fortimanager.ObjectFirewallIppoolDynamicMapping
Explore with Pulumi AI
Configure IPv4 IP pools.
This resource is a sub resource for variable
dynamic_mappingof resourcefortimanager.ObjectFirewallIppool. Conflict and overwrite may occur if use both of them.
Create ObjectFirewallIppoolDynamicMapping Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new ObjectFirewallIppoolDynamicMapping(name: string, args: ObjectFirewallIppoolDynamicMappingArgs, opts?: CustomResourceOptions);@overload
def ObjectFirewallIppoolDynamicMapping(resource_name: str,
                                       args: ObjectFirewallIppoolDynamicMappingInitArgs,
                                       opts: Optional[ResourceOptions] = None)
@overload
def ObjectFirewallIppoolDynamicMapping(resource_name: str,
                                       opts: Optional[ResourceOptions] = None,
                                       ippool: Optional[str] = None,
                                       icmp_session_quota: Optional[float] = None,
                                       add_nat64_route: Optional[str] = None,
                                       arp_intf: Optional[str] = None,
                                       arp_reply: Optional[str] = None,
                                       associated_interface: Optional[str] = None,
                                       block_size: Optional[float] = None,
                                       cgn_block_size: Optional[float] = None,
                                       cgn_client_endip: Optional[str] = None,
                                       cgn_client_ipv6shift: Optional[float] = None,
                                       cgn_client_startip: Optional[str] = None,
                                       cgn_fixedalloc: Optional[str] = None,
                                       cgn_overload: Optional[str] = None,
                                       cgn_port_end: Optional[float] = None,
                                       cgn_port_start: Optional[float] = None,
                                       cgn_spa: Optional[str] = None,
                                       client_prefix_length: Optional[float] = None,
                                       comments: Optional[str] = None,
                                       _scopes: Optional[Sequence[ObjectFirewallIppoolDynamicMapping_ScopeArgs]] = None,
                                       endip: Optional[str] = None,
                                       endport: Optional[float] = None,
                                       adom: Optional[str] = None,
                                       exclude_ips: Optional[Sequence[str]] = None,
                                       dynamic_sort_subtable: Optional[str] = None,
                                       nat64: Optional[str] = None,
                                       num_blocks_per_user: Optional[float] = None,
                                       object_firewall_ippool_dynamic_mapping_id: Optional[str] = None,
                                       pba_interim_log: Optional[float] = None,
                                       pba_timeout: Optional[float] = None,
                                       permit_any_host: Optional[str] = None,
                                       port_per_user: Optional[float] = None,
                                       privileged_port_use_pba: Optional[str] = None,
                                       scopetype: Optional[str] = None,
                                       source_endip: Optional[str] = None,
                                       source_prefix6: Optional[str] = None,
                                       source_startip: Optional[str] = None,
                                       startip: Optional[str] = None,
                                       startport: Optional[float] = None,
                                       subnet_broadcast_in_ippool: Optional[str] = None,
                                       tcp_session_quota: Optional[float] = None,
                                       type: Optional[str] = None,
                                       udp_session_quota: Optional[float] = None,
                                       utilization_alarm_clear: Optional[float] = None,
                                       utilization_alarm_raise: Optional[float] = None)func NewObjectFirewallIppoolDynamicMapping(ctx *Context, name string, args ObjectFirewallIppoolDynamicMappingArgs, opts ...ResourceOption) (*ObjectFirewallIppoolDynamicMapping, error)public ObjectFirewallIppoolDynamicMapping(string name, ObjectFirewallIppoolDynamicMappingArgs args, CustomResourceOptions? opts = null)
public ObjectFirewallIppoolDynamicMapping(String name, ObjectFirewallIppoolDynamicMappingArgs args)
public ObjectFirewallIppoolDynamicMapping(String name, ObjectFirewallIppoolDynamicMappingArgs args, CustomResourceOptions options)
type: fortimanager:ObjectFirewallIppoolDynamicMapping
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ObjectFirewallIppoolDynamicMappingArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ObjectFirewallIppoolDynamicMappingInitArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ObjectFirewallIppoolDynamicMappingArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ObjectFirewallIppoolDynamicMappingArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ObjectFirewallIppoolDynamicMappingArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var objectFirewallIppoolDynamicMappingResource = new Fortimanager.ObjectFirewallIppoolDynamicMapping("objectFirewallIppoolDynamicMappingResource", new()
{
    Ippool = "string",
    IcmpSessionQuota = 0,
    AddNat64Route = "string",
    ArpIntf = "string",
    ArpReply = "string",
    AssociatedInterface = "string",
    BlockSize = 0,
    CgnBlockSize = 0,
    CgnClientEndip = "string",
    CgnClientIpv6shift = 0,
    CgnClientStartip = "string",
    CgnFixedalloc = "string",
    CgnOverload = "string",
    CgnPortEnd = 0,
    CgnPortStart = 0,
    CgnSpa = "string",
    ClientPrefixLength = 0,
    Comments = "string",
    _scopes = new[]
    {
        new Fortimanager.Inputs.ObjectFirewallIppoolDynamicMapping_ScopeArgs
        {
            Name = "string",
            Vdom = "string",
        },
    },
    Endip = "string",
    Endport = 0,
    Adom = "string",
    ExcludeIps = new[]
    {
        "string",
    },
    DynamicSortSubtable = "string",
    Nat64 = "string",
    NumBlocksPerUser = 0,
    ObjectFirewallIppoolDynamicMappingId = "string",
    PbaInterimLog = 0,
    PbaTimeout = 0,
    PermitAnyHost = "string",
    PortPerUser = 0,
    PrivilegedPortUsePba = "string",
    Scopetype = "string",
    SourceEndip = "string",
    SourcePrefix6 = "string",
    SourceStartip = "string",
    Startip = "string",
    Startport = 0,
    SubnetBroadcastInIppool = "string",
    TcpSessionQuota = 0,
    Type = "string",
    UdpSessionQuota = 0,
    UtilizationAlarmClear = 0,
    UtilizationAlarmRaise = 0,
});
example, err := fortimanager.NewObjectFirewallIppoolDynamicMapping(ctx, "objectFirewallIppoolDynamicMappingResource", &fortimanager.ObjectFirewallIppoolDynamicMappingArgs{
	Ippool:              pulumi.String("string"),
	IcmpSessionQuota:    pulumi.Float64(0),
	AddNat64Route:       pulumi.String("string"),
	ArpIntf:             pulumi.String("string"),
	ArpReply:            pulumi.String("string"),
	AssociatedInterface: pulumi.String("string"),
	BlockSize:           pulumi.Float64(0),
	CgnBlockSize:        pulumi.Float64(0),
	CgnClientEndip:      pulumi.String("string"),
	CgnClientIpv6shift:  pulumi.Float64(0),
	CgnClientStartip:    pulumi.String("string"),
	CgnFixedalloc:       pulumi.String("string"),
	CgnOverload:         pulumi.String("string"),
	CgnPortEnd:          pulumi.Float64(0),
	CgnPortStart:        pulumi.Float64(0),
	CgnSpa:              pulumi.String("string"),
	ClientPrefixLength:  pulumi.Float64(0),
	Comments:            pulumi.String("string"),
	_scopes: fortimanager.ObjectFirewallIppoolDynamicMapping_ScopeArray{
		&fortimanager.ObjectFirewallIppoolDynamicMapping_ScopeArgs{
			Name: pulumi.String("string"),
			Vdom: pulumi.String("string"),
		},
	},
	Endip:   pulumi.String("string"),
	Endport: pulumi.Float64(0),
	Adom:    pulumi.String("string"),
	ExcludeIps: pulumi.StringArray{
		pulumi.String("string"),
	},
	DynamicSortSubtable:                  pulumi.String("string"),
	Nat64:                                pulumi.String("string"),
	NumBlocksPerUser:                     pulumi.Float64(0),
	ObjectFirewallIppoolDynamicMappingId: pulumi.String("string"),
	PbaInterimLog:                        pulumi.Float64(0),
	PbaTimeout:                           pulumi.Float64(0),
	PermitAnyHost:                        pulumi.String("string"),
	PortPerUser:                          pulumi.Float64(0),
	PrivilegedPortUsePba:                 pulumi.String("string"),
	Scopetype:                            pulumi.String("string"),
	SourceEndip:                          pulumi.String("string"),
	SourcePrefix6:                        pulumi.String("string"),
	SourceStartip:                        pulumi.String("string"),
	Startip:                              pulumi.String("string"),
	Startport:                            pulumi.Float64(0),
	SubnetBroadcastInIppool:              pulumi.String("string"),
	TcpSessionQuota:                      pulumi.Float64(0),
	Type:                                 pulumi.String("string"),
	UdpSessionQuota:                      pulumi.Float64(0),
	UtilizationAlarmClear:                pulumi.Float64(0),
	UtilizationAlarmRaise:                pulumi.Float64(0),
})
var objectFirewallIppoolDynamicMappingResource = new ObjectFirewallIppoolDynamicMapping("objectFirewallIppoolDynamicMappingResource", ObjectFirewallIppoolDynamicMappingArgs.builder()
    .ippool("string")
    .icmpSessionQuota(0.0)
    .addNat64Route("string")
    .arpIntf("string")
    .arpReply("string")
    .associatedInterface("string")
    .blockSize(0.0)
    .cgnBlockSize(0.0)
    .cgnClientEndip("string")
    .cgnClientIpv6shift(0.0)
    .cgnClientStartip("string")
    .cgnFixedalloc("string")
    .cgnOverload("string")
    .cgnPortEnd(0.0)
    .cgnPortStart(0.0)
    .cgnSpa("string")
    .clientPrefixLength(0.0)
    .comments("string")
    ._scopes(ObjectFirewallIppoolDynamicMapping_ScopeArgs.builder()
        .name("string")
        .vdom("string")
        .build())
    .endip("string")
    .endport(0.0)
    .adom("string")
    .excludeIps("string")
    .dynamicSortSubtable("string")
    .nat64("string")
    .numBlocksPerUser(0.0)
    .objectFirewallIppoolDynamicMappingId("string")
    .pbaInterimLog(0.0)
    .pbaTimeout(0.0)
    .permitAnyHost("string")
    .portPerUser(0.0)
    .privilegedPortUsePba("string")
    .scopetype("string")
    .sourceEndip("string")
    .sourcePrefix6("string")
    .sourceStartip("string")
    .startip("string")
    .startport(0.0)
    .subnetBroadcastInIppool("string")
    .tcpSessionQuota(0.0)
    .type("string")
    .udpSessionQuota(0.0)
    .utilizationAlarmClear(0.0)
    .utilizationAlarmRaise(0.0)
    .build());
object_firewall_ippool_dynamic_mapping_resource = fortimanager.ObjectFirewallIppoolDynamicMapping("objectFirewallIppoolDynamicMappingResource",
    ippool="string",
    icmp_session_quota=0,
    add_nat64_route="string",
    arp_intf="string",
    arp_reply="string",
    associated_interface="string",
    block_size=0,
    cgn_block_size=0,
    cgn_client_endip="string",
    cgn_client_ipv6shift=0,
    cgn_client_startip="string",
    cgn_fixedalloc="string",
    cgn_overload="string",
    cgn_port_end=0,
    cgn_port_start=0,
    cgn_spa="string",
    client_prefix_length=0,
    comments="string",
    _scopes=[{
        "name": "string",
        "vdom": "string",
    }],
    endip="string",
    endport=0,
    adom="string",
    exclude_ips=["string"],
    dynamic_sort_subtable="string",
    nat64="string",
    num_blocks_per_user=0,
    object_firewall_ippool_dynamic_mapping_id="string",
    pba_interim_log=0,
    pba_timeout=0,
    permit_any_host="string",
    port_per_user=0,
    privileged_port_use_pba="string",
    scopetype="string",
    source_endip="string",
    source_prefix6="string",
    source_startip="string",
    startip="string",
    startport=0,
    subnet_broadcast_in_ippool="string",
    tcp_session_quota=0,
    type="string",
    udp_session_quota=0,
    utilization_alarm_clear=0,
    utilization_alarm_raise=0)
const objectFirewallIppoolDynamicMappingResource = new fortimanager.ObjectFirewallIppoolDynamicMapping("objectFirewallIppoolDynamicMappingResource", {
    ippool: "string",
    icmpSessionQuota: 0,
    addNat64Route: "string",
    arpIntf: "string",
    arpReply: "string",
    associatedInterface: "string",
    blockSize: 0,
    cgnBlockSize: 0,
    cgnClientEndip: "string",
    cgnClientIpv6shift: 0,
    cgnClientStartip: "string",
    cgnFixedalloc: "string",
    cgnOverload: "string",
    cgnPortEnd: 0,
    cgnPortStart: 0,
    cgnSpa: "string",
    clientPrefixLength: 0,
    comments: "string",
    _scopes: [{
        name: "string",
        vdom: "string",
    }],
    endip: "string",
    endport: 0,
    adom: "string",
    excludeIps: ["string"],
    dynamicSortSubtable: "string",
    nat64: "string",
    numBlocksPerUser: 0,
    objectFirewallIppoolDynamicMappingId: "string",
    pbaInterimLog: 0,
    pbaTimeout: 0,
    permitAnyHost: "string",
    portPerUser: 0,
    privilegedPortUsePba: "string",
    scopetype: "string",
    sourceEndip: "string",
    sourcePrefix6: "string",
    sourceStartip: "string",
    startip: "string",
    startport: 0,
    subnetBroadcastInIppool: "string",
    tcpSessionQuota: 0,
    type: "string",
    udpSessionQuota: 0,
    utilizationAlarmClear: 0,
    utilizationAlarmRaise: 0,
});
type: fortimanager:ObjectFirewallIppoolDynamicMapping
properties:
    _scopes:
        - name: string
          vdom: string
    addNat64Route: string
    adom: string
    arpIntf: string
    arpReply: string
    associatedInterface: string
    blockSize: 0
    cgnBlockSize: 0
    cgnClientEndip: string
    cgnClientIpv6shift: 0
    cgnClientStartip: string
    cgnFixedalloc: string
    cgnOverload: string
    cgnPortEnd: 0
    cgnPortStart: 0
    cgnSpa: string
    clientPrefixLength: 0
    comments: string
    dynamicSortSubtable: string
    endip: string
    endport: 0
    excludeIps:
        - string
    icmpSessionQuota: 0
    ippool: string
    nat64: string
    numBlocksPerUser: 0
    objectFirewallIppoolDynamicMappingId: string
    pbaInterimLog: 0
    pbaTimeout: 0
    permitAnyHost: string
    portPerUser: 0
    privilegedPortUsePba: string
    scopetype: string
    sourceEndip: string
    sourcePrefix6: string
    sourceStartip: string
    startip: string
    startport: 0
    subnetBroadcastInIppool: string
    tcpSessionQuota: 0
    type: string
    udpSessionQuota: 0
    utilizationAlarmClear: 0
    utilizationAlarmRaise: 0
ObjectFirewallIppoolDynamicMapping Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The ObjectFirewallIppoolDynamicMapping resource accepts the following input properties:
- Ippool string
- Ippool.
- AddNat64Route string
- Enable/disable adding NAT64 route. Valid values: disable,enable.
- Adom string
- Adom. This value is valid only when the scopetypeisadom, otherwise the value of adom in the provider will be inherited.
- ArpIntf string
- Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
- ArpReply string
- Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable,enable.
- AssociatedInterface string
- Associated interface name.
- BlockSize double
- Number of addresses in a block (64 to 4096, default = 128).
- CgnBlock doubleSize 
- Number of ports in a block(64 to 4096 in unit of 64, default = 128).
- CgnClient stringEndip 
- Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- CgnClient doubleIpv6shift 
- Cgn-Client-Ipv6Shift.
- CgnClient stringStartip 
- First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- CgnFixedalloc string
- Enable/disable fixed-allocation mode. Valid values: disable,enable.
- CgnOverload string
- Enable/disable overload mode. Valid values: disable,enable.
- CgnPort doubleEnd 
- Ending public port can be allocated.
- CgnPort doubleStart 
- Starting public port can be allocated.
- CgnSpa string
- Enable/disable single port allocation mode. Valid values: disable,enable.
- ClientPrefix doubleLength 
- Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
- Comments string
- Comment.
- DynamicSort stringSubtable 
- true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
- Endip string
- Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- Endport double
- Endport.
- ExcludeIps List<string>
- Exclude IPs x.x.x.x.
- IcmpSession doubleQuota 
- Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- Nat64 string
- Enable/disable NAT64. Valid values: disable,enable.
- NumBlocks doublePer User 
- Number of addresses blocks that can be used by a user (1 to 128, default = 8).
- ObjectFirewall stringIppool Dynamic Mapping Id 
- an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
- PbaInterim doubleLog 
- Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
- PbaTimeout double
- Port block allocation timeout (seconds).
- PermitAny stringHost 
- Enable/disable full cone NAT. Valid values: disable,enable.
- PortPer doubleUser 
- Port-Per-User.
- PrivilegedPort stringUse Pba 
- Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable,enable.
- Scopetype string
- The scope of application of the resource. Valid values: inherit,adom,global. Theinheritmeans that the scopetype of the provider will be inherited, and adom will also be inherited. The default value isinherit.
- SourceEndip string
- Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- SourcePrefix6 string
- Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
- SourceStartip string
- First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- Startip string
- First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- Startport double
- Startport.
- SubnetBroadcast stringIn Ippool 
- Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable,enable.
- TcpSession doubleQuota 
- Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- Type string
- IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload,one-to-one,fixed-port-range,port-block-allocation,cgn-resource-allocation.
- UdpSession doubleQuota 
- Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- UtilizationAlarm doubleClear 
- Pool utilization alarm clear threshold (40-100).
- UtilizationAlarm doubleRaise 
- Pool utilization alarm raise threshold (50-100).
- _scopes List<ObjectFirewall Ippool Dynamic Mapping_Scope> 
- _Scope. The structure of _scopeblock is documented below.
- Ippool string
- Ippool.
- AddNat64Route string
- Enable/disable adding NAT64 route. Valid values: disable,enable.
- Adom string
- Adom. This value is valid only when the scopetypeisadom, otherwise the value of adom in the provider will be inherited.
- ArpIntf string
- Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
- ArpReply string
- Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable,enable.
- AssociatedInterface string
- Associated interface name.
- BlockSize float64
- Number of addresses in a block (64 to 4096, default = 128).
- CgnBlock float64Size 
- Number of ports in a block(64 to 4096 in unit of 64, default = 128).
- CgnClient stringEndip 
- Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- CgnClient float64Ipv6shift 
- Cgn-Client-Ipv6Shift.
- CgnClient stringStartip 
- First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- CgnFixedalloc string
- Enable/disable fixed-allocation mode. Valid values: disable,enable.
- CgnOverload string
- Enable/disable overload mode. Valid values: disable,enable.
- CgnPort float64End 
- Ending public port can be allocated.
- CgnPort float64Start 
- Starting public port can be allocated.
- CgnSpa string
- Enable/disable single port allocation mode. Valid values: disable,enable.
- ClientPrefix float64Length 
- Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
- Comments string
- Comment.
- DynamicSort stringSubtable 
- true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
- Endip string
- Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- Endport float64
- Endport.
- ExcludeIps []string
- Exclude IPs x.x.x.x.
- IcmpSession float64Quota 
- Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- Nat64 string
- Enable/disable NAT64. Valid values: disable,enable.
- NumBlocks float64Per User 
- Number of addresses blocks that can be used by a user (1 to 128, default = 8).
- ObjectFirewall stringIppool Dynamic Mapping Id 
- an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
- PbaInterim float64Log 
- Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
- PbaTimeout float64
- Port block allocation timeout (seconds).
- PermitAny stringHost 
- Enable/disable full cone NAT. Valid values: disable,enable.
- PortPer float64User 
- Port-Per-User.
- PrivilegedPort stringUse Pba 
- Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable,enable.
- Scopetype string
- The scope of application of the resource. Valid values: inherit,adom,global. Theinheritmeans that the scopetype of the provider will be inherited, and adom will also be inherited. The default value isinherit.
- SourceEndip string
- Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- SourcePrefix6 string
- Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
- SourceStartip string
- First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- Startip string
- First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- Startport float64
- Startport.
- SubnetBroadcast stringIn Ippool 
- Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable,enable.
- TcpSession float64Quota 
- Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- Type string
- IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload,one-to-one,fixed-port-range,port-block-allocation,cgn-resource-allocation.
- UdpSession float64Quota 
- Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- UtilizationAlarm float64Clear 
- Pool utilization alarm clear threshold (40-100).
- UtilizationAlarm float64Raise 
- Pool utilization alarm raise threshold (50-100).
- _scopes []ObjectFirewall Ippool Dynamic Mapping_Scope Args 
- _Scope. The structure of _scopeblock is documented below.
- ippool String
- Ippool.
- _scopes List<ObjectFirewall Ippool Dynamic Mapping_Scope> 
- _Scope. The structure of _scopeblock is documented below.
- addNat64Route String
- Enable/disable adding NAT64 route. Valid values: disable,enable.
- adom String
- Adom. This value is valid only when the scopetypeisadom, otherwise the value of adom in the provider will be inherited.
- arpIntf String
- Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
- arpReply String
- Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable,enable.
- associatedInterface String
- Associated interface name.
- blockSize Double
- Number of addresses in a block (64 to 4096, default = 128).
- cgnBlock DoubleSize 
- Number of ports in a block(64 to 4096 in unit of 64, default = 128).
- cgnClient StringEndip 
- Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- cgnClient DoubleIpv6shift 
- Cgn-Client-Ipv6Shift.
- cgnClient StringStartip 
- First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- cgnFixedalloc String
- Enable/disable fixed-allocation mode. Valid values: disable,enable.
- cgnOverload String
- Enable/disable overload mode. Valid values: disable,enable.
- cgnPort DoubleEnd 
- Ending public port can be allocated.
- cgnPort DoubleStart 
- Starting public port can be allocated.
- cgnSpa String
- Enable/disable single port allocation mode. Valid values: disable,enable.
- clientPrefix DoubleLength 
- Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
- comments String
- Comment.
- dynamicSort StringSubtable 
- true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
- endip String
- Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- endport Double
- Endport.
- excludeIps List<String>
- Exclude IPs x.x.x.x.
- icmpSession DoubleQuota 
- Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- nat64 String
- Enable/disable NAT64. Valid values: disable,enable.
- numBlocks DoublePer User 
- Number of addresses blocks that can be used by a user (1 to 128, default = 8).
- objectFirewall StringIppool Dynamic Mapping Id 
- an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
- pbaInterim DoubleLog 
- Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
- pbaTimeout Double
- Port block allocation timeout (seconds).
- permitAny StringHost 
- Enable/disable full cone NAT. Valid values: disable,enable.
- portPer DoubleUser 
- Port-Per-User.
- privilegedPort StringUse Pba 
- Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable,enable.
- scopetype String
- The scope of application of the resource. Valid values: inherit,adom,global. Theinheritmeans that the scopetype of the provider will be inherited, and adom will also be inherited. The default value isinherit.
- sourceEndip String
- Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- sourcePrefix6 String
- Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
- sourceStartip String
- First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- startip String
- First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- startport Double
- Startport.
- subnetBroadcast StringIn Ippool 
- Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable,enable.
- tcpSession DoubleQuota 
- Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- type String
- IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload,one-to-one,fixed-port-range,port-block-allocation,cgn-resource-allocation.
- udpSession DoubleQuota 
- Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- utilizationAlarm DoubleClear 
- Pool utilization alarm clear threshold (40-100).
- utilizationAlarm DoubleRaise 
- Pool utilization alarm raise threshold (50-100).
- ippool string
- Ippool.
- _scopes ObjectFirewall Ippool Dynamic Mapping_Scope[] 
- _Scope. The structure of _scopeblock is documented below.
- addNat64Route string
- Enable/disable adding NAT64 route. Valid values: disable,enable.
- adom string
- Adom. This value is valid only when the scopetypeisadom, otherwise the value of adom in the provider will be inherited.
- arpIntf string
- Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
- arpReply string
- Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable,enable.
- associatedInterface string
- Associated interface name.
- blockSize number
- Number of addresses in a block (64 to 4096, default = 128).
- cgnBlock numberSize 
- Number of ports in a block(64 to 4096 in unit of 64, default = 128).
- cgnClient stringEndip 
- Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- cgnClient numberIpv6shift 
- Cgn-Client-Ipv6Shift.
- cgnClient stringStartip 
- First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- cgnFixedalloc string
- Enable/disable fixed-allocation mode. Valid values: disable,enable.
- cgnOverload string
- Enable/disable overload mode. Valid values: disable,enable.
- cgnPort numberEnd 
- Ending public port can be allocated.
- cgnPort numberStart 
- Starting public port can be allocated.
- cgnSpa string
- Enable/disable single port allocation mode. Valid values: disable,enable.
- clientPrefix numberLength 
- Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
- comments string
- Comment.
- dynamicSort stringSubtable 
- true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
- endip string
- Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- endport number
- Endport.
- excludeIps string[]
- Exclude IPs x.x.x.x.
- icmpSession numberQuota 
- Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- nat64 string
- Enable/disable NAT64. Valid values: disable,enable.
- numBlocks numberPer User 
- Number of addresses blocks that can be used by a user (1 to 128, default = 8).
- objectFirewall stringIppool Dynamic Mapping Id 
- an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
- pbaInterim numberLog 
- Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
- pbaTimeout number
- Port block allocation timeout (seconds).
- permitAny stringHost 
- Enable/disable full cone NAT. Valid values: disable,enable.
- portPer numberUser 
- Port-Per-User.
- privilegedPort stringUse Pba 
- Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable,enable.
- scopetype string
- The scope of application of the resource. Valid values: inherit,adom,global. Theinheritmeans that the scopetype of the provider will be inherited, and adom will also be inherited. The default value isinherit.
- sourceEndip string
- Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- sourcePrefix6 string
- Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
- sourceStartip string
- First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- startip string
- First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- startport number
- Startport.
- subnetBroadcast stringIn Ippool 
- Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable,enable.
- tcpSession numberQuota 
- Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- type string
- IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload,one-to-one,fixed-port-range,port-block-allocation,cgn-resource-allocation.
- udpSession numberQuota 
- Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- utilizationAlarm numberClear 
- Pool utilization alarm clear threshold (40-100).
- utilizationAlarm numberRaise 
- Pool utilization alarm raise threshold (50-100).
- ippool str
- Ippool.
- _scopes Sequence[ObjectFirewall Ippool Dynamic Mapping_Scope Args] 
- _Scope. The structure of _scopeblock is documented below.
- add_nat64_ strroute 
- Enable/disable adding NAT64 route. Valid values: disable,enable.
- adom str
- Adom. This value is valid only when the scopetypeisadom, otherwise the value of adom in the provider will be inherited.
- arp_intf str
- Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
- arp_reply str
- Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable,enable.
- associated_interface str
- Associated interface name.
- block_size float
- Number of addresses in a block (64 to 4096, default = 128).
- cgn_block_ floatsize 
- Number of ports in a block(64 to 4096 in unit of 64, default = 128).
- cgn_client_ strendip 
- Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- cgn_client_ floatipv6shift 
- Cgn-Client-Ipv6Shift.
- cgn_client_ strstartip 
- First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- cgn_fixedalloc str
- Enable/disable fixed-allocation mode. Valid values: disable,enable.
- cgn_overload str
- Enable/disable overload mode. Valid values: disable,enable.
- cgn_port_ floatend 
- Ending public port can be allocated.
- cgn_port_ floatstart 
- Starting public port can be allocated.
- cgn_spa str
- Enable/disable single port allocation mode. Valid values: disable,enable.
- client_prefix_ floatlength 
- Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
- comments str
- Comment.
- dynamic_sort_ strsubtable 
- true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
- endip str
- Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- endport float
- Endport.
- exclude_ips Sequence[str]
- Exclude IPs x.x.x.x.
- icmp_session_ floatquota 
- Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- nat64 str
- Enable/disable NAT64. Valid values: disable,enable.
- num_blocks_ floatper_ user 
- Number of addresses blocks that can be used by a user (1 to 128, default = 8).
- object_firewall_ strippool_ dynamic_ mapping_ id 
- an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
- pba_interim_ floatlog 
- Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
- pba_timeout float
- Port block allocation timeout (seconds).
- permit_any_ strhost 
- Enable/disable full cone NAT. Valid values: disable,enable.
- port_per_ floatuser 
- Port-Per-User.
- privileged_port_ struse_ pba 
- Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable,enable.
- scopetype str
- The scope of application of the resource. Valid values: inherit,adom,global. Theinheritmeans that the scopetype of the provider will be inherited, and adom will also be inherited. The default value isinherit.
- source_endip str
- Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- source_prefix6 str
- Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
- source_startip str
- First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- startip str
- First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- startport float
- Startport.
- subnet_broadcast_ strin_ ippool 
- Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable,enable.
- tcp_session_ floatquota 
- Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- type str
- IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload,one-to-one,fixed-port-range,port-block-allocation,cgn-resource-allocation.
- udp_session_ floatquota 
- Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- utilization_alarm_ floatclear 
- Pool utilization alarm clear threshold (40-100).
- utilization_alarm_ floatraise 
- Pool utilization alarm raise threshold (50-100).
- ippool String
- Ippool.
- _scopes List<Property Map>
- _Scope. The structure of _scopeblock is documented below.
- addNat64Route String
- Enable/disable adding NAT64 route. Valid values: disable,enable.
- adom String
- Adom. This value is valid only when the scopetypeisadom, otherwise the value of adom in the provider will be inherited.
- arpIntf String
- Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
- arpReply String
- Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable,enable.
- associatedInterface String
- Associated interface name.
- blockSize Number
- Number of addresses in a block (64 to 4096, default = 128).
- cgnBlock NumberSize 
- Number of ports in a block(64 to 4096 in unit of 64, default = 128).
- cgnClient StringEndip 
- Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- cgnClient NumberIpv6shift 
- Cgn-Client-Ipv6Shift.
- cgnClient StringStartip 
- First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- cgnFixedalloc String
- Enable/disable fixed-allocation mode. Valid values: disable,enable.
- cgnOverload String
- Enable/disable overload mode. Valid values: disable,enable.
- cgnPort NumberEnd 
- Ending public port can be allocated.
- cgnPort NumberStart 
- Starting public port can be allocated.
- cgnSpa String
- Enable/disable single port allocation mode. Valid values: disable,enable.
- clientPrefix NumberLength 
- Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
- comments String
- Comment.
- dynamicSort StringSubtable 
- true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
- endip String
- Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- endport Number
- Endport.
- excludeIps List<String>
- Exclude IPs x.x.x.x.
- icmpSession NumberQuota 
- Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- nat64 String
- Enable/disable NAT64. Valid values: disable,enable.
- numBlocks NumberPer User 
- Number of addresses blocks that can be used by a user (1 to 128, default = 8).
- objectFirewall StringIppool Dynamic Mapping Id 
- an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
- pbaInterim NumberLog 
- Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
- pbaTimeout Number
- Port block allocation timeout (seconds).
- permitAny StringHost 
- Enable/disable full cone NAT. Valid values: disable,enable.
- portPer NumberUser 
- Port-Per-User.
- privilegedPort StringUse Pba 
- Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable,enable.
- scopetype String
- The scope of application of the resource. Valid values: inherit,adom,global. Theinheritmeans that the scopetype of the provider will be inherited, and adom will also be inherited. The default value isinherit.
- sourceEndip String
- Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- sourcePrefix6 String
- Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
- sourceStartip String
- First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- startip String
- First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- startport Number
- Startport.
- subnetBroadcast StringIn Ippool 
- Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable,enable.
- tcpSession NumberQuota 
- Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- type String
- IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload,one-to-one,fixed-port-range,port-block-allocation,cgn-resource-allocation.
- udpSession NumberQuota 
- Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- utilizationAlarm NumberClear 
- Pool utilization alarm clear threshold (40-100).
- utilizationAlarm NumberRaise 
- Pool utilization alarm raise threshold (50-100).
Outputs
All input properties are implicitly available as output properties. Additionally, the ObjectFirewallIppoolDynamicMapping resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing ObjectFirewallIppoolDynamicMapping Resource
Get an existing ObjectFirewallIppoolDynamicMapping resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: ObjectFirewallIppoolDynamicMappingState, opts?: CustomResourceOptions): ObjectFirewallIppoolDynamicMapping@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        _scopes: Optional[Sequence[ObjectFirewallIppoolDynamicMapping_ScopeArgs]] = None,
        add_nat64_route: Optional[str] = None,
        adom: Optional[str] = None,
        arp_intf: Optional[str] = None,
        arp_reply: Optional[str] = None,
        associated_interface: Optional[str] = None,
        block_size: Optional[float] = None,
        cgn_block_size: Optional[float] = None,
        cgn_client_endip: Optional[str] = None,
        cgn_client_ipv6shift: Optional[float] = None,
        cgn_client_startip: Optional[str] = None,
        cgn_fixedalloc: Optional[str] = None,
        cgn_overload: Optional[str] = None,
        cgn_port_end: Optional[float] = None,
        cgn_port_start: Optional[float] = None,
        cgn_spa: Optional[str] = None,
        client_prefix_length: Optional[float] = None,
        comments: Optional[str] = None,
        dynamic_sort_subtable: Optional[str] = None,
        endip: Optional[str] = None,
        endport: Optional[float] = None,
        exclude_ips: Optional[Sequence[str]] = None,
        icmp_session_quota: Optional[float] = None,
        ippool: Optional[str] = None,
        nat64: Optional[str] = None,
        num_blocks_per_user: Optional[float] = None,
        object_firewall_ippool_dynamic_mapping_id: Optional[str] = None,
        pba_interim_log: Optional[float] = None,
        pba_timeout: Optional[float] = None,
        permit_any_host: Optional[str] = None,
        port_per_user: Optional[float] = None,
        privileged_port_use_pba: Optional[str] = None,
        scopetype: Optional[str] = None,
        source_endip: Optional[str] = None,
        source_prefix6: Optional[str] = None,
        source_startip: Optional[str] = None,
        startip: Optional[str] = None,
        startport: Optional[float] = None,
        subnet_broadcast_in_ippool: Optional[str] = None,
        tcp_session_quota: Optional[float] = None,
        type: Optional[str] = None,
        udp_session_quota: Optional[float] = None,
        utilization_alarm_clear: Optional[float] = None,
        utilization_alarm_raise: Optional[float] = None) -> ObjectFirewallIppoolDynamicMappingfunc GetObjectFirewallIppoolDynamicMapping(ctx *Context, name string, id IDInput, state *ObjectFirewallIppoolDynamicMappingState, opts ...ResourceOption) (*ObjectFirewallIppoolDynamicMapping, error)public static ObjectFirewallIppoolDynamicMapping Get(string name, Input<string> id, ObjectFirewallIppoolDynamicMappingState? state, CustomResourceOptions? opts = null)public static ObjectFirewallIppoolDynamicMapping get(String name, Output<String> id, ObjectFirewallIppoolDynamicMappingState state, CustomResourceOptions options)resources:  _:    type: fortimanager:ObjectFirewallIppoolDynamicMapping    get:      id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- AddNat64Route string
- Enable/disable adding NAT64 route. Valid values: disable,enable.
- Adom string
- Adom. This value is valid only when the scopetypeisadom, otherwise the value of adom in the provider will be inherited.
- ArpIntf string
- Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
- ArpReply string
- Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable,enable.
- AssociatedInterface string
- Associated interface name.
- BlockSize double
- Number of addresses in a block (64 to 4096, default = 128).
- CgnBlock doubleSize 
- Number of ports in a block(64 to 4096 in unit of 64, default = 128).
- CgnClient stringEndip 
- Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- CgnClient doubleIpv6shift 
- Cgn-Client-Ipv6Shift.
- CgnClient stringStartip 
- First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- CgnFixedalloc string
- Enable/disable fixed-allocation mode. Valid values: disable,enable.
- CgnOverload string
- Enable/disable overload mode. Valid values: disable,enable.
- CgnPort doubleEnd 
- Ending public port can be allocated.
- CgnPort doubleStart 
- Starting public port can be allocated.
- CgnSpa string
- Enable/disable single port allocation mode. Valid values: disable,enable.
- ClientPrefix doubleLength 
- Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
- Comments string
- Comment.
- DynamicSort stringSubtable 
- true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
- Endip string
- Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- Endport double
- Endport.
- ExcludeIps List<string>
- Exclude IPs x.x.x.x.
- IcmpSession doubleQuota 
- Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- Ippool string
- Ippool.
- Nat64 string
- Enable/disable NAT64. Valid values: disable,enable.
- NumBlocks doublePer User 
- Number of addresses blocks that can be used by a user (1 to 128, default = 8).
- ObjectFirewall stringIppool Dynamic Mapping Id 
- an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
- PbaInterim doubleLog 
- Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
- PbaTimeout double
- Port block allocation timeout (seconds).
- PermitAny stringHost 
- Enable/disable full cone NAT. Valid values: disable,enable.
- PortPer doubleUser 
- Port-Per-User.
- PrivilegedPort stringUse Pba 
- Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable,enable.
- Scopetype string
- The scope of application of the resource. Valid values: inherit,adom,global. Theinheritmeans that the scopetype of the provider will be inherited, and adom will also be inherited. The default value isinherit.
- SourceEndip string
- Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- SourcePrefix6 string
- Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
- SourceStartip string
- First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- Startip string
- First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- Startport double
- Startport.
- SubnetBroadcast stringIn Ippool 
- Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable,enable.
- TcpSession doubleQuota 
- Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- Type string
- IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload,one-to-one,fixed-port-range,port-block-allocation,cgn-resource-allocation.
- UdpSession doubleQuota 
- Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- UtilizationAlarm doubleClear 
- Pool utilization alarm clear threshold (40-100).
- UtilizationAlarm doubleRaise 
- Pool utilization alarm raise threshold (50-100).
- _scopes List<ObjectFirewall Ippool Dynamic Mapping_Scope> 
- _Scope. The structure of _scopeblock is documented below.
- AddNat64Route string
- Enable/disable adding NAT64 route. Valid values: disable,enable.
- Adom string
- Adom. This value is valid only when the scopetypeisadom, otherwise the value of adom in the provider will be inherited.
- ArpIntf string
- Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
- ArpReply string
- Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable,enable.
- AssociatedInterface string
- Associated interface name.
- BlockSize float64
- Number of addresses in a block (64 to 4096, default = 128).
- CgnBlock float64Size 
- Number of ports in a block(64 to 4096 in unit of 64, default = 128).
- CgnClient stringEndip 
- Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- CgnClient float64Ipv6shift 
- Cgn-Client-Ipv6Shift.
- CgnClient stringStartip 
- First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- CgnFixedalloc string
- Enable/disable fixed-allocation mode. Valid values: disable,enable.
- CgnOverload string
- Enable/disable overload mode. Valid values: disable,enable.
- CgnPort float64End 
- Ending public port can be allocated.
- CgnPort float64Start 
- Starting public port can be allocated.
- CgnSpa string
- Enable/disable single port allocation mode. Valid values: disable,enable.
- ClientPrefix float64Length 
- Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
- Comments string
- Comment.
- DynamicSort stringSubtable 
- true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
- Endip string
- Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- Endport float64
- Endport.
- ExcludeIps []string
- Exclude IPs x.x.x.x.
- IcmpSession float64Quota 
- Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- Ippool string
- Ippool.
- Nat64 string
- Enable/disable NAT64. Valid values: disable,enable.
- NumBlocks float64Per User 
- Number of addresses blocks that can be used by a user (1 to 128, default = 8).
- ObjectFirewall stringIppool Dynamic Mapping Id 
- an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
- PbaInterim float64Log 
- Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
- PbaTimeout float64
- Port block allocation timeout (seconds).
- PermitAny stringHost 
- Enable/disable full cone NAT. Valid values: disable,enable.
- PortPer float64User 
- Port-Per-User.
- PrivilegedPort stringUse Pba 
- Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable,enable.
- Scopetype string
- The scope of application of the resource. Valid values: inherit,adom,global. Theinheritmeans that the scopetype of the provider will be inherited, and adom will also be inherited. The default value isinherit.
- SourceEndip string
- Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- SourcePrefix6 string
- Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
- SourceStartip string
- First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- Startip string
- First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- Startport float64
- Startport.
- SubnetBroadcast stringIn Ippool 
- Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable,enable.
- TcpSession float64Quota 
- Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- Type string
- IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload,one-to-one,fixed-port-range,port-block-allocation,cgn-resource-allocation.
- UdpSession float64Quota 
- Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- UtilizationAlarm float64Clear 
- Pool utilization alarm clear threshold (40-100).
- UtilizationAlarm float64Raise 
- Pool utilization alarm raise threshold (50-100).
- _scopes []ObjectFirewall Ippool Dynamic Mapping_Scope Args 
- _Scope. The structure of _scopeblock is documented below.
- _scopes List<ObjectFirewall Ippool Dynamic Mapping_Scope> 
- _Scope. The structure of _scopeblock is documented below.
- addNat64Route String
- Enable/disable adding NAT64 route. Valid values: disable,enable.
- adom String
- Adom. This value is valid only when the scopetypeisadom, otherwise the value of adom in the provider will be inherited.
- arpIntf String
- Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
- arpReply String
- Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable,enable.
- associatedInterface String
- Associated interface name.
- blockSize Double
- Number of addresses in a block (64 to 4096, default = 128).
- cgnBlock DoubleSize 
- Number of ports in a block(64 to 4096 in unit of 64, default = 128).
- cgnClient StringEndip 
- Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- cgnClient DoubleIpv6shift 
- Cgn-Client-Ipv6Shift.
- cgnClient StringStartip 
- First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- cgnFixedalloc String
- Enable/disable fixed-allocation mode. Valid values: disable,enable.
- cgnOverload String
- Enable/disable overload mode. Valid values: disable,enable.
- cgnPort DoubleEnd 
- Ending public port can be allocated.
- cgnPort DoubleStart 
- Starting public port can be allocated.
- cgnSpa String
- Enable/disable single port allocation mode. Valid values: disable,enable.
- clientPrefix DoubleLength 
- Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
- comments String
- Comment.
- dynamicSort StringSubtable 
- true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
- endip String
- Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- endport Double
- Endport.
- excludeIps List<String>
- Exclude IPs x.x.x.x.
- icmpSession DoubleQuota 
- Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- ippool String
- Ippool.
- nat64 String
- Enable/disable NAT64. Valid values: disable,enable.
- numBlocks DoublePer User 
- Number of addresses blocks that can be used by a user (1 to 128, default = 8).
- objectFirewall StringIppool Dynamic Mapping Id 
- an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
- pbaInterim DoubleLog 
- Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
- pbaTimeout Double
- Port block allocation timeout (seconds).
- permitAny StringHost 
- Enable/disable full cone NAT. Valid values: disable,enable.
- portPer DoubleUser 
- Port-Per-User.
- privilegedPort StringUse Pba 
- Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable,enable.
- scopetype String
- The scope of application of the resource. Valid values: inherit,adom,global. Theinheritmeans that the scopetype of the provider will be inherited, and adom will also be inherited. The default value isinherit.
- sourceEndip String
- Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- sourcePrefix6 String
- Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
- sourceStartip String
- First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- startip String
- First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- startport Double
- Startport.
- subnetBroadcast StringIn Ippool 
- Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable,enable.
- tcpSession DoubleQuota 
- Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- type String
- IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload,one-to-one,fixed-port-range,port-block-allocation,cgn-resource-allocation.
- udpSession DoubleQuota 
- Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- utilizationAlarm DoubleClear 
- Pool utilization alarm clear threshold (40-100).
- utilizationAlarm DoubleRaise 
- Pool utilization alarm raise threshold (50-100).
- _scopes ObjectFirewall Ippool Dynamic Mapping_Scope[] 
- _Scope. The structure of _scopeblock is documented below.
- addNat64Route string
- Enable/disable adding NAT64 route. Valid values: disable,enable.
- adom string
- Adom. This value is valid only when the scopetypeisadom, otherwise the value of adom in the provider will be inherited.
- arpIntf string
- Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
- arpReply string
- Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable,enable.
- associatedInterface string
- Associated interface name.
- blockSize number
- Number of addresses in a block (64 to 4096, default = 128).
- cgnBlock numberSize 
- Number of ports in a block(64 to 4096 in unit of 64, default = 128).
- cgnClient stringEndip 
- Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- cgnClient numberIpv6shift 
- Cgn-Client-Ipv6Shift.
- cgnClient stringStartip 
- First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- cgnFixedalloc string
- Enable/disable fixed-allocation mode. Valid values: disable,enable.
- cgnOverload string
- Enable/disable overload mode. Valid values: disable,enable.
- cgnPort numberEnd 
- Ending public port can be allocated.
- cgnPort numberStart 
- Starting public port can be allocated.
- cgnSpa string
- Enable/disable single port allocation mode. Valid values: disable,enable.
- clientPrefix numberLength 
- Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
- comments string
- Comment.
- dynamicSort stringSubtable 
- true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
- endip string
- Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- endport number
- Endport.
- excludeIps string[]
- Exclude IPs x.x.x.x.
- icmpSession numberQuota 
- Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- ippool string
- Ippool.
- nat64 string
- Enable/disable NAT64. Valid values: disable,enable.
- numBlocks numberPer User 
- Number of addresses blocks that can be used by a user (1 to 128, default = 8).
- objectFirewall stringIppool Dynamic Mapping Id 
- an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
- pbaInterim numberLog 
- Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
- pbaTimeout number
- Port block allocation timeout (seconds).
- permitAny stringHost 
- Enable/disable full cone NAT. Valid values: disable,enable.
- portPer numberUser 
- Port-Per-User.
- privilegedPort stringUse Pba 
- Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable,enable.
- scopetype string
- The scope of application of the resource. Valid values: inherit,adom,global. Theinheritmeans that the scopetype of the provider will be inherited, and adom will also be inherited. The default value isinherit.
- sourceEndip string
- Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- sourcePrefix6 string
- Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
- sourceStartip string
- First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- startip string
- First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- startport number
- Startport.
- subnetBroadcast stringIn Ippool 
- Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable,enable.
- tcpSession numberQuota 
- Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- type string
- IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload,one-to-one,fixed-port-range,port-block-allocation,cgn-resource-allocation.
- udpSession numberQuota 
- Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- utilizationAlarm numberClear 
- Pool utilization alarm clear threshold (40-100).
- utilizationAlarm numberRaise 
- Pool utilization alarm raise threshold (50-100).
- _scopes Sequence[ObjectFirewall Ippool Dynamic Mapping_Scope Args] 
- _Scope. The structure of _scopeblock is documented below.
- add_nat64_ strroute 
- Enable/disable adding NAT64 route. Valid values: disable,enable.
- adom str
- Adom. This value is valid only when the scopetypeisadom, otherwise the value of adom in the provider will be inherited.
- arp_intf str
- Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
- arp_reply str
- Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable,enable.
- associated_interface str
- Associated interface name.
- block_size float
- Number of addresses in a block (64 to 4096, default = 128).
- cgn_block_ floatsize 
- Number of ports in a block(64 to 4096 in unit of 64, default = 128).
- cgn_client_ strendip 
- Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- cgn_client_ floatipv6shift 
- Cgn-Client-Ipv6Shift.
- cgn_client_ strstartip 
- First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- cgn_fixedalloc str
- Enable/disable fixed-allocation mode. Valid values: disable,enable.
- cgn_overload str
- Enable/disable overload mode. Valid values: disable,enable.
- cgn_port_ floatend 
- Ending public port can be allocated.
- cgn_port_ floatstart 
- Starting public port can be allocated.
- cgn_spa str
- Enable/disable single port allocation mode. Valid values: disable,enable.
- client_prefix_ floatlength 
- Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
- comments str
- Comment.
- dynamic_sort_ strsubtable 
- true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
- endip str
- Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- endport float
- Endport.
- exclude_ips Sequence[str]
- Exclude IPs x.x.x.x.
- icmp_session_ floatquota 
- Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- ippool str
- Ippool.
- nat64 str
- Enable/disable NAT64. Valid values: disable,enable.
- num_blocks_ floatper_ user 
- Number of addresses blocks that can be used by a user (1 to 128, default = 8).
- object_firewall_ strippool_ dynamic_ mapping_ id 
- an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
- pba_interim_ floatlog 
- Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
- pba_timeout float
- Port block allocation timeout (seconds).
- permit_any_ strhost 
- Enable/disable full cone NAT. Valid values: disable,enable.
- port_per_ floatuser 
- Port-Per-User.
- privileged_port_ struse_ pba 
- Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable,enable.
- scopetype str
- The scope of application of the resource. Valid values: inherit,adom,global. Theinheritmeans that the scopetype of the provider will be inherited, and adom will also be inherited. The default value isinherit.
- source_endip str
- Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- source_prefix6 str
- Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
- source_startip str
- First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- startip str
- First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- startport float
- Startport.
- subnet_broadcast_ strin_ ippool 
- Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable,enable.
- tcp_session_ floatquota 
- Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- type str
- IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload,one-to-one,fixed-port-range,port-block-allocation,cgn-resource-allocation.
- udp_session_ floatquota 
- Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- utilization_alarm_ floatclear 
- Pool utilization alarm clear threshold (40-100).
- utilization_alarm_ floatraise 
- Pool utilization alarm raise threshold (50-100).
- _scopes List<Property Map>
- _Scope. The structure of _scopeblock is documented below.
- addNat64Route String
- Enable/disable adding NAT64 route. Valid values: disable,enable.
- adom String
- Adom. This value is valid only when the scopetypeisadom, otherwise the value of adom in the provider will be inherited.
- arpIntf String
- Select an interface from available options that will reply to ARP requests. (If blank, any is selected).
- arpReply String
- Enable/disable replying to ARP requests when an IP Pool is added to a policy (default = enable). Valid values: disable,enable.
- associatedInterface String
- Associated interface name.
- blockSize Number
- Number of addresses in a block (64 to 4096, default = 128).
- cgnBlock NumberSize 
- Number of ports in a block(64 to 4096 in unit of 64, default = 128).
- cgnClient StringEndip 
- Final client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- cgnClient NumberIpv6shift 
- Cgn-Client-Ipv6Shift.
- cgnClient StringStartip 
- First client IPv4 address (inclusive) (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- cgnFixedalloc String
- Enable/disable fixed-allocation mode. Valid values: disable,enable.
- cgnOverload String
- Enable/disable overload mode. Valid values: disable,enable.
- cgnPort NumberEnd 
- Ending public port can be allocated.
- cgnPort NumberStart 
- Starting public port can be allocated.
- cgnSpa String
- Enable/disable single port allocation mode. Valid values: disable,enable.
- clientPrefix NumberLength 
- Subnet length of a single deterministic NAT64 client (1 - 128, default = 64).
- comments String
- Comment.
- dynamicSort StringSubtable 
- true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
- endip String
- Final IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- endport Number
- Endport.
- excludeIps List<String>
- Exclude IPs x.x.x.x.
- icmpSession NumberQuota 
- Maximum number of concurrent ICMP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- ippool String
- Ippool.
- nat64 String
- Enable/disable NAT64. Valid values: disable,enable.
- numBlocks NumberPer User 
- Number of addresses blocks that can be used by a user (1 to 128, default = 8).
- objectFirewall StringIppool Dynamic Mapping Id 
- an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
- pbaInterim NumberLog 
- Port block allocation interim logging interval (600 - 86400 seconds, default = 0 which disables interim logging).
- pbaTimeout Number
- Port block allocation timeout (seconds).
- permitAny StringHost 
- Enable/disable full cone NAT. Valid values: disable,enable.
- portPer NumberUser 
- Port-Per-User.
- privilegedPort StringUse Pba 
- Enable/disable selection of the external port from the port block allocation for NAT'ing privileged ports (deafult = disable). Valid values: disable,enable.
- scopetype String
- The scope of application of the resource. Valid values: inherit,adom,global. Theinheritmeans that the scopetype of the provider will be inherited, and adom will also be inherited. The default value isinherit.
- sourceEndip String
- Final IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- sourcePrefix6 String
- Source IPv6 network to be translated (format = xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/xxx, default = ::/0).
- sourceStartip String
- First IPv4 address (inclusive) in the range of the source addresses to be translated (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- startip String
- First IPv4 address (inclusive) in the range for the address pool (format xxx.xxx.xxx.xxx, Default: 0.0.0.0).
- startport Number
- Startport.
- subnetBroadcast StringIn Ippool 
- Enable/disable inclusion of the subnetwork address and broadcast IP address in the NAT64 IP pool. Valid values: disable,enable.
- tcpSession NumberQuota 
- Maximum number of concurrent TCP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- type String
- IP pool type (overload, one-to-one, fixed port range, or port block allocation). Valid values: overload,one-to-one,fixed-port-range,port-block-allocation,cgn-resource-allocation.
- udpSession NumberQuota 
- Maximum number of concurrent UDP sessions allowed per client (0 - 2097000, default = 0 which means no limit).
- utilizationAlarm NumberClear 
- Pool utilization alarm clear threshold (40-100).
- utilizationAlarm NumberRaise 
- Pool utilization alarm raise threshold (50-100).
Supporting Types
ObjectFirewallIppoolDynamicMapping_Scope, ObjectFirewallIppoolDynamicMapping_ScopeArgs          
Import
ObjectFirewall IppoolDynamicMapping can be imported using any of these accepted formats:
Set import_options = [“ippool=YOUR_VALUE”] in the provider section.
$ export “FORTIMANAGER_IMPORT_TABLE”=“true”
$ pulumi import fortimanager:index/objectFirewallIppoolDynamicMapping:ObjectFirewallIppoolDynamicMapping labelname {{_scope.name}}.{{_scope.vdom}}
$ unset “FORTIMANAGER_IMPORT_TABLE”
-> Hint: The scopetype and adom for import will directly inherit the scopetype and adom configuration of the provider.
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- fortimanager fortinetdev/terraform-provider-fortimanager
- License
- Notes
- This Pulumi package is based on the fortimanagerTerraform Provider.