Docs
PackagesCisco Catalyst SD-WAN v0.1.1 published on Friday, May 31, 2024 by Pulumi
sdwan.CiscoVpnInterfaceIpsecFeatureTemplate
Explore with Pulumi AI
This resource can manage a Cisco VPN Interface IPSec feature template.
- Minimum SD-WAN Manager version:
15.0.0
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as sdwan from "@pulumi/sdwan";
const example = new sdwan.CiscoVpnInterfaceIpsecFeatureTemplate("example", {
name: "Example",
description: "My Example",
deviceTypes: ["vedge-C8000V"],
interfaceName: "ipsec1",
shutdown: false,
interfaceDescription: "My Description",
ipAddress: "1.1.1.1/24",
tunnelSource: "1.2.3.4",
tunnelSourceInterface: "e1",
tunnelDestination: "3.4.5.6",
application: "sig",
tcpMssAdjust: 1400,
clearDontFragment: true,
mtu: 1500,
deadPeerDetectionInterval: 100,
deadPeerDetectionRetries: 4,
ikeVersion: 2,
ikeMode: "main",
ikeRekeyInterval: 20000,
ikeCiphersuite: "aes256-cbc-sha1",
ikeGroup: "20",
ikePreSharedKey: "cisco123",
ikePreSharedKeyLocalId: "1",
ikePreSharedKeyRemoteId: "2",
ipsecRekeyInterval: 7200,
ipsecReplayWindow: 128,
ipsecCiphersuite: "aes256-cbc-sha256",
ipsecPerfectForwardSecrecy: "group-20",
trackers: ["TRACKER1"],
tunnelRouteVia: "g0/0",
});
import pulumi
import pulumi_sdwan as sdwan
example = sdwan.CiscoVpnInterfaceIpsecFeatureTemplate("example",
name="Example",
description="My Example",
device_types=["vedge-C8000V"],
interface_name="ipsec1",
shutdown=False,
interface_description="My Description",
ip_address="1.1.1.1/24",
tunnel_source="1.2.3.4",
tunnel_source_interface="e1",
tunnel_destination="3.4.5.6",
application="sig",
tcp_mss_adjust=1400,
clear_dont_fragment=True,
mtu=1500,
dead_peer_detection_interval=100,
dead_peer_detection_retries=4,
ike_version=2,
ike_mode="main",
ike_rekey_interval=20000,
ike_ciphersuite="aes256-cbc-sha1",
ike_group="20",
ike_pre_shared_key="cisco123",
ike_pre_shared_key_local_id="1",
ike_pre_shared_key_remote_id="2",
ipsec_rekey_interval=7200,
ipsec_replay_window=128,
ipsec_ciphersuite="aes256-cbc-sha256",
ipsec_perfect_forward_secrecy="group-20",
trackers=["TRACKER1"],
tunnel_route_via="g0/0")
package main
import (
"github.com/pulumi/pulumi-sdwan/sdk/go/sdwan"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := sdwan.NewCiscoVpnInterfaceIpsecFeatureTemplate(ctx, "example", &sdwan.CiscoVpnInterfaceIpsecFeatureTemplateArgs{
Name: pulumi.String("Example"),
Description: pulumi.String("My Example"),
DeviceTypes: pulumi.StringArray{
pulumi.String("vedge-C8000V"),
},
InterfaceName: pulumi.String("ipsec1"),
Shutdown: pulumi.Bool(false),
InterfaceDescription: pulumi.String("My Description"),
IpAddress: pulumi.String("1.1.1.1/24"),
TunnelSource: pulumi.String("1.2.3.4"),
TunnelSourceInterface: pulumi.String("e1"),
TunnelDestination: pulumi.String("3.4.5.6"),
Application: pulumi.String("sig"),
TcpMssAdjust: pulumi.Int(1400),
ClearDontFragment: pulumi.Bool(true),
Mtu: pulumi.Int(1500),
DeadPeerDetectionInterval: pulumi.Int(100),
DeadPeerDetectionRetries: pulumi.Int(4),
IkeVersion: pulumi.Int(2),
IkeMode: pulumi.String("main"),
IkeRekeyInterval: pulumi.Int(20000),
IkeCiphersuite: pulumi.String("aes256-cbc-sha1"),
IkeGroup: pulumi.String("20"),
IkePreSharedKey: pulumi.String("cisco123"),
IkePreSharedKeyLocalId: pulumi.String("1"),
IkePreSharedKeyRemoteId: pulumi.String("2"),
IpsecRekeyInterval: pulumi.Int(7200),
IpsecReplayWindow: pulumi.Int(128),
IpsecCiphersuite: pulumi.String("aes256-cbc-sha256"),
IpsecPerfectForwardSecrecy: pulumi.String("group-20"),
Trackers: pulumi.StringArray{
pulumi.String("TRACKER1"),
},
TunnelRouteVia: pulumi.String("g0/0"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Sdwan = Pulumi.Sdwan;
return await Deployment.RunAsync(() =>
{
var example = new Sdwan.CiscoVpnInterfaceIpsecFeatureTemplate("example", new()
{
Name = "Example",
Description = "My Example",
DeviceTypes = new[]
{
"vedge-C8000V",
},
InterfaceName = "ipsec1",
Shutdown = false,
InterfaceDescription = "My Description",
IpAddress = "1.1.1.1/24",
TunnelSource = "1.2.3.4",
TunnelSourceInterface = "e1",
TunnelDestination = "3.4.5.6",
Application = "sig",
TcpMssAdjust = 1400,
ClearDontFragment = true,
Mtu = 1500,
DeadPeerDetectionInterval = 100,
DeadPeerDetectionRetries = 4,
IkeVersion = 2,
IkeMode = "main",
IkeRekeyInterval = 20000,
IkeCiphersuite = "aes256-cbc-sha1",
IkeGroup = "20",
IkePreSharedKey = "cisco123",
IkePreSharedKeyLocalId = "1",
IkePreSharedKeyRemoteId = "2",
IpsecRekeyInterval = 7200,
IpsecReplayWindow = 128,
IpsecCiphersuite = "aes256-cbc-sha256",
IpsecPerfectForwardSecrecy = "group-20",
Trackers = new[]
{
"TRACKER1",
},
TunnelRouteVia = "g0/0",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.sdwan.CiscoVpnInterfaceIpsecFeatureTemplate;
import com.pulumi.sdwan.CiscoVpnInterfaceIpsecFeatureTemplateArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new CiscoVpnInterfaceIpsecFeatureTemplate("example", CiscoVpnInterfaceIpsecFeatureTemplateArgs.builder()
.name("Example")
.description("My Example")
.deviceTypes("vedge-C8000V")
.interfaceName("ipsec1")
.shutdown(false)
.interfaceDescription("My Description")
.ipAddress("1.1.1.1/24")
.tunnelSource("1.2.3.4")
.tunnelSourceInterface("e1")
.tunnelDestination("3.4.5.6")
.application("sig")
.tcpMssAdjust(1400)
.clearDontFragment(true)
.mtu(1500)
.deadPeerDetectionInterval(100)
.deadPeerDetectionRetries(4)
.ikeVersion(2)
.ikeMode("main")
.ikeRekeyInterval(20000)
.ikeCiphersuite("aes256-cbc-sha1")
.ikeGroup("20")
.ikePreSharedKey("cisco123")
.ikePreSharedKeyLocalId("1")
.ikePreSharedKeyRemoteId("2")
.ipsecRekeyInterval(7200)
.ipsecReplayWindow(128)
.ipsecCiphersuite("aes256-cbc-sha256")
.ipsecPerfectForwardSecrecy("group-20")
.trackers("TRACKER1")
.tunnelRouteVia("g0/0")
.build());
}
}
resources:
example:
type: sdwan:CiscoVpnInterfaceIpsecFeatureTemplate
properties:
name: Example
description: My Example
deviceTypes:
- vedge-C8000V
interfaceName: ipsec1
shutdown: false
interfaceDescription: My Description
ipAddress: 1.1.1.1/24
tunnelSource: 1.2.3.4
tunnelSourceInterface: e1
tunnelDestination: 3.4.5.6
application: sig
tcpMssAdjust: 1400
clearDontFragment: true
mtu: 1500
deadPeerDetectionInterval: 100
deadPeerDetectionRetries: 4
ikeVersion: 2
ikeMode: main
ikeRekeyInterval: 20000
ikeCiphersuite: aes256-cbc-sha1
ikeGroup: '20'
ikePreSharedKey: cisco123
ikePreSharedKeyLocalId: '1'
ikePreSharedKeyRemoteId: '2'
ipsecRekeyInterval: 7200
ipsecReplayWindow: 128
ipsecCiphersuite: aes256-cbc-sha256
ipsecPerfectForwardSecrecy: group-20
trackers:
- TRACKER1
tunnelRouteVia: g0/0
Create CiscoVpnInterfaceIpsecFeatureTemplate Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new CiscoVpnInterfaceIpsecFeatureTemplate(name: string, args: CiscoVpnInterfaceIpsecFeatureTemplateArgs, opts?: CustomResourceOptions);@overload
def CiscoVpnInterfaceIpsecFeatureTemplate(resource_name: str,
args: CiscoVpnInterfaceIpsecFeatureTemplateArgs,
opts: Optional[ResourceOptions] = None)
@overload
def CiscoVpnInterfaceIpsecFeatureTemplate(resource_name: str,
opts: Optional[ResourceOptions] = None,
description: Optional[str] = None,
device_types: Optional[Sequence[str]] = None,
application: Optional[str] = None,
application_variable: Optional[str] = None,
clear_dont_fragment: Optional[bool] = None,
clear_dont_fragment_variable: Optional[str] = None,
dead_peer_detection_interval: Optional[int] = None,
dead_peer_detection_interval_variable: Optional[str] = None,
dead_peer_detection_retries: Optional[int] = None,
dead_peer_detection_retries_variable: Optional[str] = None,
ike_ciphersuite: Optional[str] = None,
ike_ciphersuite_variable: Optional[str] = None,
ike_group: Optional[str] = None,
ike_group_variable: Optional[str] = None,
ike_mode: Optional[str] = None,
ike_mode_variable: Optional[str] = None,
ike_pre_shared_key: Optional[str] = None,
ike_pre_shared_key_local_id: Optional[str] = None,
ike_pre_shared_key_local_id_variable: Optional[str] = None,
ike_pre_shared_key_remote_id: Optional[str] = None,
ike_pre_shared_key_remote_id_variable: Optional[str] = None,
ike_pre_shared_key_variable: Optional[str] = None,
ike_rekey_interval: Optional[int] = None,
ike_rekey_interval_variable: Optional[str] = None,
ike_version: Optional[int] = None,
interface_description: Optional[str] = None,
interface_description_variable: Optional[str] = None,
interface_name: Optional[str] = None,
interface_name_variable: Optional[str] = None,
ip_address: Optional[str] = None,
ip_address_variable: Optional[str] = None,
ipsec_ciphersuite: Optional[str] = None,
ipsec_ciphersuite_variable: Optional[str] = None,
ipsec_perfect_forward_secrecy: Optional[str] = None,
ipsec_perfect_forward_secrecy_variable: Optional[str] = None,
ipsec_rekey_interval: Optional[int] = None,
ipsec_rekey_interval_variable: Optional[str] = None,
ipsec_replay_window: Optional[int] = None,
ipsec_replay_window_variable: Optional[str] = None,
mtu: Optional[int] = None,
mtu_variable: Optional[str] = None,
name: Optional[str] = None,
shutdown: Optional[bool] = None,
shutdown_variable: Optional[str] = None,
tcp_mss_adjust: Optional[int] = None,
tcp_mss_adjust_variable: Optional[str] = None,
tracker_variable: Optional[str] = None,
trackers: Optional[Sequence[str]] = None,
tunnel_destination: Optional[str] = None,
tunnel_destination_variable: Optional[str] = None,
tunnel_route_via: Optional[str] = None,
tunnel_route_via_variable: Optional[str] = None,
tunnel_source: Optional[str] = None,
tunnel_source_interface: Optional[str] = None,
tunnel_source_interface_variable: Optional[str] = None,
tunnel_source_variable: Optional[str] = None)func NewCiscoVpnInterfaceIpsecFeatureTemplate(ctx *Context, name string, args CiscoVpnInterfaceIpsecFeatureTemplateArgs, opts ...ResourceOption) (*CiscoVpnInterfaceIpsecFeatureTemplate, error)public CiscoVpnInterfaceIpsecFeatureTemplate(string name, CiscoVpnInterfaceIpsecFeatureTemplateArgs args, CustomResourceOptions? opts = null)
public CiscoVpnInterfaceIpsecFeatureTemplate(String name, CiscoVpnInterfaceIpsecFeatureTemplateArgs args)
public CiscoVpnInterfaceIpsecFeatureTemplate(String name, CiscoVpnInterfaceIpsecFeatureTemplateArgs args, CustomResourceOptions options)
type: sdwan:CiscoVpnInterfaceIpsecFeatureTemplate
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args CiscoVpnInterfaceIpsecFeatureTemplateArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args CiscoVpnInterfaceIpsecFeatureTemplateArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args CiscoVpnInterfaceIpsecFeatureTemplateArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args CiscoVpnInterfaceIpsecFeatureTemplateArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args CiscoVpnInterfaceIpsecFeatureTemplateArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var ciscoVpnInterfaceIpsecFeatureTemplateResource = new Sdwan.CiscoVpnInterfaceIpsecFeatureTemplate("ciscoVpnInterfaceIpsecFeatureTemplateResource", new()
{
Description = "string",
DeviceTypes = new[]
{
"string",
},
Application = "string",
ApplicationVariable = "string",
ClearDontFragment = false,
ClearDontFragmentVariable = "string",
DeadPeerDetectionInterval = 0,
DeadPeerDetectionIntervalVariable = "string",
DeadPeerDetectionRetries = 0,
DeadPeerDetectionRetriesVariable = "string",
IkeCiphersuite = "string",
IkeCiphersuiteVariable = "string",
IkeGroup = "string",
IkeGroupVariable = "string",
IkeMode = "string",
IkeModeVariable = "string",
IkePreSharedKey = "string",
IkePreSharedKeyLocalId = "string",
IkePreSharedKeyLocalIdVariable = "string",
IkePreSharedKeyRemoteId = "string",
IkePreSharedKeyRemoteIdVariable = "string",
IkePreSharedKeyVariable = "string",
IkeRekeyInterval = 0,
IkeRekeyIntervalVariable = "string",
IkeVersion = 0,
InterfaceDescription = "string",
InterfaceDescriptionVariable = "string",
InterfaceName = "string",
InterfaceNameVariable = "string",
IpAddress = "string",
IpAddressVariable = "string",
IpsecCiphersuite = "string",
IpsecCiphersuiteVariable = "string",
IpsecPerfectForwardSecrecy = "string",
IpsecPerfectForwardSecrecyVariable = "string",
IpsecRekeyInterval = 0,
IpsecRekeyIntervalVariable = "string",
IpsecReplayWindow = 0,
IpsecReplayWindowVariable = "string",
Mtu = 0,
MtuVariable = "string",
Name = "string",
Shutdown = false,
ShutdownVariable = "string",
TcpMssAdjust = 0,
TcpMssAdjustVariable = "string",
TrackerVariable = "string",
Trackers = new[]
{
"string",
},
TunnelDestination = "string",
TunnelDestinationVariable = "string",
TunnelRouteVia = "string",
TunnelRouteViaVariable = "string",
TunnelSource = "string",
TunnelSourceInterface = "string",
TunnelSourceInterfaceVariable = "string",
TunnelSourceVariable = "string",
});
example, err := sdwan.NewCiscoVpnInterfaceIpsecFeatureTemplate(ctx, "ciscoVpnInterfaceIpsecFeatureTemplateResource", &sdwan.CiscoVpnInterfaceIpsecFeatureTemplateArgs{
Description: pulumi.String("string"),
DeviceTypes: pulumi.StringArray{
pulumi.String("string"),
},
Application: pulumi.String("string"),
ApplicationVariable: pulumi.String("string"),
ClearDontFragment: pulumi.Bool(false),
ClearDontFragmentVariable: pulumi.String("string"),
DeadPeerDetectionInterval: pulumi.Int(0),
DeadPeerDetectionIntervalVariable: pulumi.String("string"),
DeadPeerDetectionRetries: pulumi.Int(0),
DeadPeerDetectionRetriesVariable: pulumi.String("string"),
IkeCiphersuite: pulumi.String("string"),
IkeCiphersuiteVariable: pulumi.String("string"),
IkeGroup: pulumi.String("string"),
IkeGroupVariable: pulumi.String("string"),
IkeMode: pulumi.String("string"),
IkeModeVariable: pulumi.String("string"),
IkePreSharedKey: pulumi.String("string"),
IkePreSharedKeyLocalId: pulumi.String("string"),
IkePreSharedKeyLocalIdVariable: pulumi.String("string"),
IkePreSharedKeyRemoteId: pulumi.String("string"),
IkePreSharedKeyRemoteIdVariable: pulumi.String("string"),
IkePreSharedKeyVariable: pulumi.String("string"),
IkeRekeyInterval: pulumi.Int(0),
IkeRekeyIntervalVariable: pulumi.String("string"),
IkeVersion: pulumi.Int(0),
InterfaceDescription: pulumi.String("string"),
InterfaceDescriptionVariable: pulumi.String("string"),
InterfaceName: pulumi.String("string"),
InterfaceNameVariable: pulumi.String("string"),
IpAddress: pulumi.String("string"),
IpAddressVariable: pulumi.String("string"),
IpsecCiphersuite: pulumi.String("string"),
IpsecCiphersuiteVariable: pulumi.String("string"),
IpsecPerfectForwardSecrecy: pulumi.String("string"),
IpsecPerfectForwardSecrecyVariable: pulumi.String("string"),
IpsecRekeyInterval: pulumi.Int(0),
IpsecRekeyIntervalVariable: pulumi.String("string"),
IpsecReplayWindow: pulumi.Int(0),
IpsecReplayWindowVariable: pulumi.String("string"),
Mtu: pulumi.Int(0),
MtuVariable: pulumi.String("string"),
Name: pulumi.String("string"),
Shutdown: pulumi.Bool(false),
ShutdownVariable: pulumi.String("string"),
TcpMssAdjust: pulumi.Int(0),
TcpMssAdjustVariable: pulumi.String("string"),
TrackerVariable: pulumi.String("string"),
Trackers: pulumi.StringArray{
pulumi.String("string"),
},
TunnelDestination: pulumi.String("string"),
TunnelDestinationVariable: pulumi.String("string"),
TunnelRouteVia: pulumi.String("string"),
TunnelRouteViaVariable: pulumi.String("string"),
TunnelSource: pulumi.String("string"),
TunnelSourceInterface: pulumi.String("string"),
TunnelSourceInterfaceVariable: pulumi.String("string"),
TunnelSourceVariable: pulumi.String("string"),
})
var ciscoVpnInterfaceIpsecFeatureTemplateResource = new CiscoVpnInterfaceIpsecFeatureTemplate("ciscoVpnInterfaceIpsecFeatureTemplateResource", CiscoVpnInterfaceIpsecFeatureTemplateArgs.builder()
.description("string")
.deviceTypes("string")
.application("string")
.applicationVariable("string")
.clearDontFragment(false)
.clearDontFragmentVariable("string")
.deadPeerDetectionInterval(0)
.deadPeerDetectionIntervalVariable("string")
.deadPeerDetectionRetries(0)
.deadPeerDetectionRetriesVariable("string")
.ikeCiphersuite("string")
.ikeCiphersuiteVariable("string")
.ikeGroup("string")
.ikeGroupVariable("string")
.ikeMode("string")
.ikeModeVariable("string")
.ikePreSharedKey("string")
.ikePreSharedKeyLocalId("string")
.ikePreSharedKeyLocalIdVariable("string")
.ikePreSharedKeyRemoteId("string")
.ikePreSharedKeyRemoteIdVariable("string")
.ikePreSharedKeyVariable("string")
.ikeRekeyInterval(0)
.ikeRekeyIntervalVariable("string")
.ikeVersion(0)
.interfaceDescription("string")
.interfaceDescriptionVariable("string")
.interfaceName("string")
.interfaceNameVariable("string")
.ipAddress("string")
.ipAddressVariable("string")
.ipsecCiphersuite("string")
.ipsecCiphersuiteVariable("string")
.ipsecPerfectForwardSecrecy("string")
.ipsecPerfectForwardSecrecyVariable("string")
.ipsecRekeyInterval(0)
.ipsecRekeyIntervalVariable("string")
.ipsecReplayWindow(0)
.ipsecReplayWindowVariable("string")
.mtu(0)
.mtuVariable("string")
.name("string")
.shutdown(false)
.shutdownVariable("string")
.tcpMssAdjust(0)
.tcpMssAdjustVariable("string")
.trackerVariable("string")
.trackers("string")
.tunnelDestination("string")
.tunnelDestinationVariable("string")
.tunnelRouteVia("string")
.tunnelRouteViaVariable("string")
.tunnelSource("string")
.tunnelSourceInterface("string")
.tunnelSourceInterfaceVariable("string")
.tunnelSourceVariable("string")
.build());
cisco_vpn_interface_ipsec_feature_template_resource = sdwan.CiscoVpnInterfaceIpsecFeatureTemplate("ciscoVpnInterfaceIpsecFeatureTemplateResource",
description="string",
device_types=["string"],
application="string",
application_variable="string",
clear_dont_fragment=False,
clear_dont_fragment_variable="string",
dead_peer_detection_interval=0,
dead_peer_detection_interval_variable="string",
dead_peer_detection_retries=0,
dead_peer_detection_retries_variable="string",
ike_ciphersuite="string",
ike_ciphersuite_variable="string",
ike_group="string",
ike_group_variable="string",
ike_mode="string",
ike_mode_variable="string",
ike_pre_shared_key="string",
ike_pre_shared_key_local_id="string",
ike_pre_shared_key_local_id_variable="string",
ike_pre_shared_key_remote_id="string",
ike_pre_shared_key_remote_id_variable="string",
ike_pre_shared_key_variable="string",
ike_rekey_interval=0,
ike_rekey_interval_variable="string",
ike_version=0,
interface_description="string",
interface_description_variable="string",
interface_name="string",
interface_name_variable="string",
ip_address="string",
ip_address_variable="string",
ipsec_ciphersuite="string",
ipsec_ciphersuite_variable="string",
ipsec_perfect_forward_secrecy="string",
ipsec_perfect_forward_secrecy_variable="string",
ipsec_rekey_interval=0,
ipsec_rekey_interval_variable="string",
ipsec_replay_window=0,
ipsec_replay_window_variable="string",
mtu=0,
mtu_variable="string",
name="string",
shutdown=False,
shutdown_variable="string",
tcp_mss_adjust=0,
tcp_mss_adjust_variable="string",
tracker_variable="string",
trackers=["string"],
tunnel_destination="string",
tunnel_destination_variable="string",
tunnel_route_via="string",
tunnel_route_via_variable="string",
tunnel_source="string",
tunnel_source_interface="string",
tunnel_source_interface_variable="string",
tunnel_source_variable="string")
const ciscoVpnInterfaceIpsecFeatureTemplateResource = new sdwan.CiscoVpnInterfaceIpsecFeatureTemplate("ciscoVpnInterfaceIpsecFeatureTemplateResource", {
description: "string",
deviceTypes: ["string"],
application: "string",
applicationVariable: "string",
clearDontFragment: false,
clearDontFragmentVariable: "string",
deadPeerDetectionInterval: 0,
deadPeerDetectionIntervalVariable: "string",
deadPeerDetectionRetries: 0,
deadPeerDetectionRetriesVariable: "string",
ikeCiphersuite: "string",
ikeCiphersuiteVariable: "string",
ikeGroup: "string",
ikeGroupVariable: "string",
ikeMode: "string",
ikeModeVariable: "string",
ikePreSharedKey: "string",
ikePreSharedKeyLocalId: "string",
ikePreSharedKeyLocalIdVariable: "string",
ikePreSharedKeyRemoteId: "string",
ikePreSharedKeyRemoteIdVariable: "string",
ikePreSharedKeyVariable: "string",
ikeRekeyInterval: 0,
ikeRekeyIntervalVariable: "string",
ikeVersion: 0,
interfaceDescription: "string",
interfaceDescriptionVariable: "string",
interfaceName: "string",
interfaceNameVariable: "string",
ipAddress: "string",
ipAddressVariable: "string",
ipsecCiphersuite: "string",
ipsecCiphersuiteVariable: "string",
ipsecPerfectForwardSecrecy: "string",
ipsecPerfectForwardSecrecyVariable: "string",
ipsecRekeyInterval: 0,
ipsecRekeyIntervalVariable: "string",
ipsecReplayWindow: 0,
ipsecReplayWindowVariable: "string",
mtu: 0,
mtuVariable: "string",
name: "string",
shutdown: false,
shutdownVariable: "string",
tcpMssAdjust: 0,
tcpMssAdjustVariable: "string",
trackerVariable: "string",
trackers: ["string"],
tunnelDestination: "string",
tunnelDestinationVariable: "string",
tunnelRouteVia: "string",
tunnelRouteViaVariable: "string",
tunnelSource: "string",
tunnelSourceInterface: "string",
tunnelSourceInterfaceVariable: "string",
tunnelSourceVariable: "string",
});
type: sdwan:CiscoVpnInterfaceIpsecFeatureTemplate
properties:
application: string
applicationVariable: string
clearDontFragment: false
clearDontFragmentVariable: string
deadPeerDetectionInterval: 0
deadPeerDetectionIntervalVariable: string
deadPeerDetectionRetries: 0
deadPeerDetectionRetriesVariable: string
description: string
deviceTypes:
- string
ikeCiphersuite: string
ikeCiphersuiteVariable: string
ikeGroup: string
ikeGroupVariable: string
ikeMode: string
ikeModeVariable: string
ikePreSharedKey: string
ikePreSharedKeyLocalId: string
ikePreSharedKeyLocalIdVariable: string
ikePreSharedKeyRemoteId: string
ikePreSharedKeyRemoteIdVariable: string
ikePreSharedKeyVariable: string
ikeRekeyInterval: 0
ikeRekeyIntervalVariable: string
ikeVersion: 0
interfaceDescription: string
interfaceDescriptionVariable: string
interfaceName: string
interfaceNameVariable: string
ipAddress: string
ipAddressVariable: string
ipsecCiphersuite: string
ipsecCiphersuiteVariable: string
ipsecPerfectForwardSecrecy: string
ipsecPerfectForwardSecrecyVariable: string
ipsecRekeyInterval: 0
ipsecRekeyIntervalVariable: string
ipsecReplayWindow: 0
ipsecReplayWindowVariable: string
mtu: 0
mtuVariable: string
name: string
shutdown: false
shutdownVariable: string
tcpMssAdjust: 0
tcpMssAdjustVariable: string
trackerVariable: string
trackers:
- string
tunnelDestination: string
tunnelDestinationVariable: string
tunnelRouteVia: string
tunnelRouteViaVariable: string
tunnelSource: string
tunnelSourceInterface: string
tunnelSourceInterfaceVariable: string
tunnelSourceVariable: string
CiscoVpnInterfaceIpsecFeatureTemplate Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The CiscoVpnInterfaceIpsecFeatureTemplate resource accepts the following input properties:
- Description string
- The description of the feature template
- Device
Types List<string> - List of supported device types - Choices:
vedge-C8000V,vedge-C8300-1N1S-4T2X,vedge-C8300-1N1S-6T,vedge-C8300-2N2S-6T,vedge-C8300-2N2S-4T2X,vedge-C8500-12X4QC,vedge-C8500-12X,vedge-C8500-20X6C,vedge-C8500L-8S4X,vedge-C8200-1N-4T,vedge-C8200L-1N-4T - Application string
- Enable Application Tunnel Type - Choices:
none,sig- Default value:none - Application
Variable string - Variable name
- Clear
Dont boolFragment - Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value:
false - Clear
Dont stringFragment Variable - Variable name
- Dead
Peer intDetection Interval - IKE keepalive interval (seconds) - Range:
10-3600- Default value:10 - Dead
Peer stringDetection Interval Variable - Variable name
- Dead
Peer intDetection Retries - IKE keepalive retries - Range:
2-60- Default value:3 - Dead
Peer stringDetection Retries Variable - Variable name
- Ike
Ciphersuite string - IKE identity the IKE preshared secret belongs to - Choices:
aes256-cbc-sha1,aes256-cbc-sha2,aes128-cbc-sha1,aes128-cbc-sha2- Default value:aes256-cbc-sha1 - Ike
Ciphersuite stringVariable - Variable name
- Ike
Group string - IKE Diffie Hellman Groups - Choices:
2,14,15,16,19,20,21,24- Default value:16 - Ike
Group stringVariable - Variable name
- Ike
Mode string - IKE integrity protocol - Choices:
main,aggressive- Default value:main - Ike
Mode stringVariable - Variable name
- string
- Use preshared key to authenticate IKE peer
- string
- IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
- string
- Variable name
- string
- IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
- string
- Variable name
- string
- Variable name
- Ike
Rekey intInterval - IKE rekey interval <60..86400> seconds - Range:
60-86400- Default value:14400 - Ike
Rekey stringInterval Variable - Variable name
- Ike
Version int - IKE Version <1..2> - Range:
1-2- Default value:1 - Interface
Description string - Interface description
- Interface
Description stringVariable - Variable name
- Interface
Name string - Interface name: IPsec when present
- Interface
Name stringVariable - Variable name
- Ip
Address string - Assign IPv4 address
- Ip
Address stringVariable - Variable name
- Ipsec
Ciphersuite string - IPsec(ESP) encryption and integrity protocol - Choices:
aes256-cbc-sha1,aes256-cbc-sha384,aes256-cbc-sha256,aes256-cbc-sha512,aes256-gcm,null-sha1,null-sha384,null-sha256,null-sha512- Default value:aes256-gcm - Ipsec
Ciphersuite stringVariable - Variable name
- Ipsec
Perfect stringForward Secrecy - IPsec perfect forward secrecy settings - Choices:
group-1,group-2,group-5,group-14,group-15,group-16,group-19,group-20,group-21,group-24,none- Default value:group-16 - Ipsec
Perfect stringForward Secrecy Variable - Variable name
- Ipsec
Rekey intInterval - IPsec rekey interval <300..1209600> seconds - Range:
120-2592000- Default value:3600 - Ipsec
Rekey stringInterval Variable - Variable name
- Ipsec
Replay intWindow - Replay window size 32..8192 (must be a power of 2) - Range:
64-4096- Default value:512 - Ipsec
Replay stringWindow Variable - Variable name
- Mtu int
- Interface MTU <68..9216>, in bytes - Range:
68-9216- Default value:1500 - Mtu
Variable string - Variable name
- Name string
- The name of the feature template
- Shutdown bool
- Administrative state - Default value:
true - Shutdown
Variable string - Variable name
- Tcp
Mss intAdjust - TCP MSS on SYN packets, in bytes - Range:
500-1460 - Tcp
Mss stringAdjust Variable - Variable name
- Tracker
Variable string - Variable name
- Trackers List<string>
- Enable tracker for this interface
- Tunnel
Destination string - Tunnel destination IP address
- Tunnel
Destination stringVariable - Variable name
- Tunnel
Route stringVia - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- Tunnel
Route stringVia Variable - Variable name
- Tunnel
Source string - Tunnel source IP Address
- Tunnel
Source stringInterface - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- Tunnel
Source stringInterface Variable - Variable name
- Tunnel
Source stringVariable - Variable name
- Description string
- The description of the feature template
- Device
Types []string - List of supported device types - Choices:
vedge-C8000V,vedge-C8300-1N1S-4T2X,vedge-C8300-1N1S-6T,vedge-C8300-2N2S-6T,vedge-C8300-2N2S-4T2X,vedge-C8500-12X4QC,vedge-C8500-12X,vedge-C8500-20X6C,vedge-C8500L-8S4X,vedge-C8200-1N-4T,vedge-C8200L-1N-4T - Application string
- Enable Application Tunnel Type - Choices:
none,sig- Default value:none - Application
Variable string - Variable name
- Clear
Dont boolFragment - Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value:
false - Clear
Dont stringFragment Variable - Variable name
- Dead
Peer intDetection Interval - IKE keepalive interval (seconds) - Range:
10-3600- Default value:10 - Dead
Peer stringDetection Interval Variable - Variable name
- Dead
Peer intDetection Retries - IKE keepalive retries - Range:
2-60- Default value:3 - Dead
Peer stringDetection Retries Variable - Variable name
- Ike
Ciphersuite string - IKE identity the IKE preshared secret belongs to - Choices:
aes256-cbc-sha1,aes256-cbc-sha2,aes128-cbc-sha1,aes128-cbc-sha2- Default value:aes256-cbc-sha1 - Ike
Ciphersuite stringVariable - Variable name
- Ike
Group string - IKE Diffie Hellman Groups - Choices:
2,14,15,16,19,20,21,24- Default value:16 - Ike
Group stringVariable - Variable name
- Ike
Mode string - IKE integrity protocol - Choices:
main,aggressive- Default value:main - Ike
Mode stringVariable - Variable name
- string
- Use preshared key to authenticate IKE peer
- string
- IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
- string
- Variable name
- string
- IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
- string
- Variable name
- string
- Variable name
- Ike
Rekey intInterval - IKE rekey interval <60..86400> seconds - Range:
60-86400- Default value:14400 - Ike
Rekey stringInterval Variable - Variable name
- Ike
Version int - IKE Version <1..2> - Range:
1-2- Default value:1 - Interface
Description string - Interface description
- Interface
Description stringVariable - Variable name
- Interface
Name string - Interface name: IPsec when present
- Interface
Name stringVariable - Variable name
- Ip
Address string - Assign IPv4 address
- Ip
Address stringVariable - Variable name
- Ipsec
Ciphersuite string - IPsec(ESP) encryption and integrity protocol - Choices:
aes256-cbc-sha1,aes256-cbc-sha384,aes256-cbc-sha256,aes256-cbc-sha512,aes256-gcm,null-sha1,null-sha384,null-sha256,null-sha512- Default value:aes256-gcm - Ipsec
Ciphersuite stringVariable - Variable name
- Ipsec
Perfect stringForward Secrecy - IPsec perfect forward secrecy settings - Choices:
group-1,group-2,group-5,group-14,group-15,group-16,group-19,group-20,group-21,group-24,none- Default value:group-16 - Ipsec
Perfect stringForward Secrecy Variable - Variable name
- Ipsec
Rekey intInterval - IPsec rekey interval <300..1209600> seconds - Range:
120-2592000- Default value:3600 - Ipsec
Rekey stringInterval Variable - Variable name
- Ipsec
Replay intWindow - Replay window size 32..8192 (must be a power of 2) - Range:
64-4096- Default value:512 - Ipsec
Replay stringWindow Variable - Variable name
- Mtu int
- Interface MTU <68..9216>, in bytes - Range:
68-9216- Default value:1500 - Mtu
Variable string - Variable name
- Name string
- The name of the feature template
- Shutdown bool
- Administrative state - Default value:
true - Shutdown
Variable string - Variable name
- Tcp
Mss intAdjust - TCP MSS on SYN packets, in bytes - Range:
500-1460 - Tcp
Mss stringAdjust Variable - Variable name
- Tracker
Variable string - Variable name
- Trackers []string
- Enable tracker for this interface
- Tunnel
Destination string - Tunnel destination IP address
- Tunnel
Destination stringVariable - Variable name
- Tunnel
Route stringVia - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- Tunnel
Route stringVia Variable - Variable name
- Tunnel
Source string - Tunnel source IP Address
- Tunnel
Source stringInterface - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- Tunnel
Source stringInterface Variable - Variable name
- Tunnel
Source stringVariable - Variable name
- description String
- The description of the feature template
- device
Types List<String> - List of supported device types - Choices:
vedge-C8000V,vedge-C8300-1N1S-4T2X,vedge-C8300-1N1S-6T,vedge-C8300-2N2S-6T,vedge-C8300-2N2S-4T2X,vedge-C8500-12X4QC,vedge-C8500-12X,vedge-C8500-20X6C,vedge-C8500L-8S4X,vedge-C8200-1N-4T,vedge-C8200L-1N-4T - application String
- Enable Application Tunnel Type - Choices:
none,sig- Default value:none - application
Variable String - Variable name
- clear
Dont BooleanFragment - Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value:
false - clear
Dont StringFragment Variable - Variable name
- dead
Peer IntegerDetection Interval - IKE keepalive interval (seconds) - Range:
10-3600- Default value:10 - dead
Peer StringDetection Interval Variable - Variable name
- dead
Peer IntegerDetection Retries - IKE keepalive retries - Range:
2-60- Default value:3 - dead
Peer StringDetection Retries Variable - Variable name
- ike
Ciphersuite String - IKE identity the IKE preshared secret belongs to - Choices:
aes256-cbc-sha1,aes256-cbc-sha2,aes128-cbc-sha1,aes128-cbc-sha2- Default value:aes256-cbc-sha1 - ike
Ciphersuite StringVariable - Variable name
- ike
Group String - IKE Diffie Hellman Groups - Choices:
2,14,15,16,19,20,21,24- Default value:16 - ike
Group StringVariable - Variable name
- ike
Mode String - IKE integrity protocol - Choices:
main,aggressive- Default value:main - ike
Mode StringVariable - Variable name
- String
- Use preshared key to authenticate IKE peer
- String
- IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
- String
- Variable name
- String
- IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
- String
- Variable name
- String
- Variable name
- ike
Rekey IntegerInterval - IKE rekey interval <60..86400> seconds - Range:
60-86400- Default value:14400 - ike
Rekey StringInterval Variable - Variable name
- ike
Version Integer - IKE Version <1..2> - Range:
1-2- Default value:1 - interface
Description String - Interface description
- interface
Description StringVariable - Variable name
- interface
Name String - Interface name: IPsec when present
- interface
Name StringVariable - Variable name
- ip
Address String - Assign IPv4 address
- ip
Address StringVariable - Variable name
- ipsec
Ciphersuite String - IPsec(ESP) encryption and integrity protocol - Choices:
aes256-cbc-sha1,aes256-cbc-sha384,aes256-cbc-sha256,aes256-cbc-sha512,aes256-gcm,null-sha1,null-sha384,null-sha256,null-sha512- Default value:aes256-gcm - ipsec
Ciphersuite StringVariable - Variable name
- ipsec
Perfect StringForward Secrecy - IPsec perfect forward secrecy settings - Choices:
group-1,group-2,group-5,group-14,group-15,group-16,group-19,group-20,group-21,group-24,none- Default value:group-16 - ipsec
Perfect StringForward Secrecy Variable - Variable name
- ipsec
Rekey IntegerInterval - IPsec rekey interval <300..1209600> seconds - Range:
120-2592000- Default value:3600 - ipsec
Rekey StringInterval Variable - Variable name
- ipsec
Replay IntegerWindow - Replay window size 32..8192 (must be a power of 2) - Range:
64-4096- Default value:512 - ipsec
Replay StringWindow Variable - Variable name
- mtu Integer
- Interface MTU <68..9216>, in bytes - Range:
68-9216- Default value:1500 - mtu
Variable String - Variable name
- name String
- The name of the feature template
- shutdown Boolean
- Administrative state - Default value:
true - shutdown
Variable String - Variable name
- tcp
Mss IntegerAdjust - TCP MSS on SYN packets, in bytes - Range:
500-1460 - tcp
Mss StringAdjust Variable - Variable name
- tracker
Variable String - Variable name
- trackers List<String>
- Enable tracker for this interface
- tunnel
Destination String - Tunnel destination IP address
- tunnel
Destination StringVariable - Variable name
- tunnel
Route StringVia - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- tunnel
Route StringVia Variable - Variable name
- tunnel
Source String - Tunnel source IP Address
- tunnel
Source StringInterface - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- tunnel
Source StringInterface Variable - Variable name
- tunnel
Source StringVariable - Variable name
- description string
- The description of the feature template
- device
Types string[] - List of supported device types - Choices:
vedge-C8000V,vedge-C8300-1N1S-4T2X,vedge-C8300-1N1S-6T,vedge-C8300-2N2S-6T,vedge-C8300-2N2S-4T2X,vedge-C8500-12X4QC,vedge-C8500-12X,vedge-C8500-20X6C,vedge-C8500L-8S4X,vedge-C8200-1N-4T,vedge-C8200L-1N-4T - application string
- Enable Application Tunnel Type - Choices:
none,sig- Default value:none - application
Variable string - Variable name
- clear
Dont booleanFragment - Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value:
false - clear
Dont stringFragment Variable - Variable name
- dead
Peer numberDetection Interval - IKE keepalive interval (seconds) - Range:
10-3600- Default value:10 - dead
Peer stringDetection Interval Variable - Variable name
- dead
Peer numberDetection Retries - IKE keepalive retries - Range:
2-60- Default value:3 - dead
Peer stringDetection Retries Variable - Variable name
- ike
Ciphersuite string - IKE identity the IKE preshared secret belongs to - Choices:
aes256-cbc-sha1,aes256-cbc-sha2,aes128-cbc-sha1,aes128-cbc-sha2- Default value:aes256-cbc-sha1 - ike
Ciphersuite stringVariable - Variable name
- ike
Group string - IKE Diffie Hellman Groups - Choices:
2,14,15,16,19,20,21,24- Default value:16 - ike
Group stringVariable - Variable name
- ike
Mode string - IKE integrity protocol - Choices:
main,aggressive- Default value:main - ike
Mode stringVariable - Variable name
- string
- Use preshared key to authenticate IKE peer
- string
- IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
- string
- Variable name
- string
- IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
- string
- Variable name
- string
- Variable name
- ike
Rekey numberInterval - IKE rekey interval <60..86400> seconds - Range:
60-86400- Default value:14400 - ike
Rekey stringInterval Variable - Variable name
- ike
Version number - IKE Version <1..2> - Range:
1-2- Default value:1 - interface
Description string - Interface description
- interface
Description stringVariable - Variable name
- interface
Name string - Interface name: IPsec when present
- interface
Name stringVariable - Variable name
- ip
Address string - Assign IPv4 address
- ip
Address stringVariable - Variable name
- ipsec
Ciphersuite string - IPsec(ESP) encryption and integrity protocol - Choices:
aes256-cbc-sha1,aes256-cbc-sha384,aes256-cbc-sha256,aes256-cbc-sha512,aes256-gcm,null-sha1,null-sha384,null-sha256,null-sha512- Default value:aes256-gcm - ipsec
Ciphersuite stringVariable - Variable name
- ipsec
Perfect stringForward Secrecy - IPsec perfect forward secrecy settings - Choices:
group-1,group-2,group-5,group-14,group-15,group-16,group-19,group-20,group-21,group-24,none- Default value:group-16 - ipsec
Perfect stringForward Secrecy Variable - Variable name
- ipsec
Rekey numberInterval - IPsec rekey interval <300..1209600> seconds - Range:
120-2592000- Default value:3600 - ipsec
Rekey stringInterval Variable - Variable name
- ipsec
Replay numberWindow - Replay window size 32..8192 (must be a power of 2) - Range:
64-4096- Default value:512 - ipsec
Replay stringWindow Variable - Variable name
- mtu number
- Interface MTU <68..9216>, in bytes - Range:
68-9216- Default value:1500 - mtu
Variable string - Variable name
- name string
- The name of the feature template
- shutdown boolean
- Administrative state - Default value:
true - shutdown
Variable string - Variable name
- tcp
Mss numberAdjust - TCP MSS on SYN packets, in bytes - Range:
500-1460 - tcp
Mss stringAdjust Variable - Variable name
- tracker
Variable string - Variable name
- trackers string[]
- Enable tracker for this interface
- tunnel
Destination string - Tunnel destination IP address
- tunnel
Destination stringVariable - Variable name
- tunnel
Route stringVia - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- tunnel
Route stringVia Variable - Variable name
- tunnel
Source string - Tunnel source IP Address
- tunnel
Source stringInterface - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- tunnel
Source stringInterface Variable - Variable name
- tunnel
Source stringVariable - Variable name
- description str
- The description of the feature template
- device_
types Sequence[str] - List of supported device types - Choices:
vedge-C8000V,vedge-C8300-1N1S-4T2X,vedge-C8300-1N1S-6T,vedge-C8300-2N2S-6T,vedge-C8300-2N2S-4T2X,vedge-C8500-12X4QC,vedge-C8500-12X,vedge-C8500-20X6C,vedge-C8500L-8S4X,vedge-C8200-1N-4T,vedge-C8200L-1N-4T - application str
- Enable Application Tunnel Type - Choices:
none,sig- Default value:none - application_
variable str - Variable name
- clear_
dont_ boolfragment - Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value:
false - clear_
dont_ strfragment_ variable - Variable name
- dead_
peer_ intdetection_ interval - IKE keepalive interval (seconds) - Range:
10-3600- Default value:10 - dead_
peer_ strdetection_ interval_ variable - Variable name
- dead_
peer_ intdetection_ retries - IKE keepalive retries - Range:
2-60- Default value:3 - dead_
peer_ strdetection_ retries_ variable - Variable name
- ike_
ciphersuite str - IKE identity the IKE preshared secret belongs to - Choices:
aes256-cbc-sha1,aes256-cbc-sha2,aes128-cbc-sha1,aes128-cbc-sha2- Default value:aes256-cbc-sha1 - ike_
ciphersuite_ strvariable - Variable name
- ike_
group str - IKE Diffie Hellman Groups - Choices:
2,14,15,16,19,20,21,24- Default value:16 - ike_
group_ strvariable - Variable name
- ike_
mode str - IKE integrity protocol - Choices:
main,aggressive- Default value:main - ike_
mode_ strvariable - Variable name
- str
- Use preshared key to authenticate IKE peer
- str
- IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
- str
- Variable name
- str
- IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
- str
- Variable name
- str
- Variable name
- ike_
rekey_ intinterval - IKE rekey interval <60..86400> seconds - Range:
60-86400- Default value:14400 - ike_
rekey_ strinterval_ variable - Variable name
- ike_
version int - IKE Version <1..2> - Range:
1-2- Default value:1 - interface_
description str - Interface description
- interface_
description_ strvariable - Variable name
- interface_
name str - Interface name: IPsec when present
- interface_
name_ strvariable - Variable name
- ip_
address str - Assign IPv4 address
- ip_
address_ strvariable - Variable name
- ipsec_
ciphersuite str - IPsec(ESP) encryption and integrity protocol - Choices:
aes256-cbc-sha1,aes256-cbc-sha384,aes256-cbc-sha256,aes256-cbc-sha512,aes256-gcm,null-sha1,null-sha384,null-sha256,null-sha512- Default value:aes256-gcm - ipsec_
ciphersuite_ strvariable - Variable name
- ipsec_
perfect_ strforward_ secrecy - IPsec perfect forward secrecy settings - Choices:
group-1,group-2,group-5,group-14,group-15,group-16,group-19,group-20,group-21,group-24,none- Default value:group-16 - ipsec_
perfect_ strforward_ secrecy_ variable - Variable name
- ipsec_
rekey_ intinterval - IPsec rekey interval <300..1209600> seconds - Range:
120-2592000- Default value:3600 - ipsec_
rekey_ strinterval_ variable - Variable name
- ipsec_
replay_ intwindow - Replay window size 32..8192 (must be a power of 2) - Range:
64-4096- Default value:512 - ipsec_
replay_ strwindow_ variable - Variable name
- mtu int
- Interface MTU <68..9216>, in bytes - Range:
68-9216- Default value:1500 - mtu_
variable str - Variable name
- name str
- The name of the feature template
- shutdown bool
- Administrative state - Default value:
true - shutdown_
variable str - Variable name
- tcp_
mss_ intadjust - TCP MSS on SYN packets, in bytes - Range:
500-1460 - tcp_
mss_ stradjust_ variable - Variable name
- tracker_
variable str - Variable name
- trackers Sequence[str]
- Enable tracker for this interface
- tunnel_
destination str - Tunnel destination IP address
- tunnel_
destination_ strvariable - Variable name
- tunnel_
route_ strvia - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- tunnel_
route_ strvia_ variable - Variable name
- tunnel_
source str - Tunnel source IP Address
- tunnel_
source_ strinterface - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- tunnel_
source_ strinterface_ variable - Variable name
- tunnel_
source_ strvariable - Variable name
- description String
- The description of the feature template
- device
Types List<String> - List of supported device types - Choices:
vedge-C8000V,vedge-C8300-1N1S-4T2X,vedge-C8300-1N1S-6T,vedge-C8300-2N2S-6T,vedge-C8300-2N2S-4T2X,vedge-C8500-12X4QC,vedge-C8500-12X,vedge-C8500-20X6C,vedge-C8500L-8S4X,vedge-C8200-1N-4T,vedge-C8200L-1N-4T - application String
- Enable Application Tunnel Type - Choices:
none,sig- Default value:none - application
Variable String - Variable name
- clear
Dont BooleanFragment - Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value:
false - clear
Dont StringFragment Variable - Variable name
- dead
Peer NumberDetection Interval - IKE keepalive interval (seconds) - Range:
10-3600- Default value:10 - dead
Peer StringDetection Interval Variable - Variable name
- dead
Peer NumberDetection Retries - IKE keepalive retries - Range:
2-60- Default value:3 - dead
Peer StringDetection Retries Variable - Variable name
- ike
Ciphersuite String - IKE identity the IKE preshared secret belongs to - Choices:
aes256-cbc-sha1,aes256-cbc-sha2,aes128-cbc-sha1,aes128-cbc-sha2- Default value:aes256-cbc-sha1 - ike
Ciphersuite StringVariable - Variable name
- ike
Group String - IKE Diffie Hellman Groups - Choices:
2,14,15,16,19,20,21,24- Default value:16 - ike
Group StringVariable - Variable name
- ike
Mode String - IKE integrity protocol - Choices:
main,aggressive- Default value:main - ike
Mode StringVariable - Variable name
- String
- Use preshared key to authenticate IKE peer
- String
- IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
- String
- Variable name
- String
- IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
- String
- Variable name
- String
- Variable name
- ike
Rekey NumberInterval - IKE rekey interval <60..86400> seconds - Range:
60-86400- Default value:14400 - ike
Rekey StringInterval Variable - Variable name
- ike
Version Number - IKE Version <1..2> - Range:
1-2- Default value:1 - interface
Description String - Interface description
- interface
Description StringVariable - Variable name
- interface
Name String - Interface name: IPsec when present
- interface
Name StringVariable - Variable name
- ip
Address String - Assign IPv4 address
- ip
Address StringVariable - Variable name
- ipsec
Ciphersuite String - IPsec(ESP) encryption and integrity protocol - Choices:
aes256-cbc-sha1,aes256-cbc-sha384,aes256-cbc-sha256,aes256-cbc-sha512,aes256-gcm,null-sha1,null-sha384,null-sha256,null-sha512- Default value:aes256-gcm - ipsec
Ciphersuite StringVariable - Variable name
- ipsec
Perfect StringForward Secrecy - IPsec perfect forward secrecy settings - Choices:
group-1,group-2,group-5,group-14,group-15,group-16,group-19,group-20,group-21,group-24,none- Default value:group-16 - ipsec
Perfect StringForward Secrecy Variable - Variable name
- ipsec
Rekey NumberInterval - IPsec rekey interval <300..1209600> seconds - Range:
120-2592000- Default value:3600 - ipsec
Rekey StringInterval Variable - Variable name
- ipsec
Replay NumberWindow - Replay window size 32..8192 (must be a power of 2) - Range:
64-4096- Default value:512 - ipsec
Replay StringWindow Variable - Variable name
- mtu Number
- Interface MTU <68..9216>, in bytes - Range:
68-9216- Default value:1500 - mtu
Variable String - Variable name
- name String
- The name of the feature template
- shutdown Boolean
- Administrative state - Default value:
true - shutdown
Variable String - Variable name
- tcp
Mss NumberAdjust - TCP MSS on SYN packets, in bytes - Range:
500-1460 - tcp
Mss StringAdjust Variable - Variable name
- tracker
Variable String - Variable name
- trackers List<String>
- Enable tracker for this interface
- tunnel
Destination String - Tunnel destination IP address
- tunnel
Destination StringVariable - Variable name
- tunnel
Route StringVia - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- tunnel
Route StringVia Variable - Variable name
- tunnel
Source String - Tunnel source IP Address
- tunnel
Source StringInterface - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- tunnel
Source StringInterface Variable - Variable name
- tunnel
Source StringVariable - Variable name
Outputs
All input properties are implicitly available as output properties. Additionally, the CiscoVpnInterfaceIpsecFeatureTemplate resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Template
Type string - The template type
- Version int
- The version of the feature template
- Id string
- The provider-assigned unique ID for this managed resource.
- Template
Type string - The template type
- Version int
- The version of the feature template
- id String
- The provider-assigned unique ID for this managed resource.
- template
Type String - The template type
- version Integer
- The version of the feature template
- id string
- The provider-assigned unique ID for this managed resource.
- template
Type string - The template type
- version number
- The version of the feature template
- id str
- The provider-assigned unique ID for this managed resource.
- template_
type str - The template type
- version int
- The version of the feature template
- id String
- The provider-assigned unique ID for this managed resource.
- template
Type String - The template type
- version Number
- The version of the feature template
Look up Existing CiscoVpnInterfaceIpsecFeatureTemplate Resource
Get an existing CiscoVpnInterfaceIpsecFeatureTemplate resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: CiscoVpnInterfaceIpsecFeatureTemplateState, opts?: CustomResourceOptions): CiscoVpnInterfaceIpsecFeatureTemplate@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
application: Optional[str] = None,
application_variable: Optional[str] = None,
clear_dont_fragment: Optional[bool] = None,
clear_dont_fragment_variable: Optional[str] = None,
dead_peer_detection_interval: Optional[int] = None,
dead_peer_detection_interval_variable: Optional[str] = None,
dead_peer_detection_retries: Optional[int] = None,
dead_peer_detection_retries_variable: Optional[str] = None,
description: Optional[str] = None,
device_types: Optional[Sequence[str]] = None,
ike_ciphersuite: Optional[str] = None,
ike_ciphersuite_variable: Optional[str] = None,
ike_group: Optional[str] = None,
ike_group_variable: Optional[str] = None,
ike_mode: Optional[str] = None,
ike_mode_variable: Optional[str] = None,
ike_pre_shared_key: Optional[str] = None,
ike_pre_shared_key_local_id: Optional[str] = None,
ike_pre_shared_key_local_id_variable: Optional[str] = None,
ike_pre_shared_key_remote_id: Optional[str] = None,
ike_pre_shared_key_remote_id_variable: Optional[str] = None,
ike_pre_shared_key_variable: Optional[str] = None,
ike_rekey_interval: Optional[int] = None,
ike_rekey_interval_variable: Optional[str] = None,
ike_version: Optional[int] = None,
interface_description: Optional[str] = None,
interface_description_variable: Optional[str] = None,
interface_name: Optional[str] = None,
interface_name_variable: Optional[str] = None,
ip_address: Optional[str] = None,
ip_address_variable: Optional[str] = None,
ipsec_ciphersuite: Optional[str] = None,
ipsec_ciphersuite_variable: Optional[str] = None,
ipsec_perfect_forward_secrecy: Optional[str] = None,
ipsec_perfect_forward_secrecy_variable: Optional[str] = None,
ipsec_rekey_interval: Optional[int] = None,
ipsec_rekey_interval_variable: Optional[str] = None,
ipsec_replay_window: Optional[int] = None,
ipsec_replay_window_variable: Optional[str] = None,
mtu: Optional[int] = None,
mtu_variable: Optional[str] = None,
name: Optional[str] = None,
shutdown: Optional[bool] = None,
shutdown_variable: Optional[str] = None,
tcp_mss_adjust: Optional[int] = None,
tcp_mss_adjust_variable: Optional[str] = None,
template_type: Optional[str] = None,
tracker_variable: Optional[str] = None,
trackers: Optional[Sequence[str]] = None,
tunnel_destination: Optional[str] = None,
tunnel_destination_variable: Optional[str] = None,
tunnel_route_via: Optional[str] = None,
tunnel_route_via_variable: Optional[str] = None,
tunnel_source: Optional[str] = None,
tunnel_source_interface: Optional[str] = None,
tunnel_source_interface_variable: Optional[str] = None,
tunnel_source_variable: Optional[str] = None,
version: Optional[int] = None) -> CiscoVpnInterfaceIpsecFeatureTemplatefunc GetCiscoVpnInterfaceIpsecFeatureTemplate(ctx *Context, name string, id IDInput, state *CiscoVpnInterfaceIpsecFeatureTemplateState, opts ...ResourceOption) (*CiscoVpnInterfaceIpsecFeatureTemplate, error)public static CiscoVpnInterfaceIpsecFeatureTemplate Get(string name, Input<string> id, CiscoVpnInterfaceIpsecFeatureTemplateState? state, CustomResourceOptions? opts = null)public static CiscoVpnInterfaceIpsecFeatureTemplate get(String name, Output<String> id, CiscoVpnInterfaceIpsecFeatureTemplateState state, CustomResourceOptions options)Resource lookup is not supported in YAML- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Application string
- Enable Application Tunnel Type - Choices:
none,sig- Default value:none - Application
Variable string - Variable name
- Clear
Dont boolFragment - Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value:
false - Clear
Dont stringFragment Variable - Variable name
- Dead
Peer intDetection Interval - IKE keepalive interval (seconds) - Range:
10-3600- Default value:10 - Dead
Peer stringDetection Interval Variable - Variable name
- Dead
Peer intDetection Retries - IKE keepalive retries - Range:
2-60- Default value:3 - Dead
Peer stringDetection Retries Variable - Variable name
- Description string
- The description of the feature template
- Device
Types List<string> - List of supported device types - Choices:
vedge-C8000V,vedge-C8300-1N1S-4T2X,vedge-C8300-1N1S-6T,vedge-C8300-2N2S-6T,vedge-C8300-2N2S-4T2X,vedge-C8500-12X4QC,vedge-C8500-12X,vedge-C8500-20X6C,vedge-C8500L-8S4X,vedge-C8200-1N-4T,vedge-C8200L-1N-4T - Ike
Ciphersuite string - IKE identity the IKE preshared secret belongs to - Choices:
aes256-cbc-sha1,aes256-cbc-sha2,aes128-cbc-sha1,aes128-cbc-sha2- Default value:aes256-cbc-sha1 - Ike
Ciphersuite stringVariable - Variable name
- Ike
Group string - IKE Diffie Hellman Groups - Choices:
2,14,15,16,19,20,21,24- Default value:16 - Ike
Group stringVariable - Variable name
- Ike
Mode string - IKE integrity protocol - Choices:
main,aggressive- Default value:main - Ike
Mode stringVariable - Variable name
- string
- Use preshared key to authenticate IKE peer
- string
- IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
- string
- Variable name
- string
- IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
- string
- Variable name
- string
- Variable name
- Ike
Rekey intInterval - IKE rekey interval <60..86400> seconds - Range:
60-86400- Default value:14400 - Ike
Rekey stringInterval Variable - Variable name
- Ike
Version int - IKE Version <1..2> - Range:
1-2- Default value:1 - Interface
Description string - Interface description
- Interface
Description stringVariable - Variable name
- Interface
Name string - Interface name: IPsec when present
- Interface
Name stringVariable - Variable name
- Ip
Address string - Assign IPv4 address
- Ip
Address stringVariable - Variable name
- Ipsec
Ciphersuite string - IPsec(ESP) encryption and integrity protocol - Choices:
aes256-cbc-sha1,aes256-cbc-sha384,aes256-cbc-sha256,aes256-cbc-sha512,aes256-gcm,null-sha1,null-sha384,null-sha256,null-sha512- Default value:aes256-gcm - Ipsec
Ciphersuite stringVariable - Variable name
- Ipsec
Perfect stringForward Secrecy - IPsec perfect forward secrecy settings - Choices:
group-1,group-2,group-5,group-14,group-15,group-16,group-19,group-20,group-21,group-24,none- Default value:group-16 - Ipsec
Perfect stringForward Secrecy Variable - Variable name
- Ipsec
Rekey intInterval - IPsec rekey interval <300..1209600> seconds - Range:
120-2592000- Default value:3600 - Ipsec
Rekey stringInterval Variable - Variable name
- Ipsec
Replay intWindow - Replay window size 32..8192 (must be a power of 2) - Range:
64-4096- Default value:512 - Ipsec
Replay stringWindow Variable - Variable name
- Mtu int
- Interface MTU <68..9216>, in bytes - Range:
68-9216- Default value:1500 - Mtu
Variable string - Variable name
- Name string
- The name of the feature template
- Shutdown bool
- Administrative state - Default value:
true - Shutdown
Variable string - Variable name
- Tcp
Mss intAdjust - TCP MSS on SYN packets, in bytes - Range:
500-1460 - Tcp
Mss stringAdjust Variable - Variable name
- Template
Type string - The template type
- Tracker
Variable string - Variable name
- Trackers List<string>
- Enable tracker for this interface
- Tunnel
Destination string - Tunnel destination IP address
- Tunnel
Destination stringVariable - Variable name
- Tunnel
Route stringVia - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- Tunnel
Route stringVia Variable - Variable name
- Tunnel
Source string - Tunnel source IP Address
- Tunnel
Source stringInterface - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- Tunnel
Source stringInterface Variable - Variable name
- Tunnel
Source stringVariable - Variable name
- Version int
- The version of the feature template
- Application string
- Enable Application Tunnel Type - Choices:
none,sig- Default value:none - Application
Variable string - Variable name
- Clear
Dont boolFragment - Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value:
false - Clear
Dont stringFragment Variable - Variable name
- Dead
Peer intDetection Interval - IKE keepalive interval (seconds) - Range:
10-3600- Default value:10 - Dead
Peer stringDetection Interval Variable - Variable name
- Dead
Peer intDetection Retries - IKE keepalive retries - Range:
2-60- Default value:3 - Dead
Peer stringDetection Retries Variable - Variable name
- Description string
- The description of the feature template
- Device
Types []string - List of supported device types - Choices:
vedge-C8000V,vedge-C8300-1N1S-4T2X,vedge-C8300-1N1S-6T,vedge-C8300-2N2S-6T,vedge-C8300-2N2S-4T2X,vedge-C8500-12X4QC,vedge-C8500-12X,vedge-C8500-20X6C,vedge-C8500L-8S4X,vedge-C8200-1N-4T,vedge-C8200L-1N-4T - Ike
Ciphersuite string - IKE identity the IKE preshared secret belongs to - Choices:
aes256-cbc-sha1,aes256-cbc-sha2,aes128-cbc-sha1,aes128-cbc-sha2- Default value:aes256-cbc-sha1 - Ike
Ciphersuite stringVariable - Variable name
- Ike
Group string - IKE Diffie Hellman Groups - Choices:
2,14,15,16,19,20,21,24- Default value:16 - Ike
Group stringVariable - Variable name
- Ike
Mode string - IKE integrity protocol - Choices:
main,aggressive- Default value:main - Ike
Mode stringVariable - Variable name
- string
- Use preshared key to authenticate IKE peer
- string
- IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
- string
- Variable name
- string
- IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
- string
- Variable name
- string
- Variable name
- Ike
Rekey intInterval - IKE rekey interval <60..86400> seconds - Range:
60-86400- Default value:14400 - Ike
Rekey stringInterval Variable - Variable name
- Ike
Version int - IKE Version <1..2> - Range:
1-2- Default value:1 - Interface
Description string - Interface description
- Interface
Description stringVariable - Variable name
- Interface
Name string - Interface name: IPsec when present
- Interface
Name stringVariable - Variable name
- Ip
Address string - Assign IPv4 address
- Ip
Address stringVariable - Variable name
- Ipsec
Ciphersuite string - IPsec(ESP) encryption and integrity protocol - Choices:
aes256-cbc-sha1,aes256-cbc-sha384,aes256-cbc-sha256,aes256-cbc-sha512,aes256-gcm,null-sha1,null-sha384,null-sha256,null-sha512- Default value:aes256-gcm - Ipsec
Ciphersuite stringVariable - Variable name
- Ipsec
Perfect stringForward Secrecy - IPsec perfect forward secrecy settings - Choices:
group-1,group-2,group-5,group-14,group-15,group-16,group-19,group-20,group-21,group-24,none- Default value:group-16 - Ipsec
Perfect stringForward Secrecy Variable - Variable name
- Ipsec
Rekey intInterval - IPsec rekey interval <300..1209600> seconds - Range:
120-2592000- Default value:3600 - Ipsec
Rekey stringInterval Variable - Variable name
- Ipsec
Replay intWindow - Replay window size 32..8192 (must be a power of 2) - Range:
64-4096- Default value:512 - Ipsec
Replay stringWindow Variable - Variable name
- Mtu int
- Interface MTU <68..9216>, in bytes - Range:
68-9216- Default value:1500 - Mtu
Variable string - Variable name
- Name string
- The name of the feature template
- Shutdown bool
- Administrative state - Default value:
true - Shutdown
Variable string - Variable name
- Tcp
Mss intAdjust - TCP MSS on SYN packets, in bytes - Range:
500-1460 - Tcp
Mss stringAdjust Variable - Variable name
- Template
Type string - The template type
- Tracker
Variable string - Variable name
- Trackers []string
- Enable tracker for this interface
- Tunnel
Destination string - Tunnel destination IP address
- Tunnel
Destination stringVariable - Variable name
- Tunnel
Route stringVia - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- Tunnel
Route stringVia Variable - Variable name
- Tunnel
Source string - Tunnel source IP Address
- Tunnel
Source stringInterface - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- Tunnel
Source stringInterface Variable - Variable name
- Tunnel
Source stringVariable - Variable name
- Version int
- The version of the feature template
- application String
- Enable Application Tunnel Type - Choices:
none,sig- Default value:none - application
Variable String - Variable name
- clear
Dont BooleanFragment - Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value:
false - clear
Dont StringFragment Variable - Variable name
- dead
Peer IntegerDetection Interval - IKE keepalive interval (seconds) - Range:
10-3600- Default value:10 - dead
Peer StringDetection Interval Variable - Variable name
- dead
Peer IntegerDetection Retries - IKE keepalive retries - Range:
2-60- Default value:3 - dead
Peer StringDetection Retries Variable - Variable name
- description String
- The description of the feature template
- device
Types List<String> - List of supported device types - Choices:
vedge-C8000V,vedge-C8300-1N1S-4T2X,vedge-C8300-1N1S-6T,vedge-C8300-2N2S-6T,vedge-C8300-2N2S-4T2X,vedge-C8500-12X4QC,vedge-C8500-12X,vedge-C8500-20X6C,vedge-C8500L-8S4X,vedge-C8200-1N-4T,vedge-C8200L-1N-4T - ike
Ciphersuite String - IKE identity the IKE preshared secret belongs to - Choices:
aes256-cbc-sha1,aes256-cbc-sha2,aes128-cbc-sha1,aes128-cbc-sha2- Default value:aes256-cbc-sha1 - ike
Ciphersuite StringVariable - Variable name
- ike
Group String - IKE Diffie Hellman Groups - Choices:
2,14,15,16,19,20,21,24- Default value:16 - ike
Group StringVariable - Variable name
- ike
Mode String - IKE integrity protocol - Choices:
main,aggressive- Default value:main - ike
Mode StringVariable - Variable name
- String
- Use preshared key to authenticate IKE peer
- String
- IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
- String
- Variable name
- String
- IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
- String
- Variable name
- String
- Variable name
- ike
Rekey IntegerInterval - IKE rekey interval <60..86400> seconds - Range:
60-86400- Default value:14400 - ike
Rekey StringInterval Variable - Variable name
- ike
Version Integer - IKE Version <1..2> - Range:
1-2- Default value:1 - interface
Description String - Interface description
- interface
Description StringVariable - Variable name
- interface
Name String - Interface name: IPsec when present
- interface
Name StringVariable - Variable name
- ip
Address String - Assign IPv4 address
- ip
Address StringVariable - Variable name
- ipsec
Ciphersuite String - IPsec(ESP) encryption and integrity protocol - Choices:
aes256-cbc-sha1,aes256-cbc-sha384,aes256-cbc-sha256,aes256-cbc-sha512,aes256-gcm,null-sha1,null-sha384,null-sha256,null-sha512- Default value:aes256-gcm - ipsec
Ciphersuite StringVariable - Variable name
- ipsec
Perfect StringForward Secrecy - IPsec perfect forward secrecy settings - Choices:
group-1,group-2,group-5,group-14,group-15,group-16,group-19,group-20,group-21,group-24,none- Default value:group-16 - ipsec
Perfect StringForward Secrecy Variable - Variable name
- ipsec
Rekey IntegerInterval - IPsec rekey interval <300..1209600> seconds - Range:
120-2592000- Default value:3600 - ipsec
Rekey StringInterval Variable - Variable name
- ipsec
Replay IntegerWindow - Replay window size 32..8192 (must be a power of 2) - Range:
64-4096- Default value:512 - ipsec
Replay StringWindow Variable - Variable name
- mtu Integer
- Interface MTU <68..9216>, in bytes - Range:
68-9216- Default value:1500 - mtu
Variable String - Variable name
- name String
- The name of the feature template
- shutdown Boolean
- Administrative state - Default value:
true - shutdown
Variable String - Variable name
- tcp
Mss IntegerAdjust - TCP MSS on SYN packets, in bytes - Range:
500-1460 - tcp
Mss StringAdjust Variable - Variable name
- template
Type String - The template type
- tracker
Variable String - Variable name
- trackers List<String>
- Enable tracker for this interface
- tunnel
Destination String - Tunnel destination IP address
- tunnel
Destination StringVariable - Variable name
- tunnel
Route StringVia - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- tunnel
Route StringVia Variable - Variable name
- tunnel
Source String - Tunnel source IP Address
- tunnel
Source StringInterface - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- tunnel
Source StringInterface Variable - Variable name
- tunnel
Source StringVariable - Variable name
- version Integer
- The version of the feature template
- application string
- Enable Application Tunnel Type - Choices:
none,sig- Default value:none - application
Variable string - Variable name
- clear
Dont booleanFragment - Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value:
false - clear
Dont stringFragment Variable - Variable name
- dead
Peer numberDetection Interval - IKE keepalive interval (seconds) - Range:
10-3600- Default value:10 - dead
Peer stringDetection Interval Variable - Variable name
- dead
Peer numberDetection Retries - IKE keepalive retries - Range:
2-60- Default value:3 - dead
Peer stringDetection Retries Variable - Variable name
- description string
- The description of the feature template
- device
Types string[] - List of supported device types - Choices:
vedge-C8000V,vedge-C8300-1N1S-4T2X,vedge-C8300-1N1S-6T,vedge-C8300-2N2S-6T,vedge-C8300-2N2S-4T2X,vedge-C8500-12X4QC,vedge-C8500-12X,vedge-C8500-20X6C,vedge-C8500L-8S4X,vedge-C8200-1N-4T,vedge-C8200L-1N-4T - ike
Ciphersuite string - IKE identity the IKE preshared secret belongs to - Choices:
aes256-cbc-sha1,aes256-cbc-sha2,aes128-cbc-sha1,aes128-cbc-sha2- Default value:aes256-cbc-sha1 - ike
Ciphersuite stringVariable - Variable name
- ike
Group string - IKE Diffie Hellman Groups - Choices:
2,14,15,16,19,20,21,24- Default value:16 - ike
Group stringVariable - Variable name
- ike
Mode string - IKE integrity protocol - Choices:
main,aggressive- Default value:main - ike
Mode stringVariable - Variable name
- string
- Use preshared key to authenticate IKE peer
- string
- IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
- string
- Variable name
- string
- IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
- string
- Variable name
- string
- Variable name
- ike
Rekey numberInterval - IKE rekey interval <60..86400> seconds - Range:
60-86400- Default value:14400 - ike
Rekey stringInterval Variable - Variable name
- ike
Version number - IKE Version <1..2> - Range:
1-2- Default value:1 - interface
Description string - Interface description
- interface
Description stringVariable - Variable name
- interface
Name string - Interface name: IPsec when present
- interface
Name stringVariable - Variable name
- ip
Address string - Assign IPv4 address
- ip
Address stringVariable - Variable name
- ipsec
Ciphersuite string - IPsec(ESP) encryption and integrity protocol - Choices:
aes256-cbc-sha1,aes256-cbc-sha384,aes256-cbc-sha256,aes256-cbc-sha512,aes256-gcm,null-sha1,null-sha384,null-sha256,null-sha512- Default value:aes256-gcm - ipsec
Ciphersuite stringVariable - Variable name
- ipsec
Perfect stringForward Secrecy - IPsec perfect forward secrecy settings - Choices:
group-1,group-2,group-5,group-14,group-15,group-16,group-19,group-20,group-21,group-24,none- Default value:group-16 - ipsec
Perfect stringForward Secrecy Variable - Variable name
- ipsec
Rekey numberInterval - IPsec rekey interval <300..1209600> seconds - Range:
120-2592000- Default value:3600 - ipsec
Rekey stringInterval Variable - Variable name
- ipsec
Replay numberWindow - Replay window size 32..8192 (must be a power of 2) - Range:
64-4096- Default value:512 - ipsec
Replay stringWindow Variable - Variable name
- mtu number
- Interface MTU <68..9216>, in bytes - Range:
68-9216- Default value:1500 - mtu
Variable string - Variable name
- name string
- The name of the feature template
- shutdown boolean
- Administrative state - Default value:
true - shutdown
Variable string - Variable name
- tcp
Mss numberAdjust - TCP MSS on SYN packets, in bytes - Range:
500-1460 - tcp
Mss stringAdjust Variable - Variable name
- template
Type string - The template type
- tracker
Variable string - Variable name
- trackers string[]
- Enable tracker for this interface
- tunnel
Destination string - Tunnel destination IP address
- tunnel
Destination stringVariable - Variable name
- tunnel
Route stringVia - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- tunnel
Route stringVia Variable - Variable name
- tunnel
Source string - Tunnel source IP Address
- tunnel
Source stringInterface - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- tunnel
Source stringInterface Variable - Variable name
- tunnel
Source stringVariable - Variable name
- version number
- The version of the feature template
- application str
- Enable Application Tunnel Type - Choices:
none,sig- Default value:none - application_
variable str - Variable name
- clear_
dont_ boolfragment - Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value:
false - clear_
dont_ strfragment_ variable - Variable name
- dead_
peer_ intdetection_ interval - IKE keepalive interval (seconds) - Range:
10-3600- Default value:10 - dead_
peer_ strdetection_ interval_ variable - Variable name
- dead_
peer_ intdetection_ retries - IKE keepalive retries - Range:
2-60- Default value:3 - dead_
peer_ strdetection_ retries_ variable - Variable name
- description str
- The description of the feature template
- device_
types Sequence[str] - List of supported device types - Choices:
vedge-C8000V,vedge-C8300-1N1S-4T2X,vedge-C8300-1N1S-6T,vedge-C8300-2N2S-6T,vedge-C8300-2N2S-4T2X,vedge-C8500-12X4QC,vedge-C8500-12X,vedge-C8500-20X6C,vedge-C8500L-8S4X,vedge-C8200-1N-4T,vedge-C8200L-1N-4T - ike_
ciphersuite str - IKE identity the IKE preshared secret belongs to - Choices:
aes256-cbc-sha1,aes256-cbc-sha2,aes128-cbc-sha1,aes128-cbc-sha2- Default value:aes256-cbc-sha1 - ike_
ciphersuite_ strvariable - Variable name
- ike_
group str - IKE Diffie Hellman Groups - Choices:
2,14,15,16,19,20,21,24- Default value:16 - ike_
group_ strvariable - Variable name
- ike_
mode str - IKE integrity protocol - Choices:
main,aggressive- Default value:main - ike_
mode_ strvariable - Variable name
- str
- Use preshared key to authenticate IKE peer
- str
- IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
- str
- Variable name
- str
- IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
- str
- Variable name
- str
- Variable name
- ike_
rekey_ intinterval - IKE rekey interval <60..86400> seconds - Range:
60-86400- Default value:14400 - ike_
rekey_ strinterval_ variable - Variable name
- ike_
version int - IKE Version <1..2> - Range:
1-2- Default value:1 - interface_
description str - Interface description
- interface_
description_ strvariable - Variable name
- interface_
name str - Interface name: IPsec when present
- interface_
name_ strvariable - Variable name
- ip_
address str - Assign IPv4 address
- ip_
address_ strvariable - Variable name
- ipsec_
ciphersuite str - IPsec(ESP) encryption and integrity protocol - Choices:
aes256-cbc-sha1,aes256-cbc-sha384,aes256-cbc-sha256,aes256-cbc-sha512,aes256-gcm,null-sha1,null-sha384,null-sha256,null-sha512- Default value:aes256-gcm - ipsec_
ciphersuite_ strvariable - Variable name
- ipsec_
perfect_ strforward_ secrecy - IPsec perfect forward secrecy settings - Choices:
group-1,group-2,group-5,group-14,group-15,group-16,group-19,group-20,group-21,group-24,none- Default value:group-16 - ipsec_
perfect_ strforward_ secrecy_ variable - Variable name
- ipsec_
rekey_ intinterval - IPsec rekey interval <300..1209600> seconds - Range:
120-2592000- Default value:3600 - ipsec_
rekey_ strinterval_ variable - Variable name
- ipsec_
replay_ intwindow - Replay window size 32..8192 (must be a power of 2) - Range:
64-4096- Default value:512 - ipsec_
replay_ strwindow_ variable - Variable name
- mtu int
- Interface MTU <68..9216>, in bytes - Range:
68-9216- Default value:1500 - mtu_
variable str - Variable name
- name str
- The name of the feature template
- shutdown bool
- Administrative state - Default value:
true - shutdown_
variable str - Variable name
- tcp_
mss_ intadjust - TCP MSS on SYN packets, in bytes - Range:
500-1460 - tcp_
mss_ stradjust_ variable - Variable name
- template_
type str - The template type
- tracker_
variable str - Variable name
- trackers Sequence[str]
- Enable tracker for this interface
- tunnel_
destination str - Tunnel destination IP address
- tunnel_
destination_ strvariable - Variable name
- tunnel_
route_ strvia - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- tunnel_
route_ strvia_ variable - Variable name
- tunnel_
source str - Tunnel source IP Address
- tunnel_
source_ strinterface - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- tunnel_
source_ strinterface_ variable - Variable name
- tunnel_
source_ strvariable - Variable name
- version int
- The version of the feature template
- application String
- Enable Application Tunnel Type - Choices:
none,sig- Default value:none - application
Variable String - Variable name
- clear
Dont BooleanFragment - Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value:
false - clear
Dont StringFragment Variable - Variable name
- dead
Peer NumberDetection Interval - IKE keepalive interval (seconds) - Range:
10-3600- Default value:10 - dead
Peer StringDetection Interval Variable - Variable name
- dead
Peer NumberDetection Retries - IKE keepalive retries - Range:
2-60- Default value:3 - dead
Peer StringDetection Retries Variable - Variable name
- description String
- The description of the feature template
- device
Types List<String> - List of supported device types - Choices:
vedge-C8000V,vedge-C8300-1N1S-4T2X,vedge-C8300-1N1S-6T,vedge-C8300-2N2S-6T,vedge-C8300-2N2S-4T2X,vedge-C8500-12X4QC,vedge-C8500-12X,vedge-C8500-20X6C,vedge-C8500L-8S4X,vedge-C8200-1N-4T,vedge-C8200L-1N-4T - ike
Ciphersuite String - IKE identity the IKE preshared secret belongs to - Choices:
aes256-cbc-sha1,aes256-cbc-sha2,aes128-cbc-sha1,aes128-cbc-sha2- Default value:aes256-cbc-sha1 - ike
Ciphersuite StringVariable - Variable name
- ike
Group String - IKE Diffie Hellman Groups - Choices:
2,14,15,16,19,20,21,24- Default value:16 - ike
Group StringVariable - Variable name
- ike
Mode String - IKE integrity protocol - Choices:
main,aggressive- Default value:main - ike
Mode StringVariable - Variable name
- String
- Use preshared key to authenticate IKE peer
- String
- IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
- String
- Variable name
- String
- IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
- String
- Variable name
- String
- Variable name
- ike
Rekey NumberInterval - IKE rekey interval <60..86400> seconds - Range:
60-86400- Default value:14400 - ike
Rekey StringInterval Variable - Variable name
- ike
Version Number - IKE Version <1..2> - Range:
1-2- Default value:1 - interface
Description String - Interface description
- interface
Description StringVariable - Variable name
- interface
Name String - Interface name: IPsec when present
- interface
Name StringVariable - Variable name
- ip
Address String - Assign IPv4 address
- ip
Address StringVariable - Variable name
- ipsec
Ciphersuite String - IPsec(ESP) encryption and integrity protocol - Choices:
aes256-cbc-sha1,aes256-cbc-sha384,aes256-cbc-sha256,aes256-cbc-sha512,aes256-gcm,null-sha1,null-sha384,null-sha256,null-sha512- Default value:aes256-gcm - ipsec
Ciphersuite StringVariable - Variable name
- ipsec
Perfect StringForward Secrecy - IPsec perfect forward secrecy settings - Choices:
group-1,group-2,group-5,group-14,group-15,group-16,group-19,group-20,group-21,group-24,none- Default value:group-16 - ipsec
Perfect StringForward Secrecy Variable - Variable name
- ipsec
Rekey NumberInterval - IPsec rekey interval <300..1209600> seconds - Range:
120-2592000- Default value:3600 - ipsec
Rekey StringInterval Variable - Variable name
- ipsec
Replay NumberWindow - Replay window size 32..8192 (must be a power of 2) - Range:
64-4096- Default value:512 - ipsec
Replay StringWindow Variable - Variable name
- mtu Number
- Interface MTU <68..9216>, in bytes - Range:
68-9216- Default value:1500 - mtu
Variable String - Variable name
- name String
- The name of the feature template
- shutdown Boolean
- Administrative state - Default value:
true - shutdown
Variable String - Variable name
- tcp
Mss NumberAdjust - TCP MSS on SYN packets, in bytes - Range:
500-1460 - tcp
Mss StringAdjust Variable - Variable name
- template
Type String - The template type
- tracker
Variable String - Variable name
- trackers List<String>
- Enable tracker for this interface
- tunnel
Destination String - Tunnel destination IP address
- tunnel
Destination StringVariable - Variable name
- tunnel
Route StringVia - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- tunnel
Route StringVia Variable - Variable name
- tunnel
Source String - Tunnel source IP Address
- tunnel
Source StringInterface - <1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
- tunnel
Source StringInterface Variable - Variable name
- tunnel
Source StringVariable - Variable name
- version Number
- The version of the feature template
Import
$ pulumi import sdwan:index/ciscoVpnInterfaceIpsecFeatureTemplate:CiscoVpnInterfaceIpsecFeatureTemplate example "f6b2c44c-693c-4763-b010-895aa3d236bd"
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- sdwan pulumi/pulumi-sdwan
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
sdwanTerraform Provider.