Docs Home
Packages
Alibaba Cloud v3.62.1 published on Monday, Sep 16, 2024 by Pulumi
alicloud.ddos.BgpPolicy
Explore with Pulumi AI
Provides a Ddos Bgp Policy resource.
Ddos protection policy.
For information about Ddos Bgp Policy and how to use it, see What is Policy.
NOTE: Available since v1.226.0.
Example Usage
Basic Usage
import * as pulumi from "@pulumi/pulumi";
import * as alicloud from "@pulumi/alicloud";
const config = new pulumi.Config();
const name = config.get("name") || "tf_exampleacc_bgp32594";
const policyName = config.get("policyName") || "example_l4_policy";
const _default = new alicloud.ddos.BgpPolicy("default", {
content: {
enableDefense: false,
layer4RuleLists: [{
method: "hex",
match: "1",
action: "1",
limited: 0,
conditionLists: [{
arg: "3C",
position: 1,
depth: 2,
}],
name: "11",
priority: 10,
}],
},
type: "l4",
policyName: "tf_exampleacc_bgp32594",
});
import pulumi
import pulumi_alicloud as alicloud
config = pulumi.Config()
name = config.get("name")
if name is None:
name = "tf_exampleacc_bgp32594"
policy_name = config.get("policyName")
if policy_name is None:
policy_name = "example_l4_policy"
default = alicloud.ddos.BgpPolicy("default",
content={
"enable_defense": False,
"layer4_rule_lists": [{
"method": "hex",
"match": "1",
"action": "1",
"limited": 0,
"condition_lists": [{
"arg": "3C",
"position": 1,
"depth": 2,
}],
"name": "11",
"priority": 10,
}],
},
type="l4",
policy_name="tf_exampleacc_bgp32594")
package main
import (
"github.com/pulumi/pulumi-alicloud/sdk/v3/go/alicloud/ddos"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi/config"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
cfg := config.New(ctx, "")
name := "tf_exampleacc_bgp32594"
if param := cfg.Get("name"); param != "" {
name = param
}
policyName := "example_l4_policy"
if param := cfg.Get("policyName"); param != "" {
policyName = param
}
_, err := ddos.NewBgpPolicy(ctx, "default", &ddos.BgpPolicyArgs{
Content: &ddos.BgpPolicyContentArgs{
EnableDefense: pulumi.Bool(false),
Layer4RuleLists: ddos.BgpPolicyContentLayer4RuleListArray{
&ddos.BgpPolicyContentLayer4RuleListArgs{
Method: pulumi.String("hex"),
Match: pulumi.String("1"),
Action: pulumi.String("1"),
Limited: pulumi.Int(0),
ConditionLists: ddos.BgpPolicyContentLayer4RuleListConditionListArray{
&ddos.BgpPolicyContentLayer4RuleListConditionListArgs{
Arg: pulumi.String("3C"),
Position: pulumi.Int(1),
Depth: pulumi.Int(2),
},
},
Name: pulumi.String("11"),
Priority: pulumi.Int(10),
},
},
},
Type: pulumi.String("l4"),
PolicyName: pulumi.String("tf_exampleacc_bgp32594"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AliCloud = Pulumi.AliCloud;
return await Deployment.RunAsync(() =>
{
var config = new Config();
var name = config.Get("name") ?? "tf_exampleacc_bgp32594";
var policyName = config.Get("policyName") ?? "example_l4_policy";
var @default = new AliCloud.Ddos.BgpPolicy("default", new()
{
Content = new AliCloud.Ddos.Inputs.BgpPolicyContentArgs
{
EnableDefense = false,
Layer4RuleLists = new[]
{
new AliCloud.Ddos.Inputs.BgpPolicyContentLayer4RuleListArgs
{
Method = "hex",
Match = "1",
Action = "1",
Limited = 0,
ConditionLists = new[]
{
new AliCloud.Ddos.Inputs.BgpPolicyContentLayer4RuleListConditionListArgs
{
Arg = "3C",
Position = 1,
Depth = 2,
},
},
Name = "11",
Priority = 10,
},
},
},
Type = "l4",
PolicyName = "tf_exampleacc_bgp32594",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.alicloud.ddos.BgpPolicy;
import com.pulumi.alicloud.ddos.BgpPolicyArgs;
import com.pulumi.alicloud.ddos.inputs.BgpPolicyContentArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var config = ctx.config();
final var name = config.get("name").orElse("tf_exampleacc_bgp32594");
final var policyName = config.get("policyName").orElse("example_l4_policy");
var default_ = new BgpPolicy("default", BgpPolicyArgs.builder()
.content(BgpPolicyContentArgs.builder()
.enableDefense("false")
.layer4RuleLists(BgpPolicyContentLayer4RuleListArgs.builder()
.method("hex")
.match("1")
.action("1")
.limited("0")
.conditionLists(BgpPolicyContentLayer4RuleListConditionListArgs.builder()
.arg("3C")
.position("1")
.depth("2")
.build())
.name("11")
.priority("10")
.build())
.build())
.type("l4")
.policyName("tf_exampleacc_bgp32594")
.build());
}
}
configuration:
name:
type: string
default: tf_exampleacc_bgp32594
policyName:
type: string
default: example_l4_policy
resources:
default:
type: alicloud:ddos:BgpPolicy
properties:
content:
enableDefense: 'false'
layer4RuleLists:
- method: hex
match: '1'
action: '1'
limited: '0'
conditionLists:
- arg: 3C
position: '1'
depth: '2'
name: '11'
priority: '10'
type: l4
policyName: tf_exampleacc_bgp32594
Create BgpPolicy Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new BgpPolicy(name: string, args: BgpPolicyArgs, opts?: CustomResourceOptions);@overload
def BgpPolicy(resource_name: str,
args: BgpPolicyArgs,
opts: Optional[ResourceOptions] = None)
@overload
def BgpPolicy(resource_name: str,
opts: Optional[ResourceOptions] = None,
policy_name: Optional[str] = None,
type: Optional[str] = None,
content: Optional[BgpPolicyContentArgs] = None)func NewBgpPolicy(ctx *Context, name string, args BgpPolicyArgs, opts ...ResourceOption) (*BgpPolicy, error)public BgpPolicy(string name, BgpPolicyArgs args, CustomResourceOptions? opts = null)
public BgpPolicy(String name, BgpPolicyArgs args)
public BgpPolicy(String name, BgpPolicyArgs args, CustomResourceOptions options)
type: alicloud:ddos:BgpPolicy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args BgpPolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args BgpPolicyArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args BgpPolicyArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args BgpPolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args BgpPolicyArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var bgpPolicyResource = new AliCloud.Ddos.BgpPolicy("bgpPolicyResource", new()
{
PolicyName = "string",
Type = "string",
Content = new AliCloud.Ddos.Inputs.BgpPolicyContentArgs
{
BlackIpListExpireAt = 0,
EnableDefense = false,
EnableDropIcmp = false,
EnableIntelligence = false,
FingerPrintRuleLists = new[]
{
new AliCloud.Ddos.Inputs.BgpPolicyContentFingerPrintRuleListArgs
{
SeqNo = 0,
DstPortStart = 0,
SrcPortStart = 0,
MatchAction = "string",
MaxPktLen = 0,
MinPktLen = 0,
DstPortEnd = 0,
SrcPortEnd = 0,
Protocol = "string",
Offset = 0,
RateValue = 0,
PayloadBytes = "string",
FingerPrintRuleId = "string",
},
},
IntelligenceLevel = "string",
Layer4RuleLists = new[]
{
new AliCloud.Ddos.Inputs.BgpPolicyContentLayer4RuleListArgs
{
Action = "string",
ConditionLists = new[]
{
new AliCloud.Ddos.Inputs.BgpPolicyContentLayer4RuleListConditionListArgs
{
Arg = "string",
Depth = 0,
Position = 0,
},
},
Limited = 0,
Match = "string",
Method = "string",
Name = "string",
Priority = 0,
},
},
PortRuleLists = new[]
{
new AliCloud.Ddos.Inputs.BgpPolicyContentPortRuleListArgs
{
DstPortEnd = 0,
DstPortStart = 0,
MatchAction = "string",
Protocol = "string",
SeqNo = 0,
SrcPortEnd = 0,
SrcPortStart = 0,
PortRuleId = "string",
},
},
ReflectBlockUdpPortLists = new[]
{
0,
},
RegionBlockCountryLists = new[]
{
0,
},
RegionBlockProvinceLists = new[]
{
0,
},
SourceBlockLists = new[]
{
new AliCloud.Ddos.Inputs.BgpPolicyContentSourceBlockListArgs
{
BlockExpireSeconds = 0,
EverySeconds = 0,
ExceedLimitTimes = 0,
Type = 0,
},
},
SourceLimit = new AliCloud.Ddos.Inputs.BgpPolicyContentSourceLimitArgs
{
Bps = 0,
Pps = 0,
SynBps = 0,
SynPps = 0,
},
WhitenGfbrNets = false,
},
});
example, err := ddos.NewBgpPolicy(ctx, "bgpPolicyResource", &ddos.BgpPolicyArgs{
PolicyName: pulumi.String("string"),
Type: pulumi.String("string"),
Content: &ddos.BgpPolicyContentArgs{
BlackIpListExpireAt: pulumi.Int(0),
EnableDefense: pulumi.Bool(false),
EnableDropIcmp: pulumi.Bool(false),
EnableIntelligence: pulumi.Bool(false),
FingerPrintRuleLists: ddos.BgpPolicyContentFingerPrintRuleListArray{
&ddos.BgpPolicyContentFingerPrintRuleListArgs{
SeqNo: pulumi.Int(0),
DstPortStart: pulumi.Int(0),
SrcPortStart: pulumi.Int(0),
MatchAction: pulumi.String("string"),
MaxPktLen: pulumi.Int(0),
MinPktLen: pulumi.Int(0),
DstPortEnd: pulumi.Int(0),
SrcPortEnd: pulumi.Int(0),
Protocol: pulumi.String("string"),
Offset: pulumi.Int(0),
RateValue: pulumi.Int(0),
PayloadBytes: pulumi.String("string"),
FingerPrintRuleId: pulumi.String("string"),
},
},
IntelligenceLevel: pulumi.String("string"),
Layer4RuleLists: ddos.BgpPolicyContentLayer4RuleListArray{
&ddos.BgpPolicyContentLayer4RuleListArgs{
Action: pulumi.String("string"),
ConditionLists: ddos.BgpPolicyContentLayer4RuleListConditionListArray{
&ddos.BgpPolicyContentLayer4RuleListConditionListArgs{
Arg: pulumi.String("string"),
Depth: pulumi.Int(0),
Position: pulumi.Int(0),
},
},
Limited: pulumi.Int(0),
Match: pulumi.String("string"),
Method: pulumi.String("string"),
Name: pulumi.String("string"),
Priority: pulumi.Int(0),
},
},
PortRuleLists: ddos.BgpPolicyContentPortRuleListArray{
&ddos.BgpPolicyContentPortRuleListArgs{
DstPortEnd: pulumi.Int(0),
DstPortStart: pulumi.Int(0),
MatchAction: pulumi.String("string"),
Protocol: pulumi.String("string"),
SeqNo: pulumi.Int(0),
SrcPortEnd: pulumi.Int(0),
SrcPortStart: pulumi.Int(0),
PortRuleId: pulumi.String("string"),
},
},
ReflectBlockUdpPortLists: pulumi.IntArray{
pulumi.Int(0),
},
RegionBlockCountryLists: pulumi.IntArray{
pulumi.Int(0),
},
RegionBlockProvinceLists: pulumi.IntArray{
pulumi.Int(0),
},
SourceBlockLists: ddos.BgpPolicyContentSourceBlockListArray{
&ddos.BgpPolicyContentSourceBlockListArgs{
BlockExpireSeconds: pulumi.Int(0),
EverySeconds: pulumi.Int(0),
ExceedLimitTimes: pulumi.Int(0),
Type: pulumi.Int(0),
},
},
SourceLimit: &ddos.BgpPolicyContentSourceLimitArgs{
Bps: pulumi.Int(0),
Pps: pulumi.Int(0),
SynBps: pulumi.Int(0),
SynPps: pulumi.Int(0),
},
WhitenGfbrNets: pulumi.Bool(false),
},
})
var bgpPolicyResource = new BgpPolicy("bgpPolicyResource", BgpPolicyArgs.builder()
.policyName("string")
.type("string")
.content(BgpPolicyContentArgs.builder()
.blackIpListExpireAt(0)
.enableDefense(false)
.enableDropIcmp(false)
.enableIntelligence(false)
.fingerPrintRuleLists(BgpPolicyContentFingerPrintRuleListArgs.builder()
.seqNo(0)
.dstPortStart(0)
.srcPortStart(0)
.matchAction("string")
.maxPktLen(0)
.minPktLen(0)
.dstPortEnd(0)
.srcPortEnd(0)
.protocol("string")
.offset(0)
.rateValue(0)
.payloadBytes("string")
.fingerPrintRuleId("string")
.build())
.intelligenceLevel("string")
.layer4RuleLists(BgpPolicyContentLayer4RuleListArgs.builder()
.action("string")
.conditionLists(BgpPolicyContentLayer4RuleListConditionListArgs.builder()
.arg("string")
.depth(0)
.position(0)
.build())
.limited(0)
.match("string")
.method("string")
.name("string")
.priority(0)
.build())
.portRuleLists(BgpPolicyContentPortRuleListArgs.builder()
.dstPortEnd(0)
.dstPortStart(0)
.matchAction("string")
.protocol("string")
.seqNo(0)
.srcPortEnd(0)
.srcPortStart(0)
.portRuleId("string")
.build())
.reflectBlockUdpPortLists(0)
.regionBlockCountryLists(0)
.regionBlockProvinceLists(0)
.sourceBlockLists(BgpPolicyContentSourceBlockListArgs.builder()
.blockExpireSeconds(0)
.everySeconds(0)
.exceedLimitTimes(0)
.type(0)
.build())
.sourceLimit(BgpPolicyContentSourceLimitArgs.builder()
.bps(0)
.pps(0)
.synBps(0)
.synPps(0)
.build())
.whitenGfbrNets(false)
.build())
.build());
bgp_policy_resource = alicloud.ddos.BgpPolicy("bgpPolicyResource",
policy_name="string",
type="string",
content=alicloud.ddos.BgpPolicyContentArgs(
black_ip_list_expire_at=0,
enable_defense=False,
enable_drop_icmp=False,
enable_intelligence=False,
finger_print_rule_lists=[alicloud.ddos.BgpPolicyContentFingerPrintRuleListArgs(
seq_no=0,
dst_port_start=0,
src_port_start=0,
match_action="string",
max_pkt_len=0,
min_pkt_len=0,
dst_port_end=0,
src_port_end=0,
protocol="string",
offset=0,
rate_value=0,
payload_bytes="string",
finger_print_rule_id="string",
)],
intelligence_level="string",
layer4_rule_lists=[alicloud.ddos.BgpPolicyContentLayer4RuleListArgs(
action="string",
condition_lists=[alicloud.ddos.BgpPolicyContentLayer4RuleListConditionListArgs(
arg="string",
depth=0,
position=0,
)],
limited=0,
match="string",
method="string",
name="string",
priority=0,
)],
port_rule_lists=[alicloud.ddos.BgpPolicyContentPortRuleListArgs(
dst_port_end=0,
dst_port_start=0,
match_action="string",
protocol="string",
seq_no=0,
src_port_end=0,
src_port_start=0,
port_rule_id="string",
)],
reflect_block_udp_port_lists=[0],
region_block_country_lists=[0],
region_block_province_lists=[0],
source_block_lists=[alicloud.ddos.BgpPolicyContentSourceBlockListArgs(
block_expire_seconds=0,
every_seconds=0,
exceed_limit_times=0,
type=0,
)],
source_limit=alicloud.ddos.BgpPolicyContentSourceLimitArgs(
bps=0,
pps=0,
syn_bps=0,
syn_pps=0,
),
whiten_gfbr_nets=False,
))
const bgpPolicyResource = new alicloud.ddos.BgpPolicy("bgpPolicyResource", {
policyName: "string",
type: "string",
content: {
blackIpListExpireAt: 0,
enableDefense: false,
enableDropIcmp: false,
enableIntelligence: false,
fingerPrintRuleLists: [{
seqNo: 0,
dstPortStart: 0,
srcPortStart: 0,
matchAction: "string",
maxPktLen: 0,
minPktLen: 0,
dstPortEnd: 0,
srcPortEnd: 0,
protocol: "string",
offset: 0,
rateValue: 0,
payloadBytes: "string",
fingerPrintRuleId: "string",
}],
intelligenceLevel: "string",
layer4RuleLists: [{
action: "string",
conditionLists: [{
arg: "string",
depth: 0,
position: 0,
}],
limited: 0,
match: "string",
method: "string",
name: "string",
priority: 0,
}],
portRuleLists: [{
dstPortEnd: 0,
dstPortStart: 0,
matchAction: "string",
protocol: "string",
seqNo: 0,
srcPortEnd: 0,
srcPortStart: 0,
portRuleId: "string",
}],
reflectBlockUdpPortLists: [0],
regionBlockCountryLists: [0],
regionBlockProvinceLists: [0],
sourceBlockLists: [{
blockExpireSeconds: 0,
everySeconds: 0,
exceedLimitTimes: 0,
type: 0,
}],
sourceLimit: {
bps: 0,
pps: 0,
synBps: 0,
synPps: 0,
},
whitenGfbrNets: false,
},
});
type: alicloud:ddos:BgpPolicy
properties:
content:
blackIpListExpireAt: 0
enableDefense: false
enableDropIcmp: false
enableIntelligence: false
fingerPrintRuleLists:
- dstPortEnd: 0
dstPortStart: 0
fingerPrintRuleId: string
matchAction: string
maxPktLen: 0
minPktLen: 0
offset: 0
payloadBytes: string
protocol: string
rateValue: 0
seqNo: 0
srcPortEnd: 0
srcPortStart: 0
intelligenceLevel: string
layer4RuleLists:
- action: string
conditionLists:
- arg: string
depth: 0
position: 0
limited: 0
match: string
method: string
name: string
priority: 0
portRuleLists:
- dstPortEnd: 0
dstPortStart: 0
matchAction: string
portRuleId: string
protocol: string
seqNo: 0
srcPortEnd: 0
srcPortStart: 0
reflectBlockUdpPortLists:
- 0
regionBlockCountryLists:
- 0
regionBlockProvinceLists:
- 0
sourceBlockLists:
- blockExpireSeconds: 0
everySeconds: 0
exceedLimitTimes: 0
type: 0
sourceLimit:
bps: 0
pps: 0
synBps: 0
synPps: 0
whitenGfbrNets: false
policyName: string
type: string
BgpPolicy Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The BgpPolicy resource accepts the following input properties:
- Policy
Name string - The name of the resource
- Type string
- Type
- Content
Pulumi.
Ali Cloud. Ddos. Inputs. Bgp Policy Content - Configuration Content See
contentbelow.
- Policy
Name string - The name of the resource
- Type string
- Type
- Content
Bgp
Policy Content Args - Configuration Content See
contentbelow.
- policy
Name String - The name of the resource
- type String
- Type
- content
Bgp
Policy Content - Configuration Content See
contentbelow.
- policy
Name string - The name of the resource
- type string
- Type
- content
Bgp
Policy Content - Configuration Content See
contentbelow.
- policy_
name str - The name of the resource
- type str
- Type
- content
Bgp
Policy Content Args - Configuration Content See
contentbelow.
- policy
Name String - The name of the resource
- type String
- Type
- content Property Map
- Configuration Content See
contentbelow.
Outputs
All input properties are implicitly available as output properties. Additionally, the BgpPolicy resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing BgpPolicy Resource
Get an existing BgpPolicy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: BgpPolicyState, opts?: CustomResourceOptions): BgpPolicy@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
content: Optional[BgpPolicyContentArgs] = None,
policy_name: Optional[str] = None,
type: Optional[str] = None) -> BgpPolicyfunc GetBgpPolicy(ctx *Context, name string, id IDInput, state *BgpPolicyState, opts ...ResourceOption) (*BgpPolicy, error)public static BgpPolicy Get(string name, Input<string> id, BgpPolicyState? state, CustomResourceOptions? opts = null)public static BgpPolicy get(String name, Output<String> id, BgpPolicyState state, CustomResourceOptions options)Resource lookup is not supported in YAML- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Content
Pulumi.
Ali Cloud. Ddos. Inputs. Bgp Policy Content - Configuration Content See
contentbelow. - Policy
Name string - The name of the resource
- Type string
- Type
- Content
Bgp
Policy Content Args - Configuration Content See
contentbelow. - Policy
Name string - The name of the resource
- Type string
- Type
- content
Bgp
Policy Content - Configuration Content See
contentbelow. - policy
Name String - The name of the resource
- type String
- Type
- content
Bgp
Policy Content - Configuration Content See
contentbelow. - policy
Name string - The name of the resource
- type string
- Type
- content
Bgp
Policy Content Args - Configuration Content See
contentbelow. - policy_
name str - The name of the resource
- type str
- Type
- content Property Map
- Configuration Content See
contentbelow. - policy
Name String - The name of the resource
- type String
- Type
Supporting Types
BgpPolicyContent, BgpPolicyContentArgs
- Black
Ip intList Expire At - Blacklist and whitelist timeout.
- Enable
Defense bool - Whether to enable L4 protection.
- Enable
Drop boolIcmp - Switch to discard ICMP.
- Enable
Intelligence bool - Whether the intelligent switch is on.
- Finger
Print List<Pulumi.Rule Lists Ali Cloud. Ddos. Inputs. Bgp Policy Content Finger Print Rule List> - Fingerprint Rules. See
finger_print_rule_listbelow. - Intelligence
Level string - Smart mode. Valid values: weak, hard, and default.
- Layer4Rule
Lists List<Pulumi.Ali Cloud. Ddos. Inputs. Bgp Policy Content Layer4Rule List> - L4 protection rules. See
layer4_rule_listbelow. - Port
Rule List<Pulumi.Lists Ali Cloud. Ddos. Inputs. Bgp Policy Content Port Rule List> - Port Rule List. See
port_rule_listbelow. - Reflect
Block List<int>Udp Port Lists - Reflective port filtering.
- Region
Block List<int>Country Lists - List of Regional Banned Countries.
- Region
Block List<int>Province Lists - List of Prohibited Provinces by Region.
- Source
Block List<Pulumi.Lists Ali Cloud. Ddos. Inputs. Bgp Policy Content Source Block List> - Source pull Black. See
source_block_listbelow. - Source
Limit Pulumi.Ali Cloud. Ddos. Inputs. Bgp Policy Content Source Limit - Do not fill in when the source speed limit is deleted. See
source_limitbelow. - Whiten
Gfbr boolNets - Add white high protection back to source network segment switch.
- Black
Ip intList Expire At - Blacklist and whitelist timeout.
- Enable
Defense bool - Whether to enable L4 protection.
- Enable
Drop boolIcmp - Switch to discard ICMP.
- Enable
Intelligence bool - Whether the intelligent switch is on.
- Finger
Print []BgpRule Lists Policy Content Finger Print Rule List - Fingerprint Rules. See
finger_print_rule_listbelow. - Intelligence
Level string - Smart mode. Valid values: weak, hard, and default.
- Layer4Rule
Lists []BgpPolicy Content Layer4Rule List - L4 protection rules. See
layer4_rule_listbelow. - Port
Rule []BgpLists Policy Content Port Rule List - Port Rule List. See
port_rule_listbelow. - Reflect
Block []intUdp Port Lists - Reflective port filtering.
- Region
Block []intCountry Lists - List of Regional Banned Countries.
- Region
Block []intProvince Lists - List of Prohibited Provinces by Region.
- Source
Block []BgpLists Policy Content Source Block List - Source pull Black. See
source_block_listbelow. - Source
Limit BgpPolicy Content Source Limit - Do not fill in when the source speed limit is deleted. See
source_limitbelow. - Whiten
Gfbr boolNets - Add white high protection back to source network segment switch.
- black
Ip IntegerList Expire At - Blacklist and whitelist timeout.
- enable
Defense Boolean - Whether to enable L4 protection.
- enable
Drop BooleanIcmp - Switch to discard ICMP.
- enable
Intelligence Boolean - Whether the intelligent switch is on.
- finger
Print List<BgpRule Lists Policy Content Finger Print Rule List> - Fingerprint Rules. See
finger_print_rule_listbelow. - intelligence
Level String - Smart mode. Valid values: weak, hard, and default.
- layer4Rule
Lists List<BgpPolicy Content Layer4Rule List> - L4 protection rules. See
layer4_rule_listbelow. - port
Rule List<BgpLists Policy Content Port Rule List> - Port Rule List. See
port_rule_listbelow. - reflect
Block List<Integer>Udp Port Lists - Reflective port filtering.
- region
Block List<Integer>Country Lists - List of Regional Banned Countries.
- region
Block List<Integer>Province Lists - List of Prohibited Provinces by Region.
- source
Block List<BgpLists Policy Content Source Block List> - Source pull Black. See
source_block_listbelow. - source
Limit BgpPolicy Content Source Limit - Do not fill in when the source speed limit is deleted. See
source_limitbelow. - whiten
Gfbr BooleanNets - Add white high protection back to source network segment switch.
- black
Ip numberList Expire At - Blacklist and whitelist timeout.
- enable
Defense boolean - Whether to enable L4 protection.
- enable
Drop booleanIcmp - Switch to discard ICMP.
- enable
Intelligence boolean - Whether the intelligent switch is on.
- finger
Print BgpRule Lists Policy Content Finger Print Rule List[] - Fingerprint Rules. See
finger_print_rule_listbelow. - intelligence
Level string - Smart mode. Valid values: weak, hard, and default.
- layer4Rule
Lists BgpPolicy Content Layer4Rule List[] - L4 protection rules. See
layer4_rule_listbelow. - port
Rule BgpLists Policy Content Port Rule List[] - Port Rule List. See
port_rule_listbelow. - reflect
Block number[]Udp Port Lists - Reflective port filtering.
- region
Block number[]Country Lists - List of Regional Banned Countries.
- region
Block number[]Province Lists - List of Prohibited Provinces by Region.
- source
Block BgpLists Policy Content Source Block List[] - Source pull Black. See
source_block_listbelow. - source
Limit BgpPolicy Content Source Limit - Do not fill in when the source speed limit is deleted. See
source_limitbelow. - whiten
Gfbr booleanNets - Add white high protection back to source network segment switch.
- black_
ip_ intlist_ expire_ at - Blacklist and whitelist timeout.
- enable_
defense bool - Whether to enable L4 protection.
- enable_
drop_ boolicmp - Switch to discard ICMP.
- enable_
intelligence bool - Whether the intelligent switch is on.
- finger_
print_ Sequence[Bgprule_ lists Policy Content Finger Print Rule List] - Fingerprint Rules. See
finger_print_rule_listbelow. - intelligence_
level str - Smart mode. Valid values: weak, hard, and default.
- layer4_
rule_ Sequence[Bgplists Policy Content Layer4Rule List] - L4 protection rules. See
layer4_rule_listbelow. - port_
rule_ Sequence[Bgplists Policy Content Port Rule List] - Port Rule List. See
port_rule_listbelow. - reflect_
block_ Sequence[int]udp_ port_ lists - Reflective port filtering.
- region_
block_ Sequence[int]country_ lists - List of Regional Banned Countries.
- region_
block_ Sequence[int]province_ lists - List of Prohibited Provinces by Region.
- source_
block_ Sequence[Bgplists Policy Content Source Block List] - Source pull Black. See
source_block_listbelow. - source_
limit BgpPolicy Content Source Limit - Do not fill in when the source speed limit is deleted. See
source_limitbelow. - whiten_
gfbr_ boolnets - Add white high protection back to source network segment switch.
- black
Ip NumberList Expire At - Blacklist and whitelist timeout.
- enable
Defense Boolean - Whether to enable L4 protection.
- enable
Drop BooleanIcmp - Switch to discard ICMP.
- enable
Intelligence Boolean - Whether the intelligent switch is on.
- finger
Print List<Property Map>Rule Lists - Fingerprint Rules. See
finger_print_rule_listbelow. - intelligence
Level String - Smart mode. Valid values: weak, hard, and default.
- layer4Rule
Lists List<Property Map> - L4 protection rules. See
layer4_rule_listbelow. - port
Rule List<Property Map>Lists - Port Rule List. See
port_rule_listbelow. - reflect
Block List<Number>Udp Port Lists - Reflective port filtering.
- region
Block List<Number>Country Lists - List of Regional Banned Countries.
- region
Block List<Number>Province Lists - List of Prohibited Provinces by Region.
- source
Block List<Property Map>Lists - Source pull Black. See
source_block_listbelow. - source
Limit Property Map - Do not fill in when the source speed limit is deleted. See
source_limitbelow. - whiten
Gfbr BooleanNets - Add white high protection back to source network segment switch.
BgpPolicyContentFingerPrintRuleList, BgpPolicyContentFingerPrintRuleListArgs
- Dst
Port intEnd - End of destination port 0-65535.
- Dst
Port intStart - Destination Port start 0-65535.
- Match
Action string - Action. Currently, only drop is supported.
- Max
Pkt intLen - Maximum bag length.
- Min
Pkt intLen - Minimum package length.
- Protocol string
- Protocol, tcp or udp.
- Seq
No int - Serial number 1-100 ● Affects the order issued by the bottom layer ● The larger the number, the lower it is.
- Src
Port intEnd - Source Port end 0-65535.
- Src
Port intStart - Source port start 0-65535.
- Finger
Print stringRule Id - The UUID of the rule is required to be deleted and modified, and it is not required to be created.
- Offset int
- Offset.
- Payload
Bytes string - Load match, hexadecimal string; Similar to 'abcd'.
- Rate
Value int - Speed limit value 1-100000.
- Dst
Port intEnd - End of destination port 0-65535.
- Dst
Port intStart - Destination Port start 0-65535.
- Match
Action string - Action. Currently, only drop is supported.
- Max
Pkt intLen - Maximum bag length.
- Min
Pkt intLen - Minimum package length.
- Protocol string
- Protocol, tcp or udp.
- Seq
No int - Serial number 1-100 ● Affects the order issued by the bottom layer ● The larger the number, the lower it is.
- Src
Port intEnd - Source Port end 0-65535.
- Src
Port intStart - Source port start 0-65535.
- Finger
Print stringRule Id - The UUID of the rule is required to be deleted and modified, and it is not required to be created.
- Offset int
- Offset.
- Payload
Bytes string - Load match, hexadecimal string; Similar to 'abcd'.
- Rate
Value int - Speed limit value 1-100000.
- dst
Port IntegerEnd - End of destination port 0-65535.
- dst
Port IntegerStart - Destination Port start 0-65535.
- match
Action String - Action. Currently, only drop is supported.
- max
Pkt IntegerLen - Maximum bag length.
- min
Pkt IntegerLen - Minimum package length.
- protocol String
- Protocol, tcp or udp.
- seq
No Integer - Serial number 1-100 ● Affects the order issued by the bottom layer ● The larger the number, the lower it is.
- src
Port IntegerEnd - Source Port end 0-65535.
- src
Port IntegerStart - Source port start 0-65535.
- finger
Print StringRule Id - The UUID of the rule is required to be deleted and modified, and it is not required to be created.
- offset Integer
- Offset.
- payload
Bytes String - Load match, hexadecimal string; Similar to 'abcd'.
- rate
Value Integer - Speed limit value 1-100000.
- dst
Port numberEnd - End of destination port 0-65535.
- dst
Port numberStart - Destination Port start 0-65535.
- match
Action string - Action. Currently, only drop is supported.
- max
Pkt numberLen - Maximum bag length.
- min
Pkt numberLen - Minimum package length.
- protocol string
- Protocol, tcp or udp.
- seq
No number - Serial number 1-100 ● Affects the order issued by the bottom layer ● The larger the number, the lower it is.
- src
Port numberEnd - Source Port end 0-65535.
- src
Port numberStart - Source port start 0-65535.
- finger
Print stringRule Id - The UUID of the rule is required to be deleted and modified, and it is not required to be created.
- offset number
- Offset.
- payload
Bytes string - Load match, hexadecimal string; Similar to 'abcd'.
- rate
Value number - Speed limit value 1-100000.
- dst_
port_ intend - End of destination port 0-65535.
- dst_
port_ intstart - Destination Port start 0-65535.
- match_
action str - Action. Currently, only drop is supported.
- max_
pkt_ intlen - Maximum bag length.
- min_
pkt_ intlen - Minimum package length.
- protocol str
- Protocol, tcp or udp.
- seq_
no int - Serial number 1-100 ● Affects the order issued by the bottom layer ● The larger the number, the lower it is.
- src_
port_ intend - Source Port end 0-65535.
- src_
port_ intstart - Source port start 0-65535.
- finger_
print_ strrule_ id - The UUID of the rule is required to be deleted and modified, and it is not required to be created.
- offset int
- Offset.
- payload_
bytes str - Load match, hexadecimal string; Similar to 'abcd'.
- rate_
value int - Speed limit value 1-100000.
- dst
Port NumberEnd - End of destination port 0-65535.
- dst
Port NumberStart - Destination Port start 0-65535.
- match
Action String - Action. Currently, only drop is supported.
- max
Pkt NumberLen - Maximum bag length.
- min
Pkt NumberLen - Minimum package length.
- protocol String
- Protocol, tcp or udp.
- seq
No Number - Serial number 1-100 ● Affects the order issued by the bottom layer ● The larger the number, the lower it is.
- src
Port NumberEnd - Source Port end 0-65535.
- src
Port NumberStart - Source port start 0-65535.
- finger
Print StringRule Id - The UUID of the rule is required to be deleted and modified, and it is not required to be created.
- offset Number
- Offset.
- payload
Bytes String - Load match, hexadecimal string; Similar to 'abcd'.
- rate
Value Number - Speed limit value 1-100000.
BgpPolicyContentLayer4RuleList, BgpPolicyContentLayer4RuleListArgs
- Action string
- 1 for observation 2 for blocking.
- Condition
Lists List<Pulumi.Ali Cloud. Ddos. Inputs. Bgp Policy Content Layer4Rule List Condition List> - Matching Condition. See
condition_listbelow. - Limited int
- .
- Match string
- 0 indicates that the condition is not met 1 indicates that the condition is met.
- Method string
- Char indicates a string match hex match.
- Name string
- Rule Name.
- Priority int
- 1-100, priority, the lower the number, the higher the priority.
- Action string
- 1 for observation 2 for blocking.
- Condition
Lists []BgpPolicy Content Layer4Rule List Condition List - Matching Condition. See
condition_listbelow. - Limited int
- .
- Match string
- 0 indicates that the condition is not met 1 indicates that the condition is met.
- Method string
- Char indicates a string match hex match.
- Name string
- Rule Name.
- Priority int
- 1-100, priority, the lower the number, the higher the priority.
- action String
- 1 for observation 2 for blocking.
- condition
Lists List<BgpPolicy Content Layer4Rule List Condition List> - Matching Condition. See
condition_listbelow. - limited Integer
- .
- match String
- 0 indicates that the condition is not met 1 indicates that the condition is met.
- method String
- Char indicates a string match hex match.
- name String
- Rule Name.
- priority Integer
- 1-100, priority, the lower the number, the higher the priority.
- action string
- 1 for observation 2 for blocking.
- condition
Lists BgpPolicy Content Layer4Rule List Condition List[] - Matching Condition. See
condition_listbelow. - limited number
- .
- match string
- 0 indicates that the condition is not met 1 indicates that the condition is met.
- method string
- Char indicates a string match hex match.
- name string
- Rule Name.
- priority number
- 1-100, priority, the lower the number, the higher the priority.
- action str
- 1 for observation 2 for blocking.
- condition_
lists Sequence[BgpPolicy Content Layer4Rule List Condition List] - Matching Condition. See
condition_listbelow. - limited int
- .
- match str
- 0 indicates that the condition is not met 1 indicates that the condition is met.
- method str
- Char indicates a string match hex match.
- name str
- Rule Name.
- priority int
- 1-100, priority, the lower the number, the higher the priority.
- action String
- 1 for observation 2 for blocking.
- condition
Lists List<Property Map> - Matching Condition. See
condition_listbelow. - limited Number
- .
- match String
- 0 indicates that the condition is not met 1 indicates that the condition is met.
- method String
- Char indicates a string match hex match.
- name String
- Rule Name.
- priority Number
- 1-100, priority, the lower the number, the higher the priority.
BgpPolicyContentLayer4RuleListConditionList, BgpPolicyContentLayer4RuleListConditionListArgs
BgpPolicyContentPortRuleList, BgpPolicyContentPortRuleListArgs
- Dst
Port intEnd - End of destination port 0-65535.
- Dst
Port intStart - Destination Port start 0-65535.
- Match
Action string - Action. Currently, only drop is supported.
- Protocol string
- Protocol, tcp or udp.
- Seq
No int - Serial number 1-100 ● Affects the order issued by the bottom layer ● The larger the number, the lower it is.
- Src
Port intEnd - Source Port end 0-65535.
- Src
Port intStart - Source port start 0-65535.
- Port
Rule stringId - Rule UUID is required to be deleted and modified, and is not required to be created.
- Dst
Port intEnd - End of destination port 0-65535.
- Dst
Port intStart - Destination Port start 0-65535.
- Match
Action string - Action. Currently, only drop is supported.
- Protocol string
- Protocol, tcp or udp.
- Seq
No int - Serial number 1-100 ● Affects the order issued by the bottom layer ● The larger the number, the lower it is.
- Src
Port intEnd - Source Port end 0-65535.
- Src
Port intStart - Source port start 0-65535.
- Port
Rule stringId - Rule UUID is required to be deleted and modified, and is not required to be created.
- dst
Port IntegerEnd - End of destination port 0-65535.
- dst
Port IntegerStart - Destination Port start 0-65535.
- match
Action String - Action. Currently, only drop is supported.
- protocol String
- Protocol, tcp or udp.
- seq
No Integer - Serial number 1-100 ● Affects the order issued by the bottom layer ● The larger the number, the lower it is.
- src
Port IntegerEnd - Source Port end 0-65535.
- src
Port IntegerStart - Source port start 0-65535.
- port
Rule StringId - Rule UUID is required to be deleted and modified, and is not required to be created.
- dst
Port numberEnd - End of destination port 0-65535.
- dst
Port numberStart - Destination Port start 0-65535.
- match
Action string - Action. Currently, only drop is supported.
- protocol string
- Protocol, tcp or udp.
- seq
No number - Serial number 1-100 ● Affects the order issued by the bottom layer ● The larger the number, the lower it is.
- src
Port numberEnd - Source Port end 0-65535.
- src
Port numberStart - Source port start 0-65535.
- port
Rule stringId - Rule UUID is required to be deleted and modified, and is not required to be created.
- dst_
port_ intend - End of destination port 0-65535.
- dst_
port_ intstart - Destination Port start 0-65535.
- match_
action str - Action. Currently, only drop is supported.
- protocol str
- Protocol, tcp or udp.
- seq_
no int - Serial number 1-100 ● Affects the order issued by the bottom layer ● The larger the number, the lower it is.
- src_
port_ intend - Source Port end 0-65535.
- src_
port_ intstart - Source port start 0-65535.
- port_
rule_ strid - Rule UUID is required to be deleted and modified, and is not required to be created.
- dst
Port NumberEnd - End of destination port 0-65535.
- dst
Port NumberStart - Destination Port start 0-65535.
- match
Action String - Action. Currently, only drop is supported.
- protocol String
- Protocol, tcp or udp.
- seq
No Number - Serial number 1-100 ● Affects the order issued by the bottom layer ● The larger the number, the lower it is.
- src
Port NumberEnd - Source Port end 0-65535.
- src
Port NumberStart - Source port start 0-65535.
- port
Rule StringId - Rule UUID is required to be deleted and modified, and is not required to be created.
BgpPolicyContentSourceBlockList, BgpPolicyContentSourceBlockListArgs
- Block
Expire intSeconds - Statistical cycle range 60-1200.
- Every
Seconds int - The time (unit second) for automatically releasing the black after triggering the speed limit is 60~2592000.
- Exceed
Limit intTimes - The number of times the speed limit is exceeded in a statistical period ranges from 1 to 1200.
- Type int
- Type
- Block
Expire intSeconds - Statistical cycle range 60-1200.
- Every
Seconds int - The time (unit second) for automatically releasing the black after triggering the speed limit is 60~2592000.
- Exceed
Limit intTimes - The number of times the speed limit is exceeded in a statistical period ranges from 1 to 1200.
- Type int
- Type
- block
Expire IntegerSeconds - Statistical cycle range 60-1200.
- every
Seconds Integer - The time (unit second) for automatically releasing the black after triggering the speed limit is 60~2592000.
- exceed
Limit IntegerTimes - The number of times the speed limit is exceeded in a statistical period ranges from 1 to 1200.
- type Integer
- Type
- block
Expire numberSeconds - Statistical cycle range 60-1200.
- every
Seconds number - The time (unit second) for automatically releasing the black after triggering the speed limit is 60~2592000.
- exceed
Limit numberTimes - The number of times the speed limit is exceeded in a statistical period ranges from 1 to 1200.
- type number
- Type
- block_
expire_ intseconds - Statistical cycle range 60-1200.
- every_
seconds int - The time (unit second) for automatically releasing the black after triggering the speed limit is 60~2592000.
- exceed_
limit_ inttimes - The number of times the speed limit is exceeded in a statistical period ranges from 1 to 1200.
- type int
- Type
- block
Expire NumberSeconds - Statistical cycle range 60-1200.
- every
Seconds Number - The time (unit second) for automatically releasing the black after triggering the speed limit is 60~2592000.
- exceed
Limit NumberTimes - The number of times the speed limit is exceeded in a statistical period ranges from 1 to 1200.
- type Number
- Type
BgpPolicyContentSourceLimit, BgpPolicyContentSourceLimitArgs
Import
Ddos Bgp Policy can be imported using the id, e.g.
$ pulumi import alicloud:ddos/bgpPolicy:BgpPolicy example <id>
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Alibaba Cloud pulumi/pulumi-alicloud
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
alicloudTerraform Provider.