Docs Home
Strata Cloud Manager v0.3.2 published on Thursday, May 8, 2025 by Pulumi
scm.SecurityRule
Explore with Pulumi AI
Retrieves a config item.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as scm from "@pulumi/scm";
const example = new scm.SecurityRule("example", {});
import pulumi
import pulumi_scm as scm
example = scm.SecurityRule("example")
package main
import (
"github.com/pulumi/pulumi-scm/sdk/go/scm"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := scm.NewSecurityRule(ctx, "example", nil)
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Scm = Pulumi.Scm;
return await Deployment.RunAsync(() =>
{
var example = new Scm.SecurityRule("example");
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.scm.SecurityRule;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new SecurityRule("example");
}
}
resources:
example:
type: scm:SecurityRule
Create SecurityRule Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new SecurityRule(name: string, args: SecurityRuleArgs, opts?: CustomResourceOptions);@overload
def SecurityRule(resource_name: str,
args: SecurityRuleArgs,
opts: Optional[ResourceOptions] = None)
@overload
def SecurityRule(resource_name: str,
opts: Optional[ResourceOptions] = None,
froms: Optional[Sequence[str]] = None,
applications: Optional[Sequence[str]] = None,
categories: Optional[Sequence[str]] = None,
tos: Optional[Sequence[str]] = None,
sources: Optional[Sequence[str]] = None,
destinations: Optional[Sequence[str]] = None,
source_users: Optional[Sequence[str]] = None,
services: Optional[Sequence[str]] = None,
action: Optional[str] = None,
log_setting: Optional[str] = None,
disabled: Optional[bool] = None,
name: Optional[str] = None,
negate_destination: Optional[bool] = None,
negate_source: Optional[bool] = None,
position: Optional[str] = None,
profile_setting: Optional[SecurityRuleProfileSettingArgs] = None,
folder: Optional[str] = None,
snippet: Optional[str] = None,
source_hips: Optional[Sequence[str]] = None,
device: Optional[str] = None,
destination_hips: Optional[Sequence[str]] = None,
tags: Optional[Sequence[str]] = None,
description: Optional[str] = None)func NewSecurityRule(ctx *Context, name string, args SecurityRuleArgs, opts ...ResourceOption) (*SecurityRule, error)public SecurityRule(string name, SecurityRuleArgs args, CustomResourceOptions? opts = null)
public SecurityRule(String name, SecurityRuleArgs args)
public SecurityRule(String name, SecurityRuleArgs args, CustomResourceOptions options)
type: scm:SecurityRule
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args SecurityRuleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args SecurityRuleArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args SecurityRuleArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args SecurityRuleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args SecurityRuleArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var securityRuleResource = new Scm.SecurityRule("securityRuleResource", new()
{
Froms = new[]
{
"string",
},
Applications = new[]
{
"string",
},
Categories = new[]
{
"string",
},
Tos = new[]
{
"string",
},
Sources = new[]
{
"string",
},
Destinations = new[]
{
"string",
},
SourceUsers = new[]
{
"string",
},
Services = new[]
{
"string",
},
Action = "string",
LogSetting = "string",
Disabled = false,
Name = "string",
NegateDestination = false,
NegateSource = false,
Position = "string",
ProfileSetting = new Scm.Inputs.SecurityRuleProfileSettingArgs
{
Groups = new[]
{
"string",
},
},
Folder = "string",
Snippet = "string",
SourceHips = new[]
{
"string",
},
Device = "string",
DestinationHips = new[]
{
"string",
},
Tags = new[]
{
"string",
},
Description = "string",
});
example, err := scm.NewSecurityRule(ctx, "securityRuleResource", &scm.SecurityRuleArgs{
Froms: pulumi.StringArray{
pulumi.String("string"),
},
Applications: pulumi.StringArray{
pulumi.String("string"),
},
Categories: pulumi.StringArray{
pulumi.String("string"),
},
Tos: pulumi.StringArray{
pulumi.String("string"),
},
Sources: pulumi.StringArray{
pulumi.String("string"),
},
Destinations: pulumi.StringArray{
pulumi.String("string"),
},
SourceUsers: pulumi.StringArray{
pulumi.String("string"),
},
Services: pulumi.StringArray{
pulumi.String("string"),
},
Action: pulumi.String("string"),
LogSetting: pulumi.String("string"),
Disabled: pulumi.Bool(false),
Name: pulumi.String("string"),
NegateDestination: pulumi.Bool(false),
NegateSource: pulumi.Bool(false),
Position: pulumi.String("string"),
ProfileSetting: &scm.SecurityRuleProfileSettingArgs{
Groups: pulumi.StringArray{
pulumi.String("string"),
},
},
Folder: pulumi.String("string"),
Snippet: pulumi.String("string"),
SourceHips: pulumi.StringArray{
pulumi.String("string"),
},
Device: pulumi.String("string"),
DestinationHips: pulumi.StringArray{
pulumi.String("string"),
},
Tags: pulumi.StringArray{
pulumi.String("string"),
},
Description: pulumi.String("string"),
})
var securityRuleResource = new SecurityRule("securityRuleResource", SecurityRuleArgs.builder()
.froms("string")
.applications("string")
.categories("string")
.tos("string")
.sources("string")
.destinations("string")
.sourceUsers("string")
.services("string")
.action("string")
.logSetting("string")
.disabled(false)
.name("string")
.negateDestination(false)
.negateSource(false)
.position("string")
.profileSetting(SecurityRuleProfileSettingArgs.builder()
.groups("string")
.build())
.folder("string")
.snippet("string")
.sourceHips("string")
.device("string")
.destinationHips("string")
.tags("string")
.description("string")
.build());
security_rule_resource = scm.SecurityRule("securityRuleResource",
froms=["string"],
applications=["string"],
categories=["string"],
tos=["string"],
sources=["string"],
destinations=["string"],
source_users=["string"],
services=["string"],
action="string",
log_setting="string",
disabled=False,
name="string",
negate_destination=False,
negate_source=False,
position="string",
profile_setting={
"groups": ["string"],
},
folder="string",
snippet="string",
source_hips=["string"],
device="string",
destination_hips=["string"],
tags=["string"],
description="string")
const securityRuleResource = new scm.SecurityRule("securityRuleResource", {
froms: ["string"],
applications: ["string"],
categories: ["string"],
tos: ["string"],
sources: ["string"],
destinations: ["string"],
sourceUsers: ["string"],
services: ["string"],
action: "string",
logSetting: "string",
disabled: false,
name: "string",
negateDestination: false,
negateSource: false,
position: "string",
profileSetting: {
groups: ["string"],
},
folder: "string",
snippet: "string",
sourceHips: ["string"],
device: "string",
destinationHips: ["string"],
tags: ["string"],
description: "string",
});
type: scm:SecurityRule
properties:
action: string
applications:
- string
categories:
- string
description: string
destinationHips:
- string
destinations:
- string
device: string
disabled: false
folder: string
froms:
- string
logSetting: string
name: string
negateDestination: false
negateSource: false
position: string
profileSetting:
groups:
- string
services:
- string
snippet: string
sourceHips:
- string
sourceUsers:
- string
sources:
- string
tags:
- string
tos:
- string
SecurityRule Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The SecurityRule resource accepts the following input properties:
- Action string
- The action to be taken when the rule is matched. String must be one of these:
"allow","deny","drop","reset-client","reset-server","reset-both". - Applications List<string>
- The application(s) being accessed.
- Categories List<string>
- The URL categories being accessed.
- Destinations List<string>
- The destination address(es).
- Froms List<string>
- The source security zone(s).
- Services List<string>
- The service(s) being accessed.
- Source
Users List<string> - The source user(s) or group(s).
- Sources List<string>
- The source address(es).
- Tos List<string>
- The destination security zone(s).
- Description string
- The description of the security rule.
- Destination
Hips List<string> - The destination Host Integrity Profile(s).
- Device string
- The Device param.
- Disabled bool
- The state of the security rule. Default:
false. - Folder string
- The Folder param.
- Log
Setting string - The external log forwarding profile.
- Name string
- The name of the security rule.
- Negate
Destination bool - Negate the destination addresses(es). Default:
false. - Negate
Source bool - Negate the source address(es). Default:
false. - Position string
- The Position param. String must be one of these:
"pre","post". Default:"pre". - Profile
Setting SecurityRule Profile Setting - The security profile object.
- Snippet string
- The Snippet param.
- Source
Hips List<string> - The source Host Integrity Profile(s).
- List<string>
- The tags associated with the security rule.
- Action string
- The action to be taken when the rule is matched. String must be one of these:
"allow","deny","drop","reset-client","reset-server","reset-both". - Applications []string
- The application(s) being accessed.
- Categories []string
- The URL categories being accessed.
- Destinations []string
- The destination address(es).
- Froms []string
- The source security zone(s).
- Services []string
- The service(s) being accessed.
- Source
Users []string - The source user(s) or group(s).
- Sources []string
- The source address(es).
- Tos []string
- The destination security zone(s).
- Description string
- The description of the security rule.
- Destination
Hips []string - The destination Host Integrity Profile(s).
- Device string
- The Device param.
- Disabled bool
- The state of the security rule. Default:
false. - Folder string
- The Folder param.
- Log
Setting string - The external log forwarding profile.
- Name string
- The name of the security rule.
- Negate
Destination bool - Negate the destination addresses(es). Default:
false. - Negate
Source bool - Negate the source address(es). Default:
false. - Position string
- The Position param. String must be one of these:
"pre","post". Default:"pre". - Profile
Setting SecurityRule Profile Setting Args - The security profile object.
- Snippet string
- The Snippet param.
- Source
Hips []string - The source Host Integrity Profile(s).
- []string
- The tags associated with the security rule.
- action String
- The action to be taken when the rule is matched. String must be one of these:
"allow","deny","drop","reset-client","reset-server","reset-both". - applications List<String>
- The application(s) being accessed.
- categories List<String>
- The URL categories being accessed.
- destinations List<String>
- The destination address(es).
- froms List<String>
- The source security zone(s).
- services List<String>
- The service(s) being accessed.
- source
Users List<String> - The source user(s) or group(s).
- sources List<String>
- The source address(es).
- tos List<String>
- The destination security zone(s).
- description String
- The description of the security rule.
- destination
Hips List<String> - The destination Host Integrity Profile(s).
- device String
- The Device param.
- disabled Boolean
- The state of the security rule. Default:
false. - folder String
- The Folder param.
- log
Setting String - The external log forwarding profile.
- name String
- The name of the security rule.
- negate
Destination Boolean - Negate the destination addresses(es). Default:
false. - negate
Source Boolean - Negate the source address(es). Default:
false. - position String
- The Position param. String must be one of these:
"pre","post". Default:"pre". - profile
Setting SecurityRule Profile Setting - The security profile object.
- snippet String
- The Snippet param.
- source
Hips List<String> - The source Host Integrity Profile(s).
- List<String>
- The tags associated with the security rule.
- action string
- The action to be taken when the rule is matched. String must be one of these:
"allow","deny","drop","reset-client","reset-server","reset-both". - applications string[]
- The application(s) being accessed.
- categories string[]
- The URL categories being accessed.
- destinations string[]
- The destination address(es).
- froms string[]
- The source security zone(s).
- services string[]
- The service(s) being accessed.
- source
Users string[] - The source user(s) or group(s).
- sources string[]
- The source address(es).
- tos string[]
- The destination security zone(s).
- description string
- The description of the security rule.
- destination
Hips string[] - The destination Host Integrity Profile(s).
- device string
- The Device param.
- disabled boolean
- The state of the security rule. Default:
false. - folder string
- The Folder param.
- log
Setting string - The external log forwarding profile.
- name string
- The name of the security rule.
- negate
Destination boolean - Negate the destination addresses(es). Default:
false. - negate
Source boolean - Negate the source address(es). Default:
false. - position string
- The Position param. String must be one of these:
"pre","post". Default:"pre". - profile
Setting SecurityRule Profile Setting - The security profile object.
- snippet string
- The Snippet param.
- source
Hips string[] - The source Host Integrity Profile(s).
- string[]
- The tags associated with the security rule.
- action str
- The action to be taken when the rule is matched. String must be one of these:
"allow","deny","drop","reset-client","reset-server","reset-both". - applications Sequence[str]
- The application(s) being accessed.
- categories Sequence[str]
- The URL categories being accessed.
- destinations Sequence[str]
- The destination address(es).
- froms Sequence[str]
- The source security zone(s).
- services Sequence[str]
- The service(s) being accessed.
- source_
users Sequence[str] - The source user(s) or group(s).
- sources Sequence[str]
- The source address(es).
- tos Sequence[str]
- The destination security zone(s).
- description str
- The description of the security rule.
- destination_
hips Sequence[str] - The destination Host Integrity Profile(s).
- device str
- The Device param.
- disabled bool
- The state of the security rule. Default:
false. - folder str
- The Folder param.
- log_
setting str - The external log forwarding profile.
- name str
- The name of the security rule.
- negate_
destination bool - Negate the destination addresses(es). Default:
false. - negate_
source bool - Negate the source address(es). Default:
false. - position str
- The Position param. String must be one of these:
"pre","post". Default:"pre". - profile_
setting SecurityRule Profile Setting Args - The security profile object.
- snippet str
- The Snippet param.
- source_
hips Sequence[str] - The source Host Integrity Profile(s).
- Sequence[str]
- The tags associated with the security rule.
- action String
- The action to be taken when the rule is matched. String must be one of these:
"allow","deny","drop","reset-client","reset-server","reset-both". - applications List<String>
- The application(s) being accessed.
- categories List<String>
- The URL categories being accessed.
- destinations List<String>
- The destination address(es).
- froms List<String>
- The source security zone(s).
- services List<String>
- The service(s) being accessed.
- source
Users List<String> - The source user(s) or group(s).
- sources List<String>
- The source address(es).
- tos List<String>
- The destination security zone(s).
- description String
- The description of the security rule.
- destination
Hips List<String> - The destination Host Integrity Profile(s).
- device String
- The Device param.
- disabled Boolean
- The state of the security rule. Default:
false. - folder String
- The Folder param.
- log
Setting String - The external log forwarding profile.
- name String
- The name of the security rule.
- negate
Destination Boolean - Negate the destination addresses(es). Default:
false. - negate
Source Boolean - Negate the source address(es). Default:
false. - position String
- The Position param. String must be one of these:
"pre","post". Default:"pre". - profile
Setting Property Map - The security profile object.
- snippet String
- The Snippet param.
- source
Hips List<String> - The source Host Integrity Profile(s).
- List<String>
- The tags associated with the security rule.
Outputs
All input properties are implicitly available as output properties. Additionally, the SecurityRule resource produces the following output properties:
Look up Existing SecurityRule Resource
Get an existing SecurityRule resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: SecurityRuleState, opts?: CustomResourceOptions): SecurityRule@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
action: Optional[str] = None,
applications: Optional[Sequence[str]] = None,
categories: Optional[Sequence[str]] = None,
description: Optional[str] = None,
destination_hips: Optional[Sequence[str]] = None,
destinations: Optional[Sequence[str]] = None,
device: Optional[str] = None,
disabled: Optional[bool] = None,
folder: Optional[str] = None,
froms: Optional[Sequence[str]] = None,
log_setting: Optional[str] = None,
name: Optional[str] = None,
negate_destination: Optional[bool] = None,
negate_source: Optional[bool] = None,
position: Optional[str] = None,
profile_setting: Optional[SecurityRuleProfileSettingArgs] = None,
services: Optional[Sequence[str]] = None,
snippet: Optional[str] = None,
source_hips: Optional[Sequence[str]] = None,
source_users: Optional[Sequence[str]] = None,
sources: Optional[Sequence[str]] = None,
tags: Optional[Sequence[str]] = None,
tfid: Optional[str] = None,
tos: Optional[Sequence[str]] = None) -> SecurityRulefunc GetSecurityRule(ctx *Context, name string, id IDInput, state *SecurityRuleState, opts ...ResourceOption) (*SecurityRule, error)public static SecurityRule Get(string name, Input<string> id, SecurityRuleState? state, CustomResourceOptions? opts = null)public static SecurityRule get(String name, Output<String> id, SecurityRuleState state, CustomResourceOptions options)resources: _: type: scm:SecurityRule get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Action string
- The action to be taken when the rule is matched. String must be one of these:
"allow","deny","drop","reset-client","reset-server","reset-both". - Applications List<string>
- The application(s) being accessed.
- Categories List<string>
- The URL categories being accessed.
- Description string
- The description of the security rule.
- Destination
Hips List<string> - The destination Host Integrity Profile(s).
- Destinations List<string>
- The destination address(es).
- Device string
- The Device param.
- Disabled bool
- The state of the security rule. Default:
false. - Folder string
- The Folder param.
- Froms List<string>
- The source security zone(s).
- Log
Setting string - The external log forwarding profile.
- Name string
- The name of the security rule.
- Negate
Destination bool - Negate the destination addresses(es). Default:
false. - Negate
Source bool - Negate the source address(es). Default:
false. - Position string
- The Position param. String must be one of these:
"pre","post". Default:"pre". - Profile
Setting SecurityRule Profile Setting - The security profile object.
- Services List<string>
- The service(s) being accessed.
- Snippet string
- The Snippet param.
- Source
Hips List<string> - The source Host Integrity Profile(s).
- Source
Users List<string> - The source user(s) or group(s).
- Sources List<string>
- The source address(es).
- List<string>
- The tags associated with the security rule.
- Tfid string
- Tos List<string>
- The destination security zone(s).
- Action string
- The action to be taken when the rule is matched. String must be one of these:
"allow","deny","drop","reset-client","reset-server","reset-both". - Applications []string
- The application(s) being accessed.
- Categories []string
- The URL categories being accessed.
- Description string
- The description of the security rule.
- Destination
Hips []string - The destination Host Integrity Profile(s).
- Destinations []string
- The destination address(es).
- Device string
- The Device param.
- Disabled bool
- The state of the security rule. Default:
false. - Folder string
- The Folder param.
- Froms []string
- The source security zone(s).
- Log
Setting string - The external log forwarding profile.
- Name string
- The name of the security rule.
- Negate
Destination bool - Negate the destination addresses(es). Default:
false. - Negate
Source bool - Negate the source address(es). Default:
false. - Position string
- The Position param. String must be one of these:
"pre","post". Default:"pre". - Profile
Setting SecurityRule Profile Setting Args - The security profile object.
- Services []string
- The service(s) being accessed.
- Snippet string
- The Snippet param.
- Source
Hips []string - The source Host Integrity Profile(s).
- Source
Users []string - The source user(s) or group(s).
- Sources []string
- The source address(es).
- []string
- The tags associated with the security rule.
- Tfid string
- Tos []string
- The destination security zone(s).
- action String
- The action to be taken when the rule is matched. String must be one of these:
"allow","deny","drop","reset-client","reset-server","reset-both". - applications List<String>
- The application(s) being accessed.
- categories List<String>
- The URL categories being accessed.
- description String
- The description of the security rule.
- destination
Hips List<String> - The destination Host Integrity Profile(s).
- destinations List<String>
- The destination address(es).
- device String
- The Device param.
- disabled Boolean
- The state of the security rule. Default:
false. - folder String
- The Folder param.
- froms List<String>
- The source security zone(s).
- log
Setting String - The external log forwarding profile.
- name String
- The name of the security rule.
- negate
Destination Boolean - Negate the destination addresses(es). Default:
false. - negate
Source Boolean - Negate the source address(es). Default:
false. - position String
- The Position param. String must be one of these:
"pre","post". Default:"pre". - profile
Setting SecurityRule Profile Setting - The security profile object.
- services List<String>
- The service(s) being accessed.
- snippet String
- The Snippet param.
- source
Hips List<String> - The source Host Integrity Profile(s).
- source
Users List<String> - The source user(s) or group(s).
- sources List<String>
- The source address(es).
- List<String>
- The tags associated with the security rule.
- tfid String
- tos List<String>
- The destination security zone(s).
- action string
- The action to be taken when the rule is matched. String must be one of these:
"allow","deny","drop","reset-client","reset-server","reset-both". - applications string[]
- The application(s) being accessed.
- categories string[]
- The URL categories being accessed.
- description string
- The description of the security rule.
- destination
Hips string[] - The destination Host Integrity Profile(s).
- destinations string[]
- The destination address(es).
- device string
- The Device param.
- disabled boolean
- The state of the security rule. Default:
false. - folder string
- The Folder param.
- froms string[]
- The source security zone(s).
- log
Setting string - The external log forwarding profile.
- name string
- The name of the security rule.
- negate
Destination boolean - Negate the destination addresses(es). Default:
false. - negate
Source boolean - Negate the source address(es). Default:
false. - position string
- The Position param. String must be one of these:
"pre","post". Default:"pre". - profile
Setting SecurityRule Profile Setting - The security profile object.
- services string[]
- The service(s) being accessed.
- snippet string
- The Snippet param.
- source
Hips string[] - The source Host Integrity Profile(s).
- source
Users string[] - The source user(s) or group(s).
- sources string[]
- The source address(es).
- string[]
- The tags associated with the security rule.
- tfid string
- tos string[]
- The destination security zone(s).
- action str
- The action to be taken when the rule is matched. String must be one of these:
"allow","deny","drop","reset-client","reset-server","reset-both". - applications Sequence[str]
- The application(s) being accessed.
- categories Sequence[str]
- The URL categories being accessed.
- description str
- The description of the security rule.
- destination_
hips Sequence[str] - The destination Host Integrity Profile(s).
- destinations Sequence[str]
- The destination address(es).
- device str
- The Device param.
- disabled bool
- The state of the security rule. Default:
false. - folder str
- The Folder param.
- froms Sequence[str]
- The source security zone(s).
- log_
setting str - The external log forwarding profile.
- name str
- The name of the security rule.
- negate_
destination bool - Negate the destination addresses(es). Default:
false. - negate_
source bool - Negate the source address(es). Default:
false. - position str
- The Position param. String must be one of these:
"pre","post". Default:"pre". - profile_
setting SecurityRule Profile Setting Args - The security profile object.
- services Sequence[str]
- The service(s) being accessed.
- snippet str
- The Snippet param.
- source_
hips Sequence[str] - The source Host Integrity Profile(s).
- source_
users Sequence[str] - The source user(s) or group(s).
- sources Sequence[str]
- The source address(es).
- Sequence[str]
- The tags associated with the security rule.
- tfid str
- tos Sequence[str]
- The destination security zone(s).
- action String
- The action to be taken when the rule is matched. String must be one of these:
"allow","deny","drop","reset-client","reset-server","reset-both". - applications List<String>
- The application(s) being accessed.
- categories List<String>
- The URL categories being accessed.
- description String
- The description of the security rule.
- destination
Hips List<String> - The destination Host Integrity Profile(s).
- destinations List<String>
- The destination address(es).
- device String
- The Device param.
- disabled Boolean
- The state of the security rule. Default:
false. - folder String
- The Folder param.
- froms List<String>
- The source security zone(s).
- log
Setting String - The external log forwarding profile.
- name String
- The name of the security rule.
- negate
Destination Boolean - Negate the destination addresses(es). Default:
false. - negate
Source Boolean - Negate the source address(es). Default:
false. - position String
- The Position param. String must be one of these:
"pre","post". Default:"pre". - profile
Setting Property Map - The security profile object.
- services List<String>
- The service(s) being accessed.
- snippet String
- The Snippet param.
- source
Hips List<String> - The source Host Integrity Profile(s).
- source
Users List<String> - The source user(s) or group(s).
- sources List<String>
- The source address(es).
- List<String>
- The tags associated with the security rule.
- tfid String
- tos List<String>
- The destination security zone(s).
Supporting Types
SecurityRuleProfileSetting, SecurityRuleProfileSettingArgs
- Groups List<string>
- The security profile group.
- Groups []string
- The security profile group.
- groups List<String>
- The security profile group.
- groups string[]
- The security profile group.
- groups Sequence[str]
- The security profile group.
- groups List<String>
- The security profile group.
Package Details
- Repository
- scm pulumi/pulumi-scm
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
scmTerraform Provider.