode - The operation mode for Threat Intelligence.
- threat_
intel_ Firewallwhitelist Policy Threat Intel Whitelist Response - ThreatIntel Whitelist for Firewall Policy.
- transport_
security FirewallPolicy Transport Security Response - TLS Configuration definition.
- child
Policies List<Property Map> - List of references to Child Firewall Policies.
- etag String
- A unique read-only string that changes whenever the resource is updated.
- firewalls List<Property Map>
- List of references to Azure Firewalls that this Firewall Policy is associated with.
- name String
- Resource name.
- provisioning
State String - The provisioning state of the firewall policy resource.
- rule
Collection List<Property Map>Groups - List of references to FirewallPolicyRuleCollectionGroups.
- type String
- Resource type.
- base
Policy Property Map - The parent firewall policy from which rules are inherited.
- dns
Settings Property Map - DNS Proxy Settings definition.
- explicit
Proxy Property Map - Explicit Proxy Settings definition.
- id String
- Resource ID.
- identity Property Map
- The identity of the firewall policy.
- insights Property Map
- Insights on Firewall Policy.
- intrusion
Detection Property Map - The configuration for Intrusion detection.
- location String
- Resource location.
- sku Property Map
- The Firewall Policy SKU.
- snat Property Map
- The private IP addresses/IP ranges to which traffic will not be SNAT.
- sql Property Map
- SQL Settings definition.
- Map<String>
- Resource tags.
- threat
Intel StringMode - The operation mode for Threat Intelligence.
- threat
Intel Property MapWhitelist - ThreatIntel Whitelist for Firewall Policy.
- transport
Security Property Map - TLS Configuration definition.
Supporting Types
DnsSettingsResponse
- Enable
Proxy bool - Enable DNS Proxy on Firewalls attached to the Firewall Policy.
- Require
Proxy boolFor Network Rules - FQDNs in Network Rules are supported when set to true.
- Servers List<string>
- List of Custom DNS Servers.
- Enable
Proxy bool - Enable DNS Proxy on Firewalls attached to the Firewall Policy.
- Require
Proxy boolFor Network Rules - FQDNs in Network Rules are supported when set to true.
- Servers []string
- List of Custom DNS Servers.
- enable
Proxy Boolean - Enable DNS Proxy on Firewalls attached to the Firewall Policy.
- require
Proxy BooleanFor Network Rules - FQDNs in Network Rules are supported when set to true.
- servers List<String>
- List of Custom DNS Servers.
- enable
Proxy boolean - Enable DNS Proxy on Firewalls attached to the Firewall Policy.
- require
Proxy booleanFor Network Rules - FQDNs in Network Rules are supported when set to true.
- servers string[]
- List of Custom DNS Servers.
- enable_
proxy bool - Enable DNS Proxy on Firewalls attached to the Firewall Policy.
- require_
proxy_ boolfor_ network_ rules - FQDNs in Network Rules are supported when set to true.
- servers Sequence[str]
- List of Custom DNS Servers.
- enable
Proxy Boolean - Enable DNS Proxy on Firewalls attached to the Firewall Policy.
- require
Proxy BooleanFor Network Rules - FQDNs in Network Rules are supported when set to true.
- servers List<String>
- List of Custom DNS Servers.
ExplicitProxyResponse
- Enable
Explicit boolProxy - When set to true, explicit proxy mode is enabled.
- Enable
Pac boolFile - When set to true, pac file port and url needs to be provided.
- Http
Port int - Port number for explicit proxy http protocol, cannot be greater than 64000.
- Https
Port int - Port number for explicit proxy https protocol, cannot be greater than 64000.
- Pac
File string - SAS URL for PAC file.
- Pac
File intPort - Port number for firewall to serve PAC file.
- Enable
Explicit boolProxy - When set to true, explicit proxy mode is enabled.
- Enable
Pac boolFile - When set to true, pac file port and url needs to be provided.
- Http
Port int - Port number for explicit proxy http protocol, cannot be greater than 64000.
- Https
Port int - Port number for explicit proxy https protocol, cannot be greater than 64000.
- Pac
File string - SAS URL for PAC file.
- Pac
File intPort - Port number for firewall to serve PAC file.
- enable
Explicit BooleanProxy - When set to true, explicit proxy mode is enabled.
- enable
Pac BooleanFile - When set to true, pac file port and url needs to be provided.
- http
Port Integer - Port number for explicit proxy http protocol, cannot be greater than 64000.
- https
Port Integer - Port number for explicit proxy https protocol, cannot be greater than 64000.
- pac
File String - SAS URL for PAC file.
- pac
File IntegerPort - Port number for firewall to serve PAC file.
- enable
Explicit booleanProxy - When set to true, explicit proxy mode is enabled.
- enable
Pac booleanFile - When set to true, pac file port and url needs to be provided.
- http
Port number - Port number for explicit proxy http protocol, cannot be greater than 64000.
- https
Port number - Port number for explicit proxy https protocol, cannot be greater than 64000.
- pac
File string - SAS URL for PAC file.
- pac
File numberPort - Port number for firewall to serve PAC file.
- enable_
explicit_ boolproxy - When set to true, explicit proxy mode is enabled.
- enable_
pac_ boolfile - When set to true, pac file port and url needs to be provided.
- http_
port int - Port number for explicit proxy http protocol, cannot be greater than 64000.
- https_
port int - Port number for explicit proxy https protocol, cannot be greater than 64000.
- pac_
file str - SAS URL for PAC file.
- pac_
file_ intport - Port number for firewall to serve PAC file.
- enable
Explicit BooleanProxy - When set to true, explicit proxy mode is enabled.
- enable
Pac BooleanFile - When set to true, pac file port and url needs to be provided.
- http
Port Number - Port number for explicit proxy http protocol, cannot be greater than 64000.
- https
Port Number - Port number for explicit proxy https protocol, cannot be greater than 64000.
- pac
File String - SAS URL for PAC file.
- pac
File NumberPort - Port number for firewall to serve PAC file.
FirewallPolicyCertificateAuthorityResponse
- Key
Vault stringSecret Id - Secret Id of (base-64 encoded unencrypted pfx) 'Secret' or 'Certificate' object stored in KeyVault.
- Name string
- Name of the CA certificate.
- Key
Vault stringSecret Id - Secret Id of (base-64 encoded unencrypted pfx) 'Secret' or 'Certificate' object stored in KeyVault.
- Name string
- Name of the CA certificate.
- key
Vault StringSecret Id - Secret Id of (base-64 encoded unencrypted pfx) 'Secret' or 'Certificate' object stored in KeyVault.
- name String
- Name of the CA certificate.
- key
Vault stringSecret Id - Secret Id of (base-64 encoded unencrypted pfx) 'Secret' or 'Certificate' object stored in KeyVault.
- name string
- Name of the CA certificate.
- key_
vault_ strsecret_ id - Secret Id of (base-64 encoded unencrypted pfx) 'Secret' or 'Certificate' object stored in KeyVault.
- name str
- Name of the CA certificate.
- key
Vault StringSecret Id - Secret Id of (base-64 encoded unencrypted pfx) 'Secret' or 'Certificate' object stored in KeyVault.
- name String
- Name of the CA certificate.
FirewallPolicyInsightsResponse
- Is
Enabled bool - A flag to indicate if the insights are enabled on the policy.
- Log
Analytics Pulumi.Resources Azure Native. Network. Inputs. Firewall Policy Log Analytics Resources Response - Workspaces needed to configure the Firewall Policy Insights.
- Retention
Days int - Number of days the insights should be enabled on the policy.
- Is
Enabled bool - A flag to indicate if the insights are enabled on the policy.
- Log
Analytics FirewallResources Policy Log Analytics Resources Response - Workspaces needed to configure the Firewall Policy Insights.
- Retention
Days int - Number of days the insights should be enabled on the policy.
- is
Enabled Boolean - A flag to indicate if the insights are enabled on the policy.
- log
Analytics FirewallResources Policy Log Analytics Resources Response - Workspaces needed to configure the Firewall Policy Insights.
- retention
Days Integer - Number of days the insights should be enabled on the policy.
- is
Enabled boolean - A flag to indicate if the insights are enabled on the policy.
- log
Analytics FirewallResources Policy Log Analytics Resources Response - Workspaces needed to configure the Firewall Policy Insights.
- retention
Days number - Number of days the insights should be enabled on the policy.
- is_
enabled bool - A flag to indicate if the insights are enabled on the policy.
- log_
analytics_ Firewallresources Policy Log Analytics Resources Response - Workspaces needed to configure the Firewall Policy Insights.
- retention_
days int - Number of days the insights should be enabled on the policy.
- is
Enabled Boolean - A flag to indicate if the insights are enabled on the policy.
- log
Analytics Property MapResources - Workspaces needed to configure the Firewall Policy Insights.
- retention
Days Number - Number of days the insights should be enabled on the policy.
FirewallPolicyIntrusionDetectionBypassTrafficSpecificationsResponse
- Description string
- Description of the bypass traffic rule.
- Destination
Addresses List<string> - List of destination IP addresses or ranges for this rule.
- Destination
Ip List<string>Groups - List of destination IpGroups for this rule.
- Destination
Ports List<string> - List of destination ports or ranges.
- Name string
- Name of the bypass traffic rule.
- Protocol string
- The rule bypass protocol.
- Source
Addresses List<string> - List of source IP addresses or ranges for this rule.
- Source
Ip List<string>Groups - List of source IpGroups for this rule.
- Description string
- Description of the bypass traffic rule.
- Destination
Addresses []string - List of destination IP addresses or ranges for this rule.
- Destination
Ip []stringGroups - List of destination IpGroups for this rule.
- Destination
Ports []string - List of destination ports or ranges.
- Name string
- Name of the bypass traffic rule.
- Protocol string
- The rule bypass protocol.
- Source
Addresses []string - List of source IP addresses or ranges for this rule.
- Source
Ip []stringGroups - List of source IpGroups for this rule.
- description String
- Description of the bypass traffic rule.
- destination
Addresses List<String> - List of destination IP addresses or ranges for this rule.
- destination
Ip List<String>Groups - List of destination IpGroups for this rule.
- destination
Ports List<String> - List of destination ports or ranges.
- name String
- Name of the bypass traffic rule.
- protocol String
- The rule bypass protocol.
- source
Addresses List<String> - List of source IP addresses or ranges for this rule.
- source
Ip List<String>Groups - List of source IpGroups for this rule.
- description string
- Description of the bypass traffic rule.
- destination
Addresses string[] - List of destination IP addresses or ranges for this rule.
- destination
Ip string[]Groups - List of destination IpGroups for this rule.
- destination
Ports string[] - List of destination ports or ranges.
- name string
- Name of the bypass traffic rule.
- protocol string
- The rule bypass protocol.
- source
Addresses string[] - List of source IP addresses or ranges for this rule.
- source
Ip string[]Groups - List of source IpGroups for this rule.
- description str
- Description of the bypass traffic rule.
- destination_
addresses Sequence[str] - List of destination IP addresses or ranges for this rule.
- destination_
ip_ Sequence[str]groups - List of destination IpGroups for this rule.
- destination_
ports Sequence[str] - List of destination ports or ranges.
- name str
- Name of the bypass traffic rule.
- protocol str
- The rule bypass protocol.
- source_
addresses Sequence[str] - List of source IP addresses or ranges for this rule.
- source_
ip_ Sequence[str]groups - List of source IpGroups for this rule.
- description String
- Description of the bypass traffic rule.
- destination
Addresses List<String> - List of destination IP addresses or ranges for this rule.
- destination
Ip List<String>Groups - List of destination IpGroups for this rule.
- destination
Ports List<String> - List of destination ports or ranges.
- name String
- Name of the bypass traffic rule.
- protocol String
- The rule bypass protocol.
- source
Addresses List<String> - List of source IP addresses or ranges for this rule.
- source
Ip List<String>Groups - List of source IpGroups for this rule.
FirewallPolicyIntrusionDetectionConfigurationResponse
- Bypass
Traffic List<Pulumi.Settings Azure Native. Network. Inputs. Firewall Policy Intrusion Detection Bypass Traffic Specifications Response> - List of rules for traffic to bypass.
- Private
Ranges List<string> - IDPS Private IP address ranges are used to identify traffic direction (i.e. inbound, outbound, etc.). By default, only ranges defined by IANA RFC 1918 are considered private IP addresses. To modify default ranges, specify your Private IP address ranges with this property
- Signature
Overrides List<Pulumi.Azure Native. Network. Inputs. Firewall Policy Intrusion Detection Signature Specification Response> - List of specific signatures states.
- Bypass
Traffic []FirewallSettings Policy Intrusion Detection Bypass Traffic Specifications Response - List of rules for traffic to bypass.
- Private
Ranges []string - IDPS Private IP address ranges are used to identify traffic direction (i.e. inbound, outbound, etc.). By default, only ranges defined by IANA RFC 1918 are considered private IP addresses. To modify default ranges, specify your Private IP address ranges with this property
- Signature
Overrides []FirewallPolicy Intrusion Detection Signature Specification Response - List of specific signatures states.
- bypass
Traffic List<FirewallSettings Policy Intrusion Detection Bypass Traffic Specifications Response> - List of rules for traffic to bypass.
- private
Ranges List<String> - IDPS Private IP address ranges are used to identify traffic direction (i.e. inbound, outbound, etc.). By default, only ranges defined by IANA RFC 1918 are considered private IP addresses. To modify default ranges, specify your Private IP address ranges with this property
- signature
Overrides List<FirewallPolicy Intrusion Detection Signature Specification Response> - List of specific signatures states.
- bypass
Traffic FirewallSettings Policy Intrusion Detection Bypass Traffic Specifications Response[] - List of rules for traffic to bypass.
- private
Ranges string[] - IDPS Private IP address ranges are used to identify traffic direction (i.e. inbound, outbound, etc.). By default, only ranges defined by IANA RFC 1918 are considered private IP addresses. To modify default ranges, specify your Private IP address ranges with this property
- signature
Overrides FirewallPolicy Intrusion Detection Signature Specification Response[] - List of specific signatures states.
- bypass_
traffic_ Sequence[Firewallsettings Policy Intrusion Detection Bypass Traffic Specifications Response] - List of rules for traffic to bypass.
- private_
ranges Sequence[str] - IDPS Private IP address ranges are used to identify traffic direction (i.e. inbound, outbound, etc.). By default, only ranges defined by IANA RFC 1918 are considered private IP addresses. To modify default ranges, specify your Private IP address ranges with this property
- signature_
overrides Sequence[FirewallPolicy Intrusion Detection Signature Specification Response] - List of specific signatures states.
- bypass
Traffic List<Property Map>Settings - List of rules for traffic to bypass.
- private
Ranges List<String> - IDPS Private IP address ranges are used to identify traffic direction (i.e. inbound, outbound, etc.). By default, only ranges defined by IANA RFC 1918 are considered private IP addresses. To modify default ranges, specify your Private IP address ranges with this property
- signature
Overrides List<Property Map> - List of specific signatures states.
FirewallPolicyIntrusionDetectionResponse
- Configuration
Pulumi.
Azure Native. Network. Inputs. Firewall Policy Intrusion Detection Configuration Response - Intrusion detection configuration properties.
- Mode string
- Intrusion detection general state. When attached to a parent policy, the firewall's effective IDPS mode is the stricter mode of the two.
- Profile string
- IDPS profile name. When attached to a parent policy, the firewall's effective profile is the profile name of the parent policy.
- Configuration
Firewall
Policy Intrusion Detection Configuration Response - Intrusion detection configuration properties.
- Mode string
- Intrusion detection general state. When attached to a parent policy, the firewall's effective IDPS mode is the stricter mode of the two.
- Profile string
- IDPS profile name. When attached to a parent policy, the firewall's effective profile is the profile name of the parent policy.
- configuration
Firewall
Policy Intrusion Detection Configuration Response - Intrusion detection configuration properties.
- mode String
- Intrusion detection general state. When attached to a parent policy, the firewall's effective IDPS mode is the stricter mode of the two.
- profile String
- IDPS profile name. When attached to a parent policy, the firewall's effective profile is the profile name of the parent policy.
- configuration
Firewall
Policy Intrusion Detection Configuration Response - Intrusion detection configuration properties.
- mode string
- Intrusion detection general state. When attached to a parent policy, the firewall's effective IDPS mode is the stricter mode of the two.
- profile string
- IDPS profile name. When attached to a parent policy, the firewall's effective profile is the profile name of the parent policy.
- configuration
Firewall
Policy Intrusion Detection Configuration Response - Intrusion detection configuration properties.
- mode str
- Intrusion detection general state. When attached to a parent policy, the firewall's effective IDPS mode is the stricter mode of the two.
- profile str
- IDPS profile name. When attached to a parent policy, the firewall's effective profile is the profile name of the parent policy.
- configuration Property Map
- Intrusion detection configuration properties.
- mode String
- Intrusion detection general state. When attached to a parent policy, the firewall's effective IDPS mode is the stricter mode of the two.
- profile String
- IDPS profile name. When attached to a parent policy, the firewall's effective profile is the profile name of the parent policy.
FirewallPolicyIntrusionDetectionSignatureSpecificationResponse
FirewallPolicyLogAnalyticsResourcesResponse
- Default
Workspace Pulumi.Id Azure Native. Network. Inputs. Sub Resource Response - The default workspace Id for Firewall Policy Insights.
- Workspaces
List<Pulumi.
Azure Native. Network. Inputs. Firewall Policy Log Analytics Workspace Response> - List of workspaces for Firewall Policy Insights.
- Default
Workspace SubId Resource Response - The default workspace Id for Firewall Policy Insights.
- Workspaces
[]Firewall
Policy Log Analytics Workspace Response - List of workspaces for Firewall Policy Insights.
- default
Workspace SubId Resource Response - The default workspace Id for Firewall Policy Insights.
- workspaces
List<Firewall
Policy Log Analytics Workspace Response> - List of workspaces for Firewall Policy Insights.
- default
Workspace SubId Resource Response - The default workspace Id for Firewall Policy Insights.
- workspaces
Firewall
Policy Log Analytics Workspace Response[] - List of workspaces for Firewall Policy Insights.
- default_
workspace_ Subid Resource Response - The default workspace Id for Firewall Policy Insights.
- workspaces
Sequence[Firewall
Policy Log Analytics Workspace Response] - List of workspaces for Firewall Policy Insights.
- default
Workspace Property MapId - The default workspace Id for Firewall Policy Insights.
- workspaces List<Property Map>
- List of workspaces for Firewall Policy Insights.
FirewallPolicyLogAnalyticsWorkspaceResponse
- Region string
- Region to configure the Workspace.
- Workspace
Id Pulumi.Azure Native. Network. Inputs. Sub Resource Response - The workspace Id for Firewall Policy Insights.
- Region string
- Region to configure the Workspace.
- Workspace
Id SubResource Response - The workspace Id for Firewall Policy Insights.
- region String
- Region to configure the Workspace.
- workspace
Id SubResource Response - The workspace Id for Firewall Policy Insights.
- region string
- Region to configure the Workspace.
- workspace
Id SubResource Response - The workspace Id for Firewall Policy Insights.
- region str
- Region to configure the Workspace.
- workspace_
id SubResource Response - The workspace Id for Firewall Policy Insights.
- region String
- Region to configure the Workspace.
- workspace
Id Property Map - The workspace Id for Firewall Policy Insights.
FirewallPolicySNATResponse
- Auto
Learn stringPrivate Ranges - The operation mode for automatically learning private ranges to not be SNAT
- Private
Ranges List<string> - List of private IP addresses/IP address ranges to not be SNAT.
- Auto
Learn stringPrivate Ranges - The operation mode for automatically learning private ranges to not be SNAT
- Private
Ranges []string - List of private IP addresses/IP address ranges to not be SNAT.
- auto
Learn StringPrivate Ranges - The operation mode for automatically learning private ranges to not be SNAT
- private
Ranges List<String> - List of private IP addresses/IP address ranges to not be SNAT.
- auto
Learn stringPrivate Ranges - The operation mode for automatically learning private ranges to not be SNAT
- private
Ranges string[] - List of private IP addresses/IP address ranges to not be SNAT.
- auto_
learn_ strprivate_ ranges - The operation mode for automatically learning private ranges to not be SNAT
- private_
ranges Sequence[str] - List of private IP addresses/IP address ranges to not be SNAT.
- auto
Learn StringPrivate Ranges - The operation mode for automatically learning private ranges to not be SNAT
- private
Ranges List<String> - List of private IP addresses/IP address ranges to not be SNAT.
FirewallPolicySQLResponse
- Allow
Sql boolRedirect - A flag to indicate if SQL Redirect traffic filtering is enabled. Turning on the flag requires no rule using port 11000-11999.
- Allow
Sql boolRedirect - A flag to indicate if SQL Redirect traffic filtering is enabled. Turning on the flag requires no rule using port 11000-11999.
- allow
Sql BooleanRedirect - A flag to indicate if SQL Redirect traffic filtering is enabled. Turning on the flag requires no rule using port 11000-11999.
- allow
Sql booleanRedirect - A flag to indicate if SQL Redirect traffic filtering is enabled. Turning on the flag requires no rule using port 11000-11999.
- allow_
sql_ boolredirect - A flag to indicate if SQL Redirect traffic filtering is enabled. Turning on the flag requires no rule using port 11000-11999.
- allow
Sql BooleanRedirect - A flag to indicate if SQL Redirect traffic filtering is enabled. Turning on the flag requires no rule using port 11000-11999.
FirewallPolicySkuResponse
- Tier string
- Tier of Firewall Policy.
- Tier string
- Tier of Firewall Policy.
- tier String
- Tier of Firewall Policy.
- tier string
- Tier of Firewall Policy.
- tier str
- Tier of Firewall Policy.
- tier String
- Tier of Firewall Policy.
FirewallPolicyThreatIntelWhitelistResponse
- Fqdns List<string>
- List of FQDNs for the ThreatIntel Whitelist.
- Ip
Addresses List<string> - List of IP addresses for the ThreatIntel Whitelist.
- Fqdns []string
- List of FQDNs for the ThreatIntel Whitelist.
- Ip
Addresses []string - List of IP addresses for the ThreatIntel Whitelist.
- fqdns List<String>
- List of FQDNs for the ThreatIntel Whitelist.
- ip
Addresses List<String> - List of IP addresses for the ThreatIntel Whitelist.
- fqdns string[]
- List of FQDNs for the ThreatIntel Whitelist.
- ip
Addresses string[] - List of IP addresses for the ThreatIntel Whitelist.
- fqdns Sequence[str]
- List of FQDNs for the ThreatIntel Whitelist.
- ip_
addresses Sequence[str] - List of IP addresses for the ThreatIntel Whitelist.
- fqdns List<String>
- List of FQDNs for the ThreatIntel Whitelist.
- ip
Addresses List<String> - List of IP addresses for the ThreatIntel Whitelist.
FirewallPolicyTransportSecurityResponse
- Pulumi.
Azure Native. Network. Inputs. Firewall Policy Certificate Authority Response - The CA used for intermediate CA generation.
- Firewall
Policy Certificate Authority Response - The CA used for intermediate CA generation.
- Firewall
Policy Certificate Authority Response - The CA used for intermediate CA generation.
- Firewall
Policy Certificate Authority Response - The CA used for intermediate CA generation.
- Firewall
Policy Certificate Authority Response - The CA used for intermediate CA generation.
- Property Map
- The CA used for intermediate CA generation.
ManagedServiceIdentityResponse
- Principal
Id string - The principal id of the system assigned identity. This property will only be provided for a system assigned identity.
- Tenant
Id string - The tenant id of the system assigned identity. This property will only be provided for a system assigned identity.
- Type string
- The type of identity used for the resource. The type 'SystemAssigned, UserAssigned' includes both an implicitly created identity and a set of user assigned identities. The type 'None' will remove any identities from the virtual machine.
- User
Assigned Dictionary<string, Pulumi.Identities Azure Native. Network. Inputs. Managed Service Identity Response User Assigned Identities> - The list of user identities associated with resource. The user identity dictionary key references will be ARM resource ids in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- Principal
Id string - The principal id of the system assigned identity. This property will only be provided for a system assigned identity.
- Tenant
Id string - The tenant id of the system assigned identity. This property will only be provided for a system assigned identity.
- Type string
- The type of identity used for the resource. The type 'SystemAssigned, UserAssigned' includes both an implicitly created identity and a set of user assigned identities. The type 'None' will remove any identities from the virtual machine.
- User
Assigned map[string]ManagedIdentities Service Identity Response User Assigned Identities - The list of user identities associated with resource. The user identity dictionary key references will be ARM resource ids in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- principal
Id String - The principal id of the system assigned identity. This property will only be provided for a system assigned identity.
- tenant
Id String - The tenant id of the system assigned identity. This property will only be provided for a system assigned identity.
- type String
- The type of identity used for the resource. The type 'SystemAssigned, UserAssigned' includes both an implicitly created identity and a set of user assigned identities. The type 'None' will remove any identities from the virtual machine.
- user
Assigned Map<String,ManagedIdentities Service Identity Response User Assigned Identities> - The list of user identities associated with resource. The user identity dictionary key references will be ARM resource ids in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- principal
Id string - The principal id of the system assigned identity. This property will only be provided for a system assigned identity.
- tenant
Id string - The tenant id of the system assigned identity. This property will only be provided for a system assigned identity.
- type string
- The type of identity used for the resource. The type 'SystemAssigned, UserAssigned' includes both an implicitly created identity and a set of user assigned identities. The type 'None' will remove any identities from the virtual machine.
- user
Assigned {[key: string]: ManagedIdentities Service Identity Response User Assigned Identities} - The list of user identities associated with resource. The user identity dictionary key references will be ARM resource ids in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- principal_
id str - The principal id of the system assigned identity. This property will only be provided for a system assigned identity.
- tenant_
id str - The tenant id of the system assigned identity. This property will only be provided for a system assigned identity.
- type str
- The type of identity used for the resource. The type 'SystemAssigned, UserAssigned' includes both an implicitly created identity and a set of user assigned identities. The type 'None' will remove any identities from the virtual machine.
- user_
assigned_ Mapping[str, Managedidentities Service Identity Response User Assigned Identities] - The list of user identities associated with resource. The user identity dictionary key references will be ARM resource ids in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- principal
Id String - The principal id of the system assigned identity. This property will only be provided for a system assigned identity.
- tenant
Id String - The tenant id of the system assigned identity. This property will only be provided for a system assigned identity.
- type String
- The type of identity used for the resource. The type 'SystemAssigned, UserAssigned' includes both an implicitly created identity and a set of user assigned identities. The type 'None' will remove any identities from the virtual machine.
- user
Assigned Map<Property Map>Identities - The list of user identities associated with resource. The user identity dictionary key references will be ARM resource ids in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
ManagedServiceIdentityResponseUserAssignedIdentities
- Client
Id string - The client id of user assigned identity.
- Principal
Id string - The principal id of user assigned identity.
- Client
Id string - The client id of user assigned identity.
- Principal
Id string - The principal id of user assigned identity.
- client
Id String - The client id of user assigned identity.
- principal
Id String - The principal id of user assigned identity.
- client
Id string - The client id of user assigned identity.
- principal
Id string - The principal id of user assigned identity.
- client_
id str - The client id of user assigned identity.
- principal_
id str - The principal id of user assigned identity.
- client
Id String - The client id of user assigned identity.
- principal
Id String - The principal id of user assigned identity.
SubResourceResponse
- Id string
- Resource ID.
- Id string
- Resource ID.
- id String
- Resource ID.
- id string
- Resource ID.
- id str
- Resource ID.
- id String
- Resource ID.
Package Details
- Repository
- Azure Native pulumi/pulumi-azure-native
- License
- Apache-2.0
This is the latest version of Azure Native. Use the Azure Native v1 docs if using the v1 version of this package.
Azure Native v2.47.1 published on Monday, Jun 24, 2024 by Pulumi