@volcengine/pulumi 0.0.33 → 0.0.35

package/waf/wafDomain.d.ts

@@ -0,0 +1,877 @@
+import * as pulumi from "@pulumi/pulumi";
+import * as inputs from "../types/input";
+import * as outputs from "../types/output";
+/**
+ * Provides a resource to manage waf domain
+ * ## Example Usage
+ *
+ * ```typescript
+ * import * as pulumi from "@pulumi/pulumi";
+ * import * as volcengine from "@volcengine/pulumi";
+ *
+ * const foo = new volcengine.waf.WafDomain("foo", {
+ *     accessMode: 10,
+ *     backendGroups: [{
+ *         accessPorts: [80],
+ *         backends: [
+ *             {
+ *                 ip: "192.168.0.0",
+ *                 port: 80,
+ *                 protocol: "HTTP",
+ *                 weight: 40,
+ *             },
+ *             {
+ *                 ip: "192.168.1.0",
+ *                 port: 80,
+ *                 protocol: "HTTP",
+ *                 weight: 60,
+ *             },
+ *         ],
+ *         name: "default",
+ *     }],
+ *     clientIpLocation: 0,
+ *     clientMaxBodySize: 1024,
+ *     customHeaders: [
+ *         "x-top-1",
+ *         "x-top-2",
+ *     ],
+ *     domain: "www.tf-test.com",
+ *     enableIpv6: 0,
+ *     keepAliveRequest: 200,
+ *     keepAliveTimeOut: 100,
+ *     lbAlgorithm: "wlc",
+ *     protocolPorts: {
+ *         https: [80],
+ *     },
+ *     protocols: ["HTTP"],
+ *     proxyConfig: 1,
+ *     proxyConnectTimeOut: 10,
+ *     proxyKeepAlive: 101,
+ *     proxyKeepAliveTimeOut: 20,
+ *     proxyReadTimeOut: 200,
+ *     proxyRetry: 10,
+ *     proxyWriteTimeOut: 120,
+ *     publicRealServer: 0,
+ *     vpcId: "vpc-2d6485y7p95og58ozfcvxxxxx",
+ * });
+ * ```
+ *
+ * ## Import
+ *
+ * WafDomain can be imported using the id, e.g.
+ *
+ * ```sh
+ * $ pulumi import volcengine:waf/wafDomain:WafDomain default resource_id
+ * ```
+ */
+export declare class WafDomain extends pulumi.CustomResource {
+    /**
+     * Get an existing WafDomain resource's state with the given name, ID, and optional extra
+     * properties used to qualify the lookup.
+     *
+     * @param name The _unique_ name of the resulting resource.
+     * @param id The _unique_ provider ID of the resource to lookup.
+     * @param state Any extra arguments used during the lookup.
+     * @param opts Optional settings to control the behavior of the CustomResource.
+     */
+    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: WafDomainState, opts?: pulumi.CustomResourceOptions): WafDomain;
+    /**
+     * Returns true if the given object is an instance of WafDomain.  This is designed to work even
+     * when multiple copies of the Pulumi SDK have been loaded into the same process.
+     */
+    static isInstance(obj: any): obj is WafDomain;
+    /**
+     * Access mode.
+     */
+    readonly accessMode: pulumi.Output<number>;
+    /**
+     * High-defense instance IP.
+     */
+    readonly advancedDefenseIp: pulumi.Output<string>;
+    /**
+     * High-defense instance IPv6.
+     */
+    readonly advancedDefenseIpv6: pulumi.Output<string>;
+    /**
+     * Whether to enable the API protection policy. Works only on modified scenes.
+     */
+    readonly apiEnable: pulumi.Output<number>;
+    /**
+     * The status of the attack.
+     */
+    readonly attackStatus: pulumi.Output<number>;
+    /**
+     * Whether to enable the intelligent CC protection strategy. Works only on modified scenes.
+     */
+    readonly autoCcEnable: pulumi.Output<number>;
+    /**
+     * The configuration of source station.
+     */
+    readonly backendGroups: pulumi.Output<outputs.waf.WafDomainBackendGroup[]>;
+    /**
+     * Whether to enable the access ban list policy. Works only on modified scenes.
+     */
+    readonly blackIpEnable: pulumi.Output<number>;
+    /**
+     * Whether to enable the geographical location access control policy. Works only on modified scenes.
+     */
+    readonly blackLctEnable: pulumi.Output<number>;
+    /**
+     * Whether to enable the bot dynamic token. Works only on modified scenes.
+     */
+    readonly botDytokenEnable: pulumi.Output<number | undefined>;
+    /**
+     * Whether to enable the bot frequency limit policy. Works only on modified scenes.
+     */
+    readonly botFrequencyEnable: pulumi.Output<number | undefined>;
+    /**
+     * Whether to enable the bot frequency limit policy. Works only on modified scenes.
+     */
+    readonly botRepeatEnable: pulumi.Output<number | undefined>;
+    /**
+     * Set the default actions of the bot behavior map strategy. Works only on modified scenes.
+     */
+    readonly botSequenceDefaultAction: pulumi.Output<number | undefined>;
+    /**
+     * Whether to enable the bot behavior map. Works only on modified scenes.
+     */
+    readonly botSequenceEnable: pulumi.Output<number | undefined>;
+    /**
+     * Whether to enable the CC protection policy. Works only on modified scenes.
+     */
+    readonly ccEnable: pulumi.Output<number>;
+    /**
+     * When the protocol type is HTTPS, the bound certificate ID needs to be entered.
+     */
+    readonly certificateId: pulumi.Output<number>;
+    /**
+     * The name of the certificate.
+     */
+    readonly certificateName: pulumi.Output<string>;
+    /**
+     * Certificate custody platform.
+     */
+    readonly certificatePlatform: pulumi.Output<string>;
+    /**
+     * The method of obtaining the client IP.
+     */
+    readonly clientIpLocation: pulumi.Output<number>;
+    /**
+     * The client requests the maximum value of body.
+     */
+    readonly clientMaxBodySize: pulumi.Output<number>;
+    /**
+     * Access port information.If AccessMode is Alb/CLB, this field is required.
+     */
+    readonly cloudAccessConfigs: pulumi.Output<outputs.waf.WafDomainCloudAccessConfig[]>;
+    /**
+     * The CNAME value generated by the WAF instance.
+     */
+    readonly cname: pulumi.Output<string>;
+    /**
+     * Whether to enable the custom Bot classification strategy. Works only on modified scenes.
+     */
+    readonly customBotEnable: pulumi.Output<number>;
+    /**
+     * Custom Header.
+     */
+    readonly customHeaders: pulumi.Output<string[] | undefined>;
+    /**
+     * Whether to enable the custom response interception policy. Works only on modified scenes.
+     */
+    readonly customRspEnable: pulumi.Output<number>;
+    /**
+     * Custom SNI needs to be configured when EnableSNI=1. Works only on modified scenes.
+     */
+    readonly customSni: pulumi.Output<string | undefined>;
+    /**
+     * The protection mode of the instance. Works only on modified scenes.
+     */
+    readonly defenceMode: pulumi.Output<number | undefined>;
+    /**
+     * The protection mode of the instance.
+     */
+    readonly defenceModeComputed: pulumi.Output<number>;
+    /**
+     * Whether to activate the strategy for preventing the leakage of sensitive information. Works only on modified scenes.
+     */
+    readonly dlpEnable: pulumi.Output<number>;
+    /**
+     * List of domain names that need to be protected by WAF.
+     */
+    readonly domain: pulumi.Output<string>;
+    /**
+     * Whether to enable user-defined redirection. Works only on modified scenes.
+     */
+    readonly enableCustomRedirect: pulumi.Output<number | undefined>;
+    /**
+     * Whether to enable HTTP 2.0.
+     */
+    readonly enableHttp2: pulumi.Output<number>;
+    /**
+     * Whether it supports protecting IPv6 requests.
+     */
+    readonly enableIpv6: pulumi.Output<number>;
+    /**
+     * Whether to enable the SNI configuration. Works only on modified scenes.
+     */
+    readonly enableSni: pulumi.Output<number | undefined>;
+    /**
+     * The protection mode of the exception instance. It takes effect when the access mode is accessed through an application load balancing (ALB) instance (AccessMode=20). Works only on modified scenes.
+     */
+    readonly extraDefenceModeLbInstances: pulumi.Output<outputs.waf.WafDomainExtraDefenceModeLbInstance[] | undefined>;
+    /**
+     * The number of long connection multiplexes.
+     */
+    readonly keepAliveRequest: pulumi.Output<number>;
+    /**
+     * Long connection retention time.
+     */
+    readonly keepAliveTimeOut: pulumi.Output<number>;
+    /**
+     * The types of load balancing algorithms.
+     */
+    readonly lbAlgorithm: pulumi.Output<string>;
+    /**
+     * Is LLM available. Works only on modified scenes.
+     */
+    readonly llmAvailable: pulumi.Output<boolean | undefined>;
+    /**
+     * The name of project. Works only on modified scenes.
+     */
+    readonly projectName: pulumi.Output<string>;
+    /**
+     * Whether to enable protocol following.
+     */
+    readonly protocolFollow: pulumi.Output<number>;
+    /**
+     * Access port information.
+     */
+    readonly protocolPorts: pulumi.Output<outputs.waf.WafDomainProtocolPorts>;
+    /**
+     * Access protocol types.
+     */
+    readonly protocols: pulumi.Output<string[]>;
+    /**
+     * Whether to enable proxy configuration.
+     */
+    readonly proxyConfig: pulumi.Output<number>;
+    /**
+     * The timeout period for establishing a connection between the WAF and the backend server.
+     */
+    readonly proxyConnectTimeOut: pulumi.Output<number>;
+    /**
+     * The number of reusable WAF origin long connections.
+     */
+    readonly proxyKeepAlive: pulumi.Output<number>;
+    /**
+     * Idle long connection timeout period.
+     */
+    readonly proxyKeepAliveTimeOut: pulumi.Output<number>;
+    /**
+     * The timeout period during which WAF reads the response from the backend server.
+     */
+    readonly proxyReadTimeOut: pulumi.Output<number>;
+    /**
+     * The number of retries for WAF back to source.
+     */
+    readonly proxyRetry: pulumi.Output<number>;
+    /**
+     * The timeout period during which the WAF transmits the request to the backend server.
+     */
+    readonly proxyWriteTimeOut: pulumi.Output<number>;
+    /**
+     * Connect to the source return mode.
+     */
+    readonly publicRealServer: pulumi.Output<number>;
+    /**
+     * When only the HTTPS protocol is enabled, whether to redirect HTTP requests to HTTPS. Works only on modified scenes.
+     */
+    readonly redirectHttps: pulumi.Output<boolean | undefined>;
+    /**
+     * The IP of the WAF protection instance.
+     */
+    readonly serverIps: pulumi.Output<string>;
+    /**
+     * WAF source IP.
+     */
+    readonly srcIps: pulumi.Output<string>;
+    /**
+     * Encryption kit.
+     */
+    readonly sslCiphers: pulumi.Output<string[]>;
+    /**
+     * TLS protocol version.
+     */
+    readonly sslProtocols: pulumi.Output<string[]>;
+    /**
+     * The status of access.
+     */
+    readonly status: pulumi.Output<number>;
+    /**
+     * Whether to enable the managed Bot classification strategy. Works only on modified scenes.
+     */
+    readonly systemBotEnable: pulumi.Output<number>;
+    /**
+     * Whether to enable the page tamper-proof policy. Works only on modified scenes.
+     */
+    readonly tamperProofEnable: pulumi.Output<number>;
+    /**
+     * Whether to enable the log service.
+     */
+    readonly tlsEnable: pulumi.Output<number>;
+    /**
+     * Details of log field configuration. Works only on modified scenes.
+     */
+    readonly tlsFieldsConfig: pulumi.Output<outputs.waf.WafDomainTlsFieldsConfig | undefined>;
+    /**
+     * The update time.
+     */
+    readonly updateTime: pulumi.Output<string>;
+    /**
+     * When the protocol type is HTTPS, the bound certificate ID needs to be entered.
+     */
+    readonly volcCertificateId: pulumi.Output<string>;
+    /**
+     * The ID of vpc.
+     */
+    readonly vpcId: pulumi.Output<string>;
+    /**
+     * Whether to enable the vulnerability protection strategy. Works only on modified scenes.
+     */
+    readonly wafEnable: pulumi.Output<number>;
+    /**
+     * Whether to enable the whitening strategy for vulnerability protection requests. Works only on modified scenes.
+     */
+    readonly wafWhiteReqEnable: pulumi.Output<number>;
+    /**
+     * Whether to enable the access list policy. Works only on modified scenes.
+     */
+    readonly whiteEnable: pulumi.Output<number>;
+    /**
+     * Whether to enable the whitening strategy for vulnerability protection fields. Works only on modified scenes.
+     */
+    readonly whiteFieldEnable: pulumi.Output<number>;
+    /**
+     * Create a WafDomain resource with the given unique name, arguments, and options.
+     *
+     * @param name The _unique_ name of the resource.
+     * @param args The arguments to use to populate this resource's properties.
+     * @param opts A bag of options that control this resource's behavior.
+     */
+    constructor(name: string, args: WafDomainArgs, opts?: pulumi.CustomResourceOptions);
+}
+/**
+ * Input properties used for looking up and filtering WafDomain resources.
+ */
+export interface WafDomainState {
+    /**
+     * Access mode.
+     */
+    accessMode?: pulumi.Input<number>;
+    /**
+     * High-defense instance IP.
+     */
+    advancedDefenseIp?: pulumi.Input<string>;
+    /**
+     * High-defense instance IPv6.
+     */
+    advancedDefenseIpv6?: pulumi.Input<string>;
+    /**
+     * Whether to enable the API protection policy. Works only on modified scenes.
+     */
+    apiEnable?: pulumi.Input<number>;
+    /**
+     * The status of the attack.
+     */
+    attackStatus?: pulumi.Input<number>;
+    /**
+     * Whether to enable the intelligent CC protection strategy. Works only on modified scenes.
+     */
+    autoCcEnable?: pulumi.Input<number>;
+    /**
+     * The configuration of source station.
+     */
+    backendGroups?: pulumi.Input<pulumi.Input<inputs.waf.WafDomainBackendGroup>[]>;
+    /**
+     * Whether to enable the access ban list policy. Works only on modified scenes.
+     */
+    blackIpEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the geographical location access control policy. Works only on modified scenes.
+     */
+    blackLctEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the bot dynamic token. Works only on modified scenes.
+     */
+    botDytokenEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the bot frequency limit policy. Works only on modified scenes.
+     */
+    botFrequencyEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the bot frequency limit policy. Works only on modified scenes.
+     */
+    botRepeatEnable?: pulumi.Input<number>;
+    /**
+     * Set the default actions of the bot behavior map strategy. Works only on modified scenes.
+     */
+    botSequenceDefaultAction?: pulumi.Input<number>;
+    /**
+     * Whether to enable the bot behavior map. Works only on modified scenes.
+     */
+    botSequenceEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the CC protection policy. Works only on modified scenes.
+     */
+    ccEnable?: pulumi.Input<number>;
+    /**
+     * When the protocol type is HTTPS, the bound certificate ID needs to be entered.
+     */
+    certificateId?: pulumi.Input<number>;
+    /**
+     * The name of the certificate.
+     */
+    certificateName?: pulumi.Input<string>;
+    /**
+     * Certificate custody platform.
+     */
+    certificatePlatform?: pulumi.Input<string>;
+    /**
+     * The method of obtaining the client IP.
+     */
+    clientIpLocation?: pulumi.Input<number>;
+    /**
+     * The client requests the maximum value of body.
+     */
+    clientMaxBodySize?: pulumi.Input<number>;
+    /**
+     * Access port information.If AccessMode is Alb/CLB, this field is required.
+     */
+    cloudAccessConfigs?: pulumi.Input<pulumi.Input<inputs.waf.WafDomainCloudAccessConfig>[]>;
+    /**
+     * The CNAME value generated by the WAF instance.
+     */
+    cname?: pulumi.Input<string>;
+    /**
+     * Whether to enable the custom Bot classification strategy. Works only on modified scenes.
+     */
+    customBotEnable?: pulumi.Input<number>;
+    /**
+     * Custom Header.
+     */
+    customHeaders?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Whether to enable the custom response interception policy. Works only on modified scenes.
+     */
+    customRspEnable?: pulumi.Input<number>;
+    /**
+     * Custom SNI needs to be configured when EnableSNI=1. Works only on modified scenes.
+     */
+    customSni?: pulumi.Input<string>;
+    /**
+     * The protection mode of the instance. Works only on modified scenes.
+     */
+    defenceMode?: pulumi.Input<number>;
+    /**
+     * The protection mode of the instance.
+     */
+    defenceModeComputed?: pulumi.Input<number>;
+    /**
+     * Whether to activate the strategy for preventing the leakage of sensitive information. Works only on modified scenes.
+     */
+    dlpEnable?: pulumi.Input<number>;
+    /**
+     * List of domain names that need to be protected by WAF.
+     */
+    domain?: pulumi.Input<string>;
+    /**
+     * Whether to enable user-defined redirection. Works only on modified scenes.
+     */
+    enableCustomRedirect?: pulumi.Input<number>;
+    /**
+     * Whether to enable HTTP 2.0.
+     */
+    enableHttp2?: pulumi.Input<number>;
+    /**
+     * Whether it supports protecting IPv6 requests.
+     */
+    enableIpv6?: pulumi.Input<number>;
+    /**
+     * Whether to enable the SNI configuration. Works only on modified scenes.
+     */
+    enableSni?: pulumi.Input<number>;
+    /**
+     * The protection mode of the exception instance. It takes effect when the access mode is accessed through an application load balancing (ALB) instance (AccessMode=20). Works only on modified scenes.
+     */
+    extraDefenceModeLbInstances?: pulumi.Input<pulumi.Input<inputs.waf.WafDomainExtraDefenceModeLbInstance>[]>;
+    /**
+     * The number of long connection multiplexes.
+     */
+    keepAliveRequest?: pulumi.Input<number>;
+    /**
+     * Long connection retention time.
+     */
+    keepAliveTimeOut?: pulumi.Input<number>;
+    /**
+     * The types of load balancing algorithms.
+     */
+    lbAlgorithm?: pulumi.Input<string>;
+    /**
+     * Is LLM available. Works only on modified scenes.
+     */
+    llmAvailable?: pulumi.Input<boolean>;
+    /**
+     * The name of project. Works only on modified scenes.
+     */
+    projectName?: pulumi.Input<string>;
+    /**
+     * Whether to enable protocol following.
+     */
+    protocolFollow?: pulumi.Input<number>;
+    /**
+     * Access port information.
+     */
+    protocolPorts?: pulumi.Input<inputs.waf.WafDomainProtocolPorts>;
+    /**
+     * Access protocol types.
+     */
+    protocols?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Whether to enable proxy configuration.
+     */
+    proxyConfig?: pulumi.Input<number>;
+    /**
+     * The timeout period for establishing a connection between the WAF and the backend server.
+     */
+    proxyConnectTimeOut?: pulumi.Input<number>;
+    /**
+     * The number of reusable WAF origin long connections.
+     */
+    proxyKeepAlive?: pulumi.Input<number>;
+    /**
+     * Idle long connection timeout period.
+     */
+    proxyKeepAliveTimeOut?: pulumi.Input<number>;
+    /**
+     * The timeout period during which WAF reads the response from the backend server.
+     */
+    proxyReadTimeOut?: pulumi.Input<number>;
+    /**
+     * The number of retries for WAF back to source.
+     */
+    proxyRetry?: pulumi.Input<number>;
+    /**
+     * The timeout period during which the WAF transmits the request to the backend server.
+     */
+    proxyWriteTimeOut?: pulumi.Input<number>;
+    /**
+     * Connect to the source return mode.
+     */
+    publicRealServer?: pulumi.Input<number>;
+    /**
+     * When only the HTTPS protocol is enabled, whether to redirect HTTP requests to HTTPS. Works only on modified scenes.
+     */
+    redirectHttps?: pulumi.Input<boolean>;
+    /**
+     * The IP of the WAF protection instance.
+     */
+    serverIps?: pulumi.Input<string>;
+    /**
+     * WAF source IP.
+     */
+    srcIps?: pulumi.Input<string>;
+    /**
+     * Encryption kit.
+     */
+    sslCiphers?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * TLS protocol version.
+     */
+    sslProtocols?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * The status of access.
+     */
+    status?: pulumi.Input<number>;
+    /**
+     * Whether to enable the managed Bot classification strategy. Works only on modified scenes.
+     */
+    systemBotEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the page tamper-proof policy. Works only on modified scenes.
+     */
+    tamperProofEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the log service.
+     */
+    tlsEnable?: pulumi.Input<number>;
+    /**
+     * Details of log field configuration. Works only on modified scenes.
+     */
+    tlsFieldsConfig?: pulumi.Input<inputs.waf.WafDomainTlsFieldsConfig>;
+    /**
+     * The update time.
+     */
+    updateTime?: pulumi.Input<string>;
+    /**
+     * When the protocol type is HTTPS, the bound certificate ID needs to be entered.
+     */
+    volcCertificateId?: pulumi.Input<string>;
+    /**
+     * The ID of vpc.
+     */
+    vpcId?: pulumi.Input<string>;
+    /**
+     * Whether to enable the vulnerability protection strategy. Works only on modified scenes.
+     */
+    wafEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the whitening strategy for vulnerability protection requests. Works only on modified scenes.
+     */
+    wafWhiteReqEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the access list policy. Works only on modified scenes.
+     */
+    whiteEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the whitening strategy for vulnerability protection fields. Works only on modified scenes.
+     */
+    whiteFieldEnable?: pulumi.Input<number>;
+}
+/**
+ * The set of arguments for constructing a WafDomain resource.
+ */
+export interface WafDomainArgs {
+    /**
+     * Access mode.
+     */
+    accessMode: pulumi.Input<number>;
+    /**
+     * Whether to enable the API protection policy. Works only on modified scenes.
+     */
+    apiEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the intelligent CC protection strategy. Works only on modified scenes.
+     */
+    autoCcEnable?: pulumi.Input<number>;
+    /**
+     * The configuration of source station.
+     */
+    backendGroups?: pulumi.Input<pulumi.Input<inputs.waf.WafDomainBackendGroup>[]>;
+    /**
+     * Whether to enable the access ban list policy. Works only on modified scenes.
+     */
+    blackIpEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the geographical location access control policy. Works only on modified scenes.
+     */
+    blackLctEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the bot dynamic token. Works only on modified scenes.
+     */
+    botDytokenEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the bot frequency limit policy. Works only on modified scenes.
+     */
+    botFrequencyEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the bot frequency limit policy. Works only on modified scenes.
+     */
+    botRepeatEnable?: pulumi.Input<number>;
+    /**
+     * Set the default actions of the bot behavior map strategy. Works only on modified scenes.
+     */
+    botSequenceDefaultAction?: pulumi.Input<number>;
+    /**
+     * Whether to enable the bot behavior map. Works only on modified scenes.
+     */
+    botSequenceEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the CC protection policy. Works only on modified scenes.
+     */
+    ccEnable?: pulumi.Input<number>;
+    /**
+     * When the protocol type is HTTPS, the bound certificate ID needs to be entered.
+     */
+    certificateId?: pulumi.Input<number>;
+    /**
+     * Certificate custody platform.
+     */
+    certificatePlatform?: pulumi.Input<string>;
+    /**
+     * The method of obtaining the client IP.
+     */
+    clientIpLocation?: pulumi.Input<number>;
+    /**
+     * The client requests the maximum value of body.
+     */
+    clientMaxBodySize?: pulumi.Input<number>;
+    /**
+     * Access port information.If AccessMode is Alb/CLB, this field is required.
+     */
+    cloudAccessConfigs?: pulumi.Input<pulumi.Input<inputs.waf.WafDomainCloudAccessConfig>[]>;
+    /**
+     * Whether to enable the custom Bot classification strategy. Works only on modified scenes.
+     */
+    customBotEnable?: pulumi.Input<number>;
+    /**
+     * Custom Header.
+     */
+    customHeaders?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Whether to enable the custom response interception policy. Works only on modified scenes.
+     */
+    customRspEnable?: pulumi.Input<number>;
+    /**
+     * Custom SNI needs to be configured when EnableSNI=1. Works only on modified scenes.
+     */
+    customSni?: pulumi.Input<string>;
+    /**
+     * The protection mode of the instance. Works only on modified scenes.
+     */
+    defenceMode?: pulumi.Input<number>;
+    /**
+     * Whether to activate the strategy for preventing the leakage of sensitive information. Works only on modified scenes.
+     */
+    dlpEnable?: pulumi.Input<number>;
+    /**
+     * List of domain names that need to be protected by WAF.
+     */
+    domain: pulumi.Input<string>;
+    /**
+     * Whether to enable user-defined redirection. Works only on modified scenes.
+     */
+    enableCustomRedirect?: pulumi.Input<number>;
+    /**
+     * Whether to enable HTTP 2.0.
+     */
+    enableHttp2?: pulumi.Input<number>;
+    /**
+     * Whether it supports protecting IPv6 requests.
+     */
+    enableIpv6?: pulumi.Input<number>;
+    /**
+     * Whether to enable the SNI configuration. Works only on modified scenes.
+     */
+    enableSni?: pulumi.Input<number>;
+    /**
+     * The protection mode of the exception instance. It takes effect when the access mode is accessed through an application load balancing (ALB) instance (AccessMode=20). Works only on modified scenes.
+     */
+    extraDefenceModeLbInstances?: pulumi.Input<pulumi.Input<inputs.waf.WafDomainExtraDefenceModeLbInstance>[]>;
+    /**
+     * The number of long connection multiplexes.
+     */
+    keepAliveRequest?: pulumi.Input<number>;
+    /**
+     * Long connection retention time.
+     */
+    keepAliveTimeOut?: pulumi.Input<number>;
+    /**
+     * The types of load balancing algorithms.
+     */
+    lbAlgorithm?: pulumi.Input<string>;
+    /**
+     * Is LLM available. Works only on modified scenes.
+     */
+    llmAvailable?: pulumi.Input<boolean>;
+    /**
+     * The name of project. Works only on modified scenes.
+     */
+    projectName?: pulumi.Input<string>;
+    /**
+     * Whether to enable protocol following.
+     */
+    protocolFollow?: pulumi.Input<number>;
+    /**
+     * Access port information.
+     */
+    protocolPorts?: pulumi.Input<inputs.waf.WafDomainProtocolPorts>;
+    /**
+     * Access protocol types.
+     */
+    protocols?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Whether to enable proxy configuration.
+     */
+    proxyConfig?: pulumi.Input<number>;
+    /**
+     * The timeout period for establishing a connection between the WAF and the backend server.
+     */
+    proxyConnectTimeOut?: pulumi.Input<number>;
+    /**
+     * The number of reusable WAF origin long connections.
+     */
+    proxyKeepAlive?: pulumi.Input<number>;
+    /**
+     * Idle long connection timeout period.
+     */
+    proxyKeepAliveTimeOut?: pulumi.Input<number>;
+    /**
+     * The timeout period during which WAF reads the response from the backend server.
+     */
+    proxyReadTimeOut?: pulumi.Input<number>;
+    /**
+     * The number of retries for WAF back to source.
+     */
+    proxyRetry?: pulumi.Input<number>;
+    /**
+     * The timeout period during which the WAF transmits the request to the backend server.
+     */
+    proxyWriteTimeOut?: pulumi.Input<number>;
+    /**
+     * Connect to the source return mode.
+     */
+    publicRealServer?: pulumi.Input<number>;
+    /**
+     * When only the HTTPS protocol is enabled, whether to redirect HTTP requests to HTTPS. Works only on modified scenes.
+     */
+    redirectHttps?: pulumi.Input<boolean>;
+    /**
+     * Encryption kit.
+     */
+    sslCiphers?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * TLS protocol version.
+     */
+    sslProtocols?: pulumi.Input<pulumi.Input<string>[]>;
+    /**
+     * Whether to enable the managed Bot classification strategy. Works only on modified scenes.
+     */
+    systemBotEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the page tamper-proof policy. Works only on modified scenes.
+     */
+    tamperProofEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the log service.
+     */
+    tlsEnable?: pulumi.Input<number>;
+    /**
+     * Details of log field configuration. Works only on modified scenes.
+     */
+    tlsFieldsConfig?: pulumi.Input<inputs.waf.WafDomainTlsFieldsConfig>;
+    /**
+     * When the protocol type is HTTPS, the bound certificate ID needs to be entered.
+     */
+    volcCertificateId?: pulumi.Input<string>;
+    /**
+     * The ID of vpc.
+     */
+    vpcId?: pulumi.Input<string>;
+    /**
+     * Whether to enable the vulnerability protection strategy. Works only on modified scenes.
+     */
+    wafEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the whitening strategy for vulnerability protection requests. Works only on modified scenes.
+     */
+    wafWhiteReqEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the access list policy. Works only on modified scenes.
+     */
+    whiteEnable?: pulumi.Input<number>;
+    /**
+     * Whether to enable the whitening strategy for vulnerability protection fields. Works only on modified scenes.
+     */
+    whiteFieldEnable?: pulumi.Input<number>;
+}