Docs Home
Palo Alto Networks Cloud NGFW for AWS v0.1.1 published on Saturday, Mar 15, 2025 by Pulumi
cloudngfwaws.Ngfw
Explore with Pulumi AI
Palo Alto Networks Cloud NGFW for AWS v0.1.1 published on Saturday, Mar 15, 2025 by Pulumi
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
import * as cloudngfwaws from "@pulumi/cloudngfwaws";
const rs = new cloudngfwaws.CommitRulestack("rs", {rulestack: "my-rulestack"});
const exampleVpc = new aws.index.Vpc("example", {
cidrBlock: "172.16.0.0/16",
tags: {
name: "tf-example",
},
});
const subnet1 = new aws.index.Subnet("subnet1", {
vpcId: myVpc.id,
cidrBlock: "172.16.10.0/24",
availabilityZone: "us-west-2a",
tags: {
name: "tf-example",
},
});
const subnet2 = new aws.index.Subnet("subnet2", {
vpcId: myVpc.id,
cidrBlock: "172.16.20.0/24",
availabilityZone: "us-west-2b",
tags: {
name: "tf-example",
},
});
const example = new cloudngfwaws.Ngfw("example", {
name: "example-instance",
vpcId: exampleVpc.id,
accountId: "12345678",
description: "Example description",
linkId: "Link-81e80ccc-357a-4e4e-8325-1ed1d830cba5",
endpointMode: "ServiceManaged",
subnetMappings: [
{
subnetId: subnet1.id,
},
{
subnetId: subnet2.id,
},
],
rulestack: rs.rulestack,
tags: {
Foo: "bar",
},
});
import pulumi
import pulumi_aws as aws
import pulumi_cloudngfwaws as cloudngfwaws
rs = cloudngfwaws.CommitRulestack("rs", rulestack="my-rulestack")
example_vpc = aws.index.Vpc("example",
cidr_block=172.16.0.0/16,
tags={
name: tf-example,
})
subnet1 = aws.index.Subnet("subnet1",
vpc_id=my_vpc.id,
cidr_block=172.16.10.0/24,
availability_zone=us-west-2a,
tags={
name: tf-example,
})
subnet2 = aws.index.Subnet("subnet2",
vpc_id=my_vpc.id,
cidr_block=172.16.20.0/24,
availability_zone=us-west-2b,
tags={
name: tf-example,
})
example = cloudngfwaws.Ngfw("example",
name="example-instance",
vpc_id=example_vpc["id"],
account_id="12345678",
description="Example description",
link_id="Link-81e80ccc-357a-4e4e-8325-1ed1d830cba5",
endpoint_mode="ServiceManaged",
subnet_mappings=[
{
"subnet_id": subnet1["id"],
},
{
"subnet_id": subnet2["id"],
},
],
rulestack=rs.rulestack,
tags={
"Foo": "bar",
})
package main
import (
"github.com/pulumi/pulumi-aws/sdk/go/aws"
"github.com/pulumi/pulumi-cloudngfwaws/sdk/go/cloudngfwaws"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
rs, err := cloudngfwaws.NewCommitRulestack(ctx, "rs", &cloudngfwaws.CommitRulestackArgs{
Rulestack: pulumi.String("my-rulestack"),
})
if err != nil {
return err
}
exampleVpc, err := aws.NewVpc(ctx, "example", &aws.VpcArgs{
CidrBlock: "172.16.0.0/16",
Tags: map[string]interface{}{
"name": "tf-example",
},
})
if err != nil {
return err
}
subnet1, err := aws.NewSubnet(ctx, "subnet1", &aws.SubnetArgs{
VpcId: myVpc.Id,
CidrBlock: "172.16.10.0/24",
AvailabilityZone: "us-west-2a",
Tags: map[string]interface{}{
"name": "tf-example",
},
})
if err != nil {
return err
}
subnet2, err := aws.NewSubnet(ctx, "subnet2", &aws.SubnetArgs{
VpcId: myVpc.Id,
CidrBlock: "172.16.20.0/24",
AvailabilityZone: "us-west-2b",
Tags: map[string]interface{}{
"name": "tf-example",
},
})
if err != nil {
return err
}
_, err = cloudngfwaws.NewNgfw(ctx, "example", &cloudngfwaws.NgfwArgs{
Name: pulumi.String("example-instance"),
VpcId: exampleVpc.Id,
AccountId: pulumi.String("12345678"),
Description: pulumi.String("Example description"),
LinkId: pulumi.String("Link-81e80ccc-357a-4e4e-8325-1ed1d830cba5"),
EndpointMode: pulumi.String("ServiceManaged"),
SubnetMappings: cloudngfwaws.NgfwSubnetMappingArray{
&cloudngfwaws.NgfwSubnetMappingArgs{
SubnetId: subnet1.Id,
},
&cloudngfwaws.NgfwSubnetMappingArgs{
SubnetId: subnet2.Id,
},
},
Rulestack: rs.Rulestack,
Tags: pulumi.StringMap{
"Foo": pulumi.String("bar"),
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
using CloudNgfwAws = Pulumi.CloudNgfwAws;
return await Deployment.RunAsync(() =>
{
var rs = new CloudNgfwAws.CommitRulestack("rs", new()
{
Rulestack = "my-rulestack",
});
var exampleVpc = new Aws.Index.Vpc("example", new()
{
CidrBlock = "172.16.0.0/16",
Tags =
{
{ "name", "tf-example" },
},
});
var subnet1 = new Aws.Index.Subnet("subnet1", new()
{
VpcId = myVpc.Id,
CidrBlock = "172.16.10.0/24",
AvailabilityZone = "us-west-2a",
Tags =
{
{ "name", "tf-example" },
},
});
var subnet2 = new Aws.Index.Subnet("subnet2", new()
{
VpcId = myVpc.Id,
CidrBlock = "172.16.20.0/24",
AvailabilityZone = "us-west-2b",
Tags =
{
{ "name", "tf-example" },
},
});
var example = new CloudNgfwAws.Ngfw("example", new()
{
Name = "example-instance",
VpcId = exampleVpc.Id,
AccountId = "12345678",
Description = "Example description",
LinkId = "Link-81e80ccc-357a-4e4e-8325-1ed1d830cba5",
EndpointMode = "ServiceManaged",
SubnetMappings = new[]
{
new CloudNgfwAws.Inputs.NgfwSubnetMappingArgs
{
SubnetId = subnet1.Id,
},
new CloudNgfwAws.Inputs.NgfwSubnetMappingArgs
{
SubnetId = subnet2.Id,
},
},
Rulestack = rs.Rulestack,
Tags =
{
{ "Foo", "bar" },
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.cloudngfwaws.CommitRulestack;
import com.pulumi.cloudngfwaws.CommitRulestackArgs;
import com.pulumi.aws.vpc;
import com.pulumi.aws.VpcArgs;
import com.pulumi.aws.subnet;
import com.pulumi.aws.SubnetArgs;
import com.pulumi.cloudngfwaws.Ngfw;
import com.pulumi.cloudngfwaws.NgfwArgs;
import com.pulumi.cloudngfwaws.inputs.NgfwSubnetMappingArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var rs = new CommitRulestack("rs", CommitRulestackArgs.builder()
.rulestack("my-rulestack")
.build());
var exampleVpc = new Vpc("exampleVpc", VpcArgs.builder()
.cidrBlock("172.16.0.0/16")
.tags(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
.build());
var subnet1 = new Subnet("subnet1", SubnetArgs.builder()
.vpcId(myVpc.id())
.cidrBlock("172.16.10.0/24")
.availabilityZone("us-west-2a")
.tags(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
.build());
var subnet2 = new Subnet("subnet2", SubnetArgs.builder()
.vpcId(myVpc.id())
.cidrBlock("172.16.20.0/24")
.availabilityZone("us-west-2b")
.tags(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
.build());
var example = new Ngfw("example", NgfwArgs.builder()
.name("example-instance")
.vpcId(exampleVpc.id())
.accountId("12345678")
.description("Example description")
.linkId("Link-81e80ccc-357a-4e4e-8325-1ed1d830cba5")
.endpointMode("ServiceManaged")
.subnetMappings(
NgfwSubnetMappingArgs.builder()
.subnetId(subnet1.id())
.build(),
NgfwSubnetMappingArgs.builder()
.subnetId(subnet2.id())
.build())
.rulestack(rs.rulestack())
.tags(Map.of("Foo", "bar"))
.build());
}
}
resources:
example:
type: cloudngfwaws:Ngfw
properties:
name: example-instance
vpcId: ${exampleVpc.id}
accountId: '12345678'
description: Example description
linkId: Link-81e80ccc-357a-4e4e-8325-1ed1d830cba5
endpointMode: ServiceManaged
subnetMappings:
- subnetId: ${subnet1.id}
- subnetId: ${subnet2.id}
rulestack: ${rs.rulestack}
tags:
Foo: bar
rs:
type: cloudngfwaws:CommitRulestack
properties:
rulestack: my-rulestack
exampleVpc:
type: aws:vpc
name: example
properties:
cidrBlock: 172.16.0.0/16
tags:
name: tf-example
subnet1:
type: aws:subnet
properties:
vpcId: ${myVpc.id}
cidrBlock: 172.16.10.0/24
availabilityZone: us-west-2a
tags:
name: tf-example
subnet2:
type: aws:subnet
properties:
vpcId: ${myVpc.id}
cidrBlock: 172.16.20.0/24
availabilityZone: us-west-2b
tags:
name: tf-example
Create Ngfw Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Ngfw(name: string, args: NgfwArgs, opts?: CustomResourceOptions);@overload
def Ngfw(resource_name: str,
args: NgfwArgs,
opts: Optional[ResourceOptions] = None)
@overload
def Ngfw(resource_name: str,
opts: Optional[ResourceOptions] = None,
endpoint_mode: Optional[str] = None,
vpc_id: Optional[str] = None,
subnet_mappings: Optional[Sequence[NgfwSubnetMappingArgs]] = None,
link_id: Optional[str] = None,
description: Optional[str] = None,
global_rulestack: Optional[str] = None,
account_id: Optional[str] = None,
multi_vpc: Optional[bool] = None,
name: Optional[str] = None,
rulestack: Optional[str] = None,
automatic_upgrade_app_id_version: Optional[bool] = None,
tags: Optional[Mapping[str, str]] = None,
app_id_version: Optional[str] = None)func NewNgfw(ctx *Context, name string, args NgfwArgs, opts ...ResourceOption) (*Ngfw, error)public Ngfw(string name, NgfwArgs args, CustomResourceOptions? opts = null)type: cloudngfwaws:Ngfw
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name
This property is required. string - The unique name of the resource.
- args
This property is required. NgfwArgs - The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name
This property is required. str - The unique name of the resource.
- args
This property is required. NgfwArgs - The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name
This property is required. string - The unique name of the resource.
- args
This property is required. NgfwArgs - The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name
This property is required. string - The unique name of the resource.
- args
This property is required. NgfwArgs - The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name
This property is required. String - The unique name of the resource.
- args
This property is required. NgfwArgs - The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var ngfwResource = new CloudNgfwAws.Ngfw("ngfwResource", new()
{
EndpointMode = "string",
VpcId = "string",
SubnetMappings = new[]
{
new CloudNgfwAws.Inputs.NgfwSubnetMappingArgs
{
AvailabilityZone = "string",
AvailabilityZoneId = "string",
SubnetId = "string",
},
},
LinkId = "string",
Description = "string",
GlobalRulestack = "string",
AccountId = "string",
MultiVpc = false,
Name = "string",
Rulestack = "string",
AutomaticUpgradeAppIdVersion = false,
Tags =
{
{ "string", "string" },
},
AppIdVersion = "string",
});
example, err := cloudngfwaws.NewNgfw(ctx, "ngfwResource", &cloudngfwaws.NgfwArgs{
EndpointMode: pulumi.String("string"),
VpcId: pulumi.String("string"),
SubnetMappings: cloudngfwaws.NgfwSubnetMappingArray{
&cloudngfwaws.NgfwSubnetMappingArgs{
AvailabilityZone: pulumi.String("string"),
AvailabilityZoneId: pulumi.String("string"),
SubnetId: pulumi.String("string"),
},
},
LinkId: pulumi.String("string"),
Description: pulumi.String("string"),
GlobalRulestack: pulumi.String("string"),
AccountId: pulumi.String("string"),
MultiVpc: pulumi.Bool(false),
Name: pulumi.String("string"),
Rulestack: pulumi.String("string"),
AutomaticUpgradeAppIdVersion: pulumi.Bool(false),
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
AppIdVersion: pulumi.String("string"),
})
var ngfwResource = new Ngfw("ngfwResource", NgfwArgs.builder()
.endpointMode("string")
.vpcId("string")
.subnetMappings(NgfwSubnetMappingArgs.builder()
.availabilityZone("string")
.availabilityZoneId("string")
.subnetId("string")
.build())
.linkId("string")
.description("string")
.globalRulestack("string")
.accountId("string")
.multiVpc(false)
.name("string")
.rulestack("string")
.automaticUpgradeAppIdVersion(false)
.tags(Map.of("string", "string"))
.appIdVersion("string")
.build());
ngfw_resource = cloudngfwaws.Ngfw("ngfwResource",
endpoint_mode="string",
vpc_id="string",
subnet_mappings=[{
"availability_zone": "string",
"availability_zone_id": "string",
"subnet_id": "string",
}],
link_id="string",
description="string",
global_rulestack="string",
account_id="string",
multi_vpc=False,
name="string",
rulestack="string",
automatic_upgrade_app_id_version=False,
tags={
"string": "string",
},
app_id_version="string")
const ngfwResource = new cloudngfwaws.Ngfw("ngfwResource", {
endpointMode: "string",
vpcId: "string",
subnetMappings: [{
availabilityZone: "string",
availabilityZoneId: "string",
subnetId: "string",
}],
linkId: "string",
description: "string",
globalRulestack: "string",
accountId: "string",
multiVpc: false,
name: "string",
rulestack: "string",
automaticUpgradeAppIdVersion: false,
tags: {
string: "string",
},
appIdVersion: "string",
});
type: cloudngfwaws:Ngfw
properties:
accountId: string
appIdVersion: string
automaticUpgradeAppIdVersion: false
description: string
endpointMode: string
globalRulestack: string
linkId: string
multiVpc: false
name: string
rulestack: string
subnetMappings:
- availabilityZone: string
availabilityZoneId: string
subnetId: string
tags:
string: string
vpcId: string
Ngfw Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Ngfw resource accepts the following input properties:
- Endpoint
Mode stringThis property is required. 
Changes to this property will trigger replacement. - Set endpoint mode from the following options. Valid values are
ServiceManagedorCustomerManaged. - Subnet
Mappings This property is required. List<Pulumi.Cloud Ngfw Aws. Inputs. Ngfw Subnet Mapping> - Subnet mappings.
- Vpc
Id stringThis property is required. Changes to this property will trigger replacement. - The vpc id.
- Account
Id - The account ID. This field is mandatory if using multiple accounts.
- App
Id stringVersion - App-ID version number.
- Automatic
Upgrade boolApp Id Version - Automatic App-ID upgrade version number. Defaults to
true. - Description string
- The description.
- Global
Rulestack - The global rulestack for this NGFW.
- Link
Id string - A unique identifier for establishing and managing the link between the Cloud NGFW and other AWS resources.
- Multi
Vpc bool - Share NGFW with Multiple VPCs. This feature can be enabled only if the endpoint_mode is CustomerManaged.
- Name
- The NGFW name.
- Rulestack string
- The rulestack for this NGFW.
- Dictionary<string, string>
- The tags.
- Endpoint
Mode stringThis property is required. Changes to this property will trigger replacement. - Set endpoint mode from the following options. Valid values are
ServiceManagedorCustomerManaged. - Subnet
Mappings This property is required. []NgfwSubnet Mapping Args - Subnet mappings.
- Vpc
Id stringThis property is required. Changes to this property will trigger replacement. - The vpc id.
- Account
Id - The account ID. This field is mandatory if using multiple accounts.
- App
Id stringVersion - App-ID version number.
- Automatic
Upgrade boolApp Id Version - Automatic App-ID upgrade version number. Defaults to
true. - Description string
- The description.
- Global
Rulestack - The global rulestack for this NGFW.
- Link
Id string - A unique identifier for establishing and managing the link between the Cloud NGFW and other AWS resources.
- Multi
Vpc bool - Share NGFW with Multiple VPCs. This feature can be enabled only if the endpoint_mode is CustomerManaged.
- Name
- The NGFW name.
- Rulestack string
- The rulestack for this NGFW.
- map[string]string
- The tags.
- endpoint
Mode StringThis property is required. Changes to this property will trigger replacement. - Set endpoint mode from the following options. Valid values are
ServiceManagedorCustomerManaged. - subnet
Mappings This property is required. List<NgfwSubnet Mapping> - Subnet mappings.
- vpc
Id StringThis property is required. Changes to this property will trigger replacement. - The vpc id.
- account
Id - The account ID. This field is mandatory if using multiple accounts.
- app
Id StringVersion - App-ID version number.
- automatic
Upgrade BooleanApp Id Version - Automatic App-ID upgrade version number. Defaults to
true. - description String
- The description.
- global
Rulestack - The global rulestack for this NGFW.
- link
Id String - A unique identifier for establishing and managing the link between the Cloud NGFW and other AWS resources.
- multi
Vpc Boolean - Share NGFW with Multiple VPCs. This feature can be enabled only if the endpoint_mode is CustomerManaged.
- name
- The NGFW name.
- rulestack String
- The rulestack for this NGFW.
- Map<String,String>
- The tags.
- endpoint
Mode stringThis property is required. Changes to this property will trigger replacement. - Set endpoint mode from the following options. Valid values are
ServiceManagedorCustomerManaged. - subnet
Mappings This property is required. NgfwSubnet Mapping[] - Subnet mappings.
- vpc
Id stringThis property is required. Changes to this property will trigger replacement. - The vpc id.
- account
Id - The account ID. This field is mandatory if using multiple accounts.
- app
Id stringVersion - App-ID version number.
- automatic
Upgrade booleanApp Id Version - Automatic App-ID upgrade version number. Defaults to
true. - description string
- The description.
- global
Rulestack - The global rulestack for this NGFW.
- link
Id string - A unique identifier for establishing and managing the link between the Cloud NGFW and other AWS resources.
- multi
Vpc boolean - Share NGFW with Multiple VPCs. This feature can be enabled only if the endpoint_mode is CustomerManaged.
- name
- The NGFW name.
- rulestack string
- The rulestack for this NGFW.
- {[key: string]: string}
- The tags.
- endpoint_
mode strThis property is required. Changes to this property will trigger replacement. - Set endpoint mode from the following options. Valid values are
ServiceManagedorCustomerManaged. - subnet_
mappings This property is required. Sequence[NgfwSubnet Mapping Args] - Subnet mappings.
- vpc_
id strThis property is required. Changes to this property will trigger replacement. - The vpc id.
- account_
id - The account ID. This field is mandatory if using multiple accounts.
- app_
id_ strversion - App-ID version number.
- automatic_
upgrade_ boolapp_ id_ version - Automatic App-ID upgrade version number. Defaults to
true. - description str
- The description.
- global_
rulestack - The global rulestack for this NGFW.
- link_
id str - A unique identifier for establishing and managing the link between the Cloud NGFW and other AWS resources.
- multi_
vpc bool - Share NGFW with Multiple VPCs. This feature can be enabled only if the endpoint_mode is CustomerManaged.
- name
- The NGFW name.
- rulestack str
- The rulestack for this NGFW.
- Mapping[str, str]
- The tags.
- endpoint
Mode StringThis property is required. Changes to this property will trigger replacement. - Set endpoint mode from the following options. Valid values are
ServiceManagedorCustomerManaged. - subnet
Mappings This property is required. List<Property Map> - Subnet mappings.
- vpc
Id StringThis property is required. Changes to this property will trigger replacement. - The vpc id.
- account
Id - The account ID. This field is mandatory if using multiple accounts.
- app
Id StringVersion - App-ID version number.
- automatic
Upgrade BooleanApp Id Version - Automatic App-ID upgrade version number. Defaults to
true. - description String
- The description.
- global
Rulestack - The global rulestack for this NGFW.
- link
Id String - A unique identifier for establishing and managing the link between the Cloud NGFW and other AWS resources.
- multi
Vpc Boolean - Share NGFW with Multiple VPCs. This feature can be enabled only if the endpoint_mode is CustomerManaged.
- name
- The NGFW name.
- rulestack String
- The rulestack for this NGFW.
- Map<String>
- The tags.
Outputs
All input properties are implicitly available as output properties. Additionally, the Ngfw resource produces the following output properties:
- Endpoint
Service stringName - The endpoint service name.
- Firewall
Id string - The Id of the NGFW.
- Id string
- The provider-assigned unique ID for this managed resource.
- Link
Status string - The link status.
- Statuses
List<Pulumi.
Cloud Ngfw Aws. Outputs. Ngfw Status> - Update
Token string - The update token.
- Endpoint
Service stringName - The endpoint service name.
- Firewall
Id string - The Id of the NGFW.
- Id string
- The provider-assigned unique ID for this managed resource.
- Link
Status string - The link status.
- Statuses
[]Ngfw
Status - Update
Token string - The update token.
- endpoint
Service StringName - The endpoint service name.
- firewall
Id String - The Id of the NGFW.
- id String
- The provider-assigned unique ID for this managed resource.
- link
Status String - The link status.
- statuses
List<Ngfw
Status> - update
Token String - The update token.
- endpoint
Service stringName - The endpoint service name.
- firewall
Id string - The Id of the NGFW.
- id string
- The provider-assigned unique ID for this managed resource.
- link
Status string - The link status.
- statuses
Ngfw
Status[] - update
Token string - The update token.
- endpoint_
service_ strname - The endpoint service name.
- firewall_
id str - The Id of the NGFW.
- id str
- The provider-assigned unique ID for this managed resource.
- link_
status str - The link status.
- statuses
Sequence[Ngfw
Status] - update_
token str - The update token.
- endpoint
Service StringName - The endpoint service name.
- firewall
Id String - The Id of the NGFW.
- id String
- The provider-assigned unique ID for this managed resource.
- link
Status String - The link status.
- statuses List<Property Map>
- update
Token String - The update token.
Look up Existing Ngfw Resource
Get an existing Ngfw resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: NgfwState, opts?: CustomResourceOptions): Ngfw@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
account_id: Optional[str] = None,
app_id_version: Optional[str] = None,
automatic_upgrade_app_id_version: Optional[bool] = None,
description: Optional[str] = None,
endpoint_mode: Optional[str] = None,
endpoint_service_name: Optional[str] = None,
firewall_id: Optional[str] = None,
global_rulestack: Optional[str] = None,
link_id: Optional[str] = None,
link_status: Optional[str] = None,
multi_vpc: Optional[bool] = None,
name: Optional[str] = None,
rulestack: Optional[str] = None,
statuses: Optional[Sequence[NgfwStatusArgs]] = None,
subnet_mappings: Optional[Sequence[NgfwSubnetMappingArgs]] = None,
tags: Optional[Mapping[str, str]] = None,
update_token: Optional[str] = None,
vpc_id: Optional[str] = None) -> Ngfwfunc GetNgfw(ctx *Context, name string, id IDInput, state *NgfwState, opts ...ResourceOption) (*Ngfw, error)public static Ngfw Get(string name, Input<string> id, NgfwState? state, CustomResourceOptions? opts = null)public static Ngfw get(String name, Output<String> id, NgfwState state, CustomResourceOptions options)resources: _: type: cloudngfwaws:Ngfw get: id: ${id}- name
This property is required. - The unique name of the resulting resource.
- id
This property is required. - The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
This property is required. - The unique name of the resulting resource.
- id
This property is required. - The unique provider ID of the resource to lookup.
- name
This property is required. - The unique name of the resulting resource.
- id
This property is required. - The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
This property is required. - The unique name of the resulting resource.
- id
This property is required. - The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
This property is required. - The unique name of the resulting resource.
- id
This property is required. - The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
The following state arguments are supported:
- Account
Id - The account ID. This field is mandatory if using multiple accounts.
- App
Id stringVersion - App-ID version number.
- Automatic
Upgrade boolApp Id Version - Automatic App-ID upgrade version number. Defaults to
true. - Description string
- The description.
- Endpoint
Mode - Set endpoint mode from the following options. Valid values are
ServiceManagedorCustomerManaged. - Endpoint
Service stringName - The endpoint service name.
- Firewall
Id string - The Id of the NGFW.
- Global
Rulestack - The global rulestack for this NGFW.
- Link
Id string - A unique identifier for establishing and managing the link between the Cloud NGFW and other AWS resources.
- Link
Status string - The link status.
- Multi
Vpc bool - Share NGFW with Multiple VPCs. This feature can be enabled only if the endpoint_mode is CustomerManaged.
- Name
- The NGFW name.
- Rulestack string
- The rulestack for this NGFW.
- Statuses
List<Pulumi.
Cloud Ngfw Aws. Inputs. Ngfw Status> - Subnet
Mappings List<Pulumi.Cloud Ngfw Aws. Inputs. Ngfw Subnet Mapping> - Subnet mappings.
- Dictionary<string, string>
- The tags.
- Update
Token string - The update token.
- Vpc
Id - The vpc id.
- Account
Id - The account ID. This field is mandatory if using multiple accounts.
- App
Id stringVersion - App-ID version number.
- Automatic
Upgrade boolApp Id Version - Automatic App-ID upgrade version number. Defaults to
true. - Description string
- The description.
- Endpoint
Mode - Set endpoint mode from the following options. Valid values are
ServiceManagedorCustomerManaged. - Endpoint
Service stringName - The endpoint service name.
- Firewall
Id string - The Id of the NGFW.
- Global
Rulestack - The global rulestack for this NGFW.
- Link
Id string - A unique identifier for establishing and managing the link between the Cloud NGFW and other AWS resources.
- Link
Status string - The link status.
- Multi
Vpc bool - Share NGFW with Multiple VPCs. This feature can be enabled only if the endpoint_mode is CustomerManaged.
- Name
- The NGFW name.
- Rulestack string
- The rulestack for this NGFW.
- Statuses
[]Ngfw
Status Args - Subnet
Mappings []NgfwSubnet Mapping Args - Subnet mappings.
- map[string]string
- The tags.
- Update
Token string - The update token.
- Vpc
Id - The vpc id.
- account
Id - The account ID. This field is mandatory if using multiple accounts.
- app
Id StringVersion - App-ID version number.
- automatic
Upgrade BooleanApp Id Version - Automatic App-ID upgrade version number. Defaults to
true. - description String
- The description.
- endpoint
Mode - Set endpoint mode from the following options. Valid values are
ServiceManagedorCustomerManaged. - endpoint
Service StringName - The endpoint service name.
- firewall
Id String - The Id of the NGFW.
- global
Rulestack - The global rulestack for this NGFW.
- link
Id String - A unique identifier for establishing and managing the link between the Cloud NGFW and other AWS resources.
- link
Status String - The link status.
- multi
Vpc Boolean - Share NGFW with Multiple VPCs. This feature can be enabled only if the endpoint_mode is CustomerManaged.
- name
- The NGFW name.
- rulestack String
- The rulestack for this NGFW.
- statuses
List<Ngfw
Status> - subnet
Mappings List<NgfwSubnet Mapping> - Subnet mappings.
- Map<String,String>
- The tags.
- update
Token String - The update token.
- vpc
Id - The vpc id.
- account
Id - The account ID. This field is mandatory if using multiple accounts.
- app
Id stringVersion - App-ID version number.
- automatic
Upgrade booleanApp Id Version - Automatic App-ID upgrade version number. Defaults to
true. - description string
- The description.
- endpoint
Mode - Set endpoint mode from the following options. Valid values are
ServiceManagedorCustomerManaged. - endpoint
Service stringName - The endpoint service name.
- firewall
Id string - The Id of the NGFW.
- global
Rulestack - The global rulestack for this NGFW.
- link
Id string - A unique identifier for establishing and managing the link between the Cloud NGFW and other AWS resources.
- link
Status string - The link status.
- multi
Vpc boolean - Share NGFW with Multiple VPCs. This feature can be enabled only if the endpoint_mode is CustomerManaged.
- name
- The NGFW name.
- rulestack string
- The rulestack for this NGFW.
- statuses
Ngfw
Status[] - subnet
Mappings NgfwSubnet Mapping[] - Subnet mappings.
- {[key: string]: string}
- The tags.
- update
Token string - The update token.
- vpc
Id - The vpc id.
- account_
id - The account ID. This field is mandatory if using multiple accounts.
- app_
id_ strversion - App-ID version number.
- automatic_
upgrade_ boolapp_ id_ version - Automatic App-ID upgrade version number. Defaults to
true. - description str
- The description.
- endpoint_
mode - Set endpoint mode from the following options. Valid values are
ServiceManagedorCustomerManaged. - endpoint_
service_ strname - The endpoint service name.
- firewall_
id str - The Id of the NGFW.
- global_
rulestack - The global rulestack for this NGFW.
- link_
id str - A unique identifier for establishing and managing the link between the Cloud NGFW and other AWS resources.
- link_
status str - The link status.
- multi_
vpc bool - Share NGFW with Multiple VPCs. This feature can be enabled only if the endpoint_mode is CustomerManaged.
- name
- The NGFW name.
- rulestack str
- The rulestack for this NGFW.
- statuses
Sequence[Ngfw
Status Args] - subnet_
mappings Sequence[NgfwSubnet Mapping Args] - Subnet mappings.
- Mapping[str, str]
- The tags.
- update_
token str - The update token.
- vpc_
id - The vpc id.
- account
Id - The account ID. This field is mandatory if using multiple accounts.
- app
Id StringVersion - App-ID version number.
- automatic
Upgrade BooleanApp Id Version - Automatic App-ID upgrade version number. Defaults to
true. - description String
- The description.
- endpoint
Mode - Set endpoint mode from the following options. Valid values are
ServiceManagedorCustomerManaged. - endpoint
Service StringName - The endpoint service name.
- firewall
Id String - The Id of the NGFW.
- global
Rulestack - The global rulestack for this NGFW.
- link
Id String - A unique identifier for establishing and managing the link between the Cloud NGFW and other AWS resources.
- link
Status String - The link status.
- multi
Vpc Boolean - Share NGFW with Multiple VPCs. This feature can be enabled only if the endpoint_mode is CustomerManaged.
- name
- The NGFW name.
- rulestack String
- The rulestack for this NGFW.
- statuses List<Property Map>
- subnet
Mappings List<Property Map> - Subnet mappings.
- Map<String>
- The tags.
- update
Token String - The update token.
- vpc
Id - The vpc id.
Supporting Types
NgfwStatus, NgfwStatusArgs
, NgfwStatusArgs
- Attachments
List<Pulumi.
Cloud Ngfw Aws. Inputs. Ngfw Status Attachment> - The firewall attachments.
- Failure
Reason string - The firewall failure reason.
- Firewall
Status string - The firewall status.
- Rulestack
Status string - The rulestack status.
- Attachments
[]Ngfw
Status Attachment - The firewall attachments.
- Failure
Reason string - The firewall failure reason.
- Firewall
Status string - The firewall status.
- Rulestack
Status string - The rulestack status.
- attachments
List<Ngfw
Status Attachment> - The firewall attachments.
- failure
Reason String - The firewall failure reason.
- firewall
Status String - The firewall status.
- rulestack
Status String - The rulestack status.
- attachments
Ngfw
Status Attachment[] - The firewall attachments.
- failure
Reason string - The firewall failure reason.
- firewall
Status string - The firewall status.
- rulestack
Status string - The rulestack status.
- attachments
Sequence[Ngfw
Status Attachment] - The firewall attachments.
- failure_
reason str - The firewall failure reason.
- firewall_
status str - The firewall status.
- rulestack_
status str - The rulestack status.
- attachments List<Property Map>
- The firewall attachments.
- failure
Reason String - The firewall failure reason.
- firewall
Status String - The firewall status.
- rulestack
Status String - The rulestack status.
NgfwStatusAttachment, NgfwStatusAttachmentArgs
, NgfwStatusAttachmentArgs
- Endpoint
Id string - The endpoint id.
- Rejected
Reason string - The reject reason.
- Status string
- The attachment status.
- Subnet
Id string - The subnet id.
- Endpoint
Id string - The endpoint id.
- Rejected
Reason string - The reject reason.
- Status string
- The attachment status.
- Subnet
Id string - The subnet id.
- endpoint
Id String - The endpoint id.
- rejected
Reason String - The reject reason.
- status String
- The attachment status.
- subnet
Id String - The subnet id.
- endpoint
Id string - The endpoint id.
- rejected
Reason string - The reject reason.
- status string
- The attachment status.
- subnet
Id string - The subnet id.
- endpoint_
id str - The endpoint id.
- rejected_
reason str - The reject reason.
- status str
- The attachment status.
- subnet_
id str - The subnet id.
- endpoint
Id String - The endpoint id.
- rejected
Reason String - The reject reason.
- status String
- The attachment status.
- subnet
Id String - The subnet id.
NgfwSubnetMapping, NgfwSubnetMappingArgs
, NgfwSubnetMappingArgs
- Availability
Zone string - The availability zone, for when the endpoint mode is customer managed.
- Availability
Zone stringId - The availability zone ID, for when the endpoint mode is customer managed.
- Subnet
Id string - The subnet id, for when the endpoint mode is service managed.
- Availability
Zone string - The availability zone, for when the endpoint mode is customer managed.
- Availability
Zone stringId - The availability zone ID, for when the endpoint mode is customer managed.
- Subnet
Id string - The subnet id, for when the endpoint mode is service managed.
- availability
Zone String - The availability zone, for when the endpoint mode is customer managed.
- availability
Zone StringId - The availability zone ID, for when the endpoint mode is customer managed.
- subnet
Id String - The subnet id, for when the endpoint mode is service managed.
- availability
Zone string - The availability zone, for when the endpoint mode is customer managed.
- availability
Zone stringId - The availability zone ID, for when the endpoint mode is customer managed.
- subnet
Id string - The subnet id, for when the endpoint mode is service managed.
- availability_
zone str - The availability zone, for when the endpoint mode is customer managed.
- availability_
zone_ strid - The availability zone ID, for when the endpoint mode is customer managed.
- subnet_
id str - The subnet id, for when the endpoint mode is service managed.
- availability
Zone String - The availability zone, for when the endpoint mode is customer managed.
- availability
Zone StringId - The availability zone ID, for when the endpoint mode is customer managed.
- subnet
Id String - The subnet id, for when the endpoint mode is service managed.
Import
import name is <account_id>:
$ pulumi import cloudngfwaws:index/ngfw:Ngfw example 12345678:example-instance
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- cloudngfwaws pulumi/pulumi-cloudngfwaws
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
cloudngfwawsTerraform Provider.
Palo Alto Networks Cloud NGFW for AWS v0.1.1 published on Saturday, Mar 15, 2025 by Pulumi