fortimanager 1.13.0, Mar 13 25

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

fortimanager.ObjectFirewallIppool

Explore with Pulumi AI

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as fortimanager from "@pulumi/fortimanager";

const trname = new fortimanager.ObjectFirewallIppool("trname", {
    comments: "terraform-comment",
    endip: "222.222.222.254",
    startip: "222.222.222.0",
    type: "overload",
});

import pulumi
import pulumi_fortimanager as fortimanager

trname = fortimanager.ObjectFirewallIppool("trname",
    comments="terraform-comment",
    endip="222.222.222.254",
    startip="222.222.222.0",
    type="overload")

package main

import (
	"github.com/pulumi/pulumi-terraform-provider/sdks/go/fortimanager/fortimanager"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := fortimanager.NewObjectFirewallIppool(ctx, "trname", &fortimanager.ObjectFirewallIppoolArgs{
			Comments: pulumi.String("terraform-comment"),
			Endip:    pulumi.String("222.222.222.254"),
			Startip:  pulumi.String("222.222.222.0"),
			Type:     pulumi.String("overload"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Fortimanager = Pulumi.Fortimanager;

return await Deployment.RunAsync(() => 
{
    var trname = new Fortimanager.ObjectFirewallIppool("trname", new()
    {
        Comments = "terraform-comment",
        Endip = "222.222.222.254",
        Startip = "222.222.222.0",
        Type = "overload",
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.fortimanager.ObjectFirewallIppool;
import com.pulumi.fortimanager.ObjectFirewallIppoolArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var trname = new ObjectFirewallIppool("trname", ObjectFirewallIppoolArgs.builder()
            .comments("terraform-comment")
            .endip("222.222.222.254")
            .startip("222.222.222.0")
            .type("overload")
            .build());

    }
}

resources:
  trname:
    type: fortimanager:ObjectFirewallIppool
    properties:
      comments: terraform-comment
      endip: 222.222.222.254
      startip: 222.222.222.0
      type: overload

Create ObjectFirewallIppool Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new ObjectFirewallIppool(name: string, args?: ObjectFirewallIppoolArgs, opts?: CustomResourceOptions);

@overload
def ObjectFirewallIppool(resource_name: str,
                         args: Optional[ObjectFirewallIppoolArgs] = None,
                         opts: Optional[ResourceOptions] = None)

@overload
def ObjectFirewallIppool(resource_name: str,
                         opts: Optional[ResourceOptions] = None,
                         add_nat64_route: Optional[str] = None,
                         adom: Optional[str] = None,
                         arp_intf: Optional[str] = None,
                         arp_reply: Optional[str] = None,
                         associated_interface: Optional[str] = None,
                         block_size: Optional[float] = None,
                         cgn_block_size: Optional[float] = None,
                         cgn_client_endip: Optional[str] = None,
                         cgn_client_ipv6shift: Optional[float] = None,
                         cgn_client_startip: Optional[str] = None,
                         cgn_fixedalloc: Optional[str] = None,
                         cgn_overload: Optional[str] = None,
                         cgn_port_end: Optional[float] = None,
                         cgn_port_start: Optional[float] = None,
                         cgn_spa: Optional[str] = None,
                         client_prefix_length: Optional[float] = None,
                         comments: Optional[str] = None,
                         dynamic_mappings: Optional[Sequence[ObjectFirewallIppoolDynamicMappingArgs]] = None,
                         dynamic_sort_subtable: Optional[str] = None,
                         endip: Optional[str] = None,
                         endport: Optional[float] = None,
                         exclude_ips: Optional[Sequence[str]] = None,
                         icmp_session_quota: Optional[float] = None,
                         name: Optional[str] = None,
                         nat64: Optional[str] = None,
                         num_blocks_per_user: Optional[float] = None,
                         object_firewall_ippool_id: Optional[str] = None,
                         pba_interim_log: Optional[float] = None,
                         pba_timeout: Optional[float] = None,
                         permit_any_host: Optional[str] = None,
                         port_per_user: Optional[float] = None,
                         privileged_port_use_pba: Optional[str] = None,
                         scopetype: Optional[str] = None,
                         source_endip: Optional[str] = None,
                         source_prefix6: Optional[str] = None,
                         source_startip: Optional[str] = None,
                         startip: Optional[str] = None,
                         startport: Optional[float] = None,
                         subnet_broadcast_in_ippool: Optional[str] = None,
                         tcp_session_quota: Optional[float] = None,
                         type: Optional[str] = None,
                         udp_session_quota: Optional[float] = None,
                         utilization_alarm_clear: Optional[float] = None,
                         utilization_alarm_raise: Optional[float] = None)

func NewObjectFirewallIppool(ctx *Context, name string, args *ObjectFirewallIppoolArgs, opts ...ResourceOption) (*ObjectFirewallIppool, error)

public ObjectFirewallIppool(string name, ObjectFirewallIppoolArgs? args = null, CustomResourceOptions? opts = null)

public ObjectFirewallIppool(String name, ObjectFirewallIppoolArgs args)
public ObjectFirewallIppool(String name, ObjectFirewallIppoolArgs args, CustomResourceOptions options)

type: fortimanager:ObjectFirewallIppool
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args ObjectFirewallIppoolArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args ObjectFirewallIppoolArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args ObjectFirewallIppoolArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ObjectFirewallIppoolArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args ObjectFirewallIppoolArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var objectFirewallIppoolResource = new Fortimanager.ObjectFirewallIppool("objectFirewallIppoolResource", new()
{
    AddNat64Route = "string",
    Adom = "string",
    ArpIntf = "string",
    ArpReply = "string",
    AssociatedInterface = "string",
    BlockSize = 0,
    CgnBlockSize = 0,
    CgnClientEndip = "string",
    CgnClientIpv6shift = 0,
    CgnClientStartip = "string",
    CgnFixedalloc = "string",
    CgnOverload = "string",
    CgnPortEnd = 0,
    CgnPortStart = 0,
    CgnSpa = "string",
    ClientPrefixLength = 0,
    Comments = "string",
    DynamicMappings = new[]
    {
        new Fortimanager.Inputs.ObjectFirewallIppoolDynamicMappingArgs
        {
            _scopes = new[]
            {
                new Fortimanager.Inputs.ObjectFirewallIppoolDynamicMapping_ScopeArgs
                {
                    Name = "string",
                    Vdom = "string",
                },
            },
            AddNat64Route = "string",
            ArpIntf = "string",
            ArpReply = "string",
            AssociatedInterface = "string",
            BlockSize = 0,
            CgnBlockSize = 0,
            CgnClientEndip = "string",
            CgnClientIpv6shift = 0,
            CgnClientStartip = "string",
            CgnFixedalloc = "string",
            CgnOverload = "string",
            CgnPortEnd = 0,
            CgnPortStart = 0,
            CgnSpa = "string",
            ClientPrefixLength = 0,
            Comments = "string",
            Endip = "string",
            Endport = 0,
            ExcludeIps = new[]
            {
                "string",
            },
            IcmpSessionQuota = 0,
            Nat64 = "string",
            NumBlocksPerUser = 0,
            PbaInterimLog = 0,
            PbaTimeout = 0,
            PermitAnyHost = "string",
            PortPerUser = 0,
            PrivilegedPortUsePba = "string",
            SourceEndip = "string",
            SourcePrefix6 = "string",
            SourceStartip = "string",
            Startip = "string",
            Startport = 0,
            SubnetBroadcastInIppool = "string",
            TcpSessionQuota = 0,
            Type = "string",
            UdpSessionQuota = 0,
            UtilizationAlarmClear = 0,
            UtilizationAlarmRaise = 0,
        },
    },
    DynamicSortSubtable = "string",
    Endip = "string",
    Endport = 0,
    ExcludeIps = new[]
    {
        "string",
    },
    IcmpSessionQuota = 0,
    Name = "string",
    Nat64 = "string",
    NumBlocksPerUser = 0,
    ObjectFirewallIppoolId = "string",
    PbaInterimLog = 0,
    PbaTimeout = 0,
    PermitAnyHost = "string",
    PortPerUser = 0,
    PrivilegedPortUsePba = "string",
    Scopetype = "string",
    SourceEndip = "string",
    SourcePrefix6 = "string",
    SourceStartip = "string",
    Startip = "string",
    Startport = 0,
    SubnetBroadcastInIppool = "string",
    TcpSessionQuota = 0,
    Type = "string",
    UdpSessionQuota = 0,
    UtilizationAlarmClear = 0,
    UtilizationAlarmRaise = 0,
});

example, err := fortimanager.NewObjectFirewallIppool(ctx, "objectFirewallIppoolResource", &fortimanager.ObjectFirewallIppoolArgs{
AddNat64Route: pulumi.String("string"),
Adom: pulumi.String("string"),
ArpIntf: pulumi.String("string"),
ArpReply: pulumi.String("string"),
AssociatedInterface: pulumi.String("string"),
BlockSize: pulumi.Float64(0),
CgnBlockSize: pulumi.Float64(0),
CgnClientEndip: pulumi.String("string"),
CgnClientIpv6shift: pulumi.Float64(0),
CgnClientStartip: pulumi.String("string"),
CgnFixedalloc: pulumi.String("string"),
CgnOverload: pulumi.String("string"),
CgnPortEnd: pulumi.Float64(0),
CgnPortStart: pulumi.Float64(0),
CgnSpa: pulumi.String("string"),
ClientPrefixLength: pulumi.Float64(0),
Comments: pulumi.String("string"),
DynamicMappings: .ObjectFirewallIppoolDynamicMappingTypeArray{
&.ObjectFirewallIppoolDynamicMappingTypeArgs{
_scopes: .ObjectFirewallIppoolDynamicMapping_ScopeArray{
&.ObjectFirewallIppoolDynamicMapping_ScopeArgs{
Name: pulumi.String("string"),
Vdom: pulumi.String("string"),
},
},
AddNat64Route: pulumi.String("string"),
ArpIntf: pulumi.String("string"),
ArpReply: pulumi.String("string"),
AssociatedInterface: pulumi.String("string"),
BlockSize: pulumi.Float64(0),
CgnBlockSize: pulumi.Float64(0),
CgnClientEndip: pulumi.String("string"),
CgnClientIpv6shift: pulumi.Float64(0),
CgnClientStartip: pulumi.String("string"),
CgnFixedalloc: pulumi.String("string"),
CgnOverload: pulumi.String("string"),
CgnPortEnd: pulumi.Float64(0),
CgnPortStart: pulumi.Float64(0),
CgnSpa: pulumi.String("string"),
ClientPrefixLength: pulumi.Float64(0),
Comments: pulumi.String("string"),
Endip: pulumi.String("string"),
Endport: pulumi.Float64(0),
ExcludeIps: pulumi.StringArray{
pulumi.String("string"),
},
IcmpSessionQuota: pulumi.Float64(0),
Nat64: pulumi.String("string"),
NumBlocksPerUser: pulumi.Float64(0),
PbaInterimLog: pulumi.Float64(0),
PbaTimeout: pulumi.Float64(0),
PermitAnyHost: pulumi.String("string"),
PortPerUser: pulumi.Float64(0),
PrivilegedPortUsePba: pulumi.String("string"),
SourceEndip: pulumi.String("string"),
SourcePrefix6: pulumi.String("string"),
SourceStartip: pulumi.String("string"),
Startip: pulumi.String("string"),
Startport: pulumi.Float64(0),
SubnetBroadcastInIppool: pulumi.String("string"),
TcpSessionQuota: pulumi.Float64(0),
Type: pulumi.String("string"),
UdpSessionQuota: pulumi.Float64(0),
UtilizationAlarmClear: pulumi.Float64(0),
UtilizationAlarmRaise: pulumi.Float64(0),
},
},
DynamicSortSubtable: pulumi.String("string"),
Endip: pulumi.String("string"),
Endport: pulumi.Float64(0),
ExcludeIps: pulumi.StringArray{
pulumi.String("string"),
},
IcmpSessionQuota: pulumi.Float64(0),
Name: pulumi.String("string"),
Nat64: pulumi.String("string"),
NumBlocksPerUser: pulumi.Float64(0),
ObjectFirewallIppoolId: pulumi.String("string"),
PbaInterimLog: pulumi.Float64(0),
PbaTimeout: pulumi.Float64(0),
PermitAnyHost: pulumi.String("string"),
PortPerUser: pulumi.Float64(0),
PrivilegedPortUsePba: pulumi.String("string"),
Scopetype: pulumi.String("string"),
SourceEndip: pulumi.String("string"),
SourcePrefix6: pulumi.String("string"),
SourceStartip: pulumi.String("string"),
Startip: pulumi.String("string"),
Startport: pulumi.Float64(0),
SubnetBroadcastInIppool: pulumi.String("string"),
TcpSessionQuota: pulumi.Float64(0),
Type: pulumi.String("string"),
UdpSessionQuota: pulumi.Float64(0),
UtilizationAlarmClear: pulumi.Float64(0),
UtilizationAlarmRaise: pulumi.Float64(0),
})

var objectFirewallIppoolResource = new ObjectFirewallIppool("objectFirewallIppoolResource", ObjectFirewallIppoolArgs.builder()
    .addNat64Route("string")
    .adom("string")
    .arpIntf("string")
    .arpReply("string")
    .associatedInterface("string")
    .blockSize(0)
    .cgnBlockSize(0)
    .cgnClientEndip("string")
    .cgnClientIpv6shift(0)
    .cgnClientStartip("string")
    .cgnFixedalloc("string")
    .cgnOverload("string")
    .cgnPortEnd(0)
    .cgnPortStart(0)
    .cgnSpa("string")
    .clientPrefixLength(0)
    .comments("string")
    .dynamicMappings(ObjectFirewallIppoolDynamicMappingArgs.builder()
        ._scopes(ObjectFirewallIppoolDynamicMapping_ScopeArgs.builder()
            .name("string")
            .vdom("string")
            .build())
        .addNat64Route("string")
        .arpIntf("string")
        .arpReply("string")
        .associatedInterface("string")
        .blockSize(0)
        .cgnBlockSize(0)
        .cgnClientEndip("string")
        .cgnClientIpv6shift(0)
        .cgnClientStartip("string")
        .cgnFixedalloc("string")
        .cgnOverload("string")
        .cgnPortEnd(0)
        .cgnPortStart(0)
        .cgnSpa("string")
        .clientPrefixLength(0)
        .comments("string")
        .endip("string")
        .endport(0)
        .excludeIps("string")
        .icmpSessionQuota(0)
        .nat64("string")
        .numBlocksPerUser(0)
        .pbaInterimLog(0)
        .pbaTimeout(0)
        .permitAnyHost("string")
        .portPerUser(0)
        .privilegedPortUsePba("string")
        .sourceEndip("string")
        .sourcePrefix6("string")
        .sourceStartip("string")
        .startip("string")
        .startport(0)
        .subnetBroadcastInIppool("string")
        .tcpSessionQuota(0)
        .type("string")
        .udpSessionQuota(0)
        .utilizationAlarmClear(0)
        .utilizationAlarmRaise(0)
        .build())
    .dynamicSortSubtable("string")
    .endip("string")
    .endport(0)
    .excludeIps("string")
    .icmpSessionQuota(0)
    .name("string")
    .nat64("string")
    .numBlocksPerUser(0)
    .objectFirewallIppoolId("string")
    .pbaInterimLog(0)
    .pbaTimeout(0)
    .permitAnyHost("string")
    .portPerUser(0)
    .privilegedPortUsePba("string")
    .scopetype("string")
    .sourceEndip("string")
    .sourcePrefix6("string")
    .sourceStartip("string")
    .startip("string")
    .startport(0)
    .subnetBroadcastInIppool("string")
    .tcpSessionQuota(0)
    .type("string")
    .udpSessionQuota(0)
    .utilizationAlarmClear(0)
    .utilizationAlarmRaise(0)
    .build());

object_firewall_ippool_resource = fortimanager.ObjectFirewallIppool("objectFirewallIppoolResource",
    add_nat64_route="string",
    adom="string",
    arp_intf="string",
    arp_reply="string",
    associated_interface="string",
    block_size=0,
    cgn_block_size=0,
    cgn_client_endip="string",
    cgn_client_ipv6shift=0,
    cgn_client_startip="string",
    cgn_fixedalloc="string",
    cgn_overload="string",
    cgn_port_end=0,
    cgn_port_start=0,
    cgn_spa="string",
    client_prefix_length=0,
    comments="string",
    dynamic_mappings=[{
        "_scopes": [{
            "name": "string",
            "vdom": "string",
        }],
        "add_nat64_route": "string",
        "arp_intf": "string",
        "arp_reply": "string",
        "associated_interface": "string",
        "block_size": 0,
        "cgn_block_size": 0,
        "cgn_client_endip": "string",
        "cgn_client_ipv6shift": 0,
        "cgn_client_startip": "string",
        "cgn_fixedalloc": "string",
        "cgn_overload": "string",
        "cgn_port_end": 0,
        "cgn_port_start": 0,
        "cgn_spa": "string",
        "client_prefix_length": 0,
        "comments": "string",
        "endip": "string",
        "endport": 0,
        "exclude_ips": ["string"],
        "icmp_session_quota": 0,
        "nat64": "string",
        "num_blocks_per_user": 0,
        "pba_interim_log": 0,
        "pba_timeout": 0,
        "permit_any_host": "string",
        "port_per_user": 0,
        "privileged_port_use_pba": "string",
        "source_endip": "string",
        "source_prefix6": "string",
        "source_startip": "string",
        "startip": "string",
        "startport": 0,
        "subnet_broadcast_in_ippool": "string",
        "tcp_session_quota": 0,
        "type": "string",
        "udp_session_quota": 0,
        "utilization_alarm_clear": 0,
        "utilization_alarm_raise": 0,
    }],
    dynamic_sort_subtable="string",
    endip="string",
    endport=0,
    exclude_ips=["string"],
    icmp_session_quota=0,
    name="string",
    nat64="string",
    num_blocks_per_user=0,
    object_firewall_ippool_id="string",
    pba_interim_log=0,
    pba_timeout=0,
    permit_any_host="string",
    port_per_user=0,
    privileged_port_use_pba="string",
    scopetype="string",
    source_endip="string",
    source_prefix6="string",
    source_startip="string",
    startip="string",
    startport=0,
    subnet_broadcast_in_ippool="string",
    tcp_session_quota=0,
    type="string",
    udp_session_quota=0,
    utilization_alarm_clear=0,
    utilization_alarm_raise=0)

const objectFirewallIppoolResource = new fortimanager.ObjectFirewallIppool("objectFirewallIppoolResource", {
    addNat64Route: "string",
    adom: "string",
    arpIntf: "string",
    arpReply: "string",
    associatedInterface: "string",
    blockSize: 0,
    cgnBlockSize: 0,
    cgnClientEndip: "string",
    cgnClientIpv6shift: 0,
    cgnClientStartip: "string",
    cgnFixedalloc: "string",
    cgnOverload: "string",
    cgnPortEnd: 0,
    cgnPortStart: 0,
    cgnSpa: "string",
    clientPrefixLength: 0,
    comments: "string",
    dynamicMappings: [{
        _scopes: [{
            name: "string",
            vdom: "string",
        }],
        addNat64Route: "string",
        arpIntf: "string",
        arpReply: "string",
        associatedInterface: "string",
        blockSize: 0,
        cgnBlockSize: 0,
        cgnClientEndip: "string",
        cgnClientIpv6shift: 0,
        cgnClientStartip: "string",
        cgnFixedalloc: "string",
        cgnOverload: "string",
        cgnPortEnd: 0,
        cgnPortStart: 0,
        cgnSpa: "string",
        clientPrefixLength: 0,
        comments: "string",
        endip: "string",
        endport: 0,
        excludeIps: ["string"],
        icmpSessionQuota: 0,
        nat64: "string",
        numBlocksPerUser: 0,
        pbaInterimLog: 0,
        pbaTimeout: 0,
        permitAnyHost: "string",
        portPerUser: 0,
        privilegedPortUsePba: "string",
        sourceEndip: "string",
        sourcePrefix6: "string",
        sourceStartip: "string",
        startip: "string",
        startport: 0,
        subnetBroadcastInIppool: "string",
        tcpSessionQuota: 0,
        type: "string",
        udpSessionQuota: 0,
        utilizationAlarmClear: 0,
        utilizationAlarmRaise: 0,
    }],
    dynamicSortSubtable: "string",
    endip: "string",
    endport: 0,
    excludeIps: ["string"],
    icmpSessionQuota: 0,
    name: "string",
    nat64: "string",
    numBlocksPerUser: 0,
    objectFirewallIppoolId: "string",
    pbaInterimLog: 0,
    pbaTimeout: 0,
    permitAnyHost: "string",
    portPerUser: 0,
    privilegedPortUsePba: "string",
    scopetype: "string",
    sourceEndip: "string",
    sourcePrefix6: "string",
    sourceStartip: "string",
    startip: "string",
    startport: 0,
    subnetBroadcastInIppool: "string",
    tcpSessionQuota: 0,
    type: "string",
    udpSessionQuota: 0,
    utilizationAlarmClear: 0,
    utilizationAlarmRaise: 0,
});

type: fortimanager:ObjectFirewallIppool
properties:
    addNat64Route: string
    adom: string
    arpIntf: string
    arpReply: string
    associatedInterface: string
    blockSize: 0
    cgnBlockSize: 0
    cgnClientEndip: string
    cgnClientIpv6shift: 0
    cgnClientStartip: string
    cgnFixedalloc: string
    cgnOverload: string
    cgnPortEnd: 0
    cgnPortStart: 0
    cgnSpa: string
    clientPrefixLength: 0
    comments: string
    dynamicMappings:
        - _scopes:
            - name: string
              vdom: string
          addNat64Route: string
          arpIntf: string
          arpReply: string
          associatedInterface: string
          blockSize: 0
          cgnBlockSize: 0
          cgnClientEndip: string
          cgnClientIpv6shift: 0
          cgnClientStartip: string
          cgnFixedalloc: string
          cgnOverload: string
          cgnPortEnd: 0
          cgnPortStart: 0
          cgnSpa: string
          clientPrefixLength: 0
          comments: string
          endip: string
          endport: 0
          excludeIps:
            - string
          icmpSessionQuota: 0
          nat64: string
          numBlocksPerUser: 0
          pbaInterimLog: 0
          pbaTimeout: 0
          permitAnyHost: string
          portPerUser: 0
          privilegedPortUsePba: string
          sourceEndip: string
          sourcePrefix6: string
          sourceStartip: string
          startip: string
          startport: 0
          subnetBroadcastInIppool: string
          tcpSessionQuota: 0
          type: string
          udpSessionQuota: 0
          utilizationAlarmClear: 0
          utilizationAlarmRaise: 0
    dynamicSortSubtable: string
    endip: string
    endport: 0
    excludeIps:
        - string
    icmpSessionQuota: 0
    name: string
    nat64: string
    numBlocksPerUser: 0
    objectFirewallIppoolId: string
    pbaInterimLog: 0
    pbaTimeout: 0
    permitAnyHost: string
    portPerUser: 0
    privilegedPortUsePba: string
    scopetype: string
    sourceEndip: string
    sourcePrefix6: string
    sourceStartip: string
    startip: string
    startport: 0
    subnetBroadcastInIppool: string
    tcpSessionQuota: 0
    type: string
    udpSessionQuota: 0
    utilizationAlarmClear: 0
    utilizationAlarmRaise: 0

ObjectFirewallIppool Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The ObjectFirewallIppool resource accepts the following input properties:

AddNat64Route string: Enable/disable adding NAT64 route. Valid values: disable, enable.
Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
ArpIntf string: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
ArpReply string: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
AssociatedInterface string: Associated interface name.
BlockSize double: Number of addresses in a block (64 to 4096, default = 128).
CgnBlockSize double: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
CgnClientEndip string: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
CgnClientIpv6shift double: IPv6 shift for fixed-allocation.(default 0)
CgnClientStartip string: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
CgnFixedalloc string: Enable/disable fixed-allocation mode. Valid values: disable, enable.
CgnOverload string: Enable/disable overload mode. Valid values: disable, enable.
CgnPortEnd double: Ending public port can be allocated.
CgnPortStart double: Starting public port can be allocated.
CgnSpa string: Enable/disable single port allocation mode. Valid values: disable, enable.
ClientPrefixLength double: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
Comments string: Comment.
DynamicMappings List<ObjectFirewallIppoolDynamicMapping>: Dynamic_Mapping. The structure of dynamic_mapping block is documented below.
DynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
Endip string: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Endport double: Final port number (inclusive) in the range for the address pool (Default: 65533).
ExcludeIps List<string>: Exclude IPs x.x.x.x.
IcmpSessionQuota double: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
Name string: IP pool name.
Nat64 string: Enable/disable NAT64. Valid values: disable, enable.
NumBlocksPerUser double: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
ObjectFirewallIppoolId string: an identifier for the resource with format {{name}}.
PbaInterimLog double: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
PbaTimeout double: Port block allocation timeout (seconds).
PermitAnyHost string: Enable/disable full cone NAT. Valid values: disable, enable.
PortPerUser double: Number of port for each user (32 to 60416, default = 0, auto).
PrivilegedPortUsePba string: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SourceEndip string: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
SourcePrefix6 string: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
SourceStartip string: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Startip string: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Startport double: First port number (inclusive) in the range for the address pool (Default: 5117).
SubnetBroadcastInIppool string: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
TcpSessionQuota double: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
Type string: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
UdpSessionQuota double: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
UtilizationAlarmClear double: Pool utilization alarm clear threshold (40-100).
UtilizationAlarmRaise double: Pool utilization alarm raise threshold (50-100).

AddNat64Route string: Enable/disable adding NAT64 route. Valid values: disable, enable.
Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
ArpIntf string: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
ArpReply string: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
AssociatedInterface string: Associated interface name.
BlockSize float64: Number of addresses in a block (64 to 4096, default = 128).
CgnBlockSize float64: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
CgnClientEndip string: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
CgnClientIpv6shift float64: IPv6 shift for fixed-allocation.(default 0)
CgnClientStartip string: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
CgnFixedalloc string: Enable/disable fixed-allocation mode. Valid values: disable, enable.
CgnOverload string: Enable/disable overload mode. Valid values: disable, enable.
CgnPortEnd float64: Ending public port can be allocated.
CgnPortStart float64: Starting public port can be allocated.
CgnSpa string: Enable/disable single port allocation mode. Valid values: disable, enable.
ClientPrefixLength float64: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
Comments string: Comment.
DynamicMappings []ObjectFirewallIppoolDynamicMappingTypeArgs: Dynamic_Mapping. The structure of dynamic_mapping block is documented below.
DynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
Endip string: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Endport float64: Final port number (inclusive) in the range for the address pool (Default: 65533).
ExcludeIps []string: Exclude IPs x.x.x.x.
IcmpSessionQuota float64: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
Name string: IP pool name.
Nat64 string: Enable/disable NAT64. Valid values: disable, enable.
NumBlocksPerUser float64: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
ObjectFirewallIppoolId string: an identifier for the resource with format {{name}}.
PbaInterimLog float64: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
PbaTimeout float64: Port block allocation timeout (seconds).
PermitAnyHost string: Enable/disable full cone NAT. Valid values: disable, enable.
PortPerUser float64: Number of port for each user (32 to 60416, default = 0, auto).
PrivilegedPortUsePba string: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SourceEndip string: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
SourcePrefix6 string: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
SourceStartip string: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Startip string: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Startport float64: First port number (inclusive) in the range for the address pool (Default: 5117).
SubnetBroadcastInIppool string: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
TcpSessionQuota float64: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
Type string: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
UdpSessionQuota float64: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
UtilizationAlarmClear float64: Pool utilization alarm clear threshold (40-100).
UtilizationAlarmRaise float64: Pool utilization alarm raise threshold (50-100).

addNat64Route String: Enable/disable adding NAT64 route. Valid values: disable, enable.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
arpIntf String: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
arpReply String: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
associatedInterface String: Associated interface name.
blockSize Double: Number of addresses in a block (64 to 4096, default = 128).
cgnBlockSize Double: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
cgnClientEndip String: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnClientIpv6shift Double: IPv6 shift for fixed-allocation.(default 0)
cgnClientStartip String: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnFixedalloc String: Enable/disable fixed-allocation mode. Valid values: disable, enable.
cgnOverload String: Enable/disable overload mode. Valid values: disable, enable.
cgnPortEnd Double: Ending public port can be allocated.
cgnPortStart Double: Starting public port can be allocated.
cgnSpa String: Enable/disable single port allocation mode. Valid values: disable, enable.
clientPrefixLength Double: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
comments String: Comment.
dynamicMappings List<ObjectFirewallIppoolDynamicMapping>: Dynamic_Mapping. The structure of dynamic_mapping block is documented below.
dynamicSortSubtable String: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
endip String: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
endport Double: Final port number (inclusive) in the range for the address pool (Default: 65533).
excludeIps List<String>: Exclude IPs x.x.x.x.
icmpSessionQuota Double: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
name String: IP pool name.
nat64 String: Enable/disable NAT64. Valid values: disable, enable.
numBlocksPerUser Double: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
objectFirewallIppoolId String: an identifier for the resource with format {{name}}.
pbaInterimLog Double: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
pbaTimeout Double: Port block allocation timeout (seconds).
permitAnyHost String: Enable/disable full cone NAT. Valid values: disable, enable.
portPerUser Double: Number of port for each user (32 to 60416, default = 0, auto).
privilegedPortUsePba String: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sourceEndip String: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
sourcePrefix6 String: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
sourceStartip String: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startip String: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startport Double: First port number (inclusive) in the range for the address pool (Default: 5117).
subnetBroadcastInIppool String: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
tcpSessionQuota Double: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
type String: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
udpSessionQuota Double: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
utilizationAlarmClear Double: Pool utilization alarm clear threshold (40-100).
utilizationAlarmRaise Double: Pool utilization alarm raise threshold (50-100).

addNat64Route string: Enable/disable adding NAT64 route. Valid values: disable, enable.
adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
arpIntf string: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
arpReply string: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
associatedInterface string: Associated interface name.
blockSize number: Number of addresses in a block (64 to 4096, default = 128).
cgnBlockSize number: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
cgnClientEndip string: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnClientIpv6shift number: IPv6 shift for fixed-allocation.(default 0)
cgnClientStartip string: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnFixedalloc string: Enable/disable fixed-allocation mode. Valid values: disable, enable.
cgnOverload string: Enable/disable overload mode. Valid values: disable, enable.
cgnPortEnd number: Ending public port can be allocated.
cgnPortStart number: Starting public port can be allocated.
cgnSpa string: Enable/disable single port allocation mode. Valid values: disable, enable.
clientPrefixLength number: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
comments string: Comment.
dynamicMappings ObjectFirewallIppoolDynamicMapping[]: Dynamic_Mapping. The structure of dynamic_mapping block is documented below.
dynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
endip string: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
endport number: Final port number (inclusive) in the range for the address pool (Default: 65533).
excludeIps string[]: Exclude IPs x.x.x.x.
icmpSessionQuota number: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
name string: IP pool name.
nat64 string: Enable/disable NAT64. Valid values: disable, enable.
numBlocksPerUser number: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
objectFirewallIppoolId string: an identifier for the resource with format {{name}}.
pbaInterimLog number: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
pbaTimeout number: Port block allocation timeout (seconds).
permitAnyHost string: Enable/disable full cone NAT. Valid values: disable, enable.
portPerUser number: Number of port for each user (32 to 60416, default = 0, auto).
privilegedPortUsePba string: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sourceEndip string: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
sourcePrefix6 string: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
sourceStartip string: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startip string: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startport number: First port number (inclusive) in the range for the address pool (Default: 5117).
subnetBroadcastInIppool string: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
tcpSessionQuota number: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
type string: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
udpSessionQuota number: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
utilizationAlarmClear number: Pool utilization alarm clear threshold (40-100).
utilizationAlarmRaise number: Pool utilization alarm raise threshold (50-100).

add_nat64_route str: Enable/disable adding NAT64 route. Valid values: disable, enable.
adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
arp_intf str: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
arp_reply str: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
associated_interface str: Associated interface name.
block_size float: Number of addresses in a block (64 to 4096, default = 128).
cgn_block_size float: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
cgn_client_endip str: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgn_client_ipv6shift float: IPv6 shift for fixed-allocation.(default 0)
cgn_client_startip str: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgn_fixedalloc str: Enable/disable fixed-allocation mode. Valid values: disable, enable.
cgn_overload str: Enable/disable overload mode. Valid values: disable, enable.
cgn_port_end float: Ending public port can be allocated.
cgn_port_start float: Starting public port can be allocated.
cgn_spa str: Enable/disable single port allocation mode. Valid values: disable, enable.
client_prefix_length float: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
comments str: Comment.
dynamic_mappings Sequence[ObjectFirewallIppoolDynamicMappingArgs]: Dynamic_Mapping. The structure of dynamic_mapping block is documented below.
dynamic_sort_subtable str: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
endip str: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
endport float: Final port number (inclusive) in the range for the address pool (Default: 65533).
exclude_ips Sequence[str]: Exclude IPs x.x.x.x.
icmp_session_quota float: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
name str: IP pool name.
nat64 str: Enable/disable NAT64. Valid values: disable, enable.
num_blocks_per_user float: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
object_firewall_ippool_id str: an identifier for the resource with format {{name}}.
pba_interim_log float: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
pba_timeout float: Port block allocation timeout (seconds).
permit_any_host str: Enable/disable full cone NAT. Valid values: disable, enable.
port_per_user float: Number of port for each user (32 to 60416, default = 0, auto).
privileged_port_use_pba str: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
scopetype str: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source_endip str: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
source_prefix6 str: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
source_startip str: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startip str: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startport float: First port number (inclusive) in the range for the address pool (Default: 5117).
subnet_broadcast_in_ippool str: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
tcp_session_quota float: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
type str: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
udp_session_quota float: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
utilization_alarm_clear float: Pool utilization alarm clear threshold (40-100).
utilization_alarm_raise float: Pool utilization alarm raise threshold (50-100).

addNat64Route String: Enable/disable adding NAT64 route. Valid values: disable, enable.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
arpIntf String: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
arpReply String: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
associatedInterface String: Associated interface name.
blockSize Number: Number of addresses in a block (64 to 4096, default = 128).
cgnBlockSize Number: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
cgnClientEndip String: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnClientIpv6shift Number: IPv6 shift for fixed-allocation.(default 0)
cgnClientStartip String: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnFixedalloc String: Enable/disable fixed-allocation mode. Valid values: disable, enable.
cgnOverload String: Enable/disable overload mode. Valid values: disable, enable.
cgnPortEnd Number: Ending public port can be allocated.
cgnPortStart Number: Starting public port can be allocated.
cgnSpa String: Enable/disable single port allocation mode. Valid values: disable, enable.
clientPrefixLength Number: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
comments String: Comment.
dynamicMappings List<Property Map>: Dynamic_Mapping. The structure of dynamic_mapping block is documented below.
dynamicSortSubtable String: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
endip String: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
endport Number: Final port number (inclusive) in the range for the address pool (Default: 65533).
excludeIps List<String>: Exclude IPs x.x.x.x.
icmpSessionQuota Number: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
name String: IP pool name.
nat64 String: Enable/disable NAT64. Valid values: disable, enable.
numBlocksPerUser Number: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
objectFirewallIppoolId String: an identifier for the resource with format {{name}}.
pbaInterimLog Number: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
pbaTimeout Number: Port block allocation timeout (seconds).
permitAnyHost String: Enable/disable full cone NAT. Valid values: disable, enable.
portPerUser Number: Number of port for each user (32 to 60416, default = 0, auto).
privilegedPortUsePba String: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sourceEndip String: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
sourcePrefix6 String: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
sourceStartip String: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startip String: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startport Number: First port number (inclusive) in the range for the address pool (Default: 5117).
subnetBroadcastInIppool String: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
tcpSessionQuota Number: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
type String: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
udpSessionQuota Number: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
utilizationAlarmClear Number: Pool utilization alarm clear threshold (40-100).
utilizationAlarmRaise Number: Pool utilization alarm raise threshold (50-100).

Outputs

All input properties are implicitly available as output properties. Additionally, the ObjectFirewallIppool resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing ObjectFirewallIppool Resource

Get an existing ObjectFirewallIppool resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: ObjectFirewallIppoolState, opts?: CustomResourceOptions): ObjectFirewallIppool

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        add_nat64_route: Optional[str] = None,
        adom: Optional[str] = None,
        arp_intf: Optional[str] = None,
        arp_reply: Optional[str] = None,
        associated_interface: Optional[str] = None,
        block_size: Optional[float] = None,
        cgn_block_size: Optional[float] = None,
        cgn_client_endip: Optional[str] = None,
        cgn_client_ipv6shift: Optional[float] = None,
        cgn_client_startip: Optional[str] = None,
        cgn_fixedalloc: Optional[str] = None,
        cgn_overload: Optional[str] = None,
        cgn_port_end: Optional[float] = None,
        cgn_port_start: Optional[float] = None,
        cgn_spa: Optional[str] = None,
        client_prefix_length: Optional[float] = None,
        comments: Optional[str] = None,
        dynamic_mappings: Optional[Sequence[ObjectFirewallIppoolDynamicMappingArgs]] = None,
        dynamic_sort_subtable: Optional[str] = None,
        endip: Optional[str] = None,
        endport: Optional[float] = None,
        exclude_ips: Optional[Sequence[str]] = None,
        icmp_session_quota: Optional[float] = None,
        name: Optional[str] = None,
        nat64: Optional[str] = None,
        num_blocks_per_user: Optional[float] = None,
        object_firewall_ippool_id: Optional[str] = None,
        pba_interim_log: Optional[float] = None,
        pba_timeout: Optional[float] = None,
        permit_any_host: Optional[str] = None,
        port_per_user: Optional[float] = None,
        privileged_port_use_pba: Optional[str] = None,
        scopetype: Optional[str] = None,
        source_endip: Optional[str] = None,
        source_prefix6: Optional[str] = None,
        source_startip: Optional[str] = None,
        startip: Optional[str] = None,
        startport: Optional[float] = None,
        subnet_broadcast_in_ippool: Optional[str] = None,
        tcp_session_quota: Optional[float] = None,
        type: Optional[str] = None,
        udp_session_quota: Optional[float] = None,
        utilization_alarm_clear: Optional[float] = None,
        utilization_alarm_raise: Optional[float] = None) -> ObjectFirewallIppool

func GetObjectFirewallIppool(ctx *Context, name string, id IDInput, state *ObjectFirewallIppoolState, opts ...ResourceOption) (*ObjectFirewallIppool, error)

public static ObjectFirewallIppool Get(string name, Input<string> id, ObjectFirewallIppoolState? state, CustomResourceOptions? opts = null)

public static ObjectFirewallIppool get(String name, Output<String> id, ObjectFirewallIppoolState state, CustomResourceOptions options)

resources:  _:    type: fortimanager:ObjectFirewallIppool    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AddNat64Route string: Enable/disable adding NAT64 route. Valid values: disable, enable.
Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
ArpIntf string: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
ArpReply string: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
AssociatedInterface string: Associated interface name.
BlockSize double: Number of addresses in a block (64 to 4096, default = 128).
CgnBlockSize double: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
CgnClientEndip string: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
CgnClientIpv6shift double: IPv6 shift for fixed-allocation.(default 0)
CgnClientStartip string: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
CgnFixedalloc string: Enable/disable fixed-allocation mode. Valid values: disable, enable.
CgnOverload string: Enable/disable overload mode. Valid values: disable, enable.
CgnPortEnd double: Ending public port can be allocated.
CgnPortStart double: Starting public port can be allocated.
CgnSpa string: Enable/disable single port allocation mode. Valid values: disable, enable.
ClientPrefixLength double: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
Comments string: Comment.
DynamicMappings List<ObjectFirewallIppoolDynamicMapping>: Dynamic_Mapping. The structure of dynamic_mapping block is documented below.
DynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
Endip string: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Endport double: Final port number (inclusive) in the range for the address pool (Default: 65533).
ExcludeIps List<string>: Exclude IPs x.x.x.x.
IcmpSessionQuota double: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
Name string: IP pool name.
Nat64 string: Enable/disable NAT64. Valid values: disable, enable.
NumBlocksPerUser double: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
ObjectFirewallIppoolId string: an identifier for the resource with format {{name}}.
PbaInterimLog double: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
PbaTimeout double: Port block allocation timeout (seconds).
PermitAnyHost string: Enable/disable full cone NAT. Valid values: disable, enable.
PortPerUser double: Number of port for each user (32 to 60416, default = 0, auto).
PrivilegedPortUsePba string: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SourceEndip string: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
SourcePrefix6 string: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
SourceStartip string: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Startip string: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Startport double: First port number (inclusive) in the range for the address pool (Default: 5117).
SubnetBroadcastInIppool string: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
TcpSessionQuota double: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
Type string: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
UdpSessionQuota double: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
UtilizationAlarmClear double: Pool utilization alarm clear threshold (40-100).
UtilizationAlarmRaise double: Pool utilization alarm raise threshold (50-100).

AddNat64Route string: Enable/disable adding NAT64 route. Valid values: disable, enable.
Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
ArpIntf string: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
ArpReply string: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
AssociatedInterface string: Associated interface name.
BlockSize float64: Number of addresses in a block (64 to 4096, default = 128).
CgnBlockSize float64: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
CgnClientEndip string: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
CgnClientIpv6shift float64: IPv6 shift for fixed-allocation.(default 0)
CgnClientStartip string: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
CgnFixedalloc string: Enable/disable fixed-allocation mode. Valid values: disable, enable.
CgnOverload string: Enable/disable overload mode. Valid values: disable, enable.
CgnPortEnd float64: Ending public port can be allocated.
CgnPortStart float64: Starting public port can be allocated.
CgnSpa string: Enable/disable single port allocation mode. Valid values: disable, enable.
ClientPrefixLength float64: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
Comments string: Comment.
DynamicMappings []ObjectFirewallIppoolDynamicMappingTypeArgs: Dynamic_Mapping. The structure of dynamic_mapping block is documented below.
DynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
Endip string: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Endport float64: Final port number (inclusive) in the range for the address pool (Default: 65533).
ExcludeIps []string: Exclude IPs x.x.x.x.
IcmpSessionQuota float64: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
Name string: IP pool name.
Nat64 string: Enable/disable NAT64. Valid values: disable, enable.
NumBlocksPerUser float64: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
ObjectFirewallIppoolId string: an identifier for the resource with format {{name}}.
PbaInterimLog float64: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
PbaTimeout float64: Port block allocation timeout (seconds).
PermitAnyHost string: Enable/disable full cone NAT. Valid values: disable, enable.
PortPerUser float64: Number of port for each user (32 to 60416, default = 0, auto).
PrivilegedPortUsePba string: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SourceEndip string: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
SourcePrefix6 string: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
SourceStartip string: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Startip string: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Startport float64: First port number (inclusive) in the range for the address pool (Default: 5117).
SubnetBroadcastInIppool string: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
TcpSessionQuota float64: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
Type string: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
UdpSessionQuota float64: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
UtilizationAlarmClear float64: Pool utilization alarm clear threshold (40-100).
UtilizationAlarmRaise float64: Pool utilization alarm raise threshold (50-100).

addNat64Route String: Enable/disable adding NAT64 route. Valid values: disable, enable.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
arpIntf String: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
arpReply String: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
associatedInterface String: Associated interface name.
blockSize Double: Number of addresses in a block (64 to 4096, default = 128).
cgnBlockSize Double: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
cgnClientEndip String: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnClientIpv6shift Double: IPv6 shift for fixed-allocation.(default 0)
cgnClientStartip String: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnFixedalloc String: Enable/disable fixed-allocation mode. Valid values: disable, enable.
cgnOverload String: Enable/disable overload mode. Valid values: disable, enable.
cgnPortEnd Double: Ending public port can be allocated.
cgnPortStart Double: Starting public port can be allocated.
cgnSpa String: Enable/disable single port allocation mode. Valid values: disable, enable.
clientPrefixLength Double: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
comments String: Comment.
dynamicMappings List<ObjectFirewallIppoolDynamicMapping>: Dynamic_Mapping. The structure of dynamic_mapping block is documented below.
dynamicSortSubtable String: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
endip String: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
endport Double: Final port number (inclusive) in the range for the address pool (Default: 65533).
excludeIps List<String>: Exclude IPs x.x.x.x.
icmpSessionQuota Double: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
name String: IP pool name.
nat64 String: Enable/disable NAT64. Valid values: disable, enable.
numBlocksPerUser Double: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
objectFirewallIppoolId String: an identifier for the resource with format {{name}}.
pbaInterimLog Double: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
pbaTimeout Double: Port block allocation timeout (seconds).
permitAnyHost String: Enable/disable full cone NAT. Valid values: disable, enable.
portPerUser Double: Number of port for each user (32 to 60416, default = 0, auto).
privilegedPortUsePba String: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sourceEndip String: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
sourcePrefix6 String: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
sourceStartip String: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startip String: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startport Double: First port number (inclusive) in the range for the address pool (Default: 5117).
subnetBroadcastInIppool String: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
tcpSessionQuota Double: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
type String: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
udpSessionQuota Double: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
utilizationAlarmClear Double: Pool utilization alarm clear threshold (40-100).
utilizationAlarmRaise Double: Pool utilization alarm raise threshold (50-100).

addNat64Route string: Enable/disable adding NAT64 route. Valid values: disable, enable.
adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
arpIntf string: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
arpReply string: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
associatedInterface string: Associated interface name.
blockSize number: Number of addresses in a block (64 to 4096, default = 128).
cgnBlockSize number: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
cgnClientEndip string: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnClientIpv6shift number: IPv6 shift for fixed-allocation.(default 0)
cgnClientStartip string: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnFixedalloc string: Enable/disable fixed-allocation mode. Valid values: disable, enable.
cgnOverload string: Enable/disable overload mode. Valid values: disable, enable.
cgnPortEnd number: Ending public port can be allocated.
cgnPortStart number: Starting public port can be allocated.
cgnSpa string: Enable/disable single port allocation mode. Valid values: disable, enable.
clientPrefixLength number: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
comments string: Comment.
dynamicMappings ObjectFirewallIppoolDynamicMapping[]: Dynamic_Mapping. The structure of dynamic_mapping block is documented below.
dynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
endip string: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
endport number: Final port number (inclusive) in the range for the address pool (Default: 65533).
excludeIps string[]: Exclude IPs x.x.x.x.
icmpSessionQuota number: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
name string: IP pool name.
nat64 string: Enable/disable NAT64. Valid values: disable, enable.
numBlocksPerUser number: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
objectFirewallIppoolId string: an identifier for the resource with format {{name}}.
pbaInterimLog number: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
pbaTimeout number: Port block allocation timeout (seconds).
permitAnyHost string: Enable/disable full cone NAT. Valid values: disable, enable.
portPerUser number: Number of port for each user (32 to 60416, default = 0, auto).
privilegedPortUsePba string: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sourceEndip string: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
sourcePrefix6 string: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
sourceStartip string: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startip string: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startport number: First port number (inclusive) in the range for the address pool (Default: 5117).
subnetBroadcastInIppool string: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
tcpSessionQuota number: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
type string: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
udpSessionQuota number: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
utilizationAlarmClear number: Pool utilization alarm clear threshold (40-100).
utilizationAlarmRaise number: Pool utilization alarm raise threshold (50-100).

add_nat64_route str: Enable/disable adding NAT64 route. Valid values: disable, enable.
adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
arp_intf str: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
arp_reply str: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
associated_interface str: Associated interface name.
block_size float: Number of addresses in a block (64 to 4096, default = 128).
cgn_block_size float: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
cgn_client_endip str: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgn_client_ipv6shift float: IPv6 shift for fixed-allocation.(default 0)
cgn_client_startip str: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgn_fixedalloc str: Enable/disable fixed-allocation mode. Valid values: disable, enable.
cgn_overload str: Enable/disable overload mode. Valid values: disable, enable.
cgn_port_end float: Ending public port can be allocated.
cgn_port_start float: Starting public port can be allocated.
cgn_spa str: Enable/disable single port allocation mode. Valid values: disable, enable.
client_prefix_length float: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
comments str: Comment.
dynamic_mappings Sequence[ObjectFirewallIppoolDynamicMappingArgs]: Dynamic_Mapping. The structure of dynamic_mapping block is documented below.
dynamic_sort_subtable str: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
endip str: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
endport float: Final port number (inclusive) in the range for the address pool (Default: 65533).
exclude_ips Sequence[str]: Exclude IPs x.x.x.x.
icmp_session_quota float: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
name str: IP pool name.
nat64 str: Enable/disable NAT64. Valid values: disable, enable.
num_blocks_per_user float: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
object_firewall_ippool_id str: an identifier for the resource with format {{name}}.
pba_interim_log float: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
pba_timeout float: Port block allocation timeout (seconds).
permit_any_host str: Enable/disable full cone NAT. Valid values: disable, enable.
port_per_user float: Number of port for each user (32 to 60416, default = 0, auto).
privileged_port_use_pba str: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
scopetype str: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
source_endip str: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
source_prefix6 str: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
source_startip str: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startip str: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startport float: First port number (inclusive) in the range for the address pool (Default: 5117).
subnet_broadcast_in_ippool str: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
tcp_session_quota float: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
type str: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
udp_session_quota float: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
utilization_alarm_clear float: Pool utilization alarm clear threshold (40-100).
utilization_alarm_raise float: Pool utilization alarm raise threshold (50-100).

addNat64Route String: Enable/disable adding NAT64 route. Valid values: disable, enable.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
arpIntf String: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
arpReply String: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
associatedInterface String: Associated interface name.
blockSize Number: Number of addresses in a block (64 to 4096, default = 128).
cgnBlockSize Number: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
cgnClientEndip String: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnClientIpv6shift Number: IPv6 shift for fixed-allocation.(default 0)
cgnClientStartip String: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnFixedalloc String: Enable/disable fixed-allocation mode. Valid values: disable, enable.
cgnOverload String: Enable/disable overload mode. Valid values: disable, enable.
cgnPortEnd Number: Ending public port can be allocated.
cgnPortStart Number: Starting public port can be allocated.
cgnSpa String: Enable/disable single port allocation mode. Valid values: disable, enable.
clientPrefixLength Number: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
comments String: Comment.
dynamicMappings List<Property Map>: Dynamic_Mapping. The structure of dynamic_mapping block is documented below.
dynamicSortSubtable String: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
endip String: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
endport Number: Final port number (inclusive) in the range for the address pool (Default: 65533).
excludeIps List<String>: Exclude IPs x.x.x.x.
icmpSessionQuota Number: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
name String: IP pool name.
nat64 String: Enable/disable NAT64. Valid values: disable, enable.
numBlocksPerUser Number: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
objectFirewallIppoolId String: an identifier for the resource with format {{name}}.
pbaInterimLog Number: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
pbaTimeout Number: Port block allocation timeout (seconds).
permitAnyHost String: Enable/disable full cone NAT. Valid values: disable, enable.
portPerUser Number: Number of port for each user (32 to 60416, default = 0, auto).
privilegedPortUsePba String: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sourceEndip String: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
sourcePrefix6 String: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
sourceStartip String: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startip String: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startport Number: First port number (inclusive) in the range for the address pool (Default: 5117).
subnetBroadcastInIppool String: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
tcpSessionQuota Number: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
type String: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
udpSessionQuota Number: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
utilizationAlarmClear Number: Pool utilization alarm clear threshold (40-100).
utilizationAlarmRaise Number: Pool utilization alarm raise threshold (50-100).

Supporting Types

ObjectFirewallIppoolDynamicMapping, ObjectFirewallIppoolDynamicMappingArgs

AddNat64Route string: Enable/disable adding NAT64 route. Valid values: disable, enable.
ArpIntf string: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
ArpReply string: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
AssociatedInterface string: Associated interface name.
BlockSize double: Number of addresses in a block (64 to 4096, default = 128).
CgnBlockSize double: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
CgnClientEndip string: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
CgnClientIpv6shift double: Cgn-Client-Ipv6Shift.
CgnClientStartip string: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
CgnFixedalloc string: Enable/disable fixed-allocation mode. Valid values: disable, enable.
CgnOverload string: Enable/disable overload mode. Valid values: disable, enable.
CgnPortEnd double: Ending public port can be allocated.
CgnPortStart double: Starting public port can be allocated.
CgnSpa string: Enable/disable single port allocation mode. Valid values: disable, enable.
ClientPrefixLength double: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
Comments string: Comment.
Endip string: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Endport double: Endport.
ExcludeIps List<string>: Exclude IPs x.x.x.x.
IcmpSessionQuota double: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
Nat64 string: Enable/disable NAT64. Valid values: disable, enable.
NumBlocksPerUser double: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
PbaInterimLog double: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
PbaTimeout double: Port block allocation timeout (seconds).
PermitAnyHost string: Enable/disable full cone NAT. Valid values: disable, enable.
PortPerUser double: Port-Per-User.
PrivilegedPortUsePba string: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
SourceEndip string: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
SourcePrefix6 string: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
SourceStartip string: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Startip string: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Startport double: Startport.
SubnetBroadcastInIppool string: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
TcpSessionQuota double: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
Type string: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
UdpSessionQuota double: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
UtilizationAlarmClear double: Pool utilization alarm clear threshold (40-100).
UtilizationAlarmRaise double: Pool utilization alarm raise threshold (50-100).
_scopes List<ObjectFirewallIppoolDynamicMapping_Scope>: _Scope. The structure of _scope block is documented below.

AddNat64Route string: Enable/disable adding NAT64 route. Valid values: disable, enable.
ArpIntf string: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
ArpReply string: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
AssociatedInterface string: Associated interface name.
BlockSize float64: Number of addresses in a block (64 to 4096, default = 128).
CgnBlockSize float64: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
CgnClientEndip string: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
CgnClientIpv6shift float64: Cgn-Client-Ipv6Shift.
CgnClientStartip string: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
CgnFixedalloc string: Enable/disable fixed-allocation mode. Valid values: disable, enable.
CgnOverload string: Enable/disable overload mode. Valid values: disable, enable.
CgnPortEnd float64: Ending public port can be allocated.
CgnPortStart float64: Starting public port can be allocated.
CgnSpa string: Enable/disable single port allocation mode. Valid values: disable, enable.
ClientPrefixLength float64: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
Comments string: Comment.
Endip string: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Endport float64: Endport.
ExcludeIps []string: Exclude IPs x.x.x.x.
IcmpSessionQuota float64: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
Nat64 string: Enable/disable NAT64. Valid values: disable, enable.
NumBlocksPerUser float64: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
PbaInterimLog float64: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
PbaTimeout float64: Port block allocation timeout (seconds).
PermitAnyHost string: Enable/disable full cone NAT. Valid values: disable, enable.
PortPerUser float64: Port-Per-User.
PrivilegedPortUsePba string: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
SourceEndip string: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
SourcePrefix6 string: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
SourceStartip string: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Startip string: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
Startport float64: Startport.
SubnetBroadcastInIppool string: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
TcpSessionQuota float64: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
Type string: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
UdpSessionQuota float64: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
UtilizationAlarmClear float64: Pool utilization alarm clear threshold (40-100).
UtilizationAlarmRaise float64: Pool utilization alarm raise threshold (50-100).
_scopes []ObjectFirewallIppoolDynamicMapping_Scope: _Scope. The structure of _scope block is documented below.

_scopes List<ObjectFirewallIppoolDynamicMapping_Scope>: _Scope. The structure of _scope block is documented below.
addNat64Route String: Enable/disable adding NAT64 route. Valid values: disable, enable.
arpIntf String: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
arpReply String: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
associatedInterface String: Associated interface name.
blockSize Double: Number of addresses in a block (64 to 4096, default = 128).
cgnBlockSize Double: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
cgnClientEndip String: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnClientIpv6shift Double: Cgn-Client-Ipv6Shift.
cgnClientStartip String: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnFixedalloc String: Enable/disable fixed-allocation mode. Valid values: disable, enable.
cgnOverload String: Enable/disable overload mode. Valid values: disable, enable.
cgnPortEnd Double: Ending public port can be allocated.
cgnPortStart Double: Starting public port can be allocated.
cgnSpa String: Enable/disable single port allocation mode. Valid values: disable, enable.
clientPrefixLength Double: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
comments String: Comment.
endip String: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
endport Double: Endport.
excludeIps List<String>: Exclude IPs x.x.x.x.
icmpSessionQuota Double: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
nat64 String: Enable/disable NAT64. Valid values: disable, enable.
numBlocksPerUser Double: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
pbaInterimLog Double: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
pbaTimeout Double: Port block allocation timeout (seconds).
permitAnyHost String: Enable/disable full cone NAT. Valid values: disable, enable.
portPerUser Double: Port-Per-User.
privilegedPortUsePba String: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
sourceEndip String: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
sourcePrefix6 String: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
sourceStartip String: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startip String: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startport Double: Startport.
subnetBroadcastInIppool String: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
tcpSessionQuota Double: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
type String: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
udpSessionQuota Double: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
utilizationAlarmClear Double: Pool utilization alarm clear threshold (40-100).
utilizationAlarmRaise Double: Pool utilization alarm raise threshold (50-100).

_scopes ObjectFirewallIppoolDynamicMapping_Scope[]: _Scope. The structure of _scope block is documented below.
addNat64Route string: Enable/disable adding NAT64 route. Valid values: disable, enable.
arpIntf string: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
arpReply string: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
associatedInterface string: Associated interface name.
blockSize number: Number of addresses in a block (64 to 4096, default = 128).
cgnBlockSize number: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
cgnClientEndip string: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnClientIpv6shift number: Cgn-Client-Ipv6Shift.
cgnClientStartip string: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnFixedalloc string: Enable/disable fixed-allocation mode. Valid values: disable, enable.
cgnOverload string: Enable/disable overload mode. Valid values: disable, enable.
cgnPortEnd number: Ending public port can be allocated.
cgnPortStart number: Starting public port can be allocated.
cgnSpa string: Enable/disable single port allocation mode. Valid values: disable, enable.
clientPrefixLength number: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
comments string: Comment.
endip string: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
endport number: Endport.
excludeIps string[]: Exclude IPs x.x.x.x.
icmpSessionQuota number: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
nat64 string: Enable/disable NAT64. Valid values: disable, enable.
numBlocksPerUser number: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
pbaInterimLog number: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
pbaTimeout number: Port block allocation timeout (seconds).
permitAnyHost string: Enable/disable full cone NAT. Valid values: disable, enable.
portPerUser number: Port-Per-User.
privilegedPortUsePba string: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
sourceEndip string: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
sourcePrefix6 string: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
sourceStartip string: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startip string: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startport number: Startport.
subnetBroadcastInIppool string: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
tcpSessionQuota number: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
type string: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
udpSessionQuota number: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
utilizationAlarmClear number: Pool utilization alarm clear threshold (40-100).
utilizationAlarmRaise number: Pool utilization alarm raise threshold (50-100).

_scopes Sequence[ObjectFirewallIppoolDynamicMapping_Scope]: _Scope. The structure of _scope block is documented below.
add_nat64_route str: Enable/disable adding NAT64 route. Valid values: disable, enable.
arp_intf str: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
arp_reply str: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
associated_interface str: Associated interface name.
block_size float: Number of addresses in a block (64 to 4096, default = 128).
cgn_block_size float: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
cgn_client_endip str: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgn_client_ipv6shift float: Cgn-Client-Ipv6Shift.
cgn_client_startip str: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgn_fixedalloc str: Enable/disable fixed-allocation mode. Valid values: disable, enable.
cgn_overload str: Enable/disable overload mode. Valid values: disable, enable.
cgn_port_end float: Ending public port can be allocated.
cgn_port_start float: Starting public port can be allocated.
cgn_spa str: Enable/disable single port allocation mode. Valid values: disable, enable.
client_prefix_length float: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
comments str: Comment.
endip str: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
endport float: Endport.
exclude_ips Sequence[str]: Exclude IPs x.x.x.x.
icmp_session_quota float: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
nat64 str: Enable/disable NAT64. Valid values: disable, enable.
num_blocks_per_user float: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
pba_interim_log float: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
pba_timeout float: Port block allocation timeout (seconds).
permit_any_host str: Enable/disable full cone NAT. Valid values: disable, enable.
port_per_user float: Port-Per-User.
privileged_port_use_pba str: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
source_endip str: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
source_prefix6 str: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
source_startip str: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startip str: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startport float: Startport.
subnet_broadcast_in_ippool str: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
tcp_session_quota float: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
type str: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
udp_session_quota float: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
utilization_alarm_clear float: Pool utilization alarm clear threshold (40-100).
utilization_alarm_raise float: Pool utilization alarm raise threshold (50-100).

_scopes List<Property Map>: _Scope. The structure of _scope block is documented below.
addNat64Route String: Enable/disable adding NAT64 route. Valid values: disable, enable.
arpIntf String: Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
arpReply String: Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable, enable.
associatedInterface String: Associated interface name.
blockSize Number: Number of addresses in a block (64 to 4096, default = 128).
cgnBlockSize Number: Number of ports in a block(64 to 4096 in unit of 64, default = 128).
cgnClientEndip String: Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnClientIpv6shift Number: Cgn-Client-Ipv6Shift.
cgnClientStartip String: First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
cgnFixedalloc String: Enable/disable fixed-allocation mode. Valid values: disable, enable.
cgnOverload String: Enable/disable overload mode. Valid values: disable, enable.
cgnPortEnd Number: Ending public port can be allocated.
cgnPortStart Number: Starting public port can be allocated.
cgnSpa String: Enable/disable single port allocation mode. Valid values: disable, enable.
clientPrefixLength Number: Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
comments String: Comment.
endip String: Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
endport Number: Endport.
excludeIps List<String>: Exclude IPs x.x.x.x.
icmpSessionQuota Number: Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
nat64 String: Enable/disable NAT64. Valid values: disable, enable.
numBlocksPerUser Number: Number of addresses blocks that can be used by a user (1 to 128, default = 8).
pbaInterimLog Number: Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
pbaTimeout Number: Port block allocation timeout (seconds).
permitAnyHost String: Enable/disable full cone NAT. Valid values: disable, enable.
portPerUser Number: Port-Per-User.
privilegedPortUsePba String: Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable, enable.
sourceEndip String: Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
sourcePrefix6 String: Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
sourceStartip String: First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startip String: First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
startport Number: Startport.
subnetBroadcastInIppool String: Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable, enable.
tcpSessionQuota Number: Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
type String: IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload, one-to-one, fixed-port-range, port-block-allocation, cgn-resource-allocation.
udpSessionQuota Number: Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
utilizationAlarmClear Number: Pool utilization alarm clear threshold (40-100).
utilizationAlarmRaise Number: Pool utilization alarm raise threshold (50-100).

ObjectFirewallIppoolDynamicMapping_Scope, ObjectFirewallIppoolDynamicMapping_ScopeArgs

Name string: Name.
Vdom string: Vdom.

Name string: Name.
Vdom string: Vdom.

name String: Name.
vdom String: Vdom.

name string: Name.
vdom string: Vdom.

name str: Name.
vdom str: Vdom.

name String: Name.
vdom String: Vdom.

Import

ObjectFirewall Ippool can be imported using any of these accepted formats:

$ export “FORTIMANAGER_IMPORT_TABLE”=“true”

$ pulumi import fortimanager:index/objectFirewallIppool:ObjectFirewallIppool labelname {{name}}

$ unset “FORTIMANAGER_IMPORT_TABLE”

-> Hint: The scopetype and adom for import will directly inherit the scopetype and adom configuration of the provider.

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: fortimanager fortinetdev/terraform-provider-fortimanager
License
Notes: This Pulumi package is based on the fortimanager Terraform Provider.

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

fortimanager.ObjectFirewallIppool

On this page

On this page

Example Usage

Create ObjectFirewallIppool Resource

Constructor syntax

Parameters

Constructor example

ObjectFirewallIppool Resource Properties

Inputs

Outputs

Look up Existing ObjectFirewallIppool Resource

Supporting Types

ObjectFirewallIppoolDynamicMapping, ObjectFirewallIppoolDynamicMappingArgs

ObjectFirewallIppoolDynamicMapping_Scope, ObjectFirewallIppoolDynamicMapping_ScopeArgs

Import

Package Details

On this page

On this page