1. Packages
  2. Strata Cloud Manager (Palo Alto SCM)
  3. API Docs
  4. SecurityRule
Strata Cloud Manager v0.1.4 published on Tuesday, Sep 24, 2024 by Pulumi

scm.SecurityRule

Explore with Pulumi AI

scm logo
Strata Cloud Manager v0.1.4 published on Tuesday, Sep 24, 2024 by Pulumi

    Retrieves a config item.

    Example Usage

    import * as pulumi from "@pulumi/pulumi";
    import * as scm from "@pulumi/scm";
    
    const example = new scm.SecurityRule("example", {});
    
    import pulumi
    import pulumi_scm as scm
    
    example = scm.SecurityRule("example")
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-scm/sdk/go/scm"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		_, err := scm.NewSecurityRule(ctx, "example", nil)
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Scm = Pulumi.Scm;
    
    return await Deployment.RunAsync(() => 
    {
        var example = new Scm.SecurityRule("example");
    
    });
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.scm.SecurityRule;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var example = new SecurityRule("example");
    
        }
    }
    
    resources:
      example:
        type: scm:SecurityRule
    

    Create SecurityRule Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new SecurityRule(name: string, args: SecurityRuleArgs, opts?: CustomResourceOptions);
    @overload
    def SecurityRule(resource_name: str,
                     args: SecurityRuleArgs,
                     opts: Optional[ResourceOptions] = None)
    
    @overload
    def SecurityRule(resource_name: str,
                     opts: Optional[ResourceOptions] = None,
                     froms: Optional[Sequence[str]] = None,
                     applications: Optional[Sequence[str]] = None,
                     categories: Optional[Sequence[str]] = None,
                     tos: Optional[Sequence[str]] = None,
                     sources: Optional[Sequence[str]] = None,
                     destinations: Optional[Sequence[str]] = None,
                     source_users: Optional[Sequence[str]] = None,
                     services: Optional[Sequence[str]] = None,
                     action: Optional[str] = None,
                     log_setting: Optional[str] = None,
                     disabled: Optional[bool] = None,
                     name: Optional[str] = None,
                     negate_destination: Optional[bool] = None,
                     negate_source: Optional[bool] = None,
                     position: Optional[str] = None,
                     profile_setting: Optional[SecurityRuleProfileSettingArgs] = None,
                     folder: Optional[str] = None,
                     snippet: Optional[str] = None,
                     source_hips: Optional[Sequence[str]] = None,
                     device: Optional[str] = None,
                     destination_hips: Optional[Sequence[str]] = None,
                     tags: Optional[Sequence[str]] = None,
                     description: Optional[str] = None)
    func NewSecurityRule(ctx *Context, name string, args SecurityRuleArgs, opts ...ResourceOption) (*SecurityRule, error)
    public SecurityRule(string name, SecurityRuleArgs args, CustomResourceOptions? opts = null)
    public SecurityRule(String name, SecurityRuleArgs args)
    public SecurityRule(String name, SecurityRuleArgs args, CustomResourceOptions options)
    
    type: scm:SecurityRule
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args SecurityRuleArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args SecurityRuleArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args SecurityRuleArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args SecurityRuleArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args SecurityRuleArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var securityRuleResource = new Scm.SecurityRule("securityRuleResource", new()
    {
        Froms = new[]
        {
            "string",
        },
        Applications = new[]
        {
            "string",
        },
        Categories = new[]
        {
            "string",
        },
        Tos = new[]
        {
            "string",
        },
        Sources = new[]
        {
            "string",
        },
        Destinations = new[]
        {
            "string",
        },
        SourceUsers = new[]
        {
            "string",
        },
        Services = new[]
        {
            "string",
        },
        Action = "string",
        LogSetting = "string",
        Disabled = false,
        Name = "string",
        NegateDestination = false,
        NegateSource = false,
        Position = "string",
        ProfileSetting = new Scm.Inputs.SecurityRuleProfileSettingArgs
        {
            Groups = new[]
            {
                "string",
            },
        },
        Folder = "string",
        Snippet = "string",
        SourceHips = new[]
        {
            "string",
        },
        Device = "string",
        DestinationHips = new[]
        {
            "string",
        },
        Tags = new[]
        {
            "string",
        },
        Description = "string",
    });
    
    example, err := scm.NewSecurityRule(ctx, "securityRuleResource", &scm.SecurityRuleArgs{
    	Froms: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	Applications: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	Categories: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	Tos: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	Sources: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	Destinations: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	SourceUsers: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	Services: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	Action:            pulumi.String("string"),
    	LogSetting:        pulumi.String("string"),
    	Disabled:          pulumi.Bool(false),
    	Name:              pulumi.String("string"),
    	NegateDestination: pulumi.Bool(false),
    	NegateSource:      pulumi.Bool(false),
    	Position:          pulumi.String("string"),
    	ProfileSetting: &scm.SecurityRuleProfileSettingArgs{
    		Groups: pulumi.StringArray{
    			pulumi.String("string"),
    		},
    	},
    	Folder:  pulumi.String("string"),
    	Snippet: pulumi.String("string"),
    	SourceHips: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	Device: pulumi.String("string"),
    	DestinationHips: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	Tags: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	Description: pulumi.String("string"),
    })
    
    var securityRuleResource = new SecurityRule("securityRuleResource", SecurityRuleArgs.builder()
        .froms("string")
        .applications("string")
        .categories("string")
        .tos("string")
        .sources("string")
        .destinations("string")
        .sourceUsers("string")
        .services("string")
        .action("string")
        .logSetting("string")
        .disabled(false)
        .name("string")
        .negateDestination(false)
        .negateSource(false)
        .position("string")
        .profileSetting(SecurityRuleProfileSettingArgs.builder()
            .groups("string")
            .build())
        .folder("string")
        .snippet("string")
        .sourceHips("string")
        .device("string")
        .destinationHips("string")
        .tags("string")
        .description("string")
        .build());
    
    security_rule_resource = scm.SecurityRule("securityRuleResource",
        froms=["string"],
        applications=["string"],
        categories=["string"],
        tos=["string"],
        sources=["string"],
        destinations=["string"],
        source_users=["string"],
        services=["string"],
        action="string",
        log_setting="string",
        disabled=False,
        name="string",
        negate_destination=False,
        negate_source=False,
        position="string",
        profile_setting=scm.SecurityRuleProfileSettingArgs(
            groups=["string"],
        ),
        folder="string",
        snippet="string",
        source_hips=["string"],
        device="string",
        destination_hips=["string"],
        tags=["string"],
        description="string")
    
    const securityRuleResource = new scm.SecurityRule("securityRuleResource", {
        froms: ["string"],
        applications: ["string"],
        categories: ["string"],
        tos: ["string"],
        sources: ["string"],
        destinations: ["string"],
        sourceUsers: ["string"],
        services: ["string"],
        action: "string",
        logSetting: "string",
        disabled: false,
        name: "string",
        negateDestination: false,
        negateSource: false,
        position: "string",
        profileSetting: {
            groups: ["string"],
        },
        folder: "string",
        snippet: "string",
        sourceHips: ["string"],
        device: "string",
        destinationHips: ["string"],
        tags: ["string"],
        description: "string",
    });
    
    type: scm:SecurityRule
    properties:
        action: string
        applications:
            - string
        categories:
            - string
        description: string
        destinationHips:
            - string
        destinations:
            - string
        device: string
        disabled: false
        folder: string
        froms:
            - string
        logSetting: string
        name: string
        negateDestination: false
        negateSource: false
        position: string
        profileSetting:
            groups:
                - string
        services:
            - string
        snippet: string
        sourceHips:
            - string
        sourceUsers:
            - string
        sources:
            - string
        tags:
            - string
        tos:
            - string
    

    SecurityRule Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    The SecurityRule resource accepts the following input properties:

    Action string
    The action to be taken when the rule is matched. String must be one of these: "allow", "deny", "drop", "reset-client", "reset-server", "reset-both".
    Applications List<string>
    The application(s) being accessed.
    Categories List<string>
    The URL categories being accessed.
    Destinations List<string>
    The destination address(es).
    Froms List<string>
    The source security zone(s).
    Services List<string>
    The service(s) being accessed.
    SourceUsers List<string>
    The source user(s) or group(s).
    Sources List<string>
    The source address(es).
    Tos List<string>
    The destination security zone(s).
    Description string
    The description of the security rule.
    DestinationHips List<string>
    The destination Host Integrity Profile(s).
    Device string
    The Device param.
    Disabled bool
    The state of the security rule. Default: false.
    Folder string
    The Folder param.
    LogSetting string
    The external log forwarding profile.
    Name string
    The name of the security rule.
    NegateDestination bool
    Negate the destination addresses(es). Default: false.
    NegateSource bool
    Negate the source address(es). Default: false.
    Position string
    The Position param. String must be one of these: "pre", "post". Default: "pre".
    ProfileSetting SecurityRuleProfileSetting
    The security profile object.
    Snippet string
    The Snippet param.
    SourceHips List<string>
    The source Host Integrity Profile(s).
    Tags List<string>
    The tags associated with the security rule.
    Action string
    The action to be taken when the rule is matched. String must be one of these: "allow", "deny", "drop", "reset-client", "reset-server", "reset-both".
    Applications []string
    The application(s) being accessed.
    Categories []string
    The URL categories being accessed.
    Destinations []string
    The destination address(es).
    Froms []string
    The source security zone(s).
    Services []string
    The service(s) being accessed.
    SourceUsers []string
    The source user(s) or group(s).
    Sources []string
    The source address(es).
    Tos []string
    The destination security zone(s).
    Description string
    The description of the security rule.
    DestinationHips []string
    The destination Host Integrity Profile(s).
    Device string
    The Device param.
    Disabled bool
    The state of the security rule. Default: false.
    Folder string
    The Folder param.
    LogSetting string
    The external log forwarding profile.
    Name string
    The name of the security rule.
    NegateDestination bool
    Negate the destination addresses(es). Default: false.
    NegateSource bool
    Negate the source address(es). Default: false.
    Position string
    The Position param. String must be one of these: "pre", "post". Default: "pre".
    ProfileSetting SecurityRuleProfileSettingArgs
    The security profile object.
    Snippet string
    The Snippet param.
    SourceHips []string
    The source Host Integrity Profile(s).
    Tags []string
    The tags associated with the security rule.
    action String
    The action to be taken when the rule is matched. String must be one of these: "allow", "deny", "drop", "reset-client", "reset-server", "reset-both".
    applications List<String>
    The application(s) being accessed.
    categories List<String>
    The URL categories being accessed.
    destinations List<String>
    The destination address(es).
    froms List<String>
    The source security zone(s).
    services List<String>
    The service(s) being accessed.
    sourceUsers List<String>
    The source user(s) or group(s).
    sources List<String>
    The source address(es).
    tos List<String>
    The destination security zone(s).
    description String
    The description of the security rule.
    destinationHips List<String>
    The destination Host Integrity Profile(s).
    device String
    The Device param.
    disabled Boolean
    The state of the security rule. Default: false.
    folder String
    The Folder param.
    logSetting String
    The external log forwarding profile.
    name String
    The name of the security rule.
    negateDestination Boolean
    Negate the destination addresses(es). Default: false.
    negateSource Boolean
    Negate the source address(es). Default: false.
    position String
    The Position param. String must be one of these: "pre", "post". Default: "pre".
    profileSetting SecurityRuleProfileSetting
    The security profile object.
    snippet String
    The Snippet param.
    sourceHips List<String>
    The source Host Integrity Profile(s).
    tags List<String>
    The tags associated with the security rule.
    action string
    The action to be taken when the rule is matched. String must be one of these: "allow", "deny", "drop", "reset-client", "reset-server", "reset-both".
    applications string[]
    The application(s) being accessed.
    categories string[]
    The URL categories being accessed.
    destinations string[]
    The destination address(es).
    froms string[]
    The source security zone(s).
    services string[]
    The service(s) being accessed.
    sourceUsers string[]
    The source user(s) or group(s).
    sources string[]
    The source address(es).
    tos string[]
    The destination security zone(s).
    description string
    The description of the security rule.
    destinationHips string[]
    The destination Host Integrity Profile(s).
    device string
    The Device param.
    disabled boolean
    The state of the security rule. Default: false.
    folder string
    The Folder param.
    logSetting string
    The external log forwarding profile.
    name string
    The name of the security rule.
    negateDestination boolean
    Negate the destination addresses(es). Default: false.
    negateSource boolean
    Negate the source address(es). Default: false.
    position string
    The Position param. String must be one of these: "pre", "post". Default: "pre".
    profileSetting SecurityRuleProfileSetting
    The security profile object.
    snippet string
    The Snippet param.
    sourceHips string[]
    The source Host Integrity Profile(s).
    tags string[]
    The tags associated with the security rule.
    action str
    The action to be taken when the rule is matched. String must be one of these: "allow", "deny", "drop", "reset-client", "reset-server", "reset-both".
    applications Sequence[str]
    The application(s) being accessed.
    categories Sequence[str]
    The URL categories being accessed.
    destinations Sequence[str]
    The destination address(es).
    froms Sequence[str]
    The source security zone(s).
    services Sequence[str]
    The service(s) being accessed.
    source_users Sequence[str]
    The source user(s) or group(s).
    sources Sequence[str]
    The source address(es).
    tos Sequence[str]
    The destination security zone(s).
    description str
    The description of the security rule.
    destination_hips Sequence[str]
    The destination Host Integrity Profile(s).
    device str
    The Device param.
    disabled bool
    The state of the security rule. Default: false.
    folder str
    The Folder param.
    log_setting str
    The external log forwarding profile.
    name str
    The name of the security rule.
    negate_destination bool
    Negate the destination addresses(es). Default: false.
    negate_source bool
    Negate the source address(es). Default: false.
    position str
    The Position param. String must be one of these: "pre", "post". Default: "pre".
    profile_setting SecurityRuleProfileSettingArgs
    The security profile object.
    snippet str
    The Snippet param.
    source_hips Sequence[str]
    The source Host Integrity Profile(s).
    tags Sequence[str]
    The tags associated with the security rule.
    action String
    The action to be taken when the rule is matched. String must be one of these: "allow", "deny", "drop", "reset-client", "reset-server", "reset-both".
    applications List<String>
    The application(s) being accessed.
    categories List<String>
    The URL categories being accessed.
    destinations List<String>
    The destination address(es).
    froms List<String>
    The source security zone(s).
    services List<String>
    The service(s) being accessed.
    sourceUsers List<String>
    The source user(s) or group(s).
    sources List<String>
    The source address(es).
    tos List<String>
    The destination security zone(s).
    description String
    The description of the security rule.
    destinationHips List<String>
    The destination Host Integrity Profile(s).
    device String
    The Device param.
    disabled Boolean
    The state of the security rule. Default: false.
    folder String
    The Folder param.
    logSetting String
    The external log forwarding profile.
    name String
    The name of the security rule.
    negateDestination Boolean
    Negate the destination addresses(es). Default: false.
    negateSource Boolean
    Negate the source address(es). Default: false.
    position String
    The Position param. String must be one of these: "pre", "post". Default: "pre".
    profileSetting Property Map
    The security profile object.
    snippet String
    The Snippet param.
    sourceHips List<String>
    The source Host Integrity Profile(s).
    tags List<String>
    The tags associated with the security rule.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the SecurityRule resource produces the following output properties:

    Id string
    The provider-assigned unique ID for this managed resource.
    Tfid string
    Id string
    The provider-assigned unique ID for this managed resource.
    Tfid string
    id String
    The provider-assigned unique ID for this managed resource.
    tfid String
    id string
    The provider-assigned unique ID for this managed resource.
    tfid string
    id str
    The provider-assigned unique ID for this managed resource.
    tfid str
    id String
    The provider-assigned unique ID for this managed resource.
    tfid String

    Look up Existing SecurityRule Resource

    Get an existing SecurityRule resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: SecurityRuleState, opts?: CustomResourceOptions): SecurityRule
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            action: Optional[str] = None,
            applications: Optional[Sequence[str]] = None,
            categories: Optional[Sequence[str]] = None,
            description: Optional[str] = None,
            destination_hips: Optional[Sequence[str]] = None,
            destinations: Optional[Sequence[str]] = None,
            device: Optional[str] = None,
            disabled: Optional[bool] = None,
            folder: Optional[str] = None,
            froms: Optional[Sequence[str]] = None,
            log_setting: Optional[str] = None,
            name: Optional[str] = None,
            negate_destination: Optional[bool] = None,
            negate_source: Optional[bool] = None,
            position: Optional[str] = None,
            profile_setting: Optional[SecurityRuleProfileSettingArgs] = None,
            services: Optional[Sequence[str]] = None,
            snippet: Optional[str] = None,
            source_hips: Optional[Sequence[str]] = None,
            source_users: Optional[Sequence[str]] = None,
            sources: Optional[Sequence[str]] = None,
            tags: Optional[Sequence[str]] = None,
            tfid: Optional[str] = None,
            tos: Optional[Sequence[str]] = None) -> SecurityRule
    func GetSecurityRule(ctx *Context, name string, id IDInput, state *SecurityRuleState, opts ...ResourceOption) (*SecurityRule, error)
    public static SecurityRule Get(string name, Input<string> id, SecurityRuleState? state, CustomResourceOptions? opts = null)
    public static SecurityRule get(String name, Output<String> id, SecurityRuleState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    Action string
    The action to be taken when the rule is matched. String must be one of these: "allow", "deny", "drop", "reset-client", "reset-server", "reset-both".
    Applications List<string>
    The application(s) being accessed.
    Categories List<string>
    The URL categories being accessed.
    Description string
    The description of the security rule.
    DestinationHips List<string>
    The destination Host Integrity Profile(s).
    Destinations List<string>
    The destination address(es).
    Device string
    The Device param.
    Disabled bool
    The state of the security rule. Default: false.
    Folder string
    The Folder param.
    Froms List<string>
    The source security zone(s).
    LogSetting string
    The external log forwarding profile.
    Name string
    The name of the security rule.
    NegateDestination bool
    Negate the destination addresses(es). Default: false.
    NegateSource bool
    Negate the source address(es). Default: false.
    Position string
    The Position param. String must be one of these: "pre", "post". Default: "pre".
    ProfileSetting SecurityRuleProfileSetting
    The security profile object.
    Services List<string>
    The service(s) being accessed.
    Snippet string
    The Snippet param.
    SourceHips List<string>
    The source Host Integrity Profile(s).
    SourceUsers List<string>
    The source user(s) or group(s).
    Sources List<string>
    The source address(es).
    Tags List<string>
    The tags associated with the security rule.
    Tfid string
    Tos List<string>
    The destination security zone(s).
    Action string
    The action to be taken when the rule is matched. String must be one of these: "allow", "deny", "drop", "reset-client", "reset-server", "reset-both".
    Applications []string
    The application(s) being accessed.
    Categories []string
    The URL categories being accessed.
    Description string
    The description of the security rule.
    DestinationHips []string
    The destination Host Integrity Profile(s).
    Destinations []string
    The destination address(es).
    Device string
    The Device param.
    Disabled bool
    The state of the security rule. Default: false.
    Folder string
    The Folder param.
    Froms []string
    The source security zone(s).
    LogSetting string
    The external log forwarding profile.
    Name string
    The name of the security rule.
    NegateDestination bool
    Negate the destination addresses(es). Default: false.
    NegateSource bool
    Negate the source address(es). Default: false.
    Position string
    The Position param. String must be one of these: "pre", "post". Default: "pre".
    ProfileSetting SecurityRuleProfileSettingArgs
    The security profile object.
    Services []string
    The service(s) being accessed.
    Snippet string
    The Snippet param.
    SourceHips []string
    The source Host Integrity Profile(s).
    SourceUsers []string
    The source user(s) or group(s).
    Sources []string
    The source address(es).
    Tags []string
    The tags associated with the security rule.
    Tfid string
    Tos []string
    The destination security zone(s).
    action String
    The action to be taken when the rule is matched. String must be one of these: "allow", "deny", "drop", "reset-client", "reset-server", "reset-both".
    applications List<String>
    The application(s) being accessed.
    categories List<String>
    The URL categories being accessed.
    description String
    The description of the security rule.
    destinationHips List<String>
    The destination Host Integrity Profile(s).
    destinations List<String>
    The destination address(es).
    device String
    The Device param.
    disabled Boolean
    The state of the security rule. Default: false.
    folder String
    The Folder param.
    froms List<String>
    The source security zone(s).
    logSetting String
    The external log forwarding profile.
    name String
    The name of the security rule.
    negateDestination Boolean
    Negate the destination addresses(es). Default: false.
    negateSource Boolean
    Negate the source address(es). Default: false.
    position String
    The Position param. String must be one of these: "pre", "post". Default: "pre".
    profileSetting SecurityRuleProfileSetting
    The security profile object.
    services List<String>
    The service(s) being accessed.
    snippet String
    The Snippet param.
    sourceHips List<String>
    The source Host Integrity Profile(s).
    sourceUsers List<String>
    The source user(s) or group(s).
    sources List<String>
    The source address(es).
    tags List<String>
    The tags associated with the security rule.
    tfid String
    tos List<String>
    The destination security zone(s).
    action string
    The action to be taken when the rule is matched. String must be one of these: "allow", "deny", "drop", "reset-client", "reset-server", "reset-both".
    applications string[]
    The application(s) being accessed.
    categories string[]
    The URL categories being accessed.
    description string
    The description of the security rule.
    destinationHips string[]
    The destination Host Integrity Profile(s).
    destinations string[]
    The destination address(es).
    device string
    The Device param.
    disabled boolean
    The state of the security rule. Default: false.
    folder string
    The Folder param.
    froms string[]
    The source security zone(s).
    logSetting string
    The external log forwarding profile.
    name string
    The name of the security rule.
    negateDestination boolean
    Negate the destination addresses(es). Default: false.
    negateSource boolean
    Negate the source address(es). Default: false.
    position string
    The Position param. String must be one of these: "pre", "post". Default: "pre".
    profileSetting SecurityRuleProfileSetting
    The security profile object.
    services string[]
    The service(s) being accessed.
    snippet string
    The Snippet param.
    sourceHips string[]
    The source Host Integrity Profile(s).
    sourceUsers string[]
    The source user(s) or group(s).
    sources string[]
    The source address(es).
    tags string[]
    The tags associated with the security rule.
    tfid string
    tos string[]
    The destination security zone(s).
    action str
    The action to be taken when the rule is matched. String must be one of these: "allow", "deny", "drop", "reset-client", "reset-server", "reset-both".
    applications Sequence[str]
    The application(s) being accessed.
    categories Sequence[str]
    The URL categories being accessed.
    description str
    The description of the security rule.
    destination_hips Sequence[str]
    The destination Host Integrity Profile(s).
    destinations Sequence[str]
    The destination address(es).
    device str
    The Device param.
    disabled bool
    The state of the security rule. Default: false.
    folder str
    The Folder param.
    froms Sequence[str]
    The source security zone(s).
    log_setting str
    The external log forwarding profile.
    name str
    The name of the security rule.
    negate_destination bool
    Negate the destination addresses(es). Default: false.
    negate_source bool
    Negate the source address(es). Default: false.
    position str
    The Position param. String must be one of these: "pre", "post". Default: "pre".
    profile_setting SecurityRuleProfileSettingArgs
    The security profile object.
    services Sequence[str]
    The service(s) being accessed.
    snippet str
    The Snippet param.
    source_hips Sequence[str]
    The source Host Integrity Profile(s).
    source_users Sequence[str]
    The source user(s) or group(s).
    sources Sequence[str]
    The source address(es).
    tags Sequence[str]
    The tags associated with the security rule.
    tfid str
    tos Sequence[str]
    The destination security zone(s).
    action String
    The action to be taken when the rule is matched. String must be one of these: "allow", "deny", "drop", "reset-client", "reset-server", "reset-both".
    applications List<String>
    The application(s) being accessed.
    categories List<String>
    The URL categories being accessed.
    description String
    The description of the security rule.
    destinationHips List<String>
    The destination Host Integrity Profile(s).
    destinations List<String>
    The destination address(es).
    device String
    The Device param.
    disabled Boolean
    The state of the security rule. Default: false.
    folder String
    The Folder param.
    froms List<String>
    The source security zone(s).
    logSetting String
    The external log forwarding profile.
    name String
    The name of the security rule.
    negateDestination Boolean
    Negate the destination addresses(es). Default: false.
    negateSource Boolean
    Negate the source address(es). Default: false.
    position String
    The Position param. String must be one of these: "pre", "post". Default: "pre".
    profileSetting Property Map
    The security profile object.
    services List<String>
    The service(s) being accessed.
    snippet String
    The Snippet param.
    sourceHips List<String>
    The source Host Integrity Profile(s).
    sourceUsers List<String>
    The source user(s) or group(s).
    sources List<String>
    The source address(es).
    tags List<String>
    The tags associated with the security rule.
    tfid String
    tos List<String>
    The destination security zone(s).

    Supporting Types

    SecurityRuleProfileSetting, SecurityRuleProfileSettingArgs

    Groups List<string>
    The security profile group.
    Groups []string
    The security profile group.
    groups List<String>
    The security profile group.
    groups string[]
    The security profile group.
    groups Sequence[str]
    The security profile group.
    groups List<String>
    The security profile group.

    Package Details

    Repository
    scm pulumi/pulumi-scm
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the scm Terraform Provider.
    scm logo
    Strata Cloud Manager v0.1.4 published on Tuesday, Sep 24, 2024 by Pulumi