fortios.waf.Profile
Explore with Pulumi AI
Web application firewall configuration.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as fortios from "@pulumiverse/fortios";
const trname = new fortios.waf.Profile("trname", {
extendedLog: "disable",
external: "disable",
});
import pulumi
import pulumiverse_fortios as fortios
trname = fortios.waf.Profile("trname",
extended_log="disable",
external="disable")
package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/waf"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := waf.NewProfile(ctx, "trname", &waf.ProfileArgs{
ExtendedLog: pulumi.String("disable"),
External: pulumi.String("disable"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Fortios = Pulumiverse.Fortios;
return await Deployment.RunAsync(() =>
{
var trname = new Fortios.Waf.Profile("trname", new()
{
ExtendedLog = "disable",
External = "disable",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.fortios.waf.Profile;
import com.pulumi.fortios.waf.ProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var trname = new Profile("trname", ProfileArgs.builder()
.extendedLog("disable")
.external("disable")
.build());
}
}
resources:
trname:
type: fortios:waf:Profile
properties:
extendedLog: disable
external: disable
Create Profile Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Profile(name: string, args?: ProfileArgs, opts?: CustomResourceOptions);
@overload
def Profile(resource_name: str,
args: Optional[ProfileArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def Profile(resource_name: str,
opts: Optional[ResourceOptions] = None,
address_list: Optional[ProfileAddressListArgs] = None,
comment: Optional[str] = None,
constraint: Optional[ProfileConstraintArgs] = None,
dynamic_sort_subtable: Optional[str] = None,
extended_log: Optional[str] = None,
external: Optional[str] = None,
get_all_tables: Optional[str] = None,
method: Optional[ProfileMethodArgs] = None,
name: Optional[str] = None,
signature: Optional[ProfileSignatureArgs] = None,
url_accesses: Optional[Sequence[ProfileUrlAccessArgs]] = None,
vdomparam: Optional[str] = None)
func NewProfile(ctx *Context, name string, args *ProfileArgs, opts ...ResourceOption) (*Profile, error)
public Profile(string name, ProfileArgs? args = null, CustomResourceOptions? opts = null)
public Profile(String name, ProfileArgs args)
public Profile(String name, ProfileArgs args, CustomResourceOptions options)
type: fortios:waf:Profile
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ProfileArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ProfileArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ProfileArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ProfileArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ProfileArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var exampleprofileResourceResourceFromWafprofile = new Fortios.Waf.Profile("exampleprofileResourceResourceFromWafprofile", new()
{
AddressList = new Fortios.Waf.Inputs.ProfileAddressListArgs
{
BlockedAddresses = new[]
{
new Fortios.Waf.Inputs.ProfileAddressListBlockedAddressArgs
{
Name = "string",
},
},
BlockedLog = "string",
Severity = "string",
Status = "string",
TrustedAddresses = new[]
{
new Fortios.Waf.Inputs.ProfileAddressListTrustedAddressArgs
{
Name = "string",
},
},
},
Comment = "string",
Constraint = new Fortios.Waf.Inputs.ProfileConstraintArgs
{
ContentLength = new Fortios.Waf.Inputs.ProfileConstraintContentLengthArgs
{
Action = "string",
Length = 0,
Log = "string",
Severity = "string",
Status = "string",
},
Exceptions = new[]
{
new Fortios.Waf.Inputs.ProfileConstraintExceptionArgs
{
Address = "string",
ContentLength = "string",
HeaderLength = "string",
Hostname = "string",
Id = 0,
LineLength = "string",
Malformed = "string",
MaxCookie = "string",
MaxHeaderLine = "string",
MaxRangeSegment = "string",
MaxUrlParam = "string",
Method = "string",
ParamLength = "string",
Pattern = "string",
Regex = "string",
UrlParamLength = "string",
Version = "string",
},
},
HeaderLength = new Fortios.Waf.Inputs.ProfileConstraintHeaderLengthArgs
{
Action = "string",
Length = 0,
Log = "string",
Severity = "string",
Status = "string",
},
Hostname = new Fortios.Waf.Inputs.ProfileConstraintHostnameArgs
{
Action = "string",
Log = "string",
Severity = "string",
Status = "string",
},
LineLength = new Fortios.Waf.Inputs.ProfileConstraintLineLengthArgs
{
Action = "string",
Length = 0,
Log = "string",
Severity = "string",
Status = "string",
},
Malformed = new Fortios.Waf.Inputs.ProfileConstraintMalformedArgs
{
Action = "string",
Log = "string",
Severity = "string",
Status = "string",
},
MaxCookie = new Fortios.Waf.Inputs.ProfileConstraintMaxCookieArgs
{
Action = "string",
Log = "string",
MaxCookie = 0,
Severity = "string",
Status = "string",
},
MaxHeaderLine = new Fortios.Waf.Inputs.ProfileConstraintMaxHeaderLineArgs
{
Action = "string",
Log = "string",
MaxHeaderLine = 0,
Severity = "string",
Status = "string",
},
MaxRangeSegment = new Fortios.Waf.Inputs.ProfileConstraintMaxRangeSegmentArgs
{
Action = "string",
Log = "string",
MaxRangeSegment = 0,
Severity = "string",
Status = "string",
},
MaxUrlParam = new Fortios.Waf.Inputs.ProfileConstraintMaxUrlParamArgs
{
Action = "string",
Log = "string",
MaxUrlParam = 0,
Severity = "string",
Status = "string",
},
Method = new Fortios.Waf.Inputs.ProfileConstraintMethodArgs
{
Action = "string",
Log = "string",
Severity = "string",
Status = "string",
},
ParamLength = new Fortios.Waf.Inputs.ProfileConstraintParamLengthArgs
{
Action = "string",
Length = 0,
Log = "string",
Severity = "string",
Status = "string",
},
UrlParamLength = new Fortios.Waf.Inputs.ProfileConstraintUrlParamLengthArgs
{
Action = "string",
Length = 0,
Log = "string",
Severity = "string",
Status = "string",
},
Version = new Fortios.Waf.Inputs.ProfileConstraintVersionArgs
{
Action = "string",
Log = "string",
Severity = "string",
Status = "string",
},
},
DynamicSortSubtable = "string",
ExtendedLog = "string",
External = "string",
GetAllTables = "string",
Method = new Fortios.Waf.Inputs.ProfileMethodArgs
{
DefaultAllowedMethods = "string",
Log = "string",
MethodPolicies = new[]
{
new Fortios.Waf.Inputs.ProfileMethodMethodPolicyArgs
{
Address = "string",
AllowedMethods = "string",
Id = 0,
Pattern = "string",
Regex = "string",
},
},
Severity = "string",
Status = "string",
},
Name = "string",
Signature = new Fortios.Waf.Inputs.ProfileSignatureArgs
{
CreditCardDetectionThreshold = 0,
CustomSignatures = new[]
{
new Fortios.Waf.Inputs.ProfileSignatureCustomSignatureArgs
{
Action = "string",
CaseSensitivity = "string",
Direction = "string",
Log = "string",
Name = "string",
Pattern = "string",
Severity = "string",
Status = "string",
Target = "string",
},
},
DisabledSignatures = new[]
{
new Fortios.Waf.Inputs.ProfileSignatureDisabledSignatureArgs
{
Id = 0,
},
},
DisabledSubClasses = new[]
{
new Fortios.Waf.Inputs.ProfileSignatureDisabledSubClassArgs
{
Id = 0,
},
},
MainClasses = new[]
{
new Fortios.Waf.Inputs.ProfileSignatureMainClassArgs
{
Action = "string",
Id = 0,
Log = "string",
Severity = "string",
Status = "string",
},
},
},
UrlAccesses = new[]
{
new Fortios.Waf.Inputs.ProfileUrlAccessArgs
{
AccessPatterns = new[]
{
new Fortios.Waf.Inputs.ProfileUrlAccessAccessPatternArgs
{
Id = 0,
Negate = "string",
Pattern = "string",
Regex = "string",
Srcaddr = "string",
},
},
Action = "string",
Address = "string",
Id = 0,
Log = "string",
Severity = "string",
},
},
Vdomparam = "string",
});
example, err := waf.NewProfile(ctx, "exampleprofileResourceResourceFromWafprofile", &waf.ProfileArgs{
AddressList: &waf.ProfileAddressListArgs{
BlockedAddresses: waf.ProfileAddressListBlockedAddressArray{
&waf.ProfileAddressListBlockedAddressArgs{
Name: pulumi.String("string"),
},
},
BlockedLog: pulumi.String("string"),
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
TrustedAddresses: waf.ProfileAddressListTrustedAddressArray{
&waf.ProfileAddressListTrustedAddressArgs{
Name: pulumi.String("string"),
},
},
},
Comment: pulumi.String("string"),
Constraint: &waf.ProfileConstraintArgs{
ContentLength: &waf.ProfileConstraintContentLengthArgs{
Action: pulumi.String("string"),
Length: pulumi.Int(0),
Log: pulumi.String("string"),
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
},
Exceptions: waf.ProfileConstraintExceptionArray{
&waf.ProfileConstraintExceptionArgs{
Address: pulumi.String("string"),
ContentLength: pulumi.String("string"),
HeaderLength: pulumi.String("string"),
Hostname: pulumi.String("string"),
Id: pulumi.Int(0),
LineLength: pulumi.String("string"),
Malformed: pulumi.String("string"),
MaxCookie: pulumi.String("string"),
MaxHeaderLine: pulumi.String("string"),
MaxRangeSegment: pulumi.String("string"),
MaxUrlParam: pulumi.String("string"),
Method: pulumi.String("string"),
ParamLength: pulumi.String("string"),
Pattern: pulumi.String("string"),
Regex: pulumi.String("string"),
UrlParamLength: pulumi.String("string"),
Version: pulumi.String("string"),
},
},
HeaderLength: &waf.ProfileConstraintHeaderLengthArgs{
Action: pulumi.String("string"),
Length: pulumi.Int(0),
Log: pulumi.String("string"),
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
},
Hostname: &waf.ProfileConstraintHostnameArgs{
Action: pulumi.String("string"),
Log: pulumi.String("string"),
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
},
LineLength: &waf.ProfileConstraintLineLengthArgs{
Action: pulumi.String("string"),
Length: pulumi.Int(0),
Log: pulumi.String("string"),
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
},
Malformed: &waf.ProfileConstraintMalformedArgs{
Action: pulumi.String("string"),
Log: pulumi.String("string"),
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
},
MaxCookie: &waf.ProfileConstraintMaxCookieArgs{
Action: pulumi.String("string"),
Log: pulumi.String("string"),
MaxCookie: pulumi.Int(0),
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
},
MaxHeaderLine: &waf.ProfileConstraintMaxHeaderLineArgs{
Action: pulumi.String("string"),
Log: pulumi.String("string"),
MaxHeaderLine: pulumi.Int(0),
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
},
MaxRangeSegment: &waf.ProfileConstraintMaxRangeSegmentArgs{
Action: pulumi.String("string"),
Log: pulumi.String("string"),
MaxRangeSegment: pulumi.Int(0),
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
},
MaxUrlParam: &waf.ProfileConstraintMaxUrlParamArgs{
Action: pulumi.String("string"),
Log: pulumi.String("string"),
MaxUrlParam: pulumi.Int(0),
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
},
Method: &waf.ProfileConstraintMethodArgs{
Action: pulumi.String("string"),
Log: pulumi.String("string"),
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
},
ParamLength: &waf.ProfileConstraintParamLengthArgs{
Action: pulumi.String("string"),
Length: pulumi.Int(0),
Log: pulumi.String("string"),
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
},
UrlParamLength: &waf.ProfileConstraintUrlParamLengthArgs{
Action: pulumi.String("string"),
Length: pulumi.Int(0),
Log: pulumi.String("string"),
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
},
Version: &waf.ProfileConstraintVersionArgs{
Action: pulumi.String("string"),
Log: pulumi.String("string"),
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
},
},
DynamicSortSubtable: pulumi.String("string"),
ExtendedLog: pulumi.String("string"),
External: pulumi.String("string"),
GetAllTables: pulumi.String("string"),
Method: &waf.ProfileMethodArgs{
DefaultAllowedMethods: pulumi.String("string"),
Log: pulumi.String("string"),
MethodPolicies: waf.ProfileMethodMethodPolicyArray{
&waf.ProfileMethodMethodPolicyArgs{
Address: pulumi.String("string"),
AllowedMethods: pulumi.String("string"),
Id: pulumi.Int(0),
Pattern: pulumi.String("string"),
Regex: pulumi.String("string"),
},
},
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
},
Name: pulumi.String("string"),
Signature: &waf.ProfileSignatureArgs{
CreditCardDetectionThreshold: pulumi.Int(0),
CustomSignatures: waf.ProfileSignatureCustomSignatureArray{
&waf.ProfileSignatureCustomSignatureArgs{
Action: pulumi.String("string"),
CaseSensitivity: pulumi.String("string"),
Direction: pulumi.String("string"),
Log: pulumi.String("string"),
Name: pulumi.String("string"),
Pattern: pulumi.String("string"),
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
Target: pulumi.String("string"),
},
},
DisabledSignatures: waf.ProfileSignatureDisabledSignatureArray{
&waf.ProfileSignatureDisabledSignatureArgs{
Id: pulumi.Int(0),
},
},
DisabledSubClasses: waf.ProfileSignatureDisabledSubClassArray{
&waf.ProfileSignatureDisabledSubClassArgs{
Id: pulumi.Int(0),
},
},
MainClasses: waf.ProfileSignatureMainClassArray{
&waf.ProfileSignatureMainClassArgs{
Action: pulumi.String("string"),
Id: pulumi.Int(0),
Log: pulumi.String("string"),
Severity: pulumi.String("string"),
Status: pulumi.String("string"),
},
},
},
UrlAccesses: waf.ProfileUrlAccessArray{
&waf.ProfileUrlAccessArgs{
AccessPatterns: waf.ProfileUrlAccessAccessPatternArray{
&waf.ProfileUrlAccessAccessPatternArgs{
Id: pulumi.Int(0),
Negate: pulumi.String("string"),
Pattern: pulumi.String("string"),
Regex: pulumi.String("string"),
Srcaddr: pulumi.String("string"),
},
},
Action: pulumi.String("string"),
Address: pulumi.String("string"),
Id: pulumi.Int(0),
Log: pulumi.String("string"),
Severity: pulumi.String("string"),
},
},
Vdomparam: pulumi.String("string"),
})
var exampleprofileResourceResourceFromWafprofile = new Profile("exampleprofileResourceResourceFromWafprofile", ProfileArgs.builder()
.addressList(ProfileAddressListArgs.builder()
.blockedAddresses(ProfileAddressListBlockedAddressArgs.builder()
.name("string")
.build())
.blockedLog("string")
.severity("string")
.status("string")
.trustedAddresses(ProfileAddressListTrustedAddressArgs.builder()
.name("string")
.build())
.build())
.comment("string")
.constraint(ProfileConstraintArgs.builder()
.contentLength(ProfileConstraintContentLengthArgs.builder()
.action("string")
.length(0)
.log("string")
.severity("string")
.status("string")
.build())
.exceptions(ProfileConstraintExceptionArgs.builder()
.address("string")
.contentLength("string")
.headerLength("string")
.hostname("string")
.id(0)
.lineLength("string")
.malformed("string")
.maxCookie("string")
.maxHeaderLine("string")
.maxRangeSegment("string")
.maxUrlParam("string")
.method("string")
.paramLength("string")
.pattern("string")
.regex("string")
.urlParamLength("string")
.version("string")
.build())
.headerLength(ProfileConstraintHeaderLengthArgs.builder()
.action("string")
.length(0)
.log("string")
.severity("string")
.status("string")
.build())
.hostname(ProfileConstraintHostnameArgs.builder()
.action("string")
.log("string")
.severity("string")
.status("string")
.build())
.lineLength(ProfileConstraintLineLengthArgs.builder()
.action("string")
.length(0)
.log("string")
.severity("string")
.status("string")
.build())
.malformed(ProfileConstraintMalformedArgs.builder()
.action("string")
.log("string")
.severity("string")
.status("string")
.build())
.maxCookie(ProfileConstraintMaxCookieArgs.builder()
.action("string")
.log("string")
.maxCookie(0)
.severity("string")
.status("string")
.build())
.maxHeaderLine(ProfileConstraintMaxHeaderLineArgs.builder()
.action("string")
.log("string")
.maxHeaderLine(0)
.severity("string")
.status("string")
.build())
.maxRangeSegment(ProfileConstraintMaxRangeSegmentArgs.builder()
.action("string")
.log("string")
.maxRangeSegment(0)
.severity("string")
.status("string")
.build())
.maxUrlParam(ProfileConstraintMaxUrlParamArgs.builder()
.action("string")
.log("string")
.maxUrlParam(0)
.severity("string")
.status("string")
.build())
.method(ProfileConstraintMethodArgs.builder()
.action("string")
.log("string")
.severity("string")
.status("string")
.build())
.paramLength(ProfileConstraintParamLengthArgs.builder()
.action("string")
.length(0)
.log("string")
.severity("string")
.status("string")
.build())
.urlParamLength(ProfileConstraintUrlParamLengthArgs.builder()
.action("string")
.length(0)
.log("string")
.severity("string")
.status("string")
.build())
.version(ProfileConstraintVersionArgs.builder()
.action("string")
.log("string")
.severity("string")
.status("string")
.build())
.build())
.dynamicSortSubtable("string")
.extendedLog("string")
.external("string")
.getAllTables("string")
.method(ProfileMethodArgs.builder()
.defaultAllowedMethods("string")
.log("string")
.methodPolicies(ProfileMethodMethodPolicyArgs.builder()
.address("string")
.allowedMethods("string")
.id(0)
.pattern("string")
.regex("string")
.build())
.severity("string")
.status("string")
.build())
.name("string")
.signature(ProfileSignatureArgs.builder()
.creditCardDetectionThreshold(0)
.customSignatures(ProfileSignatureCustomSignatureArgs.builder()
.action("string")
.caseSensitivity("string")
.direction("string")
.log("string")
.name("string")
.pattern("string")
.severity("string")
.status("string")
.target("string")
.build())
.disabledSignatures(ProfileSignatureDisabledSignatureArgs.builder()
.id(0)
.build())
.disabledSubClasses(ProfileSignatureDisabledSubClassArgs.builder()
.id(0)
.build())
.mainClasses(ProfileSignatureMainClassArgs.builder()
.action("string")
.id(0)
.log("string")
.severity("string")
.status("string")
.build())
.build())
.urlAccesses(ProfileUrlAccessArgs.builder()
.accessPatterns(ProfileUrlAccessAccessPatternArgs.builder()
.id(0)
.negate("string")
.pattern("string")
.regex("string")
.srcaddr("string")
.build())
.action("string")
.address("string")
.id(0)
.log("string")
.severity("string")
.build())
.vdomparam("string")
.build());
exampleprofile_resource_resource_from_wafprofile = fortios.waf.Profile("exampleprofileResourceResourceFromWafprofile",
address_list=fortios.waf.ProfileAddressListArgs(
blocked_addresses=[fortios.waf.ProfileAddressListBlockedAddressArgs(
name="string",
)],
blocked_log="string",
severity="string",
status="string",
trusted_addresses=[fortios.waf.ProfileAddressListTrustedAddressArgs(
name="string",
)],
),
comment="string",
constraint=fortios.waf.ProfileConstraintArgs(
content_length=fortios.waf.ProfileConstraintContentLengthArgs(
action="string",
length=0,
log="string",
severity="string",
status="string",
),
exceptions=[fortios.waf.ProfileConstraintExceptionArgs(
address="string",
content_length="string",
header_length="string",
hostname="string",
id=0,
line_length="string",
malformed="string",
max_cookie="string",
max_header_line="string",
max_range_segment="string",
max_url_param="string",
method="string",
param_length="string",
pattern="string",
regex="string",
url_param_length="string",
version="string",
)],
header_length=fortios.waf.ProfileConstraintHeaderLengthArgs(
action="string",
length=0,
log="string",
severity="string",
status="string",
),
hostname=fortios.waf.ProfileConstraintHostnameArgs(
action="string",
log="string",
severity="string",
status="string",
),
line_length=fortios.waf.ProfileConstraintLineLengthArgs(
action="string",
length=0,
log="string",
severity="string",
status="string",
),
malformed=fortios.waf.ProfileConstraintMalformedArgs(
action="string",
log="string",
severity="string",
status="string",
),
max_cookie=fortios.waf.ProfileConstraintMaxCookieArgs(
action="string",
log="string",
max_cookie=0,
severity="string",
status="string",
),
max_header_line=fortios.waf.ProfileConstraintMaxHeaderLineArgs(
action="string",
log="string",
max_header_line=0,
severity="string",
status="string",
),
max_range_segment=fortios.waf.ProfileConstraintMaxRangeSegmentArgs(
action="string",
log="string",
max_range_segment=0,
severity="string",
status="string",
),
max_url_param=fortios.waf.ProfileConstraintMaxUrlParamArgs(
action="string",
log="string",
max_url_param=0,
severity="string",
status="string",
),
method=fortios.waf.ProfileConstraintMethodArgs(
action="string",
log="string",
severity="string",
status="string",
),
param_length=fortios.waf.ProfileConstraintParamLengthArgs(
action="string",
length=0,
log="string",
severity="string",
status="string",
),
url_param_length=fortios.waf.ProfileConstraintUrlParamLengthArgs(
action="string",
length=0,
log="string",
severity="string",
status="string",
),
version=fortios.waf.ProfileConstraintVersionArgs(
action="string",
log="string",
severity="string",
status="string",
),
),
dynamic_sort_subtable="string",
extended_log="string",
external="string",
get_all_tables="string",
method=fortios.waf.ProfileMethodArgs(
default_allowed_methods="string",
log="string",
method_policies=[fortios.waf.ProfileMethodMethodPolicyArgs(
address="string",
allowed_methods="string",
id=0,
pattern="string",
regex="string",
)],
severity="string",
status="string",
),
name="string",
signature=fortios.waf.ProfileSignatureArgs(
credit_card_detection_threshold=0,
custom_signatures=[fortios.waf.ProfileSignatureCustomSignatureArgs(
action="string",
case_sensitivity="string",
direction="string",
log="string",
name="string",
pattern="string",
severity="string",
status="string",
target="string",
)],
disabled_signatures=[fortios.waf.ProfileSignatureDisabledSignatureArgs(
id=0,
)],
disabled_sub_classes=[fortios.waf.ProfileSignatureDisabledSubClassArgs(
id=0,
)],
main_classes=[fortios.waf.ProfileSignatureMainClassArgs(
action="string",
id=0,
log="string",
severity="string",
status="string",
)],
),
url_accesses=[fortios.waf.ProfileUrlAccessArgs(
access_patterns=[fortios.waf.ProfileUrlAccessAccessPatternArgs(
id=0,
negate="string",
pattern="string",
regex="string",
srcaddr="string",
)],
action="string",
address="string",
id=0,
log="string",
severity="string",
)],
vdomparam="string")
const exampleprofileResourceResourceFromWafprofile = new fortios.waf.Profile("exampleprofileResourceResourceFromWafprofile", {
addressList: {
blockedAddresses: [{
name: "string",
}],
blockedLog: "string",
severity: "string",
status: "string",
trustedAddresses: [{
name: "string",
}],
},
comment: "string",
constraint: {
contentLength: {
action: "string",
length: 0,
log: "string",
severity: "string",
status: "string",
},
exceptions: [{
address: "string",
contentLength: "string",
headerLength: "string",
hostname: "string",
id: 0,
lineLength: "string",
malformed: "string",
maxCookie: "string",
maxHeaderLine: "string",
maxRangeSegment: "string",
maxUrlParam: "string",
method: "string",
paramLength: "string",
pattern: "string",
regex: "string",
urlParamLength: "string",
version: "string",
}],
headerLength: {
action: "string",
length: 0,
log: "string",
severity: "string",
status: "string",
},
hostname: {
action: "string",
log: "string",
severity: "string",
status: "string",
},
lineLength: {
action: "string",
length: 0,
log: "string",
severity: "string",
status: "string",
},
malformed: {
action: "string",
log: "string",
severity: "string",
status: "string",
},
maxCookie: {
action: "string",
log: "string",
maxCookie: 0,
severity: "string",
status: "string",
},
maxHeaderLine: {
action: "string",
log: "string",
maxHeaderLine: 0,
severity: "string",
status: "string",
},
maxRangeSegment: {
action: "string",
log: "string",
maxRangeSegment: 0,
severity: "string",
status: "string",
},
maxUrlParam: {
action: "string",
log: "string",
maxUrlParam: 0,
severity: "string",
status: "string",
},
method: {
action: "string",
log: "string",
severity: "string",
status: "string",
},
paramLength: {
action: "string",
length: 0,
log: "string",
severity: "string",
status: "string",
},
urlParamLength: {
action: "string",
length: 0,
log: "string",
severity: "string",
status: "string",
},
version: {
action: "string",
log: "string",
severity: "string",
status: "string",
},
},
dynamicSortSubtable: "string",
extendedLog: "string",
external: "string",
getAllTables: "string",
method: {
defaultAllowedMethods: "string",
log: "string",
methodPolicies: [{
address: "string",
allowedMethods: "string",
id: 0,
pattern: "string",
regex: "string",
}],
severity: "string",
status: "string",
},
name: "string",
signature: {
creditCardDetectionThreshold: 0,
customSignatures: [{
action: "string",
caseSensitivity: "string",
direction: "string",
log: "string",
name: "string",
pattern: "string",
severity: "string",
status: "string",
target: "string",
}],
disabledSignatures: [{
id: 0,
}],
disabledSubClasses: [{
id: 0,
}],
mainClasses: [{
action: "string",
id: 0,
log: "string",
severity: "string",
status: "string",
}],
},
urlAccesses: [{
accessPatterns: [{
id: 0,
negate: "string",
pattern: "string",
regex: "string",
srcaddr: "string",
}],
action: "string",
address: "string",
id: 0,
log: "string",
severity: "string",
}],
vdomparam: "string",
});
type: fortios:waf:Profile
properties:
addressList:
blockedAddresses:
- name: string
blockedLog: string
severity: string
status: string
trustedAddresses:
- name: string
comment: string
constraint:
contentLength:
action: string
length: 0
log: string
severity: string
status: string
exceptions:
- address: string
contentLength: string
headerLength: string
hostname: string
id: 0
lineLength: string
malformed: string
maxCookie: string
maxHeaderLine: string
maxRangeSegment: string
maxUrlParam: string
method: string
paramLength: string
pattern: string
regex: string
urlParamLength: string
version: string
headerLength:
action: string
length: 0
log: string
severity: string
status: string
hostname:
action: string
log: string
severity: string
status: string
lineLength:
action: string
length: 0
log: string
severity: string
status: string
malformed:
action: string
log: string
severity: string
status: string
maxCookie:
action: string
log: string
maxCookie: 0
severity: string
status: string
maxHeaderLine:
action: string
log: string
maxHeaderLine: 0
severity: string
status: string
maxRangeSegment:
action: string
log: string
maxRangeSegment: 0
severity: string
status: string
maxUrlParam:
action: string
log: string
maxUrlParam: 0
severity: string
status: string
method:
action: string
log: string
severity: string
status: string
paramLength:
action: string
length: 0
log: string
severity: string
status: string
urlParamLength:
action: string
length: 0
log: string
severity: string
status: string
version:
action: string
log: string
severity: string
status: string
dynamicSortSubtable: string
extendedLog: string
external: string
getAllTables: string
method:
defaultAllowedMethods: string
log: string
methodPolicies:
- address: string
allowedMethods: string
id: 0
pattern: string
regex: string
severity: string
status: string
name: string
signature:
creditCardDetectionThreshold: 0
customSignatures:
- action: string
caseSensitivity: string
direction: string
log: string
name: string
pattern: string
severity: string
status: string
target: string
disabledSignatures:
- id: 0
disabledSubClasses:
- id: 0
mainClasses:
- action: string
id: 0
log: string
severity: string
status: string
urlAccesses:
- accessPatterns:
- id: 0
negate: string
pattern: string
regex: string
srcaddr: string
action: string
address: string
id: 0
log: string
severity: string
vdomparam: string
Profile Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The Profile resource accepts the following input properties:
- Address
List Pulumiverse.Fortios. Waf. Inputs. Profile Address List - Black address list and white address list. The structure of
address_list
block is documented below. - Comment string
- Comment.
- Constraint
Pulumiverse.
Fortios. Waf. Inputs. Profile Constraint - WAF HTTP protocol restrictions. The structure of
constraint
block is documented below. - Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Extended
Log string - Enable/disable extended logging. Valid values:
enable
,disable
. - External string
- Disable/Enable external HTTP Inspection. Valid values:
disable
,enable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Method
Pulumiverse.
Fortios. Waf. Inputs. Profile Method - Method restriction. The structure of
method
block is documented below. - Name string
- WAF Profile name.
- Signature
Pulumiverse.
Fortios. Waf. Inputs. Profile Signature - WAF signatures. The structure of
signature
block is documented below. - Url
Accesses List<Pulumiverse.Fortios. Waf. Inputs. Profile Url Access> - URL access list The structure of
url_access
block is documented below. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Address
List ProfileAddress List Args - Black address list and white address list. The structure of
address_list
block is documented below. - Comment string
- Comment.
- Constraint
Profile
Constraint Args - WAF HTTP protocol restrictions. The structure of
constraint
block is documented below. - Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Extended
Log string - Enable/disable extended logging. Valid values:
enable
,disable
. - External string
- Disable/Enable external HTTP Inspection. Valid values:
disable
,enable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Method
Profile
Method Args - Method restriction. The structure of
method
block is documented below. - Name string
- WAF Profile name.
- Signature
Profile
Signature Args - WAF signatures. The structure of
signature
block is documented below. - Url
Accesses []ProfileUrl Access Args - URL access list The structure of
url_access
block is documented below. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- address
List ProfileAddress List - Black address list and white address list. The structure of
address_list
block is documented below. - comment String
- Comment.
- constraint
Profile
Constraint - WAF HTTP protocol restrictions. The structure of
constraint
block is documented below. - dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log String - Enable/disable extended logging. Valid values:
enable
,disable
. - external String
- Disable/Enable external HTTP Inspection. Valid values:
disable
,enable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- method
Profile
Method - Method restriction. The structure of
method
block is documented below. - name String
- WAF Profile name.
- signature
Profile
Signature - WAF signatures. The structure of
signature
block is documented below. - url
Accesses List<ProfileUrl Access> - URL access list The structure of
url_access
block is documented below. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- address
List ProfileAddress List - Black address list and white address list. The structure of
address_list
block is documented below. - comment string
- Comment.
- constraint
Profile
Constraint - WAF HTTP protocol restrictions. The structure of
constraint
block is documented below. - dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log string - Enable/disable extended logging. Valid values:
enable
,disable
. - external string
- Disable/Enable external HTTP Inspection. Valid values:
disable
,enable
. - get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- method
Profile
Method - Method restriction. The structure of
method
block is documented below. - name string
- WAF Profile name.
- signature
Profile
Signature - WAF signatures. The structure of
signature
block is documented below. - url
Accesses ProfileUrl Access[] - URL access list The structure of
url_access
block is documented below. - vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- address_
list ProfileAddress List Args - Black address list and white address list. The structure of
address_list
block is documented below. - comment str
- Comment.
- constraint
Profile
Constraint Args - WAF HTTP protocol restrictions. The structure of
constraint
block is documented below. - dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended_
log str - Enable/disable extended logging. Valid values:
enable
,disable
. - external str
- Disable/Enable external HTTP Inspection. Valid values:
disable
,enable
. - get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- method
Profile
Method Args - Method restriction. The structure of
method
block is documented below. - name str
- WAF Profile name.
- signature
Profile
Signature Args - WAF signatures. The structure of
signature
block is documented below. - url_
accesses Sequence[ProfileUrl Access Args] - URL access list The structure of
url_access
block is documented below. - vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- address
List Property Map - Black address list and white address list. The structure of
address_list
block is documented below. - comment String
- Comment.
- constraint Property Map
- WAF HTTP protocol restrictions. The structure of
constraint
block is documented below. - dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log String - Enable/disable extended logging. Valid values:
enable
,disable
. - external String
- Disable/Enable external HTTP Inspection. Valid values:
disable
,enable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- method Property Map
- Method restriction. The structure of
method
block is documented below. - name String
- WAF Profile name.
- signature Property Map
- WAF signatures. The structure of
signature
block is documented below. - url
Accesses List<Property Map> - URL access list The structure of
url_access
block is documented below. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Outputs
All input properties are implicitly available as output properties. Additionally, the Profile resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing Profile Resource
Get an existing Profile resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: ProfileState, opts?: CustomResourceOptions): Profile
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
address_list: Optional[ProfileAddressListArgs] = None,
comment: Optional[str] = None,
constraint: Optional[ProfileConstraintArgs] = None,
dynamic_sort_subtable: Optional[str] = None,
extended_log: Optional[str] = None,
external: Optional[str] = None,
get_all_tables: Optional[str] = None,
method: Optional[ProfileMethodArgs] = None,
name: Optional[str] = None,
signature: Optional[ProfileSignatureArgs] = None,
url_accesses: Optional[Sequence[ProfileUrlAccessArgs]] = None,
vdomparam: Optional[str] = None) -> Profile
func GetProfile(ctx *Context, name string, id IDInput, state *ProfileState, opts ...ResourceOption) (*Profile, error)
public static Profile Get(string name, Input<string> id, ProfileState? state, CustomResourceOptions? opts = null)
public static Profile get(String name, Output<String> id, ProfileState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Address
List Pulumiverse.Fortios. Waf. Inputs. Profile Address List - Black address list and white address list. The structure of
address_list
block is documented below. - Comment string
- Comment.
- Constraint
Pulumiverse.
Fortios. Waf. Inputs. Profile Constraint - WAF HTTP protocol restrictions. The structure of
constraint
block is documented below. - Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Extended
Log string - Enable/disable extended logging. Valid values:
enable
,disable
. - External string
- Disable/Enable external HTTP Inspection. Valid values:
disable
,enable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Method
Pulumiverse.
Fortios. Waf. Inputs. Profile Method - Method restriction. The structure of
method
block is documented below. - Name string
- WAF Profile name.
- Signature
Pulumiverse.
Fortios. Waf. Inputs. Profile Signature - WAF signatures. The structure of
signature
block is documented below. - Url
Accesses List<Pulumiverse.Fortios. Waf. Inputs. Profile Url Access> - URL access list The structure of
url_access
block is documented below. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Address
List ProfileAddress List Args - Black address list and white address list. The structure of
address_list
block is documented below. - Comment string
- Comment.
- Constraint
Profile
Constraint Args - WAF HTTP protocol restrictions. The structure of
constraint
block is documented below. - Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Extended
Log string - Enable/disable extended logging. Valid values:
enable
,disable
. - External string
- Disable/Enable external HTTP Inspection. Valid values:
disable
,enable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Method
Profile
Method Args - Method restriction. The structure of
method
block is documented below. - Name string
- WAF Profile name.
- Signature
Profile
Signature Args - WAF signatures. The structure of
signature
block is documented below. - Url
Accesses []ProfileUrl Access Args - URL access list The structure of
url_access
block is documented below. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- address
List ProfileAddress List - Black address list and white address list. The structure of
address_list
block is documented below. - comment String
- Comment.
- constraint
Profile
Constraint - WAF HTTP protocol restrictions. The structure of
constraint
block is documented below. - dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log String - Enable/disable extended logging. Valid values:
enable
,disable
. - external String
- Disable/Enable external HTTP Inspection. Valid values:
disable
,enable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- method
Profile
Method - Method restriction. The structure of
method
block is documented below. - name String
- WAF Profile name.
- signature
Profile
Signature - WAF signatures. The structure of
signature
block is documented below. - url
Accesses List<ProfileUrl Access> - URL access list The structure of
url_access
block is documented below. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- address
List ProfileAddress List - Black address list and white address list. The structure of
address_list
block is documented below. - comment string
- Comment.
- constraint
Profile
Constraint - WAF HTTP protocol restrictions. The structure of
constraint
block is documented below. - dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log string - Enable/disable extended logging. Valid values:
enable
,disable
. - external string
- Disable/Enable external HTTP Inspection. Valid values:
disable
,enable
. - get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- method
Profile
Method - Method restriction. The structure of
method
block is documented below. - name string
- WAF Profile name.
- signature
Profile
Signature - WAF signatures. The structure of
signature
block is documented below. - url
Accesses ProfileUrl Access[] - URL access list The structure of
url_access
block is documented below. - vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- address_
list ProfileAddress List Args - Black address list and white address list. The structure of
address_list
block is documented below. - comment str
- Comment.
- constraint
Profile
Constraint Args - WAF HTTP protocol restrictions. The structure of
constraint
block is documented below. - dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended_
log str - Enable/disable extended logging. Valid values:
enable
,disable
. - external str
- Disable/Enable external HTTP Inspection. Valid values:
disable
,enable
. - get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- method
Profile
Method Args - Method restriction. The structure of
method
block is documented below. - name str
- WAF Profile name.
- signature
Profile
Signature Args - WAF signatures. The structure of
signature
block is documented below. - url_
accesses Sequence[ProfileUrl Access Args] - URL access list The structure of
url_access
block is documented below. - vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- address
List Property Map - Black address list and white address list. The structure of
address_list
block is documented below. - comment String
- Comment.
- constraint Property Map
- WAF HTTP protocol restrictions. The structure of
constraint
block is documented below. - dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log String - Enable/disable extended logging. Valid values:
enable
,disable
. - external String
- Disable/Enable external HTTP Inspection. Valid values:
disable
,enable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- method Property Map
- Method restriction. The structure of
method
block is documented below. - name String
- WAF Profile name.
- signature Property Map
- WAF signatures. The structure of
signature
block is documented below. - url
Accesses List<Property Map> - URL access list The structure of
url_access
block is documented below. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Supporting Types
ProfileAddressList, ProfileAddressListArgs
- Blocked
Addresses List<Pulumiverse.Fortios. Waf. Inputs. Profile Address List Blocked Address> - Blocked address. The structure of
blocked_address
block is documented below. - Blocked
Log string - Enable/disable logging on blocked addresses. Valid values:
enable
,disable
. - Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Status. Valid values:
enable
,disable
. - Trusted
Addresses List<Pulumiverse.Fortios. Waf. Inputs. Profile Address List Trusted Address> - Trusted address. The structure of
trusted_address
block is documented below.
- Blocked
Addresses []ProfileAddress List Blocked Address - Blocked address. The structure of
blocked_address
block is documented below. - Blocked
Log string - Enable/disable logging on blocked addresses. Valid values:
enable
,disable
. - Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Status. Valid values:
enable
,disable
. - Trusted
Addresses []ProfileAddress List Trusted Address - Trusted address. The structure of
trusted_address
block is documented below.
- blocked
Addresses List<ProfileAddress List Blocked Address> - Blocked address. The structure of
blocked_address
block is documented below. - blocked
Log String - Enable/disable logging on blocked addresses. Valid values:
enable
,disable
. - severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Status. Valid values:
enable
,disable
. - trusted
Addresses List<ProfileAddress List Trusted Address> - Trusted address. The structure of
trusted_address
block is documented below.
- blocked
Addresses ProfileAddress List Blocked Address[] - Blocked address. The structure of
blocked_address
block is documented below. - blocked
Log string - Enable/disable logging on blocked addresses. Valid values:
enable
,disable
. - severity string
- Severity. Valid values:
high
,medium
,low
. - status string
- Status. Valid values:
enable
,disable
. - trusted
Addresses ProfileAddress List Trusted Address[] - Trusted address. The structure of
trusted_address
block is documented below.
- blocked_
addresses Sequence[ProfileAddress List Blocked Address] - Blocked address. The structure of
blocked_address
block is documented below. - blocked_
log str - Enable/disable logging on blocked addresses. Valid values:
enable
,disable
. - severity str
- Severity. Valid values:
high
,medium
,low
. - status str
- Status. Valid values:
enable
,disable
. - trusted_
addresses Sequence[ProfileAddress List Trusted Address] - Trusted address. The structure of
trusted_address
block is documented below.
- blocked
Addresses List<Property Map> - Blocked address. The structure of
blocked_address
block is documented below. - blocked
Log String - Enable/disable logging on blocked addresses. Valid values:
enable
,disable
. - severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Status. Valid values:
enable
,disable
. - trusted
Addresses List<Property Map> - Trusted address. The structure of
trusted_address
block is documented below.
ProfileAddressListBlockedAddress, ProfileAddressListBlockedAddressArgs
- Name string
- Address name.
- Name string
- Address name.
- name String
- Address name.
- name string
- Address name.
- name str
- Address name.
- name String
- Address name.
ProfileAddressListTrustedAddress, ProfileAddressListTrustedAddressArgs
- Name string
- Address name.
- Name string
- Address name.
- name String
- Address name.
- name string
- Address name.
- name str
- Address name.
- name String
- Address name.
ProfileConstraint, ProfileConstraintArgs
- Content
Length Pulumiverse.Fortios. Waf. Inputs. Profile Constraint Content Length - HTTP content length in request. The structure of
content_length
block is documented below. - Exceptions
List<Pulumiverse.
Fortios. Waf. Inputs. Profile Constraint Exception> - HTTP constraint exception. The structure of
exception
block is documented below. - Header
Length Pulumiverse.Fortios. Waf. Inputs. Profile Constraint Header Length - HTTP header length in request. The structure of
header_length
block is documented below. - Hostname
Pulumiverse.
Fortios. Waf. Inputs. Profile Constraint Hostname - Enable/disable hostname check. The structure of
hostname
block is documented below. - Line
Length Pulumiverse.Fortios. Waf. Inputs. Profile Constraint Line Length - HTTP line length in request. The structure of
line_length
block is documented below. - Malformed
Pulumiverse.
Fortios. Waf. Inputs. Profile Constraint Malformed - Enable/disable malformed HTTP request check. The structure of
malformed
block is documented below. - Pulumiverse.
Fortios. Waf. Inputs. Profile Constraint Max Cookie - Maximum number of cookies in HTTP request. The structure of
max_cookie
block is documented below. - Max
Header Pulumiverse.Line Fortios. Waf. Inputs. Profile Constraint Max Header Line - Maximum number of HTTP header line. The structure of
max_header_line
block is documented below. - Max
Range Pulumiverse.Segment Fortios. Waf. Inputs. Profile Constraint Max Range Segment - Maximum number of range segments in HTTP range line. The structure of
max_range_segment
block is documented below. - Max
Url Pulumiverse.Param Fortios. Waf. Inputs. Profile Constraint Max Url Param - Maximum number of parameters in URL. The structure of
max_url_param
block is documented below. - Method
Pulumiverse.
Fortios. Waf. Inputs. Profile Constraint Method - Enable/disable HTTP method check. The structure of
method
block is documented below. - Param
Length Pulumiverse.Fortios. Waf. Inputs. Profile Constraint Param Length - Maximum length of parameter in URL, HTTP POST request or HTTP body. The structure of
param_length
block is documented below. - Url
Param Pulumiverse.Length Fortios. Waf. Inputs. Profile Constraint Url Param Length - Maximum length of parameter in URL. The structure of
url_param_length
block is documented below. - Version
Pulumiverse.
Fortios. Waf. Inputs. Profile Constraint Version - Enable/disable HTTP version check. The structure of
version
block is documented below.
- Content
Length ProfileConstraint Content Length - HTTP content length in request. The structure of
content_length
block is documented below. - Exceptions
[]Profile
Constraint Exception - HTTP constraint exception. The structure of
exception
block is documented below. - Header
Length ProfileConstraint Header Length - HTTP header length in request. The structure of
header_length
block is documented below. - Hostname
Profile
Constraint Hostname - Enable/disable hostname check. The structure of
hostname
block is documented below. - Line
Length ProfileConstraint Line Length - HTTP line length in request. The structure of
line_length
block is documented below. - Malformed
Profile
Constraint Malformed - Enable/disable malformed HTTP request check. The structure of
malformed
block is documented below. - Profile
Constraint Max Cookie - Maximum number of cookies in HTTP request. The structure of
max_cookie
block is documented below. - Max
Header ProfileLine Constraint Max Header Line - Maximum number of HTTP header line. The structure of
max_header_line
block is documented below. - Max
Range ProfileSegment Constraint Max Range Segment - Maximum number of range segments in HTTP range line. The structure of
max_range_segment
block is documented below. - Max
Url ProfileParam Constraint Max Url Param - Maximum number of parameters in URL. The structure of
max_url_param
block is documented below. - Method
Profile
Constraint Method - Enable/disable HTTP method check. The structure of
method
block is documented below. - Param
Length ProfileConstraint Param Length - Maximum length of parameter in URL, HTTP POST request or HTTP body. The structure of
param_length
block is documented below. - Url
Param ProfileLength Constraint Url Param Length - Maximum length of parameter in URL. The structure of
url_param_length
block is documented below. - Version
Profile
Constraint Version - Enable/disable HTTP version check. The structure of
version
block is documented below.
- content
Length ProfileConstraint Content Length - HTTP content length in request. The structure of
content_length
block is documented below. - exceptions
List<Profile
Constraint Exception> - HTTP constraint exception. The structure of
exception
block is documented below. - header
Length ProfileConstraint Header Length - HTTP header length in request. The structure of
header_length
block is documented below. - hostname
Profile
Constraint Hostname - Enable/disable hostname check. The structure of
hostname
block is documented below. - line
Length ProfileConstraint Line Length - HTTP line length in request. The structure of
line_length
block is documented below. - malformed
Profile
Constraint Malformed - Enable/disable malformed HTTP request check. The structure of
malformed
block is documented below. - Profile
Constraint Max Cookie - Maximum number of cookies in HTTP request. The structure of
max_cookie
block is documented below. - max
Header ProfileLine Constraint Max Header Line - Maximum number of HTTP header line. The structure of
max_header_line
block is documented below. - max
Range ProfileSegment Constraint Max Range Segment - Maximum number of range segments in HTTP range line. The structure of
max_range_segment
block is documented below. - max
Url ProfileParam Constraint Max Url Param - Maximum number of parameters in URL. The structure of
max_url_param
block is documented below. - method
Profile
Constraint Method - Enable/disable HTTP method check. The structure of
method
block is documented below. - param
Length ProfileConstraint Param Length - Maximum length of parameter in URL, HTTP POST request or HTTP body. The structure of
param_length
block is documented below. - url
Param ProfileLength Constraint Url Param Length - Maximum length of parameter in URL. The structure of
url_param_length
block is documented below. - version
Profile
Constraint Version - Enable/disable HTTP version check. The structure of
version
block is documented below.
- content
Length ProfileConstraint Content Length - HTTP content length in request. The structure of
content_length
block is documented below. - exceptions
Profile
Constraint Exception[] - HTTP constraint exception. The structure of
exception
block is documented below. - header
Length ProfileConstraint Header Length - HTTP header length in request. The structure of
header_length
block is documented below. - hostname
Profile
Constraint Hostname - Enable/disable hostname check. The structure of
hostname
block is documented below. - line
Length ProfileConstraint Line Length - HTTP line length in request. The structure of
line_length
block is documented below. - malformed
Profile
Constraint Malformed - Enable/disable malformed HTTP request check. The structure of
malformed
block is documented below. - Profile
Constraint Max Cookie - Maximum number of cookies in HTTP request. The structure of
max_cookie
block is documented below. - max
Header ProfileLine Constraint Max Header Line - Maximum number of HTTP header line. The structure of
max_header_line
block is documented below. - max
Range ProfileSegment Constraint Max Range Segment - Maximum number of range segments in HTTP range line. The structure of
max_range_segment
block is documented below. - max
Url ProfileParam Constraint Max Url Param - Maximum number of parameters in URL. The structure of
max_url_param
block is documented below. - method
Profile
Constraint Method - Enable/disable HTTP method check. The structure of
method
block is documented below. - param
Length ProfileConstraint Param Length - Maximum length of parameter in URL, HTTP POST request or HTTP body. The structure of
param_length
block is documented below. - url
Param ProfileLength Constraint Url Param Length - Maximum length of parameter in URL. The structure of
url_param_length
block is documented below. - version
Profile
Constraint Version - Enable/disable HTTP version check. The structure of
version
block is documented below.
- content_
length ProfileConstraint Content Length - HTTP content length in request. The structure of
content_length
block is documented below. - exceptions
Sequence[Profile
Constraint Exception] - HTTP constraint exception. The structure of
exception
block is documented below. - header_
length ProfileConstraint Header Length - HTTP header length in request. The structure of
header_length
block is documented below. - hostname
Profile
Constraint Hostname - Enable/disable hostname check. The structure of
hostname
block is documented below. - line_
length ProfileConstraint Line Length - HTTP line length in request. The structure of
line_length
block is documented below. - malformed
Profile
Constraint Malformed - Enable/disable malformed HTTP request check. The structure of
malformed
block is documented below. - Profile
Constraint Max Cookie - Maximum number of cookies in HTTP request. The structure of
max_cookie
block is documented below. - max_
header_ Profileline Constraint Max Header Line - Maximum number of HTTP header line. The structure of
max_header_line
block is documented below. - max_
range_ Profilesegment Constraint Max Range Segment - Maximum number of range segments in HTTP range line. The structure of
max_range_segment
block is documented below. - max_
url_ Profileparam Constraint Max Url Param - Maximum number of parameters in URL. The structure of
max_url_param
block is documented below. - method
Profile
Constraint Method - Enable/disable HTTP method check. The structure of
method
block is documented below. - param_
length ProfileConstraint Param Length - Maximum length of parameter in URL, HTTP POST request or HTTP body. The structure of
param_length
block is documented below. - url_
param_ Profilelength Constraint Url Param Length - Maximum length of parameter in URL. The structure of
url_param_length
block is documented below. - version
Profile
Constraint Version - Enable/disable HTTP version check. The structure of
version
block is documented below.
- content
Length Property Map - HTTP content length in request. The structure of
content_length
block is documented below. - exceptions List<Property Map>
- HTTP constraint exception. The structure of
exception
block is documented below. - header
Length Property Map - HTTP header length in request. The structure of
header_length
block is documented below. - hostname Property Map
- Enable/disable hostname check. The structure of
hostname
block is documented below. - line
Length Property Map - HTTP line length in request. The structure of
line_length
block is documented below. - malformed Property Map
- Enable/disable malformed HTTP request check. The structure of
malformed
block is documented below. - Property Map
- Maximum number of cookies in HTTP request. The structure of
max_cookie
block is documented below. - max
Header Property MapLine - Maximum number of HTTP header line. The structure of
max_header_line
block is documented below. - max
Range Property MapSegment - Maximum number of range segments in HTTP range line. The structure of
max_range_segment
block is documented below. - max
Url Property MapParam - Maximum number of parameters in URL. The structure of
max_url_param
block is documented below. - method Property Map
- Enable/disable HTTP method check. The structure of
method
block is documented below. - param
Length Property Map - Maximum length of parameter in URL, HTTP POST request or HTTP body. The structure of
param_length
block is documented below. - url
Param Property MapLength - Maximum length of parameter in URL. The structure of
url_param_length
block is documented below. - version Property Map
- Enable/disable HTTP version check. The structure of
version
block is documented below.
ProfileConstraintContentLength, ProfileConstraintContentLengthArgs
- Action string
- Action. Valid values:
allow
,block
. - Length int
- Length of HTTP content in bytes (0 to 2147483647).
- Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- Action string
- Action. Valid values:
allow
,block
. - Length int
- Length of HTTP content in bytes (0 to 2147483647).
- Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - length Integer
- Length of HTTP content in bytes (0 to 2147483647).
- log String
- Enable/disable logging. Valid values:
enable
,disable
. - severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action string
- Action. Valid values:
allow
,block
. - length number
- Length of HTTP content in bytes (0 to 2147483647).
- log string
- Enable/disable logging. Valid values:
enable
,disable
. - severity string
- Severity. Valid values:
high
,medium
,low
. - status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - length Number
- Length of HTTP content in bytes (0 to 2147483647).
- log String
- Enable/disable logging. Valid values:
enable
,disable
. - severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
ProfileConstraintException, ProfileConstraintExceptionArgs
- Address string
- Host address.
- Content
Length string - HTTP content length in request. Valid values:
enable
,disable
. - Header
Length string - HTTP header length in request. Valid values:
enable
,disable
. - Hostname string
- Enable/disable hostname check. Valid values:
enable
,disable
. - Id int
- Exception ID.
- Line
Length string - HTTP line length in request. Valid values:
enable
,disable
. - Malformed string
- Enable/disable malformed HTTP request check. Valid values:
enable
,disable
. - string
- Maximum number of cookies in HTTP request. Valid values:
enable
,disable
. - Max
Header stringLine - Maximum number of HTTP header line. Valid values:
enable
,disable
. - Max
Range stringSegment - Maximum number of range segments in HTTP range line. Valid values:
enable
,disable
. - Max
Url stringParam - Maximum number of parameters in URL. Valid values:
enable
,disable
. - Method string
- Enable/disable HTTP method check. Valid values:
enable
,disable
. - Param
Length string - Maximum length of parameter in URL, HTTP POST request or HTTP body. Valid values:
enable
,disable
. - Pattern string
- URL pattern.
- Regex string
- Enable/disable regular expression based pattern match. Valid values:
enable
,disable
. - Url
Param stringLength - Maximum length of parameter in URL. Valid values:
enable
,disable
. - Version string
- Enable/disable HTTP version check. Valid values:
enable
,disable
.
- Address string
- Host address.
- Content
Length string - HTTP content length in request. Valid values:
enable
,disable
. - Header
Length string - HTTP header length in request. Valid values:
enable
,disable
. - Hostname string
- Enable/disable hostname check. Valid values:
enable
,disable
. - Id int
- Exception ID.
- Line
Length string - HTTP line length in request. Valid values:
enable
,disable
. - Malformed string
- Enable/disable malformed HTTP request check. Valid values:
enable
,disable
. - string
- Maximum number of cookies in HTTP request. Valid values:
enable
,disable
. - Max
Header stringLine - Maximum number of HTTP header line. Valid values:
enable
,disable
. - Max
Range stringSegment - Maximum number of range segments in HTTP range line. Valid values:
enable
,disable
. - Max
Url stringParam - Maximum number of parameters in URL. Valid values:
enable
,disable
. - Method string
- Enable/disable HTTP method check. Valid values:
enable
,disable
. - Param
Length string - Maximum length of parameter in URL, HTTP POST request or HTTP body. Valid values:
enable
,disable
. - Pattern string
- URL pattern.
- Regex string
- Enable/disable regular expression based pattern match. Valid values:
enable
,disable
. - Url
Param stringLength - Maximum length of parameter in URL. Valid values:
enable
,disable
. - Version string
- Enable/disable HTTP version check. Valid values:
enable
,disable
.
- address String
- Host address.
- content
Length String - HTTP content length in request. Valid values:
enable
,disable
. - header
Length String - HTTP header length in request. Valid values:
enable
,disable
. - hostname String
- Enable/disable hostname check. Valid values:
enable
,disable
. - id Integer
- Exception ID.
- line
Length String - HTTP line length in request. Valid values:
enable
,disable
. - malformed String
- Enable/disable malformed HTTP request check. Valid values:
enable
,disable
. - String
- Maximum number of cookies in HTTP request. Valid values:
enable
,disable
. - max
Header StringLine - Maximum number of HTTP header line. Valid values:
enable
,disable
. - max
Range StringSegment - Maximum number of range segments in HTTP range line. Valid values:
enable
,disable
. - max
Url StringParam - Maximum number of parameters in URL. Valid values:
enable
,disable
. - method String
- Enable/disable HTTP method check. Valid values:
enable
,disable
. - param
Length String - Maximum length of parameter in URL, HTTP POST request or HTTP body. Valid values:
enable
,disable
. - pattern String
- URL pattern.
- regex String
- Enable/disable regular expression based pattern match. Valid values:
enable
,disable
. - url
Param StringLength - Maximum length of parameter in URL. Valid values:
enable
,disable
. - version String
- Enable/disable HTTP version check. Valid values:
enable
,disable
.
- address string
- Host address.
- content
Length string - HTTP content length in request. Valid values:
enable
,disable
. - header
Length string - HTTP header length in request. Valid values:
enable
,disable
. - hostname string
- Enable/disable hostname check. Valid values:
enable
,disable
. - id number
- Exception ID.
- line
Length string - HTTP line length in request. Valid values:
enable
,disable
. - malformed string
- Enable/disable malformed HTTP request check. Valid values:
enable
,disable
. - string
- Maximum number of cookies in HTTP request. Valid values:
enable
,disable
. - max
Header stringLine - Maximum number of HTTP header line. Valid values:
enable
,disable
. - max
Range stringSegment - Maximum number of range segments in HTTP range line. Valid values:
enable
,disable
. - max
Url stringParam - Maximum number of parameters in URL. Valid values:
enable
,disable
. - method string
- Enable/disable HTTP method check. Valid values:
enable
,disable
. - param
Length string - Maximum length of parameter in URL, HTTP POST request or HTTP body. Valid values:
enable
,disable
. - pattern string
- URL pattern.
- regex string
- Enable/disable regular expression based pattern match. Valid values:
enable
,disable
. - url
Param stringLength - Maximum length of parameter in URL. Valid values:
enable
,disable
. - version string
- Enable/disable HTTP version check. Valid values:
enable
,disable
.
- address str
- Host address.
- content_
length str - HTTP content length in request. Valid values:
enable
,disable
. - header_
length str - HTTP header length in request. Valid values:
enable
,disable
. - hostname str
- Enable/disable hostname check. Valid values:
enable
,disable
. - id int
- Exception ID.
- line_
length str - HTTP line length in request. Valid values:
enable
,disable
. - malformed str
- Enable/disable malformed HTTP request check. Valid values:
enable
,disable
. - str
- Maximum number of cookies in HTTP request. Valid values:
enable
,disable
. - max_
header_ strline - Maximum number of HTTP header line. Valid values:
enable
,disable
. - max_
range_ strsegment - Maximum number of range segments in HTTP range line. Valid values:
enable
,disable
. - max_
url_ strparam - Maximum number of parameters in URL. Valid values:
enable
,disable
. - method str
- Enable/disable HTTP method check. Valid values:
enable
,disable
. - param_
length str - Maximum length of parameter in URL, HTTP POST request or HTTP body. Valid values:
enable
,disable
. - pattern str
- URL pattern.
- regex str
- Enable/disable regular expression based pattern match. Valid values:
enable
,disable
. - url_
param_ strlength - Maximum length of parameter in URL. Valid values:
enable
,disable
. - version str
- Enable/disable HTTP version check. Valid values:
enable
,disable
.
- address String
- Host address.
- content
Length String - HTTP content length in request. Valid values:
enable
,disable
. - header
Length String - HTTP header length in request. Valid values:
enable
,disable
. - hostname String
- Enable/disable hostname check. Valid values:
enable
,disable
. - id Number
- Exception ID.
- line
Length String - HTTP line length in request. Valid values:
enable
,disable
. - malformed String
- Enable/disable malformed HTTP request check. Valid values:
enable
,disable
. - String
- Maximum number of cookies in HTTP request. Valid values:
enable
,disable
. - max
Header StringLine - Maximum number of HTTP header line. Valid values:
enable
,disable
. - max
Range StringSegment - Maximum number of range segments in HTTP range line. Valid values:
enable
,disable
. - max
Url StringParam - Maximum number of parameters in URL. Valid values:
enable
,disable
. - method String
- Enable/disable HTTP method check. Valid values:
enable
,disable
. - param
Length String - Maximum length of parameter in URL, HTTP POST request or HTTP body. Valid values:
enable
,disable
. - pattern String
- URL pattern.
- regex String
- Enable/disable regular expression based pattern match. Valid values:
enable
,disable
. - url
Param StringLength - Maximum length of parameter in URL. Valid values:
enable
,disable
. - version String
- Enable/disable HTTP version check. Valid values:
enable
,disable
.
ProfileConstraintHeaderLength, ProfileConstraintHeaderLengthArgs
- Action string
- Action. Valid values:
allow
,block
. - Length int
- Length of HTTP header in bytes (0 to 2147483647).
- Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- Action string
- Action. Valid values:
allow
,block
. - Length int
- Length of HTTP header in bytes (0 to 2147483647).
- Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - length Integer
- Length of HTTP header in bytes (0 to 2147483647).
- log String
- Enable/disable logging. Valid values:
enable
,disable
. - severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action string
- Action. Valid values:
allow
,block
. - length number
- Length of HTTP header in bytes (0 to 2147483647).
- log string
- Enable/disable logging. Valid values:
enable
,disable
. - severity string
- Severity. Valid values:
high
,medium
,low
. - status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - length Number
- Length of HTTP header in bytes (0 to 2147483647).
- log String
- Enable/disable logging. Valid values:
enable
,disable
. - severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
ProfileConstraintHostname, ProfileConstraintHostnameArgs
ProfileConstraintLineLength, ProfileConstraintLineLengthArgs
- Action string
- Action. Valid values:
allow
,block
. - Length int
- Length of HTTP line in bytes (0 to 2147483647).
- Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- Action string
- Action. Valid values:
allow
,block
. - Length int
- Length of HTTP line in bytes (0 to 2147483647).
- Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - length Integer
- Length of HTTP line in bytes (0 to 2147483647).
- log String
- Enable/disable logging. Valid values:
enable
,disable
. - severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action string
- Action. Valid values:
allow
,block
. - length number
- Length of HTTP line in bytes (0 to 2147483647).
- log string
- Enable/disable logging. Valid values:
enable
,disable
. - severity string
- Severity. Valid values:
high
,medium
,low
. - status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - length Number
- Length of HTTP line in bytes (0 to 2147483647).
- log String
- Enable/disable logging. Valid values:
enable
,disable
. - severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
ProfileConstraintMalformed, ProfileConstraintMalformedArgs
ProfileConstraintMaxCookie, ProfileConstraintMaxCookieArgs
- Action string
- Action. Valid values:
allow
,block
. - Log string
- Enable/disable logging. Valid values:
enable
,disable
. - int
- Maximum number of cookies in HTTP request (0 to 2147483647).
- Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- Action string
- Action. Valid values:
allow
,block
. - Log string
- Enable/disable logging. Valid values:
enable
,disable
. - int
- Maximum number of cookies in HTTP request (0 to 2147483647).
- Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - log String
- Enable/disable logging. Valid values:
enable
,disable
. - Integer
- Maximum number of cookies in HTTP request (0 to 2147483647).
- severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action string
- Action. Valid values:
allow
,block
. - log string
- Enable/disable logging. Valid values:
enable
,disable
. - number
- Maximum number of cookies in HTTP request (0 to 2147483647).
- severity string
- Severity. Valid values:
high
,medium
,low
. - status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - log String
- Enable/disable logging. Valid values:
enable
,disable
. - Number
- Maximum number of cookies in HTTP request (0 to 2147483647).
- severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
ProfileConstraintMaxHeaderLine, ProfileConstraintMaxHeaderLineArgs
- Action string
- Action. Valid values:
allow
,block
. - Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Max
Header intLine - Maximum number HTTP header lines (0 to 2147483647).
- Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- Action string
- Action. Valid values:
allow
,block
. - Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Max
Header intLine - Maximum number HTTP header lines (0 to 2147483647).
- Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - log String
- Enable/disable logging. Valid values:
enable
,disable
. - max
Header IntegerLine - Maximum number HTTP header lines (0 to 2147483647).
- severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action string
- Action. Valid values:
allow
,block
. - log string
- Enable/disable logging. Valid values:
enable
,disable
. - max
Header numberLine - Maximum number HTTP header lines (0 to 2147483647).
- severity string
- Severity. Valid values:
high
,medium
,low
. - status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action str
- Action. Valid values:
allow
,block
. - log str
- Enable/disable logging. Valid values:
enable
,disable
. - max_
header_ intline - Maximum number HTTP header lines (0 to 2147483647).
- severity str
- Severity. Valid values:
high
,medium
,low
. - status str
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - log String
- Enable/disable logging. Valid values:
enable
,disable
. - max
Header NumberLine - Maximum number HTTP header lines (0 to 2147483647).
- severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
ProfileConstraintMaxRangeSegment, ProfileConstraintMaxRangeSegmentArgs
- Action string
- Action. Valid values:
allow
,block
. - Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Max
Range intSegment - Maximum number of range segments in HTTP range line (0 to 2147483647).
- Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- Action string
- Action. Valid values:
allow
,block
. - Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Max
Range intSegment - Maximum number of range segments in HTTP range line (0 to 2147483647).
- Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - log String
- Enable/disable logging. Valid values:
enable
,disable
. - max
Range IntegerSegment - Maximum number of range segments in HTTP range line (0 to 2147483647).
- severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action string
- Action. Valid values:
allow
,block
. - log string
- Enable/disable logging. Valid values:
enable
,disable
. - max
Range numberSegment - Maximum number of range segments in HTTP range line (0 to 2147483647).
- severity string
- Severity. Valid values:
high
,medium
,low
. - status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action str
- Action. Valid values:
allow
,block
. - log str
- Enable/disable logging. Valid values:
enable
,disable
. - max_
range_ intsegment - Maximum number of range segments in HTTP range line (0 to 2147483647).
- severity str
- Severity. Valid values:
high
,medium
,low
. - status str
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - log String
- Enable/disable logging. Valid values:
enable
,disable
. - max
Range NumberSegment - Maximum number of range segments in HTTP range line (0 to 2147483647).
- severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
ProfileConstraintMaxUrlParam, ProfileConstraintMaxUrlParamArgs
- Action string
- Action. Valid values:
allow
,block
. - Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Max
Url intParam - Maximum number of parameters in URL (0 to 2147483647).
- Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- Action string
- Action. Valid values:
allow
,block
. - Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Max
Url intParam - Maximum number of parameters in URL (0 to 2147483647).
- Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - log String
- Enable/disable logging. Valid values:
enable
,disable
. - max
Url IntegerParam - Maximum number of parameters in URL (0 to 2147483647).
- severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action string
- Action. Valid values:
allow
,block
. - log string
- Enable/disable logging. Valid values:
enable
,disable
. - max
Url numberParam - Maximum number of parameters in URL (0 to 2147483647).
- severity string
- Severity. Valid values:
high
,medium
,low
. - status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action str
- Action. Valid values:
allow
,block
. - log str
- Enable/disable logging. Valid values:
enable
,disable
. - max_
url_ intparam - Maximum number of parameters in URL (0 to 2147483647).
- severity str
- Severity. Valid values:
high
,medium
,low
. - status str
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - log String
- Enable/disable logging. Valid values:
enable
,disable
. - max
Url NumberParam - Maximum number of parameters in URL (0 to 2147483647).
- severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
ProfileConstraintMethod, ProfileConstraintMethodArgs
ProfileConstraintParamLength, ProfileConstraintParamLengthArgs
- Action string
- Action. Valid values:
allow
,block
. - Length int
- Maximum length of parameter in URL, HTTP POST request or HTTP body in bytes (0 to 2147483647).
- Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- Action string
- Action. Valid values:
allow
,block
. - Length int
- Maximum length of parameter in URL, HTTP POST request or HTTP body in bytes (0 to 2147483647).
- Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - length Integer
- Maximum length of parameter in URL, HTTP POST request or HTTP body in bytes (0 to 2147483647).
- log String
- Enable/disable logging. Valid values:
enable
,disable
. - severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action string
- Action. Valid values:
allow
,block
. - length number
- Maximum length of parameter in URL, HTTP POST request or HTTP body in bytes (0 to 2147483647).
- log string
- Enable/disable logging. Valid values:
enable
,disable
. - severity string
- Severity. Valid values:
high
,medium
,low
. - status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action str
- Action. Valid values:
allow
,block
. - length int
- Maximum length of parameter in URL, HTTP POST request or HTTP body in bytes (0 to 2147483647).
- log str
- Enable/disable logging. Valid values:
enable
,disable
. - severity str
- Severity. Valid values:
high
,medium
,low
. - status str
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - length Number
- Maximum length of parameter in URL, HTTP POST request or HTTP body in bytes (0 to 2147483647).
- log String
- Enable/disable logging. Valid values:
enable
,disable
. - severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
ProfileConstraintUrlParamLength, ProfileConstraintUrlParamLengthArgs
- Action string
- Action. Valid values:
allow
,block
. - Length int
- Maximum length of URL parameter in bytes (0 to 2147483647).
- Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- Action string
- Action. Valid values:
allow
,block
. - Length int
- Maximum length of URL parameter in bytes (0 to 2147483647).
- Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - length Integer
- Maximum length of URL parameter in bytes (0 to 2147483647).
- log String
- Enable/disable logging. Valid values:
enable
,disable
. - severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action string
- Action. Valid values:
allow
,block
. - length number
- Maximum length of URL parameter in bytes (0 to 2147483647).
- log string
- Enable/disable logging. Valid values:
enable
,disable
. - severity string
- Severity. Valid values:
high
,medium
,low
. - status string
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action str
- Action. Valid values:
allow
,block
. - length int
- Maximum length of URL parameter in bytes (0 to 2147483647).
- log str
- Enable/disable logging. Valid values:
enable
,disable
. - severity str
- Severity. Valid values:
high
,medium
,low
. - status str
- Enable/disable the constraint. Valid values:
enable
,disable
.
- action String
- Action. Valid values:
allow
,block
. - length Number
- Maximum length of URL parameter in bytes (0 to 2147483647).
- log String
- Enable/disable logging. Valid values:
enable
,disable
. - severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Enable/disable the constraint. Valid values:
enable
,disable
.
ProfileConstraintVersion, ProfileConstraintVersionArgs
ProfileMethod, ProfileMethodArgs
- Default
Allowed stringMethods - Methods. Valid values:
get
,post
,put
,head
,connect
,trace
,options
,delete
,others
. - Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Method
Policies List<Pulumiverse.Fortios. Waf. Inputs. Profile Method Method Policy> - HTTP method policy. The structure of
method_policy
block is documented below. - Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Status. Valid values:
enable
,disable
.
- Default
Allowed stringMethods - Methods. Valid values:
get
,post
,put
,head
,connect
,trace
,options
,delete
,others
. - Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Method
Policies []ProfileMethod Method Policy - HTTP method policy. The structure of
method_policy
block is documented below. - Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Status. Valid values:
enable
,disable
.
- default
Allowed StringMethods - Methods. Valid values:
get
,post
,put
,head
,connect
,trace
,options
,delete
,others
. - log String
- Enable/disable logging. Valid values:
enable
,disable
. - method
Policies List<ProfileMethod Method Policy> - HTTP method policy. The structure of
method_policy
block is documented below. - severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Status. Valid values:
enable
,disable
.
- default
Allowed stringMethods - Methods. Valid values:
get
,post
,put
,head
,connect
,trace
,options
,delete
,others
. - log string
- Enable/disable logging. Valid values:
enable
,disable
. - method
Policies ProfileMethod Method Policy[] - HTTP method policy. The structure of
method_policy
block is documented below. - severity string
- Severity. Valid values:
high
,medium
,low
. - status string
- Status. Valid values:
enable
,disable
.
- default_
allowed_ strmethods - Methods. Valid values:
get
,post
,put
,head
,connect
,trace
,options
,delete
,others
. - log str
- Enable/disable logging. Valid values:
enable
,disable
. - method_
policies Sequence[ProfileMethod Method Policy] - HTTP method policy. The structure of
method_policy
block is documented below. - severity str
- Severity. Valid values:
high
,medium
,low
. - status str
- Status. Valid values:
enable
,disable
.
- default
Allowed StringMethods - Methods. Valid values:
get
,post
,put
,head
,connect
,trace
,options
,delete
,others
. - log String
- Enable/disable logging. Valid values:
enable
,disable
. - method
Policies List<Property Map> - HTTP method policy. The structure of
method_policy
block is documented below. - severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Status. Valid values:
enable
,disable
.
ProfileMethodMethodPolicy, ProfileMethodMethodPolicyArgs
- Address string
- Host address.
- Allowed
Methods string - Allowed Methods. Valid values:
get
,post
,put
,head
,connect
,trace
,options
,delete
,others
. - Id int
- HTTP method policy ID.
- Pattern string
- URL pattern.
- Regex string
- Enable/disable regular expression based pattern match. Valid values:
enable
,disable
.
- Address string
- Host address.
- Allowed
Methods string - Allowed Methods. Valid values:
get
,post
,put
,head
,connect
,trace
,options
,delete
,others
. - Id int
- HTTP method policy ID.
- Pattern string
- URL pattern.
- Regex string
- Enable/disable regular expression based pattern match. Valid values:
enable
,disable
.
- address String
- Host address.
- allowed
Methods String - Allowed Methods. Valid values:
get
,post
,put
,head
,connect
,trace
,options
,delete
,others
. - id Integer
- HTTP method policy ID.
- pattern String
- URL pattern.
- regex String
- Enable/disable regular expression based pattern match. Valid values:
enable
,disable
.
- address string
- Host address.
- allowed
Methods string - Allowed Methods. Valid values:
get
,post
,put
,head
,connect
,trace
,options
,delete
,others
. - id number
- HTTP method policy ID.
- pattern string
- URL pattern.
- regex string
- Enable/disable regular expression based pattern match. Valid values:
enable
,disable
.
- address str
- Host address.
- allowed_
methods str - Allowed Methods. Valid values:
get
,post
,put
,head
,connect
,trace
,options
,delete
,others
. - id int
- HTTP method policy ID.
- pattern str
- URL pattern.
- regex str
- Enable/disable regular expression based pattern match. Valid values:
enable
,disable
.
- address String
- Host address.
- allowed
Methods String - Allowed Methods. Valid values:
get
,post
,put
,head
,connect
,trace
,options
,delete
,others
. - id Number
- HTTP method policy ID.
- pattern String
- URL pattern.
- regex String
- Enable/disable regular expression based pattern match. Valid values:
enable
,disable
.
ProfileSignature, ProfileSignatureArgs
- Credit
Card intDetection Threshold - The minimum number of Credit cards to detect violation.
- Custom
Signatures List<Pulumiverse.Fortios. Waf. Inputs. Profile Signature Custom Signature> - Custom signature. The structure of
custom_signature
block is documented below. - Disabled
Signatures List<Pulumiverse.Fortios. Waf. Inputs. Profile Signature Disabled Signature> - Disabled signatures The structure of
disabled_signature
block is documented below. - Disabled
Sub List<Pulumiverse.Classes Fortios. Waf. Inputs. Profile Signature Disabled Sub Class> - Disabled signature subclasses. The structure of
disabled_sub_class
block is documented below. - Main
Classes List<Pulumiverse.Fortios. Waf. Inputs. Profile Signature Main Class> - Main signature class. The structure of
main_class
block is documented below.
- Credit
Card intDetection Threshold - The minimum number of Credit cards to detect violation.
- Custom
Signatures []ProfileSignature Custom Signature - Custom signature. The structure of
custom_signature
block is documented below. - Disabled
Signatures []ProfileSignature Disabled Signature - Disabled signatures The structure of
disabled_signature
block is documented below. - Disabled
Sub []ProfileClasses Signature Disabled Sub Class - Disabled signature subclasses. The structure of
disabled_sub_class
block is documented below. - Main
Classes []ProfileSignature Main Class - Main signature class. The structure of
main_class
block is documented below.
- credit
Card IntegerDetection Threshold - The minimum number of Credit cards to detect violation.
- custom
Signatures List<ProfileSignature Custom Signature> - Custom signature. The structure of
custom_signature
block is documented below. - disabled
Signatures List<ProfileSignature Disabled Signature> - Disabled signatures The structure of
disabled_signature
block is documented below. - disabled
Sub List<ProfileClasses Signature Disabled Sub Class> - Disabled signature subclasses. The structure of
disabled_sub_class
block is documented below. - main
Classes List<ProfileSignature Main Class> - Main signature class. The structure of
main_class
block is documented below.
- credit
Card numberDetection Threshold - The minimum number of Credit cards to detect violation.
- custom
Signatures ProfileSignature Custom Signature[] - Custom signature. The structure of
custom_signature
block is documented below. - disabled
Signatures ProfileSignature Disabled Signature[] - Disabled signatures The structure of
disabled_signature
block is documented below. - disabled
Sub ProfileClasses Signature Disabled Sub Class[] - Disabled signature subclasses. The structure of
disabled_sub_class
block is documented below. - main
Classes ProfileSignature Main Class[] - Main signature class. The structure of
main_class
block is documented below.
- credit_
card_ intdetection_ threshold - The minimum number of Credit cards to detect violation.
- custom_
signatures Sequence[ProfileSignature Custom Signature] - Custom signature. The structure of
custom_signature
block is documented below. - disabled_
signatures Sequence[ProfileSignature Disabled Signature] - Disabled signatures The structure of
disabled_signature
block is documented below. - disabled_
sub_ Sequence[Profileclasses Signature Disabled Sub Class] - Disabled signature subclasses. The structure of
disabled_sub_class
block is documented below. - main_
classes Sequence[ProfileSignature Main Class] - Main signature class. The structure of
main_class
block is documented below.
- credit
Card NumberDetection Threshold - The minimum number of Credit cards to detect violation.
- custom
Signatures List<Property Map> - Custom signature. The structure of
custom_signature
block is documented below. - disabled
Signatures List<Property Map> - Disabled signatures The structure of
disabled_signature
block is documented below. - disabled
Sub List<Property Map>Classes - Disabled signature subclasses. The structure of
disabled_sub_class
block is documented below. - main
Classes List<Property Map> - Main signature class. The structure of
main_class
block is documented below.
ProfileSignatureCustomSignature, ProfileSignatureCustomSignatureArgs
- Action string
- Action. Valid values:
allow
,block
,erase
. - Case
Sensitivity string - Case sensitivity in pattern. Valid values:
disable
,enable
. - Direction string
- Traffic direction. Valid values:
request
,response
. - Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Name string
- Signature name.
- Pattern string
- Match pattern.
- Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Status. Valid values:
enable
,disable
. - Target string
- Match HTTP target. Valid values:
arg
,arg-name
,req-body
,req-cookie
,req-cookie-name
,req-filename
,req-header
,req-header-name
,req-raw-uri
,req-uri
,resp-body
,resp-hdr
,resp-status
.
- Action string
- Action. Valid values:
allow
,block
,erase
. - Case
Sensitivity string - Case sensitivity in pattern. Valid values:
disable
,enable
. - Direction string
- Traffic direction. Valid values:
request
,response
. - Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Name string
- Signature name.
- Pattern string
- Match pattern.
- Severity string
- Severity. Valid values:
high
,medium
,low
. - Status string
- Status. Valid values:
enable
,disable
. - Target string
- Match HTTP target. Valid values:
arg
,arg-name
,req-body
,req-cookie
,req-cookie-name
,req-filename
,req-header
,req-header-name
,req-raw-uri
,req-uri
,resp-body
,resp-hdr
,resp-status
.
- action String
- Action. Valid values:
allow
,block
,erase
. - case
Sensitivity String - Case sensitivity in pattern. Valid values:
disable
,enable
. - direction String
- Traffic direction. Valid values:
request
,response
. - log String
- Enable/disable logging. Valid values:
enable
,disable
. - name String
- Signature name.
- pattern String
- Match pattern.
- severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Status. Valid values:
enable
,disable
. - target String
- Match HTTP target. Valid values:
arg
,arg-name
,req-body
,req-cookie
,req-cookie-name
,req-filename
,req-header
,req-header-name
,req-raw-uri
,req-uri
,resp-body
,resp-hdr
,resp-status
.
- action string
- Action. Valid values:
allow
,block
,erase
. - case
Sensitivity string - Case sensitivity in pattern. Valid values:
disable
,enable
. - direction string
- Traffic direction. Valid values:
request
,response
. - log string
- Enable/disable logging. Valid values:
enable
,disable
. - name string
- Signature name.
- pattern string
- Match pattern.
- severity string
- Severity. Valid values:
high
,medium
,low
. - status string
- Status. Valid values:
enable
,disable
. - target string
- Match HTTP target. Valid values:
arg
,arg-name
,req-body
,req-cookie
,req-cookie-name
,req-filename
,req-header
,req-header-name
,req-raw-uri
,req-uri
,resp-body
,resp-hdr
,resp-status
.
- action str
- Action. Valid values:
allow
,block
,erase
. - case_
sensitivity str - Case sensitivity in pattern. Valid values:
disable
,enable
. - direction str
- Traffic direction. Valid values:
request
,response
. - log str
- Enable/disable logging. Valid values:
enable
,disable
. - name str
- Signature name.
- pattern str
- Match pattern.
- severity str
- Severity. Valid values:
high
,medium
,low
. - status str
- Status. Valid values:
enable
,disable
. - target str
- Match HTTP target. Valid values:
arg
,arg-name
,req-body
,req-cookie
,req-cookie-name
,req-filename
,req-header
,req-header-name
,req-raw-uri
,req-uri
,resp-body
,resp-hdr
,resp-status
.
- action String
- Action. Valid values:
allow
,block
,erase
. - case
Sensitivity String - Case sensitivity in pattern. Valid values:
disable
,enable
. - direction String
- Traffic direction. Valid values:
request
,response
. - log String
- Enable/disable logging. Valid values:
enable
,disable
. - name String
- Signature name.
- pattern String
- Match pattern.
- severity String
- Severity. Valid values:
high
,medium
,low
. - status String
- Status. Valid values:
enable
,disable
. - target String
- Match HTTP target. Valid values:
arg
,arg-name
,req-body
,req-cookie
,req-cookie-name
,req-filename
,req-header
,req-header-name
,req-raw-uri
,req-uri
,resp-body
,resp-hdr
,resp-status
.
ProfileSignatureDisabledSignature, ProfileSignatureDisabledSignatureArgs
- Id int
- Signature ID.
- Id int
- Signature ID.
- id Integer
- Signature ID.
- id number
- Signature ID.
- id int
- Signature ID.
- id Number
- Signature ID.
ProfileSignatureDisabledSubClass, ProfileSignatureDisabledSubClassArgs
- Id int
- Signature subclass ID.
- Id int
- Signature subclass ID.
- id Integer
- Signature subclass ID.
- id number
- Signature subclass ID.
- id int
- Signature subclass ID.
- id Number
- Signature subclass ID.
ProfileSignatureMainClass, ProfileSignatureMainClassArgs
ProfileUrlAccess, ProfileUrlAccessArgs
- Access
Patterns List<Pulumiverse.Fortios. Waf. Inputs. Profile Url Access Access Pattern> - URL access pattern. The structure of
access_pattern
block is documented below. - Action string
- Action. Valid values:
bypass
,permit
,block
. - Address string
- Host address.
- Id int
- URL access ID.
- Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Severity string
- Severity. Valid values:
high
,medium
,low
.
- Access
Patterns []ProfileUrl Access Access Pattern - URL access pattern. The structure of
access_pattern
block is documented below. - Action string
- Action. Valid values:
bypass
,permit
,block
. - Address string
- Host address.
- Id int
- URL access ID.
- Log string
- Enable/disable logging. Valid values:
enable
,disable
. - Severity string
- Severity. Valid values:
high
,medium
,low
.
- access
Patterns List<ProfileUrl Access Access Pattern> - URL access pattern. The structure of
access_pattern
block is documented below. - action String
- Action. Valid values:
bypass
,permit
,block
. - address String
- Host address.
- id Integer
- URL access ID.
- log String
- Enable/disable logging. Valid values:
enable
,disable
. - severity String
- Severity. Valid values:
high
,medium
,low
.
- access
Patterns ProfileUrl Access Access Pattern[] - URL access pattern. The structure of
access_pattern
block is documented below. - action string
- Action. Valid values:
bypass
,permit
,block
. - address string
- Host address.
- id number
- URL access ID.
- log string
- Enable/disable logging. Valid values:
enable
,disable
. - severity string
- Severity. Valid values:
high
,medium
,low
.
- access_
patterns Sequence[ProfileUrl Access Access Pattern] - URL access pattern. The structure of
access_pattern
block is documented below. - action str
- Action. Valid values:
bypass
,permit
,block
. - address str
- Host address.
- id int
- URL access ID.
- log str
- Enable/disable logging. Valid values:
enable
,disable
. - severity str
- Severity. Valid values:
high
,medium
,low
.
- access
Patterns List<Property Map> - URL access pattern. The structure of
access_pattern
block is documented below. - action String
- Action. Valid values:
bypass
,permit
,block
. - address String
- Host address.
- id Number
- URL access ID.
- log String
- Enable/disable logging. Valid values:
enable
,disable
. - severity String
- Severity. Valid values:
high
,medium
,low
.
ProfileUrlAccessAccessPattern, ProfileUrlAccessAccessPatternArgs
Import
Waf Profile can be imported using any of these accepted formats:
$ pulumi import fortios:waf/profile:Profile labelname {{name}}
If you do not want to import arguments of block:
$ export “FORTIOS_IMPORT_TABLE”=“false”
$ pulumi import fortios:waf/profile:Profile labelname {{name}}
$ unset “FORTIOS_IMPORT_TABLE”
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- fortios pulumiverse/pulumi-fortios
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
fortios
Terraform Provider.