Docs Home
Cisco Catalyst SD-WAN v0.3.0 published on Friday, Mar 28, 2025 by Pulumi
sdwan.IntrusionPreventionPolicyDefinition
Explore with Pulumi AI
This resource can manage a Intrusion Prevention Policy Definition .
Example Usage
Coming soon!
Coming soon!
Coming soon!
Coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.sdwan.IntrusionPreventionPolicyDefinition;
import com.pulumi.sdwan.IntrusionPreventionPolicyDefinitionArgs;
import com.pulumi.sdwan.inputs.IntrusionPreventionPolicyDefinitionLoggingArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new IntrusionPreventionPolicyDefinition("example", IntrusionPreventionPolicyDefinitionArgs.builder()
.name("Example")
.description("My description")
.mode("security")
.inspectionMode("protection")
.logLevel("alert")
.customSignature(false)
.signatureSet("connectivity")
.targetVpns("1")
.loggings(IntrusionPreventionPolicyDefinitionLoggingArgs.builder()
.external_syslog_server_ip("10.0.0.1")
.external_syslog_server_vpn("123")
.build())
.build());
}
}
resources:
example:
type: sdwan:IntrusionPreventionPolicyDefinition
properties:
name: Example
description: My description
mode: security
inspectionMode: protection
logLevel: alert
customSignature: false
signatureSet: connectivity
targetVpns:
- '1'
loggings:
- external_syslog_server_ip: 10.0.0.1
external_syslog_server_vpn: '123'
Create IntrusionPreventionPolicyDefinition Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new IntrusionPreventionPolicyDefinition(name: string, args: IntrusionPreventionPolicyDefinitionArgs, opts?: CustomResourceOptions);@overload
def IntrusionPreventionPolicyDefinition(resource_name: str,
args: IntrusionPreventionPolicyDefinitionArgs,
opts: Optional[ResourceOptions] = None)
@overload
def IntrusionPreventionPolicyDefinition(resource_name: str,
opts: Optional[ResourceOptions] = None,
description: Optional[str] = None,
custom_signature: Optional[bool] = None,
inspection_mode: Optional[str] = None,
ips_signature_list_id: Optional[str] = None,
ips_signature_list_version: Optional[int] = None,
log_level: Optional[str] = None,
loggings: Optional[Sequence[IntrusionPreventionPolicyDefinitionLoggingArgs]] = None,
mode: Optional[str] = None,
name: Optional[str] = None,
signature_set: Optional[str] = None,
target_vpns: Optional[Sequence[str]] = None)func NewIntrusionPreventionPolicyDefinition(ctx *Context, name string, args IntrusionPreventionPolicyDefinitionArgs, opts ...ResourceOption) (*IntrusionPreventionPolicyDefinition, error)public IntrusionPreventionPolicyDefinition(string name, IntrusionPreventionPolicyDefinitionArgs args, CustomResourceOptions? opts = null)
public IntrusionPreventionPolicyDefinition(String name, IntrusionPreventionPolicyDefinitionArgs args)
public IntrusionPreventionPolicyDefinition(String name, IntrusionPreventionPolicyDefinitionArgs args, CustomResourceOptions options)
type: sdwan:IntrusionPreventionPolicyDefinition
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args IntrusionPreventionPolicyDefinitionArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args IntrusionPreventionPolicyDefinitionArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args IntrusionPreventionPolicyDefinitionArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args IntrusionPreventionPolicyDefinitionArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args IntrusionPreventionPolicyDefinitionArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var intrusionPreventionPolicyDefinitionResource = new Sdwan.IntrusionPreventionPolicyDefinition("intrusionPreventionPolicyDefinitionResource", new()
{
Description = "string",
CustomSignature = false,
InspectionMode = "string",
IpsSignatureListId = "string",
IpsSignatureListVersion = 0,
LogLevel = "string",
Loggings = new[]
{
new Sdwan.Inputs.IntrusionPreventionPolicyDefinitionLoggingArgs
{
ExternalSyslogServerIp = "string",
ExternalSyslogServerVpn = "string",
},
},
Mode = "string",
Name = "string",
SignatureSet = "string",
TargetVpns = new[]
{
"string",
},
});
example, err := sdwan.NewIntrusionPreventionPolicyDefinition(ctx, "intrusionPreventionPolicyDefinitionResource", &sdwan.IntrusionPreventionPolicyDefinitionArgs{
Description: pulumi.String("string"),
CustomSignature: pulumi.Bool(false),
InspectionMode: pulumi.String("string"),
IpsSignatureListId: pulumi.String("string"),
IpsSignatureListVersion: pulumi.Int(0),
LogLevel: pulumi.String("string"),
Loggings: sdwan.IntrusionPreventionPolicyDefinitionLoggingArray{
&sdwan.IntrusionPreventionPolicyDefinitionLoggingArgs{
ExternalSyslogServerIp: pulumi.String("string"),
ExternalSyslogServerVpn: pulumi.String("string"),
},
},
Mode: pulumi.String("string"),
Name: pulumi.String("string"),
SignatureSet: pulumi.String("string"),
TargetVpns: pulumi.StringArray{
pulumi.String("string"),
},
})
var intrusionPreventionPolicyDefinitionResource = new IntrusionPreventionPolicyDefinition("intrusionPreventionPolicyDefinitionResource", IntrusionPreventionPolicyDefinitionArgs.builder()
.description("string")
.customSignature(false)
.inspectionMode("string")
.ipsSignatureListId("string")
.ipsSignatureListVersion(0)
.logLevel("string")
.loggings(IntrusionPreventionPolicyDefinitionLoggingArgs.builder()
.externalSyslogServerIp("string")
.externalSyslogServerVpn("string")
.build())
.mode("string")
.name("string")
.signatureSet("string")
.targetVpns("string")
.build());
intrusion_prevention_policy_definition_resource = sdwan.IntrusionPreventionPolicyDefinition("intrusionPreventionPolicyDefinitionResource",
description="string",
custom_signature=False,
inspection_mode="string",
ips_signature_list_id="string",
ips_signature_list_version=0,
log_level="string",
loggings=[{
"external_syslog_server_ip": "string",
"external_syslog_server_vpn": "string",
}],
mode="string",
name="string",
signature_set="string",
target_vpns=["string"])
const intrusionPreventionPolicyDefinitionResource = new sdwan.IntrusionPreventionPolicyDefinition("intrusionPreventionPolicyDefinitionResource", {
description: "string",
customSignature: false,
inspectionMode: "string",
ipsSignatureListId: "string",
ipsSignatureListVersion: 0,
logLevel: "string",
loggings: [{
externalSyslogServerIp: "string",
externalSyslogServerVpn: "string",
}],
mode: "string",
name: "string",
signatureSet: "string",
targetVpns: ["string"],
});
type: sdwan:IntrusionPreventionPolicyDefinition
properties:
customSignature: false
description: string
inspectionMode: string
ipsSignatureListId: string
ipsSignatureListVersion: 0
logLevel: string
loggings:
- externalSyslogServerIp: string
externalSyslogServerVpn: string
mode: string
name: string
signatureSet: string
targetVpns:
- string
IntrusionPreventionPolicyDefinition Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The IntrusionPreventionPolicyDefinition resource accepts the following input properties:
- Description string
- The description of the policy definition
- Custom
Signature bool - Custom signature
- Inspection
Mode string - The inspection mode - Choices:
protection,detection - Ips
Signature stringList Id - IPS signature list ID
- Ips
Signature intList Version - IPS signature list version
- Log
Level string - Log level - Choices:
emergency,alert,critical,error,warning,notice,info,debug - Loggings
List<Intrusion
Prevention Policy Definition Logging> - Mode string
- The policy mode - Choices:
security,unified - Name string
- The name of the policy definition
- Signature
Set string - Signature set - Choices:
balanced,connectivity,security - Target
Vpns List<string> - List of VPN IDs
- Description string
- The description of the policy definition
- Custom
Signature bool - Custom signature
- Inspection
Mode string - The inspection mode - Choices:
protection,detection - Ips
Signature stringList Id - IPS signature list ID
- Ips
Signature intList Version - IPS signature list version
- Log
Level string - Log level - Choices:
emergency,alert,critical,error,warning,notice,info,debug - Loggings
[]Intrusion
Prevention Policy Definition Logging Args - Mode string
- The policy mode - Choices:
security,unified - Name string
- The name of the policy definition
- Signature
Set string - Signature set - Choices:
balanced,connectivity,security - Target
Vpns []string - List of VPN IDs
- description String
- The description of the policy definition
- custom
Signature Boolean - Custom signature
- inspection
Mode String - The inspection mode - Choices:
protection,detection - ips
Signature StringList Id - IPS signature list ID
- ips
Signature IntegerList Version - IPS signature list version
- log
Level String - Log level - Choices:
emergency,alert,critical,error,warning,notice,info,debug - loggings
List<Intrusion
Prevention Policy Definition Logging> - mode String
- The policy mode - Choices:
security,unified - name String
- The name of the policy definition
- signature
Set String - Signature set - Choices:
balanced,connectivity,security - target
Vpns List<String> - List of VPN IDs
- description string
- The description of the policy definition
- custom
Signature boolean - Custom signature
- inspection
Mode string - The inspection mode - Choices:
protection,detection - ips
Signature stringList Id - IPS signature list ID
- ips
Signature numberList Version - IPS signature list version
- log
Level string - Log level - Choices:
emergency,alert,critical,error,warning,notice,info,debug - loggings
Intrusion
Prevention Policy Definition Logging[] - mode string
- The policy mode - Choices:
security,unified - name string
- The name of the policy definition
- signature
Set string - Signature set - Choices:
balanced,connectivity,security - target
Vpns string[] - List of VPN IDs
- description str
- The description of the policy definition
- custom_
signature bool - Custom signature
- inspection_
mode str - The inspection mode - Choices:
protection,detection - ips_
signature_ strlist_ id - IPS signature list ID
- ips_
signature_ intlist_ version - IPS signature list version
- log_
level str - Log level - Choices:
emergency,alert,critical,error,warning,notice,info,debug - loggings
Sequence[Intrusion
Prevention Policy Definition Logging Args] - mode str
- The policy mode - Choices:
security,unified - name str
- The name of the policy definition
- signature_
set str - Signature set - Choices:
balanced,connectivity,security - target_
vpns Sequence[str] - List of VPN IDs
- description String
- The description of the policy definition
- custom
Signature Boolean - Custom signature
- inspection
Mode String - The inspection mode - Choices:
protection,detection - ips
Signature StringList Id - IPS signature list ID
- ips
Signature NumberList Version - IPS signature list version
- log
Level String - Log level - Choices:
emergency,alert,critical,error,warning,notice,info,debug - loggings List<Property Map>
- mode String
- The policy mode - Choices:
security,unified - name String
- The name of the policy definition
- signature
Set String - Signature set - Choices:
balanced,connectivity,security - target
Vpns List<String> - List of VPN IDs
Outputs
All input properties are implicitly available as output properties. Additionally, the IntrusionPreventionPolicyDefinition resource produces the following output properties:
Look up Existing IntrusionPreventionPolicyDefinition Resource
Get an existing IntrusionPreventionPolicyDefinition resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: IntrusionPreventionPolicyDefinitionState, opts?: CustomResourceOptions): IntrusionPreventionPolicyDefinition@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
custom_signature: Optional[bool] = None,
description: Optional[str] = None,
inspection_mode: Optional[str] = None,
ips_signature_list_id: Optional[str] = None,
ips_signature_list_version: Optional[int] = None,
log_level: Optional[str] = None,
loggings: Optional[Sequence[IntrusionPreventionPolicyDefinitionLoggingArgs]] = None,
mode: Optional[str] = None,
name: Optional[str] = None,
signature_set: Optional[str] = None,
target_vpns: Optional[Sequence[str]] = None,
version: Optional[int] = None) -> IntrusionPreventionPolicyDefinitionfunc GetIntrusionPreventionPolicyDefinition(ctx *Context, name string, id IDInput, state *IntrusionPreventionPolicyDefinitionState, opts ...ResourceOption) (*IntrusionPreventionPolicyDefinition, error)public static IntrusionPreventionPolicyDefinition Get(string name, Input<string> id, IntrusionPreventionPolicyDefinitionState? state, CustomResourceOptions? opts = null)public static IntrusionPreventionPolicyDefinition get(String name, Output<String> id, IntrusionPreventionPolicyDefinitionState state, CustomResourceOptions options)resources: _: type: sdwan:IntrusionPreventionPolicyDefinition get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Custom
Signature bool - Custom signature
- Description string
- The description of the policy definition
- Inspection
Mode string - The inspection mode - Choices:
protection,detection - Ips
Signature stringList Id - IPS signature list ID
- Ips
Signature intList Version - IPS signature list version
- Log
Level string - Log level - Choices:
emergency,alert,critical,error,warning,notice,info,debug - Loggings
List<Intrusion
Prevention Policy Definition Logging> - Mode string
- The policy mode - Choices:
security,unified - Name string
- The name of the policy definition
- Signature
Set string - Signature set - Choices:
balanced,connectivity,security - Target
Vpns List<string> - List of VPN IDs
- Version int
- The version of the object
- Custom
Signature bool - Custom signature
- Description string
- The description of the policy definition
- Inspection
Mode string - The inspection mode - Choices:
protection,detection - Ips
Signature stringList Id - IPS signature list ID
- Ips
Signature intList Version - IPS signature list version
- Log
Level string - Log level - Choices:
emergency,alert,critical,error,warning,notice,info,debug - Loggings
[]Intrusion
Prevention Policy Definition Logging Args - Mode string
- The policy mode - Choices:
security,unified - Name string
- The name of the policy definition
- Signature
Set string - Signature set - Choices:
balanced,connectivity,security - Target
Vpns []string - List of VPN IDs
- Version int
- The version of the object
- custom
Signature Boolean - Custom signature
- description String
- The description of the policy definition
- inspection
Mode String - The inspection mode - Choices:
protection,detection - ips
Signature StringList Id - IPS signature list ID
- ips
Signature IntegerList Version - IPS signature list version
- log
Level String - Log level - Choices:
emergency,alert,critical,error,warning,notice,info,debug - loggings
List<Intrusion
Prevention Policy Definition Logging> - mode String
- The policy mode - Choices:
security,unified - name String
- The name of the policy definition
- signature
Set String - Signature set - Choices:
balanced,connectivity,security - target
Vpns List<String> - List of VPN IDs
- version Integer
- The version of the object
- custom
Signature boolean - Custom signature
- description string
- The description of the policy definition
- inspection
Mode string - The inspection mode - Choices:
protection,detection - ips
Signature stringList Id - IPS signature list ID
- ips
Signature numberList Version - IPS signature list version
- log
Level string - Log level - Choices:
emergency,alert,critical,error,warning,notice,info,debug - loggings
Intrusion
Prevention Policy Definition Logging[] - mode string
- The policy mode - Choices:
security,unified - name string
- The name of the policy definition
- signature
Set string - Signature set - Choices:
balanced,connectivity,security - target
Vpns string[] - List of VPN IDs
- version number
- The version of the object
- custom_
signature bool - Custom signature
- description str
- The description of the policy definition
- inspection_
mode str - The inspection mode - Choices:
protection,detection - ips_
signature_ strlist_ id - IPS signature list ID
- ips_
signature_ intlist_ version - IPS signature list version
- log_
level str - Log level - Choices:
emergency,alert,critical,error,warning,notice,info,debug - loggings
Sequence[Intrusion
Prevention Policy Definition Logging Args] - mode str
- The policy mode - Choices:
security,unified - name str
- The name of the policy definition
- signature_
set str - Signature set - Choices:
balanced,connectivity,security - target_
vpns Sequence[str] - List of VPN IDs
- version int
- The version of the object
- custom
Signature Boolean - Custom signature
- description String
- The description of the policy definition
- inspection
Mode String - The inspection mode - Choices:
protection,detection - ips
Signature StringList Id - IPS signature list ID
- ips
Signature NumberList Version - IPS signature list version
- log
Level String - Log level - Choices:
emergency,alert,critical,error,warning,notice,info,debug - loggings List<Property Map>
- mode String
- The policy mode - Choices:
security,unified - name String
- The name of the policy definition
- signature
Set String - Signature set - Choices:
balanced,connectivity,security - target
Vpns List<String> - List of VPN IDs
- version Number
- The version of the object
Supporting Types
IntrusionPreventionPolicyDefinitionLogging, IntrusionPreventionPolicyDefinitionLoggingArgs
- External
Syslog stringServer Ip - External Syslog Server IP
- External
Syslog stringServer Vpn - External Syslog Server VPN
- External
Syslog stringServer Ip - External Syslog Server IP
- External
Syslog stringServer Vpn - External Syslog Server VPN
- external
Syslog StringServer Ip - External Syslog Server IP
- external
Syslog StringServer Vpn - External Syslog Server VPN
- external
Syslog stringServer Ip - External Syslog Server IP
- external
Syslog stringServer Vpn - External Syslog Server VPN
- external_
syslog_ strserver_ ip - External Syslog Server IP
- external_
syslog_ strserver_ vpn - External Syslog Server VPN
- external
Syslog StringServer Ip - External Syslog Server IP
- external
Syslog StringServer Vpn - External Syslog Server VPN
Import
$ pulumi import sdwan:index/intrusionPreventionPolicyDefinition:IntrusionPreventionPolicyDefinition example "f6b2c44c-693c-4763-b010-895aa3d236bd"
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- sdwan pulumi/pulumi-sdwan
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
sdwanTerraform Provider.