pulumi-sdwan 0.3.0a1743057086__py3-none-any.whl → 0.3.1__py3-none-any.whl

pulumi_sdwan/security_policy.py

@@ -2,6 +2,7 @@
 # *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
 
+import builtins
 import copy
 import warnings
 import sys
@@ -22,34 +23,48 @@ __all__ = ['SecurityPolicyArgs', 'SecurityPolicy']
 class SecurityPolicyArgs:
     def __init__(__self__, *,
                  definitions: pulumi.Input[Sequence[pulumi.Input['SecurityPolicyDefinitionArgs']]],
-                 description: pulumi.Input[str],
-                 audit_trail: Optional[pulumi.Input[str]] = None,
-                 direct_internet_applications: Optional[pulumi.Input[str]] = None,
-                 failure_mode: Optional[pulumi.Input[str]] = None,
-                 high_speed_logging_server_ip: Optional[pulumi.Input[str]] = None,
-                 high_speed_logging_server_port: Optional[pulumi.Input[str]] = None,
-                 high_speed_logging_vpn: Optional[pulumi.Input[str]] = None,
+                 description: pulumi.Input[builtins.str],
+                 audit_trail: Optional[pulumi.Input[builtins.str]] = None,
+                 direct_internet_applications: Optional[pulumi.Input[builtins.str]] = None,
+                 failure_mode: Optional[pulumi.Input[builtins.str]] = None,
+                 high_speed_logging_server_ip: Optional[pulumi.Input[builtins.str]] = None,
+                 high_speed_logging_server_port: Optional[pulumi.Input[builtins.str]] = None,
+                 high_speed_logging_server_source_interface: Optional[pulumi.Input[builtins.str]] = None,
+                 high_speed_logging_vpn: Optional[pulumi.Input[builtins.str]] = None,
+                 imcp_unreachable_allow: Optional[pulumi.Input[builtins.bool]] = None,
                  loggings: Optional[pulumi.Input[Sequence[pulumi.Input['SecurityPolicyLoggingArgs']]]] = None,
-                 match_statistics_per_filter: Optional[pulumi.Input[str]] = None,
-                 mode: Optional[pulumi.Input[str]] = None,
-                 name: Optional[pulumi.Input[str]] = None,
-                 tcp_syn_flood_limit: Optional[pulumi.Input[str]] = None,
-                 use_case: Optional[pulumi.Input[str]] = None):
+                 match_statistics_per_filter: Optional[pulumi.Input[builtins.str]] = None,
+                 max_incomplete_icmp_limit: Optional[pulumi.Input[builtins.int]] = None,
+                 max_incomplete_tcp_limit: Optional[pulumi.Input[builtins.int]] = None,
+                 max_incomplete_udp_limit: Optional[pulumi.Input[builtins.int]] = None,
+                 mode: Optional[pulumi.Input[builtins.str]] = None,
+                 name: Optional[pulumi.Input[builtins.str]] = None,
+                 session_reclassify_allow: Optional[pulumi.Input[builtins.bool]] = None,
+                 tcp_syn_flood_limit: Optional[pulumi.Input[builtins.str]] = None,
+                 unified_logging: Optional[pulumi.Input[builtins.bool]] = None,
+                 use_case: Optional[pulumi.Input[builtins.str]] = None):
         """
         The set of arguments for constructing a SecurityPolicy resource.
         :param pulumi.Input[Sequence[pulumi.Input['SecurityPolicyDefinitionArgs']]] definitions: List of policy definitions
-        :param pulumi.Input[str] description: The description of the security policy
-        :param pulumi.Input[str] audit_trail: Audit trail - Choices: `on`, `off`
-        :param pulumi.Input[str] direct_internet_applications: Bypass firewall policy and allow all Internet traffic to/from VPN 0 - Choices: `allow`, `deny`
-        :param pulumi.Input[str] failure_mode: Failure mode - Choices: `open`, `close`
-        :param pulumi.Input[str] high_speed_logging_server_ip: High Speed Logging Server IP
-        :param pulumi.Input[str] high_speed_logging_server_port: High Speed Logging Port
-        :param pulumi.Input[str] high_speed_logging_vpn: High Speed Logging VPN
-        :param pulumi.Input[str] match_statistics_per_filter: Match Statistics per-filter - Choices: `on`, `off`
-        :param pulumi.Input[str] mode: The policy mode - Choices: `security`, `unified` - Default value: `security`
-        :param pulumi.Input[str] name: The name of the security policy
-        :param pulumi.Input[str] tcp_syn_flood_limit: TCP SYN Flood Limit, value from 1 to 4294967295
-        :param pulumi.Input[str] use_case: The use case of the security policy - Choices: `custom`, `compliance`, `guestAccess`, `directCloudAccess`,
+        :param pulumi.Input[builtins.str] description: The description of the security policy
+        :param pulumi.Input[builtins.str] audit_trail: Audit trail - Choices: `on`, `off`
+        :param pulumi.Input[builtins.str] direct_internet_applications: Bypass firewall policy and allow all Internet traffic to/from VPN 0 - Choices: `allow`, `deny`
+        :param pulumi.Input[builtins.str] failure_mode: Failure mode - Choices: `open`, `close`
+        :param pulumi.Input[builtins.str] high_speed_logging_server_ip: High Speed Logging Server IP
+        :param pulumi.Input[builtins.str] high_speed_logging_server_port: High Speed Logging Port
+        :param pulumi.Input[builtins.str] high_speed_logging_server_source_interface: High Speed Logging Source Interface
+        :param pulumi.Input[builtins.str] high_speed_logging_vpn: High Speed Logging VPN
+        :param pulumi.Input[builtins.bool] imcp_unreachable_allow: ICMP Unreachable Allow
+        :param pulumi.Input[builtins.str] match_statistics_per_filter: Match Statistics per-filter - Choices: `on`, `off`
+        :param pulumi.Input[builtins.int] max_incomplete_icmp_limit: Max Incomplete ICMP Limit
+        :param pulumi.Input[builtins.int] max_incomplete_tcp_limit: Max Incomplete TCP Limit
+        :param pulumi.Input[builtins.int] max_incomplete_udp_limit: Max Incomplete UDP Limit
+        :param pulumi.Input[builtins.str] mode: The policy mode - Choices: `security`, `unified` - Default value: `security`
+        :param pulumi.Input[builtins.str] name: The name of the security policy
+        :param pulumi.Input[builtins.bool] session_reclassify_allow: Session Reclassify Allow
+        :param pulumi.Input[builtins.str] tcp_syn_flood_limit: TCP SYN Flood Limit, value from 1 to 4294967295
+        :param pulumi.Input[builtins.bool] unified_logging: Unified Logging
+        :param pulumi.Input[builtins.str] use_case: The use case of the security policy - Choices: `custom`, `compliance`, `guestAccess`, `directCloudAccess`,
                `directInternetAccess`, `directCloudAccess` - Default value: `custom`
         """
         pulumi.set(__self__, "definitions", definitions)
@@ -64,18 +79,32 @@ class SecurityPolicyArgs:
             pulumi.set(__self__, "high_speed_logging_server_ip", high_speed_logging_server_ip)
         if high_speed_logging_server_port is not None:
             pulumi.set(__self__, "high_speed_logging_server_port", high_speed_logging_server_port)
+        if high_speed_logging_server_source_interface is not None:
+            pulumi.set(__self__, "high_speed_logging_server_source_interface", high_speed_logging_server_source_interface)
         if high_speed_logging_vpn is not None:
             pulumi.set(__self__, "high_speed_logging_vpn", high_speed_logging_vpn)
+        if imcp_unreachable_allow is not None:
+            pulumi.set(__self__, "imcp_unreachable_allow", imcp_unreachable_allow)
         if loggings is not None:
             pulumi.set(__self__, "loggings", loggings)
         if match_statistics_per_filter is not None:
             pulumi.set(__self__, "match_statistics_per_filter", match_statistics_per_filter)
+        if max_incomplete_icmp_limit is not None:
+            pulumi.set(__self__, "max_incomplete_icmp_limit", max_incomplete_icmp_limit)
+        if max_incomplete_tcp_limit is not None:
+            pulumi.set(__self__, "max_incomplete_tcp_limit", max_incomplete_tcp_limit)
+        if max_incomplete_udp_limit is not None:
+            pulumi.set(__self__, "max_incomplete_udp_limit", max_incomplete_udp_limit)
         if mode is not None:
             pulumi.set(__self__, "mode", mode)
         if name is not None:
             pulumi.set(__self__, "name", name)
+        if session_reclassify_allow is not None:
+            pulumi.set(__self__, "session_reclassify_allow", session_reclassify_allow)
         if tcp_syn_flood_limit is not None:
             pulumi.set(__self__, "tcp_syn_flood_limit", tcp_syn_flood_limit)
+        if unified_logging is not None:
+            pulumi.set(__self__, "unified_logging", unified_logging)
         if use_case is not None:
             pulumi.set(__self__, "use_case", use_case)
 
@@ -93,88 +122,112 @@ class SecurityPolicyArgs:
 
     @property
     @pulumi.getter
-    def description(self) -> pulumi.Input[str]:
+    def description(self) -> pulumi.Input[builtins.str]:
         """
         The description of the security policy
         """
         return pulumi.get(self, "description")
 
     @description.setter
-    def description(self, value: pulumi.Input[str]):
+    def description(self, value: pulumi.Input[builtins.str]):
         pulumi.set(self, "description", value)
 
     @property
     @pulumi.getter(name="auditTrail")
-    def audit_trail(self) -> Optional[pulumi.Input[str]]:
+    def audit_trail(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Audit trail - Choices: `on`, `off`
         """
         return pulumi.get(self, "audit_trail")
 
     @audit_trail.setter
-    def audit_trail(self, value: Optional[pulumi.Input[str]]):
+    def audit_trail(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "audit_trail", value)
 
     @property
     @pulumi.getter(name="directInternetApplications")
-    def direct_internet_applications(self) -> Optional[pulumi.Input[str]]:
+    def direct_internet_applications(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Bypass firewall policy and allow all Internet traffic to/from VPN 0 - Choices: `allow`, `deny`
         """
         return pulumi.get(self, "direct_internet_applications")
 
     @direct_internet_applications.setter
-    def direct_internet_applications(self, value: Optional[pulumi.Input[str]]):
+    def direct_internet_applications(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "direct_internet_applications", value)
 
     @property
     @pulumi.getter(name="failureMode")
-    def failure_mode(self) -> Optional[pulumi.Input[str]]:
+    def failure_mode(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Failure mode - Choices: `open`, `close`
         """
         return pulumi.get(self, "failure_mode")
 
     @failure_mode.setter
-    def failure_mode(self, value: Optional[pulumi.Input[str]]):
+    def failure_mode(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "failure_mode", value)
 
     @property
     @pulumi.getter(name="highSpeedLoggingServerIp")
-    def high_speed_logging_server_ip(self) -> Optional[pulumi.Input[str]]:
+    def high_speed_logging_server_ip(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         High Speed Logging Server IP
         """
         return pulumi.get(self, "high_speed_logging_server_ip")
 
     @high_speed_logging_server_ip.setter
-    def high_speed_logging_server_ip(self, value: Optional[pulumi.Input[str]]):
+    def high_speed_logging_server_ip(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "high_speed_logging_server_ip", value)
 
     @property
     @pulumi.getter(name="highSpeedLoggingServerPort")
-    def high_speed_logging_server_port(self) -> Optional[pulumi.Input[str]]:
+    def high_speed_logging_server_port(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         High Speed Logging Port
         """
         return pulumi.get(self, "high_speed_logging_server_port")
 
     @high_speed_logging_server_port.setter
-    def high_speed_logging_server_port(self, value: Optional[pulumi.Input[str]]):
+    def high_speed_logging_server_port(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "high_speed_logging_server_port", value)
 
+    @property
+    @pulumi.getter(name="highSpeedLoggingServerSourceInterface")
+    def high_speed_logging_server_source_interface(self) -> Optional[pulumi.Input[builtins.str]]:
+        """
+        High Speed Logging Source Interface
+        """
+        return pulumi.get(self, "high_speed_logging_server_source_interface")
+
+    @high_speed_logging_server_source_interface.setter
+    def high_speed_logging_server_source_interface(self, value: Optional[pulumi.Input[builtins.str]]):
+        pulumi.set(self, "high_speed_logging_server_source_interface", value)
+
     @property
     @pulumi.getter(name="highSpeedLoggingVpn")
-    def high_speed_logging_vpn(self) -> Optional[pulumi.Input[str]]:
+    def high_speed_logging_vpn(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         High Speed Logging VPN
         """
         return pulumi.get(self, "high_speed_logging_vpn")
 
     @high_speed_logging_vpn.setter
-    def high_speed_logging_vpn(self, value: Optional[pulumi.Input[str]]):
+    def high_speed_logging_vpn(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "high_speed_logging_vpn", value)
 
+    @property
+    @pulumi.getter(name="imcpUnreachableAllow")
+    def imcp_unreachable_allow(self) -> Optional[pulumi.Input[builtins.bool]]:
+        """
+        ICMP Unreachable Allow
+        """
+        return pulumi.get(self, "imcp_unreachable_allow")
+
+    @imcp_unreachable_allow.setter
+    def imcp_unreachable_allow(self, value: Optional[pulumi.Input[builtins.bool]]):
+        pulumi.set(self, "imcp_unreachable_allow", value)
+
     @property
     @pulumi.getter
     def loggings(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['SecurityPolicyLoggingArgs']]]]:
@@ -186,55 +239,115 @@ class SecurityPolicyArgs:
 
     @property
     @pulumi.getter(name="matchStatisticsPerFilter")
-    def match_statistics_per_filter(self) -> Optional[pulumi.Input[str]]:
+    def match_statistics_per_filter(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Match Statistics per-filter - Choices: `on`, `off`
         """
         return pulumi.get(self, "match_statistics_per_filter")
 
     @match_statistics_per_filter.setter
-    def match_statistics_per_filter(self, value: Optional[pulumi.Input[str]]):
+    def match_statistics_per_filter(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "match_statistics_per_filter", value)
 
+    @property
+    @pulumi.getter(name="maxIncompleteIcmpLimit")
+    def max_incomplete_icmp_limit(self) -> Optional[pulumi.Input[builtins.int]]:
+        """
+        Max Incomplete ICMP Limit
+        """
+        return pulumi.get(self, "max_incomplete_icmp_limit")
+
+    @max_incomplete_icmp_limit.setter
+    def max_incomplete_icmp_limit(self, value: Optional[pulumi.Input[builtins.int]]):
+        pulumi.set(self, "max_incomplete_icmp_limit", value)
+
+    @property
+    @pulumi.getter(name="maxIncompleteTcpLimit")
+    def max_incomplete_tcp_limit(self) -> Optional[pulumi.Input[builtins.int]]:
+        """
+        Max Incomplete TCP Limit
+        """
+        return pulumi.get(self, "max_incomplete_tcp_limit")
+
+    @max_incomplete_tcp_limit.setter
+    def max_incomplete_tcp_limit(self, value: Optional[pulumi.Input[builtins.int]]):
+        pulumi.set(self, "max_incomplete_tcp_limit", value)
+
+    @property
+    @pulumi.getter(name="maxIncompleteUdpLimit")
+    def max_incomplete_udp_limit(self) -> Optional[pulumi.Input[builtins.int]]:
+        """
+        Max Incomplete UDP Limit
+        """
+        return pulumi.get(self, "max_incomplete_udp_limit")
+
+    @max_incomplete_udp_limit.setter
+    def max_incomplete_udp_limit(self, value: Optional[pulumi.Input[builtins.int]]):
+        pulumi.set(self, "max_incomplete_udp_limit", value)
+
     @property
     @pulumi.getter
-    def mode(self) -> Optional[pulumi.Input[str]]:
+    def mode(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The policy mode - Choices: `security`, `unified` - Default value: `security`
         """
         return pulumi.get(self, "mode")
 
     @mode.setter
-    def mode(self, value: Optional[pulumi.Input[str]]):
+    def mode(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "mode", value)
 
     @property
     @pulumi.getter
-    def name(self) -> Optional[pulumi.Input[str]]:
+    def name(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The name of the security policy
         """
         return pulumi.get(self, "name")
 
     @name.setter
-    def name(self, value: Optional[pulumi.Input[str]]):
+    def name(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "name", value)
 
+    @property
+    @pulumi.getter(name="sessionReclassifyAllow")
+    def session_reclassify_allow(self) -> Optional[pulumi.Input[builtins.bool]]:
+        """
+        Session Reclassify Allow
+        """
+        return pulumi.get(self, "session_reclassify_allow")
+
+    @session_reclassify_allow.setter
+    def session_reclassify_allow(self, value: Optional[pulumi.Input[builtins.bool]]):
+        pulumi.set(self, "session_reclassify_allow", value)
+
     @property
     @pulumi.getter(name="tcpSynFloodLimit")
-    def tcp_syn_flood_limit(self) -> Optional[pulumi.Input[str]]:
+    def tcp_syn_flood_limit(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         TCP SYN Flood Limit, value from 1 to 4294967295
         """
         return pulumi.get(self, "tcp_syn_flood_limit")
 
     @tcp_syn_flood_limit.setter
-    def tcp_syn_flood_limit(self, value: Optional[pulumi.Input[str]]):
+    def tcp_syn_flood_limit(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "tcp_syn_flood_limit", value)
 
+    @property
+    @pulumi.getter(name="unifiedLogging")
+    def unified_logging(self) -> Optional[pulumi.Input[builtins.bool]]:
+        """
+        Unified Logging
+        """
+        return pulumi.get(self, "unified_logging")
+
+    @unified_logging.setter
+    def unified_logging(self, value: Optional[pulumi.Input[builtins.bool]]):
+        pulumi.set(self, "unified_logging", value)
+
     @property
     @pulumi.getter(name="useCase")
-    def use_case(self) -> Optional[pulumi.Input[str]]:
+    def use_case(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The use case of the security policy - Choices: `custom`, `compliance`, `guestAccess`, `directCloudAccess`,
         `directInternetAccess`, `directCloudAccess` - Default value: `custom`
@@ -242,45 +355,59 @@ class SecurityPolicyArgs:
         return pulumi.get(self, "use_case")
 
     @use_case.setter
-    def use_case(self, value: Optional[pulumi.Input[str]]):
+    def use_case(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "use_case", value)
 
 
 @pulumi.input_type
 class _SecurityPolicyState:
     def __init__(__self__, *,
-                 audit_trail: Optional[pulumi.Input[str]] = None,
+                 audit_trail: Optional[pulumi.Input[builtins.str]] = None,
                  definitions: Optional[pulumi.Input[Sequence[pulumi.Input['SecurityPolicyDefinitionArgs']]]] = None,
-                 description: Optional[pulumi.Input[str]] = None,
-                 direct_internet_applications: Optional[pulumi.Input[str]] = None,
-                 failure_mode: Optional[pulumi.Input[str]] = None,
-                 high_speed_logging_server_ip: Optional[pulumi.Input[str]] = None,
-                 high_speed_logging_server_port: Optional[pulumi.Input[str]] = None,
-                 high_speed_logging_vpn: Optional[pulumi.Input[str]] = None,
+                 description: Optional[pulumi.Input[builtins.str]] = None,
+                 direct_internet_applications: Optional[pulumi.Input[builtins.str]] = None,
+                 failure_mode: Optional[pulumi.Input[builtins.str]] = None,
+                 high_speed_logging_server_ip: Optional[pulumi.Input[builtins.str]] = None,
+                 high_speed_logging_server_port: Optional[pulumi.Input[builtins.str]] = None,
+                 high_speed_logging_server_source_interface: Optional[pulumi.Input[builtins.str]] = None,
+                 high_speed_logging_vpn: Optional[pulumi.Input[builtins.str]] = None,
+                 imcp_unreachable_allow: Optional[pulumi.Input[builtins.bool]] = None,
                  loggings: Optional[pulumi.Input[Sequence[pulumi.Input['SecurityPolicyLoggingArgs']]]] = None,
-                 match_statistics_per_filter: Optional[pulumi.Input[str]] = None,
-                 mode: Optional[pulumi.Input[str]] = None,
-                 name: Optional[pulumi.Input[str]] = None,
-                 tcp_syn_flood_limit: Optional[pulumi.Input[str]] = None,
-                 use_case: Optional[pulumi.Input[str]] = None,
-                 version: Optional[pulumi.Input[int]] = None):
+                 match_statistics_per_filter: Optional[pulumi.Input[builtins.str]] = None,
+                 max_incomplete_icmp_limit: Optional[pulumi.Input[builtins.int]] = None,
+                 max_incomplete_tcp_limit: Optional[pulumi.Input[builtins.int]] = None,
+                 max_incomplete_udp_limit: Optional[pulumi.Input[builtins.int]] = None,
+                 mode: Optional[pulumi.Input[builtins.str]] = None,
+                 name: Optional[pulumi.Input[builtins.str]] = None,
+                 session_reclassify_allow: Optional[pulumi.Input[builtins.bool]] = None,
+                 tcp_syn_flood_limit: Optional[pulumi.Input[builtins.str]] = None,
+                 unified_logging: Optional[pulumi.Input[builtins.bool]] = None,
+                 use_case: Optional[pulumi.Input[builtins.str]] = None,
+                 version: Optional[pulumi.Input[builtins.int]] = None):
         """
         Input properties used for looking up and filtering SecurityPolicy resources.
-        :param pulumi.Input[str] audit_trail: Audit trail - Choices: `on`, `off`
+        :param pulumi.Input[builtins.str] audit_trail: Audit trail - Choices: `on`, `off`
         :param pulumi.Input[Sequence[pulumi.Input['SecurityPolicyDefinitionArgs']]] definitions: List of policy definitions
-        :param pulumi.Input[str] description: The description of the security policy
-        :param pulumi.Input[str] direct_internet_applications: Bypass firewall policy and allow all Internet traffic to/from VPN 0 - Choices: `allow`, `deny`
-        :param pulumi.Input[str] failure_mode: Failure mode - Choices: `open`, `close`
-        :param pulumi.Input[str] high_speed_logging_server_ip: High Speed Logging Server IP
-        :param pulumi.Input[str] high_speed_logging_server_port: High Speed Logging Port
-        :param pulumi.Input[str] high_speed_logging_vpn: High Speed Logging VPN
-        :param pulumi.Input[str] match_statistics_per_filter: Match Statistics per-filter - Choices: `on`, `off`
-        :param pulumi.Input[str] mode: The policy mode - Choices: `security`, `unified` - Default value: `security`
-        :param pulumi.Input[str] name: The name of the security policy
-        :param pulumi.Input[str] tcp_syn_flood_limit: TCP SYN Flood Limit, value from 1 to 4294967295
-        :param pulumi.Input[str] use_case: The use case of the security policy - Choices: `custom`, `compliance`, `guestAccess`, `directCloudAccess`,
+        :param pulumi.Input[builtins.str] description: The description of the security policy
+        :param pulumi.Input[builtins.str] direct_internet_applications: Bypass firewall policy and allow all Internet traffic to/from VPN 0 - Choices: `allow`, `deny`
+        :param pulumi.Input[builtins.str] failure_mode: Failure mode - Choices: `open`, `close`
+        :param pulumi.Input[builtins.str] high_speed_logging_server_ip: High Speed Logging Server IP
+        :param pulumi.Input[builtins.str] high_speed_logging_server_port: High Speed Logging Port
+        :param pulumi.Input[builtins.str] high_speed_logging_server_source_interface: High Speed Logging Source Interface
+        :param pulumi.Input[builtins.str] high_speed_logging_vpn: High Speed Logging VPN
+        :param pulumi.Input[builtins.bool] imcp_unreachable_allow: ICMP Unreachable Allow
+        :param pulumi.Input[builtins.str] match_statistics_per_filter: Match Statistics per-filter - Choices: `on`, `off`
+        :param pulumi.Input[builtins.int] max_incomplete_icmp_limit: Max Incomplete ICMP Limit
+        :param pulumi.Input[builtins.int] max_incomplete_tcp_limit: Max Incomplete TCP Limit
+        :param pulumi.Input[builtins.int] max_incomplete_udp_limit: Max Incomplete UDP Limit
+        :param pulumi.Input[builtins.str] mode: The policy mode - Choices: `security`, `unified` - Default value: `security`
+        :param pulumi.Input[builtins.str] name: The name of the security policy
+        :param pulumi.Input[builtins.bool] session_reclassify_allow: Session Reclassify Allow
+        :param pulumi.Input[builtins.str] tcp_syn_flood_limit: TCP SYN Flood Limit, value from 1 to 4294967295
+        :param pulumi.Input[builtins.bool] unified_logging: Unified Logging
+        :param pulumi.Input[builtins.str] use_case: The use case of the security policy - Choices: `custom`, `compliance`, `guestAccess`, `directCloudAccess`,
                `directInternetAccess`, `directCloudAccess` - Default value: `custom`
-        :param pulumi.Input[int] version: The version of the object
+        :param pulumi.Input[builtins.int] version: The version of the object
         """
         if audit_trail is not None:
             pulumi.set(__self__, "audit_trail", audit_trail)
@@ -296,18 +423,32 @@ class _SecurityPolicyState:
             pulumi.set(__self__, "high_speed_logging_server_ip", high_speed_logging_server_ip)
         if high_speed_logging_server_port is not None:
             pulumi.set(__self__, "high_speed_logging_server_port", high_speed_logging_server_port)
+        if high_speed_logging_server_source_interface is not None:
+            pulumi.set(__self__, "high_speed_logging_server_source_interface", high_speed_logging_server_source_interface)
         if high_speed_logging_vpn is not None:
             pulumi.set(__self__, "high_speed_logging_vpn", high_speed_logging_vpn)
+        if imcp_unreachable_allow is not None:
+            pulumi.set(__self__, "imcp_unreachable_allow", imcp_unreachable_allow)
         if loggings is not None:
             pulumi.set(__self__, "loggings", loggings)
         if match_statistics_per_filter is not None:
             pulumi.set(__self__, "match_statistics_per_filter", match_statistics_per_filter)
+        if max_incomplete_icmp_limit is not None:
+            pulumi.set(__self__, "max_incomplete_icmp_limit", max_incomplete_icmp_limit)
+        if max_incomplete_tcp_limit is not None:
+            pulumi.set(__self__, "max_incomplete_tcp_limit", max_incomplete_tcp_limit)
+        if max_incomplete_udp_limit is not None:
+            pulumi.set(__self__, "max_incomplete_udp_limit", max_incomplete_udp_limit)
         if mode is not None:
             pulumi.set(__self__, "mode", mode)
         if name is not None:
             pulumi.set(__self__, "name", name)
+        if session_reclassify_allow is not None:
+            pulumi.set(__self__, "session_reclassify_allow", session_reclassify_allow)
         if tcp_syn_flood_limit is not None:
             pulumi.set(__self__, "tcp_syn_flood_limit", tcp_syn_flood_limit)
+        if unified_logging is not None:
+            pulumi.set(__self__, "unified_logging", unified_logging)
         if use_case is not None:
             pulumi.set(__self__, "use_case", use_case)
         if version is not None:
@@ -315,14 +456,14 @@ class _SecurityPolicyState:
 
     @property
     @pulumi.getter(name="auditTrail")
-    def audit_trail(self) -> Optional[pulumi.Input[str]]:
+    def audit_trail(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Audit trail - Choices: `on`, `off`
         """
         return pulumi.get(self, "audit_trail")
 
     @audit_trail.setter
-    def audit_trail(self, value: Optional[pulumi.Input[str]]):
+    def audit_trail(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "audit_trail", value)
 
     @property
@@ -339,76 +480,100 @@ class _SecurityPolicyState:
 
     @property
     @pulumi.getter
-    def description(self) -> Optional[pulumi.Input[str]]:
+    def description(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The description of the security policy
         """
         return pulumi.get(self, "description")
 
     @description.setter
-    def description(self, value: Optional[pulumi.Input[str]]):
+    def description(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "description", value)
 
     @property
     @pulumi.getter(name="directInternetApplications")
-    def direct_internet_applications(self) -> Optional[pulumi.Input[str]]:
+    def direct_internet_applications(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Bypass firewall policy and allow all Internet traffic to/from VPN 0 - Choices: `allow`, `deny`
         """
         return pulumi.get(self, "direct_internet_applications")
 
     @direct_internet_applications.setter
-    def direct_internet_applications(self, value: Optional[pulumi.Input[str]]):
+    def direct_internet_applications(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "direct_internet_applications", value)
 
     @property
     @pulumi.getter(name="failureMode")
-    def failure_mode(self) -> Optional[pulumi.Input[str]]:
+    def failure_mode(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Failure mode - Choices: `open`, `close`
         """
         return pulumi.get(self, "failure_mode")
 
     @failure_mode.setter
-    def failure_mode(self, value: Optional[pulumi.Input[str]]):
+    def failure_mode(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "failure_mode", value)
 
     @property
     @pulumi.getter(name="highSpeedLoggingServerIp")
-    def high_speed_logging_server_ip(self) -> Optional[pulumi.Input[str]]:
+    def high_speed_logging_server_ip(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         High Speed Logging Server IP
         """
         return pulumi.get(self, "high_speed_logging_server_ip")
 
     @high_speed_logging_server_ip.setter
-    def high_speed_logging_server_ip(self, value: Optional[pulumi.Input[str]]):
+    def high_speed_logging_server_ip(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "high_speed_logging_server_ip", value)
 
     @property
     @pulumi.getter(name="highSpeedLoggingServerPort")
-    def high_speed_logging_server_port(self) -> Optional[pulumi.Input[str]]:
+    def high_speed_logging_server_port(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         High Speed Logging Port
         """
         return pulumi.get(self, "high_speed_logging_server_port")
 
     @high_speed_logging_server_port.setter
-    def high_speed_logging_server_port(self, value: Optional[pulumi.Input[str]]):
+    def high_speed_logging_server_port(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "high_speed_logging_server_port", value)
 
+    @property
+    @pulumi.getter(name="highSpeedLoggingServerSourceInterface")
+    def high_speed_logging_server_source_interface(self) -> Optional[pulumi.Input[builtins.str]]:
+        """
+        High Speed Logging Source Interface
+        """
+        return pulumi.get(self, "high_speed_logging_server_source_interface")
+
+    @high_speed_logging_server_source_interface.setter
+    def high_speed_logging_server_source_interface(self, value: Optional[pulumi.Input[builtins.str]]):
+        pulumi.set(self, "high_speed_logging_server_source_interface", value)
+
     @property
     @pulumi.getter(name="highSpeedLoggingVpn")
-    def high_speed_logging_vpn(self) -> Optional[pulumi.Input[str]]:
+    def high_speed_logging_vpn(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         High Speed Logging VPN
         """
         return pulumi.get(self, "high_speed_logging_vpn")
 
     @high_speed_logging_vpn.setter
-    def high_speed_logging_vpn(self, value: Optional[pulumi.Input[str]]):
+    def high_speed_logging_vpn(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "high_speed_logging_vpn", value)
 
+    @property
+    @pulumi.getter(name="imcpUnreachableAllow")
+    def imcp_unreachable_allow(self) -> Optional[pulumi.Input[builtins.bool]]:
+        """
+        ICMP Unreachable Allow
+        """
+        return pulumi.get(self, "imcp_unreachable_allow")
+
+    @imcp_unreachable_allow.setter
+    def imcp_unreachable_allow(self, value: Optional[pulumi.Input[builtins.bool]]):
+        pulumi.set(self, "imcp_unreachable_allow", value)
+
     @property
     @pulumi.getter
     def loggings(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['SecurityPolicyLoggingArgs']]]]:
@@ -420,55 +585,115 @@ class _SecurityPolicyState:
 
     @property
     @pulumi.getter(name="matchStatisticsPerFilter")
-    def match_statistics_per_filter(self) -> Optional[pulumi.Input[str]]:
+    def match_statistics_per_filter(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         Match Statistics per-filter - Choices: `on`, `off`
         """
         return pulumi.get(self, "match_statistics_per_filter")
 
     @match_statistics_per_filter.setter
-    def match_statistics_per_filter(self, value: Optional[pulumi.Input[str]]):
+    def match_statistics_per_filter(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "match_statistics_per_filter", value)
 
+    @property
+    @pulumi.getter(name="maxIncompleteIcmpLimit")
+    def max_incomplete_icmp_limit(self) -> Optional[pulumi.Input[builtins.int]]:
+        """
+        Max Incomplete ICMP Limit
+        """
+        return pulumi.get(self, "max_incomplete_icmp_limit")
+
+    @max_incomplete_icmp_limit.setter
+    def max_incomplete_icmp_limit(self, value: Optional[pulumi.Input[builtins.int]]):
+        pulumi.set(self, "max_incomplete_icmp_limit", value)
+
+    @property
+    @pulumi.getter(name="maxIncompleteTcpLimit")
+    def max_incomplete_tcp_limit(self) -> Optional[pulumi.Input[builtins.int]]:
+        """
+        Max Incomplete TCP Limit
+        """
+        return pulumi.get(self, "max_incomplete_tcp_limit")
+
+    @max_incomplete_tcp_limit.setter
+    def max_incomplete_tcp_limit(self, value: Optional[pulumi.Input[builtins.int]]):
+        pulumi.set(self, "max_incomplete_tcp_limit", value)
+
+    @property
+    @pulumi.getter(name="maxIncompleteUdpLimit")
+    def max_incomplete_udp_limit(self) -> Optional[pulumi.Input[builtins.int]]:
+        """
+        Max Incomplete UDP Limit
+        """
+        return pulumi.get(self, "max_incomplete_udp_limit")
+
+    @max_incomplete_udp_limit.setter
+    def max_incomplete_udp_limit(self, value: Optional[pulumi.Input[builtins.int]]):
+        pulumi.set(self, "max_incomplete_udp_limit", value)
+
     @property
     @pulumi.getter
-    def mode(self) -> Optional[pulumi.Input[str]]:
+    def mode(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The policy mode - Choices: `security`, `unified` - Default value: `security`
         """
         return pulumi.get(self, "mode")
 
     @mode.setter
-    def mode(self, value: Optional[pulumi.Input[str]]):
+    def mode(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "mode", value)
 
     @property
     @pulumi.getter
-    def name(self) -> Optional[pulumi.Input[str]]:
+    def name(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The name of the security policy
         """
         return pulumi.get(self, "name")
 
     @name.setter
-    def name(self, value: Optional[pulumi.Input[str]]):
+    def name(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "name", value)
 
+    @property
+    @pulumi.getter(name="sessionReclassifyAllow")
+    def session_reclassify_allow(self) -> Optional[pulumi.Input[builtins.bool]]:
+        """
+        Session Reclassify Allow
+        """
+        return pulumi.get(self, "session_reclassify_allow")
+
+    @session_reclassify_allow.setter
+    def session_reclassify_allow(self, value: Optional[pulumi.Input[builtins.bool]]):
+        pulumi.set(self, "session_reclassify_allow", value)
+
     @property
     @pulumi.getter(name="tcpSynFloodLimit")
-    def tcp_syn_flood_limit(self) -> Optional[pulumi.Input[str]]:
+    def tcp_syn_flood_limit(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         TCP SYN Flood Limit, value from 1 to 4294967295
         """
         return pulumi.get(self, "tcp_syn_flood_limit")
 
     @tcp_syn_flood_limit.setter
-    def tcp_syn_flood_limit(self, value: Optional[pulumi.Input[str]]):
+    def tcp_syn_flood_limit(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "tcp_syn_flood_limit", value)
 
+    @property
+    @pulumi.getter(name="unifiedLogging")
+    def unified_logging(self) -> Optional[pulumi.Input[builtins.bool]]:
+        """
+        Unified Logging
+        """
+        return pulumi.get(self, "unified_logging")
+
+    @unified_logging.setter
+    def unified_logging(self, value: Optional[pulumi.Input[builtins.bool]]):
+        pulumi.set(self, "unified_logging", value)
+
     @property
     @pulumi.getter(name="useCase")
-    def use_case(self) -> Optional[pulumi.Input[str]]:
+    def use_case(self) -> Optional[pulumi.Input[builtins.str]]:
         """
         The use case of the security policy - Choices: `custom`, `compliance`, `guestAccess`, `directCloudAccess`,
         `directInternetAccess`, `directCloudAccess` - Default value: `custom`
@@ -476,19 +701,19 @@ class _SecurityPolicyState:
         return pulumi.get(self, "use_case")
 
     @use_case.setter
-    def use_case(self, value: Optional[pulumi.Input[str]]):
+    def use_case(self, value: Optional[pulumi.Input[builtins.str]]):
         pulumi.set(self, "use_case", value)
 
     @property
     @pulumi.getter
-    def version(self) -> Optional[pulumi.Input[int]]:
+    def version(self) -> Optional[pulumi.Input[builtins.int]]:
         """
         The version of the object
         """
         return pulumi.get(self, "version")
 
     @version.setter
-    def version(self, value: Optional[pulumi.Input[int]]):
+    def version(self, value: Optional[pulumi.Input[builtins.int]]):
         pulumi.set(self, "version", value)
 
 
@@ -497,20 +722,27 @@ class SecurityPolicy(pulumi.CustomResource):
     def __init__(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 audit_trail: Optional[pulumi.Input[str]] = None,
+                 audit_trail: Optional[pulumi.Input[builtins.str]] = None,
                  definitions: Optional[pulumi.Input[Sequence[pulumi.Input[Union['SecurityPolicyDefinitionArgs', 'SecurityPolicyDefinitionArgsDict']]]]] = None,
-                 description: Optional[pulumi.Input[str]] = None,
-                 direct_internet_applications: Optional[pulumi.Input[str]] = None,
-                 failure_mode: Optional[pulumi.Input[str]] = None,
-                 high_speed_logging_server_ip: Optional[pulumi.Input[str]] = None,
-                 high_speed_logging_server_port: Optional[pulumi.Input[str]] = None,
-                 high_speed_logging_vpn: Optional[pulumi.Input[str]] = None,
+                 description: Optional[pulumi.Input[builtins.str]] = None,
+                 direct_internet_applications: Optional[pulumi.Input[builtins.str]] = None,
+                 failure_mode: Optional[pulumi.Input[builtins.str]] = None,
+                 high_speed_logging_server_ip: Optional[pulumi.Input[builtins.str]] = None,
+                 high_speed_logging_server_port: Optional[pulumi.Input[builtins.str]] = None,
+                 high_speed_logging_server_source_interface: Optional[pulumi.Input[builtins.str]] = None,
+                 high_speed_logging_vpn: Optional[pulumi.Input[builtins.str]] = None,
+                 imcp_unreachable_allow: Optional[pulumi.Input[builtins.bool]] = None,
                  loggings: Optional[pulumi.Input[Sequence[pulumi.Input[Union['SecurityPolicyLoggingArgs', 'SecurityPolicyLoggingArgsDict']]]]] = None,
-                 match_statistics_per_filter: Optional[pulumi.Input[str]] = None,
-                 mode: Optional[pulumi.Input[str]] = None,
-                 name: Optional[pulumi.Input[str]] = None,
-                 tcp_syn_flood_limit: Optional[pulumi.Input[str]] = None,
-                 use_case: Optional[pulumi.Input[str]] = None,
+                 match_statistics_per_filter: Optional[pulumi.Input[builtins.str]] = None,
+                 max_incomplete_icmp_limit: Optional[pulumi.Input[builtins.int]] = None,
+                 max_incomplete_tcp_limit: Optional[pulumi.Input[builtins.int]] = None,
+                 max_incomplete_udp_limit: Optional[pulumi.Input[builtins.int]] = None,
+                 mode: Optional[pulumi.Input[builtins.str]] = None,
+                 name: Optional[pulumi.Input[builtins.str]] = None,
+                 session_reclassify_allow: Optional[pulumi.Input[builtins.bool]] = None,
+                 tcp_syn_flood_limit: Optional[pulumi.Input[builtins.str]] = None,
+                 unified_logging: Optional[pulumi.Input[builtins.bool]] = None,
+                 use_case: Optional[pulumi.Input[builtins.str]] = None,
                  __props__=None):
         """
         This resource can manage a Security Policy .
@@ -523,19 +755,26 @@ class SecurityPolicy(pulumi.CustomResource):
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[str] audit_trail: Audit trail - Choices: `on`, `off`
+        :param pulumi.Input[builtins.str] audit_trail: Audit trail - Choices: `on`, `off`
         :param pulumi.Input[Sequence[pulumi.Input[Union['SecurityPolicyDefinitionArgs', 'SecurityPolicyDefinitionArgsDict']]]] definitions: List of policy definitions
-        :param pulumi.Input[str] description: The description of the security policy
-        :param pulumi.Input[str] direct_internet_applications: Bypass firewall policy and allow all Internet traffic to/from VPN 0 - Choices: `allow`, `deny`
-        :param pulumi.Input[str] failure_mode: Failure mode - Choices: `open`, `close`
-        :param pulumi.Input[str] high_speed_logging_server_ip: High Speed Logging Server IP
-        :param pulumi.Input[str] high_speed_logging_server_port: High Speed Logging Port
-        :param pulumi.Input[str] high_speed_logging_vpn: High Speed Logging VPN
-        :param pulumi.Input[str] match_statistics_per_filter: Match Statistics per-filter - Choices: `on`, `off`
-        :param pulumi.Input[str] mode: The policy mode - Choices: `security`, `unified` - Default value: `security`
-        :param pulumi.Input[str] name: The name of the security policy
-        :param pulumi.Input[str] tcp_syn_flood_limit: TCP SYN Flood Limit, value from 1 to 4294967295
-        :param pulumi.Input[str] use_case: The use case of the security policy - Choices: `custom`, `compliance`, `guestAccess`, `directCloudAccess`,
+        :param pulumi.Input[builtins.str] description: The description of the security policy
+        :param pulumi.Input[builtins.str] direct_internet_applications: Bypass firewall policy and allow all Internet traffic to/from VPN 0 - Choices: `allow`, `deny`
+        :param pulumi.Input[builtins.str] failure_mode: Failure mode - Choices: `open`, `close`
+        :param pulumi.Input[builtins.str] high_speed_logging_server_ip: High Speed Logging Server IP
+        :param pulumi.Input[builtins.str] high_speed_logging_server_port: High Speed Logging Port
+        :param pulumi.Input[builtins.str] high_speed_logging_server_source_interface: High Speed Logging Source Interface
+        :param pulumi.Input[builtins.str] high_speed_logging_vpn: High Speed Logging VPN
+        :param pulumi.Input[builtins.bool] imcp_unreachable_allow: ICMP Unreachable Allow
+        :param pulumi.Input[builtins.str] match_statistics_per_filter: Match Statistics per-filter - Choices: `on`, `off`
+        :param pulumi.Input[builtins.int] max_incomplete_icmp_limit: Max Incomplete ICMP Limit
+        :param pulumi.Input[builtins.int] max_incomplete_tcp_limit: Max Incomplete TCP Limit
+        :param pulumi.Input[builtins.int] max_incomplete_udp_limit: Max Incomplete UDP Limit
+        :param pulumi.Input[builtins.str] mode: The policy mode - Choices: `security`, `unified` - Default value: `security`
+        :param pulumi.Input[builtins.str] name: The name of the security policy
+        :param pulumi.Input[builtins.bool] session_reclassify_allow: Session Reclassify Allow
+        :param pulumi.Input[builtins.str] tcp_syn_flood_limit: TCP SYN Flood Limit, value from 1 to 4294967295
+        :param pulumi.Input[builtins.bool] unified_logging: Unified Logging
+        :param pulumi.Input[builtins.str] use_case: The use case of the security policy - Choices: `custom`, `compliance`, `guestAccess`, `directCloudAccess`,
                `directInternetAccess`, `directCloudAccess` - Default value: `custom`
         """
         ...
@@ -568,20 +807,27 @@ class SecurityPolicy(pulumi.CustomResource):
     def _internal_init(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
-                 audit_trail: Optional[pulumi.Input[str]] = None,
+                 audit_trail: Optional[pulumi.Input[builtins.str]] = None,
                  definitions: Optional[pulumi.Input[Sequence[pulumi.Input[Union['SecurityPolicyDefinitionArgs', 'SecurityPolicyDefinitionArgsDict']]]]] = None,
-                 description: Optional[pulumi.Input[str]] = None,
-                 direct_internet_applications: Optional[pulumi.Input[str]] = None,
-                 failure_mode: Optional[pulumi.Input[str]] = None,
-                 high_speed_logging_server_ip: Optional[pulumi.Input[str]] = None,
-                 high_speed_logging_server_port: Optional[pulumi.Input[str]] = None,
-                 high_speed_logging_vpn: Optional[pulumi.Input[str]] = None,
+                 description: Optional[pulumi.Input[builtins.str]] = None,
+                 direct_internet_applications: Optional[pulumi.Input[builtins.str]] = None,
+                 failure_mode: Optional[pulumi.Input[builtins.str]] = None,
+                 high_speed_logging_server_ip: Optional[pulumi.Input[builtins.str]] = None,
+                 high_speed_logging_server_port: Optional[pulumi.Input[builtins.str]] = None,
+                 high_speed_logging_server_source_interface: Optional[pulumi.Input[builtins.str]] = None,
+                 high_speed_logging_vpn: Optional[pulumi.Input[builtins.str]] = None,
+                 imcp_unreachable_allow: Optional[pulumi.Input[builtins.bool]] = None,
                  loggings: Optional[pulumi.Input[Sequence[pulumi.Input[Union['SecurityPolicyLoggingArgs', 'SecurityPolicyLoggingArgsDict']]]]] = None,
-                 match_statistics_per_filter: Optional[pulumi.Input[str]] = None,
-                 mode: Optional[pulumi.Input[str]] = None,
-                 name: Optional[pulumi.Input[str]] = None,
-                 tcp_syn_flood_limit: Optional[pulumi.Input[str]] = None,
-                 use_case: Optional[pulumi.Input[str]] = None,
+                 match_statistics_per_filter: Optional[pulumi.Input[builtins.str]] = None,
+                 max_incomplete_icmp_limit: Optional[pulumi.Input[builtins.int]] = None,
+                 max_incomplete_tcp_limit: Optional[pulumi.Input[builtins.int]] = None,
+                 max_incomplete_udp_limit: Optional[pulumi.Input[builtins.int]] = None,
+                 mode: Optional[pulumi.Input[builtins.str]] = None,
+                 name: Optional[pulumi.Input[builtins.str]] = None,
+                 session_reclassify_allow: Optional[pulumi.Input[builtins.bool]] = None,
+                 tcp_syn_flood_limit: Optional[pulumi.Input[builtins.str]] = None,
+                 unified_logging: Optional[pulumi.Input[builtins.bool]] = None,
+                 use_case: Optional[pulumi.Input[builtins.str]] = None,
                  __props__=None):
         opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
         if not isinstance(opts, pulumi.ResourceOptions):
@@ -602,12 +848,19 @@ class SecurityPolicy(pulumi.CustomResource):
             __props__.__dict__["failure_mode"] = failure_mode
             __props__.__dict__["high_speed_logging_server_ip"] = high_speed_logging_server_ip
             __props__.__dict__["high_speed_logging_server_port"] = high_speed_logging_server_port
+            __props__.__dict__["high_speed_logging_server_source_interface"] = high_speed_logging_server_source_interface
             __props__.__dict__["high_speed_logging_vpn"] = high_speed_logging_vpn
+            __props__.__dict__["imcp_unreachable_allow"] = imcp_unreachable_allow
             __props__.__dict__["loggings"] = loggings
             __props__.__dict__["match_statistics_per_filter"] = match_statistics_per_filter
+            __props__.__dict__["max_incomplete_icmp_limit"] = max_incomplete_icmp_limit
+            __props__.__dict__["max_incomplete_tcp_limit"] = max_incomplete_tcp_limit
+            __props__.__dict__["max_incomplete_udp_limit"] = max_incomplete_udp_limit
             __props__.__dict__["mode"] = mode
             __props__.__dict__["name"] = name
+            __props__.__dict__["session_reclassify_allow"] = session_reclassify_allow
             __props__.__dict__["tcp_syn_flood_limit"] = tcp_syn_flood_limit
+            __props__.__dict__["unified_logging"] = unified_logging
             __props__.__dict__["use_case"] = use_case
             __props__.__dict__["version"] = None
         super(SecurityPolicy, __self__).__init__(
@@ -620,21 +873,28 @@ class SecurityPolicy(pulumi.CustomResource):
     def get(resource_name: str,
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
-            audit_trail: Optional[pulumi.Input[str]] = None,
+            audit_trail: Optional[pulumi.Input[builtins.str]] = None,
             definitions: Optional[pulumi.Input[Sequence[pulumi.Input[Union['SecurityPolicyDefinitionArgs', 'SecurityPolicyDefinitionArgsDict']]]]] = None,
-            description: Optional[pulumi.Input[str]] = None,
-            direct_internet_applications: Optional[pulumi.Input[str]] = None,
-            failure_mode: Optional[pulumi.Input[str]] = None,
-            high_speed_logging_server_ip: Optional[pulumi.Input[str]] = None,
-            high_speed_logging_server_port: Optional[pulumi.Input[str]] = None,
-            high_speed_logging_vpn: Optional[pulumi.Input[str]] = None,
+            description: Optional[pulumi.Input[builtins.str]] = None,
+            direct_internet_applications: Optional[pulumi.Input[builtins.str]] = None,
+            failure_mode: Optional[pulumi.Input[builtins.str]] = None,
+            high_speed_logging_server_ip: Optional[pulumi.Input[builtins.str]] = None,
+            high_speed_logging_server_port: Optional[pulumi.Input[builtins.str]] = None,
+            high_speed_logging_server_source_interface: Optional[pulumi.Input[builtins.str]] = None,
+            high_speed_logging_vpn: Optional[pulumi.Input[builtins.str]] = None,
+            imcp_unreachable_allow: Optional[pulumi.Input[builtins.bool]] = None,
             loggings: Optional[pulumi.Input[Sequence[pulumi.Input[Union['SecurityPolicyLoggingArgs', 'SecurityPolicyLoggingArgsDict']]]]] = None,
-            match_statistics_per_filter: Optional[pulumi.Input[str]] = None,
-            mode: Optional[pulumi.Input[str]] = None,
-            name: Optional[pulumi.Input[str]] = None,
-            tcp_syn_flood_limit: Optional[pulumi.Input[str]] = None,
-            use_case: Optional[pulumi.Input[str]] = None,
-            version: Optional[pulumi.Input[int]] = None) -> 'SecurityPolicy':
+            match_statistics_per_filter: Optional[pulumi.Input[builtins.str]] = None,
+            max_incomplete_icmp_limit: Optional[pulumi.Input[builtins.int]] = None,
+            max_incomplete_tcp_limit: Optional[pulumi.Input[builtins.int]] = None,
+            max_incomplete_udp_limit: Optional[pulumi.Input[builtins.int]] = None,
+            mode: Optional[pulumi.Input[builtins.str]] = None,
+            name: Optional[pulumi.Input[builtins.str]] = None,
+            session_reclassify_allow: Optional[pulumi.Input[builtins.bool]] = None,
+            tcp_syn_flood_limit: Optional[pulumi.Input[builtins.str]] = None,
+            unified_logging: Optional[pulumi.Input[builtins.bool]] = None,
+            use_case: Optional[pulumi.Input[builtins.str]] = None,
+            version: Optional[pulumi.Input[builtins.int]] = None) -> 'SecurityPolicy':
         """
         Get an existing SecurityPolicy resource's state with the given name, id, and optional extra
         properties used to qualify the lookup.
@@ -642,21 +902,28 @@ class SecurityPolicy(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[str] audit_trail: Audit trail - Choices: `on`, `off`
+        :param pulumi.Input[builtins.str] audit_trail: Audit trail - Choices: `on`, `off`
         :param pulumi.Input[Sequence[pulumi.Input[Union['SecurityPolicyDefinitionArgs', 'SecurityPolicyDefinitionArgsDict']]]] definitions: List of policy definitions
-        :param pulumi.Input[str] description: The description of the security policy
-        :param pulumi.Input[str] direct_internet_applications: Bypass firewall policy and allow all Internet traffic to/from VPN 0 - Choices: `allow`, `deny`
-        :param pulumi.Input[str] failure_mode: Failure mode - Choices: `open`, `close`
-        :param pulumi.Input[str] high_speed_logging_server_ip: High Speed Logging Server IP
-        :param pulumi.Input[str] high_speed_logging_server_port: High Speed Logging Port
-        :param pulumi.Input[str] high_speed_logging_vpn: High Speed Logging VPN
-        :param pulumi.Input[str] match_statistics_per_filter: Match Statistics per-filter - Choices: `on`, `off`
-        :param pulumi.Input[str] mode: The policy mode - Choices: `security`, `unified` - Default value: `security`
-        :param pulumi.Input[str] name: The name of the security policy
-        :param pulumi.Input[str] tcp_syn_flood_limit: TCP SYN Flood Limit, value from 1 to 4294967295
-        :param pulumi.Input[str] use_case: The use case of the security policy - Choices: `custom`, `compliance`, `guestAccess`, `directCloudAccess`,
+        :param pulumi.Input[builtins.str] description: The description of the security policy
+        :param pulumi.Input[builtins.str] direct_internet_applications: Bypass firewall policy and allow all Internet traffic to/from VPN 0 - Choices: `allow`, `deny`
+        :param pulumi.Input[builtins.str] failure_mode: Failure mode - Choices: `open`, `close`
+        :param pulumi.Input[builtins.str] high_speed_logging_server_ip: High Speed Logging Server IP
+        :param pulumi.Input[builtins.str] high_speed_logging_server_port: High Speed Logging Port
+        :param pulumi.Input[builtins.str] high_speed_logging_server_source_interface: High Speed Logging Source Interface
+        :param pulumi.Input[builtins.str] high_speed_logging_vpn: High Speed Logging VPN
+        :param pulumi.Input[builtins.bool] imcp_unreachable_allow: ICMP Unreachable Allow
+        :param pulumi.Input[builtins.str] match_statistics_per_filter: Match Statistics per-filter - Choices: `on`, `off`
+        :param pulumi.Input[builtins.int] max_incomplete_icmp_limit: Max Incomplete ICMP Limit
+        :param pulumi.Input[builtins.int] max_incomplete_tcp_limit: Max Incomplete TCP Limit
+        :param pulumi.Input[builtins.int] max_incomplete_udp_limit: Max Incomplete UDP Limit
+        :param pulumi.Input[builtins.str] mode: The policy mode - Choices: `security`, `unified` - Default value: `security`
+        :param pulumi.Input[builtins.str] name: The name of the security policy
+        :param pulumi.Input[builtins.bool] session_reclassify_allow: Session Reclassify Allow
+        :param pulumi.Input[builtins.str] tcp_syn_flood_limit: TCP SYN Flood Limit, value from 1 to 4294967295
+        :param pulumi.Input[builtins.bool] unified_logging: Unified Logging
+        :param pulumi.Input[builtins.str] use_case: The use case of the security policy - Choices: `custom`, `compliance`, `guestAccess`, `directCloudAccess`,
                `directInternetAccess`, `directCloudAccess` - Default value: `custom`
-        :param pulumi.Input[int] version: The version of the object
+        :param pulumi.Input[builtins.int] version: The version of the object
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
 
@@ -669,19 +936,26 @@ class SecurityPolicy(pulumi.CustomResource):
         __props__.__dict__["failure_mode"] = failure_mode
         __props__.__dict__["high_speed_logging_server_ip"] = high_speed_logging_server_ip
         __props__.__dict__["high_speed_logging_server_port"] = high_speed_logging_server_port
+        __props__.__dict__["high_speed_logging_server_source_interface"] = high_speed_logging_server_source_interface
         __props__.__dict__["high_speed_logging_vpn"] = high_speed_logging_vpn
+        __props__.__dict__["imcp_unreachable_allow"] = imcp_unreachable_allow
         __props__.__dict__["loggings"] = loggings
         __props__.__dict__["match_statistics_per_filter"] = match_statistics_per_filter
+        __props__.__dict__["max_incomplete_icmp_limit"] = max_incomplete_icmp_limit
+        __props__.__dict__["max_incomplete_tcp_limit"] = max_incomplete_tcp_limit
+        __props__.__dict__["max_incomplete_udp_limit"] = max_incomplete_udp_limit
         __props__.__dict__["mode"] = mode
         __props__.__dict__["name"] = name
+        __props__.__dict__["session_reclassify_allow"] = session_reclassify_allow
         __props__.__dict__["tcp_syn_flood_limit"] = tcp_syn_flood_limit
+        __props__.__dict__["unified_logging"] = unified_logging
         __props__.__dict__["use_case"] = use_case
         __props__.__dict__["version"] = version
         return SecurityPolicy(resource_name, opts=opts, __props__=__props__)
 
     @property
     @pulumi.getter(name="auditTrail")
-    def audit_trail(self) -> pulumi.Output[Optional[str]]:
+    def audit_trail(self) -> pulumi.Output[Optional[builtins.str]]:
         """
         Audit trail - Choices: `on`, `off`
         """
@@ -697,7 +971,7 @@ class SecurityPolicy(pulumi.CustomResource):
 
     @property
     @pulumi.getter
-    def description(self) -> pulumi.Output[str]:
+    def description(self) -> pulumi.Output[builtins.str]:
         """
         The description of the security policy
         """
@@ -705,7 +979,7 @@ class SecurityPolicy(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="directInternetApplications")
-    def direct_internet_applications(self) -> pulumi.Output[Optional[str]]:
+    def direct_internet_applications(self) -> pulumi.Output[Optional[builtins.str]]:
         """
         Bypass firewall policy and allow all Internet traffic to/from VPN 0 - Choices: `allow`, `deny`
         """
@@ -713,7 +987,7 @@ class SecurityPolicy(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="failureMode")
-    def failure_mode(self) -> pulumi.Output[Optional[str]]:
+    def failure_mode(self) -> pulumi.Output[Optional[builtins.str]]:
         """
         Failure mode - Choices: `open`, `close`
         """
@@ -721,7 +995,7 @@ class SecurityPolicy(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="highSpeedLoggingServerIp")
-    def high_speed_logging_server_ip(self) -> pulumi.Output[Optional[str]]:
+    def high_speed_logging_server_ip(self) -> pulumi.Output[Optional[builtins.str]]:
         """
         High Speed Logging Server IP
         """
@@ -729,20 +1003,36 @@ class SecurityPolicy(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="highSpeedLoggingServerPort")
-    def high_speed_logging_server_port(self) -> pulumi.Output[Optional[str]]:
+    def high_speed_logging_server_port(self) -> pulumi.Output[Optional[builtins.str]]:
         """
         High Speed Logging Port
         """
         return pulumi.get(self, "high_speed_logging_server_port")
 
+    @property
+    @pulumi.getter(name="highSpeedLoggingServerSourceInterface")
+    def high_speed_logging_server_source_interface(self) -> pulumi.Output[Optional[builtins.str]]:
+        """
+        High Speed Logging Source Interface
+        """
+        return pulumi.get(self, "high_speed_logging_server_source_interface")
+
     @property
     @pulumi.getter(name="highSpeedLoggingVpn")
-    def high_speed_logging_vpn(self) -> pulumi.Output[Optional[str]]:
+    def high_speed_logging_vpn(self) -> pulumi.Output[Optional[builtins.str]]:
         """
         High Speed Logging VPN
         """
         return pulumi.get(self, "high_speed_logging_vpn")
 
+    @property
+    @pulumi.getter(name="imcpUnreachableAllow")
+    def imcp_unreachable_allow(self) -> pulumi.Output[Optional[builtins.bool]]:
+        """
+        ICMP Unreachable Allow
+        """
+        return pulumi.get(self, "imcp_unreachable_allow")
+
     @property
     @pulumi.getter
     def loggings(self) -> pulumi.Output[Optional[Sequence['outputs.SecurityPolicyLogging']]]:
@@ -750,15 +1040,39 @@ class SecurityPolicy(pulumi.CustomResource):
 
     @property
     @pulumi.getter(name="matchStatisticsPerFilter")
-    def match_statistics_per_filter(self) -> pulumi.Output[Optional[str]]:
+    def match_statistics_per_filter(self) -> pulumi.Output[Optional[builtins.str]]:
         """
         Match Statistics per-filter - Choices: `on`, `off`
         """
         return pulumi.get(self, "match_statistics_per_filter")
 
+    @property
+    @pulumi.getter(name="maxIncompleteIcmpLimit")
+    def max_incomplete_icmp_limit(self) -> pulumi.Output[Optional[builtins.int]]:
+        """
+        Max Incomplete ICMP Limit
+        """
+        return pulumi.get(self, "max_incomplete_icmp_limit")
+
+    @property
+    @pulumi.getter(name="maxIncompleteTcpLimit")
+    def max_incomplete_tcp_limit(self) -> pulumi.Output[Optional[builtins.int]]:
+        """
+        Max Incomplete TCP Limit
+        """
+        return pulumi.get(self, "max_incomplete_tcp_limit")
+
+    @property
+    @pulumi.getter(name="maxIncompleteUdpLimit")
+    def max_incomplete_udp_limit(self) -> pulumi.Output[Optional[builtins.int]]:
+        """
+        Max Incomplete UDP Limit
+        """
+        return pulumi.get(self, "max_incomplete_udp_limit")
+
     @property
     @pulumi.getter
-    def mode(self) -> pulumi.Output[str]:
+    def mode(self) -> pulumi.Output[builtins.str]:
         """
         The policy mode - Choices: `security`, `unified` - Default value: `security`
         """
@@ -766,23 +1080,39 @@ class SecurityPolicy(pulumi.CustomResource):
 
     @property
     @pulumi.getter
-    def name(self) -> pulumi.Output[str]:
+    def name(self) -> pulumi.Output[builtins.str]:
         """
         The name of the security policy
         """
         return pulumi.get(self, "name")
 
+    @property
+    @pulumi.getter(name="sessionReclassifyAllow")
+    def session_reclassify_allow(self) -> pulumi.Output[Optional[builtins.bool]]:
+        """
+        Session Reclassify Allow
+        """
+        return pulumi.get(self, "session_reclassify_allow")
+
     @property
     @pulumi.getter(name="tcpSynFloodLimit")
-    def tcp_syn_flood_limit(self) -> pulumi.Output[Optional[str]]:
+    def tcp_syn_flood_limit(self) -> pulumi.Output[Optional[builtins.str]]:
         """
         TCP SYN Flood Limit, value from 1 to 4294967295
         """
         return pulumi.get(self, "tcp_syn_flood_limit")
 
+    @property
+    @pulumi.getter(name="unifiedLogging")
+    def unified_logging(self) -> pulumi.Output[Optional[builtins.bool]]:
+        """
+        Unified Logging
+        """
+        return pulumi.get(self, "unified_logging")
+
     @property
     @pulumi.getter(name="useCase")
-    def use_case(self) -> pulumi.Output[str]:
+    def use_case(self) -> pulumi.Output[builtins.str]:
         """
         The use case of the security policy - Choices: `custom`, `compliance`, `guestAccess`, `directCloudAccess`,
         `directInternetAccess`, `directCloudAccess` - Default value: `custom`
@@ -791,7 +1121,7 @@ class SecurityPolicy(pulumi.CustomResource):
 
     @property
     @pulumi.getter
-    def version(self) -> pulumi.Output[int]:
+    def version(self) -> pulumi.Output[builtins.int]:
         """
         The version of the object
         """