fortimanager 1.13.0, Mar 13 25

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

fortimanager.PackagesFirewallHyperscalepolicy

Explore with Pulumi AI

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

Create PackagesFirewallHyperscalepolicy Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new PackagesFirewallHyperscalepolicy(name: string, args: PackagesFirewallHyperscalepolicyArgs, opts?: CustomResourceOptions);

@overload
def PackagesFirewallHyperscalepolicy(resource_name: str,
                                     args: PackagesFirewallHyperscalepolicyArgs,
                                     opts: Optional[ResourceOptions] = None)

@overload
def PackagesFirewallHyperscalepolicy(resource_name: str,
                                     opts: Optional[ResourceOptions] = None,
                                     pkg: Optional[str] = None,
                                     packages_firewall_hyperscalepolicy_id: Optional[str] = None,
                                     status: Optional[str] = None,
                                     cgn_eif: Optional[str] = None,
                                     cgn_eim: Optional[str] = None,
                                     cgn_log_server_grp: Optional[str] = None,
                                     cgn_resource_quota: Optional[float] = None,
                                     nat: Optional[str] = None,
                                     comments: Optional[str] = None,
                                     delay_tcp_npu_session: Optional[str] = None,
                                     dstaddr: Optional[str] = None,
                                     dstaddr6: Optional[str] = None,
                                     dstaddr_negate: Optional[str] = None,
                                     dstintf: Optional[str] = None,
                                     firewall_session_dirty: Optional[str] = None,
                                     global_label: Optional[str] = None,
                                     ippool: Optional[str] = None,
                                     label: Optional[str] = None,
                                     adom: Optional[str] = None,
                                     cgn_session_quota: Optional[float] = None,
                                     auto_asic_offload: Optional[str] = None,
                                     name: Optional[str] = None,
                                     pkg_folder_path: Optional[str] = None,
                                     policy_offload: Optional[str] = None,
                                     policyid: Optional[float] = None,
                                     poolname: Optional[str] = None,
                                     poolname6: Optional[str] = None,
                                     scopetype: Optional[str] = None,
                                     send_deny_packet: Optional[str] = None,
                                     service: Optional[str] = None,
                                     service_negate: Optional[str] = None,
                                     srcaddr: Optional[str] = None,
                                     srcaddr6: Optional[str] = None,
                                     srcaddr_negate: Optional[str] = None,
                                     srcintf: Optional[str] = None,
                                     action: Optional[str] = None,
                                     tcp_timeout_pid: Optional[str] = None,
                                     traffic_shaper: Optional[str] = None,
                                     traffic_shaper_reverse: Optional[str] = None,
                                     udp_timeout_pid: Optional[str] = None,
                                     uuid: Optional[str] = None)

func NewPackagesFirewallHyperscalepolicy(ctx *Context, name string, args PackagesFirewallHyperscalepolicyArgs, opts ...ResourceOption) (*PackagesFirewallHyperscalepolicy, error)

public PackagesFirewallHyperscalepolicy(string name, PackagesFirewallHyperscalepolicyArgs args, CustomResourceOptions? opts = null)

public PackagesFirewallHyperscalepolicy(String name, PackagesFirewallHyperscalepolicyArgs args)
public PackagesFirewallHyperscalepolicy(String name, PackagesFirewallHyperscalepolicyArgs args, CustomResourceOptions options)

type: fortimanager:PackagesFirewallHyperscalepolicy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args PackagesFirewallHyperscalepolicyArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args PackagesFirewallHyperscalepolicyArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args PackagesFirewallHyperscalepolicyArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args PackagesFirewallHyperscalepolicyArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args PackagesFirewallHyperscalepolicyArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var packagesFirewallHyperscalepolicyResource = new Fortimanager.PackagesFirewallHyperscalepolicy("packagesFirewallHyperscalepolicyResource", new()
{
    Pkg = "string",
    PackagesFirewallHyperscalepolicyId = "string",
    Status = "string",
    CgnEif = "string",
    CgnEim = "string",
    CgnLogServerGrp = "string",
    CgnResourceQuota = 0,
    Nat = "string",
    Comments = "string",
    DelayTcpNpuSession = "string",
    Dstaddr = "string",
    Dstaddr6 = "string",
    DstaddrNegate = "string",
    Dstintf = "string",
    FirewallSessionDirty = "string",
    GlobalLabel = "string",
    Ippool = "string",
    Label = "string",
    Adom = "string",
    CgnSessionQuota = 0,
    AutoAsicOffload = "string",
    Name = "string",
    PkgFolderPath = "string",
    PolicyOffload = "string",
    Policyid = 0,
    Poolname = "string",
    Poolname6 = "string",
    Scopetype = "string",
    SendDenyPacket = "string",
    Service = "string",
    ServiceNegate = "string",
    Srcaddr = "string",
    Srcaddr6 = "string",
    SrcaddrNegate = "string",
    Srcintf = "string",
    Action = "string",
    TcpTimeoutPid = "string",
    TrafficShaper = "string",
    TrafficShaperReverse = "string",
    UdpTimeoutPid = "string",
    Uuid = "string",
});

example, err := fortimanager.NewPackagesFirewallHyperscalepolicy(ctx, "packagesFirewallHyperscalepolicyResource", &fortimanager.PackagesFirewallHyperscalepolicyArgs{
Pkg: pulumi.String("string"),
PackagesFirewallHyperscalepolicyId: pulumi.String("string"),
Status: pulumi.String("string"),
CgnEif: pulumi.String("string"),
CgnEim: pulumi.String("string"),
CgnLogServerGrp: pulumi.String("string"),
CgnResourceQuota: pulumi.Float64(0),
Nat: pulumi.String("string"),
Comments: pulumi.String("string"),
DelayTcpNpuSession: pulumi.String("string"),
Dstaddr: pulumi.String("string"),
Dstaddr6: pulumi.String("string"),
DstaddrNegate: pulumi.String("string"),
Dstintf: pulumi.String("string"),
FirewallSessionDirty: pulumi.String("string"),
GlobalLabel: pulumi.String("string"),
Ippool: pulumi.String("string"),
Label: pulumi.String("string"),
Adom: pulumi.String("string"),
CgnSessionQuota: pulumi.Float64(0),
AutoAsicOffload: pulumi.String("string"),
Name: pulumi.String("string"),
PkgFolderPath: pulumi.String("string"),
PolicyOffload: pulumi.String("string"),
Policyid: pulumi.Float64(0),
Poolname: pulumi.String("string"),
Poolname6: pulumi.String("string"),
Scopetype: pulumi.String("string"),
SendDenyPacket: pulumi.String("string"),
Service: pulumi.String("string"),
ServiceNegate: pulumi.String("string"),
Srcaddr: pulumi.String("string"),
Srcaddr6: pulumi.String("string"),
SrcaddrNegate: pulumi.String("string"),
Srcintf: pulumi.String("string"),
Action: pulumi.String("string"),
TcpTimeoutPid: pulumi.String("string"),
TrafficShaper: pulumi.String("string"),
TrafficShaperReverse: pulumi.String("string"),
UdpTimeoutPid: pulumi.String("string"),
Uuid: pulumi.String("string"),
})

var packagesFirewallHyperscalepolicyResource = new PackagesFirewallHyperscalepolicy("packagesFirewallHyperscalepolicyResource", PackagesFirewallHyperscalepolicyArgs.builder()
    .pkg("string")
    .packagesFirewallHyperscalepolicyId("string")
    .status("string")
    .cgnEif("string")
    .cgnEim("string")
    .cgnLogServerGrp("string")
    .cgnResourceQuota(0)
    .nat("string")
    .comments("string")
    .delayTcpNpuSession("string")
    .dstaddr("string")
    .dstaddr6("string")
    .dstaddrNegate("string")
    .dstintf("string")
    .firewallSessionDirty("string")
    .globalLabel("string")
    .ippool("string")
    .label("string")
    .adom("string")
    .cgnSessionQuota(0)
    .autoAsicOffload("string")
    .name("string")
    .pkgFolderPath("string")
    .policyOffload("string")
    .policyid(0)
    .poolname("string")
    .poolname6("string")
    .scopetype("string")
    .sendDenyPacket("string")
    .service("string")
    .serviceNegate("string")
    .srcaddr("string")
    .srcaddr6("string")
    .srcaddrNegate("string")
    .srcintf("string")
    .action("string")
    .tcpTimeoutPid("string")
    .trafficShaper("string")
    .trafficShaperReverse("string")
    .udpTimeoutPid("string")
    .uuid("string")
    .build());

packages_firewall_hyperscalepolicy_resource = fortimanager.PackagesFirewallHyperscalepolicy("packagesFirewallHyperscalepolicyResource",
    pkg="string",
    packages_firewall_hyperscalepolicy_id="string",
    status="string",
    cgn_eif="string",
    cgn_eim="string",
    cgn_log_server_grp="string",
    cgn_resource_quota=0,
    nat="string",
    comments="string",
    delay_tcp_npu_session="string",
    dstaddr="string",
    dstaddr6="string",
    dstaddr_negate="string",
    dstintf="string",
    firewall_session_dirty="string",
    global_label="string",
    ippool="string",
    label="string",
    adom="string",
    cgn_session_quota=0,
    auto_asic_offload="string",
    name="string",
    pkg_folder_path="string",
    policy_offload="string",
    policyid=0,
    poolname="string",
    poolname6="string",
    scopetype="string",
    send_deny_packet="string",
    service="string",
    service_negate="string",
    srcaddr="string",
    srcaddr6="string",
    srcaddr_negate="string",
    srcintf="string",
    action="string",
    tcp_timeout_pid="string",
    traffic_shaper="string",
    traffic_shaper_reverse="string",
    udp_timeout_pid="string",
    uuid="string")

const packagesFirewallHyperscalepolicyResource = new fortimanager.PackagesFirewallHyperscalepolicy("packagesFirewallHyperscalepolicyResource", {
    pkg: "string",
    packagesFirewallHyperscalepolicyId: "string",
    status: "string",
    cgnEif: "string",
    cgnEim: "string",
    cgnLogServerGrp: "string",
    cgnResourceQuota: 0,
    nat: "string",
    comments: "string",
    delayTcpNpuSession: "string",
    dstaddr: "string",
    dstaddr6: "string",
    dstaddrNegate: "string",
    dstintf: "string",
    firewallSessionDirty: "string",
    globalLabel: "string",
    ippool: "string",
    label: "string",
    adom: "string",
    cgnSessionQuota: 0,
    autoAsicOffload: "string",
    name: "string",
    pkgFolderPath: "string",
    policyOffload: "string",
    policyid: 0,
    poolname: "string",
    poolname6: "string",
    scopetype: "string",
    sendDenyPacket: "string",
    service: "string",
    serviceNegate: "string",
    srcaddr: "string",
    srcaddr6: "string",
    srcaddrNegate: "string",
    srcintf: "string",
    action: "string",
    tcpTimeoutPid: "string",
    trafficShaper: "string",
    trafficShaperReverse: "string",
    udpTimeoutPid: "string",
    uuid: "string",
});

type: fortimanager:PackagesFirewallHyperscalepolicy
properties:
    action: string
    adom: string
    autoAsicOffload: string
    cgnEif: string
    cgnEim: string
    cgnLogServerGrp: string
    cgnResourceQuota: 0
    cgnSessionQuota: 0
    comments: string
    delayTcpNpuSession: string
    dstaddr: string
    dstaddr6: string
    dstaddrNegate: string
    dstintf: string
    firewallSessionDirty: string
    globalLabel: string
    ippool: string
    label: string
    name: string
    nat: string
    packagesFirewallHyperscalepolicyId: string
    pkg: string
    pkgFolderPath: string
    policyOffload: string
    policyid: 0
    poolname: string
    poolname6: string
    scopetype: string
    sendDenyPacket: string
    service: string
    serviceNegate: string
    srcaddr: string
    srcaddr6: string
    srcaddrNegate: string
    srcintf: string
    status: string
    tcpTimeoutPid: string
    trafficShaper: string
    trafficShaperReverse: string
    udpTimeoutPid: string
    uuid: string

PackagesFirewallHyperscalepolicy Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The PackagesFirewallHyperscalepolicy resource accepts the following input properties:

Pkg string: Package.
Action string: Policy action (allow/deny/ipsec). Valid values: deny, accept.
Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AutoAsicOffload string: Enable/disable policy traffic ASIC offloading. Valid values: disable, enable.
CgnEif string: Enable/Disable CGN endpoint independent filtering. Valid values: disable, enable.
CgnEim string: Enable/Disable CGN endpoint independent mapping Valid values: disable, enable.
CgnLogServerGrp string: NP log server group name
CgnResourceQuota double: resource quota
CgnSessionQuota double: session quota
Comments string: Comment.
DelayTcpNpuSession string: Enable TCP NPU session delay to guarantee packet order of 3-way handshake. Valid values: disable, enable.
Dstaddr string: Destination address and address group names.
Dstaddr6 string: Destination IPv6 address name and address group names.
DstaddrNegate string: When enabled dstaddr specifies what the destination address must NOT be. Valid values: disable, enable.
Dstintf string: Outgoing (egress) interface.
FirewallSessionDirty string: How to handle sessions if the configuration of this firewall policy changes. Valid values: check-all, check-new.
GlobalLabel string: Label for the policy that appears when the GUI is in Global View mode.
Ippool string: Enable to use IP Pools for source NAT. Valid values: disable, enable.
Label string: Label for the policy that appears when the GUI is in Section View mode.
Name string: Policy name.
Nat string: Enable/disable source NAT. Valid values: disable, enable.
PackagesFirewallHyperscalepolicyId string: an identifier for the resource with format {{policyid}}.
PkgFolderPath string: Pkg Folder Path.
PolicyOffload string: Enable/Disable hardware session setup for CGNAT. Valid values: disable, enable.
Policyid double: Policy ID (0 - 15000).
Poolname string: IP Pool names.
Poolname6 string: IPv6 pool names.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SendDenyPacket string: Enable to send a reply when a session is denied or blocked by a firewall policy. Valid values: disable, enable.
Service string: Service and service group names.
ServiceNegate string: When enabled service specifies what the service must NOT be. Valid values: disable, enable.
Srcaddr string: Source address and address group names.
Srcaddr6 string: Source IPv6 address name and address group names.
SrcaddrNegate string: When enabled srcaddr specifies what the source address must NOT be. Valid values: disable, enable.
Srcintf string: Incoming (ingress) interface.
Status string: Enable or disable this policy. Valid values: disable, enable.
TcpTimeoutPid string: TCP timeout profile ID
TrafficShaper string: Traffic shaper.
TrafficShaperReverse string: Reverse traffic shaper.
UdpTimeoutPid string: UDP timeout profile ID
Uuid string: Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

Pkg string: Package.
Action string: Policy action (allow/deny/ipsec). Valid values: deny, accept.
Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AutoAsicOffload string: Enable/disable policy traffic ASIC offloading. Valid values: disable, enable.
CgnEif string: Enable/Disable CGN endpoint independent filtering. Valid values: disable, enable.
CgnEim string: Enable/Disable CGN endpoint independent mapping Valid values: disable, enable.
CgnLogServerGrp string: NP log server group name
CgnResourceQuota float64: resource quota
CgnSessionQuota float64: session quota
Comments string: Comment.
DelayTcpNpuSession string: Enable TCP NPU session delay to guarantee packet order of 3-way handshake. Valid values: disable, enable.
Dstaddr string: Destination address and address group names.
Dstaddr6 string: Destination IPv6 address name and address group names.
DstaddrNegate string: When enabled dstaddr specifies what the destination address must NOT be. Valid values: disable, enable.
Dstintf string: Outgoing (egress) interface.
FirewallSessionDirty string: How to handle sessions if the configuration of this firewall policy changes. Valid values: check-all, check-new.
GlobalLabel string: Label for the policy that appears when the GUI is in Global View mode.
Ippool string: Enable to use IP Pools for source NAT. Valid values: disable, enable.
Label string: Label for the policy that appears when the GUI is in Section View mode.
Name string: Policy name.
Nat string: Enable/disable source NAT. Valid values: disable, enable.
PackagesFirewallHyperscalepolicyId string: an identifier for the resource with format {{policyid}}.
PkgFolderPath string: Pkg Folder Path.
PolicyOffload string: Enable/Disable hardware session setup for CGNAT. Valid values: disable, enable.
Policyid float64: Policy ID (0 - 15000).
Poolname string: IP Pool names.
Poolname6 string: IPv6 pool names.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SendDenyPacket string: Enable to send a reply when a session is denied or blocked by a firewall policy. Valid values: disable, enable.
Service string: Service and service group names.
ServiceNegate string: When enabled service specifies what the service must NOT be. Valid values: disable, enable.
Srcaddr string: Source address and address group names.
Srcaddr6 string: Source IPv6 address name and address group names.
SrcaddrNegate string: When enabled srcaddr specifies what the source address must NOT be. Valid values: disable, enable.
Srcintf string: Incoming (ingress) interface.
Status string: Enable or disable this policy. Valid values: disable, enable.
TcpTimeoutPid string: TCP timeout profile ID
TrafficShaper string: Traffic shaper.
TrafficShaperReverse string: Reverse traffic shaper.
UdpTimeoutPid string: UDP timeout profile ID
Uuid string: Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

pkg String: Package.
action String: Policy action (allow/deny/ipsec). Valid values: deny, accept.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
autoAsicOffload String: Enable/disable policy traffic ASIC offloading. Valid values: disable, enable.
cgnEif String: Enable/Disable CGN endpoint independent filtering. Valid values: disable, enable.
cgnEim String: Enable/Disable CGN endpoint independent mapping Valid values: disable, enable.
cgnLogServerGrp String: NP log server group name
cgnResourceQuota Double: resource quota
cgnSessionQuota Double: session quota
comments String: Comment.
delayTcpNpuSession String: Enable TCP NPU session delay to guarantee packet order of 3-way handshake. Valid values: disable, enable.
dstaddr String: Destination address and address group names.
dstaddr6 String: Destination IPv6 address name and address group names.
dstaddrNegate String: When enabled dstaddr specifies what the destination address must NOT be. Valid values: disable, enable.
dstintf String: Outgoing (egress) interface.
firewallSessionDirty String: How to handle sessions if the configuration of this firewall policy changes. Valid values: check-all, check-new.
globalLabel String: Label for the policy that appears when the GUI is in Global View mode.
ippool String: Enable to use IP Pools for source NAT. Valid values: disable, enable.
label String: Label for the policy that appears when the GUI is in Section View mode.
name String: Policy name.
nat String: Enable/disable source NAT. Valid values: disable, enable.
packagesFirewallHyperscalepolicyId String: an identifier for the resource with format {{policyid}}.
pkgFolderPath String: Pkg Folder Path.
policyOffload String: Enable/Disable hardware session setup for CGNAT. Valid values: disable, enable.
policyid Double: Policy ID (0 - 15000).
poolname String: IP Pool names.
poolname6 String: IPv6 pool names.
scopetype String: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sendDenyPacket String: Enable to send a reply when a session is denied or blocked by a firewall policy. Valid values: disable, enable.
service String: Service and service group names.
serviceNegate String: When enabled service specifies what the service must NOT be. Valid values: disable, enable.
srcaddr String: Source address and address group names.
srcaddr6 String: Source IPv6 address name and address group names.
srcaddrNegate String: When enabled srcaddr specifies what the source address must NOT be. Valid values: disable, enable.
srcintf String: Incoming (ingress) interface.
status String: Enable or disable this policy. Valid values: disable, enable.
tcpTimeoutPid String: TCP timeout profile ID
trafficShaper String: Traffic shaper.
trafficShaperReverse String: Reverse traffic shaper.
udpTimeoutPid String: UDP timeout profile ID
uuid String: Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

pkg string: Package.
action string: Policy action (allow/deny/ipsec). Valid values: deny, accept.
adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
autoAsicOffload string: Enable/disable policy traffic ASIC offloading. Valid values: disable, enable.
cgnEif string: Enable/Disable CGN endpoint independent filtering. Valid values: disable, enable.
cgnEim string: Enable/Disable CGN endpoint independent mapping Valid values: disable, enable.
cgnLogServerGrp string: NP log server group name
cgnResourceQuota number: resource quota
cgnSessionQuota number: session quota
comments string: Comment.
delayTcpNpuSession string: Enable TCP NPU session delay to guarantee packet order of 3-way handshake. Valid values: disable, enable.
dstaddr string: Destination address and address group names.
dstaddr6 string: Destination IPv6 address name and address group names.
dstaddrNegate string: When enabled dstaddr specifies what the destination address must NOT be. Valid values: disable, enable.
dstintf string: Outgoing (egress) interface.
firewallSessionDirty string: How to handle sessions if the configuration of this firewall policy changes. Valid values: check-all, check-new.
globalLabel string: Label for the policy that appears when the GUI is in Global View mode.
ippool string: Enable to use IP Pools for source NAT. Valid values: disable, enable.
label string: Label for the policy that appears when the GUI is in Section View mode.
name string: Policy name.
nat string: Enable/disable source NAT. Valid values: disable, enable.
packagesFirewallHyperscalepolicyId string: an identifier for the resource with format {{policyid}}.
pkgFolderPath string: Pkg Folder Path.
policyOffload string: Enable/Disable hardware session setup for CGNAT. Valid values: disable, enable.
policyid number: Policy ID (0 - 15000).
poolname string: IP Pool names.
poolname6 string: IPv6 pool names.
scopetype string: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sendDenyPacket string: Enable to send a reply when a session is denied or blocked by a firewall policy. Valid values: disable, enable.
service string: Service and service group names.
serviceNegate string: When enabled service specifies what the service must NOT be. Valid values: disable, enable.
srcaddr string: Source address and address group names.
srcaddr6 string: Source IPv6 address name and address group names.
srcaddrNegate string: When enabled srcaddr specifies what the source address must NOT be. Valid values: disable, enable.
srcintf string: Incoming (ingress) interface.
status string: Enable or disable this policy. Valid values: disable, enable.
tcpTimeoutPid string: TCP timeout profile ID
trafficShaper string: Traffic shaper.
trafficShaperReverse string: Reverse traffic shaper.
udpTimeoutPid string: UDP timeout profile ID
uuid string: Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

pkg str: Package.
action str: Policy action (allow/deny/ipsec). Valid values: deny, accept.
adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
auto_asic_offload str: Enable/disable policy traffic ASIC offloading. Valid values: disable, enable.
cgn_eif str: Enable/Disable CGN endpoint independent filtering. Valid values: disable, enable.
cgn_eim str: Enable/Disable CGN endpoint independent mapping Valid values: disable, enable.
cgn_log_server_grp str: NP log server group name
cgn_resource_quota float: resource quota
cgn_session_quota float: session quota
comments str: Comment.
delay_tcp_npu_session str: Enable TCP NPU session delay to guarantee packet order of 3-way handshake. Valid values: disable, enable.
dstaddr str: Destination address and address group names.
dstaddr6 str: Destination IPv6 address name and address group names.
dstaddr_negate str: When enabled dstaddr specifies what the destination address must NOT be. Valid values: disable, enable.
dstintf str: Outgoing (egress) interface.
firewall_session_dirty str: How to handle sessions if the configuration of this firewall policy changes. Valid values: check-all, check-new.
global_label str: Label for the policy that appears when the GUI is in Global View mode.
ippool str: Enable to use IP Pools for source NAT. Valid values: disable, enable.
label str: Label for the policy that appears when the GUI is in Section View mode.
name str: Policy name.
nat str: Enable/disable source NAT. Valid values: disable, enable.
packages_firewall_hyperscalepolicy_id str: an identifier for the resource with format {{policyid}}.
pkg_folder_path str: Pkg Folder Path.
policy_offload str: Enable/Disable hardware session setup for CGNAT. Valid values: disable, enable.
policyid float: Policy ID (0 - 15000).
poolname str: IP Pool names.
poolname6 str: IPv6 pool names.
scopetype str: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
send_deny_packet str: Enable to send a reply when a session is denied or blocked by a firewall policy. Valid values: disable, enable.
service str: Service and service group names.
service_negate str: When enabled service specifies what the service must NOT be. Valid values: disable, enable.
srcaddr str: Source address and address group names.
srcaddr6 str: Source IPv6 address name and address group names.
srcaddr_negate str: When enabled srcaddr specifies what the source address must NOT be. Valid values: disable, enable.
srcintf str: Incoming (ingress) interface.
status str: Enable or disable this policy. Valid values: disable, enable.
tcp_timeout_pid str: TCP timeout profile ID
traffic_shaper str: Traffic shaper.
traffic_shaper_reverse str: Reverse traffic shaper.
udp_timeout_pid str: UDP timeout profile ID
uuid str: Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

pkg String: Package.
action String: Policy action (allow/deny/ipsec). Valid values: deny, accept.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
autoAsicOffload String: Enable/disable policy traffic ASIC offloading. Valid values: disable, enable.
cgnEif String: Enable/Disable CGN endpoint independent filtering. Valid values: disable, enable.
cgnEim String: Enable/Disable CGN endpoint independent mapping Valid values: disable, enable.
cgnLogServerGrp String: NP log server group name
cgnResourceQuota Number: resource quota
cgnSessionQuota Number: session quota
comments String: Comment.
delayTcpNpuSession String: Enable TCP NPU session delay to guarantee packet order of 3-way handshake. Valid values: disable, enable.
dstaddr String: Destination address and address group names.
dstaddr6 String: Destination IPv6 address name and address group names.
dstaddrNegate String: When enabled dstaddr specifies what the destination address must NOT be. Valid values: disable, enable.
dstintf String: Outgoing (egress) interface.
firewallSessionDirty String: How to handle sessions if the configuration of this firewall policy changes. Valid values: check-all, check-new.
globalLabel String: Label for the policy that appears when the GUI is in Global View mode.
ippool String: Enable to use IP Pools for source NAT. Valid values: disable, enable.
label String: Label for the policy that appears when the GUI is in Section View mode.
name String: Policy name.
nat String: Enable/disable source NAT. Valid values: disable, enable.
packagesFirewallHyperscalepolicyId String: an identifier for the resource with format {{policyid}}.
pkgFolderPath String: Pkg Folder Path.
policyOffload String: Enable/Disable hardware session setup for CGNAT. Valid values: disable, enable.
policyid Number: Policy ID (0 - 15000).
poolname String: IP Pool names.
poolname6 String: IPv6 pool names.
scopetype String: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sendDenyPacket String: Enable to send a reply when a session is denied or blocked by a firewall policy. Valid values: disable, enable.
service String: Service and service group names.
serviceNegate String: When enabled service specifies what the service must NOT be. Valid values: disable, enable.
srcaddr String: Source address and address group names.
srcaddr6 String: Source IPv6 address name and address group names.
srcaddrNegate String: When enabled srcaddr specifies what the source address must NOT be. Valid values: disable, enable.
srcintf String: Incoming (ingress) interface.
status String: Enable or disable this policy. Valid values: disable, enable.
tcpTimeoutPid String: TCP timeout profile ID
trafficShaper String: Traffic shaper.
trafficShaperReverse String: Reverse traffic shaper.
udpTimeoutPid String: UDP timeout profile ID
uuid String: Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

Outputs

All input properties are implicitly available as output properties. Additionally, the PackagesFirewallHyperscalepolicy resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing PackagesFirewallHyperscalepolicy Resource

Get an existing PackagesFirewallHyperscalepolicy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: PackagesFirewallHyperscalepolicyState, opts?: CustomResourceOptions): PackagesFirewallHyperscalepolicy

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        action: Optional[str] = None,
        adom: Optional[str] = None,
        auto_asic_offload: Optional[str] = None,
        cgn_eif: Optional[str] = None,
        cgn_eim: Optional[str] = None,
        cgn_log_server_grp: Optional[str] = None,
        cgn_resource_quota: Optional[float] = None,
        cgn_session_quota: Optional[float] = None,
        comments: Optional[str] = None,
        delay_tcp_npu_session: Optional[str] = None,
        dstaddr: Optional[str] = None,
        dstaddr6: Optional[str] = None,
        dstaddr_negate: Optional[str] = None,
        dstintf: Optional[str] = None,
        firewall_session_dirty: Optional[str] = None,
        global_label: Optional[str] = None,
        ippool: Optional[str] = None,
        label: Optional[str] = None,
        name: Optional[str] = None,
        nat: Optional[str] = None,
        packages_firewall_hyperscalepolicy_id: Optional[str] = None,
        pkg: Optional[str] = None,
        pkg_folder_path: Optional[str] = None,
        policy_offload: Optional[str] = None,
        policyid: Optional[float] = None,
        poolname: Optional[str] = None,
        poolname6: Optional[str] = None,
        scopetype: Optional[str] = None,
        send_deny_packet: Optional[str] = None,
        service: Optional[str] = None,
        service_negate: Optional[str] = None,
        srcaddr: Optional[str] = None,
        srcaddr6: Optional[str] = None,
        srcaddr_negate: Optional[str] = None,
        srcintf: Optional[str] = None,
        status: Optional[str] = None,
        tcp_timeout_pid: Optional[str] = None,
        traffic_shaper: Optional[str] = None,
        traffic_shaper_reverse: Optional[str] = None,
        udp_timeout_pid: Optional[str] = None,
        uuid: Optional[str] = None) -> PackagesFirewallHyperscalepolicy

func GetPackagesFirewallHyperscalepolicy(ctx *Context, name string, id IDInput, state *PackagesFirewallHyperscalepolicyState, opts ...ResourceOption) (*PackagesFirewallHyperscalepolicy, error)

public static PackagesFirewallHyperscalepolicy Get(string name, Input<string> id, PackagesFirewallHyperscalepolicyState? state, CustomResourceOptions? opts = null)

public static PackagesFirewallHyperscalepolicy get(String name, Output<String> id, PackagesFirewallHyperscalepolicyState state, CustomResourceOptions options)

resources:  _:    type: fortimanager:PackagesFirewallHyperscalepolicy    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Action string: Policy action (allow/deny/ipsec). Valid values: deny, accept.
Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AutoAsicOffload string: Enable/disable policy traffic ASIC offloading. Valid values: disable, enable.
CgnEif string: Enable/Disable CGN endpoint independent filtering. Valid values: disable, enable.
CgnEim string: Enable/Disable CGN endpoint independent mapping Valid values: disable, enable.
CgnLogServerGrp string: NP log server group name
CgnResourceQuota double: resource quota
CgnSessionQuota double: session quota
Comments string: Comment.
DelayTcpNpuSession string: Enable TCP NPU session delay to guarantee packet order of 3-way handshake. Valid values: disable, enable.
Dstaddr string: Destination address and address group names.
Dstaddr6 string: Destination IPv6 address name and address group names.
DstaddrNegate string: When enabled dstaddr specifies what the destination address must NOT be. Valid values: disable, enable.
Dstintf string: Outgoing (egress) interface.
FirewallSessionDirty string: How to handle sessions if the configuration of this firewall policy changes. Valid values: check-all, check-new.
GlobalLabel string: Label for the policy that appears when the GUI is in Global View mode.
Ippool string: Enable to use IP Pools for source NAT. Valid values: disable, enable.
Label string: Label for the policy that appears when the GUI is in Section View mode.
Name string: Policy name.
Nat string: Enable/disable source NAT. Valid values: disable, enable.
PackagesFirewallHyperscalepolicyId string: an identifier for the resource with format {{policyid}}.
Pkg string: Package.
PkgFolderPath string: Pkg Folder Path.
PolicyOffload string: Enable/Disable hardware session setup for CGNAT. Valid values: disable, enable.
Policyid double: Policy ID (0 - 15000).
Poolname string: IP Pool names.
Poolname6 string: IPv6 pool names.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SendDenyPacket string: Enable to send a reply when a session is denied or blocked by a firewall policy. Valid values: disable, enable.
Service string: Service and service group names.
ServiceNegate string: When enabled service specifies what the service must NOT be. Valid values: disable, enable.
Srcaddr string: Source address and address group names.
Srcaddr6 string: Source IPv6 address name and address group names.
SrcaddrNegate string: When enabled srcaddr specifies what the source address must NOT be. Valid values: disable, enable.
Srcintf string: Incoming (ingress) interface.
Status string: Enable or disable this policy. Valid values: disable, enable.
TcpTimeoutPid string: TCP timeout profile ID
TrafficShaper string: Traffic shaper.
TrafficShaperReverse string: Reverse traffic shaper.
UdpTimeoutPid string: UDP timeout profile ID
Uuid string: Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

Action string: Policy action (allow/deny/ipsec). Valid values: deny, accept.
Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AutoAsicOffload string: Enable/disable policy traffic ASIC offloading. Valid values: disable, enable.
CgnEif string: Enable/Disable CGN endpoint independent filtering. Valid values: disable, enable.
CgnEim string: Enable/Disable CGN endpoint independent mapping Valid values: disable, enable.
CgnLogServerGrp string: NP log server group name
CgnResourceQuota float64: resource quota
CgnSessionQuota float64: session quota
Comments string: Comment.
DelayTcpNpuSession string: Enable TCP NPU session delay to guarantee packet order of 3-way handshake. Valid values: disable, enable.
Dstaddr string: Destination address and address group names.
Dstaddr6 string: Destination IPv6 address name and address group names.
DstaddrNegate string: When enabled dstaddr specifies what the destination address must NOT be. Valid values: disable, enable.
Dstintf string: Outgoing (egress) interface.
FirewallSessionDirty string: How to handle sessions if the configuration of this firewall policy changes. Valid values: check-all, check-new.
GlobalLabel string: Label for the policy that appears when the GUI is in Global View mode.
Ippool string: Enable to use IP Pools for source NAT. Valid values: disable, enable.
Label string: Label for the policy that appears when the GUI is in Section View mode.
Name string: Policy name.
Nat string: Enable/disable source NAT. Valid values: disable, enable.
PackagesFirewallHyperscalepolicyId string: an identifier for the resource with format {{policyid}}.
Pkg string: Package.
PkgFolderPath string: Pkg Folder Path.
PolicyOffload string: Enable/Disable hardware session setup for CGNAT. Valid values: disable, enable.
Policyid float64: Policy ID (0 - 15000).
Poolname string: IP Pool names.
Poolname6 string: IPv6 pool names.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SendDenyPacket string: Enable to send a reply when a session is denied or blocked by a firewall policy. Valid values: disable, enable.
Service string: Service and service group names.
ServiceNegate string: When enabled service specifies what the service must NOT be. Valid values: disable, enable.
Srcaddr string: Source address and address group names.
Srcaddr6 string: Source IPv6 address name and address group names.
SrcaddrNegate string: When enabled srcaddr specifies what the source address must NOT be. Valid values: disable, enable.
Srcintf string: Incoming (ingress) interface.
Status string: Enable or disable this policy. Valid values: disable, enable.
TcpTimeoutPid string: TCP timeout profile ID
TrafficShaper string: Traffic shaper.
TrafficShaperReverse string: Reverse traffic shaper.
UdpTimeoutPid string: UDP timeout profile ID
Uuid string: Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

action String: Policy action (allow/deny/ipsec). Valid values: deny, accept.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
autoAsicOffload String: Enable/disable policy traffic ASIC offloading. Valid values: disable, enable.
cgnEif String: Enable/Disable CGN endpoint independent filtering. Valid values: disable, enable.
cgnEim String: Enable/Disable CGN endpoint independent mapping Valid values: disable, enable.
cgnLogServerGrp String: NP log server group name
cgnResourceQuota Double: resource quota
cgnSessionQuota Double: session quota
comments String: Comment.
delayTcpNpuSession String: Enable TCP NPU session delay to guarantee packet order of 3-way handshake. Valid values: disable, enable.
dstaddr String: Destination address and address group names.
dstaddr6 String: Destination IPv6 address name and address group names.
dstaddrNegate String: When enabled dstaddr specifies what the destination address must NOT be. Valid values: disable, enable.
dstintf String: Outgoing (egress) interface.
firewallSessionDirty String: How to handle sessions if the configuration of this firewall policy changes. Valid values: check-all, check-new.
globalLabel String: Label for the policy that appears when the GUI is in Global View mode.
ippool String: Enable to use IP Pools for source NAT. Valid values: disable, enable.
label String: Label for the policy that appears when the GUI is in Section View mode.
name String: Policy name.
nat String: Enable/disable source NAT. Valid values: disable, enable.
packagesFirewallHyperscalepolicyId String: an identifier for the resource with format {{policyid}}.
pkg String: Package.
pkgFolderPath String: Pkg Folder Path.
policyOffload String: Enable/Disable hardware session setup for CGNAT. Valid values: disable, enable.
policyid Double: Policy ID (0 - 15000).
poolname String: IP Pool names.
poolname6 String: IPv6 pool names.
scopetype String: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sendDenyPacket String: Enable to send a reply when a session is denied or blocked by a firewall policy. Valid values: disable, enable.
service String: Service and service group names.
serviceNegate String: When enabled service specifies what the service must NOT be. Valid values: disable, enable.
srcaddr String: Source address and address group names.
srcaddr6 String: Source IPv6 address name and address group names.
srcaddrNegate String: When enabled srcaddr specifies what the source address must NOT be. Valid values: disable, enable.
srcintf String: Incoming (ingress) interface.
status String: Enable or disable this policy. Valid values: disable, enable.
tcpTimeoutPid String: TCP timeout profile ID
trafficShaper String: Traffic shaper.
trafficShaperReverse String: Reverse traffic shaper.
udpTimeoutPid String: UDP timeout profile ID
uuid String: Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

action string: Policy action (allow/deny/ipsec). Valid values: deny, accept.
adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
autoAsicOffload string: Enable/disable policy traffic ASIC offloading. Valid values: disable, enable.
cgnEif string: Enable/Disable CGN endpoint independent filtering. Valid values: disable, enable.
cgnEim string: Enable/Disable CGN endpoint independent mapping Valid values: disable, enable.
cgnLogServerGrp string: NP log server group name
cgnResourceQuota number: resource quota
cgnSessionQuota number: session quota
comments string: Comment.
delayTcpNpuSession string: Enable TCP NPU session delay to guarantee packet order of 3-way handshake. Valid values: disable, enable.
dstaddr string: Destination address and address group names.
dstaddr6 string: Destination IPv6 address name and address group names.
dstaddrNegate string: When enabled dstaddr specifies what the destination address must NOT be. Valid values: disable, enable.
dstintf string: Outgoing (egress) interface.
firewallSessionDirty string: How to handle sessions if the configuration of this firewall policy changes. Valid values: check-all, check-new.
globalLabel string: Label for the policy that appears when the GUI is in Global View mode.
ippool string: Enable to use IP Pools for source NAT. Valid values: disable, enable.
label string: Label for the policy that appears when the GUI is in Section View mode.
name string: Policy name.
nat string: Enable/disable source NAT. Valid values: disable, enable.
packagesFirewallHyperscalepolicyId string: an identifier for the resource with format {{policyid}}.
pkg string: Package.
pkgFolderPath string: Pkg Folder Path.
policyOffload string: Enable/Disable hardware session setup for CGNAT. Valid values: disable, enable.
policyid number: Policy ID (0 - 15000).
poolname string: IP Pool names.
poolname6 string: IPv6 pool names.
scopetype string: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sendDenyPacket string: Enable to send a reply when a session is denied or blocked by a firewall policy. Valid values: disable, enable.
service string: Service and service group names.
serviceNegate string: When enabled service specifies what the service must NOT be. Valid values: disable, enable.
srcaddr string: Source address and address group names.
srcaddr6 string: Source IPv6 address name and address group names.
srcaddrNegate string: When enabled srcaddr specifies what the source address must NOT be. Valid values: disable, enable.
srcintf string: Incoming (ingress) interface.
status string: Enable or disable this policy. Valid values: disable, enable.
tcpTimeoutPid string: TCP timeout profile ID
trafficShaper string: Traffic shaper.
trafficShaperReverse string: Reverse traffic shaper.
udpTimeoutPid string: UDP timeout profile ID
uuid string: Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

action str: Policy action (allow/deny/ipsec). Valid values: deny, accept.
adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
auto_asic_offload str: Enable/disable policy traffic ASIC offloading. Valid values: disable, enable.
cgn_eif str: Enable/Disable CGN endpoint independent filtering. Valid values: disable, enable.
cgn_eim str: Enable/Disable CGN endpoint independent mapping Valid values: disable, enable.
cgn_log_server_grp str: NP log server group name
cgn_resource_quota float: resource quota
cgn_session_quota float: session quota
comments str: Comment.
delay_tcp_npu_session str: Enable TCP NPU session delay to guarantee packet order of 3-way handshake. Valid values: disable, enable.
dstaddr str: Destination address and address group names.
dstaddr6 str: Destination IPv6 address name and address group names.
dstaddr_negate str: When enabled dstaddr specifies what the destination address must NOT be. Valid values: disable, enable.
dstintf str: Outgoing (egress) interface.
firewall_session_dirty str: How to handle sessions if the configuration of this firewall policy changes. Valid values: check-all, check-new.
global_label str: Label for the policy that appears when the GUI is in Global View mode.
ippool str: Enable to use IP Pools for source NAT. Valid values: disable, enable.
label str: Label for the policy that appears when the GUI is in Section View mode.
name str: Policy name.
nat str: Enable/disable source NAT. Valid values: disable, enable.
packages_firewall_hyperscalepolicy_id str: an identifier for the resource with format {{policyid}}.
pkg str: Package.
pkg_folder_path str: Pkg Folder Path.
policy_offload str: Enable/Disable hardware session setup for CGNAT. Valid values: disable, enable.
policyid float: Policy ID (0 - 15000).
poolname str: IP Pool names.
poolname6 str: IPv6 pool names.
scopetype str: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
send_deny_packet str: Enable to send a reply when a session is denied or blocked by a firewall policy. Valid values: disable, enable.
service str: Service and service group names.
service_negate str: When enabled service specifies what the service must NOT be. Valid values: disable, enable.
srcaddr str: Source address and address group names.
srcaddr6 str: Source IPv6 address name and address group names.
srcaddr_negate str: When enabled srcaddr specifies what the source address must NOT be. Valid values: disable, enable.
srcintf str: Incoming (ingress) interface.
status str: Enable or disable this policy. Valid values: disable, enable.
tcp_timeout_pid str: TCP timeout profile ID
traffic_shaper str: Traffic shaper.
traffic_shaper_reverse str: Reverse traffic shaper.
udp_timeout_pid str: UDP timeout profile ID
uuid str: Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

action String: Policy action (allow/deny/ipsec). Valid values: deny, accept.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
autoAsicOffload String: Enable/disable policy traffic ASIC offloading. Valid values: disable, enable.
cgnEif String: Enable/Disable CGN endpoint independent filtering. Valid values: disable, enable.
cgnEim String: Enable/Disable CGN endpoint independent mapping Valid values: disable, enable.
cgnLogServerGrp String: NP log server group name
cgnResourceQuota Number: resource quota
cgnSessionQuota Number: session quota
comments String: Comment.
delayTcpNpuSession String: Enable TCP NPU session delay to guarantee packet order of 3-way handshake. Valid values: disable, enable.
dstaddr String: Destination address and address group names.
dstaddr6 String: Destination IPv6 address name and address group names.
dstaddrNegate String: When enabled dstaddr specifies what the destination address must NOT be. Valid values: disable, enable.
dstintf String: Outgoing (egress) interface.
firewallSessionDirty String: How to handle sessions if the configuration of this firewall policy changes. Valid values: check-all, check-new.
globalLabel String: Label for the policy that appears when the GUI is in Global View mode.
ippool String: Enable to use IP Pools for source NAT. Valid values: disable, enable.
label String: Label for the policy that appears when the GUI is in Section View mode.
name String: Policy name.
nat String: Enable/disable source NAT. Valid values: disable, enable.
packagesFirewallHyperscalepolicyId String: an identifier for the resource with format {{policyid}}.
pkg String: Package.
pkgFolderPath String: Pkg Folder Path.
policyOffload String: Enable/Disable hardware session setup for CGNAT. Valid values: disable, enable.
policyid Number: Policy ID (0 - 15000).
poolname String: IP Pool names.
poolname6 String: IPv6 pool names.
scopetype String: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sendDenyPacket String: Enable to send a reply when a session is denied or blocked by a firewall policy. Valid values: disable, enable.
service String: Service and service group names.
serviceNegate String: When enabled service specifies what the service must NOT be. Valid values: disable, enable.
srcaddr String: Source address and address group names.
srcaddr6 String: Source IPv6 address name and address group names.
srcaddrNegate String: When enabled srcaddr specifies what the source address must NOT be. Valid values: disable, enable.
srcintf String: Incoming (ingress) interface.
status String: Enable or disable this policy. Valid values: disable, enable.
tcpTimeoutPid String: TCP timeout profile ID
trafficShaper String: Traffic shaper.
trafficShaperReverse String: Reverse traffic shaper.
udpTimeoutPid String: UDP timeout profile ID
uuid String: Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

Import

Packages FirewallHyperscalePolicy can be imported using any of these accepted formats:

Set import_options = [“pkg_folder_path=YOUR_VALUE”, “pkg=YOUR_VALUE”] in the provider section.

$ export “FORTIMANAGER_IMPORT_TABLE”=“true”

$ pulumi import fortimanager:index/packagesFirewallHyperscalepolicy:PackagesFirewallHyperscalepolicy labelname {{policyid}}

$ unset “FORTIMANAGER_IMPORT_TABLE”

-> Hint: The scopetype and adom for import will directly inherit the scopetype and adom configuration of the provider.

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: fortimanager fortinetdev/terraform-provider-fortimanager
License
Notes: This Pulumi package is based on the fortimanager Terraform Provider.

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

fortimanager.PackagesFirewallHyperscalepolicy

On this page

On this page

Create PackagesFirewallHyperscalepolicy Resource

Constructor syntax

Parameters

Constructor example

PackagesFirewallHyperscalepolicy Resource Properties

Inputs

Outputs

Look up Existing PackagesFirewallHyperscalepolicy Resource

Import

Package Details

On this page

On this page