You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
module"nsxt_policy_gateway_policy" {
source="./modules/nsxt/r/nsxt_policy_gateway_policy"# category - (required) is a type of stringcategory=null# comments - (optional) is a type of stringcomments=null# description - (optional) is a type of stringdescription=null# display_name - (required) is a type of stringdisplay_name=null# domain - (optional) is a type of stringdomain=null# locked - (optional) is a type of boollocked=null# nsx_id - (optional) is a type of stringnsx_id=null# sequence_number - (optional) is a type of numbersequence_number=null# stateful - (optional) is a type of boolstateful=null# tcp_strict - (optional) is a type of booltcp_strict=nullrule=[{
action =null
description =null
destination_groups = []
destinations_excluded =null
direction =null
disabled =null
display_name =null
ip_version =null
log_label =null
logged =null
notes =null
nsx_id =null
profiles = []
revision =null
rule_id =null
scope = []
sequence_number =null
services = []
source_groups = []
sources_excluded =null
tag = [{
scope =null
tag =null
}]
}]
tag=[{
scope =null
tag =null
}]
}
variable"category" {
description="(required) - Category"type=string
}
variable"comments" {
description="(optional) - Comments for security policy lock/unlock"type=stringdefault=null
}
variable"description" {
description="(optional) - Description for this resource"type=stringdefault=null
}
variable"display_name" {
description="(required) - Display name for this resource"type=string
}
variable"domain" {
description="(optional) - The domain name to use for resources. If not specified 'default' is used"type=stringdefault=null
}
variable"locked" {
description="(optional) - Indicates whether a security policy should be locked. If locked by a user, no other user would be able to modify this policy"type=booldefault=null
}
variable"nsx_id" {
description="(optional) - NSX ID for this resource"type=stringdefault=null
}
variable"sequence_number" {
description="(optional) - This field is used to resolve conflicts between security policies across domains"type=numberdefault=null
}
variable"stateful" {
description="(optional) - When it is stateful, the state of the network connects are tracked and a stateful packet inspection is performed"type=booldefault=null
}
variable"tcp_strict" {
description="(optional) - Ensures that a 3 way TCP handshake is done before the data packets are sent"type=booldefault=null
}
variable"rule" {
description="nested block: NestingList, min items: 0, max items: 1000"type=set(object(
{
action =string
description =string
destination_groups =set(string)
destinations_excluded =bool
direction =string
disabled =bool
display_name =string
ip_version =string
log_label =string
logged =bool
notes =string
nsx_id =string
profiles =set(string)
revision =number
rule_id =number
scope =set(string)
sequence_number =number
services =set(string)
source_groups =set(string)
sources_excluded =bool
tag =set(object(
{
scope =string
tag =string
}
))
}
))
default=[]
}
variable"tag" {
description="nested block: NestingSet, min items: 0, max items: 0"type=set(object(
{
scope =string
tag =string
}
))
default=[]
}
resource"nsxt_policy_gateway_policy""this" {
# category - (required) is a type of stringcategory=var.category# comments - (optional) is a type of stringcomments=var.comments# description - (optional) is a type of stringdescription=var.description# display_name - (required) is a type of stringdisplay_name=var.display_name# domain - (optional) is a type of stringdomain=var.domain# locked - (optional) is a type of boollocked=var.locked# nsx_id - (optional) is a type of stringnsx_id=var.nsx_id# sequence_number - (optional) is a type of numbersequence_number=var.sequence_number# stateful - (optional) is a type of boolstateful=var.stateful# tcp_strict - (optional) is a type of booltcp_strict=var.tcp_strictdynamic"rule" {
for_each=var.rulecontent {
# action - (optional) is a type of stringaction=rule.value["action"]
# description - (optional) is a type of stringdescription=rule.value["description"]
# destination_groups - (optional) is a type of set of stringdestination_groups=rule.value["destination_groups"]
# destinations_excluded - (optional) is a type of booldestinations_excluded=rule.value["destinations_excluded"]
# direction - (optional) is a type of stringdirection=rule.value["direction"]
# disabled - (optional) is a type of booldisabled=rule.value["disabled"]
# display_name - (required) is a type of stringdisplay_name=rule.value["display_name"]
# ip_version - (optional) is a type of stringip_version=rule.value["ip_version"]
# log_label - (optional) is a type of stringlog_label=rule.value["log_label"]
# logged - (optional) is a type of boollogged=rule.value["logged"]
# notes - (optional) is a type of stringnotes=rule.value["notes"]
# nsx_id - (optional) is a type of stringnsx_id=rule.value["nsx_id"]
# profiles - (optional) is a type of set of stringprofiles=rule.value["profiles"]
# scope - (required) is a type of set of stringscope=rule.value["scope"]
# sequence_number - (optional) is a type of numbersequence_number=rule.value["sequence_number"]
# services - (optional) is a type of set of stringservices=rule.value["services"]
# source_groups - (optional) is a type of set of stringsource_groups=rule.value["source_groups"]
# sources_excluded - (optional) is a type of boolsources_excluded=rule.value["sources_excluded"]
dynamic"tag" {
for_each=rule.value.tagcontent {
# scope - (optional) is a type of stringscope=tag.value["scope"]
# tag - (optional) is a type of stringtag=tag.value["tag"]
}
}
}
}
dynamic"tag" {
for_each=var.tagcontent {
# scope - (optional) is a type of stringscope=tag.value["scope"]
# tag - (optional) is a type of stringtag=tag.value["tag"]
}
}
}