Fortios v0.0.6, Jul 9 24

Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse

fortios.webproxy.Explicit

Explore with Pulumi AI

Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse

Create Explicit Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new Explicit(name: string, args?: ExplicitArgs, opts?: CustomResourceOptions);

@overload
def Explicit(resource_name: str,
             args: Optional[ExplicitArgs] = None,
             opts: Optional[ResourceOptions] = None)

@overload
def Explicit(resource_name: str,
             opts: Optional[ResourceOptions] = None,
             client_cert: Optional[str] = None,
             dynamic_sort_subtable: Optional[str] = None,
             empty_cert_action: Optional[str] = None,
             ftp_incoming_port: Optional[str] = None,
             ftp_over_http: Optional[str] = None,
             get_all_tables: Optional[str] = None,
             http_connection_mode: Optional[str] = None,
             http_incoming_port: Optional[str] = None,
             https_incoming_port: Optional[str] = None,
             https_replacement_message: Optional[str] = None,
             incoming_ip: Optional[str] = None,
             incoming_ip6: Optional[str] = None,
             ipv6_status: Optional[str] = None,
             message_upon_server_error: Optional[str] = None,
             outgoing_ip: Optional[str] = None,
             outgoing_ip6: Optional[str] = None,
             pac_file_data: Optional[str] = None,
             pac_file_name: Optional[str] = None,
             pac_file_server_port: Optional[str] = None,
             pac_file_server_status: Optional[str] = None,
             pac_file_through_https: Optional[str] = None,
             pac_file_url: Optional[str] = None,
             pac_policies: Optional[Sequence[ExplicitPacPolicyArgs]] = None,
             pref_dns_result: Optional[str] = None,
             realm: Optional[str] = None,
             sec_default_action: Optional[str] = None,
             secure_web_proxy: Optional[str] = None,
             secure_web_proxy_certs: Optional[Sequence[ExplicitSecureWebProxyCertArgs]] = None,
             socks: Optional[str] = None,
             socks_incoming_port: Optional[str] = None,
             ssl_algorithm: Optional[str] = None,
             ssl_dh_bits: Optional[str] = None,
             status: Optional[str] = None,
             strict_guest: Optional[str] = None,
             trace_auth_no_rsp: Optional[str] = None,
             unknown_http_version: Optional[str] = None,
             user_agent_detect: Optional[str] = None,
             vdomparam: Optional[str] = None)

func NewExplicit(ctx *Context, name string, args *ExplicitArgs, opts ...ResourceOption) (*Explicit, error)

public Explicit(string name, ExplicitArgs? args = null, CustomResourceOptions? opts = null)

public Explicit(String name, ExplicitArgs args)
public Explicit(String name, ExplicitArgs args, CustomResourceOptions options)

type: fortios:webproxy:Explicit
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args ExplicitArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args ExplicitArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args ExplicitArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ExplicitArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args ExplicitArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var fortiosExplicitResource = new Fortios.Webproxy.Explicit("fortiosExplicitResource", new()
{
    ClientCert = "string",
    DynamicSortSubtable = "string",
    EmptyCertAction = "string",
    FtpIncomingPort = "string",
    FtpOverHttp = "string",
    GetAllTables = "string",
    HttpConnectionMode = "string",
    HttpIncomingPort = "string",
    HttpsIncomingPort = "string",
    HttpsReplacementMessage = "string",
    IncomingIp = "string",
    IncomingIp6 = "string",
    Ipv6Status = "string",
    MessageUponServerError = "string",
    OutgoingIp = "string",
    OutgoingIp6 = "string",
    PacFileData = "string",
    PacFileName = "string",
    PacFileServerPort = "string",
    PacFileServerStatus = "string",
    PacFileThroughHttps = "string",
    PacFileUrl = "string",
    PacPolicies = new[]
    {
        new Fortios.Webproxy.Inputs.ExplicitPacPolicyArgs
        {
            Comments = "string",
            Dstaddrs = new[]
            {
                new Fortios.Webproxy.Inputs.ExplicitPacPolicyDstaddrArgs
                {
                    Name = "string",
                },
            },
            PacFileData = "string",
            PacFileName = "string",
            Policyid = 0,
            Srcaddr6s = new[]
            {
                new Fortios.Webproxy.Inputs.ExplicitPacPolicySrcaddr6Args
                {
                    Name = "string",
                },
            },
            Srcaddrs = new[]
            {
                new Fortios.Webproxy.Inputs.ExplicitPacPolicySrcaddrArgs
                {
                    Name = "string",
                },
            },
            Status = "string",
        },
    },
    PrefDnsResult = "string",
    Realm = "string",
    SecDefaultAction = "string",
    SecureWebProxy = "string",
    SecureWebProxyCerts = new[]
    {
        new Fortios.Webproxy.Inputs.ExplicitSecureWebProxyCertArgs
        {
            Name = "string",
        },
    },
    Socks = "string",
    SocksIncomingPort = "string",
    SslAlgorithm = "string",
    SslDhBits = "string",
    Status = "string",
    StrictGuest = "string",
    TraceAuthNoRsp = "string",
    UnknownHttpVersion = "string",
    UserAgentDetect = "string",
    Vdomparam = "string",
});

example, err := webproxy.NewExplicit(ctx, "fortiosExplicitResource", &webproxy.ExplicitArgs{
	ClientCert:              pulumi.String("string"),
	DynamicSortSubtable:     pulumi.String("string"),
	EmptyCertAction:         pulumi.String("string"),
	FtpIncomingPort:         pulumi.String("string"),
	FtpOverHttp:             pulumi.String("string"),
	GetAllTables:            pulumi.String("string"),
	HttpConnectionMode:      pulumi.String("string"),
	HttpIncomingPort:        pulumi.String("string"),
	HttpsIncomingPort:       pulumi.String("string"),
	HttpsReplacementMessage: pulumi.String("string"),
	IncomingIp:              pulumi.String("string"),
	IncomingIp6:             pulumi.String("string"),
	Ipv6Status:              pulumi.String("string"),
	MessageUponServerError:  pulumi.String("string"),
	OutgoingIp:              pulumi.String("string"),
	OutgoingIp6:             pulumi.String("string"),
	PacFileData:             pulumi.String("string"),
	PacFileName:             pulumi.String("string"),
	PacFileServerPort:       pulumi.String("string"),
	PacFileServerStatus:     pulumi.String("string"),
	PacFileThroughHttps:     pulumi.String("string"),
	PacFileUrl:              pulumi.String("string"),
	PacPolicies: webproxy.ExplicitPacPolicyArray{
		&webproxy.ExplicitPacPolicyArgs{
			Comments: pulumi.String("string"),
			Dstaddrs: webproxy.ExplicitPacPolicyDstaddrArray{
				&webproxy.ExplicitPacPolicyDstaddrArgs{
					Name: pulumi.String("string"),
				},
			},
			PacFileData: pulumi.String("string"),
			PacFileName: pulumi.String("string"),
			Policyid:    pulumi.Int(0),
			Srcaddr6s: webproxy.ExplicitPacPolicySrcaddr6Array{
				&webproxy.ExplicitPacPolicySrcaddr6Args{
					Name: pulumi.String("string"),
				},
			},
			Srcaddrs: webproxy.ExplicitPacPolicySrcaddrArray{
				&webproxy.ExplicitPacPolicySrcaddrArgs{
					Name: pulumi.String("string"),
				},
			},
			Status: pulumi.String("string"),
		},
	},
	PrefDnsResult:    pulumi.String("string"),
	Realm:            pulumi.String("string"),
	SecDefaultAction: pulumi.String("string"),
	SecureWebProxy:   pulumi.String("string"),
	SecureWebProxyCerts: webproxy.ExplicitSecureWebProxyCertArray{
		&webproxy.ExplicitSecureWebProxyCertArgs{
			Name: pulumi.String("string"),
		},
	},
	Socks:              pulumi.String("string"),
	SocksIncomingPort:  pulumi.String("string"),
	SslAlgorithm:       pulumi.String("string"),
	SslDhBits:          pulumi.String("string"),
	Status:             pulumi.String("string"),
	StrictGuest:        pulumi.String("string"),
	TraceAuthNoRsp:     pulumi.String("string"),
	UnknownHttpVersion: pulumi.String("string"),
	UserAgentDetect:    pulumi.String("string"),
	Vdomparam:          pulumi.String("string"),
})

var fortiosExplicitResource = new Explicit("fortiosExplicitResource", ExplicitArgs.builder()
    .clientCert("string")
    .dynamicSortSubtable("string")
    .emptyCertAction("string")
    .ftpIncomingPort("string")
    .ftpOverHttp("string")
    .getAllTables("string")
    .httpConnectionMode("string")
    .httpIncomingPort("string")
    .httpsIncomingPort("string")
    .httpsReplacementMessage("string")
    .incomingIp("string")
    .incomingIp6("string")
    .ipv6Status("string")
    .messageUponServerError("string")
    .outgoingIp("string")
    .outgoingIp6("string")
    .pacFileData("string")
    .pacFileName("string")
    .pacFileServerPort("string")
    .pacFileServerStatus("string")
    .pacFileThroughHttps("string")
    .pacFileUrl("string")
    .pacPolicies(ExplicitPacPolicyArgs.builder()
        .comments("string")
        .dstaddrs(ExplicitPacPolicyDstaddrArgs.builder()
            .name("string")
            .build())
        .pacFileData("string")
        .pacFileName("string")
        .policyid(0)
        .srcaddr6s(ExplicitPacPolicySrcaddr6Args.builder()
            .name("string")
            .build())
        .srcaddrs(ExplicitPacPolicySrcaddrArgs.builder()
            .name("string")
            .build())
        .status("string")
        .build())
    .prefDnsResult("string")
    .realm("string")
    .secDefaultAction("string")
    .secureWebProxy("string")
    .secureWebProxyCerts(ExplicitSecureWebProxyCertArgs.builder()
        .name("string")
        .build())
    .socks("string")
    .socksIncomingPort("string")
    .sslAlgorithm("string")
    .sslDhBits("string")
    .status("string")
    .strictGuest("string")
    .traceAuthNoRsp("string")
    .unknownHttpVersion("string")
    .userAgentDetect("string")
    .vdomparam("string")
    .build());

fortios_explicit_resource = fortios.webproxy.Explicit("fortiosExplicitResource",
    client_cert="string",
    dynamic_sort_subtable="string",
    empty_cert_action="string",
    ftp_incoming_port="string",
    ftp_over_http="string",
    get_all_tables="string",
    http_connection_mode="string",
    http_incoming_port="string",
    https_incoming_port="string",
    https_replacement_message="string",
    incoming_ip="string",
    incoming_ip6="string",
    ipv6_status="string",
    message_upon_server_error="string",
    outgoing_ip="string",
    outgoing_ip6="string",
    pac_file_data="string",
    pac_file_name="string",
    pac_file_server_port="string",
    pac_file_server_status="string",
    pac_file_through_https="string",
    pac_file_url="string",
    pac_policies=[fortios.webproxy.ExplicitPacPolicyArgs(
        comments="string",
        dstaddrs=[fortios.webproxy.ExplicitPacPolicyDstaddrArgs(
            name="string",
        )],
        pac_file_data="string",
        pac_file_name="string",
        policyid=0,
        srcaddr6s=[fortios.webproxy.ExplicitPacPolicySrcaddr6Args(
            name="string",
        )],
        srcaddrs=[fortios.webproxy.ExplicitPacPolicySrcaddrArgs(
            name="string",
        )],
        status="string",
    )],
    pref_dns_result="string",
    realm="string",
    sec_default_action="string",
    secure_web_proxy="string",
    secure_web_proxy_certs=[fortios.webproxy.ExplicitSecureWebProxyCertArgs(
        name="string",
    )],
    socks="string",
    socks_incoming_port="string",
    ssl_algorithm="string",
    ssl_dh_bits="string",
    status="string",
    strict_guest="string",
    trace_auth_no_rsp="string",
    unknown_http_version="string",
    user_agent_detect="string",
    vdomparam="string")

const fortiosExplicitResource = new fortios.webproxy.Explicit("fortiosExplicitResource", {
    clientCert: "string",
    dynamicSortSubtable: "string",
    emptyCertAction: "string",
    ftpIncomingPort: "string",
    ftpOverHttp: "string",
    getAllTables: "string",
    httpConnectionMode: "string",
    httpIncomingPort: "string",
    httpsIncomingPort: "string",
    httpsReplacementMessage: "string",
    incomingIp: "string",
    incomingIp6: "string",
    ipv6Status: "string",
    messageUponServerError: "string",
    outgoingIp: "string",
    outgoingIp6: "string",
    pacFileData: "string",
    pacFileName: "string",
    pacFileServerPort: "string",
    pacFileServerStatus: "string",
    pacFileThroughHttps: "string",
    pacFileUrl: "string",
    pacPolicies: [{
        comments: "string",
        dstaddrs: [{
            name: "string",
        }],
        pacFileData: "string",
        pacFileName: "string",
        policyid: 0,
        srcaddr6s: [{
            name: "string",
        }],
        srcaddrs: [{
            name: "string",
        }],
        status: "string",
    }],
    prefDnsResult: "string",
    realm: "string",
    secDefaultAction: "string",
    secureWebProxy: "string",
    secureWebProxyCerts: [{
        name: "string",
    }],
    socks: "string",
    socksIncomingPort: "string",
    sslAlgorithm: "string",
    sslDhBits: "string",
    status: "string",
    strictGuest: "string",
    traceAuthNoRsp: "string",
    unknownHttpVersion: "string",
    userAgentDetect: "string",
    vdomparam: "string",
});

type: fortios:webproxy:Explicit
properties:
    clientCert: string
    dynamicSortSubtable: string
    emptyCertAction: string
    ftpIncomingPort: string
    ftpOverHttp: string
    getAllTables: string
    httpConnectionMode: string
    httpIncomingPort: string
    httpsIncomingPort: string
    httpsReplacementMessage: string
    incomingIp: string
    incomingIp6: string
    ipv6Status: string
    messageUponServerError: string
    outgoingIp: string
    outgoingIp6: string
    pacFileData: string
    pacFileName: string
    pacFileServerPort: string
    pacFileServerStatus: string
    pacFileThroughHttps: string
    pacFileUrl: string
    pacPolicies:
        - comments: string
          dstaddrs:
            - name: string
          pacFileData: string
          pacFileName: string
          policyid: 0
          srcaddr6s:
            - name: string
          srcaddrs:
            - name: string
          status: string
    prefDnsResult: string
    realm: string
    secDefaultAction: string
    secureWebProxy: string
    secureWebProxyCerts:
        - name: string
    socks: string
    socksIncomingPort: string
    sslAlgorithm: string
    sslDhBits: string
    status: string
    strictGuest: string
    traceAuthNoRsp: string
    unknownHttpVersion: string
    userAgentDetect: string
    vdomparam: string

Explicit Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The Explicit resource accepts the following input properties:

ClientCert string: Enable/disable to request client certificate. Valid values: disable, enable.
DynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
EmptyCertAction string: Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
FtpIncomingPort string: Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
FtpOverHttp string: Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
GetAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
HttpConnectionMode string: HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
HttpIncomingPort string: Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
HttpsIncomingPort string: Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
HttpsReplacementMessage string: Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
IncomingIp string: Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
IncomingIp6 string: Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
Ipv6Status string: Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
MessageUponServerError string: Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
OutgoingIp string: Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
OutgoingIp6 string: Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
PacFileData string: PAC file contents enclosed in quotes (maximum of 256K bytes).
PacFileName string: Pac file name.
PacFileServerPort string: Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
PacFileServerStatus string: Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
PacFileThroughHttps string: Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
PacFileUrl string: PAC file access URL.
PacPolicies List<Pulumiverse.Fortios.Webproxy.Inputs.ExplicitPacPolicy>: PAC policies. The structure of pac_policy block is documented below.
PrefDnsResult string: Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
Realm string: Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
SecDefaultAction string: Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
SecureWebProxy string: Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
SecureWebProxyCerts List<Pulumiverse.Fortios.Webproxy.Inputs.ExplicitSecureWebProxyCert>: Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
Socks string: Enable/disable the SOCKS proxy. Valid values: enable, disable.
SocksIncomingPort string: Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
SslAlgorithm string: Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
SslDhBits string: Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
Status string: Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
StrictGuest string: Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
TraceAuthNoRsp string: Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
UnknownHttpVersion string: Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
UserAgentDetect string: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
Vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

ClientCert string: Enable/disable to request client certificate. Valid values: disable, enable.
DynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
EmptyCertAction string: Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
FtpIncomingPort string: Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
FtpOverHttp string: Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
GetAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
HttpConnectionMode string: HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
HttpIncomingPort string: Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
HttpsIncomingPort string: Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
HttpsReplacementMessage string: Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
IncomingIp string: Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
IncomingIp6 string: Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
Ipv6Status string: Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
MessageUponServerError string: Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
OutgoingIp string: Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
OutgoingIp6 string: Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
PacFileData string: PAC file contents enclosed in quotes (maximum of 256K bytes).
PacFileName string: Pac file name.
PacFileServerPort string: Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
PacFileServerStatus string: Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
PacFileThroughHttps string: Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
PacFileUrl string: PAC file access URL.
PacPolicies []ExplicitPacPolicyArgs: PAC policies. The structure of pac_policy block is documented below.
PrefDnsResult string: Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
Realm string: Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
SecDefaultAction string: Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
SecureWebProxy string: Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
SecureWebProxyCerts []ExplicitSecureWebProxyCertArgs: Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
Socks string: Enable/disable the SOCKS proxy. Valid values: enable, disable.
SocksIncomingPort string: Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
SslAlgorithm string: Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
SslDhBits string: Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
Status string: Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
StrictGuest string: Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
TraceAuthNoRsp string: Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
UnknownHttpVersion string: Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
UserAgentDetect string: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
Vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

clientCert String: Enable/disable to request client certificate. Valid values: disable, enable.
dynamicSortSubtable String: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
emptyCertAction String: Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
ftpIncomingPort String: Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
ftpOverHttp String: Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
getAllTables String: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
httpConnectionMode String: HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
httpIncomingPort String: Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
httpsIncomingPort String: Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
httpsReplacementMessage String: Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
incomingIp String: Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
incomingIp6 String: Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
ipv6Status String: Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
messageUponServerError String: Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
outgoingIp String: Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
outgoingIp6 String: Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
pacFileData String: PAC file contents enclosed in quotes (maximum of 256K bytes).
pacFileName String: Pac file name.
pacFileServerPort String: Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
pacFileServerStatus String: Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
pacFileThroughHttps String: Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
pacFileUrl String: PAC file access URL.
pacPolicies List<ExplicitPacPolicy>: PAC policies. The structure of pac_policy block is documented below.
prefDnsResult String: Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
realm String: Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
secDefaultAction String: Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
secureWebProxy String: Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
secureWebProxyCerts List<ExplicitSecureWebProxyCert>: Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
socks String: Enable/disable the SOCKS proxy. Valid values: enable, disable.
socksIncomingPort String: Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
sslAlgorithm String: Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
sslDhBits String: Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
status String: Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
strictGuest String: Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
traceAuthNoRsp String: Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
unknownHttpVersion String: Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
userAgentDetect String: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
vdomparam String: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

clientCert string: Enable/disable to request client certificate. Valid values: disable, enable.
dynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
emptyCertAction string: Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
ftpIncomingPort string: Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
ftpOverHttp string: Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
getAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
httpConnectionMode string: HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
httpIncomingPort string: Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
httpsIncomingPort string: Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
httpsReplacementMessage string: Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
incomingIp string: Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
incomingIp6 string: Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
ipv6Status string: Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
messageUponServerError string: Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
outgoingIp string: Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
outgoingIp6 string: Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
pacFileData string: PAC file contents enclosed in quotes (maximum of 256K bytes).
pacFileName string: Pac file name.
pacFileServerPort string: Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
pacFileServerStatus string: Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
pacFileThroughHttps string: Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
pacFileUrl string: PAC file access URL.
pacPolicies ExplicitPacPolicy[]: PAC policies. The structure of pac_policy block is documented below.
prefDnsResult string: Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
realm string: Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
secDefaultAction string: Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
secureWebProxy string: Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
secureWebProxyCerts ExplicitSecureWebProxyCert[]: Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
socks string: Enable/disable the SOCKS proxy. Valid values: enable, disable.
socksIncomingPort string: Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
sslAlgorithm string: Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
sslDhBits string: Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
status string: Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
strictGuest string: Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
traceAuthNoRsp string: Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
unknownHttpVersion string: Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
userAgentDetect string: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

client_cert str: Enable/disable to request client certificate. Valid values: disable, enable.
dynamic_sort_subtable str: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
empty_cert_action str: Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
ftp_incoming_port str: Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
ftp_over_http str: Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
get_all_tables str: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
http_connection_mode str: HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
http_incoming_port str: Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
https_incoming_port str: Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
https_replacement_message str: Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
incoming_ip str: Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
incoming_ip6 str: Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
ipv6_status str: Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
message_upon_server_error str: Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
outgoing_ip str: Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
outgoing_ip6 str: Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
pac_file_data str: PAC file contents enclosed in quotes (maximum of 256K bytes).
pac_file_name str: Pac file name.
pac_file_server_port str: Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
pac_file_server_status str: Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
pac_file_through_https str: Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
pac_file_url str: PAC file access URL.
pac_policies Sequence[ExplicitPacPolicyArgs]: PAC policies. The structure of pac_policy block is documented below.
pref_dns_result str: Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
realm str: Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
sec_default_action str: Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
secure_web_proxy str: Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
secure_web_proxy_certs Sequence[ExplicitSecureWebProxyCertArgs]: Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
socks str: Enable/disable the SOCKS proxy. Valid values: enable, disable.
socks_incoming_port str: Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
ssl_algorithm str: Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
ssl_dh_bits str: Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
status str: Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
strict_guest str: Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
trace_auth_no_rsp str: Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
unknown_http_version str: Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
user_agent_detect str: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
vdomparam str: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

clientCert String: Enable/disable to request client certificate. Valid values: disable, enable.
dynamicSortSubtable String: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
emptyCertAction String: Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
ftpIncomingPort String: Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
ftpOverHttp String: Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
getAllTables String: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
httpConnectionMode String: HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
httpIncomingPort String: Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
httpsIncomingPort String: Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
httpsReplacementMessage String: Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
incomingIp String: Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
incomingIp6 String: Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
ipv6Status String: Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
messageUponServerError String: Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
outgoingIp String: Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
outgoingIp6 String: Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
pacFileData String: PAC file contents enclosed in quotes (maximum of 256K bytes).
pacFileName String: Pac file name.
pacFileServerPort String: Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
pacFileServerStatus String: Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
pacFileThroughHttps String: Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
pacFileUrl String: PAC file access URL.
pacPolicies List<Property Map>: PAC policies. The structure of pac_policy block is documented below.
prefDnsResult String: Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
realm String: Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
secDefaultAction String: Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
secureWebProxy String: Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
secureWebProxyCerts List<Property Map>: Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
socks String: Enable/disable the SOCKS proxy. Valid values: enable, disable.
socksIncomingPort String: Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
sslAlgorithm String: Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
sslDhBits String: Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
status String: Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
strictGuest String: Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
traceAuthNoRsp String: Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
unknownHttpVersion String: Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
userAgentDetect String: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
vdomparam String: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

Outputs

All input properties are implicitly available as output properties. Additionally, the Explicit resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing Explicit Resource

Get an existing Explicit resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: ExplicitState, opts?: CustomResourceOptions): Explicit

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        client_cert: Optional[str] = None,
        dynamic_sort_subtable: Optional[str] = None,
        empty_cert_action: Optional[str] = None,
        ftp_incoming_port: Optional[str] = None,
        ftp_over_http: Optional[str] = None,
        get_all_tables: Optional[str] = None,
        http_connection_mode: Optional[str] = None,
        http_incoming_port: Optional[str] = None,
        https_incoming_port: Optional[str] = None,
        https_replacement_message: Optional[str] = None,
        incoming_ip: Optional[str] = None,
        incoming_ip6: Optional[str] = None,
        ipv6_status: Optional[str] = None,
        message_upon_server_error: Optional[str] = None,
        outgoing_ip: Optional[str] = None,
        outgoing_ip6: Optional[str] = None,
        pac_file_data: Optional[str] = None,
        pac_file_name: Optional[str] = None,
        pac_file_server_port: Optional[str] = None,
        pac_file_server_status: Optional[str] = None,
        pac_file_through_https: Optional[str] = None,
        pac_file_url: Optional[str] = None,
        pac_policies: Optional[Sequence[ExplicitPacPolicyArgs]] = None,
        pref_dns_result: Optional[str] = None,
        realm: Optional[str] = None,
        sec_default_action: Optional[str] = None,
        secure_web_proxy: Optional[str] = None,
        secure_web_proxy_certs: Optional[Sequence[ExplicitSecureWebProxyCertArgs]] = None,
        socks: Optional[str] = None,
        socks_incoming_port: Optional[str] = None,
        ssl_algorithm: Optional[str] = None,
        ssl_dh_bits: Optional[str] = None,
        status: Optional[str] = None,
        strict_guest: Optional[str] = None,
        trace_auth_no_rsp: Optional[str] = None,
        unknown_http_version: Optional[str] = None,
        user_agent_detect: Optional[str] = None,
        vdomparam: Optional[str] = None) -> Explicit

func GetExplicit(ctx *Context, name string, id IDInput, state *ExplicitState, opts ...ResourceOption) (*Explicit, error)

public static Explicit Get(string name, Input<string> id, ExplicitState? state, CustomResourceOptions? opts = null)

public static Explicit get(String name, Output<String> id, ExplicitState state, CustomResourceOptions options)

Resource lookup is not supported in YAML

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

ClientCert string: Enable/disable to request client certificate. Valid values: disable, enable.
DynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
EmptyCertAction string: Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
FtpIncomingPort string: Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
FtpOverHttp string: Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
GetAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
HttpConnectionMode string: HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
HttpIncomingPort string: Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
HttpsIncomingPort string: Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
HttpsReplacementMessage string: Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
IncomingIp string: Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
IncomingIp6 string: Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
Ipv6Status string: Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
MessageUponServerError string: Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
OutgoingIp string: Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
OutgoingIp6 string: Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
PacFileData string: PAC file contents enclosed in quotes (maximum of 256K bytes).
PacFileName string: Pac file name.
PacFileServerPort string: Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
PacFileServerStatus string: Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
PacFileThroughHttps string: Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
PacFileUrl string: PAC file access URL.
PacPolicies List<Pulumiverse.Fortios.Webproxy.Inputs.ExplicitPacPolicy>: PAC policies. The structure of pac_policy block is documented below.
PrefDnsResult string: Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
Realm string: Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
SecDefaultAction string: Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
SecureWebProxy string: Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
SecureWebProxyCerts List<Pulumiverse.Fortios.Webproxy.Inputs.ExplicitSecureWebProxyCert>: Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
Socks string: Enable/disable the SOCKS proxy. Valid values: enable, disable.
SocksIncomingPort string: Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
SslAlgorithm string: Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
SslDhBits string: Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
Status string: Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
StrictGuest string: Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
TraceAuthNoRsp string: Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
UnknownHttpVersion string: Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
UserAgentDetect string: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
Vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

ClientCert string: Enable/disable to request client certificate. Valid values: disable, enable.
DynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
EmptyCertAction string: Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
FtpIncomingPort string: Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
FtpOverHttp string: Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
GetAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
HttpConnectionMode string: HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
HttpIncomingPort string: Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
HttpsIncomingPort string: Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
HttpsReplacementMessage string: Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
IncomingIp string: Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
IncomingIp6 string: Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
Ipv6Status string: Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
MessageUponServerError string: Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
OutgoingIp string: Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
OutgoingIp6 string: Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
PacFileData string: PAC file contents enclosed in quotes (maximum of 256K bytes).
PacFileName string: Pac file name.
PacFileServerPort string: Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
PacFileServerStatus string: Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
PacFileThroughHttps string: Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
PacFileUrl string: PAC file access URL.
PacPolicies []ExplicitPacPolicyArgs: PAC policies. The structure of pac_policy block is documented below.
PrefDnsResult string: Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
Realm string: Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
SecDefaultAction string: Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
SecureWebProxy string: Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
SecureWebProxyCerts []ExplicitSecureWebProxyCertArgs: Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
Socks string: Enable/disable the SOCKS proxy. Valid values: enable, disable.
SocksIncomingPort string: Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
SslAlgorithm string: Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
SslDhBits string: Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
Status string: Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
StrictGuest string: Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
TraceAuthNoRsp string: Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
UnknownHttpVersion string: Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
UserAgentDetect string: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
Vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

clientCert String: Enable/disable to request client certificate. Valid values: disable, enable.
dynamicSortSubtable String: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
emptyCertAction String: Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
ftpIncomingPort String: Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
ftpOverHttp String: Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
getAllTables String: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
httpConnectionMode String: HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
httpIncomingPort String: Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
httpsIncomingPort String: Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
httpsReplacementMessage String: Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
incomingIp String: Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
incomingIp6 String: Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
ipv6Status String: Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
messageUponServerError String: Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
outgoingIp String: Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
outgoingIp6 String: Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
pacFileData String: PAC file contents enclosed in quotes (maximum of 256K bytes).
pacFileName String: Pac file name.
pacFileServerPort String: Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
pacFileServerStatus String: Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
pacFileThroughHttps String: Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
pacFileUrl String: PAC file access URL.
pacPolicies List<ExplicitPacPolicy>: PAC policies. The structure of pac_policy block is documented below.
prefDnsResult String: Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
realm String: Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
secDefaultAction String: Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
secureWebProxy String: Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
secureWebProxyCerts List<ExplicitSecureWebProxyCert>: Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
socks String: Enable/disable the SOCKS proxy. Valid values: enable, disable.
socksIncomingPort String: Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
sslAlgorithm String: Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
sslDhBits String: Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
status String: Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
strictGuest String: Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
traceAuthNoRsp String: Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
unknownHttpVersion String: Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
userAgentDetect String: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
vdomparam String: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

clientCert string: Enable/disable to request client certificate. Valid values: disable, enable.
dynamicSortSubtable string: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
emptyCertAction string: Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
ftpIncomingPort string: Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
ftpOverHttp string: Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
getAllTables string: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
httpConnectionMode string: HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
httpIncomingPort string: Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
httpsIncomingPort string: Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
httpsReplacementMessage string: Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
incomingIp string: Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
incomingIp6 string: Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
ipv6Status string: Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
messageUponServerError string: Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
outgoingIp string: Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
outgoingIp6 string: Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
pacFileData string: PAC file contents enclosed in quotes (maximum of 256K bytes).
pacFileName string: Pac file name.
pacFileServerPort string: Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
pacFileServerStatus string: Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
pacFileThroughHttps string: Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
pacFileUrl string: PAC file access URL.
pacPolicies ExplicitPacPolicy[]: PAC policies. The structure of pac_policy block is documented below.
prefDnsResult string: Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
realm string: Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
secDefaultAction string: Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
secureWebProxy string: Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
secureWebProxyCerts ExplicitSecureWebProxyCert[]: Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
socks string: Enable/disable the SOCKS proxy. Valid values: enable, disable.
socksIncomingPort string: Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
sslAlgorithm string: Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
sslDhBits string: Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
status string: Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
strictGuest string: Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
traceAuthNoRsp string: Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
unknownHttpVersion string: Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
userAgentDetect string: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
vdomparam string: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

client_cert str: Enable/disable to request client certificate. Valid values: disable, enable.
dynamic_sort_subtable str: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
empty_cert_action str: Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
ftp_incoming_port str: Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
ftp_over_http str: Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
get_all_tables str: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
http_connection_mode str: HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
http_incoming_port str: Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
https_incoming_port str: Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
https_replacement_message str: Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
incoming_ip str: Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
incoming_ip6 str: Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
ipv6_status str: Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
message_upon_server_error str: Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
outgoing_ip str: Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
outgoing_ip6 str: Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
pac_file_data str: PAC file contents enclosed in quotes (maximum of 256K bytes).
pac_file_name str: Pac file name.
pac_file_server_port str: Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
pac_file_server_status str: Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
pac_file_through_https str: Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
pac_file_url str: PAC file access URL.
pac_policies Sequence[ExplicitPacPolicyArgs]: PAC policies. The structure of pac_policy block is documented below.
pref_dns_result str: Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
realm str: Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
sec_default_action str: Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
secure_web_proxy str: Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
secure_web_proxy_certs Sequence[ExplicitSecureWebProxyCertArgs]: Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
socks str: Enable/disable the SOCKS proxy. Valid values: enable, disable.
socks_incoming_port str: Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
ssl_algorithm str: Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
ssl_dh_bits str: Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
status str: Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
strict_guest str: Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
trace_auth_no_rsp str: Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
unknown_http_version str: Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
user_agent_detect str: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
vdomparam str: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

clientCert String: Enable/disable to request client certificate. Valid values: disable, enable.
dynamicSortSubtable String: Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
emptyCertAction String: Action of an empty client certificate. Valid values: accept, block, accept-unmanageable.
ftpIncomingPort String: Accept incoming FTP-over-HTTP requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
ftpOverHttp String: Enable to proxy FTP-over-HTTP sessions sent from a web browser. Valid values: enable, disable.
getAllTables String: Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
httpConnectionMode String: HTTP connection mode (default = static). Valid values: static, multiplex, serverpool.
httpIncomingPort String: Accept incoming HTTP requests on one or more ports (0 - 65535, default = 8080).
httpsIncomingPort String: Accept incoming HTTPS requests on one or more ports (0 - 65535, default = 0, use the same as HTTP).
httpsReplacementMessage String: Enable/disable sending the client a replacement message for HTTPS requests. Valid values: enable, disable.
incomingIp String: Restrict the explicit HTTP proxy to only accept sessions from this IP address. An interface must have this IP address.
incomingIp6 String: Restrict the explicit web proxy to only accept sessions from this IPv6 address. An interface must have this IPv6 address.
ipv6Status String: Enable/disable allowing an IPv6 web proxy destination in policies and all IPv6 related entries in this command. Valid values: enable, disable.
messageUponServerError String: Enable/disable displaying a replacement message when a server error is detected. Valid values: enable, disable.
outgoingIp String: Outgoing HTTP requests will have this IP address as their source address. An interface must have this IP address.
outgoingIp6 String: Outgoing HTTP requests will leave this IPv6. Multiple interfaces can be specified. Interfaces must have these IPv6 addresses.
pacFileData String: PAC file contents enclosed in quotes (maximum of 256K bytes).
pacFileName String: Pac file name.
pacFileServerPort String: Port number that PAC traffic from client web browsers uses to connect to the explicit web proxy (0 - 65535, default = 0; use the same as HTTP).
pacFileServerStatus String: Enable/disable Proxy Auto-Configuration (PAC) for users of this explicit proxy profile. Valid values: enable, disable.
pacFileThroughHttps String: Enable/disable to get Proxy Auto-Configuration (PAC) through HTTPS. Valid values: enable, disable.
pacFileUrl String: PAC file access URL.
pacPolicies List<Property Map>: PAC policies. The structure of pac_policy block is documented below.
prefDnsResult String: Prefer resolving addresses using the configured IPv4 or IPv6 DNS server (default = ipv4).
realm String: Authentication realm used to identify the explicit web proxy (maximum of 63 characters).
secDefaultAction String: Accept or deny explicit web proxy sessions when no web proxy firewall policy exists. Valid values: accept, deny.
secureWebProxy String: Enable/disable/require the secure web proxy for HTTP and HTTPS session. Valid values: disable, enable, secure.
secureWebProxyCerts List<Property Map>: Name of certificates for secure web proxy. The structure of secure_web_proxy_cert block is documented below.
socks String: Enable/disable the SOCKS proxy. Valid values: enable, disable.
socksIncomingPort String: Accept incoming SOCKS proxy requests on one or more ports (0 - 65535, default = 0; use the same as HTTP).
sslAlgorithm String: Relative strength of encryption algorithms accepted in HTTPS deep scan: high, medium, or low. Valid values: high, medium, low.
sslDhBits String: Bit-size of Diffie-Hellman (DH) prime used in DHE-RSA negotiation (default = 2048). Valid values: 768, 1024, 1536, 2048.
status String: Enable/disable the explicit Web proxy for HTTP and HTTPS session. Valid values: enable, disable.
strictGuest String: Enable/disable strict guest user checking by the explicit web proxy. Valid values: enable, disable.
traceAuthNoRsp String: Enable/disable logging timed-out authentication requests. Valid values: enable, disable.
unknownHttpVersion String: Either reject unknown HTTP traffic as malformed or handle unknown HTTP traffic as best as the proxy server can.
userAgentDetect String: Enable/disable to detect device type by HTTP user-agent if no client certificate provided. Valid values: disable, enable.
vdomparam String: Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

Supporting Types

ExplicitPacPolicy, ExplicitPacPolicyArgs

Comments string: Optional comments.
Dstaddrs List<Pulumiverse.Fortios.Webproxy.Inputs.ExplicitPacPolicyDstaddr>: Destination address objects. The structure of dstaddr block is documented below.
PacFileData string: PAC file contents enclosed in quotes (maximum of 256K bytes).
PacFileName string: Pac file name.
Policyid int: Policy ID.
Srcaddr6s List<Pulumiverse.Fortios.Webproxy.Inputs.ExplicitPacPolicySrcaddr6>: Source address6 objects. The structure of srcaddr6 block is documented below.
Srcaddrs List<Pulumiverse.Fortios.Webproxy.Inputs.ExplicitPacPolicySrcaddr>: Source address objects. The structure of srcaddr block is documented below.
Status string: Enable/disable policy. Valid values: enable, disable.

Comments string: Optional comments.
Dstaddrs []ExplicitPacPolicyDstaddr: Destination address objects. The structure of dstaddr block is documented below.
PacFileData string: PAC file contents enclosed in quotes (maximum of 256K bytes).
PacFileName string: Pac file name.
Policyid int: Policy ID.
Srcaddr6s []ExplicitPacPolicySrcaddr6: Source address6 objects. The structure of srcaddr6 block is documented below.
Srcaddrs []ExplicitPacPolicySrcaddr: Source address objects. The structure of srcaddr block is documented below.
Status string: Enable/disable policy. Valid values: enable, disable.

comments String: Optional comments.
dstaddrs List<ExplicitPacPolicyDstaddr>: Destination address objects. The structure of dstaddr block is documented below.
pacFileData String: PAC file contents enclosed in quotes (maximum of 256K bytes).
pacFileName String: Pac file name.
policyid Integer: Policy ID.
srcaddr6s List<ExplicitPacPolicySrcaddr6>: Source address6 objects. The structure of srcaddr6 block is documented below.
srcaddrs List<ExplicitPacPolicySrcaddr>: Source address objects. The structure of srcaddr block is documented below.
status String: Enable/disable policy. Valid values: enable, disable.

comments string: Optional comments.
dstaddrs ExplicitPacPolicyDstaddr[]: Destination address objects. The structure of dstaddr block is documented below.
pacFileData string: PAC file contents enclosed in quotes (maximum of 256K bytes).
pacFileName string: Pac file name.
policyid number: Policy ID.
srcaddr6s ExplicitPacPolicySrcaddr6[]: Source address6 objects. The structure of srcaddr6 block is documented below.
srcaddrs ExplicitPacPolicySrcaddr[]: Source address objects. The structure of srcaddr block is documented below.
status string: Enable/disable policy. Valid values: enable, disable.

comments str: Optional comments.
dstaddrs Sequence[ExplicitPacPolicyDstaddr]: Destination address objects. The structure of dstaddr block is documented below.
pac_file_data str: PAC file contents enclosed in quotes (maximum of 256K bytes).
pac_file_name str: Pac file name.
policyid int: Policy ID.
srcaddr6s Sequence[ExplicitPacPolicySrcaddr6]: Source address6 objects. The structure of srcaddr6 block is documented below.
srcaddrs Sequence[ExplicitPacPolicySrcaddr]: Source address objects. The structure of srcaddr block is documented below.
status str: Enable/disable policy. Valid values: enable, disable.

comments String: Optional comments.
dstaddrs List<Property Map>: Destination address objects. The structure of dstaddr block is documented below.
pacFileData String: PAC file contents enclosed in quotes (maximum of 256K bytes).
pacFileName String: Pac file name.
policyid Number: Policy ID.
srcaddr6s List<Property Map>: Source address6 objects. The structure of srcaddr6 block is documented below.
srcaddrs List<Property Map>: Source address objects. The structure of srcaddr block is documented below.
status String: Enable/disable policy. Valid values: enable, disable.

ExplicitPacPolicyDstaddr, ExplicitPacPolicyDstaddrArgs

Name string: Address name.

Name string: Address name.

name String: Address name.

name string: Address name.

name str: Address name.

name String: Address name.

ExplicitPacPolicySrcaddr, ExplicitPacPolicySrcaddrArgs

Name string: Address name.

Name string: Address name.

name String: Address name.

name string: Address name.

name str: Address name.

name String: Address name.

ExplicitPacPolicySrcaddr6, ExplicitPacPolicySrcaddr6Args

Name string

Name string

name String

name string

name str

name String

ExplicitSecureWebProxyCert, ExplicitSecureWebProxyCertArgs

Name string: Certificate list.

Name string: Certificate list.

name String: Certificate list.

name string: Certificate list.

name str: Certificate list.

name String: Certificate list.

Import

WebProxy Explicit can be imported using any of these accepted formats:

$ pulumi import fortios:webproxy/explicit:Explicit labelname WebProxyExplicit

If you do not want to import arguments of block:

$ export “FORTIOS_IMPORT_TABLE”=“false”

$ pulumi import fortios:webproxy/explicit:Explicit labelname WebProxyExplicit

$ unset “FORTIOS_IMPORT_TABLE”

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: fortios pulumiverse/pulumi-fortios
License: Apache-2.0
Notes: This Pulumi package is based on the fortios Terraform Provider.

Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse

pulumiverse/pulumi-fortios

fortios.webproxy.Explicit

On this page

On this page

Create Explicit Resource

Constructor syntax

Parameters

Constructor example

Explicit Resource Properties

Inputs

Outputs

Look up Existing Explicit Resource

Supporting Types

ExplicitPacPolicy, ExplicitPacPolicyArgs

ExplicitPacPolicyDstaddr, ExplicitPacPolicyDstaddrArgs

ExplicitPacPolicySrcaddr, ExplicitPacPolicySrcaddrArgs

ExplicitPacPolicySrcaddr6, ExplicitPacPolicySrcaddr6Args

ExplicitSecureWebProxyCert, ExplicitSecureWebProxyCertArgs

Import

Package Details

On this page

On this page