aviatrix.Aviatrix_spoke_external_device_conn
Explore with Pulumi AI
The aviatrix_spoke_external_device_conn resource creates and manages the connection between the Aviatrix BGP enabled spoke gateway and an External Device for purposes of Transit Network.
Notes
custom_algorithms
If set to true, the six algorithm arguments cannot all be default value. If set to false, default values will be used for all six algorithm arguments.
Example Usage
using System.Collections.Generic;
using Pulumi;
using Aviatrix = Pulumi.Aviatrix;
return await Deployment.RunAsync(() => 
{
    // Create an Aviatrix Spoke External Device Connection
    var test = new Aviatrix.Aviatrix_spoke_external_device_conn("test", new()
    {
        BgpLocalAsNum = "123",
        BgpRemoteAsNum = "345",
        ConnectionName = "my_conn",
        ConnectionType = "bgp",
        GwName = "spokeGw",
        RemoteGatewayIp = "172.12.13.14",
        VpcId = "vpc-abcd1234",
    });
});
package main
import (
	"github.com/astipkovits/pulumi-aviatrix/sdk/go/aviatrix"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := aviatrix.Newaviatrix_spoke_external_device_conn(ctx, "test", &aviatrix.aviatrix_spoke_external_device_connArgs{
			BgpLocalAsNum:   pulumi.String("123"),
			BgpRemoteAsNum:  pulumi.String("345"),
			ConnectionName:  pulumi.String("my_conn"),
			ConnectionType:  pulumi.String("bgp"),
			GwName:          pulumi.String("spokeGw"),
			RemoteGatewayIp: pulumi.String("172.12.13.14"),
			VpcId:           pulumi.String("vpc-abcd1234"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aviatrix.aviatrix_spoke_external_device_conn;
import com.pulumi.aviatrix.Aviatrix_spoke_external_device_connArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var test = new Aviatrix_spoke_external_device_conn("test", Aviatrix_spoke_external_device_connArgs.builder()        
            .bgpLocalAsNum("123")
            .bgpRemoteAsNum("345")
            .connectionName("my_conn")
            .connectionType("bgp")
            .gwName("spokeGw")
            .remoteGatewayIp("172.12.13.14")
            .vpcId("vpc-abcd1234")
            .build());
    }
}
import * as pulumi from "@pulumi/pulumi";
import * as aviatrix from "@pulumi/aviatrix";
// Create an Aviatrix Spoke External Device Connection
const test = new aviatrix.aviatrix_spoke_external_device_conn("test", {
    bgpLocalAsNum: "123",
    bgpRemoteAsNum: "345",
    connectionName: "my_conn",
    connectionType: "bgp",
    gwName: "spokeGw",
    remoteGatewayIp: "172.12.13.14",
    vpcId: "vpc-abcd1234",
});
import pulumi
import pulumi_aviatrix as aviatrix
# Create an Aviatrix Spoke External Device Connection
test = aviatrix.Aviatrix_spoke_external_device_conn("test",
    bgp_local_as_num="123",
    bgp_remote_as_num="345",
    connection_name="my_conn",
    connection_type="bgp",
    gw_name="spokeGw",
    remote_gateway_ip="172.12.13.14",
    vpc_id="vpc-abcd1234")
resources:
  # Create an Aviatrix Spoke External Device Connection
  test:
    type: aviatrix:aviatrix_spoke_external_device_conn
    properties:
      bgpLocalAsNum: '123'
      bgpRemoteAsNum: '345'
      connectionName: my_conn
      connectionType: bgp
      gwName: spokeGw
      remoteGatewayIp: 172.12.13.14
      vpcId: vpc-abcd1234
Coming soon!
Coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aviatrix.aviatrix_spoke_external_device_conn;
import com.pulumi.aviatrix.Aviatrix_spoke_external_device_connArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var test = new Aviatrix_spoke_external_device_conn("test", Aviatrix_spoke_external_device_connArgs.builder()        
            .backupRemoteGatewayIp("172.12.13.15")
            .connectionName("my_conn")
            .connectionType("static")
            .enableHa(true)
            .gwName("spokeGw")
            .remoteGatewayIp("172.12.13.14")
            .remoteSubnet("12.0.0.0/24")
            .vpcId("vpc-abcd1234")
            .build());
    }
}
import * as pulumi from "@pulumi/pulumi";
import * as aviatrix from "@pulumi/aviatrix";
// Create an Aviatrix Spoke External Device Connection with HA enabled
const test = new aviatrix.aviatrix_spoke_external_device_conn("test", {
    backupRemoteGatewayIp: "172.12.13.15",
    connectionName: "my_conn",
    connectionType: "static",
    enableHa: true,
    gwName: "spokeGw",
    remoteGatewayIp: "172.12.13.14",
    remoteSubnet: "12.0.0.0/24",
    vpcId: "vpc-abcd1234",
});
Coming soon!
resources:
  # Create an Aviatrix Spoke External Device Connection with HA enabled
  test:
    type: aviatrix:aviatrix_spoke_external_device_conn
    properties:
      backupRemoteGatewayIp: 172.12.13.15
      connectionName: my_conn
      connectionType: static
      enableHa: true
      gwName: spokeGw
      remoteGatewayIp: 172.12.13.14
      remoteSubnet: 12.0.0.0/24
      vpcId: vpc-abcd1234
using System.Collections.Generic;
using Pulumi;
using Aviatrix = Pulumi.Aviatrix;
return await Deployment.RunAsync(() => 
{
    // Create an Aviatrix Spoke External Device Connection with Connection AS Path Prepend set
    var test = new Aviatrix.Aviatrix_spoke_external_device_conn("test", new()
    {
        BgpLocalAsNum = "123",
        BgpRemoteAsNum = "345",
        ConnectionName = "my_conn",
        ConnectionType = "bgp",
        GwName = "spokeGw",
        PrependAsPaths = new[]
        {
            "123",
            "123",
        },
        RemoteGatewayIp = "172.12.13.14",
        VpcId = "vpc-abcd1234",
    });
});
package main
import (
	"github.com/astipkovits/pulumi-aviatrix/sdk/go/aviatrix"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := aviatrix.Newaviatrix_spoke_external_device_conn(ctx, "test", &aviatrix.aviatrix_spoke_external_device_connArgs{
			BgpLocalAsNum:  pulumi.String("123"),
			BgpRemoteAsNum: pulumi.String("345"),
			ConnectionName: pulumi.String("my_conn"),
			ConnectionType: pulumi.String("bgp"),
			GwName:         pulumi.String("spokeGw"),
			PrependAsPaths: pulumi.StringArray{
				pulumi.String("123"),
				pulumi.String("123"),
			},
			RemoteGatewayIp: pulumi.String("172.12.13.14"),
			VpcId:           pulumi.String("vpc-abcd1234"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aviatrix.aviatrix_spoke_external_device_conn;
import com.pulumi.aviatrix.Aviatrix_spoke_external_device_connArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var test = new Aviatrix_spoke_external_device_conn("test", Aviatrix_spoke_external_device_connArgs.builder()        
            .bgpLocalAsNum("123")
            .bgpRemoteAsNum("345")
            .connectionName("my_conn")
            .connectionType("bgp")
            .gwName("spokeGw")
            .prependAsPaths(            
                "123",
                "123")
            .remoteGatewayIp("172.12.13.14")
            .vpcId("vpc-abcd1234")
            .build());
    }
}
import * as pulumi from "@pulumi/pulumi";
import * as aviatrix from "@pulumi/aviatrix";
// Create an Aviatrix Spoke External Device Connection with Connection AS Path Prepend set
const test = new aviatrix.aviatrix_spoke_external_device_conn("test", {
    bgpLocalAsNum: "123",
    bgpRemoteAsNum: "345",
    connectionName: "my_conn",
    connectionType: "bgp",
    gwName: "spokeGw",
    prependAsPaths: [
        "123",
        "123",
    ],
    remoteGatewayIp: "172.12.13.14",
    vpcId: "vpc-abcd1234",
});
import pulumi
import pulumi_aviatrix as aviatrix
# Create an Aviatrix Spoke External Device Connection with Connection AS Path Prepend set
test = aviatrix.Aviatrix_spoke_external_device_conn("test",
    bgp_local_as_num="123",
    bgp_remote_as_num="345",
    connection_name="my_conn",
    connection_type="bgp",
    gw_name="spokeGw",
    prepend_as_paths=[
        "123",
        "123",
    ],
    remote_gateway_ip="172.12.13.14",
    vpc_id="vpc-abcd1234")
resources:
  # Create an Aviatrix Spoke External Device Connection with Connection AS Path Prepend set
  test:
    type: aviatrix:aviatrix_spoke_external_device_conn
    properties:
      bgpLocalAsNum: '123'
      bgpRemoteAsNum: '345'
      connectionName: my_conn
      connectionType: bgp
      gwName: spokeGw
      prependAsPaths:
        - '123'
        - '123'
      remoteGatewayIp: 172.12.13.14
      vpcId: vpc-abcd1234
Create Aviatrix_spoke_external_device_conn Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Aviatrix_spoke_external_device_conn(name: string, args: Aviatrix_spoke_external_device_connArgs, opts?: CustomResourceOptions);@overload
def Aviatrix_spoke_external_device_conn(resource_name: str,
                                        args: Aviatrix_spoke_external_device_connArgs,
                                        opts: Optional[ResourceOptions] = None)
@overload
def Aviatrix_spoke_external_device_conn(resource_name: str,
                                        opts: Optional[ResourceOptions] = None,
                                        connection_name: Optional[str] = None,
                                        vpc_id: Optional[str] = None,
                                        remote_gateway_ip: Optional[str] = None,
                                        gw_name: Optional[str] = None,
                                        bgp_md5_key: Optional[str] = None,
                                        ha_enabled: Optional[bool] = None,
                                        backup_remote_gateway_ip: Optional[str] = None,
                                        backup_remote_tunnel_cidr: Optional[str] = None,
                                        bgp_local_as_num: Optional[str] = None,
                                        approved_cidrs: Optional[Sequence[str]] = None,
                                        bgp_remote_as_num: Optional[str] = None,
                                        backup_local_tunnel_cidr: Optional[str] = None,
                                        connection_type: Optional[str] = None,
                                        custom_algorithms: Optional[bool] = None,
                                        direct_connect: Optional[bool] = None,
                                        enable_event_triggered_ha: Optional[bool] = None,
                                        enable_ikev2: Optional[bool] = None,
                                        enable_learned_cidrs_approval: Optional[bool] = None,
                                        backup_direct_connect: Optional[bool] = None,
                                        backup_pre_shared_key: Optional[str] = None,
                                        local_tunnel_cidr: Optional[str] = None,
                                        manual_bgp_advertised_cidrs: Optional[Sequence[str]] = None,
                                        phase1_authentication: Optional[str] = None,
                                        phase1_dh_groups: Optional[str] = None,
                                        phase1_encryption: Optional[str] = None,
                                        phase1_remote_identifiers: Optional[Sequence[str]] = None,
                                        phase2_authentication: Optional[str] = None,
                                        phase2_dh_groups: Optional[str] = None,
                                        phase2_encryption: Optional[str] = None,
                                        pre_shared_key: Optional[str] = None,
                                        prepend_as_paths: Optional[Sequence[str]] = None,
                                        backup_bgp_remote_as_num: Optional[str] = None,
                                        remote_subnet: Optional[str] = None,
                                        remote_tunnel_cidr: Optional[str] = None,
                                        tunnel_protocol: Optional[str] = None,
                                        backup_bgp_md5_key: Optional[str] = None)func NewAviatrix_spoke_external_device_conn(ctx *Context, name string, args Aviatrix_spoke_external_device_connArgs, opts ...ResourceOption) (*Aviatrix_spoke_external_device_conn, error)public Aviatrix_spoke_external_device_conn(string name, Aviatrix_spoke_external_device_connArgs args, CustomResourceOptions? opts = null)
public Aviatrix_spoke_external_device_conn(String name, Aviatrix_spoke_external_device_connArgs args)
public Aviatrix_spoke_external_device_conn(String name, Aviatrix_spoke_external_device_connArgs args, CustomResourceOptions options)
type: aviatrix:index/aviatrix_spoke_external_device_conn:aviatrix_spoke_external_device_conn
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args Aviatrix_spoke_external_device_connArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args Aviatrix_spoke_external_device_connArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args Aviatrix_spoke_external_device_connArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args Aviatrix_spoke_external_device_connArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args Aviatrix_spoke_external_device_connArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Aviatrix_spoke_external_device_conn Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Aviatrix_spoke_external_device_conn resource accepts the following input properties:
- ConnectionName string
- Spoke external device connection name.
- GwName string
- Aviatrix spoke gateway name.
- RemoteGateway stringIp 
- Remote gateway IP.
- VpcId string
- VPC ID of the Aviatrix spoke gateway.
- ApprovedCidrs List<string>
- Set of approved CIDRs. Requires enable_learned_cidrs_approvalto be true. Type: Set(String).
- BackupBgp stringMd5Key 
- Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'.
- BackupBgp stringRemote As Num 
- Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
- BackupDirect boolConnect 
- Backup direct connect for backup external device.
- BackupLocal stringTunnel Cidr 
- Source CIDR for the tunnel from the backup Aviatrix spoke gateway.
- string
- Backup Pre-Shared Key.
- BackupRemote stringGateway Ip 
- Backup remote gateway IP.
- BackupRemote stringTunnel Cidr 
- Destination CIDR for the tunnel to the backup external device.
- BgpLocal stringAs Num 
- BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- BgpMd5Key string
- BGP MD5 Authentication Key. Example: 'avx01,avx02'.
- BgpRemote stringAs Num 
- BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- ConnectionType string
- Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
- CustomAlgorithms bool
- Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
- DirectConnect bool
- Set true for private network infrastructure.
- EnableEvent boolTriggered Ha 
- Enable Event Triggered HA. Default value: false. Valid values: true or false.
- EnableIkev2 bool
- Set as true to enable IKEv2 protocol.
- EnableLearned boolCidrs Approval 
- Enable learned CIDRs approval for the connection. Only valid with connection_type= 'bgp'. Requires the spoke_gateway'slearned_cidrs_approval_modeattribute be set to 'connection'. Valid values: true, false. Default value: false.
- HaEnabled bool
- Set as true if there are two external devices.- backup_remote_gateway_ip- (Optional) Backup remote gateway IP. Required if HA enabled.
 
- LocalTunnel stringCidr 
- Source CIDR for the tunnel from the Aviatrix spoke gateway.
- ManualBgp List<string>Advertised Cidrs 
- Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'.
- Phase1Authentication string
- Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
- Phase1DhGroups string
- Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- Phase1Encryption string
- Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
- Phase1RemoteIdentifiers List<string>
- Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled.
- Phase2Authentication string
- Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
- Phase2DhGroups string
- Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- Phase2Encryption string
- Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
- string
- Pre-Shared Key.
- PrependAs List<string>Paths 
- Connection AS Path Prepend customized by specifying AS PATH for a BGP connection.
- RemoteSubnet string
- Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
- RemoteTunnel stringCidr 
- Destination CIDR for the tunnel to the external device.
- TunnelProtocol string
- Tunnel protocol, only valid with connection_type= 'bgp'. Valid values: 'IPsec'. Default value: 'IPsec'. Case insensitive.
- ConnectionName string
- Spoke external device connection name.
- GwName string
- Aviatrix spoke gateway name.
- RemoteGateway stringIp 
- Remote gateway IP.
- VpcId string
- VPC ID of the Aviatrix spoke gateway.
- ApprovedCidrs []string
- Set of approved CIDRs. Requires enable_learned_cidrs_approvalto be true. Type: Set(String).
- BackupBgp stringMd5Key 
- Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'.
- BackupBgp stringRemote As Num 
- Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
- BackupDirect boolConnect 
- Backup direct connect for backup external device.
- BackupLocal stringTunnel Cidr 
- Source CIDR for the tunnel from the backup Aviatrix spoke gateway.
- string
- Backup Pre-Shared Key.
- BackupRemote stringGateway Ip 
- Backup remote gateway IP.
- BackupRemote stringTunnel Cidr 
- Destination CIDR for the tunnel to the backup external device.
- BgpLocal stringAs Num 
- BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- BgpMd5Key string
- BGP MD5 Authentication Key. Example: 'avx01,avx02'.
- BgpRemote stringAs Num 
- BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- ConnectionType string
- Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
- CustomAlgorithms bool
- Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
- DirectConnect bool
- Set true for private network infrastructure.
- EnableEvent boolTriggered Ha 
- Enable Event Triggered HA. Default value: false. Valid values: true or false.
- EnableIkev2 bool
- Set as true to enable IKEv2 protocol.
- EnableLearned boolCidrs Approval 
- Enable learned CIDRs approval for the connection. Only valid with connection_type= 'bgp'. Requires the spoke_gateway'slearned_cidrs_approval_modeattribute be set to 'connection'. Valid values: true, false. Default value: false.
- HaEnabled bool
- Set as true if there are two external devices.- backup_remote_gateway_ip- (Optional) Backup remote gateway IP. Required if HA enabled.
 
- LocalTunnel stringCidr 
- Source CIDR for the tunnel from the Aviatrix spoke gateway.
- ManualBgp []stringAdvertised Cidrs 
- Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'.
- Phase1Authentication string
- Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
- Phase1DhGroups string
- Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- Phase1Encryption string
- Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
- Phase1RemoteIdentifiers []string
- Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled.
- Phase2Authentication string
- Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
- Phase2DhGroups string
- Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- Phase2Encryption string
- Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
- string
- Pre-Shared Key.
- PrependAs []stringPaths 
- Connection AS Path Prepend customized by specifying AS PATH for a BGP connection.
- RemoteSubnet string
- Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
- RemoteTunnel stringCidr 
- Destination CIDR for the tunnel to the external device.
- TunnelProtocol string
- Tunnel protocol, only valid with connection_type= 'bgp'. Valid values: 'IPsec'. Default value: 'IPsec'. Case insensitive.
- connectionName String
- Spoke external device connection name.
- gwName String
- Aviatrix spoke gateway name.
- remoteGateway StringIp 
- Remote gateway IP.
- vpcId String
- VPC ID of the Aviatrix spoke gateway.
- approvedCidrs List<String>
- Set of approved CIDRs. Requires enable_learned_cidrs_approvalto be true. Type: Set(String).
- backupBgp StringMd5Key 
- Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'.
- backupBgp StringRemote As Num 
- Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
- backupDirect BooleanConnect 
- Backup direct connect for backup external device.
- backupLocal StringTunnel Cidr 
- Source CIDR for the tunnel from the backup Aviatrix spoke gateway.
- String
- Backup Pre-Shared Key.
- backupRemote StringGateway Ip 
- Backup remote gateway IP.
- backupRemote StringTunnel Cidr 
- Destination CIDR for the tunnel to the backup external device.
- bgpLocal StringAs Num 
- BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- bgpMd5Key String
- BGP MD5 Authentication Key. Example: 'avx01,avx02'.
- bgpRemote StringAs Num 
- BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- connectionType String
- Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
- customAlgorithms Boolean
- Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
- directConnect Boolean
- Set true for private network infrastructure.
- enableEvent BooleanTriggered Ha 
- Enable Event Triggered HA. Default value: false. Valid values: true or false.
- enableIkev2 Boolean
- Set as true to enable IKEv2 protocol.
- enableLearned BooleanCidrs Approval 
- Enable learned CIDRs approval for the connection. Only valid with connection_type= 'bgp'. Requires the spoke_gateway'slearned_cidrs_approval_modeattribute be set to 'connection'. Valid values: true, false. Default value: false.
- haEnabled Boolean
- Set as true if there are two external devices.- backup_remote_gateway_ip- (Optional) Backup remote gateway IP. Required if HA enabled.
 
- localTunnel StringCidr 
- Source CIDR for the tunnel from the Aviatrix spoke gateway.
- manualBgp List<String>Advertised Cidrs 
- Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'.
- phase1Authentication String
- Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
- phase1DhGroups String
- Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- phase1Encryption String
- Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
- phase1RemoteIdentifiers List<String>
- Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled.
- phase2Authentication String
- Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
- phase2DhGroups String
- Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- phase2Encryption String
- Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
- String
- Pre-Shared Key.
- prependAs List<String>Paths 
- Connection AS Path Prepend customized by specifying AS PATH for a BGP connection.
- remoteSubnet String
- Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
- remoteTunnel StringCidr 
- Destination CIDR for the tunnel to the external device.
- tunnelProtocol String
- Tunnel protocol, only valid with connection_type= 'bgp'. Valid values: 'IPsec'. Default value: 'IPsec'. Case insensitive.
- connectionName string
- Spoke external device connection name.
- gwName string
- Aviatrix spoke gateway name.
- remoteGateway stringIp 
- Remote gateway IP.
- vpcId string
- VPC ID of the Aviatrix spoke gateway.
- approvedCidrs string[]
- Set of approved CIDRs. Requires enable_learned_cidrs_approvalto be true. Type: Set(String).
- backupBgp stringMd5Key 
- Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'.
- backupBgp stringRemote As Num 
- Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
- backupDirect booleanConnect 
- Backup direct connect for backup external device.
- backupLocal stringTunnel Cidr 
- Source CIDR for the tunnel from the backup Aviatrix spoke gateway.
- string
- Backup Pre-Shared Key.
- backupRemote stringGateway Ip 
- Backup remote gateway IP.
- backupRemote stringTunnel Cidr 
- Destination CIDR for the tunnel to the backup external device.
- bgpLocal stringAs Num 
- BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- bgpMd5Key string
- BGP MD5 Authentication Key. Example: 'avx01,avx02'.
- bgpRemote stringAs Num 
- BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- connectionType string
- Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
- customAlgorithms boolean
- Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
- directConnect boolean
- Set true for private network infrastructure.
- enableEvent booleanTriggered Ha 
- Enable Event Triggered HA. Default value: false. Valid values: true or false.
- enableIkev2 boolean
- Set as true to enable IKEv2 protocol.
- enableLearned booleanCidrs Approval 
- Enable learned CIDRs approval for the connection. Only valid with connection_type= 'bgp'. Requires the spoke_gateway'slearned_cidrs_approval_modeattribute be set to 'connection'. Valid values: true, false. Default value: false.
- haEnabled boolean
- Set as true if there are two external devices.- backup_remote_gateway_ip- (Optional) Backup remote gateway IP. Required if HA enabled.
 
- localTunnel stringCidr 
- Source CIDR for the tunnel from the Aviatrix spoke gateway.
- manualBgp string[]Advertised Cidrs 
- Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'.
- phase1Authentication string
- Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
- phase1DhGroups string
- Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- phase1Encryption string
- Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
- phase1RemoteIdentifiers string[]
- Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled.
- phase2Authentication string
- Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
- phase2DhGroups string
- Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- phase2Encryption string
- Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
- string
- Pre-Shared Key.
- prependAs string[]Paths 
- Connection AS Path Prepend customized by specifying AS PATH for a BGP connection.
- remoteSubnet string
- Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
- remoteTunnel stringCidr 
- Destination CIDR for the tunnel to the external device.
- tunnelProtocol string
- Tunnel protocol, only valid with connection_type= 'bgp'. Valid values: 'IPsec'. Default value: 'IPsec'. Case insensitive.
- connection_name str
- Spoke external device connection name.
- gw_name str
- Aviatrix spoke gateway name.
- remote_gateway_ strip 
- Remote gateway IP.
- vpc_id str
- VPC ID of the Aviatrix spoke gateway.
- approved_cidrs Sequence[str]
- Set of approved CIDRs. Requires enable_learned_cidrs_approvalto be true. Type: Set(String).
- backup_bgp_ strmd5_ key 
- Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'.
- backup_bgp_ strremote_ as_ num 
- Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
- backup_direct_ boolconnect 
- Backup direct connect for backup external device.
- backup_local_ strtunnel_ cidr 
- Source CIDR for the tunnel from the backup Aviatrix spoke gateway.
- str
- Backup Pre-Shared Key.
- backup_remote_ strgateway_ ip 
- Backup remote gateway IP.
- backup_remote_ strtunnel_ cidr 
- Destination CIDR for the tunnel to the backup external device.
- bgp_local_ stras_ num 
- BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- bgp_md5_ strkey 
- BGP MD5 Authentication Key. Example: 'avx01,avx02'.
- bgp_remote_ stras_ num 
- BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- connection_type str
- Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
- custom_algorithms bool
- Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
- direct_connect bool
- Set true for private network infrastructure.
- enable_event_ booltriggered_ ha 
- Enable Event Triggered HA. Default value: false. Valid values: true or false.
- enable_ikev2 bool
- Set as true to enable IKEv2 protocol.
- enable_learned_ boolcidrs_ approval 
- Enable learned CIDRs approval for the connection. Only valid with connection_type= 'bgp'. Requires the spoke_gateway'slearned_cidrs_approval_modeattribute be set to 'connection'. Valid values: true, false. Default value: false.
- ha_enabled bool
- Set as true if there are two external devices.- backup_remote_gateway_ip- (Optional) Backup remote gateway IP. Required if HA enabled.
 
- local_tunnel_ strcidr 
- Source CIDR for the tunnel from the Aviatrix spoke gateway.
- manual_bgp_ Sequence[str]advertised_ cidrs 
- Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'.
- phase1_authentication str
- Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
- phase1_dh_ strgroups 
- Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- phase1_encryption str
- Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
- phase1_remote_ Sequence[str]identifiers 
- Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled.
- phase2_authentication str
- Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
- phase2_dh_ strgroups 
- Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- phase2_encryption str
- Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
- str
- Pre-Shared Key.
- prepend_as_ Sequence[str]paths 
- Connection AS Path Prepend customized by specifying AS PATH for a BGP connection.
- remote_subnet str
- Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
- remote_tunnel_ strcidr 
- Destination CIDR for the tunnel to the external device.
- tunnel_protocol str
- Tunnel protocol, only valid with connection_type= 'bgp'. Valid values: 'IPsec'. Default value: 'IPsec'. Case insensitive.
- connectionName String
- Spoke external device connection name.
- gwName String
- Aviatrix spoke gateway name.
- remoteGateway StringIp 
- Remote gateway IP.
- vpcId String
- VPC ID of the Aviatrix spoke gateway.
- approvedCidrs List<String>
- Set of approved CIDRs. Requires enable_learned_cidrs_approvalto be true. Type: Set(String).
- backupBgp StringMd5Key 
- Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'.
- backupBgp StringRemote As Num 
- Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
- backupDirect BooleanConnect 
- Backup direct connect for backup external device.
- backupLocal StringTunnel Cidr 
- Source CIDR for the tunnel from the backup Aviatrix spoke gateway.
- String
- Backup Pre-Shared Key.
- backupRemote StringGateway Ip 
- Backup remote gateway IP.
- backupRemote StringTunnel Cidr 
- Destination CIDR for the tunnel to the backup external device.
- bgpLocal StringAs Num 
- BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- bgpMd5Key String
- BGP MD5 Authentication Key. Example: 'avx01,avx02'.
- bgpRemote StringAs Num 
- BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- connectionType String
- Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
- customAlgorithms Boolean
- Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
- directConnect Boolean
- Set true for private network infrastructure.
- enableEvent BooleanTriggered Ha 
- Enable Event Triggered HA. Default value: false. Valid values: true or false.
- enableIkev2 Boolean
- Set as true to enable IKEv2 protocol.
- enableLearned BooleanCidrs Approval 
- Enable learned CIDRs approval for the connection. Only valid with connection_type= 'bgp'. Requires the spoke_gateway'slearned_cidrs_approval_modeattribute be set to 'connection'. Valid values: true, false. Default value: false.
- haEnabled Boolean
- Set as true if there are two external devices.- backup_remote_gateway_ip- (Optional) Backup remote gateway IP. Required if HA enabled.
 
- localTunnel StringCidr 
- Source CIDR for the tunnel from the Aviatrix spoke gateway.
- manualBgp List<String>Advertised Cidrs 
- Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'.
- phase1Authentication String
- Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
- phase1DhGroups String
- Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- phase1Encryption String
- Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
- phase1RemoteIdentifiers List<String>
- Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled.
- phase2Authentication String
- Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
- phase2DhGroups String
- Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- phase2Encryption String
- Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
- String
- Pre-Shared Key.
- prependAs List<String>Paths 
- Connection AS Path Prepend customized by specifying AS PATH for a BGP connection.
- remoteSubnet String
- Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
- remoteTunnel StringCidr 
- Destination CIDR for the tunnel to the external device.
- tunnelProtocol String
- Tunnel protocol, only valid with connection_type= 'bgp'. Valid values: 'IPsec'. Default value: 'IPsec'. Case insensitive.
Outputs
All input properties are implicitly available as output properties. Additionally, the Aviatrix_spoke_external_device_conn resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing Aviatrix_spoke_external_device_conn Resource
Get an existing Aviatrix_spoke_external_device_conn resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: Aviatrix_spoke_external_device_connState, opts?: CustomResourceOptions): Aviatrix_spoke_external_device_conn@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        approved_cidrs: Optional[Sequence[str]] = None,
        backup_bgp_md5_key: Optional[str] = None,
        backup_bgp_remote_as_num: Optional[str] = None,
        backup_direct_connect: Optional[bool] = None,
        backup_local_tunnel_cidr: Optional[str] = None,
        backup_pre_shared_key: Optional[str] = None,
        backup_remote_gateway_ip: Optional[str] = None,
        backup_remote_tunnel_cidr: Optional[str] = None,
        bgp_local_as_num: Optional[str] = None,
        bgp_md5_key: Optional[str] = None,
        bgp_remote_as_num: Optional[str] = None,
        connection_name: Optional[str] = None,
        connection_type: Optional[str] = None,
        custom_algorithms: Optional[bool] = None,
        direct_connect: Optional[bool] = None,
        enable_event_triggered_ha: Optional[bool] = None,
        enable_ikev2: Optional[bool] = None,
        enable_learned_cidrs_approval: Optional[bool] = None,
        gw_name: Optional[str] = None,
        ha_enabled: Optional[bool] = None,
        local_tunnel_cidr: Optional[str] = None,
        manual_bgp_advertised_cidrs: Optional[Sequence[str]] = None,
        phase1_authentication: Optional[str] = None,
        phase1_dh_groups: Optional[str] = None,
        phase1_encryption: Optional[str] = None,
        phase1_remote_identifiers: Optional[Sequence[str]] = None,
        phase2_authentication: Optional[str] = None,
        phase2_dh_groups: Optional[str] = None,
        phase2_encryption: Optional[str] = None,
        pre_shared_key: Optional[str] = None,
        prepend_as_paths: Optional[Sequence[str]] = None,
        remote_gateway_ip: Optional[str] = None,
        remote_subnet: Optional[str] = None,
        remote_tunnel_cidr: Optional[str] = None,
        tunnel_protocol: Optional[str] = None,
        vpc_id: Optional[str] = None) -> Aviatrix_spoke_external_device_connfunc GetAviatrix_spoke_external_device_conn(ctx *Context, name string, id IDInput, state *Aviatrix_spoke_external_device_connState, opts ...ResourceOption) (*Aviatrix_spoke_external_device_conn, error)public static Aviatrix_spoke_external_device_conn Get(string name, Input<string> id, Aviatrix_spoke_external_device_connState? state, CustomResourceOptions? opts = null)public static Aviatrix_spoke_external_device_conn get(String name, Output<String> id, Aviatrix_spoke_external_device_connState state, CustomResourceOptions options)resources:  _:    type: aviatrix:index/aviatrix_spoke_external_device_conn:aviatrix_spoke_external_device_conn    get:      id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- ApprovedCidrs List<string>
- Set of approved CIDRs. Requires enable_learned_cidrs_approvalto be true. Type: Set(String).
- BackupBgp stringMd5Key 
- Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'.
- BackupBgp stringRemote As Num 
- Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
- BackupDirect boolConnect 
- Backup direct connect for backup external device.
- BackupLocal stringTunnel Cidr 
- Source CIDR for the tunnel from the backup Aviatrix spoke gateway.
- string
- Backup Pre-Shared Key.
- BackupRemote stringGateway Ip 
- Backup remote gateway IP.
- BackupRemote stringTunnel Cidr 
- Destination CIDR for the tunnel to the backup external device.
- BgpLocal stringAs Num 
- BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- BgpMd5Key string
- BGP MD5 Authentication Key. Example: 'avx01,avx02'.
- BgpRemote stringAs Num 
- BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- ConnectionName string
- Spoke external device connection name.
- ConnectionType string
- Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
- CustomAlgorithms bool
- Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
- DirectConnect bool
- Set true for private network infrastructure.
- EnableEvent boolTriggered Ha 
- Enable Event Triggered HA. Default value: false. Valid values: true or false.
- EnableIkev2 bool
- Set as true to enable IKEv2 protocol.
- EnableLearned boolCidrs Approval 
- Enable learned CIDRs approval for the connection. Only valid with connection_type= 'bgp'. Requires the spoke_gateway'slearned_cidrs_approval_modeattribute be set to 'connection'. Valid values: true, false. Default value: false.
- GwName string
- Aviatrix spoke gateway name.
- HaEnabled bool
- Set as true if there are two external devices.- backup_remote_gateway_ip- (Optional) Backup remote gateway IP. Required if HA enabled.
 
- LocalTunnel stringCidr 
- Source CIDR for the tunnel from the Aviatrix spoke gateway.
- ManualBgp List<string>Advertised Cidrs 
- Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'.
- Phase1Authentication string
- Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
- Phase1DhGroups string
- Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- Phase1Encryption string
- Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
- Phase1RemoteIdentifiers List<string>
- Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled.
- Phase2Authentication string
- Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
- Phase2DhGroups string
- Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- Phase2Encryption string
- Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
- string
- Pre-Shared Key.
- PrependAs List<string>Paths 
- Connection AS Path Prepend customized by specifying AS PATH for a BGP connection.
- RemoteGateway stringIp 
- Remote gateway IP.
- RemoteSubnet string
- Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
- RemoteTunnel stringCidr 
- Destination CIDR for the tunnel to the external device.
- TunnelProtocol string
- Tunnel protocol, only valid with connection_type= 'bgp'. Valid values: 'IPsec'. Default value: 'IPsec'. Case insensitive.
- VpcId string
- VPC ID of the Aviatrix spoke gateway.
- ApprovedCidrs []string
- Set of approved CIDRs. Requires enable_learned_cidrs_approvalto be true. Type: Set(String).
- BackupBgp stringMd5Key 
- Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'.
- BackupBgp stringRemote As Num 
- Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
- BackupDirect boolConnect 
- Backup direct connect for backup external device.
- BackupLocal stringTunnel Cidr 
- Source CIDR for the tunnel from the backup Aviatrix spoke gateway.
- string
- Backup Pre-Shared Key.
- BackupRemote stringGateway Ip 
- Backup remote gateway IP.
- BackupRemote stringTunnel Cidr 
- Destination CIDR for the tunnel to the backup external device.
- BgpLocal stringAs Num 
- BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- BgpMd5Key string
- BGP MD5 Authentication Key. Example: 'avx01,avx02'.
- BgpRemote stringAs Num 
- BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- ConnectionName string
- Spoke external device connection name.
- ConnectionType string
- Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
- CustomAlgorithms bool
- Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
- DirectConnect bool
- Set true for private network infrastructure.
- EnableEvent boolTriggered Ha 
- Enable Event Triggered HA. Default value: false. Valid values: true or false.
- EnableIkev2 bool
- Set as true to enable IKEv2 protocol.
- EnableLearned boolCidrs Approval 
- Enable learned CIDRs approval for the connection. Only valid with connection_type= 'bgp'. Requires the spoke_gateway'slearned_cidrs_approval_modeattribute be set to 'connection'. Valid values: true, false. Default value: false.
- GwName string
- Aviatrix spoke gateway name.
- HaEnabled bool
- Set as true if there are two external devices.- backup_remote_gateway_ip- (Optional) Backup remote gateway IP. Required if HA enabled.
 
- LocalTunnel stringCidr 
- Source CIDR for the tunnel from the Aviatrix spoke gateway.
- ManualBgp []stringAdvertised Cidrs 
- Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'.
- Phase1Authentication string
- Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
- Phase1DhGroups string
- Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- Phase1Encryption string
- Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
- Phase1RemoteIdentifiers []string
- Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled.
- Phase2Authentication string
- Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
- Phase2DhGroups string
- Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- Phase2Encryption string
- Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
- string
- Pre-Shared Key.
- PrependAs []stringPaths 
- Connection AS Path Prepend customized by specifying AS PATH for a BGP connection.
- RemoteGateway stringIp 
- Remote gateway IP.
- RemoteSubnet string
- Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
- RemoteTunnel stringCidr 
- Destination CIDR for the tunnel to the external device.
- TunnelProtocol string
- Tunnel protocol, only valid with connection_type= 'bgp'. Valid values: 'IPsec'. Default value: 'IPsec'. Case insensitive.
- VpcId string
- VPC ID of the Aviatrix spoke gateway.
- approvedCidrs List<String>
- Set of approved CIDRs. Requires enable_learned_cidrs_approvalto be true. Type: Set(String).
- backupBgp StringMd5Key 
- Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'.
- backupBgp StringRemote As Num 
- Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
- backupDirect BooleanConnect 
- Backup direct connect for backup external device.
- backupLocal StringTunnel Cidr 
- Source CIDR for the tunnel from the backup Aviatrix spoke gateway.
- String
- Backup Pre-Shared Key.
- backupRemote StringGateway Ip 
- Backup remote gateway IP.
- backupRemote StringTunnel Cidr 
- Destination CIDR for the tunnel to the backup external device.
- bgpLocal StringAs Num 
- BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- bgpMd5Key String
- BGP MD5 Authentication Key. Example: 'avx01,avx02'.
- bgpRemote StringAs Num 
- BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- connectionName String
- Spoke external device connection name.
- connectionType String
- Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
- customAlgorithms Boolean
- Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
- directConnect Boolean
- Set true for private network infrastructure.
- enableEvent BooleanTriggered Ha 
- Enable Event Triggered HA. Default value: false. Valid values: true or false.
- enableIkev2 Boolean
- Set as true to enable IKEv2 protocol.
- enableLearned BooleanCidrs Approval 
- Enable learned CIDRs approval for the connection. Only valid with connection_type= 'bgp'. Requires the spoke_gateway'slearned_cidrs_approval_modeattribute be set to 'connection'. Valid values: true, false. Default value: false.
- gwName String
- Aviatrix spoke gateway name.
- haEnabled Boolean
- Set as true if there are two external devices.- backup_remote_gateway_ip- (Optional) Backup remote gateway IP. Required if HA enabled.
 
- localTunnel StringCidr 
- Source CIDR for the tunnel from the Aviatrix spoke gateway.
- manualBgp List<String>Advertised Cidrs 
- Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'.
- phase1Authentication String
- Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
- phase1DhGroups String
- Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- phase1Encryption String
- Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
- phase1RemoteIdentifiers List<String>
- Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled.
- phase2Authentication String
- Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
- phase2DhGroups String
- Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- phase2Encryption String
- Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
- String
- Pre-Shared Key.
- prependAs List<String>Paths 
- Connection AS Path Prepend customized by specifying AS PATH for a BGP connection.
- remoteGateway StringIp 
- Remote gateway IP.
- remoteSubnet String
- Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
- remoteTunnel StringCidr 
- Destination CIDR for the tunnel to the external device.
- tunnelProtocol String
- Tunnel protocol, only valid with connection_type= 'bgp'. Valid values: 'IPsec'. Default value: 'IPsec'. Case insensitive.
- vpcId String
- VPC ID of the Aviatrix spoke gateway.
- approvedCidrs string[]
- Set of approved CIDRs. Requires enable_learned_cidrs_approvalto be true. Type: Set(String).
- backupBgp stringMd5Key 
- Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'.
- backupBgp stringRemote As Num 
- Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
- backupDirect booleanConnect 
- Backup direct connect for backup external device.
- backupLocal stringTunnel Cidr 
- Source CIDR for the tunnel from the backup Aviatrix spoke gateway.
- string
- Backup Pre-Shared Key.
- backupRemote stringGateway Ip 
- Backup remote gateway IP.
- backupRemote stringTunnel Cidr 
- Destination CIDR for the tunnel to the backup external device.
- bgpLocal stringAs Num 
- BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- bgpMd5Key string
- BGP MD5 Authentication Key. Example: 'avx01,avx02'.
- bgpRemote stringAs Num 
- BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- connectionName string
- Spoke external device connection name.
- connectionType string
- Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
- customAlgorithms boolean
- Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
- directConnect boolean
- Set true for private network infrastructure.
- enableEvent booleanTriggered Ha 
- Enable Event Triggered HA. Default value: false. Valid values: true or false.
- enableIkev2 boolean
- Set as true to enable IKEv2 protocol.
- enableLearned booleanCidrs Approval 
- Enable learned CIDRs approval for the connection. Only valid with connection_type= 'bgp'. Requires the spoke_gateway'slearned_cidrs_approval_modeattribute be set to 'connection'. Valid values: true, false. Default value: false.
- gwName string
- Aviatrix spoke gateway name.
- haEnabled boolean
- Set as true if there are two external devices.- backup_remote_gateway_ip- (Optional) Backup remote gateway IP. Required if HA enabled.
 
- localTunnel stringCidr 
- Source CIDR for the tunnel from the Aviatrix spoke gateway.
- manualBgp string[]Advertised Cidrs 
- Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'.
- phase1Authentication string
- Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
- phase1DhGroups string
- Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- phase1Encryption string
- Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
- phase1RemoteIdentifiers string[]
- Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled.
- phase2Authentication string
- Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
- phase2DhGroups string
- Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- phase2Encryption string
- Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
- string
- Pre-Shared Key.
- prependAs string[]Paths 
- Connection AS Path Prepend customized by specifying AS PATH for a BGP connection.
- remoteGateway stringIp 
- Remote gateway IP.
- remoteSubnet string
- Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
- remoteTunnel stringCidr 
- Destination CIDR for the tunnel to the external device.
- tunnelProtocol string
- Tunnel protocol, only valid with connection_type= 'bgp'. Valid values: 'IPsec'. Default value: 'IPsec'. Case insensitive.
- vpcId string
- VPC ID of the Aviatrix spoke gateway.
- approved_cidrs Sequence[str]
- Set of approved CIDRs. Requires enable_learned_cidrs_approvalto be true. Type: Set(String).
- backup_bgp_ strmd5_ key 
- Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'.
- backup_bgp_ strremote_ as_ num 
- Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
- backup_direct_ boolconnect 
- Backup direct connect for backup external device.
- backup_local_ strtunnel_ cidr 
- Source CIDR for the tunnel from the backup Aviatrix spoke gateway.
- str
- Backup Pre-Shared Key.
- backup_remote_ strgateway_ ip 
- Backup remote gateway IP.
- backup_remote_ strtunnel_ cidr 
- Destination CIDR for the tunnel to the backup external device.
- bgp_local_ stras_ num 
- BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- bgp_md5_ strkey 
- BGP MD5 Authentication Key. Example: 'avx01,avx02'.
- bgp_remote_ stras_ num 
- BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- connection_name str
- Spoke external device connection name.
- connection_type str
- Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
- custom_algorithms bool
- Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
- direct_connect bool
- Set true for private network infrastructure.
- enable_event_ booltriggered_ ha 
- Enable Event Triggered HA. Default value: false. Valid values: true or false.
- enable_ikev2 bool
- Set as true to enable IKEv2 protocol.
- enable_learned_ boolcidrs_ approval 
- Enable learned CIDRs approval for the connection. Only valid with connection_type= 'bgp'. Requires the spoke_gateway'slearned_cidrs_approval_modeattribute be set to 'connection'. Valid values: true, false. Default value: false.
- gw_name str
- Aviatrix spoke gateway name.
- ha_enabled bool
- Set as true if there are two external devices.- backup_remote_gateway_ip- (Optional) Backup remote gateway IP. Required if HA enabled.
 
- local_tunnel_ strcidr 
- Source CIDR for the tunnel from the Aviatrix spoke gateway.
- manual_bgp_ Sequence[str]advertised_ cidrs 
- Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'.
- phase1_authentication str
- Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
- phase1_dh_ strgroups 
- Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- phase1_encryption str
- Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
- phase1_remote_ Sequence[str]identifiers 
- Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled.
- phase2_authentication str
- Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
- phase2_dh_ strgroups 
- Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- phase2_encryption str
- Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
- str
- Pre-Shared Key.
- prepend_as_ Sequence[str]paths 
- Connection AS Path Prepend customized by specifying AS PATH for a BGP connection.
- remote_gateway_ strip 
- Remote gateway IP.
- remote_subnet str
- Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
- remote_tunnel_ strcidr 
- Destination CIDR for the tunnel to the external device.
- tunnel_protocol str
- Tunnel protocol, only valid with connection_type= 'bgp'. Valid values: 'IPsec'. Default value: 'IPsec'. Case insensitive.
- vpc_id str
- VPC ID of the Aviatrix spoke gateway.
- approvedCidrs List<String>
- Set of approved CIDRs. Requires enable_learned_cidrs_approvalto be true. Type: Set(String).
- backupBgp StringMd5Key 
- Backup BGP MD5 Authentication Key. Valid with HA enabled for connection. Example: 'avx03,avx04'.
- backupBgp StringRemote As Num 
- Backup BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required if HA enabled for 'bgp' connection.
- backupDirect BooleanConnect 
- Backup direct connect for backup external device.
- backupLocal StringTunnel Cidr 
- Source CIDR for the tunnel from the backup Aviatrix spoke gateway.
- String
- Backup Pre-Shared Key.
- backupRemote StringGateway Ip 
- Backup remote gateway IP.
- backupRemote StringTunnel Cidr 
- Destination CIDR for the tunnel to the backup external device.
- bgpLocal StringAs Num 
- BGP local ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- bgpMd5Key String
- BGP MD5 Authentication Key. Example: 'avx01,avx02'.
- bgpRemote StringAs Num 
- BGP remote ASN (Autonomous System Number). Integer between 1-4294967294. Required for 'bgp' connection.
- connectionName String
- Spoke external device connection name.
- connectionType String
- Connection type. Valid values: 'bgp', 'static'. Default value: 'bgp'.
- customAlgorithms Boolean
- Switch to enable custom/non-default algorithms for IPSec Authentication/Encryption. Valid values: true, false. NOTE: Please see notes here for more information.
- directConnect Boolean
- Set true for private network infrastructure.
- enableEvent BooleanTriggered Ha 
- Enable Event Triggered HA. Default value: false. Valid values: true or false.
- enableIkev2 Boolean
- Set as true to enable IKEv2 protocol.
- enableLearned BooleanCidrs Approval 
- Enable learned CIDRs approval for the connection. Only valid with connection_type= 'bgp'. Requires the spoke_gateway'slearned_cidrs_approval_modeattribute be set to 'connection'. Valid values: true, false. Default value: false.
- gwName String
- Aviatrix spoke gateway name.
- haEnabled Boolean
- Set as true if there are two external devices.- backup_remote_gateway_ip- (Optional) Backup remote gateway IP. Required if HA enabled.
 
- localTunnel StringCidr 
- Source CIDR for the tunnel from the Aviatrix spoke gateway.
- manualBgp List<String>Advertised Cidrs 
- Configure manual BGP advertised CIDRs for this connection. Only valid with connection_type= 'bgp'.
- phase1Authentication String
- Phase one Authentication. Valid values: 'SHA-1', 'SHA-256', 'SHA-384' and 'SHA-512'. Default value: 'SHA-256'.
- phase1DhGroups String
- Phase one DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- phase1Encryption String
- Phase one Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", and "AES-256-GCM-128". Default value: "AES-256-CBC".
- phase1RemoteIdentifiers List<String>
- Phase 1 remote identifier of the IPsec tunnel. This can be configured to be either the public IP address or the private IP address of the peer terminating the IPsec tunnel. Example: ["1.2.3.4"] when HA is disabled, ["1.2.3.4", "5.6.7.8"] when HA is enabled.
- phase2Authentication String
- Phase two Authentication. Valid values: 'NO-AUTH', 'HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-384' and 'HMAC-SHA-512'. Default value: 'HMAC-SHA-256'.
- phase2DhGroups String
- Phase two DH Groups. Valid values: '1', '2', '5', '14', '15', '16', '17', '18', '19', '20' and '21'. Default value: '14'.
- phase2Encryption String
- Phase two Encryption. Valid values: "3DES", "AES-128-CBC", "AES-192-CBC", "AES-256-CBC", "AES-128-GCM-64", "AES-128-GCM-96", "AES-128-GCM-128", "AES-256-GCM-64", "AES-256-GCM-96", "AES-256-GCM-128" and "NULL-ENCR". Default value: "AES-256-CBC".
- String
- Pre-Shared Key.
- prependAs List<String>Paths 
- Connection AS Path Prepend customized by specifying AS PATH for a BGP connection.
- remoteGateway StringIp 
- Remote gateway IP.
- remoteSubnet String
- Remote CIDRs joined as a string with ','. Required for a 'static' type connection.
- remoteTunnel StringCidr 
- Destination CIDR for the tunnel to the external device.
- tunnelProtocol String
- Tunnel protocol, only valid with connection_type= 'bgp'. Valid values: 'IPsec'. Default value: 'IPsec'. Case insensitive.
- vpcId String
- VPC ID of the Aviatrix spoke gateway.
Import
spoke_external_device_conn can be imported using the connection_name and vpc_id, e.g.
 $ pulumi import aviatrix:index/aviatrix_spoke_external_device_conn:aviatrix_spoke_external_device_conn test connection_name~vpc_id
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- aviatrix astipkovits/pulumi-aviatrix
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the aviatrixTerraform Provider.