PyPI - pulumi-oci - Versions diffs - 1.37.0a1715927489__py3-none-any.whl → 1.37.0a1716526633__py3-none-any.whl - Mend

pulumi-oci 1.37.0a1715927489py3-none-any.whl → 1.37.0a1716526633py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (307) hide show

pulumi_oci/__init__.py +40 -0
pulumi_oci/adm/_inputs.py +6 -6
pulumi_oci/adm/outputs.py +6 -6
pulumi_oci/aianomalydetection/_inputs.py +10 -8
pulumi_oci/aianomalydetection/outputs.py +22 -8
pulumi_oci/aidocument/_inputs.py +22 -18
pulumi_oci/aidocument/outputs.py +36 -18
pulumi_oci/ailanguage/_inputs.py +4 -20
pulumi_oci/ailanguage/model.py +4 -4
pulumi_oci/ailanguage/outputs.py +4 -20
pulumi_oci/aivision/_inputs.py +0 -16
pulumi_oci/aivision/outputs.py +0 -16
pulumi_oci/analytics/_inputs.py +2 -2
pulumi_oci/analytics/outputs.py +2 -2
pulumi_oci/apigateway/_inputs.py +206 -414
pulumi_oci/apigateway/outputs.py +206 -414
pulumi_oci/apmconfig/_inputs.py +4 -4
pulumi_oci/apmconfig/config.py +7 -7
pulumi_oci/apmconfig/outputs.py +4 -4
pulumi_oci/apmsynthetics/_inputs.py +18 -26
pulumi_oci/apmsynthetics/config.py +7 -7
pulumi_oci/apmsynthetics/outputs.py +18 -26
pulumi_oci/autoscaling/_inputs.py +14 -16
pulumi_oci/autoscaling/auto_scaling_configuration.py +20 -7
pulumi_oci/autoscaling/outputs.py +14 -16
pulumi_oci/bigdataservice/_inputs.py +32 -44
pulumi_oci/bigdataservice/bds_instance.py +4 -4
pulumi_oci/bigdataservice/outputs.py +32 -44
pulumi_oci/certificatesmanagement/_inputs.py +16 -16
pulumi_oci/certificatesmanagement/certificate.py +16 -16
pulumi_oci/certificatesmanagement/certificate_authority.py +8 -8
pulumi_oci/certificatesmanagement/outputs.py +16 -16
pulumi_oci/cloudbridge/_inputs.py +18 -18
pulumi_oci/cloudbridge/outputs.py +18 -18
pulumi_oci/cloudguard/__init__.py +9 -0
pulumi_oci/cloudguard/_inputs.py +1066 -488
pulumi_oci/cloudguard/adhoc_query.py +596 -0
pulumi_oci/cloudguard/cloud_guard_configuration.py +25 -57
pulumi_oci/cloudguard/cloud_guard_data_source.py +54 -38
pulumi_oci/cloudguard/data_mask_rule.py +62 -62
pulumi_oci/cloudguard/detector_recipe.py +95 -53
pulumi_oci/cloudguard/get_adhoc_queries.py +253 -0
pulumi_oci/cloudguard/get_adhoc_query.py +249 -0
pulumi_oci/cloudguard/get_cloud_guard_configuration.py +9 -7
pulumi_oci/cloudguard/get_data_mask_rule.py +14 -14
pulumi_oci/cloudguard/get_data_mask_rules.py +17 -17
pulumi_oci/cloudguard/get_data_source.py +10 -10
pulumi_oci/cloudguard/get_data_source_events.py +11 -7
pulumi_oci/cloudguard/get_data_sources.py +24 -20
pulumi_oci/cloudguard/get_detector_recipe.py +28 -15
pulumi_oci/cloudguard/get_detector_recipes.py +13 -13
pulumi_oci/cloudguard/get_guard_target.py +14 -14
pulumi_oci/cloudguard/get_guard_targets.py +19 -17
pulumi_oci/cloudguard/get_managed_list.py +14 -14
pulumi_oci/cloudguard/get_managed_lists.py +16 -16
pulumi_oci/cloudguard/get_problem_entities.py +5 -3
pulumi_oci/cloudguard/get_responder_recipe.py +13 -13
pulumi_oci/cloudguard/get_responder_recipes.py +15 -13
pulumi_oci/cloudguard/get_saved_queries.py +190 -0
pulumi_oci/cloudguard/get_saved_query.py +235 -0
pulumi_oci/cloudguard/get_security_policies.py +14 -12
pulumi_oci/cloudguard/get_security_policy.py +12 -8
pulumi_oci/cloudguard/get_security_recipe.py +9 -9
pulumi_oci/cloudguard/get_security_recipes.py +14 -12
pulumi_oci/cloudguard/get_security_zone.py +8 -8
pulumi_oci/cloudguard/get_security_zones.py +17 -15
pulumi_oci/cloudguard/get_wlp_agent.py +258 -0
pulumi_oci/cloudguard/get_wlp_agents.py +136 -0
pulumi_oci/cloudguard/managed_list.py +57 -57
pulumi_oci/cloudguard/outputs.py +3493 -1808
pulumi_oci/cloudguard/responder_recipe.py +41 -39
pulumi_oci/cloudguard/saved_query.py +595 -0
pulumi_oci/cloudguard/security_recipe.py +43 -27
pulumi_oci/cloudguard/security_zone.py +22 -20
pulumi_oci/cloudguard/target.py +54 -54
pulumi_oci/cloudguard/wlp_agent.py +654 -0
pulumi_oci/cloudmigrations/_inputs.py +222 -496
pulumi_oci/cloudmigrations/outputs.py +222 -496
pulumi_oci/cloudmigrations/target_asset.py +15 -15
pulumi_oci/clusterplacementgroups/_inputs.py +2 -2
pulumi_oci/clusterplacementgroups/outputs.py +2 -2
pulumi_oci/computecloud/at_customer_ccc_upgrade_schedule.py +7 -7
pulumi_oci/containerengine/_inputs.py +22 -22
pulumi_oci/containerengine/container_instance.py +21 -21
pulumi_oci/containerengine/outputs.py +22 -22
pulumi_oci/containerengine/virtual_node_pool.py +7 -35
pulumi_oci/core/_inputs.py +404 -670
pulumi_oci/core/boot_volume.py +7 -7
pulumi_oci/core/cluster_network.py +22 -22
pulumi_oci/core/cross_connect_group.py +4 -20
pulumi_oci/core/drg_route_table_route_rule.py +7 -0
pulumi_oci/core/get_image.py +4 -0
pulumi_oci/core/get_instance.py +4 -0
pulumi_oci/core/get_public_ip.py +4 -0
pulumi_oci/core/get_public_ips.py +8 -0
pulumi_oci/core/get_vtap.py +2 -0
pulumi_oci/core/get_vtaps.py +2 -0
pulumi_oci/core/image.py +56 -0
pulumi_oci/core/instance.py +48 -48
pulumi_oci/core/instance_configuration.py +70 -28
pulumi_oci/core/instance_pool.py +7 -7
pulumi_oci/core/ipsec_connection_tunnel_management.py +8 -8
pulumi_oci/core/network_security_group_security_rule.py +28 -105
pulumi_oci/core/outputs.py +748 -668
pulumi_oci/core/public_ip.py +8 -0
pulumi_oci/core/vnic_attachment.py +8 -24
pulumi_oci/core/volume.py +7 -7
pulumi_oci/core/volume_group.py +7 -7
pulumi_oci/core/vtap.py +14 -0
pulumi_oci/database/_inputs.py +188 -220
pulumi_oci/database/autonomous_database.py +21 -7
pulumi_oci/database/autonomous_database_wallet.py +28 -0
pulumi_oci/database/backup_destination.py +11 -11
pulumi_oci/database/cloud_database_management.py +14 -0
pulumi_oci/database/database.py +28 -44
pulumi_oci/database/database_upgrade.py +4 -4
pulumi_oci/database/db_home.py +0 -13
pulumi_oci/database/get_autonomous_database_wallet.py +8 -0
pulumi_oci/database/outputs.py +188 -220
pulumi_oci/database/vm_cluster_network.py +4 -4
pulumi_oci/databasemanagement/_inputs.py +8 -8
pulumi_oci/databasemanagement/outputs.py +8 -8
pulumi_oci/databasemigration/_inputs.py +34 -34
pulumi_oci/databasemigration/connection.py +7 -7
pulumi_oci/databasemigration/migration.py +7 -7
pulumi_oci/databasemigration/outputs.py +34 -34
pulumi_oci/databasetools/_inputs.py +12 -36
pulumi_oci/databasetools/database_tools_connection.py +4 -4
pulumi_oci/databasetools/database_tools_private_endpoint.py +4 -4
pulumi_oci/databasetools/outputs.py +12 -36
pulumi_oci/dataintegration/_inputs.py +318 -330
pulumi_oci/dataintegration/outputs.py +318 -330
pulumi_oci/dataintegration/workspace_application.py +7 -7
pulumi_oci/dataintegration/workspace_application_patch.py +7 -7
pulumi_oci/dataintegration/workspace_application_schedule.py +11 -11
pulumi_oci/dataintegration/workspace_application_task_schedule.py +29 -29
pulumi_oci/dataintegration/workspace_folder.py +7 -7
pulumi_oci/dataintegration/workspace_project.py +7 -7
pulumi_oci/dataintegration/workspace_task.py +47 -47
pulumi_oci/datalabellingservice/_inputs.py +10 -10
pulumi_oci/datalabellingservice/outputs.py +10 -10
pulumi_oci/datasafe/__init__.py +2 -0
pulumi_oci/datasafe/_inputs.py +72 -80
pulumi_oci/datasafe/library_masing_format.py +7 -7
pulumi_oci/datasafe/masking_policies_masking_column.py +7 -7
pulumi_oci/datasafe/masking_policy.py +7 -7
pulumi_oci/datasafe/outputs.py +72 -80
pulumi_oci/datasafe/report_definition.py +8 -24
pulumi_oci/datasafe/set_security_assessment_baseline_management.py +304 -0
pulumi_oci/datasafe/set_user_assessment_baseline_management.py +304 -0
pulumi_oci/datasafe/target_database.py +21 -21
pulumi_oci/datascience/_inputs.py +337 -65
pulumi_oci/datascience/get_job_run.py +11 -1
pulumi_oci/datascience/get_model_deployment.py +11 -1
pulumi_oci/datascience/get_pipeline.py +3 -0
pulumi_oci/datascience/get_pipeline_run.py +14 -1
pulumi_oci/datascience/job_run.py +52 -3
pulumi_oci/datascience/model_deployment.py +51 -2
pulumi_oci/datascience/outputs.py +767 -104
pulumi_oci/datascience/pipeline.py +34 -14
pulumi_oci/datascience/pipeline_run.py +65 -0
pulumi_oci/devops/_inputs.py +80 -462
pulumi_oci/devops/deploy_stage.py +4 -4
pulumi_oci/devops/deployment.py +7 -7
pulumi_oci/devops/outputs.py +208 -1141
pulumi_oci/disasterrecovery/_inputs.py +6 -6
pulumi_oci/disasterrecovery/dr_plan_execution.py +4 -4
pulumi_oci/disasterrecovery/dr_protection_group.py +4 -4
pulumi_oci/disasterrecovery/outputs.py +6 -6
pulumi_oci/dns/_inputs.py +20 -8
pulumi_oci/dns/outputs.py +42 -8
pulumi_oci/dns/rrset.py +7 -7
pulumi_oci/dns/steering_policy.py +42 -0
pulumi_oci/events/_inputs.py +4 -12
pulumi_oci/events/outputs.py +4 -12
pulumi_oci/events/rule.py +7 -7
pulumi_oci/functions/_inputs.py +2 -2
pulumi_oci/functions/outputs.py +2 -2
pulumi_oci/goldengate/_inputs.py +2 -4
pulumi_oci/goldengate/outputs.py +2 -4
pulumi_oci/identity/_inputs.py +4860 -5954
pulumi_oci/identity/domains_api_key.py +70 -70
pulumi_oci/identity/domains_app.py +119 -140
pulumi_oci/identity/domains_auth_token.py +21 -21
pulumi_oci/identity/domains_cloud_gate.py +49 -49
pulumi_oci/identity/domains_customer_secret_key.py +21 -21
pulumi_oci/identity/domains_my_api_key.py +70 -70
pulumi_oci/identity/domains_my_auth_token.py +21 -21
pulumi_oci/identity/domains_my_customer_secret_key.py +21 -21
pulumi_oci/identity/domains_my_oauth2client_credential.py +49 -70
pulumi_oci/identity/domains_my_smtp_credential.py +21 -21
pulumi_oci/identity/domains_my_support_account.py +21 -21
pulumi_oci/identity/domains_my_user_db_credential.py +37 -41
pulumi_oci/identity/domains_oauth2client_credential.py +49 -70
pulumi_oci/identity/domains_policy.py +35 -49
pulumi_oci/identity/domains_rule.py +28 -21
pulumi_oci/identity/domains_setting.py +35 -21
pulumi_oci/identity/domains_smtp_credential.py +21 -21
pulumi_oci/identity/domains_user.py +189 -175
pulumi_oci/identity/domains_user_db_credential.py +37 -41
pulumi_oci/identity/outputs.py +4913 -6007
pulumi_oci/integration/_inputs.py +4 -0
pulumi_oci/integration/outputs.py +16 -4
pulumi_oci/jms/_inputs.py +0 -8
pulumi_oci/jms/outputs.py +0 -8
pulumi_oci/kms/_inputs.py +6 -6
pulumi_oci/kms/outputs.py +6 -6
pulumi_oci/loadbalancer/_inputs.py +14 -30
pulumi_oci/loadbalancer/load_balancer_routing_policy.py +7 -35
pulumi_oci/loadbalancer/outputs.py +14 -30
pulumi_oci/loganalytics/_inputs.py +26 -34
pulumi_oci/loganalytics/outputs.py +26 -34
pulumi_oci/logging/_inputs.py +60 -60
pulumi_oci/logging/outputs.py +60 -60
pulumi_oci/managementagent/_inputs.py +2 -46
pulumi_oci/managementagent/outputs.py +2 -46
pulumi_oci/marketplace/_inputs.py +6 -6
pulumi_oci/marketplace/outputs.py +6 -6
pulumi_oci/marketplace/publication.py +11 -11
pulumi_oci/mediaservices/_inputs.py +8 -32
pulumi_oci/mediaservices/media_asset.py +18 -18
pulumi_oci/mediaservices/media_workflow.py +22 -38
pulumi_oci/mediaservices/media_workflow_configuration.py +11 -11
pulumi_oci/mediaservices/media_workflow_job.py +11 -11
pulumi_oci/mediaservices/outputs.py +8 -32
pulumi_oci/mediaservices/stream_cdn_config.py +4 -4
pulumi_oci/mediaservices/stream_distribution_channel.py +11 -11
pulumi_oci/mediaservices/stream_packaging_config.py +4 -4
pulumi_oci/meteringcomputation/_inputs.py +2 -2
pulumi_oci/meteringcomputation/outputs.py +2 -2
pulumi_oci/meteringcomputation/usage_statement_email_recipients_group.py +4 -4
pulumi_oci/monitoring/_inputs.py +4 -4
pulumi_oci/monitoring/alarm.py +21 -0
pulumi_oci/monitoring/get_alarm.py +3 -0
pulumi_oci/monitoring/outputs.py +10 -4
pulumi_oci/mysql/_inputs.py +30 -22
pulumi_oci/mysql/outputs.py +30 -22
pulumi_oci/mysql/replica.py +12 -28
pulumi_oci/networkfirewall/get_network_firewall_policy_mapped_secret.py +2 -0
pulumi_oci/networkfirewall/network_firewall_policy_mapped_secret.py +14 -0
pulumi_oci/networkfirewall/outputs.py +4 -0
pulumi_oci/networkloadbalancer/_inputs.py +10 -26
pulumi_oci/networkloadbalancer/outputs.py +10 -26
pulumi_oci/nosql/_inputs.py +4 -12
pulumi_oci/nosql/outputs.py +4 -12
pulumi_oci/objectstorage/_inputs.py +4 -4
pulumi_oci/objectstorage/outputs.py +4 -4
pulumi_oci/ocvp/_inputs.py +86 -42
pulumi_oci/ocvp/get_retrieve_password.py +1 -0
pulumi_oci/ocvp/outputs.py +86 -42
pulumi_oci/ocvp/sddc.py +49 -77
pulumi_oci/ons/subscription.py +63 -0
pulumi_oci/opa/_inputs.py +6 -2
pulumi_oci/opa/outputs.py +18 -6
pulumi_oci/opsi/_inputs.py +6 -6
pulumi_oci/opsi/exadata_insight.py +28 -28
pulumi_oci/opsi/outputs.py +6 -6
pulumi_oci/optimizer/_inputs.py +4 -4
pulumi_oci/optimizer/outputs.py +4 -4
pulumi_oci/osmanagement/_inputs.py +2 -10
pulumi_oci/osmanagement/outputs.py +2 -10
pulumi_oci/osmanagementhub/_inputs.py +24 -8
pulumi_oci/osmanagementhub/event.py +32 -0
pulumi_oci/osmanagementhub/get_event.py +8 -0
pulumi_oci/osmanagementhub/get_events.py +8 -0
pulumi_oci/osmanagementhub/lifecycle_environment.py +14 -14
pulumi_oci/osmanagementhub/outputs.py +40 -8
pulumi_oci/osmanagementhub/software_source.py +7 -7
pulumi_oci/ospgateway/_inputs.py +96 -96
pulumi_oci/ospgateway/outputs.py +96 -96
pulumi_oci/ospgateway/subscription.py +80 -80
pulumi_oci/psql/_inputs.py +10 -18
pulumi_oci/psql/db_system.py +14 -14
pulumi_oci/psql/outputs.py +10 -18
pulumi_oci/pulumi-plugin.json +1 -1
pulumi_oci/queue/get_queue.py +9 -9
pulumi_oci/queue/outputs.py +5 -5
pulumi_oci/queue/queue.py +77 -26
pulumi_oci/sch/_inputs.py +26 -26
pulumi_oci/sch/connector.py +7 -7
pulumi_oci/sch/outputs.py +26 -26
pulumi_oci/servicecatalog/private_application.py +4 -4
pulumi_oci/servicemesh/_inputs.py +8 -24
pulumi_oci/servicemesh/ingress_gateway_route_table.py +7 -7
pulumi_oci/servicemesh/outputs.py +8 -24
pulumi_oci/stackmonitoring/_inputs.py +40 -56
pulumi_oci/stackmonitoring/metric_extension.py +18 -18
pulumi_oci/stackmonitoring/monitored_resource.py +7 -7
pulumi_oci/stackmonitoring/outputs.py +40 -56
pulumi_oci/visualbuilder/_inputs.py +6 -2
pulumi_oci/visualbuilder/outputs.py +18 -6
pulumi_oci/vnmonitoring/_inputs.py +10 -42
pulumi_oci/vnmonitoring/outputs.py +10 -42
pulumi_oci/vulnerabilityscanning/_inputs.py +4 -4
pulumi_oci/vulnerabilityscanning/container_scan_target.py +7 -7
pulumi_oci/vulnerabilityscanning/outputs.py +4 -4
pulumi_oci/waas/_inputs.py +133 -205
pulumi_oci/waas/outputs.py +133 -205
pulumi_oci/waas/policy.py +7 -7
pulumi_oci/waas/protection_rule.py +7 -7
pulumi_oci/waf/_inputs.py +36 -30
pulumi_oci/waf/network_address_list.py +7 -7
pulumi_oci/waf/outputs.py +36 -30
{pulumi_oci-1.37.0a1715927489.dist-info → pulumi_oci-1.37.0a1716526633.dist-info}/METADATA +1 -1
{pulumi_oci-1.37.0a1715927489.dist-info → pulumi_oci-1.37.0a1716526633.dist-info}/RECORD +307 -296
{pulumi_oci-1.37.0a1715927489.dist-info → pulumi_oci-1.37.0a1716526633.dist-info}/WHEEL +0 -0
{pulumi_oci-1.37.0a1715927489.dist-info → pulumi_oci-1.37.0a1716526633.dist-info}/top_level.txt +0 -0

pulumi_oci/core/network_security_group_security_rule.py CHANGED Viewed

@@ -33,28 +33,17 @@ class NetworkSecurityGroupSecurityRuleArgs:
         :param pulumi.Input[str] direction: Direction of the security rule. Set to `EGRESS` for rules to allow outbound IP packets, or `INGRESS` for rules to allow inbound IP packets.
         :param pulumi.Input[str] network_security_group_id: The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the network security group.
         :param pulumi.Input[str] protocol: The transport protocol. Specify either `all` or an IPv4 protocol number as defined in [Protocol Numbers](http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml). Options are supported only for ICMP ("1"), TCP ("6"), UDP ("17"), and ICMPv6 ("58").
-        :param pulumi.Input[str] description: An optional description of your choice for the rule. Avoid entering confidential information.
+        :param pulumi.Input[str] description: An optional description of your choice for the rule.
         :param pulumi.Input[str] destination: Conceptually, this is the range of IP addresses that a packet originating from the instance can go to.
-               Allowed values:
-               * An IP address range in CIDR notation. For example: `192.168.1.0/24` or `2001:0db8:0123:45::/56` IPv6 addressing is supported for all commercial and government regions. See [IPv6 Addresses](https://docs.cloud.oracle.com/iaas/Content/Network/Concepts/ipv6.htm).
-               * The `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/), if you're setting up a security rule for traffic destined for a particular `Service` through a service gateway. For example: `oci-phx-objectstorage`.
-               * The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/) in the same VCN. The value can be the NSG that the rule belongs to if the rule's intent is to control traffic between VNICs in the same NSG.
         :param pulumi.Input[str] destination_type: Type of destination for the rule. Required if `direction` = `EGRESS`.
-               Allowed values:
         :param pulumi.Input['NetworkSecurityGroupSecurityRuleIcmpOptionsArgs'] icmp_options: Optional and valid only for ICMP and ICMPv6. Use to specify a particular ICMP type and code as defined in:
                * [ICMP Parameters](http://www.iana.org/assignments/icmp-parameters/icmp-parameters.xhtml)
                * [ICMPv6 Parameters](https://www.iana.org/assignments/icmpv6-parameters/icmpv6-parameters.xhtml)
-               If you specify ICMP or ICMPv6 as the protocol but omit this object, then all ICMP types and codes are allowed. If you do provide this object, the type is required and the code is optional. To enable MTU negotiation for ingress internet traffic via IPv4, make sure to allow type 3 ("Destination Unreachable") code 4 ("Fragmentation Needed and Don't Fragment was Set"). If you need to specify multiple codes for a single type, create a separate security list rule for each.
         :param pulumi.Input[str] source: Conceptually, this is the range of IP addresses that a packet coming into the instance can come from.
-               Allowed values:
-               * An IP address range in CIDR notation. For example: `192.168.1.0/24` or `2001:0db8:0123:45::/56` IPv6 addressing is supported for all commercial and government regions. See [IPv6 Addresses](https://docs.cloud.oracle.com/iaas/Content/Network/Concepts/ipv6.htm).
-               * The `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/), if you're setting up a security rule for traffic coming from a particular `Service` through a service gateway. For example: `oci-phx-objectstorage`.
-               * The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/) in the same VCN. The value can be the NSG that the rule belongs to if the rule's intent is to control traffic between VNICs in the same NSG.
         :param pulumi.Input[str] source_type: Type of source for the rule. Required if `direction` = `INGRESS`.
+               * `CIDR_BLOCK`: If the rule's `source` is an IP address range in CIDR notation.
+               * `SERVICE_CIDR_BLOCK`: If the rule's `source` is the `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/) (the rule is for traffic coming from a particular `Service` through a service gateway).
+               * `NETWORK_SECURITY_GROUP`: If the rule's `source` is the [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/).
         :param pulumi.Input[bool] stateless: A stateless rule allows traffic in one direction. Remember to add a corresponding stateless rule in the other direction if you need to support bidirectional traffic. For example, if egress traffic allows TCP destination port 80, there should be an ingress rule to allow TCP source port 80. Defaults to false, which means the rule is stateful and a corresponding rule is not necessary for bidirectional traffic.
         :param pulumi.Input['NetworkSecurityGroupSecurityRuleTcpOptionsArgs'] tcp_options: Optional and valid only for TCP. Use to specify particular destination ports for TCP rules. If you specify TCP as the protocol but omit this object, then all destination ports are allowed.
         :param pulumi.Input['NetworkSecurityGroupSecurityRuleUdpOptionsArgs'] udp_options: Optional and valid only for UDP. Use to specify particular destination ports for UDP rules. If you specify UDP as the protocol but omit this object, then all destination ports are allowed.
@@ -121,7 +110,7 @@ class NetworkSecurityGroupSecurityRuleArgs:
     @pulumi.getter
     def description(self) -> Optional[pulumi.Input[str]]:
         """
-        An optional description of your choice for the rule. Avoid entering confidential information.
+        An optional description of your choice for the rule.
         """
         return pulumi.get(self, "description")
@@ -134,11 +123,6 @@ class NetworkSecurityGroupSecurityRuleArgs:
     def destination(self) -> Optional[pulumi.Input[str]]:
         """
         Conceptually, this is the range of IP addresses that a packet originating from the instance can go to.
-        Allowed values:
-        * An IP address range in CIDR notation. For example: `192.168.1.0/24` or `2001:0db8:0123:45::/56` IPv6 addressing is supported for all commercial and government regions. See [IPv6 Addresses](https://docs.cloud.oracle.com/iaas/Content/Network/Concepts/ipv6.htm).
-        * The `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/), if you're setting up a security rule for traffic destined for a particular `Service` through a service gateway. For example: `oci-phx-objectstorage`.
-        * The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/) in the same VCN. The value can be the NSG that the rule belongs to if the rule's intent is to control traffic between VNICs in the same NSG.
         """
         return pulumi.get(self, "destination")
@@ -151,8 +135,6 @@ class NetworkSecurityGroupSecurityRuleArgs:
     def destination_type(self) -> Optional[pulumi.Input[str]]:
         """
         Type of destination for the rule. Required if `direction` = `EGRESS`.
-        Allowed values:
         """
         return pulumi.get(self, "destination_type")
@@ -167,8 +149,6 @@ class NetworkSecurityGroupSecurityRuleArgs:
         Optional and valid only for ICMP and ICMPv6. Use to specify a particular ICMP type and code as defined in:
         * [ICMP Parameters](http://www.iana.org/assignments/icmp-parameters/icmp-parameters.xhtml)
         * [ICMPv6 Parameters](https://www.iana.org/assignments/icmpv6-parameters/icmpv6-parameters.xhtml)
-        If you specify ICMP or ICMPv6 as the protocol but omit this object, then all ICMP types and codes are allowed. If you do provide this object, the type is required and the code is optional. To enable MTU negotiation for ingress internet traffic via IPv4, make sure to allow type 3 ("Destination Unreachable") code 4 ("Fragmentation Needed and Don't Fragment was Set"). If you need to specify multiple codes for a single type, create a separate security list rule for each.
         """
         return pulumi.get(self, "icmp_options")
@@ -181,11 +161,6 @@ class NetworkSecurityGroupSecurityRuleArgs:
     def source(self) -> Optional[pulumi.Input[str]]:
         """
         Conceptually, this is the range of IP addresses that a packet coming into the instance can come from.
-        Allowed values:
-        * An IP address range in CIDR notation. For example: `192.168.1.0/24` or `2001:0db8:0123:45::/56` IPv6 addressing is supported for all commercial and government regions. See [IPv6 Addresses](https://docs.cloud.oracle.com/iaas/Content/Network/Concepts/ipv6.htm).
-        * The `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/), if you're setting up a security rule for traffic coming from a particular `Service` through a service gateway. For example: `oci-phx-objectstorage`.
-        * The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/) in the same VCN. The value can be the NSG that the rule belongs to if the rule's intent is to control traffic between VNICs in the same NSG.
         """
         return pulumi.get(self, "source")
@@ -198,6 +173,9 @@ class NetworkSecurityGroupSecurityRuleArgs:
     def source_type(self) -> Optional[pulumi.Input[str]]:
         """
         Type of source for the rule. Required if `direction` = `INGRESS`.
+        * `CIDR_BLOCK`: If the rule's `source` is an IP address range in CIDR notation.
+        * `SERVICE_CIDR_BLOCK`: If the rule's `source` is the `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/) (the rule is for traffic coming from a particular `Service` through a service gateway).
+        * `NETWORK_SECURITY_GROUP`: If the rule's `source` is the [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/).
         """
         return pulumi.get(self, "source_type")
@@ -261,32 +239,21 @@ class _NetworkSecurityGroupSecurityRuleState:
                  udp_options: Optional[pulumi.Input['NetworkSecurityGroupSecurityRuleUdpOptionsArgs']] = None):
         """
         Input properties used for looking up and filtering NetworkSecurityGroupSecurityRule resources.
-        :param pulumi.Input[str] description: An optional description of your choice for the rule. Avoid entering confidential information.
+        :param pulumi.Input[str] description: An optional description of your choice for the rule.
         :param pulumi.Input[str] destination: Conceptually, this is the range of IP addresses that a packet originating from the instance can go to.
-               Allowed values:
-               * An IP address range in CIDR notation. For example: `192.168.1.0/24` or `2001:0db8:0123:45::/56` IPv6 addressing is supported for all commercial and government regions. See [IPv6 Addresses](https://docs.cloud.oracle.com/iaas/Content/Network/Concepts/ipv6.htm).
-               * The `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/), if you're setting up a security rule for traffic destined for a particular `Service` through a service gateway. For example: `oci-phx-objectstorage`.
-               * The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/) in the same VCN. The value can be the NSG that the rule belongs to if the rule's intent is to control traffic between VNICs in the same NSG.
         :param pulumi.Input[str] destination_type: Type of destination for the rule. Required if `direction` = `EGRESS`.
-               Allowed values:
         :param pulumi.Input[str] direction: Direction of the security rule. Set to `EGRESS` for rules to allow outbound IP packets, or `INGRESS` for rules to allow inbound IP packets.
         :param pulumi.Input['NetworkSecurityGroupSecurityRuleIcmpOptionsArgs'] icmp_options: Optional and valid only for ICMP and ICMPv6. Use to specify a particular ICMP type and code as defined in:
                * [ICMP Parameters](http://www.iana.org/assignments/icmp-parameters/icmp-parameters.xhtml)
                * [ICMPv6 Parameters](https://www.iana.org/assignments/icmpv6-parameters/icmpv6-parameters.xhtml)
-               If you specify ICMP or ICMPv6 as the protocol but omit this object, then all ICMP types and codes are allowed. If you do provide this object, the type is required and the code is optional. To enable MTU negotiation for ingress internet traffic via IPv4, make sure to allow type 3 ("Destination Unreachable") code 4 ("Fragmentation Needed and Don't Fragment was Set"). If you need to specify multiple codes for a single type, create a separate security list rule for each.
         :param pulumi.Input[bool] is_valid: Whether the rule is valid. The value is `True` when the rule is first created. If the rule's `source` or `destination` is a network security group, the value changes to `False` if that network security group is deleted.
         :param pulumi.Input[str] network_security_group_id: The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the network security group.
         :param pulumi.Input[str] protocol: The transport protocol. Specify either `all` or an IPv4 protocol number as defined in [Protocol Numbers](http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml). Options are supported only for ICMP ("1"), TCP ("6"), UDP ("17"), and ICMPv6 ("58").
         :param pulumi.Input[str] source: Conceptually, this is the range of IP addresses that a packet coming into the instance can come from.
-               Allowed values:
-               * An IP address range in CIDR notation. For example: `192.168.1.0/24` or `2001:0db8:0123:45::/56` IPv6 addressing is supported for all commercial and government regions. See [IPv6 Addresses](https://docs.cloud.oracle.com/iaas/Content/Network/Concepts/ipv6.htm).
-               * The `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/), if you're setting up a security rule for traffic coming from a particular `Service` through a service gateway. For example: `oci-phx-objectstorage`.
-               * The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/) in the same VCN. The value can be the NSG that the rule belongs to if the rule's intent is to control traffic between VNICs in the same NSG.
         :param pulumi.Input[str] source_type: Type of source for the rule. Required if `direction` = `INGRESS`.
+               * `CIDR_BLOCK`: If the rule's `source` is an IP address range in CIDR notation.
+               * `SERVICE_CIDR_BLOCK`: If the rule's `source` is the `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/) (the rule is for traffic coming from a particular `Service` through a service gateway).
+               * `NETWORK_SECURITY_GROUP`: If the rule's `source` is the [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/).
         :param pulumi.Input[bool] stateless: A stateless rule allows traffic in one direction. Remember to add a corresponding stateless rule in the other direction if you need to support bidirectional traffic. For example, if egress traffic allows TCP destination port 80, there should be an ingress rule to allow TCP source port 80. Defaults to false, which means the rule is stateful and a corresponding rule is not necessary for bidirectional traffic.
         :param pulumi.Input['NetworkSecurityGroupSecurityRuleTcpOptionsArgs'] tcp_options: Optional and valid only for TCP. Use to specify particular destination ports for TCP rules. If you specify TCP as the protocol but omit this object, then all destination ports are allowed.
         :param pulumi.Input[str] time_created: The date and time the security rule was created. Format defined by [RFC3339](https://tools.ietf.org/html/rfc3339).
@@ -325,7 +292,7 @@ class _NetworkSecurityGroupSecurityRuleState:
     @pulumi.getter
     def description(self) -> Optional[pulumi.Input[str]]:
         """
-        An optional description of your choice for the rule. Avoid entering confidential information.
+        An optional description of your choice for the rule.
         """
         return pulumi.get(self, "description")
@@ -338,11 +305,6 @@ class _NetworkSecurityGroupSecurityRuleState:
     def destination(self) -> Optional[pulumi.Input[str]]:
         """
         Conceptually, this is the range of IP addresses that a packet originating from the instance can go to.
-        Allowed values:
-        * An IP address range in CIDR notation. For example: `192.168.1.0/24` or `2001:0db8:0123:45::/56` IPv6 addressing is supported for all commercial and government regions. See [IPv6 Addresses](https://docs.cloud.oracle.com/iaas/Content/Network/Concepts/ipv6.htm).
-        * The `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/), if you're setting up a security rule for traffic destined for a particular `Service` through a service gateway. For example: `oci-phx-objectstorage`.
-        * The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/) in the same VCN. The value can be the NSG that the rule belongs to if the rule's intent is to control traffic between VNICs in the same NSG.
         """
         return pulumi.get(self, "destination")
@@ -355,8 +317,6 @@ class _NetworkSecurityGroupSecurityRuleState:
     def destination_type(self) -> Optional[pulumi.Input[str]]:
         """
         Type of destination for the rule. Required if `direction` = `EGRESS`.
-        Allowed values:
         """
         return pulumi.get(self, "destination_type")
@@ -383,8 +343,6 @@ class _NetworkSecurityGroupSecurityRuleState:
         Optional and valid only for ICMP and ICMPv6. Use to specify a particular ICMP type and code as defined in:
         * [ICMP Parameters](http://www.iana.org/assignments/icmp-parameters/icmp-parameters.xhtml)
         * [ICMPv6 Parameters](https://www.iana.org/assignments/icmpv6-parameters/icmpv6-parameters.xhtml)
-        If you specify ICMP or ICMPv6 as the protocol but omit this object, then all ICMP types and codes are allowed. If you do provide this object, the type is required and the code is optional. To enable MTU negotiation for ingress internet traffic via IPv4, make sure to allow type 3 ("Destination Unreachable") code 4 ("Fragmentation Needed and Don't Fragment was Set"). If you need to specify multiple codes for a single type, create a separate security list rule for each.
         """
         return pulumi.get(self, "icmp_options")
@@ -433,11 +391,6 @@ class _NetworkSecurityGroupSecurityRuleState:
     def source(self) -> Optional[pulumi.Input[str]]:
         """
         Conceptually, this is the range of IP addresses that a packet coming into the instance can come from.
-        Allowed values:
-        * An IP address range in CIDR notation. For example: `192.168.1.0/24` or `2001:0db8:0123:45::/56` IPv6 addressing is supported for all commercial and government regions. See [IPv6 Addresses](https://docs.cloud.oracle.com/iaas/Content/Network/Concepts/ipv6.htm).
-        * The `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/), if you're setting up a security rule for traffic coming from a particular `Service` through a service gateway. For example: `oci-phx-objectstorage`.
-        * The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/) in the same VCN. The value can be the NSG that the rule belongs to if the rule's intent is to control traffic between VNICs in the same NSG.
         """
         return pulumi.get(self, "source")
@@ -450,6 +403,9 @@ class _NetworkSecurityGroupSecurityRuleState:
     def source_type(self) -> Optional[pulumi.Input[str]]:
         """
         Type of source for the rule. Required if `direction` = `INGRESS`.
+        * `CIDR_BLOCK`: If the rule's `source` is an IP address range in CIDR notation.
+        * `SERVICE_CIDR_BLOCK`: If the rule's `source` is the `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/) (the rule is for traffic coming from a particular `Service` through a service gateway).
+        * `NETWORK_SECURITY_GROUP`: If the rule's `source` is the [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/).
         """
         return pulumi.get(self, "source_type")
@@ -581,31 +537,20 @@ class NetworkSecurityGroupSecurityRule(pulumi.CustomResource):
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[str] description: An optional description of your choice for the rule. Avoid entering confidential information.
+        :param pulumi.Input[str] description: An optional description of your choice for the rule.
         :param pulumi.Input[str] destination: Conceptually, this is the range of IP addresses that a packet originating from the instance can go to.
-               Allowed values:
-               * An IP address range in CIDR notation. For example: `192.168.1.0/24` or `2001:0db8:0123:45::/56` IPv6 addressing is supported for all commercial and government regions. See [IPv6 Addresses](https://docs.cloud.oracle.com/iaas/Content/Network/Concepts/ipv6.htm).
-               * The `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/), if you're setting up a security rule for traffic destined for a particular `Service` through a service gateway. For example: `oci-phx-objectstorage`.
-               * The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/) in the same VCN. The value can be the NSG that the rule belongs to if the rule's intent is to control traffic between VNICs in the same NSG.
         :param pulumi.Input[str] destination_type: Type of destination for the rule. Required if `direction` = `EGRESS`.
-               Allowed values:
         :param pulumi.Input[str] direction: Direction of the security rule. Set to `EGRESS` for rules to allow outbound IP packets, or `INGRESS` for rules to allow inbound IP packets.
         :param pulumi.Input[pulumi.InputType['NetworkSecurityGroupSecurityRuleIcmpOptionsArgs']] icmp_options: Optional and valid only for ICMP and ICMPv6. Use to specify a particular ICMP type and code as defined in:
                * [ICMP Parameters](http://www.iana.org/assignments/icmp-parameters/icmp-parameters.xhtml)
                * [ICMPv6 Parameters](https://www.iana.org/assignments/icmpv6-parameters/icmpv6-parameters.xhtml)
-               If you specify ICMP or ICMPv6 as the protocol but omit this object, then all ICMP types and codes are allowed. If you do provide this object, the type is required and the code is optional. To enable MTU negotiation for ingress internet traffic via IPv4, make sure to allow type 3 ("Destination Unreachable") code 4 ("Fragmentation Needed and Don't Fragment was Set"). If you need to specify multiple codes for a single type, create a separate security list rule for each.
         :param pulumi.Input[str] network_security_group_id: The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the network security group.
         :param pulumi.Input[str] protocol: The transport protocol. Specify either `all` or an IPv4 protocol number as defined in [Protocol Numbers](http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml). Options are supported only for ICMP ("1"), TCP ("6"), UDP ("17"), and ICMPv6 ("58").
         :param pulumi.Input[str] source: Conceptually, this is the range of IP addresses that a packet coming into the instance can come from.
-               Allowed values:
-               * An IP address range in CIDR notation. For example: `192.168.1.0/24` or `2001:0db8:0123:45::/56` IPv6 addressing is supported for all commercial and government regions. See [IPv6 Addresses](https://docs.cloud.oracle.com/iaas/Content/Network/Concepts/ipv6.htm).
-               * The `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/), if you're setting up a security rule for traffic coming from a particular `Service` through a service gateway. For example: `oci-phx-objectstorage`.
-               * The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/) in the same VCN. The value can be the NSG that the rule belongs to if the rule's intent is to control traffic between VNICs in the same NSG.
         :param pulumi.Input[str] source_type: Type of source for the rule. Required if `direction` = `INGRESS`.
+               * `CIDR_BLOCK`: If the rule's `source` is an IP address range in CIDR notation.
+               * `SERVICE_CIDR_BLOCK`: If the rule's `source` is the `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/) (the rule is for traffic coming from a particular `Service` through a service gateway).
+               * `NETWORK_SECURITY_GROUP`: If the rule's `source` is the [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/).
         :param pulumi.Input[bool] stateless: A stateless rule allows traffic in one direction. Remember to add a corresponding stateless rule in the other direction if you need to support bidirectional traffic. For example, if egress traffic allows TCP destination port 80, there should be an ingress rule to allow TCP source port 80. Defaults to false, which means the rule is stateful and a corresponding rule is not necessary for bidirectional traffic.
         :param pulumi.Input[pulumi.InputType['NetworkSecurityGroupSecurityRuleTcpOptionsArgs']] tcp_options: Optional and valid only for TCP. Use to specify particular destination ports for TCP rules. If you specify TCP as the protocol but omit this object, then all destination ports are allowed.
         :param pulumi.Input[pulumi.InputType['NetworkSecurityGroupSecurityRuleUdpOptionsArgs']] udp_options: Optional and valid only for UDP. Use to specify particular destination ports for UDP rules. If you specify UDP as the protocol but omit this object, then all destination ports are allowed.
@@ -758,32 +703,21 @@ class NetworkSecurityGroupSecurityRule(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[str] description: An optional description of your choice for the rule. Avoid entering confidential information.
+        :param pulumi.Input[str] description: An optional description of your choice for the rule.
         :param pulumi.Input[str] destination: Conceptually, this is the range of IP addresses that a packet originating from the instance can go to.
-               Allowed values:
-               * An IP address range in CIDR notation. For example: `192.168.1.0/24` or `2001:0db8:0123:45::/56` IPv6 addressing is supported for all commercial and government regions. See [IPv6 Addresses](https://docs.cloud.oracle.com/iaas/Content/Network/Concepts/ipv6.htm).
-               * The `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/), if you're setting up a security rule for traffic destined for a particular `Service` through a service gateway. For example: `oci-phx-objectstorage`.
-               * The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/) in the same VCN. The value can be the NSG that the rule belongs to if the rule's intent is to control traffic between VNICs in the same NSG.
         :param pulumi.Input[str] destination_type: Type of destination for the rule. Required if `direction` = `EGRESS`.
-               Allowed values:
         :param pulumi.Input[str] direction: Direction of the security rule. Set to `EGRESS` for rules to allow outbound IP packets, or `INGRESS` for rules to allow inbound IP packets.
         :param pulumi.Input[pulumi.InputType['NetworkSecurityGroupSecurityRuleIcmpOptionsArgs']] icmp_options: Optional and valid only for ICMP and ICMPv6. Use to specify a particular ICMP type and code as defined in:
                * [ICMP Parameters](http://www.iana.org/assignments/icmp-parameters/icmp-parameters.xhtml)
                * [ICMPv6 Parameters](https://www.iana.org/assignments/icmpv6-parameters/icmpv6-parameters.xhtml)
-               If you specify ICMP or ICMPv6 as the protocol but omit this object, then all ICMP types and codes are allowed. If you do provide this object, the type is required and the code is optional. To enable MTU negotiation for ingress internet traffic via IPv4, make sure to allow type 3 ("Destination Unreachable") code 4 ("Fragmentation Needed and Don't Fragment was Set"). If you need to specify multiple codes for a single type, create a separate security list rule for each.
         :param pulumi.Input[bool] is_valid: Whether the rule is valid. The value is `True` when the rule is first created. If the rule's `source` or `destination` is a network security group, the value changes to `False` if that network security group is deleted.
         :param pulumi.Input[str] network_security_group_id: The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the network security group.
         :param pulumi.Input[str] protocol: The transport protocol. Specify either `all` or an IPv4 protocol number as defined in [Protocol Numbers](http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml). Options are supported only for ICMP ("1"), TCP ("6"), UDP ("17"), and ICMPv6 ("58").
         :param pulumi.Input[str] source: Conceptually, this is the range of IP addresses that a packet coming into the instance can come from.
-               Allowed values:
-               * An IP address range in CIDR notation. For example: `192.168.1.0/24` or `2001:0db8:0123:45::/56` IPv6 addressing is supported for all commercial and government regions. See [IPv6 Addresses](https://docs.cloud.oracle.com/iaas/Content/Network/Concepts/ipv6.htm).
-               * The `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/), if you're setting up a security rule for traffic coming from a particular `Service` through a service gateway. For example: `oci-phx-objectstorage`.
-               * The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/) in the same VCN. The value can be the NSG that the rule belongs to if the rule's intent is to control traffic between VNICs in the same NSG.
         :param pulumi.Input[str] source_type: Type of source for the rule. Required if `direction` = `INGRESS`.
+               * `CIDR_BLOCK`: If the rule's `source` is an IP address range in CIDR notation.
+               * `SERVICE_CIDR_BLOCK`: If the rule's `source` is the `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/) (the rule is for traffic coming from a particular `Service` through a service gateway).
+               * `NETWORK_SECURITY_GROUP`: If the rule's `source` is the [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/).
         :param pulumi.Input[bool] stateless: A stateless rule allows traffic in one direction. Remember to add a corresponding stateless rule in the other direction if you need to support bidirectional traffic. For example, if egress traffic allows TCP destination port 80, there should be an ingress rule to allow TCP source port 80. Defaults to false, which means the rule is stateful and a corresponding rule is not necessary for bidirectional traffic.
         :param pulumi.Input[pulumi.InputType['NetworkSecurityGroupSecurityRuleTcpOptionsArgs']] tcp_options: Optional and valid only for TCP. Use to specify particular destination ports for TCP rules. If you specify TCP as the protocol but omit this object, then all destination ports are allowed.
         :param pulumi.Input[str] time_created: The date and time the security rule was created. Format defined by [RFC3339](https://tools.ietf.org/html/rfc3339).
@@ -813,7 +747,7 @@ class NetworkSecurityGroupSecurityRule(pulumi.CustomResource):
     @pulumi.getter
     def description(self) -> pulumi.Output[str]:
         """
-        An optional description of your choice for the rule. Avoid entering confidential information.
+        An optional description of your choice for the rule.
         """
         return pulumi.get(self, "description")
@@ -822,11 +756,6 @@ class NetworkSecurityGroupSecurityRule(pulumi.CustomResource):
     def destination(self) -> pulumi.Output[str]:
         """
         Conceptually, this is the range of IP addresses that a packet originating from the instance can go to.
-        Allowed values:
-        * An IP address range in CIDR notation. For example: `192.168.1.0/24` or `2001:0db8:0123:45::/56` IPv6 addressing is supported for all commercial and government regions. See [IPv6 Addresses](https://docs.cloud.oracle.com/iaas/Content/Network/Concepts/ipv6.htm).
-        * The `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/), if you're setting up a security rule for traffic destined for a particular `Service` through a service gateway. For example: `oci-phx-objectstorage`.
-        * The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/) in the same VCN. The value can be the NSG that the rule belongs to if the rule's intent is to control traffic between VNICs in the same NSG.
         """
         return pulumi.get(self, "destination")
@@ -835,8 +764,6 @@ class NetworkSecurityGroupSecurityRule(pulumi.CustomResource):
     def destination_type(self) -> pulumi.Output[str]:
         """
         Type of destination for the rule. Required if `direction` = `EGRESS`.
-        Allowed values:
         """
         return pulumi.get(self, "destination_type")
@@ -855,8 +782,6 @@ class NetworkSecurityGroupSecurityRule(pulumi.CustomResource):
         Optional and valid only for ICMP and ICMPv6. Use to specify a particular ICMP type and code as defined in:
         * [ICMP Parameters](http://www.iana.org/assignments/icmp-parameters/icmp-parameters.xhtml)
         * [ICMPv6 Parameters](https://www.iana.org/assignments/icmpv6-parameters/icmpv6-parameters.xhtml)
-        If you specify ICMP or ICMPv6 as the protocol but omit this object, then all ICMP types and codes are allowed. If you do provide this object, the type is required and the code is optional. To enable MTU negotiation for ingress internet traffic via IPv4, make sure to allow type 3 ("Destination Unreachable") code 4 ("Fragmentation Needed and Don't Fragment was Set"). If you need to specify multiple codes for a single type, create a separate security list rule for each.
         """
         return pulumi.get(self, "icmp_options")
@@ -889,11 +814,6 @@ class NetworkSecurityGroupSecurityRule(pulumi.CustomResource):
     def source(self) -> pulumi.Output[Optional[str]]:
         """
         Conceptually, this is the range of IP addresses that a packet coming into the instance can come from.
-        Allowed values:
-        * An IP address range in CIDR notation. For example: `192.168.1.0/24` or `2001:0db8:0123:45::/56` IPv6 addressing is supported for all commercial and government regions. See [IPv6 Addresses](https://docs.cloud.oracle.com/iaas/Content/Network/Concepts/ipv6.htm).
-        * The `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/), if you're setting up a security rule for traffic coming from a particular `Service` through a service gateway. For example: `oci-phx-objectstorage`.
-        * The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/) in the same VCN. The value can be the NSG that the rule belongs to if the rule's intent is to control traffic between VNICs in the same NSG.
         """
         return pulumi.get(self, "source")
@@ -902,6 +822,9 @@ class NetworkSecurityGroupSecurityRule(pulumi.CustomResource):
     def source_type(self) -> pulumi.Output[str]:
         """
         Type of source for the rule. Required if `direction` = `INGRESS`.
+        * `CIDR_BLOCK`: If the rule's `source` is an IP address range in CIDR notation.
+        * `SERVICE_CIDR_BLOCK`: If the rule's `source` is the `cidrBlock` value for a [Service](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/Service/) (the rule is for traffic coming from a particular `Service` through a service gateway).
+        * `NETWORK_SECURITY_GROUP`: If the rule's `source` is the [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of a [NetworkSecurityGroup](https://docs.cloud.oracle.com/iaas/api/#/en/iaas/latest/NetworkSecurityGroup/).
         """
         return pulumi.get(self, "source_type")

pulumi-oci 1.37.0a1715927489__py3-none-any.whl → 1.37.0a1716526633__py3-none-any.whl

pulumi-oci 1.37.0a1715927489py3-none-any.whl → 1.37.0a1716526633py3-none-any.whl