@pulumi/juniper-mist 0.0.18 → 0.0.20
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/device/ap.d.ts +0 -2
- package/device/ap.js +0 -2
- package/device/ap.js.map +1 -1
- package/device/gateway.d.ts +0 -2
- package/device/gateway.js +0 -2
- package/device/gateway.js.map +1 -1
- package/device/switch.d.ts +12 -8
- package/device/switch.js +2 -4
- package/device/switch.js.map +1 -1
- package/org/networktemplate.d.ts +18 -0
- package/org/networktemplate.js +2 -0
- package/org/networktemplate.js.map +1 -1
- package/org/setting.d.ts +3 -0
- package/org/setting.js +2 -0
- package/org/setting.js.map +1 -1
- package/package.json +2 -2
- package/site/networktemplate.d.ts +18 -0
- package/site/networktemplate.js +2 -0
- package/site/networktemplate.js.map +1 -1
- package/site/setting.d.ts +24 -9
- package/site/setting.js.map +1 -1
- package/types/input.d.ts +259 -58
- package/types/output.d.ts +276 -75
package/types/input.d.ts
CHANGED
|
@@ -549,12 +549,16 @@ export declare namespace device {
|
|
|
549
549
|
* by default, we'll re-advertise all learned BGP routers toward overlay
|
|
550
550
|
*/
|
|
551
551
|
noReadvertiseToOverlay?: pulumi.Input<boolean>;
|
|
552
|
+
/**
|
|
553
|
+
* if `type`==`tunnel`
|
|
554
|
+
*/
|
|
555
|
+
tunnelName?: pulumi.Input<string>;
|
|
552
556
|
/**
|
|
553
557
|
* enum: `external`, `internal`
|
|
554
558
|
*/
|
|
555
559
|
type?: pulumi.Input<string>;
|
|
556
560
|
/**
|
|
557
|
-
* network name. enum: `lan`, `vpn`, `wan`
|
|
561
|
+
* network name. enum: `lan`, `tunnel`, `vpn`, `wan`
|
|
558
562
|
*/
|
|
559
563
|
via?: pulumi.Input<string>;
|
|
560
564
|
vpnName?: pulumi.Input<string>;
|
|
@@ -1318,7 +1322,7 @@ export declare namespace device {
|
|
|
1318
1322
|
}
|
|
1319
1323
|
interface GatewayServicePolicy {
|
|
1320
1324
|
/**
|
|
1321
|
-
* enum: `allow`, `deny`
|
|
1325
|
+
* Required when `servicepolicyId` is not defined, optional otherwise (override the servicepolicy action). enum: `allow`, `deny`
|
|
1322
1326
|
*/
|
|
1323
1327
|
action?: pulumi.Input<string>;
|
|
1324
1328
|
/**
|
|
@@ -1331,6 +1335,9 @@ export declare namespace device {
|
|
|
1331
1335
|
* access within the same VRF
|
|
1332
1336
|
*/
|
|
1333
1337
|
localRouting?: pulumi.Input<boolean>;
|
|
1338
|
+
/**
|
|
1339
|
+
* Required when `servicepolicyId` is not defined, optional otherwise (override the servicepolicy name)
|
|
1340
|
+
*/
|
|
1334
1341
|
name?: pulumi.Input<string>;
|
|
1335
1342
|
/**
|
|
1336
1343
|
* by default, we derive all paths available and use them
|
|
@@ -1341,7 +1348,13 @@ export declare namespace device {
|
|
|
1341
1348
|
* used to link servicepolicy defined at org level and overwrite some attributes
|
|
1342
1349
|
*/
|
|
1343
1350
|
servicepolicyId?: pulumi.Input<string>;
|
|
1351
|
+
/**
|
|
1352
|
+
* Required when `servicepolicyId` is not defined. List of Applications / Desctinations
|
|
1353
|
+
*/
|
|
1344
1354
|
services?: pulumi.Input<pulumi.Input<string>[]>;
|
|
1355
|
+
/**
|
|
1356
|
+
* Required when `servicepolicyId` is not defined. List of Networks / Users
|
|
1357
|
+
*/
|
|
1345
1358
|
tenants?: pulumi.Input<pulumi.Input<string>[]>;
|
|
1346
1359
|
}
|
|
1347
1360
|
interface GatewayServicePolicyAppqoe {
|
|
@@ -1435,10 +1448,6 @@ export declare namespace device {
|
|
|
1435
1448
|
enable?: pulumi.Input<boolean>;
|
|
1436
1449
|
latlng?: pulumi.Input<inputs.device.GatewayTunnelConfigsAutoProvisionLatlng>;
|
|
1437
1450
|
primary?: pulumi.Input<inputs.device.GatewayTunnelConfigsAutoProvisionPrimary>;
|
|
1438
|
-
/**
|
|
1439
|
-
* enum: `APAC`, `Americas`, `EMEA`, `auto`
|
|
1440
|
-
*/
|
|
1441
|
-
region?: pulumi.Input<string>;
|
|
1442
1451
|
secondary?: pulumi.Input<inputs.device.GatewayTunnelConfigsAutoProvisionSecondary>;
|
|
1443
1452
|
}
|
|
1444
1453
|
interface GatewayTunnelConfigsAutoProvisionLatlng {
|
|
@@ -1807,11 +1816,11 @@ export declare namespace device {
|
|
|
1807
1816
|
*/
|
|
1808
1817
|
servers6s?: pulumi.Input<pulumi.Input<string>[]>;
|
|
1809
1818
|
/**
|
|
1810
|
-
* enum: `
|
|
1819
|
+
* enum: `none`, `relay` (DHCP Relay), `server` (DHCP Server)
|
|
1811
1820
|
*/
|
|
1812
1821
|
type?: pulumi.Input<string>;
|
|
1813
1822
|
/**
|
|
1814
|
-
* enum: `
|
|
1823
|
+
* enum: `none`, `relay` (DHCP Relay), `server` (DHCP Server)
|
|
1815
1824
|
*/
|
|
1816
1825
|
type6?: pulumi.Input<string>;
|
|
1817
1826
|
/**
|
|
@@ -1889,6 +1898,9 @@ export declare namespace device {
|
|
|
1889
1898
|
preference?: pulumi.Input<number>;
|
|
1890
1899
|
}
|
|
1891
1900
|
interface SwitchIpConfig {
|
|
1901
|
+
/**
|
|
1902
|
+
* Required when `type`==`static`
|
|
1903
|
+
*/
|
|
1892
1904
|
dns?: pulumi.Input<pulumi.Input<string>[]>;
|
|
1893
1905
|
dnsSuffixes?: pulumi.Input<pulumi.Input<string>[]>;
|
|
1894
1906
|
gateway?: pulumi.Input<string>;
|
|
@@ -1947,27 +1959,49 @@ export declare namespace device {
|
|
|
1947
1959
|
*/
|
|
1948
1960
|
useMgmtVrfForHostOut?: pulumi.Input<boolean>;
|
|
1949
1961
|
}
|
|
1950
|
-
interface
|
|
1962
|
+
interface SwitchOspfAreas {
|
|
1963
|
+
includeLoopback?: pulumi.Input<boolean>;
|
|
1964
|
+
networks: pulumi.Input<{
|
|
1965
|
+
[key: string]: pulumi.Input<inputs.device.SwitchOspfAreasNetworks>;
|
|
1966
|
+
}>;
|
|
1951
1967
|
/**
|
|
1952
|
-
* OSPF
|
|
1968
|
+
* OSPF type. enum: `default`, `nssa`, `stub`
|
|
1953
1969
|
*/
|
|
1954
|
-
|
|
1955
|
-
|
|
1970
|
+
type?: pulumi.Input<string>;
|
|
1971
|
+
}
|
|
1972
|
+
interface SwitchOspfAreasNetworks {
|
|
1973
|
+
/**
|
|
1974
|
+
* Required if `authType`==`md5`. Property key is the key number
|
|
1975
|
+
*/
|
|
1976
|
+
authKeys?: pulumi.Input<{
|
|
1977
|
+
[key: string]: pulumi.Input<string>;
|
|
1956
1978
|
}>;
|
|
1957
1979
|
/**
|
|
1958
|
-
*
|
|
1980
|
+
* Required if `authType`==`password`, the password, max length is 8
|
|
1959
1981
|
*/
|
|
1960
|
-
|
|
1982
|
+
authPassword?: pulumi.Input<string>;
|
|
1961
1983
|
/**
|
|
1962
|
-
*
|
|
1984
|
+
* auth type. enum: `md5`, `none`, `password`
|
|
1963
1985
|
*/
|
|
1964
|
-
|
|
1965
|
-
|
|
1966
|
-
|
|
1986
|
+
authType?: pulumi.Input<string>;
|
|
1987
|
+
bfdMinimumInterval?: pulumi.Input<number>;
|
|
1988
|
+
deadInterval?: pulumi.Input<number>;
|
|
1989
|
+
exportPolicy?: pulumi.Input<string>;
|
|
1990
|
+
helloInterval?: pulumi.Input<number>;
|
|
1991
|
+
importPolicy?: pulumi.Input<string>;
|
|
1992
|
+
/**
|
|
1993
|
+
* interface type (nbma = non-broadcast multi-access). enum: `broadcast`, `nbma`, `p2mp`, `p2p`
|
|
1994
|
+
*/
|
|
1995
|
+
interfaceType?: pulumi.Input<string>;
|
|
1996
|
+
metric?: pulumi.Input<number>;
|
|
1997
|
+
/**
|
|
1998
|
+
* by default, we'll re-advertise all learned OSPF routes toward overlay
|
|
1999
|
+
*/
|
|
2000
|
+
noReadvertiseToOverlay?: pulumi.Input<boolean>;
|
|
1967
2001
|
/**
|
|
1968
|
-
*
|
|
2002
|
+
* whether to send OSPF-Hello
|
|
1969
2003
|
*/
|
|
1970
|
-
|
|
2004
|
+
passive?: pulumi.Input<boolean>;
|
|
1971
2005
|
}
|
|
1972
2006
|
interface SwitchOtherIpConfigs {
|
|
1973
2007
|
/**
|
|
@@ -2137,6 +2171,10 @@ export declare namespace device {
|
|
|
2137
2171
|
* Only if `mode`!=`dynamic` and `enableMacAuth`==`true`
|
|
2138
2172
|
*/
|
|
2139
2173
|
macAuthOnly?: pulumi.Input<boolean>;
|
|
2174
|
+
/**
|
|
2175
|
+
* Only if `mode`!=`dynamic` + `enableMacAuth`==`true` + `macAuthOnly`==`false`, dot1x will be given priority then mac_auth. Enable this to prefer macAuth over dot1x.
|
|
2176
|
+
*/
|
|
2177
|
+
macAuthPreferred?: pulumi.Input<boolean>;
|
|
2140
2178
|
/**
|
|
2141
2179
|
* Only if `mode`!=`dynamic` and `enableMacAuth` ==`true`. This type is ignored if mistNac is enabled. enum: `eap-md5`, `eap-peap`, `pap`
|
|
2142
2180
|
*/
|
|
@@ -2177,10 +2215,6 @@ export declare namespace device {
|
|
|
2177
2215
|
* Only if `mode`!=`dynamic` and `portAuth`=`dot1x` reauthentication interval range
|
|
2178
2216
|
*/
|
|
2179
2217
|
reauthInterval?: pulumi.Input<number>;
|
|
2180
|
-
/**
|
|
2181
|
-
* Only if `mode`!=`dynamic` and `portAuth`==`dot1x` when radius server reject / fails
|
|
2182
|
-
*/
|
|
2183
|
-
rejectedNetwork?: pulumi.Input<string>;
|
|
2184
2218
|
/**
|
|
2185
2219
|
* Only if `mode`==`dynamic` Control when the DPC port should be changed to the default port usage. enum: `linkDown`, `none` (let the DPC port keep at the current port usage)
|
|
2186
2220
|
*/
|
|
@@ -2189,6 +2223,14 @@ export declare namespace device {
|
|
|
2189
2223
|
* Only if `mode`==`dynamic`
|
|
2190
2224
|
*/
|
|
2191
2225
|
rules?: pulumi.Input<pulumi.Input<inputs.device.SwitchPortUsagesRule>[]>;
|
|
2226
|
+
/**
|
|
2227
|
+
* Only if `mode`!=`dynamic` and `portAuth`==`dot1x` sets server fail fallback vlan
|
|
2228
|
+
*/
|
|
2229
|
+
serverFailNetwork?: pulumi.Input<string>;
|
|
2230
|
+
/**
|
|
2231
|
+
* Only if `mode`!=`dynamic` and `portAuth`==`dot1x` when radius server reject / fails
|
|
2232
|
+
*/
|
|
2233
|
+
serverRejectNetwork?: pulumi.Input<string>;
|
|
2192
2234
|
/**
|
|
2193
2235
|
* Only if `mode`!=`dynamic` speed, default is auto to automatically negotiate speed
|
|
2194
2236
|
*/
|
|
@@ -2316,6 +2358,10 @@ export declare namespace device {
|
|
|
2316
2358
|
* Auth port of RADIUS server
|
|
2317
2359
|
*/
|
|
2318
2360
|
port?: pulumi.Input<number>;
|
|
2361
|
+
/**
|
|
2362
|
+
* whether to require Message-Authenticator in requests
|
|
2363
|
+
*/
|
|
2364
|
+
requireMessageAuthenticator?: pulumi.Input<boolean>;
|
|
2319
2365
|
/**
|
|
2320
2366
|
* secret of RADIUS server
|
|
2321
2367
|
*/
|
|
@@ -2628,9 +2674,9 @@ export declare namespace device {
|
|
|
2628
2674
|
}
|
|
2629
2675
|
interface SwitchStpConfig {
|
|
2630
2676
|
/**
|
|
2631
|
-
*
|
|
2677
|
+
* ignored for switches participating in EVPN
|
|
2632
2678
|
*/
|
|
2633
|
-
|
|
2679
|
+
vstpEnabled?: pulumi.Input<boolean>;
|
|
2634
2680
|
}
|
|
2635
2681
|
interface SwitchSwitchMgmt {
|
|
2636
2682
|
/**
|
|
@@ -2653,6 +2699,7 @@ export declare namespace device {
|
|
|
2653
2699
|
* Enable to provide the FQDN with DHCP option 81
|
|
2654
2700
|
*/
|
|
2655
2701
|
dhcpOptionFqdn?: pulumi.Input<boolean>;
|
|
2702
|
+
disableOobDownAlarm?: pulumi.Input<boolean>;
|
|
2656
2703
|
/**
|
|
2657
2704
|
* Property key is the user name. For Local user authentication
|
|
2658
2705
|
*/
|
|
@@ -3314,12 +3361,16 @@ export declare namespace org {
|
|
|
3314
3361
|
* by default, we'll re-advertise all learned BGP routers toward overlay
|
|
3315
3362
|
*/
|
|
3316
3363
|
noReadvertiseToOverlay?: pulumi.Input<boolean>;
|
|
3364
|
+
/**
|
|
3365
|
+
* if `type`==`tunnel`
|
|
3366
|
+
*/
|
|
3367
|
+
tunnelName?: pulumi.Input<string>;
|
|
3317
3368
|
/**
|
|
3318
3369
|
* enum: `external`, `internal`
|
|
3319
3370
|
*/
|
|
3320
3371
|
type?: pulumi.Input<string>;
|
|
3321
3372
|
/**
|
|
3322
|
-
* network name. enum: `lan`, `vpn`, `wan`
|
|
3373
|
+
* network name. enum: `lan`, `tunnel`, `vpn`, `wan`
|
|
3323
3374
|
*/
|
|
3324
3375
|
via?: pulumi.Input<string>;
|
|
3325
3376
|
vpnName?: pulumi.Input<string>;
|
|
@@ -4060,7 +4111,7 @@ export declare namespace org {
|
|
|
4060
4111
|
}
|
|
4061
4112
|
interface DeviceprofileGatewayServicePolicy {
|
|
4062
4113
|
/**
|
|
4063
|
-
* enum: `allow`, `deny`
|
|
4114
|
+
* Required when `servicepolicyId` is not defined, optional otherwise (override the servicepolicy action). enum: `allow`, `deny`
|
|
4064
4115
|
*/
|
|
4065
4116
|
action?: pulumi.Input<string>;
|
|
4066
4117
|
/**
|
|
@@ -4073,6 +4124,9 @@ export declare namespace org {
|
|
|
4073
4124
|
* access within the same VRF
|
|
4074
4125
|
*/
|
|
4075
4126
|
localRouting?: pulumi.Input<boolean>;
|
|
4127
|
+
/**
|
|
4128
|
+
* Required when `servicepolicyId` is not defined, optional otherwise (override the servicepolicy name)
|
|
4129
|
+
*/
|
|
4076
4130
|
name?: pulumi.Input<string>;
|
|
4077
4131
|
/**
|
|
4078
4132
|
* by default, we derive all paths available and use them
|
|
@@ -4083,7 +4137,13 @@ export declare namespace org {
|
|
|
4083
4137
|
* used to link servicepolicy defined at org level and overwrite some attributes
|
|
4084
4138
|
*/
|
|
4085
4139
|
servicepolicyId?: pulumi.Input<string>;
|
|
4140
|
+
/**
|
|
4141
|
+
* Required when `servicepolicyId` is not defined. List of Applications / Desctinations
|
|
4142
|
+
*/
|
|
4086
4143
|
services?: pulumi.Input<pulumi.Input<string>[]>;
|
|
4144
|
+
/**
|
|
4145
|
+
* Required when `servicepolicyId` is not defined. List of Networks / Users
|
|
4146
|
+
*/
|
|
4087
4147
|
tenants?: pulumi.Input<pulumi.Input<string>[]>;
|
|
4088
4148
|
}
|
|
4089
4149
|
interface DeviceprofileGatewayServicePolicyAppqoe {
|
|
@@ -4177,10 +4237,6 @@ export declare namespace org {
|
|
|
4177
4237
|
enable?: pulumi.Input<boolean>;
|
|
4178
4238
|
latlng?: pulumi.Input<inputs.org.DeviceprofileGatewayTunnelConfigsAutoProvisionLatlng>;
|
|
4179
4239
|
primary?: pulumi.Input<inputs.org.DeviceprofileGatewayTunnelConfigsAutoProvisionPrimary>;
|
|
4180
|
-
/**
|
|
4181
|
-
* enum: `APAC`, `Americas`, `EMEA`, `auto`
|
|
4182
|
-
*/
|
|
4183
|
-
region?: pulumi.Input<string>;
|
|
4184
4240
|
secondary?: pulumi.Input<inputs.org.DeviceprofileGatewayTunnelConfigsAutoProvisionSecondary>;
|
|
4185
4241
|
}
|
|
4186
4242
|
interface DeviceprofileGatewayTunnelConfigsAutoProvisionLatlng {
|
|
@@ -4439,12 +4495,16 @@ export declare namespace org {
|
|
|
4439
4495
|
* by default, we'll re-advertise all learned BGP routers toward overlay
|
|
4440
4496
|
*/
|
|
4441
4497
|
noReadvertiseToOverlay?: pulumi.Input<boolean>;
|
|
4498
|
+
/**
|
|
4499
|
+
* if `type`==`tunnel`
|
|
4500
|
+
*/
|
|
4501
|
+
tunnelName?: pulumi.Input<string>;
|
|
4442
4502
|
/**
|
|
4443
4503
|
* enum: `external`, `internal`
|
|
4444
4504
|
*/
|
|
4445
4505
|
type?: pulumi.Input<string>;
|
|
4446
4506
|
/**
|
|
4447
|
-
* network name. enum: `lan`, `vpn`, `wan`
|
|
4507
|
+
* network name. enum: `lan`, `tunnel`, `vpn`, `wan`
|
|
4448
4508
|
*/
|
|
4449
4509
|
via?: pulumi.Input<string>;
|
|
4450
4510
|
vpnName?: pulumi.Input<string>;
|
|
@@ -5185,7 +5245,7 @@ export declare namespace org {
|
|
|
5185
5245
|
}
|
|
5186
5246
|
interface GatewaytemplateServicePolicy {
|
|
5187
5247
|
/**
|
|
5188
|
-
* enum: `allow`, `deny`
|
|
5248
|
+
* Required when `servicepolicyId` is not defined, optional otherwise (override the servicepolicy action). enum: `allow`, `deny`
|
|
5189
5249
|
*/
|
|
5190
5250
|
action?: pulumi.Input<string>;
|
|
5191
5251
|
/**
|
|
@@ -5198,6 +5258,9 @@ export declare namespace org {
|
|
|
5198
5258
|
* access within the same VRF
|
|
5199
5259
|
*/
|
|
5200
5260
|
localRouting?: pulumi.Input<boolean>;
|
|
5261
|
+
/**
|
|
5262
|
+
* Required when `servicepolicyId` is not defined, optional otherwise (override the servicepolicy name)
|
|
5263
|
+
*/
|
|
5201
5264
|
name?: pulumi.Input<string>;
|
|
5202
5265
|
/**
|
|
5203
5266
|
* by default, we derive all paths available and use them
|
|
@@ -5208,7 +5271,13 @@ export declare namespace org {
|
|
|
5208
5271
|
* used to link servicepolicy defined at org level and overwrite some attributes
|
|
5209
5272
|
*/
|
|
5210
5273
|
servicepolicyId?: pulumi.Input<string>;
|
|
5274
|
+
/**
|
|
5275
|
+
* Required when `servicepolicyId` is not defined. List of Applications / Desctinations
|
|
5276
|
+
*/
|
|
5211
5277
|
services?: pulumi.Input<pulumi.Input<string>[]>;
|
|
5278
|
+
/**
|
|
5279
|
+
* Required when `servicepolicyId` is not defined. List of Networks / Users
|
|
5280
|
+
*/
|
|
5212
5281
|
tenants?: pulumi.Input<pulumi.Input<string>[]>;
|
|
5213
5282
|
}
|
|
5214
5283
|
interface GatewaytemplateServicePolicyAppqoe {
|
|
@@ -5302,10 +5371,6 @@ export declare namespace org {
|
|
|
5302
5371
|
enable?: pulumi.Input<boolean>;
|
|
5303
5372
|
latlng?: pulumi.Input<inputs.org.GatewaytemplateTunnelConfigsAutoProvisionLatlng>;
|
|
5304
5373
|
primary?: pulumi.Input<inputs.org.GatewaytemplateTunnelConfigsAutoProvisionPrimary>;
|
|
5305
|
-
/**
|
|
5306
|
-
* enum: `APAC`, `Americas`, `EMEA`, `auto`
|
|
5307
|
-
*/
|
|
5308
|
-
region?: pulumi.Input<string>;
|
|
5309
5374
|
secondary?: pulumi.Input<inputs.org.GatewaytemplateTunnelConfigsAutoProvisionSecondary>;
|
|
5310
5375
|
}
|
|
5311
5376
|
interface GatewaytemplateTunnelConfigsAutoProvisionLatlng {
|
|
@@ -5872,6 +5937,50 @@ export declare namespace org {
|
|
|
5872
5937
|
subnet?: pulumi.Input<string>;
|
|
5873
5938
|
vlanId: pulumi.Input<string>;
|
|
5874
5939
|
}
|
|
5940
|
+
interface NetworktemplateOspfAreas {
|
|
5941
|
+
includeLoopback?: pulumi.Input<boolean>;
|
|
5942
|
+
networks: pulumi.Input<{
|
|
5943
|
+
[key: string]: pulumi.Input<inputs.org.NetworktemplateOspfAreasNetworks>;
|
|
5944
|
+
}>;
|
|
5945
|
+
/**
|
|
5946
|
+
* OSPF type. enum: `default`, `nssa`, `stub`
|
|
5947
|
+
*/
|
|
5948
|
+
type?: pulumi.Input<string>;
|
|
5949
|
+
}
|
|
5950
|
+
interface NetworktemplateOspfAreasNetworks {
|
|
5951
|
+
/**
|
|
5952
|
+
* Required if `authType`==`md5`. Property key is the key number
|
|
5953
|
+
*/
|
|
5954
|
+
authKeys?: pulumi.Input<{
|
|
5955
|
+
[key: string]: pulumi.Input<string>;
|
|
5956
|
+
}>;
|
|
5957
|
+
/**
|
|
5958
|
+
* Required if `authType`==`password`, the password, max length is 8
|
|
5959
|
+
*/
|
|
5960
|
+
authPassword?: pulumi.Input<string>;
|
|
5961
|
+
/**
|
|
5962
|
+
* auth type. enum: `md5`, `none`, `password`
|
|
5963
|
+
*/
|
|
5964
|
+
authType?: pulumi.Input<string>;
|
|
5965
|
+
bfdMinimumInterval?: pulumi.Input<number>;
|
|
5966
|
+
deadInterval?: pulumi.Input<number>;
|
|
5967
|
+
exportPolicy?: pulumi.Input<string>;
|
|
5968
|
+
helloInterval?: pulumi.Input<number>;
|
|
5969
|
+
importPolicy?: pulumi.Input<string>;
|
|
5970
|
+
/**
|
|
5971
|
+
* interface type (nbma = non-broadcast multi-access). enum: `broadcast`, `nbma`, `p2mp`, `p2p`
|
|
5972
|
+
*/
|
|
5973
|
+
interfaceType?: pulumi.Input<string>;
|
|
5974
|
+
metric?: pulumi.Input<number>;
|
|
5975
|
+
/**
|
|
5976
|
+
* by default, we'll re-advertise all learned OSPF routes toward overlay
|
|
5977
|
+
*/
|
|
5978
|
+
noReadvertiseToOverlay?: pulumi.Input<boolean>;
|
|
5979
|
+
/**
|
|
5980
|
+
* whether to send OSPF-Hello
|
|
5981
|
+
*/
|
|
5982
|
+
passive?: pulumi.Input<boolean>;
|
|
5983
|
+
}
|
|
5875
5984
|
interface NetworktemplatePortMirroring {
|
|
5876
5985
|
/**
|
|
5877
5986
|
* at least one of the `inputPortIdsIngress`, `inputPortIdsEgress` or `inputNetworksIngress ` should be specified
|
|
@@ -5958,6 +6067,10 @@ export declare namespace org {
|
|
|
5958
6067
|
* Only if `mode`!=`dynamic` and `enableMacAuth`==`true`
|
|
5959
6068
|
*/
|
|
5960
6069
|
macAuthOnly?: pulumi.Input<boolean>;
|
|
6070
|
+
/**
|
|
6071
|
+
* Only if `mode`!=`dynamic` + `enableMacAuth`==`true` + `macAuthOnly`==`false`, dot1x will be given priority then mac_auth. Enable this to prefer macAuth over dot1x.
|
|
6072
|
+
*/
|
|
6073
|
+
macAuthPreferred?: pulumi.Input<boolean>;
|
|
5961
6074
|
/**
|
|
5962
6075
|
* Only if `mode`!=`dynamic` and `enableMacAuth` ==`true`. This type is ignored if mistNac is enabled. enum: `eap-md5`, `eap-peap`, `pap`
|
|
5963
6076
|
*/
|
|
@@ -5998,10 +6111,6 @@ export declare namespace org {
|
|
|
5998
6111
|
* Only if `mode`!=`dynamic` and `portAuth`=`dot1x` reauthentication interval range
|
|
5999
6112
|
*/
|
|
6000
6113
|
reauthInterval?: pulumi.Input<number>;
|
|
6001
|
-
/**
|
|
6002
|
-
* Only if `mode`!=`dynamic` and `portAuth`==`dot1x` when radius server reject / fails
|
|
6003
|
-
*/
|
|
6004
|
-
rejectedNetwork?: pulumi.Input<string>;
|
|
6005
6114
|
/**
|
|
6006
6115
|
* Only if `mode`==`dynamic` Control when the DPC port should be changed to the default port usage. enum: `linkDown`, `none` (let the DPC port keep at the current port usage)
|
|
6007
6116
|
*/
|
|
@@ -6010,6 +6119,14 @@ export declare namespace org {
|
|
|
6010
6119
|
* Only if `mode`==`dynamic`
|
|
6011
6120
|
*/
|
|
6012
6121
|
rules?: pulumi.Input<pulumi.Input<inputs.org.NetworktemplatePortUsagesRule>[]>;
|
|
6122
|
+
/**
|
|
6123
|
+
* Only if `mode`!=`dynamic` and `portAuth`==`dot1x` sets server fail fallback vlan
|
|
6124
|
+
*/
|
|
6125
|
+
serverFailNetwork?: pulumi.Input<string>;
|
|
6126
|
+
/**
|
|
6127
|
+
* Only if `mode`!=`dynamic` and `portAuth`==`dot1x` when radius server reject / fails
|
|
6128
|
+
*/
|
|
6129
|
+
serverRejectNetwork?: pulumi.Input<string>;
|
|
6013
6130
|
/**
|
|
6014
6131
|
* Only if `mode`!=`dynamic` speed, default is auto to automatically negotiate speed
|
|
6015
6132
|
*/
|
|
@@ -6137,6 +6254,10 @@ export declare namespace org {
|
|
|
6137
6254
|
* Auth port of RADIUS server
|
|
6138
6255
|
*/
|
|
6139
6256
|
port?: pulumi.Input<number>;
|
|
6257
|
+
/**
|
|
6258
|
+
* whether to require Message-Authenticator in requests
|
|
6259
|
+
*/
|
|
6260
|
+
requireMessageAuthenticator?: pulumi.Input<boolean>;
|
|
6140
6261
|
/**
|
|
6141
6262
|
* secret of RADIUS server
|
|
6142
6263
|
*/
|
|
@@ -6609,6 +6730,7 @@ export declare namespace org {
|
|
|
6609
6730
|
* Enable to provide the FQDN with DHCP option 81
|
|
6610
6731
|
*/
|
|
6611
6732
|
dhcpOptionFqdn?: pulumi.Input<boolean>;
|
|
6733
|
+
disableOobDownAlarm?: pulumi.Input<boolean>;
|
|
6612
6734
|
/**
|
|
6613
6735
|
* Property key is the user name. For Local user authentication
|
|
6614
6736
|
*/
|
|
@@ -7146,6 +7268,10 @@ export declare namespace org {
|
|
|
7146
7268
|
* use this IDP when no explicit realm present in the incoming username/CN OR when no IDP is explicitly mapped to the incoming realm.
|
|
7147
7269
|
*/
|
|
7148
7270
|
defaultIdpId?: pulumi.Input<string>;
|
|
7271
|
+
/**
|
|
7272
|
+
* to disable RSAE_PSS_SHA256, RSAE_PSS_SHA384, RSAE_PSS_SHA512 from server side. see https://www.openssl.org/docs/man3.0/man1/openssl-ciphers.html
|
|
7273
|
+
*/
|
|
7274
|
+
disableRsaeAlgorithms?: pulumi.Input<boolean>;
|
|
7149
7275
|
/**
|
|
7150
7276
|
* eap ssl security level
|
|
7151
7277
|
* see https://www.openssl.org/docs/man1.1.1/man3/SSL_CTX_set_security_level.html#DEFAULT-CALLBACK-BEHAVIOUR
|
|
@@ -7156,6 +7282,14 @@ export declare namespace org {
|
|
|
7156
7282
|
* For strict GDPR compliancy NAC POD failover would only happen between the PODs located within the EU environment, and no authentication would take place outside of EU. This is an org setting that is applicable to WLANs, switch templates, mxedge clusters that have mistNac enabled
|
|
7157
7283
|
*/
|
|
7158
7284
|
euOnly?: pulumi.Input<boolean>;
|
|
7285
|
+
/**
|
|
7286
|
+
* allow customer to choose the EAP-TLS client certificate's field to use for IDP Machine Groups lookup
|
|
7287
|
+
*/
|
|
7288
|
+
idpMachineCertLookupField?: pulumi.Input<string>;
|
|
7289
|
+
/**
|
|
7290
|
+
* allow customer to choose the EAP-TLS client certificate's field to use for IDP User Groups lookup
|
|
7291
|
+
*/
|
|
7292
|
+
idpUserCertLookupField?: pulumi.Input<string>;
|
|
7159
7293
|
idps?: pulumi.Input<pulumi.Input<inputs.org.SettingMistNacIdp>[]>;
|
|
7160
7294
|
/**
|
|
7161
7295
|
* radius server cert to be presented in EAP TLS
|
|
@@ -7212,9 +7346,9 @@ export declare namespace org {
|
|
|
7212
7346
|
*/
|
|
7213
7347
|
enabled?: pulumi.Input<boolean>;
|
|
7214
7348
|
/**
|
|
7215
|
-
*
|
|
7349
|
+
* password expiry in days
|
|
7216
7350
|
*/
|
|
7217
|
-
|
|
7351
|
+
expiryInDays?: pulumi.Input<number>;
|
|
7218
7352
|
/**
|
|
7219
7353
|
* required password length
|
|
7220
7354
|
*/
|
|
@@ -7235,6 +7369,15 @@ export declare namespace org {
|
|
|
7235
7369
|
*/
|
|
7236
7370
|
maxPktLen?: pulumi.Input<number>;
|
|
7237
7371
|
}
|
|
7372
|
+
interface SettingPortChannelization {
|
|
7373
|
+
/**
|
|
7374
|
+
* Property key is the interface name or range (e.g. `et-0/0/47`, `et-0/0/48-49`), Property value is the interface speed (e.g. `25g`, `50g`)
|
|
7375
|
+
*/
|
|
7376
|
+
config?: pulumi.Input<{
|
|
7377
|
+
[key: string]: pulumi.Input<string>;
|
|
7378
|
+
}>;
|
|
7379
|
+
enabled?: pulumi.Input<boolean>;
|
|
7380
|
+
}
|
|
7238
7381
|
interface SettingSecurity {
|
|
7239
7382
|
/**
|
|
7240
7383
|
* whether to disable local SSH (by default, local SSH is enabled with allowMist in Org is enabled
|
|
@@ -8804,6 +8947,50 @@ export declare namespace site {
|
|
|
8804
8947
|
subnet?: pulumi.Input<string>;
|
|
8805
8948
|
vlanId: pulumi.Input<string>;
|
|
8806
8949
|
}
|
|
8950
|
+
interface NetworktemplateOspfAreas {
|
|
8951
|
+
includeLoopback?: pulumi.Input<boolean>;
|
|
8952
|
+
ospfNetworks: pulumi.Input<{
|
|
8953
|
+
[key: string]: pulumi.Input<inputs.site.NetworktemplateOspfAreasOspfNetworks>;
|
|
8954
|
+
}>;
|
|
8955
|
+
/**
|
|
8956
|
+
* OSPF type. enum: `default`, `nssa`, `stub`
|
|
8957
|
+
*/
|
|
8958
|
+
type?: pulumi.Input<string>;
|
|
8959
|
+
}
|
|
8960
|
+
interface NetworktemplateOspfAreasOspfNetworks {
|
|
8961
|
+
/**
|
|
8962
|
+
* Required if `authType`==`md5`. Property key is the key number
|
|
8963
|
+
*/
|
|
8964
|
+
authKeys?: pulumi.Input<{
|
|
8965
|
+
[key: string]: pulumi.Input<string>;
|
|
8966
|
+
}>;
|
|
8967
|
+
/**
|
|
8968
|
+
* Required if `authType`==`password`, the password, max length is 8
|
|
8969
|
+
*/
|
|
8970
|
+
authPassword?: pulumi.Input<string>;
|
|
8971
|
+
/**
|
|
8972
|
+
* auth type. enum: `md5`, `none`, `password`
|
|
8973
|
+
*/
|
|
8974
|
+
authType?: pulumi.Input<string>;
|
|
8975
|
+
bfdMinimumInterval?: pulumi.Input<number>;
|
|
8976
|
+
deadInterval?: pulumi.Input<number>;
|
|
8977
|
+
exportPolicy?: pulumi.Input<string>;
|
|
8978
|
+
helloInterval?: pulumi.Input<number>;
|
|
8979
|
+
importPolicy?: pulumi.Input<string>;
|
|
8980
|
+
/**
|
|
8981
|
+
* interface type (nbma = non-broadcast multi-access). enum: `broadcast`, `nbma`, `p2mp`, `p2p`
|
|
8982
|
+
*/
|
|
8983
|
+
interfaceType?: pulumi.Input<string>;
|
|
8984
|
+
metric?: pulumi.Input<number>;
|
|
8985
|
+
/**
|
|
8986
|
+
* by default, we'll re-advertise all learned OSPF routes toward overlay
|
|
8987
|
+
*/
|
|
8988
|
+
noReadvertiseToOverlay?: pulumi.Input<boolean>;
|
|
8989
|
+
/**
|
|
8990
|
+
* whether to send OSPF-Hello
|
|
8991
|
+
*/
|
|
8992
|
+
passive?: pulumi.Input<boolean>;
|
|
8993
|
+
}
|
|
8807
8994
|
interface NetworktemplatePortMirroring {
|
|
8808
8995
|
/**
|
|
8809
8996
|
* at least one of the `inputPortIdsIngress`, `inputPortIdsEgress` or `inputNetworksIngress ` should be specified
|
|
@@ -8890,6 +9077,10 @@ export declare namespace site {
|
|
|
8890
9077
|
* Only if `mode`!=`dynamic` and `enableMacAuth`==`true`
|
|
8891
9078
|
*/
|
|
8892
9079
|
macAuthOnly?: pulumi.Input<boolean>;
|
|
9080
|
+
/**
|
|
9081
|
+
* Only if `mode`!=`dynamic` + `enableMacAuth`==`true` + `macAuthOnly`==`false`, dot1x will be given priority then mac_auth. Enable this to prefer macAuth over dot1x.
|
|
9082
|
+
*/
|
|
9083
|
+
macAuthPreferred?: pulumi.Input<boolean>;
|
|
8893
9084
|
/**
|
|
8894
9085
|
* Only if `mode`!=`dynamic` and `enableMacAuth` ==`true`. This type is ignored if mistNac is enabled. enum: `eap-md5`, `eap-peap`, `pap`
|
|
8895
9086
|
*/
|
|
@@ -8930,10 +9121,6 @@ export declare namespace site {
|
|
|
8930
9121
|
* Only if `mode`!=`dynamic` and `portAuth`=`dot1x` reauthentication interval range
|
|
8931
9122
|
*/
|
|
8932
9123
|
reauthInterval?: pulumi.Input<number>;
|
|
8933
|
-
/**
|
|
8934
|
-
* Only if `mode`!=`dynamic` and `portAuth`==`dot1x` when radius server reject / fails
|
|
8935
|
-
*/
|
|
8936
|
-
rejectedNetwork?: pulumi.Input<string>;
|
|
8937
9124
|
/**
|
|
8938
9125
|
* Only if `mode`==`dynamic` Control when the DPC port should be changed to the default port usage. enum: `linkDown`, `none` (let the DPC port keep at the current port usage)
|
|
8939
9126
|
*/
|
|
@@ -8942,6 +9129,14 @@ export declare namespace site {
|
|
|
8942
9129
|
* Only if `mode`==`dynamic`
|
|
8943
9130
|
*/
|
|
8944
9131
|
rules?: pulumi.Input<pulumi.Input<inputs.site.NetworktemplatePortUsagesRule>[]>;
|
|
9132
|
+
/**
|
|
9133
|
+
* Only if `mode`!=`dynamic` and `portAuth`==`dot1x` sets server fail fallback vlan
|
|
9134
|
+
*/
|
|
9135
|
+
serverFailNetwork?: pulumi.Input<string>;
|
|
9136
|
+
/**
|
|
9137
|
+
* Only if `mode`!=`dynamic` and `portAuth`==`dot1x` when radius server reject / fails
|
|
9138
|
+
*/
|
|
9139
|
+
serverRejectNetwork?: pulumi.Input<string>;
|
|
8945
9140
|
/**
|
|
8946
9141
|
* Only if `mode`!=`dynamic` speed, default is auto to automatically negotiate speed
|
|
8947
9142
|
*/
|
|
@@ -9069,6 +9264,10 @@ export declare namespace site {
|
|
|
9069
9264
|
* Auth port of RADIUS server
|
|
9070
9265
|
*/
|
|
9071
9266
|
port?: pulumi.Input<number>;
|
|
9267
|
+
/**
|
|
9268
|
+
* whether to require Message-Authenticator in requests
|
|
9269
|
+
*/
|
|
9270
|
+
requireMessageAuthenticator?: pulumi.Input<boolean>;
|
|
9072
9271
|
/**
|
|
9073
9272
|
* secret of RADIUS server
|
|
9074
9273
|
*/
|
|
@@ -9541,6 +9740,7 @@ export declare namespace site {
|
|
|
9541
9740
|
* Enable to provide the FQDN with DHCP option 81
|
|
9542
9741
|
*/
|
|
9543
9742
|
dhcpOptionFqdn?: pulumi.Input<boolean>;
|
|
9743
|
+
disableOobDownAlarm?: pulumi.Input<boolean>;
|
|
9544
9744
|
/**
|
|
9545
9745
|
* Property key is the user name. For Local user authentication
|
|
9546
9746
|
*/
|
|
@@ -9798,6 +9998,8 @@ export declare namespace site {
|
|
|
9798
9998
|
enabled?: pulumi.Input<boolean>;
|
|
9799
9999
|
/**
|
|
9800
10000
|
* hours of operation filter, the available days (mon, tue, wed, thu, fri, sat, sun).
|
|
10001
|
+
*
|
|
10002
|
+
* **Note**: If the dow is not defined then it\u2019\ s treated as 00:00-23:59.
|
|
9801
10003
|
*/
|
|
9802
10004
|
hours?: pulumi.Input<inputs.site.SettingConfigPushPolicyPushWindowHours>;
|
|
9803
10005
|
}
|
|
@@ -9826,6 +10028,8 @@ export declare namespace site {
|
|
|
9826
10028
|
dwellTags?: pulumi.Input<inputs.site.SettingEngagementDwellTags>;
|
|
9827
10029
|
/**
|
|
9828
10030
|
* hours of operation filter, the available days (mon, tue, wed, thu, fri, sat, sun).
|
|
10031
|
+
*
|
|
10032
|
+
* **Note**: If the dow is not defined then it\u2019\ s treated as 00:00-23:59.
|
|
9829
10033
|
*/
|
|
9830
10034
|
hours?: pulumi.Input<inputs.site.SettingEngagementHours>;
|
|
9831
10035
|
/**
|
|
@@ -9898,24 +10102,21 @@ export declare namespace site {
|
|
|
9898
10102
|
enabled?: pulumi.Input<boolean>;
|
|
9899
10103
|
}
|
|
9900
10104
|
interface SettingGatewayMgmtAppProbingCustomApp {
|
|
9901
|
-
/**
|
|
9902
|
-
* if `protocol`==`icmp`
|
|
9903
|
-
*/
|
|
9904
10105
|
address?: pulumi.Input<string>;
|
|
9905
10106
|
appType?: pulumi.Input<string>;
|
|
9906
10107
|
/**
|
|
9907
|
-
*
|
|
10108
|
+
* Only 1 entry is allowed:
|
|
10109
|
+
* * if `protocol`==`http`: URL (e.g. `http://test.com` or `https://test.com`)
|
|
10110
|
+
* * if `protocol`==`icmp`: IP Address (e.g. `1.2.3.4`)
|
|
9908
10111
|
*/
|
|
9909
|
-
hostnames
|
|
9910
|
-
|
|
10112
|
+
hostnames: pulumi.Input<pulumi.Input<string>[]>;
|
|
10113
|
+
key?: pulumi.Input<string>;
|
|
10114
|
+
name: pulumi.Input<string>;
|
|
9911
10115
|
network?: pulumi.Input<string>;
|
|
9912
10116
|
/**
|
|
9913
10117
|
* enum: `http`, `icmp`
|
|
9914
10118
|
*/
|
|
9915
|
-
protocol
|
|
9916
|
-
/**
|
|
9917
|
-
* if `protocol`==`http`
|
|
9918
|
-
*/
|
|
10119
|
+
protocol: pulumi.Input<string>;
|
|
9919
10120
|
url?: pulumi.Input<string>;
|
|
9920
10121
|
vrf?: pulumi.Input<string>;
|
|
9921
10122
|
}
|