opentelekomcloud 1.36.35, Apr 14 25

opentelekomcloud 1.36.35 published on Monday, Apr 14, 2025 by opentelekomcloud

opentelekomcloud/terraform-provider-opentelekomcloud

opentelekomcloud.WafDedicatedDomainV1

Explore with Pulumi AI

opentelekomcloud 1.36.35 published on Monday, Apr 14, 2025 by opentelekomcloud

opentelekomcloud/terraform-provider-opentelekomcloud

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as opentelekomcloud from "@pulumi/opentelekomcloud";

const sharedSubnet = opentelekomcloud.getVpcSubnetV1({
    name: "my_subnet",
});
const domain1 = new opentelekomcloud.WafDedicatedDomainV1("domain1", {
    domain: "www.mydom.com",
    keepPolicy: false,
    proxy: true,
    servers: [{
        clientProtocol: "HTTP",
        serverProtocol: "HTTP",
        address: "192.168.0.10",
        port: 8080,
        type: "ipv4",
        vpcId: sharedSubnet.then(sharedSubnet => sharedSubnet.vpcId),
    }],
    timeoutConfig: {
        connectTimeout: 150,
        readTimeout: 200,
        sendTimeout: 100,
    },
});

import pulumi
import pulumi_opentelekomcloud as opentelekomcloud

shared_subnet = opentelekomcloud.get_vpc_subnet_v1(name="my_subnet")
domain1 = opentelekomcloud.WafDedicatedDomainV1("domain1",
    domain="www.mydom.com",
    keep_policy=False,
    proxy=True,
    servers=[{
        "client_protocol": "HTTP",
        "server_protocol": "HTTP",
        "address": "192.168.0.10",
        "port": 8080,
        "type": "ipv4",
        "vpc_id": shared_subnet.vpc_id,
    }],
    timeout_config={
        "connect_timeout": 150,
        "read_timeout": 200,
        "send_timeout": 100,
    })

package main

import (
	"github.com/pulumi/pulumi-terraform-provider/sdks/go/opentelekomcloud/opentelekomcloud"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		sharedSubnet, err := opentelekomcloud.LookupVpcSubnetV1(ctx, &opentelekomcloud.LookupVpcSubnetV1Args{
			Name: pulumi.StringRef("my_subnet"),
		}, nil)
		if err != nil {
			return err
		}
		_, err = opentelekomcloud.NewWafDedicatedDomainV1(ctx, "domain1", &opentelekomcloud.WafDedicatedDomainV1Args{
			Domain:     pulumi.String("www.mydom.com"),
			KeepPolicy: pulumi.Bool(false),
			Proxy:      pulumi.Bool(true),
			Servers: opentelekomcloud.WafDedicatedDomainV1ServerArray{
				&opentelekomcloud.WafDedicatedDomainV1ServerArgs{
					ClientProtocol: pulumi.String("HTTP"),
					ServerProtocol: pulumi.String("HTTP"),
					Address:        pulumi.String("192.168.0.10"),
					Port:           pulumi.Float64(8080),
					Type:           pulumi.String("ipv4"),
					VpcId:          pulumi.String(sharedSubnet.VpcId),
				},
			},
			TimeoutConfig: &opentelekomcloud.WafDedicatedDomainV1TimeoutConfigArgs{
				ConnectTimeout: pulumi.Float64(150),
				ReadTimeout:    pulumi.Float64(200),
				SendTimeout:    pulumi.Float64(100),
			},
		})
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Opentelekomcloud = Pulumi.Opentelekomcloud;

return await Deployment.RunAsync(() => 
{
    var sharedSubnet = Opentelekomcloud.GetVpcSubnetV1.Invoke(new()
    {
        Name = "my_subnet",
    });

    var domain1 = new Opentelekomcloud.WafDedicatedDomainV1("domain1", new()
    {
        Domain = "www.mydom.com",
        KeepPolicy = false,
        Proxy = true,
        Servers = new[]
        {
            new Opentelekomcloud.Inputs.WafDedicatedDomainV1ServerArgs
            {
                ClientProtocol = "HTTP",
                ServerProtocol = "HTTP",
                Address = "192.168.0.10",
                Port = 8080,
                Type = "ipv4",
                VpcId = sharedSubnet.Apply(getVpcSubnetV1Result => getVpcSubnetV1Result.VpcId),
            },
        },
        TimeoutConfig = new Opentelekomcloud.Inputs.WafDedicatedDomainV1TimeoutConfigArgs
        {
            ConnectTimeout = 150,
            ReadTimeout = 200,
            SendTimeout = 100,
        },
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.opentelekomcloud.OpentelekomcloudFunctions;
import com.pulumi.opentelekomcloud.inputs.GetVpcSubnetV1Args;
import com.pulumi.opentelekomcloud.WafDedicatedDomainV1;
import com.pulumi.opentelekomcloud.WafDedicatedDomainV1Args;
import com.pulumi.opentelekomcloud.inputs.WafDedicatedDomainV1ServerArgs;
import com.pulumi.opentelekomcloud.inputs.WafDedicatedDomainV1TimeoutConfigArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var sharedSubnet = OpentelekomcloudFunctions.getVpcSubnetV1(GetVpcSubnetV1Args.builder()
            .name("my_subnet")
            .build());

        var domain1 = new WafDedicatedDomainV1("domain1", WafDedicatedDomainV1Args.builder()
            .domain("www.mydom.com")
            .keepPolicy(false)
            .proxy(true)
            .servers(WafDedicatedDomainV1ServerArgs.builder()
                .clientProtocol("HTTP")
                .serverProtocol("HTTP")
                .address("192.168.0.10")
                .port(8080)
                .type("ipv4")
                .vpcId(sharedSubnet.applyValue(getVpcSubnetV1Result -> getVpcSubnetV1Result.vpcId()))
                .build())
            .timeoutConfig(WafDedicatedDomainV1TimeoutConfigArgs.builder()
                .connectTimeout(150)
                .readTimeout(200)
                .sendTimeout(100)
                .build())
            .build());

    }
}

resources:
  domain1:
    type: opentelekomcloud:WafDedicatedDomainV1
    properties:
      domain: www.mydom.com
      keepPolicy: false
      proxy: true
      servers:
        - clientProtocol: HTTP
          serverProtocol: HTTP
          address: 192.168.0.10
          port: 8080
          type: ipv4
          vpcId: ${sharedSubnet.vpcId}
      timeoutConfig:
        connectTimeout: 150
        readTimeout: 200
        sendTimeout: 100
variables:
  sharedSubnet:
    fn::invoke:
      function: opentelekomcloud:getVpcSubnetV1
      arguments:
        name: my_subnet

With certificate

TypeScript
Python
Go
C#
Java
YAML

import * as pulumi from "@pulumi/pulumi";
import * as opentelekomcloud from "@pulumi/opentelekomcloud";

const sharedSubnet = opentelekomcloud.getVpcSubnetV1({
    name: "my_subnet",
});
const certificate1 = new opentelekomcloud.WafDedicatedCertificateV1("certificate1", {
    content: `-----BEGIN CERTIFICATE-----
MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
...
dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
-----END CERTIFICATE-----
`,
    key: `-----BEGIN PRIVATE KEY-----
MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
...
s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
+4sM7kp0qO3/p+45HykwBY5iHq3H
-----END PRIVATE KEY-----
`,
});
const domain1 = new opentelekomcloud.WafDedicatedDomainV1("domain1", {
    domain: "www.mydom.com",
    certificateId: certificate1.wafDedicatedCertificateV1Id,
    keepPolicy: false,
    proxy: false,
    tls: "TLS v1.1",
    cipher: "cipher_1",
    servers: [{
        clientProtocol: "HTTPS",
        serverProtocol: "HTTP",
        address: "192.168.0.20",
        port: 8443,
        type: "ipv4",
        vpcId: sharedSubnet.then(sharedSubnet => sharedSubnet.vpcId),
    }],
}, {
    dependsOn: [certificate1],
});

import pulumi
import pulumi_opentelekomcloud as opentelekomcloud

shared_subnet = opentelekomcloud.get_vpc_subnet_v1(name="my_subnet")
certificate1 = opentelekomcloud.WafDedicatedCertificateV1("certificate1",
    content="""-----BEGIN CERTIFICATE-----
MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
...
dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
-----END CERTIFICATE-----
""",
    key="""-----BEGIN PRIVATE KEY-----
MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
...
s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
+4sM7kp0qO3/p+45HykwBY5iHq3H
-----END PRIVATE KEY-----
""")
domain1 = opentelekomcloud.WafDedicatedDomainV1("domain1",
    domain="www.mydom.com",
    certificate_id=certificate1.waf_dedicated_certificate_v1_id,
    keep_policy=False,
    proxy=False,
    tls="TLS v1.1",
    cipher="cipher_1",
    servers=[{
        "client_protocol": "HTTPS",
        "server_protocol": "HTTP",
        "address": "192.168.0.20",
        "port": 8443,
        "type": "ipv4",
        "vpc_id": shared_subnet.vpc_id,
    }],
    opts = pulumi.ResourceOptions(depends_on=[certificate1]))

package main

import (
	"github.com/pulumi/pulumi-terraform-provider/sdks/go/opentelekomcloud/opentelekomcloud"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		sharedSubnet, err := opentelekomcloud.LookupVpcSubnetV1(ctx, &opentelekomcloud.LookupVpcSubnetV1Args{
			Name: pulumi.StringRef("my_subnet"),
		}, nil)
		if err != nil {
			return err
		}
		certificate1, err := opentelekomcloud.NewWafDedicatedCertificateV1(ctx, "certificate1", &opentelekomcloud.WafDedicatedCertificateV1Args{
			Content: pulumi.String(`-----BEGIN CERTIFICATE-----
MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
...
dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
-----END CERTIFICATE-----
`),
			Key: pulumi.String(`-----BEGIN PRIVATE KEY-----
MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
...
s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
+4sM7kp0qO3/p+45HykwBY5iHq3H
-----END PRIVATE KEY-----
`),
		})
		if err != nil {
			return err
		}
		_, err = opentelekomcloud.NewWafDedicatedDomainV1(ctx, "domain1", &opentelekomcloud.WafDedicatedDomainV1Args{
			Domain:        pulumi.String("www.mydom.com"),
			CertificateId: certificate1.WafDedicatedCertificateV1Id,
			KeepPolicy:    pulumi.Bool(false),
			Proxy:         pulumi.Bool(false),
			Tls:           pulumi.String("TLS v1.1"),
			Cipher:        pulumi.String("cipher_1"),
			Servers: opentelekomcloud.WafDedicatedDomainV1ServerArray{
				&opentelekomcloud.WafDedicatedDomainV1ServerArgs{
					ClientProtocol: pulumi.String("HTTPS"),
					ServerProtocol: pulumi.String("HTTP"),
					Address:        pulumi.String("192.168.0.20"),
					Port:           pulumi.Float64(8443),
					Type:           pulumi.String("ipv4"),
					VpcId:          pulumi.String(sharedSubnet.VpcId),
				},
			},
		}, pulumi.DependsOn([]pulumi.Resource{
			certificate1,
		}))
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Opentelekomcloud = Pulumi.Opentelekomcloud;

return await Deployment.RunAsync(() => 
{
    var sharedSubnet = Opentelekomcloud.GetVpcSubnetV1.Invoke(new()
    {
        Name = "my_subnet",
    });

    var certificate1 = new Opentelekomcloud.WafDedicatedCertificateV1("certificate1", new()
    {
        Content = @"-----BEGIN CERTIFICATE-----
MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
...
dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
-----END CERTIFICATE-----
",
        Key = @"-----BEGIN PRIVATE KEY-----
MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
...
s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
+4sM7kp0qO3/p+45HykwBY5iHq3H
-----END PRIVATE KEY-----
",
    });

    var domain1 = new Opentelekomcloud.WafDedicatedDomainV1("domain1", new()
    {
        Domain = "www.mydom.com",
        CertificateId = certificate1.WafDedicatedCertificateV1Id,
        KeepPolicy = false,
        Proxy = false,
        Tls = "TLS v1.1",
        Cipher = "cipher_1",
        Servers = new[]
        {
            new Opentelekomcloud.Inputs.WafDedicatedDomainV1ServerArgs
            {
                ClientProtocol = "HTTPS",
                ServerProtocol = "HTTP",
                Address = "192.168.0.20",
                Port = 8443,
                Type = "ipv4",
                VpcId = sharedSubnet.Apply(getVpcSubnetV1Result => getVpcSubnetV1Result.VpcId),
            },
        },
    }, new CustomResourceOptions
    {
        DependsOn =
        {
            certificate1,
        },
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.opentelekomcloud.OpentelekomcloudFunctions;
import com.pulumi.opentelekomcloud.inputs.GetVpcSubnetV1Args;
import com.pulumi.opentelekomcloud.WafDedicatedCertificateV1;
import com.pulumi.opentelekomcloud.WafDedicatedCertificateV1Args;
import com.pulumi.opentelekomcloud.WafDedicatedDomainV1;
import com.pulumi.opentelekomcloud.WafDedicatedDomainV1Args;
import com.pulumi.opentelekomcloud.inputs.WafDedicatedDomainV1ServerArgs;
import com.pulumi.resources.CustomResourceOptions;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var sharedSubnet = OpentelekomcloudFunctions.getVpcSubnetV1(GetVpcSubnetV1Args.builder()
            .name("my_subnet")
            .build());

        var certificate1 = new WafDedicatedCertificateV1("certificate1", WafDedicatedCertificateV1Args.builder()
            .content("""
-----BEGIN CERTIFICATE-----
MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
...
dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
-----END CERTIFICATE-----
            """)
            .key("""
-----BEGIN PRIVATE KEY-----
MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
...
s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
+4sM7kp0qO3/p+45HykwBY5iHq3H
-----END PRIVATE KEY-----
            """)
            .build());

        var domain1 = new WafDedicatedDomainV1("domain1", WafDedicatedDomainV1Args.builder()
            .domain("www.mydom.com")
            .certificateId(certificate1.wafDedicatedCertificateV1Id())
            .keepPolicy(false)
            .proxy(false)
            .tls("TLS v1.1")
            .cipher("cipher_1")
            .servers(WafDedicatedDomainV1ServerArgs.builder()
                .clientProtocol("HTTPS")
                .serverProtocol("HTTP")
                .address("192.168.0.20")
                .port(8443)
                .type("ipv4")
                .vpcId(sharedSubnet.applyValue(getVpcSubnetV1Result -> getVpcSubnetV1Result.vpcId()))
                .build())
            .build(), CustomResourceOptions.builder()
                .dependsOn(certificate1)
                .build());

    }
}

resources:
  certificate1:
    type: opentelekomcloud:WafDedicatedCertificateV1
    properties:
      content: |
        -----BEGIN CERTIFICATE-----
        MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
        BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
        ...
        dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
        -----END CERTIFICATE-----        
      key: |
        -----BEGIN PRIVATE KEY-----
        MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
        5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
        ...
        s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
        +4sM7kp0qO3/p+45HykwBY5iHq3H
        -----END PRIVATE KEY-----        
  domain1:
    type: opentelekomcloud:WafDedicatedDomainV1
    properties:
      domain: www.mydom.com
      certificateId: ${certificate1.wafDedicatedCertificateV1Id}
      keepPolicy: false
      proxy: false
      tls: TLS v1.1
      cipher: cipher_1
      servers:
        - clientProtocol: HTTPS
          serverProtocol: HTTP
          address: 192.168.0.20
          port: 8443
          type: ipv4
          vpcId: ${sharedSubnet.vpcId}
    options:
      dependsOn:
        - ${certificate1}
variables:
  sharedSubnet:
    fn::invoke:
      function: opentelekomcloud:getVpcSubnetV1
      arguments:
        name: my_subnet

Create WafDedicatedDomainV1 Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

TypeScript
Python
Go
C#
Java
YAML

new WafDedicatedDomainV1(name: string, args: WafDedicatedDomainV1Args, opts?: CustomResourceOptions);

@overload
def WafDedicatedDomainV1(resource_name: str,
                         args: WafDedicatedDomainV1Args,
                         opts: Optional[ResourceOptions] = None)

@overload
def WafDedicatedDomainV1(resource_name: str,
                         opts: Optional[ResourceOptions] = None,
                         domain: Optional[str] = None,
                         servers: Optional[Sequence[WafDedicatedDomainV1ServerArgs]] = None,
                         policy_id: Optional[str] = None,
                         keep_policy: Optional[bool] = None,
                         pci3ds: Optional[bool] = None,
                         pci_dss: Optional[bool] = None,
                         certificate_id: Optional[str] = None,
                         protect_status: Optional[float] = None,
                         proxy: Optional[bool] = None,
                         region: Optional[str] = None,
                         cipher: Optional[str] = None,
                         timeout_config: Optional[WafDedicatedDomainV1TimeoutConfigArgs] = None,
                         tls: Optional[str] = None,
                         waf_dedicated_domain_v1_id: Optional[str] = None)

func NewWafDedicatedDomainV1(ctx *Context, name string, args WafDedicatedDomainV1Args, opts ...ResourceOption) (*WafDedicatedDomainV1, error)

public WafDedicatedDomainV1(string name, WafDedicatedDomainV1Args args, CustomResourceOptions? opts = null)

public WafDedicatedDomainV1(String name, WafDedicatedDomainV1Args args)
public WafDedicatedDomainV1(String name, WafDedicatedDomainV1Args args, CustomResourceOptions options)

type: opentelekomcloud:WafDedicatedDomainV1
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args WafDedicatedDomainV1Args: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args WafDedicatedDomainV1Args: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args WafDedicatedDomainV1Args: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args WafDedicatedDomainV1Args: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args WafDedicatedDomainV1Args: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

TypeScript
Python
Go
C#
Java
YAML

var wafDedicatedDomainV1Resource = new Opentelekomcloud.WafDedicatedDomainV1("wafDedicatedDomainV1Resource", new()
{
    Domain = "string",
    Servers = new[]
    {
        new Opentelekomcloud.Inputs.WafDedicatedDomainV1ServerArgs
        {
            Address = "string",
            ClientProtocol = "string",
            Port = 0,
            ServerProtocol = "string",
            Type = "string",
            VpcId = "string",
        },
    },
    PolicyId = "string",
    KeepPolicy = false,
    Pci3ds = false,
    PciDss = false,
    CertificateId = "string",
    ProtectStatus = 0,
    Proxy = false,
    Region = "string",
    Cipher = "string",
    TimeoutConfig = new Opentelekomcloud.Inputs.WafDedicatedDomainV1TimeoutConfigArgs
    {
        ConnectTimeout = 0,
        ReadTimeout = 0,
        SendTimeout = 0,
    },
    Tls = "string",
    WafDedicatedDomainV1Id = "string",
});

example, err := opentelekomcloud.NewWafDedicatedDomainV1(ctx, "wafDedicatedDomainV1Resource", &opentelekomcloud.WafDedicatedDomainV1Args{
Domain: pulumi.String("string"),
Servers: .WafDedicatedDomainV1ServerArray{
&.WafDedicatedDomainV1ServerArgs{
Address: pulumi.String("string"),
ClientProtocol: pulumi.String("string"),
Port: pulumi.Float64(0),
ServerProtocol: pulumi.String("string"),
Type: pulumi.String("string"),
VpcId: pulumi.String("string"),
},
},
PolicyId: pulumi.String("string"),
KeepPolicy: pulumi.Bool(false),
Pci3ds: pulumi.Bool(false),
PciDss: pulumi.Bool(false),
CertificateId: pulumi.String("string"),
ProtectStatus: pulumi.Float64(0),
Proxy: pulumi.Bool(false),
Region: pulumi.String("string"),
Cipher: pulumi.String("string"),
TimeoutConfig: &.WafDedicatedDomainV1TimeoutConfigArgs{
ConnectTimeout: pulumi.Float64(0),
ReadTimeout: pulumi.Float64(0),
SendTimeout: pulumi.Float64(0),
},
Tls: pulumi.String("string"),
WafDedicatedDomainV1Id: pulumi.String("string"),
})

var wafDedicatedDomainV1Resource = new WafDedicatedDomainV1("wafDedicatedDomainV1Resource", WafDedicatedDomainV1Args.builder()
    .domain("string")
    .servers(WafDedicatedDomainV1ServerArgs.builder()
        .address("string")
        .clientProtocol("string")
        .port(0)
        .serverProtocol("string")
        .type("string")
        .vpcId("string")
        .build())
    .policyId("string")
    .keepPolicy(false)
    .pci3ds(false)
    .pciDss(false)
    .certificateId("string")
    .protectStatus(0)
    .proxy(false)
    .region("string")
    .cipher("string")
    .timeoutConfig(WafDedicatedDomainV1TimeoutConfigArgs.builder()
        .connectTimeout(0)
        .readTimeout(0)
        .sendTimeout(0)
        .build())
    .tls("string")
    .wafDedicatedDomainV1Id("string")
    .build());

waf_dedicated_domain_v1_resource = opentelekomcloud.WafDedicatedDomainV1("wafDedicatedDomainV1Resource",
    domain="string",
    servers=[{
        "address": "string",
        "client_protocol": "string",
        "port": 0,
        "server_protocol": "string",
        "type": "string",
        "vpc_id": "string",
    }],
    policy_id="string",
    keep_policy=False,
    pci3ds=False,
    pci_dss=False,
    certificate_id="string",
    protect_status=0,
    proxy=False,
    region="string",
    cipher="string",
    timeout_config={
        "connect_timeout": 0,
        "read_timeout": 0,
        "send_timeout": 0,
    },
    tls="string",
    waf_dedicated_domain_v1_id="string")

const wafDedicatedDomainV1Resource = new opentelekomcloud.WafDedicatedDomainV1("wafDedicatedDomainV1Resource", {
    domain: "string",
    servers: [{
        address: "string",
        clientProtocol: "string",
        port: 0,
        serverProtocol: "string",
        type: "string",
        vpcId: "string",
    }],
    policyId: "string",
    keepPolicy: false,
    pci3ds: false,
    pciDss: false,
    certificateId: "string",
    protectStatus: 0,
    proxy: false,
    region: "string",
    cipher: "string",
    timeoutConfig: {
        connectTimeout: 0,
        readTimeout: 0,
        sendTimeout: 0,
    },
    tls: "string",
    wafDedicatedDomainV1Id: "string",
});

type: opentelekomcloud:WafDedicatedDomainV1
properties:
    certificateId: string
    cipher: string
    domain: string
    keepPolicy: false
    pci3ds: false
    pciDss: false
    policyId: string
    protectStatus: 0
    proxy: false
    region: string
    servers:
        - address: string
          clientProtocol: string
          port: 0
          serverProtocol: string
          type: string
          vpcId: string
    timeoutConfig:
        connectTimeout: 0
        readTimeout: 0
        sendTimeout: 0
    tls: string
    wafDedicatedDomainV1Id: string

WafDedicatedDomainV1 Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The WafDedicatedDomainV1 resource accepts the following input properties:

Domain string

Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.

Servers List<WafDedicatedDomainV1Server>

The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:

CertificateId string

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

Cipher string

Specifies the cipher suite of domain. Values are:

KeepPolicy bool

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

Pci3ds bool

Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

PciDss bool

Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

PolicyId string

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.

ProtectStatus double

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

Proxy bool

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

Region string

The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.

TimeoutConfig WafDedicatedDomainV1TimeoutConfig

Specifies the timeout configuration. The timeout_config structure is documented below.

Tls string

Specifies the minimum required TLS version. Values are:

TLS v1.0
TLS v1.1
TLS v1.2
TLS v1.3

WafDedicatedDomainV1Id string

ID of the domain.

Domain string

Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.

Servers []WafDedicatedDomainV1ServerArgs

The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:

CertificateId string

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

Cipher string

Specifies the cipher suite of domain. Values are:

KeepPolicy bool

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

Pci3ds bool

Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

PciDss bool

Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

PolicyId string

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.

ProtectStatus float64

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

Proxy bool

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

Region string

The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.

TimeoutConfig WafDedicatedDomainV1TimeoutConfigArgs

Specifies the timeout configuration. The timeout_config structure is documented below.

Tls string

Specifies the minimum required TLS version. Values are:

TLS v1.0
TLS v1.1
TLS v1.2
TLS v1.3

WafDedicatedDomainV1Id string

ID of the domain.

domain String

Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.

servers List<WafDedicatedDomainV1Server>

The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:

certificateId String

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

cipher String

Specifies the cipher suite of domain. Values are:

keepPolicy Boolean

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

pci3ds Boolean

Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

pciDss Boolean

Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

policyId String

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.

protectStatus Double

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

proxy Boolean

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

region String

The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.

timeoutConfig WafDedicatedDomainV1TimeoutConfig

Specifies the timeout configuration. The timeout_config structure is documented below.

tls String

Specifies the minimum required TLS version. Values are:

TLS v1.0
TLS v1.1
TLS v1.2
TLS v1.3

wafDedicatedDomainV1Id String

ID of the domain.

domain string

Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.

servers WafDedicatedDomainV1Server[]

The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:

certificateId string

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

cipher string

Specifies the cipher suite of domain. Values are:

keepPolicy boolean

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

pci3ds boolean

Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

pciDss boolean

Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

policyId string

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.

protectStatus number

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

proxy boolean

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

region string

The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.

timeoutConfig WafDedicatedDomainV1TimeoutConfig

Specifies the timeout configuration. The timeout_config structure is documented below.

tls string

Specifies the minimum required TLS version. Values are:

TLS v1.0
TLS v1.1
TLS v1.2
TLS v1.3

wafDedicatedDomainV1Id string

ID of the domain.

domain str

Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.

servers Sequence[WafDedicatedDomainV1ServerArgs]

The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:

certificate_id str

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

cipher str

Specifies the cipher suite of domain. Values are:

keep_policy bool

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

pci3ds bool

Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

pci_dss bool

Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

policy_id str

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.

protect_status float

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

proxy bool

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

region str

The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.

timeout_config WafDedicatedDomainV1TimeoutConfigArgs

Specifies the timeout configuration. The timeout_config structure is documented below.

tls str

Specifies the minimum required TLS version. Values are:

TLS v1.0
TLS v1.1
TLS v1.2
TLS v1.3

waf_dedicated_domain_v1_id str

ID of the domain.

domain String

Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.

servers List<Property Map>

The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:

certificateId String

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

cipher String

Specifies the cipher suite of domain. Values are:

keepPolicy Boolean

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

pci3ds Boolean

Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

pciDss Boolean

Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

policyId String

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.

protectStatus Number

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

proxy Boolean

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

region String

The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.

timeoutConfig Property Map

Specifies the timeout configuration. The timeout_config structure is documented below.

tls String

Specifies the minimum required TLS version. Values are:

TLS v1.0
TLS v1.1
TLS v1.2
TLS v1.3

wafDedicatedDomainV1Id String

ID of the domain.

Outputs

All input properties are implicitly available as output properties. Additionally, the WafDedicatedDomainV1 resource produces the following output properties:

AccessStatus double: Whether a domain name is connected to WAF. Valid values are:
AlarmPage Dictionary<string, string>: The alarm page of domain. Valid values are:
CertificateName string: The name of the certificate used by the domain name.
ComplianceCertification Dictionary<string, bool>: The compliance certifications of the domain, values are:
CreatedAt double: Timestamp when the dedicated WAF domain was created.
Id string: The provider-assigned unique ID for this managed resource.
Protocol string: The protocol type of the client. The options are HTTP and HTTPS.
TrafficIdentifier Dictionary<string, string>: The traffic identifier of domain. Valid values are:

AccessStatus float64: Whether a domain name is connected to WAF. Valid values are:
AlarmPage map[string]string: The alarm page of domain. Valid values are:
CertificateName string: The name of the certificate used by the domain name.
ComplianceCertification map[string]bool: The compliance certifications of the domain, values are:
CreatedAt float64: Timestamp when the dedicated WAF domain was created.
Id string: The provider-assigned unique ID for this managed resource.
Protocol string: The protocol type of the client. The options are HTTP and HTTPS.
TrafficIdentifier map[string]string: The traffic identifier of domain. Valid values are:

accessStatus Double: Whether a domain name is connected to WAF. Valid values are:
alarmPage Map<String,String>: The alarm page of domain. Valid values are:
certificateName String: The name of the certificate used by the domain name.
complianceCertification Map<String,Boolean>: The compliance certifications of the domain, values are:
createdAt Double: Timestamp when the dedicated WAF domain was created.
id String: The provider-assigned unique ID for this managed resource.
protocol String: The protocol type of the client. The options are HTTP and HTTPS.
trafficIdentifier Map<String,String>: The traffic identifier of domain. Valid values are:

accessStatus number: Whether a domain name is connected to WAF. Valid values are:
alarmPage {[key: string]: string}: The alarm page of domain. Valid values are:
certificateName string: The name of the certificate used by the domain name.
complianceCertification {[key: string]: boolean}: The compliance certifications of the domain, values are:
createdAt number: Timestamp when the dedicated WAF domain was created.
id string: The provider-assigned unique ID for this managed resource.
protocol string: The protocol type of the client. The options are HTTP and HTTPS.
trafficIdentifier {[key: string]: string}: The traffic identifier of domain. Valid values are:

access_status float: Whether a domain name is connected to WAF. Valid values are:
alarm_page Mapping[str, str]: The alarm page of domain. Valid values are:
certificate_name str: The name of the certificate used by the domain name.
compliance_certification Mapping[str, bool]: The compliance certifications of the domain, values are:
created_at float: Timestamp when the dedicated WAF domain was created.
id str: The provider-assigned unique ID for this managed resource.
protocol str: The protocol type of the client. The options are HTTP and HTTPS.
traffic_identifier Mapping[str, str]: The traffic identifier of domain. Valid values are:

accessStatus Number: Whether a domain name is connected to WAF. Valid values are:
alarmPage Map<String>: The alarm page of domain. Valid values are:
certificateName String: The name of the certificate used by the domain name.
complianceCertification Map<Boolean>: The compliance certifications of the domain, values are:
createdAt Number: Timestamp when the dedicated WAF domain was created.
id String: The provider-assigned unique ID for this managed resource.
protocol String: The protocol type of the client. The options are HTTP and HTTPS.
trafficIdentifier Map<String>: The traffic identifier of domain. Valid values are:

Look up Existing WafDedicatedDomainV1 Resource

Get an existing WafDedicatedDomainV1 resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

TypeScript
Python
Go
C#
Java
YAML

public static get(name: string, id: Input<ID>, state?: WafDedicatedDomainV1State, opts?: CustomResourceOptions): WafDedicatedDomainV1

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        access_status: Optional[float] = None,
        alarm_page: Optional[Mapping[str, str]] = None,
        certificate_id: Optional[str] = None,
        certificate_name: Optional[str] = None,
        cipher: Optional[str] = None,
        compliance_certification: Optional[Mapping[str, bool]] = None,
        created_at: Optional[float] = None,
        domain: Optional[str] = None,
        keep_policy: Optional[bool] = None,
        pci3ds: Optional[bool] = None,
        pci_dss: Optional[bool] = None,
        policy_id: Optional[str] = None,
        protect_status: Optional[float] = None,
        protocol: Optional[str] = None,
        proxy: Optional[bool] = None,
        region: Optional[str] = None,
        servers: Optional[Sequence[WafDedicatedDomainV1ServerArgs]] = None,
        timeout_config: Optional[WafDedicatedDomainV1TimeoutConfigArgs] = None,
        tls: Optional[str] = None,
        traffic_identifier: Optional[Mapping[str, str]] = None,
        waf_dedicated_domain_v1_id: Optional[str] = None) -> WafDedicatedDomainV1

func GetWafDedicatedDomainV1(ctx *Context, name string, id IDInput, state *WafDedicatedDomainV1State, opts ...ResourceOption) (*WafDedicatedDomainV1, error)

public static WafDedicatedDomainV1 Get(string name, Input<string> id, WafDedicatedDomainV1State? state, CustomResourceOptions? opts = null)

public static WafDedicatedDomainV1 get(String name, Output<String> id, WafDedicatedDomainV1State state, CustomResourceOptions options)

resources:  _:    type: opentelekomcloud:WafDedicatedDomainV1    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AccessStatus double

Whether a domain name is connected to WAF. Valid values are:

AlarmPage Dictionary<string, string>

The alarm page of domain. Valid values are:

CertificateId string

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

CertificateName string

The name of the certificate used by the domain name.

Cipher string

Specifies the cipher suite of domain. Values are:

ComplianceCertification Dictionary<string, bool>

The compliance certifications of the domain, values are:

CreatedAt double

Timestamp when the dedicated WAF domain was created.

Domain string

Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.

KeepPolicy bool

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

Pci3ds bool

Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

PciDss bool

Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

PolicyId string

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.

ProtectStatus double

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

Protocol string

The protocol type of the client. The options are HTTP and HTTPS.

Proxy bool

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

Region string

The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.

Servers List<WafDedicatedDomainV1Server>

The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:

TimeoutConfig WafDedicatedDomainV1TimeoutConfig

Specifies the timeout configuration. The timeout_config structure is documented below.

Tls string

Specifies the minimum required TLS version. Values are:

TLS v1.0
TLS v1.1
TLS v1.2
TLS v1.3

TrafficIdentifier Dictionary<string, string>

The traffic identifier of domain. Valid values are:

WafDedicatedDomainV1Id string

ID of the domain.

AccessStatus float64

Whether a domain name is connected to WAF. Valid values are:

AlarmPage map[string]string

The alarm page of domain. Valid values are:

CertificateId string

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

CertificateName string

The name of the certificate used by the domain name.

Cipher string

Specifies the cipher suite of domain. Values are:

ComplianceCertification map[string]bool

The compliance certifications of the domain, values are:

CreatedAt float64

Timestamp when the dedicated WAF domain was created.

Domain string

Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.

KeepPolicy bool

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

Pci3ds bool

Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

PciDss bool

Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

PolicyId string

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.

ProtectStatus float64

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

Protocol string

The protocol type of the client. The options are HTTP and HTTPS.

Proxy bool

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

Region string

The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.

Servers []WafDedicatedDomainV1ServerArgs

The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:

TimeoutConfig WafDedicatedDomainV1TimeoutConfigArgs

Specifies the timeout configuration. The timeout_config structure is documented below.

Tls string

Specifies the minimum required TLS version. Values are:

TLS v1.0
TLS v1.1
TLS v1.2
TLS v1.3

TrafficIdentifier map[string]string

The traffic identifier of domain. Valid values are:

WafDedicatedDomainV1Id string

ID of the domain.

accessStatus Double

Whether a domain name is connected to WAF. Valid values are:

alarmPage Map<String,String>

The alarm page of domain. Valid values are:

certificateId String

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

certificateName String

The name of the certificate used by the domain name.

cipher String

Specifies the cipher suite of domain. Values are:

complianceCertification Map<String,Boolean>

The compliance certifications of the domain, values are:

createdAt Double

Timestamp when the dedicated WAF domain was created.

domain String

Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.

keepPolicy Boolean

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

pci3ds Boolean

Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

pciDss Boolean

Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

policyId String

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.

protectStatus Double

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

protocol String

The protocol type of the client. The options are HTTP and HTTPS.

proxy Boolean

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

region String

The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.

servers List<WafDedicatedDomainV1Server>

The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:

timeoutConfig WafDedicatedDomainV1TimeoutConfig

Specifies the timeout configuration. The timeout_config structure is documented below.

tls String

Specifies the minimum required TLS version. Values are:

TLS v1.0
TLS v1.1
TLS v1.2
TLS v1.3

trafficIdentifier Map<String,String>

The traffic identifier of domain. Valid values are:

wafDedicatedDomainV1Id String

ID of the domain.

accessStatus number

Whether a domain name is connected to WAF. Valid values are:

alarmPage {[key: string]: string}

The alarm page of domain. Valid values are:

certificateId string

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

certificateName string

The name of the certificate used by the domain name.

cipher string

Specifies the cipher suite of domain. Values are:

complianceCertification {[key: string]: boolean}

The compliance certifications of the domain, values are:

createdAt number

Timestamp when the dedicated WAF domain was created.

domain string

Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.

keepPolicy boolean

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

pci3ds boolean

Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

pciDss boolean

Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

policyId string

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.

protectStatus number

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

protocol string

The protocol type of the client. The options are HTTP and HTTPS.

proxy boolean

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

region string

The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.

servers WafDedicatedDomainV1Server[]

The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:

timeoutConfig WafDedicatedDomainV1TimeoutConfig

Specifies the timeout configuration. The timeout_config structure is documented below.

tls string

Specifies the minimum required TLS version. Values are:

TLS v1.0
TLS v1.1
TLS v1.2
TLS v1.3

trafficIdentifier {[key: string]: string}

The traffic identifier of domain. Valid values are:

wafDedicatedDomainV1Id string

ID of the domain.

access_status float

Whether a domain name is connected to WAF. Valid values are:

alarm_page Mapping[str, str]

The alarm page of domain. Valid values are:

certificate_id str

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

certificate_name str

The name of the certificate used by the domain name.

cipher str

Specifies the cipher suite of domain. Values are:

compliance_certification Mapping[str, bool]

The compliance certifications of the domain, values are:

created_at float

Timestamp when the dedicated WAF domain was created.

domain str

Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.

keep_policy bool

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

pci3ds bool

Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

pci_dss bool

Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

policy_id str

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.

protect_status float

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

protocol str

The protocol type of the client. The options are HTTP and HTTPS.

proxy bool

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

region str

The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.

servers Sequence[WafDedicatedDomainV1ServerArgs]

The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:

timeout_config WafDedicatedDomainV1TimeoutConfigArgs

Specifies the timeout configuration. The timeout_config structure is documented below.

tls str

Specifies the minimum required TLS version. Values are:

TLS v1.0
TLS v1.1
TLS v1.2
TLS v1.3

traffic_identifier Mapping[str, str]

The traffic identifier of domain. Valid values are:

waf_dedicated_domain_v1_id str

ID of the domain.

accessStatus Number

Whether a domain name is connected to WAF. Valid values are:

alarmPage Map<String>

The alarm page of domain. Valid values are:

certificateId String

Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.

certificateName String

The name of the certificate used by the domain name.

cipher String

Specifies the cipher suite of domain. Values are:

complianceCertification Map<Boolean>

The compliance certifications of the domain, values are:

createdAt Number

Timestamp when the dedicated WAF domain was created.

domain String

Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.

keepPolicy Boolean

Specifies whether to retain the policy when deleting a domain name. Defaults to true.

pci3ds Boolean

Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

pciDss Boolean

Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

policyId String

Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.

protectStatus Number

The protection status of domain, 0: suspended, 1: enabled. Default value is 1.

protocol String

The protocol type of the client. The options are HTTP and HTTPS.

proxy Boolean

Specifies whether a proxy is configured. Default value is false.

NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

region String

The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.

servers List<Property Map>

The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:

timeoutConfig Property Map

Specifies the timeout configuration. The timeout_config structure is documented below.

tls String

Specifies the minimum required TLS version. Values are:

TLS v1.0
TLS v1.1
TLS v1.2
TLS v1.3

trafficIdentifier Map<String>

The traffic identifier of domain. Valid values are:

wafDedicatedDomainV1Id String

ID of the domain.

Supporting Types

WafDedicatedDomainV1Server
, WafDedicatedDomainV1ServerArgs

Address string: IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new server.
ClientProtocol string: Protocol type of the client. Values are HTTP and HTTPS. Changing this creates a new server.
Port double: Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new server.
ServerProtocol string: Protocol used by WAF to forward client requests to the server. Values areHTTP and HTTPS. Changing this creates a new server.
Type string: Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new server.
VpcId string: The id of the vpc used by the server. Changing this creates a server.

Address string: IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new server.
ClientProtocol string: Protocol type of the client. Values are HTTP and HTTPS. Changing this creates a new server.
Port float64: Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new server.
ServerProtocol string: Protocol used by WAF to forward client requests to the server. Values areHTTP and HTTPS. Changing this creates a new server.
Type string: Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new server.
VpcId string: The id of the vpc used by the server. Changing this creates a server.

address String: IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new server.
clientProtocol String: Protocol type of the client. Values are HTTP and HTTPS. Changing this creates a new server.
port Double: Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new server.
serverProtocol String: Protocol used by WAF to forward client requests to the server. Values areHTTP and HTTPS. Changing this creates a new server.
type String: Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new server.
vpcId String: The id of the vpc used by the server. Changing this creates a server.

address string: IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new server.
clientProtocol string: Protocol type of the client. Values are HTTP and HTTPS. Changing this creates a new server.
port number: Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new server.
serverProtocol string: Protocol used by WAF to forward client requests to the server. Values areHTTP and HTTPS. Changing this creates a new server.
type string: Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new server.
vpcId string: The id of the vpc used by the server. Changing this creates a server.

address str: IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new server.
client_protocol str: Protocol type of the client. Values are HTTP and HTTPS. Changing this creates a new server.
port float: Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new server.
server_protocol str: Protocol used by WAF to forward client requests to the server. Values areHTTP and HTTPS. Changing this creates a new server.
type str: Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new server.
vpc_id str: The id of the vpc used by the server. Changing this creates a server.

address String: IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new server.
clientProtocol String: Protocol type of the client. Values are HTTP and HTTPS. Changing this creates a new server.
port Number: Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new server.
serverProtocol String: Protocol used by WAF to forward client requests to the server. Values areHTTP and HTTPS. Changing this creates a new server.
type String: Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new server.
vpcId String: The id of the vpc used by the server. Changing this creates a server.

WafDedicatedDomainV1TimeoutConfig
, WafDedicatedDomainV1TimeoutConfigArgs

ConnectTimeout double: Specifies the timeout in seconds for WAF to connect to the origin server.
ReadTimeout double: Specifies the timeout in seconds for WAF to receive responses from the origin server.
SendTimeout double

ConnectTimeout float64: Specifies the timeout in seconds for WAF to connect to the origin server.
ReadTimeout float64: Specifies the timeout in seconds for WAF to receive responses from the origin server.
SendTimeout float64

connectTimeout Double: Specifies the timeout in seconds for WAF to connect to the origin server.
readTimeout Double: Specifies the timeout in seconds for WAF to receive responses from the origin server.
sendTimeout Double

connectTimeout number: Specifies the timeout in seconds for WAF to connect to the origin server.
readTimeout number: Specifies the timeout in seconds for WAF to receive responses from the origin server.
sendTimeout number

connect_timeout float: Specifies the timeout in seconds for WAF to connect to the origin server.
read_timeout float: Specifies the timeout in seconds for WAF to receive responses from the origin server.
send_timeout float

connectTimeout Number: Specifies the timeout in seconds for WAF to connect to the origin server.
readTimeout Number: Specifies the timeout in seconds for WAF to receive responses from the origin server.
sendTimeout Number

Import

WAF dedicated domain can be imported using the id, e.g.

bash

$ pulumi import opentelekomcloud:index/wafDedicatedDomainV1:WafDedicatedDomainV1 dom <id>

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: opentelekomcloud opentelekomcloud/terraform-provider-opentelekomcloud
License
Notes: This Pulumi package is based on the opentelekomcloud Terraform Provider.

opentelekomcloud 1.36.35 published on Monday, Apr 14, 2025 by opentelekomcloud

opentelekomcloud/terraform-provider-opentelekomcloud

opentelekomcloud.WafDedicatedDomainV1

On this page

On this page

Example Usage

Basic

With certificate

Create WafDedicatedDomainV1 Resource

Constructor syntax

Parameters

Constructor example

WafDedicatedDomainV1 Resource Properties

Inputs

Outputs

Look up Existing WafDedicatedDomainV1 Resource

Supporting Types

WafDedicatedDomainV1Server
, WafDedicatedDomainV1ServerArgs

WafDedicatedDomainV1TimeoutConfig
, WafDedicatedDomainV1TimeoutConfigArgs

Import

Package Details

On this page

On this page

opentelekomcloud.WafDedicatedDomainV1

On this page

On this page

Example Usage

Basic

With certificate

Create WafDedicatedDomainV1 Resource

Constructor syntax

Parameters

Constructor example

WafDedicatedDomainV1 Resource Properties

Inputs

Outputs

Look up Existing WafDedicatedDomainV1 Resource

Supporting Types

WafDedicatedDomainV1Server, WafDedicatedDomainV1ServerArgs

WafDedicatedDomainV1TimeoutConfig, WafDedicatedDomainV1TimeoutConfigArgs

Import

Package Details

On this page

On this page

WafDedicatedDomainV1Server
, WafDedicatedDomainV1ServerArgs

WafDedicatedDomainV1TimeoutConfig
, WafDedicatedDomainV1TimeoutConfigArgs