Docs Home Pulumi IaC Pulumi ESC Pulumi Insights Pulumi Cloud Packages Tutorials
  1. Packages
  2. Opentelekomcloud Provider
  3. API Docs
  4. WafDedicatedDomainV1
opentelekomcloud 1.36.35 published on Monday, Apr 14, 2025 by opentelekomcloud
opentelekomcloud/terraform-provider-opentelekomcloud

opentelekomcloud.WafDedicatedDomainV1

Explore with Pulumi AI

opentelekomcloud logo
opentelekomcloud 1.36.35 published on Monday, Apr 14, 2025 by opentelekomcloud
opentelekomcloud/terraform-provider-opentelekomcloud

    Up-to-date reference of API arguments for WAF dedicated domain you can get at documentation portal.

    Manages a WAF dedicated domain resource within OpenTelekomCloud.

    Note: For this resource region must be set in environment variable OS_REGION_NAME or in clouds.yaml

    Example Usage

    Basic

    import * as pulumi from "@pulumi/pulumi";
import * as opentelekomcloud from "@pulumi/opentelekomcloud";

const sharedSubnet = opentelekomcloud.getVpcSubnetV1({
    name: "my_subnet",
});
const domain1 = new opentelekomcloud.WafDedicatedDomainV1("domain1", {
    domain: "www.mydom.com",
    keepPolicy: false,
    proxy: true,
    servers: [{
        clientProtocol: "HTTP",
        serverProtocol: "HTTP",
        address: "192.168.0.10",
        port: 8080,
        type: "ipv4",
        vpcId: sharedSubnet.then(sharedSubnet => sharedSubnet.vpcId),
    }],
    timeoutConfig: {
        connectTimeout: 150,
        readTimeout: 200,
        sendTimeout: 100,
    },
});

    import pulumi
import pulumi_opentelekomcloud as opentelekomcloud

shared_subnet = opentelekomcloud.get_vpc_subnet_v1(name="my_subnet")
domain1 = opentelekomcloud.WafDedicatedDomainV1("domain1",
    domain="www.mydom.com",
    keep_policy=False,
    proxy=True,
    servers=[{
        "client_protocol": "HTTP",
        "server_protocol": "HTTP",
        "address": "192.168.0.10",
        "port": 8080,
        "type": "ipv4",
        "vpc_id": shared_subnet.vpc_id,
    }],
    timeout_config={
        "connect_timeout": 150,
        "read_timeout": 200,
        "send_timeout": 100,
    })

    package main

import (
	"github.com/pulumi/pulumi-terraform-provider/sdks/go/opentelekomcloud/opentelekomcloud"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		sharedSubnet, err := opentelekomcloud.LookupVpcSubnetV1(ctx, &opentelekomcloud.LookupVpcSubnetV1Args{
			Name: pulumi.StringRef("my_subnet"),
		}, nil)
		if err != nil {
			return err
		}
		_, err = opentelekomcloud.NewWafDedicatedDomainV1(ctx, "domain1", &opentelekomcloud.WafDedicatedDomainV1Args{
			Domain:     pulumi.String("www.mydom.com"),
			KeepPolicy: pulumi.Bool(false),
			Proxy:      pulumi.Bool(true),
			Servers: opentelekomcloud.WafDedicatedDomainV1ServerArray{
				&opentelekomcloud.WafDedicatedDomainV1ServerArgs{
					ClientProtocol: pulumi.String("HTTP"),
					ServerProtocol: pulumi.String("HTTP"),
					Address:        pulumi.String("192.168.0.10"),
					Port:           pulumi.Float64(8080),
					Type:           pulumi.String("ipv4"),
					VpcId:          pulumi.String(sharedSubnet.VpcId),
				},
			},
			TimeoutConfig: &opentelekomcloud.WafDedicatedDomainV1TimeoutConfigArgs{
				ConnectTimeout: pulumi.Float64(150),
				ReadTimeout:    pulumi.Float64(200),
				SendTimeout:    pulumi.Float64(100),
			},
		})
		if err != nil {
			return err
		}
		return nil
	})
}

    using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Opentelekomcloud = Pulumi.Opentelekomcloud;

return await Deployment.RunAsync(() => 
{
    var sharedSubnet = Opentelekomcloud.GetVpcSubnetV1.Invoke(new()
    {
        Name = "my_subnet",
    });

    var domain1 = new Opentelekomcloud.WafDedicatedDomainV1("domain1", new()
    {
        Domain = "www.mydom.com",
        KeepPolicy = false,
        Proxy = true,
        Servers = new[]
        {
            new Opentelekomcloud.Inputs.WafDedicatedDomainV1ServerArgs
            {
                ClientProtocol = "HTTP",
                ServerProtocol = "HTTP",
                Address = "192.168.0.10",
                Port = 8080,
                Type = "ipv4",
                VpcId = sharedSubnet.Apply(getVpcSubnetV1Result => getVpcSubnetV1Result.VpcId),
            },
        },
        TimeoutConfig = new Opentelekomcloud.Inputs.WafDedicatedDomainV1TimeoutConfigArgs
        {
            ConnectTimeout = 150,
            ReadTimeout = 200,
            SendTimeout = 100,
        },
    });

});

    package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.opentelekomcloud.OpentelekomcloudFunctions;
import com.pulumi.opentelekomcloud.inputs.GetVpcSubnetV1Args;
import com.pulumi.opentelekomcloud.WafDedicatedDomainV1;
import com.pulumi.opentelekomcloud.WafDedicatedDomainV1Args;
import com.pulumi.opentelekomcloud.inputs.WafDedicatedDomainV1ServerArgs;
import com.pulumi.opentelekomcloud.inputs.WafDedicatedDomainV1TimeoutConfigArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var sharedSubnet = OpentelekomcloudFunctions.getVpcSubnetV1(GetVpcSubnetV1Args.builder()
            .name("my_subnet")
            .build());

        var domain1 = new WafDedicatedDomainV1("domain1", WafDedicatedDomainV1Args.builder()
            .domain("www.mydom.com")
            .keepPolicy(false)
            .proxy(true)
            .servers(WafDedicatedDomainV1ServerArgs.builder()
                .clientProtocol("HTTP")
                .serverProtocol("HTTP")
                .address("192.168.0.10")
                .port(8080)
                .type("ipv4")
                .vpcId(sharedSubnet.applyValue(getVpcSubnetV1Result -> getVpcSubnetV1Result.vpcId()))
                .build())
            .timeoutConfig(WafDedicatedDomainV1TimeoutConfigArgs.builder()
                .connectTimeout(150)
                .readTimeout(200)
                .sendTimeout(100)
                .build())
            .build());

    }
}

    resources:
  domain1:
    type: opentelekomcloud:WafDedicatedDomainV1
    properties:
      domain: www.mydom.com
      keepPolicy: false
      proxy: true
      servers:
        - clientProtocol: HTTP
          serverProtocol: HTTP
          address: 192.168.0.10
          port: 8080
          type: ipv4
          vpcId: ${sharedSubnet.vpcId}
      timeoutConfig:
        connectTimeout: 150
        readTimeout: 200
        sendTimeout: 100
variables:
  sharedSubnet:
    fn::invoke:
      function: opentelekomcloud:getVpcSubnetV1
      arguments:
        name: my_subnet

    With certificate

    import * as pulumi from "@pulumi/pulumi";
import * as opentelekomcloud from "@pulumi/opentelekomcloud";

const sharedSubnet = opentelekomcloud.getVpcSubnetV1({
    name: "my_subnet",
});
const certificate1 = new opentelekomcloud.WafDedicatedCertificateV1("certificate1", {
    content: `-----BEGIN CERTIFICATE-----
MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
...
dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
-----END CERTIFICATE-----
`,
    key: `-----BEGIN PRIVATE KEY-----
MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
...
s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
+4sM7kp0qO3/p+45HykwBY5iHq3H
-----END PRIVATE KEY-----
`,
});
const domain1 = new opentelekomcloud.WafDedicatedDomainV1("domain1", {
    domain: "www.mydom.com",
    certificateId: certificate1.wafDedicatedCertificateV1Id,
    keepPolicy: false,
    proxy: false,
    tls: "TLS v1.1",
    cipher: "cipher_1",
    servers: [{
        clientProtocol: "HTTPS",
        serverProtocol: "HTTP",
        address: "192.168.0.20",
        port: 8443,
        type: "ipv4",
        vpcId: sharedSubnet.then(sharedSubnet => sharedSubnet.vpcId),
    }],
}, {
    dependsOn: [certificate1],
});

    import pulumi
import pulumi_opentelekomcloud as opentelekomcloud

shared_subnet = opentelekomcloud.get_vpc_subnet_v1(name="my_subnet")
certificate1 = opentelekomcloud.WafDedicatedCertificateV1("certificate1",
    content="""-----BEGIN CERTIFICATE-----
MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
...
dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
-----END CERTIFICATE-----
""",
    key="""-----BEGIN PRIVATE KEY-----
MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
...
s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
+4sM7kp0qO3/p+45HykwBY5iHq3H
-----END PRIVATE KEY-----
""")
domain1 = opentelekomcloud.WafDedicatedDomainV1("domain1",
    domain="www.mydom.com",
    certificate_id=certificate1.waf_dedicated_certificate_v1_id,
    keep_policy=False,
    proxy=False,
    tls="TLS v1.1",
    cipher="cipher_1",
    servers=[{
        "client_protocol": "HTTPS",
        "server_protocol": "HTTP",
        "address": "192.168.0.20",
        "port": 8443,
        "type": "ipv4",
        "vpc_id": shared_subnet.vpc_id,
    }],
    opts = pulumi.ResourceOptions(depends_on=[certificate1]))

    package main

import (
	"github.com/pulumi/pulumi-terraform-provider/sdks/go/opentelekomcloud/opentelekomcloud"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		sharedSubnet, err := opentelekomcloud.LookupVpcSubnetV1(ctx, &opentelekomcloud.LookupVpcSubnetV1Args{
			Name: pulumi.StringRef("my_subnet"),
		}, nil)
		if err != nil {
			return err
		}
		certificate1, err := opentelekomcloud.NewWafDedicatedCertificateV1(ctx, "certificate1", &opentelekomcloud.WafDedicatedCertificateV1Args{
			Content: pulumi.String(`-----BEGIN CERTIFICATE-----
MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
...
dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
-----END CERTIFICATE-----
`),
			Key: pulumi.String(`-----BEGIN PRIVATE KEY-----
MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
...
s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
+4sM7kp0qO3/p+45HykwBY5iHq3H
-----END PRIVATE KEY-----
`),
		})
		if err != nil {
			return err
		}
		_, err = opentelekomcloud.NewWafDedicatedDomainV1(ctx, "domain1", &opentelekomcloud.WafDedicatedDomainV1Args{
			Domain:        pulumi.String("www.mydom.com"),
			CertificateId: certificate1.WafDedicatedCertificateV1Id,
			KeepPolicy:    pulumi.Bool(false),
			Proxy:         pulumi.Bool(false),
			Tls:           pulumi.String("TLS v1.1"),
			Cipher:        pulumi.String("cipher_1"),
			Servers: opentelekomcloud.WafDedicatedDomainV1ServerArray{
				&opentelekomcloud.WafDedicatedDomainV1ServerArgs{
					ClientProtocol: pulumi.String("HTTPS"),
					ServerProtocol: pulumi.String("HTTP"),
					Address:        pulumi.String("192.168.0.20"),
					Port:           pulumi.Float64(8443),
					Type:           pulumi.String("ipv4"),
					VpcId:          pulumi.String(sharedSubnet.VpcId),
				},
			},
		}, pulumi.DependsOn([]pulumi.Resource{
			certificate1,
		}))
		if err != nil {
			return err
		}
		return nil
	})
}

    using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Opentelekomcloud = Pulumi.Opentelekomcloud;

return await Deployment.RunAsync(() => 
{
    var sharedSubnet = Opentelekomcloud.GetVpcSubnetV1.Invoke(new()
    {
        Name = "my_subnet",
    });

    var certificate1 = new Opentelekomcloud.WafDedicatedCertificateV1("certificate1", new()
    {
        Content = @"-----BEGIN CERTIFICATE-----
MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
...
dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
-----END CERTIFICATE-----
",
        Key = @"-----BEGIN PRIVATE KEY-----
MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
...
s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
+4sM7kp0qO3/p+45HykwBY5iHq3H
-----END PRIVATE KEY-----
",
    });

    var domain1 = new Opentelekomcloud.WafDedicatedDomainV1("domain1", new()
    {
        Domain = "www.mydom.com",
        CertificateId = certificate1.WafDedicatedCertificateV1Id,
        KeepPolicy = false,
        Proxy = false,
        Tls = "TLS v1.1",
        Cipher = "cipher_1",
        Servers = new[]
        {
            new Opentelekomcloud.Inputs.WafDedicatedDomainV1ServerArgs
            {
                ClientProtocol = "HTTPS",
                ServerProtocol = "HTTP",
                Address = "192.168.0.20",
                Port = 8443,
                Type = "ipv4",
                VpcId = sharedSubnet.Apply(getVpcSubnetV1Result => getVpcSubnetV1Result.VpcId),
            },
        },
    }, new CustomResourceOptions
    {
        DependsOn =
        {
            certificate1,
        },
    });

});

    package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.opentelekomcloud.OpentelekomcloudFunctions;
import com.pulumi.opentelekomcloud.inputs.GetVpcSubnetV1Args;
import com.pulumi.opentelekomcloud.WafDedicatedCertificateV1;
import com.pulumi.opentelekomcloud.WafDedicatedCertificateV1Args;
import com.pulumi.opentelekomcloud.WafDedicatedDomainV1;
import com.pulumi.opentelekomcloud.WafDedicatedDomainV1Args;
import com.pulumi.opentelekomcloud.inputs.WafDedicatedDomainV1ServerArgs;
import com.pulumi.resources.CustomResourceOptions;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var sharedSubnet = OpentelekomcloudFunctions.getVpcSubnetV1(GetVpcSubnetV1Args.builder()
            .name("my_subnet")
            .build());

        var certificate1 = new WafDedicatedCertificateV1("certificate1", WafDedicatedCertificateV1Args.builder()
            .content("""
-----BEGIN CERTIFICATE-----
MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
...
dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
-----END CERTIFICATE-----
            """)
            .key("""
-----BEGIN PRIVATE KEY-----
MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
...
s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
+4sM7kp0qO3/p+45HykwBY5iHq3H
-----END PRIVATE KEY-----
            """)
            .build());

        var domain1 = new WafDedicatedDomainV1("domain1", WafDedicatedDomainV1Args.builder()
            .domain("www.mydom.com")
            .certificateId(certificate1.wafDedicatedCertificateV1Id())
            .keepPolicy(false)
            .proxy(false)
            .tls("TLS v1.1")
            .cipher("cipher_1")
            .servers(WafDedicatedDomainV1ServerArgs.builder()
                .clientProtocol("HTTPS")
                .serverProtocol("HTTP")
                .address("192.168.0.20")
                .port(8443)
                .type("ipv4")
                .vpcId(sharedSubnet.applyValue(getVpcSubnetV1Result -> getVpcSubnetV1Result.vpcId()))
                .build())
            .build(), CustomResourceOptions.builder()
                .dependsOn(certificate1)
                .build());

    }
}

    resources:
  certificate1:
    type: opentelekomcloud:WafDedicatedCertificateV1
    properties:
      content: |
        -----BEGIN CERTIFICATE-----
        MIIFazCCA1OgAwIBAgIUN3w1KX8/T/HWVxZIOdHXPhUOnsAwDQYJKoZIhvcNAQEL
        BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM
        ...
        dKvZbPEsygYRIjwyhHHUh/YXH8KDI/uu6u6AxDckQ3rP1BkkKXr5NPBGjVgM3ZI=
        -----END CERTIFICATE-----        
      key: |
        -----BEGIN PRIVATE KEY-----
        MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQC+9uwFVenCdPD9
        5LWSWMuy4riZW718wxBpYV5Y9N8nM7N0qZLLdpImZrzBbaBldTI+AZGI3Nupuurw
        ...
        s9urs/Kk/tbQhsEvu0X8FyGwo0zH6rG8apTFTlac+v4mJ4vlpxSvT5+FW2lgLISE
        +4sM7kp0qO3/p+45HykwBY5iHq3H
        -----END PRIVATE KEY-----        
  domain1:
    type: opentelekomcloud:WafDedicatedDomainV1
    properties:
      domain: www.mydom.com
      certificateId: ${certificate1.wafDedicatedCertificateV1Id}
      keepPolicy: false
      proxy: false
      tls: TLS v1.1
      cipher: cipher_1
      servers:
        - clientProtocol: HTTPS
          serverProtocol: HTTP
          address: 192.168.0.20
          port: 8443
          type: ipv4
          vpcId: ${sharedSubnet.vpcId}
    options:
      dependsOn:
        - ${certificate1}
variables:
  sharedSubnet:
    fn::invoke:
      function: opentelekomcloud:getVpcSubnetV1
      arguments:
        name: my_subnet

    Create WafDedicatedDomainV1 Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new WafDedicatedDomainV1(name: string, args: WafDedicatedDomainV1Args, opts?: CustomResourceOptions);
    @overload
def WafDedicatedDomainV1(resource_name: str,
                         args: WafDedicatedDomainV1Args,
                         opts: Optional[ResourceOptions] = None)

@overload
def WafDedicatedDomainV1(resource_name: str,
                         opts: Optional[ResourceOptions] = None,
                         domain: Optional[str] = None,
                         servers: Optional[Sequence[WafDedicatedDomainV1ServerArgs]] = None,
                         policy_id: Optional[str] = None,
                         keep_policy: Optional[bool] = None,
                         pci3ds: Optional[bool] = None,
                         pci_dss: Optional[bool] = None,
                         certificate_id: Optional[str] = None,
                         protect_status: Optional[float] = None,
                         proxy: Optional[bool] = None,
                         region: Optional[str] = None,
                         cipher: Optional[str] = None,
                         timeout_config: Optional[WafDedicatedDomainV1TimeoutConfigArgs] = None,
                         tls: Optional[str] = None,
                         waf_dedicated_domain_v1_id: Optional[str] = None)
    func NewWafDedicatedDomainV1(ctx *Context, name string, args WafDedicatedDomainV1Args, opts ...ResourceOption) (*WafDedicatedDomainV1, error)
    public WafDedicatedDomainV1(string name, WafDedicatedDomainV1Args args, CustomResourceOptions? opts = null)
    public WafDedicatedDomainV1(String name, WafDedicatedDomainV1Args args)
public WafDedicatedDomainV1(String name, WafDedicatedDomainV1Args args, CustomResourceOptions options)

    type: opentelekomcloud:WafDedicatedDomainV1
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

    Parameters

    name string
    The unique name of the resource.
    args WafDedicatedDomainV1Args
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args WafDedicatedDomainV1Args
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args WafDedicatedDomainV1Args
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args WafDedicatedDomainV1Args
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args WafDedicatedDomainV1Args
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var wafDedicatedDomainV1Resource = new Opentelekomcloud.WafDedicatedDomainV1("wafDedicatedDomainV1Resource", new()
{
    Domain = "string",
    Servers = new[]
    {
        new Opentelekomcloud.Inputs.WafDedicatedDomainV1ServerArgs
        {
            Address = "string",
            ClientProtocol = "string",
            Port = 0,
            ServerProtocol = "string",
            Type = "string",
            VpcId = "string",
        },
    },
    PolicyId = "string",
    KeepPolicy = false,
    Pci3ds = false,
    PciDss = false,
    CertificateId = "string",
    ProtectStatus = 0,
    Proxy = false,
    Region = "string",
    Cipher = "string",
    TimeoutConfig = new Opentelekomcloud.Inputs.WafDedicatedDomainV1TimeoutConfigArgs
    {
        ConnectTimeout = 0,
        ReadTimeout = 0,
        SendTimeout = 0,
    },
    Tls = "string",
    WafDedicatedDomainV1Id = "string",
});

    example, err := opentelekomcloud.NewWafDedicatedDomainV1(ctx, "wafDedicatedDomainV1Resource", &opentelekomcloud.WafDedicatedDomainV1Args{
Domain: pulumi.String("string"),
Servers: .WafDedicatedDomainV1ServerArray{
&.WafDedicatedDomainV1ServerArgs{
Address: pulumi.String("string"),
ClientProtocol: pulumi.String("string"),
Port: pulumi.Float64(0),
ServerProtocol: pulumi.String("string"),
Type: pulumi.String("string"),
VpcId: pulumi.String("string"),
},
},
PolicyId: pulumi.String("string"),
KeepPolicy: pulumi.Bool(false),
Pci3ds: pulumi.Bool(false),
PciDss: pulumi.Bool(false),
CertificateId: pulumi.String("string"),
ProtectStatus: pulumi.Float64(0),
Proxy: pulumi.Bool(false),
Region: pulumi.String("string"),
Cipher: pulumi.String("string"),
TimeoutConfig: &.WafDedicatedDomainV1TimeoutConfigArgs{
ConnectTimeout: pulumi.Float64(0),
ReadTimeout: pulumi.Float64(0),
SendTimeout: pulumi.Float64(0),
},
Tls: pulumi.String("string"),
WafDedicatedDomainV1Id: pulumi.String("string"),
})

    var wafDedicatedDomainV1Resource = new WafDedicatedDomainV1("wafDedicatedDomainV1Resource", WafDedicatedDomainV1Args.builder()
    .domain("string")
    .servers(WafDedicatedDomainV1ServerArgs.builder()
        .address("string")
        .clientProtocol("string")
        .port(0)
        .serverProtocol("string")
        .type("string")
        .vpcId("string")
        .build())
    .policyId("string")
    .keepPolicy(false)
    .pci3ds(false)
    .pciDss(false)
    .certificateId("string")
    .protectStatus(0)
    .proxy(false)
    .region("string")
    .cipher("string")
    .timeoutConfig(WafDedicatedDomainV1TimeoutConfigArgs.builder()
        .connectTimeout(0)
        .readTimeout(0)
        .sendTimeout(0)
        .build())
    .tls("string")
    .wafDedicatedDomainV1Id("string")
    .build());

    waf_dedicated_domain_v1_resource = opentelekomcloud.WafDedicatedDomainV1("wafDedicatedDomainV1Resource",
    domain="string",
    servers=[{
        "address": "string",
        "client_protocol": "string",
        "port": 0,
        "server_protocol": "string",
        "type": "string",
        "vpc_id": "string",
    }],
    policy_id="string",
    keep_policy=False,
    pci3ds=False,
    pci_dss=False,
    certificate_id="string",
    protect_status=0,
    proxy=False,
    region="string",
    cipher="string",
    timeout_config={
        "connect_timeout": 0,
        "read_timeout": 0,
        "send_timeout": 0,
    },
    tls="string",
    waf_dedicated_domain_v1_id="string")

    const wafDedicatedDomainV1Resource = new opentelekomcloud.WafDedicatedDomainV1("wafDedicatedDomainV1Resource", {
    domain: "string",
    servers: [{
        address: "string",
        clientProtocol: "string",
        port: 0,
        serverProtocol: "string",
        type: "string",
        vpcId: "string",
    }],
    policyId: "string",
    keepPolicy: false,
    pci3ds: false,
    pciDss: false,
    certificateId: "string",
    protectStatus: 0,
    proxy: false,
    region: "string",
    cipher: "string",
    timeoutConfig: {
        connectTimeout: 0,
        readTimeout: 0,
        sendTimeout: 0,
    },
    tls: "string",
    wafDedicatedDomainV1Id: "string",
});

    type: opentelekomcloud:WafDedicatedDomainV1
properties:
    certificateId: string
    cipher: string
    domain: string
    keepPolicy: false
    pci3ds: false
    pciDss: false
    policyId: string
    protectStatus: 0
    proxy: false
    region: string
    servers:
        - address: string
          clientProtocol: string
          port: 0
          serverProtocol: string
          type: string
          vpcId: string
    timeoutConfig:
        connectTimeout: 0
        readTimeout: 0
        sendTimeout: 0
    tls: string
    wafDedicatedDomainV1Id: string

    WafDedicatedDomainV1 Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The WafDedicatedDomainV1 resource accepts the following input properties:

    Domain string
    Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.
    Servers List<WafDedicatedDomainV1Server>
    The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:
    CertificateId string
    Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.
    Cipher string
    Specifies the cipher suite of domain. Values are:
    KeepPolicy bool
    Specifies whether to retain the policy when deleting a domain name. Defaults to true.
    Pci3ds bool

    Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

    PciDss bool

    Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

    PolicyId string
    Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.
    ProtectStatus double
    The protection status of domain, 0: suspended, 1: enabled. Default value is 1.
    Proxy bool

    Specifies whether a proxy is configured. Default value is false.

    NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

    Region string
    The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.
    TimeoutConfig WafDedicatedDomainV1TimeoutConfig
    Specifies the timeout configuration. The timeout_config structure is documented below.
    Tls string
    Specifies the minimum required TLS version. Values are:

    • TLS v1.0
    • TLS v1.1
    • TLS v1.2
    • TLS v1.3
    WafDedicatedDomainV1Id string
    ID of the domain.
    Domain string
    Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.
    Servers []WafDedicatedDomainV1ServerArgs
    The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:
    CertificateId string
    Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.
    Cipher string
    Specifies the cipher suite of domain. Values are:
    KeepPolicy bool
    Specifies whether to retain the policy when deleting a domain name. Defaults to true.
    Pci3ds bool

    Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

    PciDss bool

    Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

    PolicyId string
    Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.
    ProtectStatus float64
    The protection status of domain, 0: suspended, 1: enabled. Default value is 1.
    Proxy bool

    Specifies whether a proxy is configured. Default value is false.

    NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

    Region string
    The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.
    TimeoutConfig WafDedicatedDomainV1TimeoutConfigArgs
    Specifies the timeout configuration. The timeout_config structure is documented below.
    Tls string
    Specifies the minimum required TLS version. Values are:

    • TLS v1.0
    • TLS v1.1
    • TLS v1.2
    • TLS v1.3
    WafDedicatedDomainV1Id string
    ID of the domain.
    domain String
    Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.
    servers List<WafDedicatedDomainV1Server>
    The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:
    certificateId String
    Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.
    cipher String
    Specifies the cipher suite of domain. Values are:
    keepPolicy Boolean
    Specifies whether to retain the policy when deleting a domain name. Defaults to true.
    pci3ds Boolean

    Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

    pciDss Boolean

    Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

    policyId String
    Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.
    protectStatus Double
    The protection status of domain, 0: suspended, 1: enabled. Default value is 1.
    proxy Boolean

    Specifies whether a proxy is configured. Default value is false.

    NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

    region String
    The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.
    timeoutConfig WafDedicatedDomainV1TimeoutConfig
    Specifies the timeout configuration. The timeout_config structure is documented below.
    tls String
    Specifies the minimum required TLS version. Values are:

    • TLS v1.0
    • TLS v1.1
    • TLS v1.2
    • TLS v1.3
    wafDedicatedDomainV1Id String
    ID of the domain.
    domain string
    Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.
    servers WafDedicatedDomainV1Server[]
    The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:
    certificateId string
    Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.
    cipher string
    Specifies the cipher suite of domain. Values are:
    keepPolicy boolean
    Specifies whether to retain the policy when deleting a domain name. Defaults to true.
    pci3ds boolean

    Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

    pciDss boolean

    Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

    policyId string
    Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.
    protectStatus number
    The protection status of domain, 0: suspended, 1: enabled. Default value is 1.
    proxy boolean

    Specifies whether a proxy is configured. Default value is false.

    NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

    region string
    The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.
    timeoutConfig WafDedicatedDomainV1TimeoutConfig
    Specifies the timeout configuration. The timeout_config structure is documented below.
    tls string
    Specifies the minimum required TLS version. Values are:

    • TLS v1.0
    • TLS v1.1
    • TLS v1.2
    • TLS v1.3
    wafDedicatedDomainV1Id string
    ID of the domain.
    domain str
    Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.
    servers Sequence[WafDedicatedDomainV1ServerArgs]
    The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:
    certificate_id str
    Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.
    cipher str
    Specifies the cipher suite of domain. Values are:
    keep_policy bool
    Specifies whether to retain the policy when deleting a domain name. Defaults to true.
    pci3ds bool

    Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

    pci_dss bool

    Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

    policy_id str
    Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.
    protect_status float
    The protection status of domain, 0: suspended, 1: enabled. Default value is 1.
    proxy bool

    Specifies whether a proxy is configured. Default value is false.

    NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

    region str
    The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.
    timeout_config WafDedicatedDomainV1TimeoutConfigArgs
    Specifies the timeout configuration. The timeout_config structure is documented below.
    tls str
    Specifies the minimum required TLS version. Values are:

    • TLS v1.0
    • TLS v1.1
    • TLS v1.2
    • TLS v1.3
    waf_dedicated_domain_v1_id str
    ID of the domain.
    domain String
    Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.
    servers List<Property Map>
    The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:
    certificateId String
    Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.
    cipher String
    Specifies the cipher suite of domain. Values are:
    keepPolicy Boolean
    Specifies whether to retain the policy when deleting a domain name. Defaults to true.
    pci3ds Boolean

    Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

    pciDss Boolean

    Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

    policyId String
    Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.
    protectStatus Number
    The protection status of domain, 0: suspended, 1: enabled. Default value is 1.
    proxy Boolean

    Specifies whether a proxy is configured. Default value is false.

    NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

    region String
    The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.
    timeoutConfig Property Map
    Specifies the timeout configuration. The timeout_config structure is documented below.
    tls String
    Specifies the minimum required TLS version. Values are:

    • TLS v1.0
    • TLS v1.1
    • TLS v1.2
    • TLS v1.3
    wafDedicatedDomainV1Id String
    ID of the domain.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the WafDedicatedDomainV1 resource produces the following output properties:

    AccessStatus double
    Whether a domain name is connected to WAF. Valid values are:
    AlarmPage Dictionary<string, string>
    The alarm page of domain. Valid values are:
    CertificateName string
    The name of the certificate used by the domain name.
    ComplianceCertification Dictionary<string, bool>
    The compliance certifications of the domain, values are:
    CreatedAt double
    Timestamp when the dedicated WAF domain was created.
    Id string
    The provider-assigned unique ID for this managed resource.
    Protocol string
    The protocol type of the client. The options are HTTP and HTTPS.
    TrafficIdentifier Dictionary<string, string>
    The traffic identifier of domain. Valid values are:
    AccessStatus float64
    Whether a domain name is connected to WAF. Valid values are:
    AlarmPage map[string]string
    The alarm page of domain. Valid values are:
    CertificateName string
    The name of the certificate used by the domain name.
    ComplianceCertification map[string]bool
    The compliance certifications of the domain, values are:
    CreatedAt float64
    Timestamp when the dedicated WAF domain was created.
    Id string
    The provider-assigned unique ID for this managed resource.
    Protocol string
    The protocol type of the client. The options are HTTP and HTTPS.
    TrafficIdentifier map[string]string
    The traffic identifier of domain. Valid values are:
    accessStatus Double
    Whether a domain name is connected to WAF. Valid values are:
    alarmPage Map<String,String>
    The alarm page of domain. Valid values are:
    certificateName String
    The name of the certificate used by the domain name.
    complianceCertification Map<String,Boolean>
    The compliance certifications of the domain, values are:
    createdAt Double
    Timestamp when the dedicated WAF domain was created.
    id String
    The provider-assigned unique ID for this managed resource.
    protocol String
    The protocol type of the client. The options are HTTP and HTTPS.
    trafficIdentifier Map<String,String>
    The traffic identifier of domain. Valid values are:
    accessStatus number
    Whether a domain name is connected to WAF. Valid values are:
    alarmPage {[key: string]: string}
    The alarm page of domain. Valid values are:
    certificateName string
    The name of the certificate used by the domain name.
    complianceCertification {[key: string]: boolean}
    The compliance certifications of the domain, values are:
    createdAt number
    Timestamp when the dedicated WAF domain was created.
    id string
    The provider-assigned unique ID for this managed resource.
    protocol string
    The protocol type of the client. The options are HTTP and HTTPS.
    trafficIdentifier {[key: string]: string}
    The traffic identifier of domain. Valid values are:
    access_status float
    Whether a domain name is connected to WAF. Valid values are:
    alarm_page Mapping[str, str]
    The alarm page of domain. Valid values are:
    certificate_name str
    The name of the certificate used by the domain name.
    compliance_certification Mapping[str, bool]
    The compliance certifications of the domain, values are:
    created_at float
    Timestamp when the dedicated WAF domain was created.
    id str
    The provider-assigned unique ID for this managed resource.
    protocol str
    The protocol type of the client. The options are HTTP and HTTPS.
    traffic_identifier Mapping[str, str]
    The traffic identifier of domain. Valid values are:
    accessStatus Number
    Whether a domain name is connected to WAF. Valid values are:
    alarmPage Map<String>
    The alarm page of domain. Valid values are:
    certificateName String
    The name of the certificate used by the domain name.
    complianceCertification Map<Boolean>
    The compliance certifications of the domain, values are:
    createdAt Number
    Timestamp when the dedicated WAF domain was created.
    id String
    The provider-assigned unique ID for this managed resource.
    protocol String
    The protocol type of the client. The options are HTTP and HTTPS.
    trafficIdentifier Map<String>
    The traffic identifier of domain. Valid values are:

    Look up Existing WafDedicatedDomainV1 Resource

    Get an existing WafDedicatedDomainV1 resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: WafDedicatedDomainV1State, opts?: CustomResourceOptions): WafDedicatedDomainV1
    @staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        access_status: Optional[float] = None,
        alarm_page: Optional[Mapping[str, str]] = None,
        certificate_id: Optional[str] = None,
        certificate_name: Optional[str] = None,
        cipher: Optional[str] = None,
        compliance_certification: Optional[Mapping[str, bool]] = None,
        created_at: Optional[float] = None,
        domain: Optional[str] = None,
        keep_policy: Optional[bool] = None,
        pci3ds: Optional[bool] = None,
        pci_dss: Optional[bool] = None,
        policy_id: Optional[str] = None,
        protect_status: Optional[float] = None,
        protocol: Optional[str] = None,
        proxy: Optional[bool] = None,
        region: Optional[str] = None,
        servers: Optional[Sequence[WafDedicatedDomainV1ServerArgs]] = None,
        timeout_config: Optional[WafDedicatedDomainV1TimeoutConfigArgs] = None,
        tls: Optional[str] = None,
        traffic_identifier: Optional[Mapping[str, str]] = None,
        waf_dedicated_domain_v1_id: Optional[str] = None) -> WafDedicatedDomainV1
    func GetWafDedicatedDomainV1(ctx *Context, name string, id IDInput, state *WafDedicatedDomainV1State, opts ...ResourceOption) (*WafDedicatedDomainV1, error)
    public static WafDedicatedDomainV1 Get(string name, Input<string> id, WafDedicatedDomainV1State? state, CustomResourceOptions? opts = null)
    public static WafDedicatedDomainV1 get(String name, Output<String> id, WafDedicatedDomainV1State state, CustomResourceOptions options)
    resources:  _:    type: opentelekomcloud:WafDedicatedDomainV1    get:      id: ${id}
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    AccessStatus double
    Whether a domain name is connected to WAF. Valid values are:
    AlarmPage Dictionary<string, string>
    The alarm page of domain. Valid values are:
    CertificateId string
    Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.
    CertificateName string
    The name of the certificate used by the domain name.
    Cipher string
    Specifies the cipher suite of domain. Values are:
    ComplianceCertification Dictionary<string, bool>
    The compliance certifications of the domain, values are:
    CreatedAt double
    Timestamp when the dedicated WAF domain was created.
    Domain string
    Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.
    KeepPolicy bool
    Specifies whether to retain the policy when deleting a domain name. Defaults to true.
    Pci3ds bool

    Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

    PciDss bool

    Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

    PolicyId string
    Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.
    ProtectStatus double
    The protection status of domain, 0: suspended, 1: enabled. Default value is 1.
    Protocol string
    The protocol type of the client. The options are HTTP and HTTPS.
    Proxy bool

    Specifies whether a proxy is configured. Default value is false.

    NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

    Region string
    The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.
    Servers List<WafDedicatedDomainV1Server>
    The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:
    TimeoutConfig WafDedicatedDomainV1TimeoutConfig
    Specifies the timeout configuration. The timeout_config structure is documented below.
    Tls string
    Specifies the minimum required TLS version. Values are:

    • TLS v1.0
    • TLS v1.1
    • TLS v1.2
    • TLS v1.3
    TrafficIdentifier Dictionary<string, string>
    The traffic identifier of domain. Valid values are:
    WafDedicatedDomainV1Id string
    ID of the domain.
    AccessStatus float64
    Whether a domain name is connected to WAF. Valid values are:
    AlarmPage map[string]string
    The alarm page of domain. Valid values are:
    CertificateId string
    Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.
    CertificateName string
    The name of the certificate used by the domain name.
    Cipher string
    Specifies the cipher suite of domain. Values are:
    ComplianceCertification map[string]bool
    The compliance certifications of the domain, values are:
    CreatedAt float64
    Timestamp when the dedicated WAF domain was created.
    Domain string
    Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.
    KeepPolicy bool
    Specifies whether to retain the policy when deleting a domain name. Defaults to true.
    Pci3ds bool

    Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

    PciDss bool

    Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

    PolicyId string
    Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.
    ProtectStatus float64
    The protection status of domain, 0: suspended, 1: enabled. Default value is 1.
    Protocol string
    The protocol type of the client. The options are HTTP and HTTPS.
    Proxy bool

    Specifies whether a proxy is configured. Default value is false.

    NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

    Region string
    The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.
    Servers []WafDedicatedDomainV1ServerArgs
    The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:
    TimeoutConfig WafDedicatedDomainV1TimeoutConfigArgs
    Specifies the timeout configuration. The timeout_config structure is documented below.
    Tls string
    Specifies the minimum required TLS version. Values are:

    • TLS v1.0
    • TLS v1.1
    • TLS v1.2
    • TLS v1.3
    TrafficIdentifier map[string]string
    The traffic identifier of domain. Valid values are:
    WafDedicatedDomainV1Id string
    ID of the domain.
    accessStatus Double
    Whether a domain name is connected to WAF. Valid values are:
    alarmPage Map<String,String>
    The alarm page of domain. Valid values are:
    certificateId String
    Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.
    certificateName String
    The name of the certificate used by the domain name.
    cipher String
    Specifies the cipher suite of domain. Values are:
    complianceCertification Map<String,Boolean>
    The compliance certifications of the domain, values are:
    createdAt Double
    Timestamp when the dedicated WAF domain was created.
    domain String
    Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.
    keepPolicy Boolean
    Specifies whether to retain the policy when deleting a domain name. Defaults to true.
    pci3ds Boolean

    Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

    pciDss Boolean

    Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

    policyId String
    Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.
    protectStatus Double
    The protection status of domain, 0: suspended, 1: enabled. Default value is 1.
    protocol String
    The protocol type of the client. The options are HTTP and HTTPS.
    proxy Boolean

    Specifies whether a proxy is configured. Default value is false.

    NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

    region String
    The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.
    servers List<WafDedicatedDomainV1Server>
    The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:
    timeoutConfig WafDedicatedDomainV1TimeoutConfig
    Specifies the timeout configuration. The timeout_config structure is documented below.
    tls String
    Specifies the minimum required TLS version. Values are:

    • TLS v1.0
    • TLS v1.1
    • TLS v1.2
    • TLS v1.3
    trafficIdentifier Map<String,String>
    The traffic identifier of domain. Valid values are:
    wafDedicatedDomainV1Id String
    ID of the domain.
    accessStatus number
    Whether a domain name is connected to WAF. Valid values are:
    alarmPage {[key: string]: string}
    The alarm page of domain. Valid values are:
    certificateId string
    Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.
    certificateName string
    The name of the certificate used by the domain name.
    cipher string
    Specifies the cipher suite of domain. Values are:
    complianceCertification {[key: string]: boolean}
    The compliance certifications of the domain, values are:
    createdAt number
    Timestamp when the dedicated WAF domain was created.
    domain string
    Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.
    keepPolicy boolean
    Specifies whether to retain the policy when deleting a domain name. Defaults to true.
    pci3ds boolean

    Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

    pciDss boolean

    Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

    policyId string
    Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.
    protectStatus number
    The protection status of domain, 0: suspended, 1: enabled. Default value is 1.
    protocol string
    The protocol type of the client. The options are HTTP and HTTPS.
    proxy boolean

    Specifies whether a proxy is configured. Default value is false.

    NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

    region string
    The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.
    servers WafDedicatedDomainV1Server[]
    The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:
    timeoutConfig WafDedicatedDomainV1TimeoutConfig
    Specifies the timeout configuration. The timeout_config structure is documented below.
    tls string
    Specifies the minimum required TLS version. Values are:

    • TLS v1.0
    • TLS v1.1
    • TLS v1.2
    • TLS v1.3
    trafficIdentifier {[key: string]: string}
    The traffic identifier of domain. Valid values are:
    wafDedicatedDomainV1Id string
    ID of the domain.
    access_status float
    Whether a domain name is connected to WAF. Valid values are:
    alarm_page Mapping[str, str]
    The alarm page of domain. Valid values are:
    certificate_id str
    Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.
    certificate_name str
    The name of the certificate used by the domain name.
    cipher str
    Specifies the cipher suite of domain. Values are:
    compliance_certification Mapping[str, bool]
    The compliance certifications of the domain, values are:
    created_at float
    Timestamp when the dedicated WAF domain was created.
    domain str
    Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.
    keep_policy bool
    Specifies whether to retain the policy when deleting a domain name. Defaults to true.
    pci3ds bool

    Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

    pci_dss bool

    Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

    policy_id str
    Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.
    protect_status float
    The protection status of domain, 0: suspended, 1: enabled. Default value is 1.
    protocol str
    The protocol type of the client. The options are HTTP and HTTPS.
    proxy bool

    Specifies whether a proxy is configured. Default value is false.

    NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

    region str
    The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.
    servers Sequence[WafDedicatedDomainV1ServerArgs]
    The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:
    timeout_config WafDedicatedDomainV1TimeoutConfigArgs
    Specifies the timeout configuration. The timeout_config structure is documented below.
    tls str
    Specifies the minimum required TLS version. Values are:

    • TLS v1.0
    • TLS v1.1
    • TLS v1.2
    • TLS v1.3
    traffic_identifier Mapping[str, str]
    The traffic identifier of domain. Valid values are:
    waf_dedicated_domain_v1_id str
    ID of the domain.
    accessStatus Number
    Whether a domain name is connected to WAF. Valid values are:
    alarmPage Map<String>
    The alarm page of domain. Valid values are:
    certificateId String
    Specifies the certificate ID. This parameter is mandatory when client_protocol is set to HTTPS.
    certificateName String
    The name of the certificate used by the domain name.
    cipher String
    Specifies the cipher suite of domain. Values are:
    complianceCertification Map<Boolean>
    The compliance certifications of the domain, values are:
    createdAt Number
    Timestamp when the dedicated WAF domain was created.
    domain String
    Specifies the protected domain name or IP address (port allowed). For example, www.example.com or *.example.com or www.example.com:89. Changing this creates a new domain.
    keepPolicy Boolean
    Specifies whether to retain the policy when deleting a domain name. Defaults to true.
    pci3ds Boolean

    Specifies the status of the PCI 3DS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2. The PCI 3DS compliance certification check cannot be disabled after being enabled.

    pciDss Boolean

    Specifies the status of the PCI DSS compliance certification check. Values are: true and false. This parameter must be used together with tls and cipher.

    NOTE: Tls must be set to TLS v1.2, and cipher must be set to cipher_2.

    policyId String
    Specifies the policy ID associated with the domain. If not specified, a new policy will be created automatically.
    protectStatus Number
    The protection status of domain, 0: suspended, 1: enabled. Default value is 1.
    protocol String
    The protocol type of the client. The options are HTTP and HTTPS.
    proxy Boolean

    Specifies whether a proxy is configured. Default value is false.

    NOTE: WAF forwards only HTTP/S traffic. So WAF cannot serve your non-HTTP/S traffic, such as UDP, SMTP, FTP, and basically all other non-HTTP/S traffic. If a proxy such as public network ELB (or Nginx) has been used, set proxy true to ensure that the WAF security policy takes effect for the real source IP address.

    region String
    The region in which to create the dedicated mode domain resource. If omitted, the provider-level region will be used. Changing this setting will push a new domain.
    servers List<Property Map>
    The server configuration list of the domain. A maximum of 80 can be configured. The server block supports:
    timeoutConfig Property Map
    Specifies the timeout configuration. The timeout_config structure is documented below.
    tls String
    Specifies the minimum required TLS version. Values are:

    • TLS v1.0
    • TLS v1.1
    • TLS v1.2
    • TLS v1.3
    trafficIdentifier Map<String>
    The traffic identifier of domain. Valid values are:
    wafDedicatedDomainV1Id String
    ID of the domain.

    Supporting Types

    WafDedicatedDomainV1Server, WafDedicatedDomainV1ServerArgs

    Address string
    IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new server.
    ClientProtocol string
    Protocol type of the client. Values are HTTP and HTTPS. Changing this creates a new server.
    Port double
    Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new server.
    ServerProtocol string
    Protocol used by WAF to forward client requests to the server. Values areHTTP and HTTPS. Changing this creates a new server.
    Type string
    Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new server.
    VpcId string
    The id of the vpc used by the server. Changing this creates a server.
    Address string
    IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new server.
    ClientProtocol string
    Protocol type of the client. Values are HTTP and HTTPS. Changing this creates a new server.
    Port float64
    Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new server.
    ServerProtocol string
    Protocol used by WAF to forward client requests to the server. Values areHTTP and HTTPS. Changing this creates a new server.
    Type string
    Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new server.
    VpcId string
    The id of the vpc used by the server. Changing this creates a server.
    address String
    IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new server.
    clientProtocol String
    Protocol type of the client. Values are HTTP and HTTPS. Changing this creates a new server.
    port Double
    Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new server.
    serverProtocol String
    Protocol used by WAF to forward client requests to the server. Values areHTTP and HTTPS. Changing this creates a new server.
    type String
    Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new server.
    vpcId String
    The id of the vpc used by the server. Changing this creates a server.
    address string
    IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new server.
    clientProtocol string
    Protocol type of the client. Values are HTTP and HTTPS. Changing this creates a new server.
    port number
    Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new server.
    serverProtocol string
    Protocol used by WAF to forward client requests to the server. Values areHTTP and HTTPS. Changing this creates a new server.
    type string
    Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new server.
    vpcId string
    The id of the vpc used by the server. Changing this creates a server.
    address str
    IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new server.
    client_protocol str
    Protocol type of the client. Values are HTTP and HTTPS. Changing this creates a new server.
    port float
    Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new server.
    server_protocol str
    Protocol used by WAF to forward client requests to the server. Values areHTTP and HTTPS. Changing this creates a new server.
    type str
    Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new server.
    vpc_id str
    The id of the vpc used by the server. Changing this creates a server.
    address String
    IP address or domain name of the web server that the client accesses. For example, 192.168.1.1 or www.example.com. Changing this creates a new server.
    clientProtocol String
    Protocol type of the client. Values are HTTP and HTTPS. Changing this creates a new server.
    port Number
    Port number used by the web server. The value ranges from 0 to 65535. Changing this creates a new server.
    serverProtocol String
    Protocol used by WAF to forward client requests to the server. Values areHTTP and HTTPS. Changing this creates a new server.
    type String
    Server network type, IPv4 or IPv6. Valid values are: ipv4 and ipv6. Changing this creates a new server.
    vpcId String
    The id of the vpc used by the server. Changing this creates a server.

    WafDedicatedDomainV1TimeoutConfig, WafDedicatedDomainV1TimeoutConfigArgs

    ConnectTimeout double
    Specifies the timeout in seconds for WAF to connect to the origin server.
    ReadTimeout double
    Specifies the timeout in seconds for WAF to receive responses from the origin server.
    SendTimeout double
    ConnectTimeout float64
    Specifies the timeout in seconds for WAF to connect to the origin server.
    ReadTimeout float64
    Specifies the timeout in seconds for WAF to receive responses from the origin server.
    SendTimeout float64
    connectTimeout Double
    Specifies the timeout in seconds for WAF to connect to the origin server.
    readTimeout Double
    Specifies the timeout in seconds for WAF to receive responses from the origin server.
    sendTimeout Double
    connectTimeout number
    Specifies the timeout in seconds for WAF to connect to the origin server.
    readTimeout number
    Specifies the timeout in seconds for WAF to receive responses from the origin server.
    sendTimeout number
    connect_timeout float
    Specifies the timeout in seconds for WAF to connect to the origin server.
    read_timeout float
    Specifies the timeout in seconds for WAF to receive responses from the origin server.
    send_timeout float
    connectTimeout Number
    Specifies the timeout in seconds for WAF to connect to the origin server.
    readTimeout Number
    Specifies the timeout in seconds for WAF to receive responses from the origin server.
    sendTimeout Number

    Import

    WAF dedicated domain can be imported using the id, e.g.

    bash

    $ pulumi import opentelekomcloud:index/wafDedicatedDomainV1:WafDedicatedDomainV1 dom <id>

    To learn more about importing existing cloud resources, see Importing resources.

    Package Details

    Repository
    opentelekomcloud opentelekomcloud/terraform-provider-opentelekomcloud
    License
    Notes
    This Pulumi package is based on the opentelekomcloud Terraform Provider.
    opentelekomcloud logo
    opentelekomcloud 1.36.35 published on Monday, Apr 14, 2025 by opentelekomcloud
    opentelekomcloud/terraform-provider-opentelekomcloud