1. Packages
  2. Cisco Catalyst SD-WAN Provider
  3. API Docs
  4. CiscoVpnInterfaceIpsecFeatureTemplate
Cisco Catalyst SD-WAN v0.2.5 published on Saturday, Mar 15, 2025 by Pulumi

sdwan.CiscoVpnInterfaceIpsecFeatureTemplate

Explore with Pulumi AI

This resource can manage a Cisco VPN Interface IPSec feature template.

  • Minimum SD-WAN Manager version: 15.0.0

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as sdwan from "@pulumi/sdwan";

const example = new sdwan.CiscoVpnInterfaceIpsecFeatureTemplate("example", {
    name: "Example",
    description: "My Example",
    deviceTypes: ["vedge-C8000V"],
    interfaceName: "ipsec1",
    shutdown: false,
    interfaceDescription: "My Description",
    ipAddress: "1.1.1.1/24",
    tunnelSource: "1.2.3.4",
    tunnelSourceInterface: "e1",
    tunnelDestination: "3.4.5.6",
    application: "sig",
    tcpMssAdjust: 1400,
    clearDontFragment: true,
    mtu: 1500,
    deadPeerDetectionInterval: 100,
    deadPeerDetectionRetries: 4,
    ikeVersion: 2,
    ikeMode: "main",
    ikeRekeyInterval: 20000,
    ikeCiphersuite: "aes256-cbc-sha1",
    ikeGroup: "20",
    ikePreSharedKey: "cisco123",
    ikePreSharedKeyLocalId: "1",
    ikePreSharedKeyRemoteId: "2",
    ipsecRekeyInterval: 7200,
    ipsecReplayWindow: 128,
    ipsecCiphersuite: "aes256-cbc-sha256",
    ipsecPerfectForwardSecrecy: "group-20",
    trackers: ["TRACKER1"],
    tunnelRouteVia: "g0/0",
});
Copy
import pulumi
import pulumi_sdwan as sdwan

example = sdwan.CiscoVpnInterfaceIpsecFeatureTemplate("example",
    name="Example",
    description="My Example",
    device_types=["vedge-C8000V"],
    interface_name="ipsec1",
    shutdown=False,
    interface_description="My Description",
    ip_address="1.1.1.1/24",
    tunnel_source="1.2.3.4",
    tunnel_source_interface="e1",
    tunnel_destination="3.4.5.6",
    application="sig",
    tcp_mss_adjust=1400,
    clear_dont_fragment=True,
    mtu=1500,
    dead_peer_detection_interval=100,
    dead_peer_detection_retries=4,
    ike_version=2,
    ike_mode="main",
    ike_rekey_interval=20000,
    ike_ciphersuite="aes256-cbc-sha1",
    ike_group="20",
    ike_pre_shared_key="cisco123",
    ike_pre_shared_key_local_id="1",
    ike_pre_shared_key_remote_id="2",
    ipsec_rekey_interval=7200,
    ipsec_replay_window=128,
    ipsec_ciphersuite="aes256-cbc-sha256",
    ipsec_perfect_forward_secrecy="group-20",
    trackers=["TRACKER1"],
    tunnel_route_via="g0/0")
Copy
package main

import (
	"github.com/pulumi/pulumi-sdwan/sdk/go/sdwan"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := sdwan.NewCiscoVpnInterfaceIpsecFeatureTemplate(ctx, "example", &sdwan.CiscoVpnInterfaceIpsecFeatureTemplateArgs{
			Name:        pulumi.String("Example"),
			Description: pulumi.String("My Example"),
			DeviceTypes: pulumi.StringArray{
				pulumi.String("vedge-C8000V"),
			},
			InterfaceName:              pulumi.String("ipsec1"),
			Shutdown:                   pulumi.Bool(false),
			InterfaceDescription:       pulumi.String("My Description"),
			IpAddress:                  pulumi.String("1.1.1.1/24"),
			TunnelSource:               pulumi.String("1.2.3.4"),
			TunnelSourceInterface:      pulumi.String("e1"),
			TunnelDestination:          pulumi.String("3.4.5.6"),
			Application:                pulumi.String("sig"),
			TcpMssAdjust:               pulumi.Int(1400),
			ClearDontFragment:          pulumi.Bool(true),
			Mtu:                        pulumi.Int(1500),
			DeadPeerDetectionInterval:  pulumi.Int(100),
			DeadPeerDetectionRetries:   pulumi.Int(4),
			IkeVersion:                 pulumi.Int(2),
			IkeMode:                    pulumi.String("main"),
			IkeRekeyInterval:           pulumi.Int(20000),
			IkeCiphersuite:             pulumi.String("aes256-cbc-sha1"),
			IkeGroup:                   pulumi.String("20"),
			IkePreSharedKey:            pulumi.String("cisco123"),
			IkePreSharedKeyLocalId:     pulumi.String("1"),
			IkePreSharedKeyRemoteId:    pulumi.String("2"),
			IpsecRekeyInterval:         pulumi.Int(7200),
			IpsecReplayWindow:          pulumi.Int(128),
			IpsecCiphersuite:           pulumi.String("aes256-cbc-sha256"),
			IpsecPerfectForwardSecrecy: pulumi.String("group-20"),
			Trackers: pulumi.StringArray{
				pulumi.String("TRACKER1"),
			},
			TunnelRouteVia: pulumi.String("g0/0"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}
Copy
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Sdwan = Pulumi.Sdwan;

return await Deployment.RunAsync(() => 
{
    var example = new Sdwan.CiscoVpnInterfaceIpsecFeatureTemplate("example", new()
    {
        Name = "Example",
        Description = "My Example",
        DeviceTypes = new[]
        {
            "vedge-C8000V",
        },
        InterfaceName = "ipsec1",
        Shutdown = false,
        InterfaceDescription = "My Description",
        IpAddress = "1.1.1.1/24",
        TunnelSource = "1.2.3.4",
        TunnelSourceInterface = "e1",
        TunnelDestination = "3.4.5.6",
        Application = "sig",
        TcpMssAdjust = 1400,
        ClearDontFragment = true,
        Mtu = 1500,
        DeadPeerDetectionInterval = 100,
        DeadPeerDetectionRetries = 4,
        IkeVersion = 2,
        IkeMode = "main",
        IkeRekeyInterval = 20000,
        IkeCiphersuite = "aes256-cbc-sha1",
        IkeGroup = "20",
        IkePreSharedKey = "cisco123",
        IkePreSharedKeyLocalId = "1",
        IkePreSharedKeyRemoteId = "2",
        IpsecRekeyInterval = 7200,
        IpsecReplayWindow = 128,
        IpsecCiphersuite = "aes256-cbc-sha256",
        IpsecPerfectForwardSecrecy = "group-20",
        Trackers = new[]
        {
            "TRACKER1",
        },
        TunnelRouteVia = "g0/0",
    });

});
Copy
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.sdwan.CiscoVpnInterfaceIpsecFeatureTemplate;
import com.pulumi.sdwan.CiscoVpnInterfaceIpsecFeatureTemplateArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var example = new CiscoVpnInterfaceIpsecFeatureTemplate("example", CiscoVpnInterfaceIpsecFeatureTemplateArgs.builder()
            .name("Example")
            .description("My Example")
            .deviceTypes("vedge-C8000V")
            .interfaceName("ipsec1")
            .shutdown(false)
            .interfaceDescription("My Description")
            .ipAddress("1.1.1.1/24")
            .tunnelSource("1.2.3.4")
            .tunnelSourceInterface("e1")
            .tunnelDestination("3.4.5.6")
            .application("sig")
            .tcpMssAdjust(1400)
            .clearDontFragment(true)
            .mtu(1500)
            .deadPeerDetectionInterval(100)
            .deadPeerDetectionRetries(4)
            .ikeVersion(2)
            .ikeMode("main")
            .ikeRekeyInterval(20000)
            .ikeCiphersuite("aes256-cbc-sha1")
            .ikeGroup("20")
            .ikePreSharedKey("cisco123")
            .ikePreSharedKeyLocalId("1")
            .ikePreSharedKeyRemoteId("2")
            .ipsecRekeyInterval(7200)
            .ipsecReplayWindow(128)
            .ipsecCiphersuite("aes256-cbc-sha256")
            .ipsecPerfectForwardSecrecy("group-20")
            .trackers("TRACKER1")
            .tunnelRouteVia("g0/0")
            .build());

    }
}
Copy
resources:
  example:
    type: sdwan:CiscoVpnInterfaceIpsecFeatureTemplate
    properties:
      name: Example
      description: My Example
      deviceTypes:
        - vedge-C8000V
      interfaceName: ipsec1
      shutdown: false
      interfaceDescription: My Description
      ipAddress: 1.1.1.1/24
      tunnelSource: 1.2.3.4
      tunnelSourceInterface: e1
      tunnelDestination: 3.4.5.6
      application: sig
      tcpMssAdjust: 1400
      clearDontFragment: true
      mtu: 1500
      deadPeerDetectionInterval: 100
      deadPeerDetectionRetries: 4
      ikeVersion: 2
      ikeMode: main
      ikeRekeyInterval: 20000
      ikeCiphersuite: aes256-cbc-sha1
      ikeGroup: '20'
      ikePreSharedKey: cisco123
      ikePreSharedKeyLocalId: '1'
      ikePreSharedKeyRemoteId: '2'
      ipsecRekeyInterval: 7200
      ipsecReplayWindow: 128
      ipsecCiphersuite: aes256-cbc-sha256
      ipsecPerfectForwardSecrecy: group-20
      trackers:
        - TRACKER1
      tunnelRouteVia: g0/0
Copy

Create CiscoVpnInterfaceIpsecFeatureTemplate Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new CiscoVpnInterfaceIpsecFeatureTemplate(name: string, args: CiscoVpnInterfaceIpsecFeatureTemplateArgs, opts?: CustomResourceOptions);
@overload
def CiscoVpnInterfaceIpsecFeatureTemplate(resource_name: str,
                                          args: CiscoVpnInterfaceIpsecFeatureTemplateArgs,
                                          opts: Optional[ResourceOptions] = None)

@overload
def CiscoVpnInterfaceIpsecFeatureTemplate(resource_name: str,
                                          opts: Optional[ResourceOptions] = None,
                                          description: Optional[str] = None,
                                          device_types: Optional[Sequence[str]] = None,
                                          application: Optional[str] = None,
                                          application_variable: Optional[str] = None,
                                          clear_dont_fragment: Optional[bool] = None,
                                          clear_dont_fragment_variable: Optional[str] = None,
                                          dead_peer_detection_interval: Optional[int] = None,
                                          dead_peer_detection_interval_variable: Optional[str] = None,
                                          dead_peer_detection_retries: Optional[int] = None,
                                          dead_peer_detection_retries_variable: Optional[str] = None,
                                          ike_ciphersuite: Optional[str] = None,
                                          ike_ciphersuite_variable: Optional[str] = None,
                                          ike_group: Optional[str] = None,
                                          ike_group_variable: Optional[str] = None,
                                          ike_mode: Optional[str] = None,
                                          ike_mode_variable: Optional[str] = None,
                                          ike_pre_shared_key: Optional[str] = None,
                                          ike_pre_shared_key_local_id: Optional[str] = None,
                                          ike_pre_shared_key_local_id_variable: Optional[str] = None,
                                          ike_pre_shared_key_remote_id: Optional[str] = None,
                                          ike_pre_shared_key_remote_id_variable: Optional[str] = None,
                                          ike_pre_shared_key_variable: Optional[str] = None,
                                          ike_rekey_interval: Optional[int] = None,
                                          ike_rekey_interval_variable: Optional[str] = None,
                                          ike_version: Optional[int] = None,
                                          interface_description: Optional[str] = None,
                                          interface_description_variable: Optional[str] = None,
                                          interface_name: Optional[str] = None,
                                          interface_name_variable: Optional[str] = None,
                                          ip_address: Optional[str] = None,
                                          ip_address_variable: Optional[str] = None,
                                          ipsec_ciphersuite: Optional[str] = None,
                                          ipsec_ciphersuite_variable: Optional[str] = None,
                                          ipsec_perfect_forward_secrecy: Optional[str] = None,
                                          ipsec_perfect_forward_secrecy_variable: Optional[str] = None,
                                          ipsec_rekey_interval: Optional[int] = None,
                                          ipsec_rekey_interval_variable: Optional[str] = None,
                                          ipsec_replay_window: Optional[int] = None,
                                          ipsec_replay_window_variable: Optional[str] = None,
                                          mtu: Optional[int] = None,
                                          mtu_variable: Optional[str] = None,
                                          name: Optional[str] = None,
                                          shutdown: Optional[bool] = None,
                                          shutdown_variable: Optional[str] = None,
                                          tcp_mss_adjust: Optional[int] = None,
                                          tcp_mss_adjust_variable: Optional[str] = None,
                                          tracker_variable: Optional[str] = None,
                                          trackers: Optional[Sequence[str]] = None,
                                          tunnel_destination: Optional[str] = None,
                                          tunnel_destination_variable: Optional[str] = None,
                                          tunnel_route_via: Optional[str] = None,
                                          tunnel_route_via_variable: Optional[str] = None,
                                          tunnel_source: Optional[str] = None,
                                          tunnel_source_interface: Optional[str] = None,
                                          tunnel_source_interface_variable: Optional[str] = None,
                                          tunnel_source_variable: Optional[str] = None)
func NewCiscoVpnInterfaceIpsecFeatureTemplate(ctx *Context, name string, args CiscoVpnInterfaceIpsecFeatureTemplateArgs, opts ...ResourceOption) (*CiscoVpnInterfaceIpsecFeatureTemplate, error)
public CiscoVpnInterfaceIpsecFeatureTemplate(string name, CiscoVpnInterfaceIpsecFeatureTemplateArgs args, CustomResourceOptions? opts = null)
public CiscoVpnInterfaceIpsecFeatureTemplate(String name, CiscoVpnInterfaceIpsecFeatureTemplateArgs args)
public CiscoVpnInterfaceIpsecFeatureTemplate(String name, CiscoVpnInterfaceIpsecFeatureTemplateArgs args, CustomResourceOptions options)
type: sdwan:CiscoVpnInterfaceIpsecFeatureTemplate
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name This property is required. string
The unique name of the resource.
args This property is required. CiscoVpnInterfaceIpsecFeatureTemplateArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name This property is required. str
The unique name of the resource.
args This property is required. CiscoVpnInterfaceIpsecFeatureTemplateArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name This property is required. string
The unique name of the resource.
args This property is required. CiscoVpnInterfaceIpsecFeatureTemplateArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name This property is required. string
The unique name of the resource.
args This property is required. CiscoVpnInterfaceIpsecFeatureTemplateArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name This property is required. String
The unique name of the resource.
args This property is required. CiscoVpnInterfaceIpsecFeatureTemplateArgs
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var ciscoVpnInterfaceIpsecFeatureTemplateResource = new Sdwan.CiscoVpnInterfaceIpsecFeatureTemplate("ciscoVpnInterfaceIpsecFeatureTemplateResource", new()
{
    Description = "string",
    DeviceTypes = new[]
    {
        "string",
    },
    Application = "string",
    ApplicationVariable = "string",
    ClearDontFragment = false,
    ClearDontFragmentVariable = "string",
    DeadPeerDetectionInterval = 0,
    DeadPeerDetectionIntervalVariable = "string",
    DeadPeerDetectionRetries = 0,
    DeadPeerDetectionRetriesVariable = "string",
    IkeCiphersuite = "string",
    IkeCiphersuiteVariable = "string",
    IkeGroup = "string",
    IkeGroupVariable = "string",
    IkeMode = "string",
    IkeModeVariable = "string",
    IkePreSharedKey = "string",
    IkePreSharedKeyLocalId = "string",
    IkePreSharedKeyLocalIdVariable = "string",
    IkePreSharedKeyRemoteId = "string",
    IkePreSharedKeyRemoteIdVariable = "string",
    IkePreSharedKeyVariable = "string",
    IkeRekeyInterval = 0,
    IkeRekeyIntervalVariable = "string",
    IkeVersion = 0,
    InterfaceDescription = "string",
    InterfaceDescriptionVariable = "string",
    InterfaceName = "string",
    InterfaceNameVariable = "string",
    IpAddress = "string",
    IpAddressVariable = "string",
    IpsecCiphersuite = "string",
    IpsecCiphersuiteVariable = "string",
    IpsecPerfectForwardSecrecy = "string",
    IpsecPerfectForwardSecrecyVariable = "string",
    IpsecRekeyInterval = 0,
    IpsecRekeyIntervalVariable = "string",
    IpsecReplayWindow = 0,
    IpsecReplayWindowVariable = "string",
    Mtu = 0,
    MtuVariable = "string",
    Name = "string",
    Shutdown = false,
    ShutdownVariable = "string",
    TcpMssAdjust = 0,
    TcpMssAdjustVariable = "string",
    TrackerVariable = "string",
    Trackers = new[]
    {
        "string",
    },
    TunnelDestination = "string",
    TunnelDestinationVariable = "string",
    TunnelRouteVia = "string",
    TunnelRouteViaVariable = "string",
    TunnelSource = "string",
    TunnelSourceInterface = "string",
    TunnelSourceInterfaceVariable = "string",
    TunnelSourceVariable = "string",
});
Copy
example, err := sdwan.NewCiscoVpnInterfaceIpsecFeatureTemplate(ctx, "ciscoVpnInterfaceIpsecFeatureTemplateResource", &sdwan.CiscoVpnInterfaceIpsecFeatureTemplateArgs{
	Description: pulumi.String("string"),
	DeviceTypes: pulumi.StringArray{
		pulumi.String("string"),
	},
	Application:                        pulumi.String("string"),
	ApplicationVariable:                pulumi.String("string"),
	ClearDontFragment:                  pulumi.Bool(false),
	ClearDontFragmentVariable:          pulumi.String("string"),
	DeadPeerDetectionInterval:          pulumi.Int(0),
	DeadPeerDetectionIntervalVariable:  pulumi.String("string"),
	DeadPeerDetectionRetries:           pulumi.Int(0),
	DeadPeerDetectionRetriesVariable:   pulumi.String("string"),
	IkeCiphersuite:                     pulumi.String("string"),
	IkeCiphersuiteVariable:             pulumi.String("string"),
	IkeGroup:                           pulumi.String("string"),
	IkeGroupVariable:                   pulumi.String("string"),
	IkeMode:                            pulumi.String("string"),
	IkeModeVariable:                    pulumi.String("string"),
	IkePreSharedKey:                    pulumi.String("string"),
	IkePreSharedKeyLocalId:             pulumi.String("string"),
	IkePreSharedKeyLocalIdVariable:     pulumi.String("string"),
	IkePreSharedKeyRemoteId:            pulumi.String("string"),
	IkePreSharedKeyRemoteIdVariable:    pulumi.String("string"),
	IkePreSharedKeyVariable:            pulumi.String("string"),
	IkeRekeyInterval:                   pulumi.Int(0),
	IkeRekeyIntervalVariable:           pulumi.String("string"),
	IkeVersion:                         pulumi.Int(0),
	InterfaceDescription:               pulumi.String("string"),
	InterfaceDescriptionVariable:       pulumi.String("string"),
	InterfaceName:                      pulumi.String("string"),
	InterfaceNameVariable:              pulumi.String("string"),
	IpAddress:                          pulumi.String("string"),
	IpAddressVariable:                  pulumi.String("string"),
	IpsecCiphersuite:                   pulumi.String("string"),
	IpsecCiphersuiteVariable:           pulumi.String("string"),
	IpsecPerfectForwardSecrecy:         pulumi.String("string"),
	IpsecPerfectForwardSecrecyVariable: pulumi.String("string"),
	IpsecRekeyInterval:                 pulumi.Int(0),
	IpsecRekeyIntervalVariable:         pulumi.String("string"),
	IpsecReplayWindow:                  pulumi.Int(0),
	IpsecReplayWindowVariable:          pulumi.String("string"),
	Mtu:                                pulumi.Int(0),
	MtuVariable:                        pulumi.String("string"),
	Name:                               pulumi.String("string"),
	Shutdown:                           pulumi.Bool(false),
	ShutdownVariable:                   pulumi.String("string"),
	TcpMssAdjust:                       pulumi.Int(0),
	TcpMssAdjustVariable:               pulumi.String("string"),
	TrackerVariable:                    pulumi.String("string"),
	Trackers: pulumi.StringArray{
		pulumi.String("string"),
	},
	TunnelDestination:             pulumi.String("string"),
	TunnelDestinationVariable:     pulumi.String("string"),
	TunnelRouteVia:                pulumi.String("string"),
	TunnelRouteViaVariable:        pulumi.String("string"),
	TunnelSource:                  pulumi.String("string"),
	TunnelSourceInterface:         pulumi.String("string"),
	TunnelSourceInterfaceVariable: pulumi.String("string"),
	TunnelSourceVariable:          pulumi.String("string"),
})
Copy
var ciscoVpnInterfaceIpsecFeatureTemplateResource = new CiscoVpnInterfaceIpsecFeatureTemplate("ciscoVpnInterfaceIpsecFeatureTemplateResource", CiscoVpnInterfaceIpsecFeatureTemplateArgs.builder()
    .description("string")
    .deviceTypes("string")
    .application("string")
    .applicationVariable("string")
    .clearDontFragment(false)
    .clearDontFragmentVariable("string")
    .deadPeerDetectionInterval(0)
    .deadPeerDetectionIntervalVariable("string")
    .deadPeerDetectionRetries(0)
    .deadPeerDetectionRetriesVariable("string")
    .ikeCiphersuite("string")
    .ikeCiphersuiteVariable("string")
    .ikeGroup("string")
    .ikeGroupVariable("string")
    .ikeMode("string")
    .ikeModeVariable("string")
    .ikePreSharedKey("string")
    .ikePreSharedKeyLocalId("string")
    .ikePreSharedKeyLocalIdVariable("string")
    .ikePreSharedKeyRemoteId("string")
    .ikePreSharedKeyRemoteIdVariable("string")
    .ikePreSharedKeyVariable("string")
    .ikeRekeyInterval(0)
    .ikeRekeyIntervalVariable("string")
    .ikeVersion(0)
    .interfaceDescription("string")
    .interfaceDescriptionVariable("string")
    .interfaceName("string")
    .interfaceNameVariable("string")
    .ipAddress("string")
    .ipAddressVariable("string")
    .ipsecCiphersuite("string")
    .ipsecCiphersuiteVariable("string")
    .ipsecPerfectForwardSecrecy("string")
    .ipsecPerfectForwardSecrecyVariable("string")
    .ipsecRekeyInterval(0)
    .ipsecRekeyIntervalVariable("string")
    .ipsecReplayWindow(0)
    .ipsecReplayWindowVariable("string")
    .mtu(0)
    .mtuVariable("string")
    .name("string")
    .shutdown(false)
    .shutdownVariable("string")
    .tcpMssAdjust(0)
    .tcpMssAdjustVariable("string")
    .trackerVariable("string")
    .trackers("string")
    .tunnelDestination("string")
    .tunnelDestinationVariable("string")
    .tunnelRouteVia("string")
    .tunnelRouteViaVariable("string")
    .tunnelSource("string")
    .tunnelSourceInterface("string")
    .tunnelSourceInterfaceVariable("string")
    .tunnelSourceVariable("string")
    .build());
Copy
cisco_vpn_interface_ipsec_feature_template_resource = sdwan.CiscoVpnInterfaceIpsecFeatureTemplate("ciscoVpnInterfaceIpsecFeatureTemplateResource",
    description="string",
    device_types=["string"],
    application="string",
    application_variable="string",
    clear_dont_fragment=False,
    clear_dont_fragment_variable="string",
    dead_peer_detection_interval=0,
    dead_peer_detection_interval_variable="string",
    dead_peer_detection_retries=0,
    dead_peer_detection_retries_variable="string",
    ike_ciphersuite="string",
    ike_ciphersuite_variable="string",
    ike_group="string",
    ike_group_variable="string",
    ike_mode="string",
    ike_mode_variable="string",
    ike_pre_shared_key="string",
    ike_pre_shared_key_local_id="string",
    ike_pre_shared_key_local_id_variable="string",
    ike_pre_shared_key_remote_id="string",
    ike_pre_shared_key_remote_id_variable="string",
    ike_pre_shared_key_variable="string",
    ike_rekey_interval=0,
    ike_rekey_interval_variable="string",
    ike_version=0,
    interface_description="string",
    interface_description_variable="string",
    interface_name="string",
    interface_name_variable="string",
    ip_address="string",
    ip_address_variable="string",
    ipsec_ciphersuite="string",
    ipsec_ciphersuite_variable="string",
    ipsec_perfect_forward_secrecy="string",
    ipsec_perfect_forward_secrecy_variable="string",
    ipsec_rekey_interval=0,
    ipsec_rekey_interval_variable="string",
    ipsec_replay_window=0,
    ipsec_replay_window_variable="string",
    mtu=0,
    mtu_variable="string",
    name="string",
    shutdown=False,
    shutdown_variable="string",
    tcp_mss_adjust=0,
    tcp_mss_adjust_variable="string",
    tracker_variable="string",
    trackers=["string"],
    tunnel_destination="string",
    tunnel_destination_variable="string",
    tunnel_route_via="string",
    tunnel_route_via_variable="string",
    tunnel_source="string",
    tunnel_source_interface="string",
    tunnel_source_interface_variable="string",
    tunnel_source_variable="string")
Copy
const ciscoVpnInterfaceIpsecFeatureTemplateResource = new sdwan.CiscoVpnInterfaceIpsecFeatureTemplate("ciscoVpnInterfaceIpsecFeatureTemplateResource", {
    description: "string",
    deviceTypes: ["string"],
    application: "string",
    applicationVariable: "string",
    clearDontFragment: false,
    clearDontFragmentVariable: "string",
    deadPeerDetectionInterval: 0,
    deadPeerDetectionIntervalVariable: "string",
    deadPeerDetectionRetries: 0,
    deadPeerDetectionRetriesVariable: "string",
    ikeCiphersuite: "string",
    ikeCiphersuiteVariable: "string",
    ikeGroup: "string",
    ikeGroupVariable: "string",
    ikeMode: "string",
    ikeModeVariable: "string",
    ikePreSharedKey: "string",
    ikePreSharedKeyLocalId: "string",
    ikePreSharedKeyLocalIdVariable: "string",
    ikePreSharedKeyRemoteId: "string",
    ikePreSharedKeyRemoteIdVariable: "string",
    ikePreSharedKeyVariable: "string",
    ikeRekeyInterval: 0,
    ikeRekeyIntervalVariable: "string",
    ikeVersion: 0,
    interfaceDescription: "string",
    interfaceDescriptionVariable: "string",
    interfaceName: "string",
    interfaceNameVariable: "string",
    ipAddress: "string",
    ipAddressVariable: "string",
    ipsecCiphersuite: "string",
    ipsecCiphersuiteVariable: "string",
    ipsecPerfectForwardSecrecy: "string",
    ipsecPerfectForwardSecrecyVariable: "string",
    ipsecRekeyInterval: 0,
    ipsecRekeyIntervalVariable: "string",
    ipsecReplayWindow: 0,
    ipsecReplayWindowVariable: "string",
    mtu: 0,
    mtuVariable: "string",
    name: "string",
    shutdown: false,
    shutdownVariable: "string",
    tcpMssAdjust: 0,
    tcpMssAdjustVariable: "string",
    trackerVariable: "string",
    trackers: ["string"],
    tunnelDestination: "string",
    tunnelDestinationVariable: "string",
    tunnelRouteVia: "string",
    tunnelRouteViaVariable: "string",
    tunnelSource: "string",
    tunnelSourceInterface: "string",
    tunnelSourceInterfaceVariable: "string",
    tunnelSourceVariable: "string",
});
Copy
type: sdwan:CiscoVpnInterfaceIpsecFeatureTemplate
properties:
    application: string
    applicationVariable: string
    clearDontFragment: false
    clearDontFragmentVariable: string
    deadPeerDetectionInterval: 0
    deadPeerDetectionIntervalVariable: string
    deadPeerDetectionRetries: 0
    deadPeerDetectionRetriesVariable: string
    description: string
    deviceTypes:
        - string
    ikeCiphersuite: string
    ikeCiphersuiteVariable: string
    ikeGroup: string
    ikeGroupVariable: string
    ikeMode: string
    ikeModeVariable: string
    ikePreSharedKey: string
    ikePreSharedKeyLocalId: string
    ikePreSharedKeyLocalIdVariable: string
    ikePreSharedKeyRemoteId: string
    ikePreSharedKeyRemoteIdVariable: string
    ikePreSharedKeyVariable: string
    ikeRekeyInterval: 0
    ikeRekeyIntervalVariable: string
    ikeVersion: 0
    interfaceDescription: string
    interfaceDescriptionVariable: string
    interfaceName: string
    interfaceNameVariable: string
    ipAddress: string
    ipAddressVariable: string
    ipsecCiphersuite: string
    ipsecCiphersuiteVariable: string
    ipsecPerfectForwardSecrecy: string
    ipsecPerfectForwardSecrecyVariable: string
    ipsecRekeyInterval: 0
    ipsecRekeyIntervalVariable: string
    ipsecReplayWindow: 0
    ipsecReplayWindowVariable: string
    mtu: 0
    mtuVariable: string
    name: string
    shutdown: false
    shutdownVariable: string
    tcpMssAdjust: 0
    tcpMssAdjustVariable: string
    trackerVariable: string
    trackers:
        - string
    tunnelDestination: string
    tunnelDestinationVariable: string
    tunnelRouteVia: string
    tunnelRouteViaVariable: string
    tunnelSource: string
    tunnelSourceInterface: string
    tunnelSourceInterfaceVariable: string
    tunnelSourceVariable: string
Copy

CiscoVpnInterfaceIpsecFeatureTemplate Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The CiscoVpnInterfaceIpsecFeatureTemplate resource accepts the following input properties:

Description This property is required. string
The description of the feature template
DeviceTypes This property is required. List<string>
List of supported device types - Choices: vedge-C8000V, vedge-C8300-1N1S-4T2X, vedge-C8300-1N1S-6T, vedge-C8300-2N2S-6T, vedge-C8300-2N2S-4T2X, vedge-C8500-12X4QC, vedge-C8500-12X, vedge-C8500-20X6C, vedge-C8500L-8S4X, vedge-C8200-1N-4T, vedge-C8200L-1N-4T
Application string
Enable Application Tunnel Type - Choices: none, sig - Default value: none
ApplicationVariable string
Variable name
ClearDontFragment bool
Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: false
ClearDontFragmentVariable string
Variable name
DeadPeerDetectionInterval int
IKE keepalive interval (seconds) - Range: 10-3600 - Default value: 10
DeadPeerDetectionIntervalVariable string
Variable name
DeadPeerDetectionRetries int
IKE keepalive retries - Range: 2-60 - Default value: 3
DeadPeerDetectionRetriesVariable string
Variable name
IkeCiphersuite string
IKE identity the IKE preshared secret belongs to - Choices: aes256-cbc-sha1, aes256-cbc-sha2, aes128-cbc-sha1, aes128-cbc-sha2 - Default value: aes256-cbc-sha1
IkeCiphersuiteVariable string
Variable name
IkeGroup string
IKE Diffie Hellman Groups - Choices: 2, 14, 15, 16, 19, 20, 21, 24 - Default value: 16
IkeGroupVariable string
Variable name
IkeMode string
IKE integrity protocol - Choices: main, aggressive - Default value: main
IkeModeVariable string
Variable name
IkePreSharedKey string
Use preshared key to authenticate IKE peer
IkePreSharedKeyLocalId string
IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
IkePreSharedKeyLocalIdVariable string
Variable name
IkePreSharedKeyRemoteId string
IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
IkePreSharedKeyRemoteIdVariable string
Variable name
IkePreSharedKeyVariable string
Variable name
IkeRekeyInterval int
IKE rekey interval <60..86400> seconds - Range: 60-86400 - Default value: 14400
IkeRekeyIntervalVariable string
Variable name
IkeVersion int
IKE Version <1..2> - Range: 1-2 - Default value: 1
InterfaceDescription string
Interface description
InterfaceDescriptionVariable string
Variable name
InterfaceName string
Interface name: IPsec when present
InterfaceNameVariable string
Variable name
IpAddress string
Assign IPv4 address
IpAddressVariable string
Variable name
IpsecCiphersuite string
IPsec(ESP) encryption and integrity protocol - Choices: aes256-cbc-sha1, aes256-cbc-sha384, aes256-cbc-sha256, aes256-cbc-sha512, aes256-gcm, null-sha1, null-sha384, null-sha256, null-sha512 - Default value: aes256-gcm
IpsecCiphersuiteVariable string
Variable name
IpsecPerfectForwardSecrecy string
IPsec perfect forward secrecy settings - Choices: group-1, group-2, group-5, group-14, group-15, group-16, group-19, group-20, group-21, group-24, none - Default value: group-16
IpsecPerfectForwardSecrecyVariable string
Variable name
IpsecRekeyInterval int
IPsec rekey interval <300..1209600> seconds - Range: 120-2592000 - Default value: 3600
IpsecRekeyIntervalVariable string
Variable name
IpsecReplayWindow int
Replay window size 32..8192 (must be a power of 2) - Range: 64-4096 - Default value: 512
IpsecReplayWindowVariable string
Variable name
Mtu int
Interface MTU <68..9216>, in bytes - Range: 68-9216 - Default value: 1500
MtuVariable string
Variable name
Name string
The name of the feature template
Shutdown bool
Administrative state - Default value: true
ShutdownVariable string
Variable name
TcpMssAdjust int
TCP MSS on SYN packets, in bytes - Range: 500-1460
TcpMssAdjustVariable string
Variable name
TrackerVariable string
Variable name
Trackers List<string>
Enable tracker for this interface
TunnelDestination string
Tunnel destination IP address
TunnelDestinationVariable string
Variable name
TunnelRouteVia string
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
TunnelRouteViaVariable string
Variable name
TunnelSource string
Tunnel source IP Address
TunnelSourceInterface string
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
TunnelSourceInterfaceVariable string
Variable name
TunnelSourceVariable string
Variable name
Description This property is required. string
The description of the feature template
DeviceTypes This property is required. []string
List of supported device types - Choices: vedge-C8000V, vedge-C8300-1N1S-4T2X, vedge-C8300-1N1S-6T, vedge-C8300-2N2S-6T, vedge-C8300-2N2S-4T2X, vedge-C8500-12X4QC, vedge-C8500-12X, vedge-C8500-20X6C, vedge-C8500L-8S4X, vedge-C8200-1N-4T, vedge-C8200L-1N-4T
Application string
Enable Application Tunnel Type - Choices: none, sig - Default value: none
ApplicationVariable string
Variable name
ClearDontFragment bool
Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: false
ClearDontFragmentVariable string
Variable name
DeadPeerDetectionInterval int
IKE keepalive interval (seconds) - Range: 10-3600 - Default value: 10
DeadPeerDetectionIntervalVariable string
Variable name
DeadPeerDetectionRetries int
IKE keepalive retries - Range: 2-60 - Default value: 3
DeadPeerDetectionRetriesVariable string
Variable name
IkeCiphersuite string
IKE identity the IKE preshared secret belongs to - Choices: aes256-cbc-sha1, aes256-cbc-sha2, aes128-cbc-sha1, aes128-cbc-sha2 - Default value: aes256-cbc-sha1
IkeCiphersuiteVariable string
Variable name
IkeGroup string
IKE Diffie Hellman Groups - Choices: 2, 14, 15, 16, 19, 20, 21, 24 - Default value: 16
IkeGroupVariable string
Variable name
IkeMode string
IKE integrity protocol - Choices: main, aggressive - Default value: main
IkeModeVariable string
Variable name
IkePreSharedKey string
Use preshared key to authenticate IKE peer
IkePreSharedKeyLocalId string
IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
IkePreSharedKeyLocalIdVariable string
Variable name
IkePreSharedKeyRemoteId string
IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
IkePreSharedKeyRemoteIdVariable string
Variable name
IkePreSharedKeyVariable string
Variable name
IkeRekeyInterval int
IKE rekey interval <60..86400> seconds - Range: 60-86400 - Default value: 14400
IkeRekeyIntervalVariable string
Variable name
IkeVersion int
IKE Version <1..2> - Range: 1-2 - Default value: 1
InterfaceDescription string
Interface description
InterfaceDescriptionVariable string
Variable name
InterfaceName string
Interface name: IPsec when present
InterfaceNameVariable string
Variable name
IpAddress string
Assign IPv4 address
IpAddressVariable string
Variable name
IpsecCiphersuite string
IPsec(ESP) encryption and integrity protocol - Choices: aes256-cbc-sha1, aes256-cbc-sha384, aes256-cbc-sha256, aes256-cbc-sha512, aes256-gcm, null-sha1, null-sha384, null-sha256, null-sha512 - Default value: aes256-gcm
IpsecCiphersuiteVariable string
Variable name
IpsecPerfectForwardSecrecy string
IPsec perfect forward secrecy settings - Choices: group-1, group-2, group-5, group-14, group-15, group-16, group-19, group-20, group-21, group-24, none - Default value: group-16
IpsecPerfectForwardSecrecyVariable string
Variable name
IpsecRekeyInterval int
IPsec rekey interval <300..1209600> seconds - Range: 120-2592000 - Default value: 3600
IpsecRekeyIntervalVariable string
Variable name
IpsecReplayWindow int
Replay window size 32..8192 (must be a power of 2) - Range: 64-4096 - Default value: 512
IpsecReplayWindowVariable string
Variable name
Mtu int
Interface MTU <68..9216>, in bytes - Range: 68-9216 - Default value: 1500
MtuVariable string
Variable name
Name string
The name of the feature template
Shutdown bool
Administrative state - Default value: true
ShutdownVariable string
Variable name
TcpMssAdjust int
TCP MSS on SYN packets, in bytes - Range: 500-1460
TcpMssAdjustVariable string
Variable name
TrackerVariable string
Variable name
Trackers []string
Enable tracker for this interface
TunnelDestination string
Tunnel destination IP address
TunnelDestinationVariable string
Variable name
TunnelRouteVia string
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
TunnelRouteViaVariable string
Variable name
TunnelSource string
Tunnel source IP Address
TunnelSourceInterface string
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
TunnelSourceInterfaceVariable string
Variable name
TunnelSourceVariable string
Variable name
description This property is required. String
The description of the feature template
deviceTypes This property is required. List<String>
List of supported device types - Choices: vedge-C8000V, vedge-C8300-1N1S-4T2X, vedge-C8300-1N1S-6T, vedge-C8300-2N2S-6T, vedge-C8300-2N2S-4T2X, vedge-C8500-12X4QC, vedge-C8500-12X, vedge-C8500-20X6C, vedge-C8500L-8S4X, vedge-C8200-1N-4T, vedge-C8200L-1N-4T
application String
Enable Application Tunnel Type - Choices: none, sig - Default value: none
applicationVariable String
Variable name
clearDontFragment Boolean
Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: false
clearDontFragmentVariable String
Variable name
deadPeerDetectionInterval Integer
IKE keepalive interval (seconds) - Range: 10-3600 - Default value: 10
deadPeerDetectionIntervalVariable String
Variable name
deadPeerDetectionRetries Integer
IKE keepalive retries - Range: 2-60 - Default value: 3
deadPeerDetectionRetriesVariable String
Variable name
ikeCiphersuite String
IKE identity the IKE preshared secret belongs to - Choices: aes256-cbc-sha1, aes256-cbc-sha2, aes128-cbc-sha1, aes128-cbc-sha2 - Default value: aes256-cbc-sha1
ikeCiphersuiteVariable String
Variable name
ikeGroup String
IKE Diffie Hellman Groups - Choices: 2, 14, 15, 16, 19, 20, 21, 24 - Default value: 16
ikeGroupVariable String
Variable name
ikeMode String
IKE integrity protocol - Choices: main, aggressive - Default value: main
ikeModeVariable String
Variable name
ikePreSharedKey String
Use preshared key to authenticate IKE peer
ikePreSharedKeyLocalId String
IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
ikePreSharedKeyLocalIdVariable String
Variable name
ikePreSharedKeyRemoteId String
IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
ikePreSharedKeyRemoteIdVariable String
Variable name
ikePreSharedKeyVariable String
Variable name
ikeRekeyInterval Integer
IKE rekey interval <60..86400> seconds - Range: 60-86400 - Default value: 14400
ikeRekeyIntervalVariable String
Variable name
ikeVersion Integer
IKE Version <1..2> - Range: 1-2 - Default value: 1
interfaceDescription String
Interface description
interfaceDescriptionVariable String
Variable name
interfaceName String
Interface name: IPsec when present
interfaceNameVariable String
Variable name
ipAddress String
Assign IPv4 address
ipAddressVariable String
Variable name
ipsecCiphersuite String
IPsec(ESP) encryption and integrity protocol - Choices: aes256-cbc-sha1, aes256-cbc-sha384, aes256-cbc-sha256, aes256-cbc-sha512, aes256-gcm, null-sha1, null-sha384, null-sha256, null-sha512 - Default value: aes256-gcm
ipsecCiphersuiteVariable String
Variable name
ipsecPerfectForwardSecrecy String
IPsec perfect forward secrecy settings - Choices: group-1, group-2, group-5, group-14, group-15, group-16, group-19, group-20, group-21, group-24, none - Default value: group-16
ipsecPerfectForwardSecrecyVariable String
Variable name
ipsecRekeyInterval Integer
IPsec rekey interval <300..1209600> seconds - Range: 120-2592000 - Default value: 3600
ipsecRekeyIntervalVariable String
Variable name
ipsecReplayWindow Integer
Replay window size 32..8192 (must be a power of 2) - Range: 64-4096 - Default value: 512
ipsecReplayWindowVariable String
Variable name
mtu Integer
Interface MTU <68..9216>, in bytes - Range: 68-9216 - Default value: 1500
mtuVariable String
Variable name
name String
The name of the feature template
shutdown Boolean
Administrative state - Default value: true
shutdownVariable String
Variable name
tcpMssAdjust Integer
TCP MSS on SYN packets, in bytes - Range: 500-1460
tcpMssAdjustVariable String
Variable name
trackerVariable String
Variable name
trackers List<String>
Enable tracker for this interface
tunnelDestination String
Tunnel destination IP address
tunnelDestinationVariable String
Variable name
tunnelRouteVia String
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
tunnelRouteViaVariable String
Variable name
tunnelSource String
Tunnel source IP Address
tunnelSourceInterface String
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
tunnelSourceInterfaceVariable String
Variable name
tunnelSourceVariable String
Variable name
description This property is required. string
The description of the feature template
deviceTypes This property is required. string[]
List of supported device types - Choices: vedge-C8000V, vedge-C8300-1N1S-4T2X, vedge-C8300-1N1S-6T, vedge-C8300-2N2S-6T, vedge-C8300-2N2S-4T2X, vedge-C8500-12X4QC, vedge-C8500-12X, vedge-C8500-20X6C, vedge-C8500L-8S4X, vedge-C8200-1N-4T, vedge-C8200L-1N-4T
application string
Enable Application Tunnel Type - Choices: none, sig - Default value: none
applicationVariable string
Variable name
clearDontFragment boolean
Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: false
clearDontFragmentVariable string
Variable name
deadPeerDetectionInterval number
IKE keepalive interval (seconds) - Range: 10-3600 - Default value: 10
deadPeerDetectionIntervalVariable string
Variable name
deadPeerDetectionRetries number
IKE keepalive retries - Range: 2-60 - Default value: 3
deadPeerDetectionRetriesVariable string
Variable name
ikeCiphersuite string
IKE identity the IKE preshared secret belongs to - Choices: aes256-cbc-sha1, aes256-cbc-sha2, aes128-cbc-sha1, aes128-cbc-sha2 - Default value: aes256-cbc-sha1
ikeCiphersuiteVariable string
Variable name
ikeGroup string
IKE Diffie Hellman Groups - Choices: 2, 14, 15, 16, 19, 20, 21, 24 - Default value: 16
ikeGroupVariable string
Variable name
ikeMode string
IKE integrity protocol - Choices: main, aggressive - Default value: main
ikeModeVariable string
Variable name
ikePreSharedKey string
Use preshared key to authenticate IKE peer
ikePreSharedKeyLocalId string
IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
ikePreSharedKeyLocalIdVariable string
Variable name
ikePreSharedKeyRemoteId string
IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
ikePreSharedKeyRemoteIdVariable string
Variable name
ikePreSharedKeyVariable string
Variable name
ikeRekeyInterval number
IKE rekey interval <60..86400> seconds - Range: 60-86400 - Default value: 14400
ikeRekeyIntervalVariable string
Variable name
ikeVersion number
IKE Version <1..2> - Range: 1-2 - Default value: 1
interfaceDescription string
Interface description
interfaceDescriptionVariable string
Variable name
interfaceName string
Interface name: IPsec when present
interfaceNameVariable string
Variable name
ipAddress string
Assign IPv4 address
ipAddressVariable string
Variable name
ipsecCiphersuite string
IPsec(ESP) encryption and integrity protocol - Choices: aes256-cbc-sha1, aes256-cbc-sha384, aes256-cbc-sha256, aes256-cbc-sha512, aes256-gcm, null-sha1, null-sha384, null-sha256, null-sha512 - Default value: aes256-gcm
ipsecCiphersuiteVariable string
Variable name
ipsecPerfectForwardSecrecy string
IPsec perfect forward secrecy settings - Choices: group-1, group-2, group-5, group-14, group-15, group-16, group-19, group-20, group-21, group-24, none - Default value: group-16
ipsecPerfectForwardSecrecyVariable string
Variable name
ipsecRekeyInterval number
IPsec rekey interval <300..1209600> seconds - Range: 120-2592000 - Default value: 3600
ipsecRekeyIntervalVariable string
Variable name
ipsecReplayWindow number
Replay window size 32..8192 (must be a power of 2) - Range: 64-4096 - Default value: 512
ipsecReplayWindowVariable string
Variable name
mtu number
Interface MTU <68..9216>, in bytes - Range: 68-9216 - Default value: 1500
mtuVariable string
Variable name
name string
The name of the feature template
shutdown boolean
Administrative state - Default value: true
shutdownVariable string
Variable name
tcpMssAdjust number
TCP MSS on SYN packets, in bytes - Range: 500-1460
tcpMssAdjustVariable string
Variable name
trackerVariable string
Variable name
trackers string[]
Enable tracker for this interface
tunnelDestination string
Tunnel destination IP address
tunnelDestinationVariable string
Variable name
tunnelRouteVia string
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
tunnelRouteViaVariable string
Variable name
tunnelSource string
Tunnel source IP Address
tunnelSourceInterface string
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
tunnelSourceInterfaceVariable string
Variable name
tunnelSourceVariable string
Variable name
description This property is required. str
The description of the feature template
device_types This property is required. Sequence[str]
List of supported device types - Choices: vedge-C8000V, vedge-C8300-1N1S-4T2X, vedge-C8300-1N1S-6T, vedge-C8300-2N2S-6T, vedge-C8300-2N2S-4T2X, vedge-C8500-12X4QC, vedge-C8500-12X, vedge-C8500-20X6C, vedge-C8500L-8S4X, vedge-C8200-1N-4T, vedge-C8200L-1N-4T
application str
Enable Application Tunnel Type - Choices: none, sig - Default value: none
application_variable str
Variable name
clear_dont_fragment bool
Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: false
clear_dont_fragment_variable str
Variable name
dead_peer_detection_interval int
IKE keepalive interval (seconds) - Range: 10-3600 - Default value: 10
dead_peer_detection_interval_variable str
Variable name
dead_peer_detection_retries int
IKE keepalive retries - Range: 2-60 - Default value: 3
dead_peer_detection_retries_variable str
Variable name
ike_ciphersuite str
IKE identity the IKE preshared secret belongs to - Choices: aes256-cbc-sha1, aes256-cbc-sha2, aes128-cbc-sha1, aes128-cbc-sha2 - Default value: aes256-cbc-sha1
ike_ciphersuite_variable str
Variable name
ike_group str
IKE Diffie Hellman Groups - Choices: 2, 14, 15, 16, 19, 20, 21, 24 - Default value: 16
ike_group_variable str
Variable name
ike_mode str
IKE integrity protocol - Choices: main, aggressive - Default value: main
ike_mode_variable str
Variable name
ike_pre_shared_key str
Use preshared key to authenticate IKE peer
ike_pre_shared_key_local_id str
IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
ike_pre_shared_key_local_id_variable str
Variable name
ike_pre_shared_key_remote_id str
IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
ike_pre_shared_key_remote_id_variable str
Variable name
ike_pre_shared_key_variable str
Variable name
ike_rekey_interval int
IKE rekey interval <60..86400> seconds - Range: 60-86400 - Default value: 14400
ike_rekey_interval_variable str
Variable name
ike_version int
IKE Version <1..2> - Range: 1-2 - Default value: 1
interface_description str
Interface description
interface_description_variable str
Variable name
interface_name str
Interface name: IPsec when present
interface_name_variable str
Variable name
ip_address str
Assign IPv4 address
ip_address_variable str
Variable name
ipsec_ciphersuite str
IPsec(ESP) encryption and integrity protocol - Choices: aes256-cbc-sha1, aes256-cbc-sha384, aes256-cbc-sha256, aes256-cbc-sha512, aes256-gcm, null-sha1, null-sha384, null-sha256, null-sha512 - Default value: aes256-gcm
ipsec_ciphersuite_variable str
Variable name
ipsec_perfect_forward_secrecy str
IPsec perfect forward secrecy settings - Choices: group-1, group-2, group-5, group-14, group-15, group-16, group-19, group-20, group-21, group-24, none - Default value: group-16
ipsec_perfect_forward_secrecy_variable str
Variable name
ipsec_rekey_interval int
IPsec rekey interval <300..1209600> seconds - Range: 120-2592000 - Default value: 3600
ipsec_rekey_interval_variable str
Variable name
ipsec_replay_window int
Replay window size 32..8192 (must be a power of 2) - Range: 64-4096 - Default value: 512
ipsec_replay_window_variable str
Variable name
mtu int
Interface MTU <68..9216>, in bytes - Range: 68-9216 - Default value: 1500
mtu_variable str
Variable name
name str
The name of the feature template
shutdown bool
Administrative state - Default value: true
shutdown_variable str
Variable name
tcp_mss_adjust int
TCP MSS on SYN packets, in bytes - Range: 500-1460
tcp_mss_adjust_variable str
Variable name
tracker_variable str
Variable name
trackers Sequence[str]
Enable tracker for this interface
tunnel_destination str
Tunnel destination IP address
tunnel_destination_variable str
Variable name
tunnel_route_via str
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
tunnel_route_via_variable str
Variable name
tunnel_source str
Tunnel source IP Address
tunnel_source_interface str
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
tunnel_source_interface_variable str
Variable name
tunnel_source_variable str
Variable name
description This property is required. String
The description of the feature template
deviceTypes This property is required. List<String>
List of supported device types - Choices: vedge-C8000V, vedge-C8300-1N1S-4T2X, vedge-C8300-1N1S-6T, vedge-C8300-2N2S-6T, vedge-C8300-2N2S-4T2X, vedge-C8500-12X4QC, vedge-C8500-12X, vedge-C8500-20X6C, vedge-C8500L-8S4X, vedge-C8200-1N-4T, vedge-C8200L-1N-4T
application String
Enable Application Tunnel Type - Choices: none, sig - Default value: none
applicationVariable String
Variable name
clearDontFragment Boolean
Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: false
clearDontFragmentVariable String
Variable name
deadPeerDetectionInterval Number
IKE keepalive interval (seconds) - Range: 10-3600 - Default value: 10
deadPeerDetectionIntervalVariable String
Variable name
deadPeerDetectionRetries Number
IKE keepalive retries - Range: 2-60 - Default value: 3
deadPeerDetectionRetriesVariable String
Variable name
ikeCiphersuite String
IKE identity the IKE preshared secret belongs to - Choices: aes256-cbc-sha1, aes256-cbc-sha2, aes128-cbc-sha1, aes128-cbc-sha2 - Default value: aes256-cbc-sha1
ikeCiphersuiteVariable String
Variable name
ikeGroup String
IKE Diffie Hellman Groups - Choices: 2, 14, 15, 16, 19, 20, 21, 24 - Default value: 16
ikeGroupVariable String
Variable name
ikeMode String
IKE integrity protocol - Choices: main, aggressive - Default value: main
ikeModeVariable String
Variable name
ikePreSharedKey String
Use preshared key to authenticate IKE peer
ikePreSharedKeyLocalId String
IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
ikePreSharedKeyLocalIdVariable String
Variable name
ikePreSharedKeyRemoteId String
IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
ikePreSharedKeyRemoteIdVariable String
Variable name
ikePreSharedKeyVariable String
Variable name
ikeRekeyInterval Number
IKE rekey interval <60..86400> seconds - Range: 60-86400 - Default value: 14400
ikeRekeyIntervalVariable String
Variable name
ikeVersion Number
IKE Version <1..2> - Range: 1-2 - Default value: 1
interfaceDescription String
Interface description
interfaceDescriptionVariable String
Variable name
interfaceName String
Interface name: IPsec when present
interfaceNameVariable String
Variable name
ipAddress String
Assign IPv4 address
ipAddressVariable String
Variable name
ipsecCiphersuite String
IPsec(ESP) encryption and integrity protocol - Choices: aes256-cbc-sha1, aes256-cbc-sha384, aes256-cbc-sha256, aes256-cbc-sha512, aes256-gcm, null-sha1, null-sha384, null-sha256, null-sha512 - Default value: aes256-gcm
ipsecCiphersuiteVariable String
Variable name
ipsecPerfectForwardSecrecy String
IPsec perfect forward secrecy settings - Choices: group-1, group-2, group-5, group-14, group-15, group-16, group-19, group-20, group-21, group-24, none - Default value: group-16
ipsecPerfectForwardSecrecyVariable String
Variable name
ipsecRekeyInterval Number
IPsec rekey interval <300..1209600> seconds - Range: 120-2592000 - Default value: 3600
ipsecRekeyIntervalVariable String
Variable name
ipsecReplayWindow Number
Replay window size 32..8192 (must be a power of 2) - Range: 64-4096 - Default value: 512
ipsecReplayWindowVariable String
Variable name
mtu Number
Interface MTU <68..9216>, in bytes - Range: 68-9216 - Default value: 1500
mtuVariable String
Variable name
name String
The name of the feature template
shutdown Boolean
Administrative state - Default value: true
shutdownVariable String
Variable name
tcpMssAdjust Number
TCP MSS on SYN packets, in bytes - Range: 500-1460
tcpMssAdjustVariable String
Variable name
trackerVariable String
Variable name
trackers List<String>
Enable tracker for this interface
tunnelDestination String
Tunnel destination IP address
tunnelDestinationVariable String
Variable name
tunnelRouteVia String
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
tunnelRouteViaVariable String
Variable name
tunnelSource String
Tunnel source IP Address
tunnelSourceInterface String
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
tunnelSourceInterfaceVariable String
Variable name
tunnelSourceVariable String
Variable name

Outputs

All input properties are implicitly available as output properties. Additionally, the CiscoVpnInterfaceIpsecFeatureTemplate resource produces the following output properties:

Id string
The provider-assigned unique ID for this managed resource.
TemplateType string
The template type
Version int
The version of the feature template
Id string
The provider-assigned unique ID for this managed resource.
TemplateType string
The template type
Version int
The version of the feature template
id String
The provider-assigned unique ID for this managed resource.
templateType String
The template type
version Integer
The version of the feature template
id string
The provider-assigned unique ID for this managed resource.
templateType string
The template type
version number
The version of the feature template
id str
The provider-assigned unique ID for this managed resource.
template_type str
The template type
version int
The version of the feature template
id String
The provider-assigned unique ID for this managed resource.
templateType String
The template type
version Number
The version of the feature template

Look up Existing CiscoVpnInterfaceIpsecFeatureTemplate Resource

Get an existing CiscoVpnInterfaceIpsecFeatureTemplate resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: CiscoVpnInterfaceIpsecFeatureTemplateState, opts?: CustomResourceOptions): CiscoVpnInterfaceIpsecFeatureTemplate
@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        application: Optional[str] = None,
        application_variable: Optional[str] = None,
        clear_dont_fragment: Optional[bool] = None,
        clear_dont_fragment_variable: Optional[str] = None,
        dead_peer_detection_interval: Optional[int] = None,
        dead_peer_detection_interval_variable: Optional[str] = None,
        dead_peer_detection_retries: Optional[int] = None,
        dead_peer_detection_retries_variable: Optional[str] = None,
        description: Optional[str] = None,
        device_types: Optional[Sequence[str]] = None,
        ike_ciphersuite: Optional[str] = None,
        ike_ciphersuite_variable: Optional[str] = None,
        ike_group: Optional[str] = None,
        ike_group_variable: Optional[str] = None,
        ike_mode: Optional[str] = None,
        ike_mode_variable: Optional[str] = None,
        ike_pre_shared_key: Optional[str] = None,
        ike_pre_shared_key_local_id: Optional[str] = None,
        ike_pre_shared_key_local_id_variable: Optional[str] = None,
        ike_pre_shared_key_remote_id: Optional[str] = None,
        ike_pre_shared_key_remote_id_variable: Optional[str] = None,
        ike_pre_shared_key_variable: Optional[str] = None,
        ike_rekey_interval: Optional[int] = None,
        ike_rekey_interval_variable: Optional[str] = None,
        ike_version: Optional[int] = None,
        interface_description: Optional[str] = None,
        interface_description_variable: Optional[str] = None,
        interface_name: Optional[str] = None,
        interface_name_variable: Optional[str] = None,
        ip_address: Optional[str] = None,
        ip_address_variable: Optional[str] = None,
        ipsec_ciphersuite: Optional[str] = None,
        ipsec_ciphersuite_variable: Optional[str] = None,
        ipsec_perfect_forward_secrecy: Optional[str] = None,
        ipsec_perfect_forward_secrecy_variable: Optional[str] = None,
        ipsec_rekey_interval: Optional[int] = None,
        ipsec_rekey_interval_variable: Optional[str] = None,
        ipsec_replay_window: Optional[int] = None,
        ipsec_replay_window_variable: Optional[str] = None,
        mtu: Optional[int] = None,
        mtu_variable: Optional[str] = None,
        name: Optional[str] = None,
        shutdown: Optional[bool] = None,
        shutdown_variable: Optional[str] = None,
        tcp_mss_adjust: Optional[int] = None,
        tcp_mss_adjust_variable: Optional[str] = None,
        template_type: Optional[str] = None,
        tracker_variable: Optional[str] = None,
        trackers: Optional[Sequence[str]] = None,
        tunnel_destination: Optional[str] = None,
        tunnel_destination_variable: Optional[str] = None,
        tunnel_route_via: Optional[str] = None,
        tunnel_route_via_variable: Optional[str] = None,
        tunnel_source: Optional[str] = None,
        tunnel_source_interface: Optional[str] = None,
        tunnel_source_interface_variable: Optional[str] = None,
        tunnel_source_variable: Optional[str] = None,
        version: Optional[int] = None) -> CiscoVpnInterfaceIpsecFeatureTemplate
func GetCiscoVpnInterfaceIpsecFeatureTemplate(ctx *Context, name string, id IDInput, state *CiscoVpnInterfaceIpsecFeatureTemplateState, opts ...ResourceOption) (*CiscoVpnInterfaceIpsecFeatureTemplate, error)
public static CiscoVpnInterfaceIpsecFeatureTemplate Get(string name, Input<string> id, CiscoVpnInterfaceIpsecFeatureTemplateState? state, CustomResourceOptions? opts = null)
public static CiscoVpnInterfaceIpsecFeatureTemplate get(String name, Output<String> id, CiscoVpnInterfaceIpsecFeatureTemplateState state, CustomResourceOptions options)
resources:  _:    type: sdwan:CiscoVpnInterfaceIpsecFeatureTemplate    get:      id: ${id}
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
resource_name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
The following state arguments are supported:
Application string
Enable Application Tunnel Type - Choices: none, sig - Default value: none
ApplicationVariable string
Variable name
ClearDontFragment bool
Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: false
ClearDontFragmentVariable string
Variable name
DeadPeerDetectionInterval int
IKE keepalive interval (seconds) - Range: 10-3600 - Default value: 10
DeadPeerDetectionIntervalVariable string
Variable name
DeadPeerDetectionRetries int
IKE keepalive retries - Range: 2-60 - Default value: 3
DeadPeerDetectionRetriesVariable string
Variable name
Description string
The description of the feature template
DeviceTypes List<string>
List of supported device types - Choices: vedge-C8000V, vedge-C8300-1N1S-4T2X, vedge-C8300-1N1S-6T, vedge-C8300-2N2S-6T, vedge-C8300-2N2S-4T2X, vedge-C8500-12X4QC, vedge-C8500-12X, vedge-C8500-20X6C, vedge-C8500L-8S4X, vedge-C8200-1N-4T, vedge-C8200L-1N-4T
IkeCiphersuite string
IKE identity the IKE preshared secret belongs to - Choices: aes256-cbc-sha1, aes256-cbc-sha2, aes128-cbc-sha1, aes128-cbc-sha2 - Default value: aes256-cbc-sha1
IkeCiphersuiteVariable string
Variable name
IkeGroup string
IKE Diffie Hellman Groups - Choices: 2, 14, 15, 16, 19, 20, 21, 24 - Default value: 16
IkeGroupVariable string
Variable name
IkeMode string
IKE integrity protocol - Choices: main, aggressive - Default value: main
IkeModeVariable string
Variable name
IkePreSharedKey string
Use preshared key to authenticate IKE peer
IkePreSharedKeyLocalId string
IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
IkePreSharedKeyLocalIdVariable string
Variable name
IkePreSharedKeyRemoteId string
IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
IkePreSharedKeyRemoteIdVariable string
Variable name
IkePreSharedKeyVariable string
Variable name
IkeRekeyInterval int
IKE rekey interval <60..86400> seconds - Range: 60-86400 - Default value: 14400
IkeRekeyIntervalVariable string
Variable name
IkeVersion int
IKE Version <1..2> - Range: 1-2 - Default value: 1
InterfaceDescription string
Interface description
InterfaceDescriptionVariable string
Variable name
InterfaceName string
Interface name: IPsec when present
InterfaceNameVariable string
Variable name
IpAddress string
Assign IPv4 address
IpAddressVariable string
Variable name
IpsecCiphersuite string
IPsec(ESP) encryption and integrity protocol - Choices: aes256-cbc-sha1, aes256-cbc-sha384, aes256-cbc-sha256, aes256-cbc-sha512, aes256-gcm, null-sha1, null-sha384, null-sha256, null-sha512 - Default value: aes256-gcm
IpsecCiphersuiteVariable string
Variable name
IpsecPerfectForwardSecrecy string
IPsec perfect forward secrecy settings - Choices: group-1, group-2, group-5, group-14, group-15, group-16, group-19, group-20, group-21, group-24, none - Default value: group-16
IpsecPerfectForwardSecrecyVariable string
Variable name
IpsecRekeyInterval int
IPsec rekey interval <300..1209600> seconds - Range: 120-2592000 - Default value: 3600
IpsecRekeyIntervalVariable string
Variable name
IpsecReplayWindow int
Replay window size 32..8192 (must be a power of 2) - Range: 64-4096 - Default value: 512
IpsecReplayWindowVariable string
Variable name
Mtu int
Interface MTU <68..9216>, in bytes - Range: 68-9216 - Default value: 1500
MtuVariable string
Variable name
Name string
The name of the feature template
Shutdown bool
Administrative state - Default value: true
ShutdownVariable string
Variable name
TcpMssAdjust int
TCP MSS on SYN packets, in bytes - Range: 500-1460
TcpMssAdjustVariable string
Variable name
TemplateType string
The template type
TrackerVariable string
Variable name
Trackers List<string>
Enable tracker for this interface
TunnelDestination string
Tunnel destination IP address
TunnelDestinationVariable string
Variable name
TunnelRouteVia string
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
TunnelRouteViaVariable string
Variable name
TunnelSource string
Tunnel source IP Address
TunnelSourceInterface string
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
TunnelSourceInterfaceVariable string
Variable name
TunnelSourceVariable string
Variable name
Version int
The version of the feature template
Application string
Enable Application Tunnel Type - Choices: none, sig - Default value: none
ApplicationVariable string
Variable name
ClearDontFragment bool
Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: false
ClearDontFragmentVariable string
Variable name
DeadPeerDetectionInterval int
IKE keepalive interval (seconds) - Range: 10-3600 - Default value: 10
DeadPeerDetectionIntervalVariable string
Variable name
DeadPeerDetectionRetries int
IKE keepalive retries - Range: 2-60 - Default value: 3
DeadPeerDetectionRetriesVariable string
Variable name
Description string
The description of the feature template
DeviceTypes []string
List of supported device types - Choices: vedge-C8000V, vedge-C8300-1N1S-4T2X, vedge-C8300-1N1S-6T, vedge-C8300-2N2S-6T, vedge-C8300-2N2S-4T2X, vedge-C8500-12X4QC, vedge-C8500-12X, vedge-C8500-20X6C, vedge-C8500L-8S4X, vedge-C8200-1N-4T, vedge-C8200L-1N-4T
IkeCiphersuite string
IKE identity the IKE preshared secret belongs to - Choices: aes256-cbc-sha1, aes256-cbc-sha2, aes128-cbc-sha1, aes128-cbc-sha2 - Default value: aes256-cbc-sha1
IkeCiphersuiteVariable string
Variable name
IkeGroup string
IKE Diffie Hellman Groups - Choices: 2, 14, 15, 16, 19, 20, 21, 24 - Default value: 16
IkeGroupVariable string
Variable name
IkeMode string
IKE integrity protocol - Choices: main, aggressive - Default value: main
IkeModeVariable string
Variable name
IkePreSharedKey string
Use preshared key to authenticate IKE peer
IkePreSharedKeyLocalId string
IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
IkePreSharedKeyLocalIdVariable string
Variable name
IkePreSharedKeyRemoteId string
IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
IkePreSharedKeyRemoteIdVariable string
Variable name
IkePreSharedKeyVariable string
Variable name
IkeRekeyInterval int
IKE rekey interval <60..86400> seconds - Range: 60-86400 - Default value: 14400
IkeRekeyIntervalVariable string
Variable name
IkeVersion int
IKE Version <1..2> - Range: 1-2 - Default value: 1
InterfaceDescription string
Interface description
InterfaceDescriptionVariable string
Variable name
InterfaceName string
Interface name: IPsec when present
InterfaceNameVariable string
Variable name
IpAddress string
Assign IPv4 address
IpAddressVariable string
Variable name
IpsecCiphersuite string
IPsec(ESP) encryption and integrity protocol - Choices: aes256-cbc-sha1, aes256-cbc-sha384, aes256-cbc-sha256, aes256-cbc-sha512, aes256-gcm, null-sha1, null-sha384, null-sha256, null-sha512 - Default value: aes256-gcm
IpsecCiphersuiteVariable string
Variable name
IpsecPerfectForwardSecrecy string
IPsec perfect forward secrecy settings - Choices: group-1, group-2, group-5, group-14, group-15, group-16, group-19, group-20, group-21, group-24, none - Default value: group-16
IpsecPerfectForwardSecrecyVariable string
Variable name
IpsecRekeyInterval int
IPsec rekey interval <300..1209600> seconds - Range: 120-2592000 - Default value: 3600
IpsecRekeyIntervalVariable string
Variable name
IpsecReplayWindow int
Replay window size 32..8192 (must be a power of 2) - Range: 64-4096 - Default value: 512
IpsecReplayWindowVariable string
Variable name
Mtu int
Interface MTU <68..9216>, in bytes - Range: 68-9216 - Default value: 1500
MtuVariable string
Variable name
Name string
The name of the feature template
Shutdown bool
Administrative state - Default value: true
ShutdownVariable string
Variable name
TcpMssAdjust int
TCP MSS on SYN packets, in bytes - Range: 500-1460
TcpMssAdjustVariable string
Variable name
TemplateType string
The template type
TrackerVariable string
Variable name
Trackers []string
Enable tracker for this interface
TunnelDestination string
Tunnel destination IP address
TunnelDestinationVariable string
Variable name
TunnelRouteVia string
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
TunnelRouteViaVariable string
Variable name
TunnelSource string
Tunnel source IP Address
TunnelSourceInterface string
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
TunnelSourceInterfaceVariable string
Variable name
TunnelSourceVariable string
Variable name
Version int
The version of the feature template
application String
Enable Application Tunnel Type - Choices: none, sig - Default value: none
applicationVariable String
Variable name
clearDontFragment Boolean
Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: false
clearDontFragmentVariable String
Variable name
deadPeerDetectionInterval Integer
IKE keepalive interval (seconds) - Range: 10-3600 - Default value: 10
deadPeerDetectionIntervalVariable String
Variable name
deadPeerDetectionRetries Integer
IKE keepalive retries - Range: 2-60 - Default value: 3
deadPeerDetectionRetriesVariable String
Variable name
description String
The description of the feature template
deviceTypes List<String>
List of supported device types - Choices: vedge-C8000V, vedge-C8300-1N1S-4T2X, vedge-C8300-1N1S-6T, vedge-C8300-2N2S-6T, vedge-C8300-2N2S-4T2X, vedge-C8500-12X4QC, vedge-C8500-12X, vedge-C8500-20X6C, vedge-C8500L-8S4X, vedge-C8200-1N-4T, vedge-C8200L-1N-4T
ikeCiphersuite String
IKE identity the IKE preshared secret belongs to - Choices: aes256-cbc-sha1, aes256-cbc-sha2, aes128-cbc-sha1, aes128-cbc-sha2 - Default value: aes256-cbc-sha1
ikeCiphersuiteVariable String
Variable name
ikeGroup String
IKE Diffie Hellman Groups - Choices: 2, 14, 15, 16, 19, 20, 21, 24 - Default value: 16
ikeGroupVariable String
Variable name
ikeMode String
IKE integrity protocol - Choices: main, aggressive - Default value: main
ikeModeVariable String
Variable name
ikePreSharedKey String
Use preshared key to authenticate IKE peer
ikePreSharedKeyLocalId String
IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
ikePreSharedKeyLocalIdVariable String
Variable name
ikePreSharedKeyRemoteId String
IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
ikePreSharedKeyRemoteIdVariable String
Variable name
ikePreSharedKeyVariable String
Variable name
ikeRekeyInterval Integer
IKE rekey interval <60..86400> seconds - Range: 60-86400 - Default value: 14400
ikeRekeyIntervalVariable String
Variable name
ikeVersion Integer
IKE Version <1..2> - Range: 1-2 - Default value: 1
interfaceDescription String
Interface description
interfaceDescriptionVariable String
Variable name
interfaceName String
Interface name: IPsec when present
interfaceNameVariable String
Variable name
ipAddress String
Assign IPv4 address
ipAddressVariable String
Variable name
ipsecCiphersuite String
IPsec(ESP) encryption and integrity protocol - Choices: aes256-cbc-sha1, aes256-cbc-sha384, aes256-cbc-sha256, aes256-cbc-sha512, aes256-gcm, null-sha1, null-sha384, null-sha256, null-sha512 - Default value: aes256-gcm
ipsecCiphersuiteVariable String
Variable name
ipsecPerfectForwardSecrecy String
IPsec perfect forward secrecy settings - Choices: group-1, group-2, group-5, group-14, group-15, group-16, group-19, group-20, group-21, group-24, none - Default value: group-16
ipsecPerfectForwardSecrecyVariable String
Variable name
ipsecRekeyInterval Integer
IPsec rekey interval <300..1209600> seconds - Range: 120-2592000 - Default value: 3600
ipsecRekeyIntervalVariable String
Variable name
ipsecReplayWindow Integer
Replay window size 32..8192 (must be a power of 2) - Range: 64-4096 - Default value: 512
ipsecReplayWindowVariable String
Variable name
mtu Integer
Interface MTU <68..9216>, in bytes - Range: 68-9216 - Default value: 1500
mtuVariable String
Variable name
name String
The name of the feature template
shutdown Boolean
Administrative state - Default value: true
shutdownVariable String
Variable name
tcpMssAdjust Integer
TCP MSS on SYN packets, in bytes - Range: 500-1460
tcpMssAdjustVariable String
Variable name
templateType String
The template type
trackerVariable String
Variable name
trackers List<String>
Enable tracker for this interface
tunnelDestination String
Tunnel destination IP address
tunnelDestinationVariable String
Variable name
tunnelRouteVia String
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
tunnelRouteViaVariable String
Variable name
tunnelSource String
Tunnel source IP Address
tunnelSourceInterface String
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
tunnelSourceInterfaceVariable String
Variable name
tunnelSourceVariable String
Variable name
version Integer
The version of the feature template
application string
Enable Application Tunnel Type - Choices: none, sig - Default value: none
applicationVariable string
Variable name
clearDontFragment boolean
Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: false
clearDontFragmentVariable string
Variable name
deadPeerDetectionInterval number
IKE keepalive interval (seconds) - Range: 10-3600 - Default value: 10
deadPeerDetectionIntervalVariable string
Variable name
deadPeerDetectionRetries number
IKE keepalive retries - Range: 2-60 - Default value: 3
deadPeerDetectionRetriesVariable string
Variable name
description string
The description of the feature template
deviceTypes string[]
List of supported device types - Choices: vedge-C8000V, vedge-C8300-1N1S-4T2X, vedge-C8300-1N1S-6T, vedge-C8300-2N2S-6T, vedge-C8300-2N2S-4T2X, vedge-C8500-12X4QC, vedge-C8500-12X, vedge-C8500-20X6C, vedge-C8500L-8S4X, vedge-C8200-1N-4T, vedge-C8200L-1N-4T
ikeCiphersuite string
IKE identity the IKE preshared secret belongs to - Choices: aes256-cbc-sha1, aes256-cbc-sha2, aes128-cbc-sha1, aes128-cbc-sha2 - Default value: aes256-cbc-sha1
ikeCiphersuiteVariable string
Variable name
ikeGroup string
IKE Diffie Hellman Groups - Choices: 2, 14, 15, 16, 19, 20, 21, 24 - Default value: 16
ikeGroupVariable string
Variable name
ikeMode string
IKE integrity protocol - Choices: main, aggressive - Default value: main
ikeModeVariable string
Variable name
ikePreSharedKey string
Use preshared key to authenticate IKE peer
ikePreSharedKeyLocalId string
IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
ikePreSharedKeyLocalIdVariable string
Variable name
ikePreSharedKeyRemoteId string
IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
ikePreSharedKeyRemoteIdVariable string
Variable name
ikePreSharedKeyVariable string
Variable name
ikeRekeyInterval number
IKE rekey interval <60..86400> seconds - Range: 60-86400 - Default value: 14400
ikeRekeyIntervalVariable string
Variable name
ikeVersion number
IKE Version <1..2> - Range: 1-2 - Default value: 1
interfaceDescription string
Interface description
interfaceDescriptionVariable string
Variable name
interfaceName string
Interface name: IPsec when present
interfaceNameVariable string
Variable name
ipAddress string
Assign IPv4 address
ipAddressVariable string
Variable name
ipsecCiphersuite string
IPsec(ESP) encryption and integrity protocol - Choices: aes256-cbc-sha1, aes256-cbc-sha384, aes256-cbc-sha256, aes256-cbc-sha512, aes256-gcm, null-sha1, null-sha384, null-sha256, null-sha512 - Default value: aes256-gcm
ipsecCiphersuiteVariable string
Variable name
ipsecPerfectForwardSecrecy string
IPsec perfect forward secrecy settings - Choices: group-1, group-2, group-5, group-14, group-15, group-16, group-19, group-20, group-21, group-24, none - Default value: group-16
ipsecPerfectForwardSecrecyVariable string
Variable name
ipsecRekeyInterval number
IPsec rekey interval <300..1209600> seconds - Range: 120-2592000 - Default value: 3600
ipsecRekeyIntervalVariable string
Variable name
ipsecReplayWindow number
Replay window size 32..8192 (must be a power of 2) - Range: 64-4096 - Default value: 512
ipsecReplayWindowVariable string
Variable name
mtu number
Interface MTU <68..9216>, in bytes - Range: 68-9216 - Default value: 1500
mtuVariable string
Variable name
name string
The name of the feature template
shutdown boolean
Administrative state - Default value: true
shutdownVariable string
Variable name
tcpMssAdjust number
TCP MSS on SYN packets, in bytes - Range: 500-1460
tcpMssAdjustVariable string
Variable name
templateType string
The template type
trackerVariable string
Variable name
trackers string[]
Enable tracker for this interface
tunnelDestination string
Tunnel destination IP address
tunnelDestinationVariable string
Variable name
tunnelRouteVia string
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
tunnelRouteViaVariable string
Variable name
tunnelSource string
Tunnel source IP Address
tunnelSourceInterface string
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
tunnelSourceInterfaceVariable string
Variable name
tunnelSourceVariable string
Variable name
version number
The version of the feature template
application str
Enable Application Tunnel Type - Choices: none, sig - Default value: none
application_variable str
Variable name
clear_dont_fragment bool
Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: false
clear_dont_fragment_variable str
Variable name
dead_peer_detection_interval int
IKE keepalive interval (seconds) - Range: 10-3600 - Default value: 10
dead_peer_detection_interval_variable str
Variable name
dead_peer_detection_retries int
IKE keepalive retries - Range: 2-60 - Default value: 3
dead_peer_detection_retries_variable str
Variable name
description str
The description of the feature template
device_types Sequence[str]
List of supported device types - Choices: vedge-C8000V, vedge-C8300-1N1S-4T2X, vedge-C8300-1N1S-6T, vedge-C8300-2N2S-6T, vedge-C8300-2N2S-4T2X, vedge-C8500-12X4QC, vedge-C8500-12X, vedge-C8500-20X6C, vedge-C8500L-8S4X, vedge-C8200-1N-4T, vedge-C8200L-1N-4T
ike_ciphersuite str
IKE identity the IKE preshared secret belongs to - Choices: aes256-cbc-sha1, aes256-cbc-sha2, aes128-cbc-sha1, aes128-cbc-sha2 - Default value: aes256-cbc-sha1
ike_ciphersuite_variable str
Variable name
ike_group str
IKE Diffie Hellman Groups - Choices: 2, 14, 15, 16, 19, 20, 21, 24 - Default value: 16
ike_group_variable str
Variable name
ike_mode str
IKE integrity protocol - Choices: main, aggressive - Default value: main
ike_mode_variable str
Variable name
ike_pre_shared_key str
Use preshared key to authenticate IKE peer
ike_pre_shared_key_local_id str
IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
ike_pre_shared_key_local_id_variable str
Variable name
ike_pre_shared_key_remote_id str
IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
ike_pre_shared_key_remote_id_variable str
Variable name
ike_pre_shared_key_variable str
Variable name
ike_rekey_interval int
IKE rekey interval <60..86400> seconds - Range: 60-86400 - Default value: 14400
ike_rekey_interval_variable str
Variable name
ike_version int
IKE Version <1..2> - Range: 1-2 - Default value: 1
interface_description str
Interface description
interface_description_variable str
Variable name
interface_name str
Interface name: IPsec when present
interface_name_variable str
Variable name
ip_address str
Assign IPv4 address
ip_address_variable str
Variable name
ipsec_ciphersuite str
IPsec(ESP) encryption and integrity protocol - Choices: aes256-cbc-sha1, aes256-cbc-sha384, aes256-cbc-sha256, aes256-cbc-sha512, aes256-gcm, null-sha1, null-sha384, null-sha256, null-sha512 - Default value: aes256-gcm
ipsec_ciphersuite_variable str
Variable name
ipsec_perfect_forward_secrecy str
IPsec perfect forward secrecy settings - Choices: group-1, group-2, group-5, group-14, group-15, group-16, group-19, group-20, group-21, group-24, none - Default value: group-16
ipsec_perfect_forward_secrecy_variable str
Variable name
ipsec_rekey_interval int
IPsec rekey interval <300..1209600> seconds - Range: 120-2592000 - Default value: 3600
ipsec_rekey_interval_variable str
Variable name
ipsec_replay_window int
Replay window size 32..8192 (must be a power of 2) - Range: 64-4096 - Default value: 512
ipsec_replay_window_variable str
Variable name
mtu int
Interface MTU <68..9216>, in bytes - Range: 68-9216 - Default value: 1500
mtu_variable str
Variable name
name str
The name of the feature template
shutdown bool
Administrative state - Default value: true
shutdown_variable str
Variable name
tcp_mss_adjust int
TCP MSS on SYN packets, in bytes - Range: 500-1460
tcp_mss_adjust_variable str
Variable name
template_type str
The template type
tracker_variable str
Variable name
trackers Sequence[str]
Enable tracker for this interface
tunnel_destination str
Tunnel destination IP address
tunnel_destination_variable str
Variable name
tunnel_route_via str
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
tunnel_route_via_variable str
Variable name
tunnel_source str
Tunnel source IP Address
tunnel_source_interface str
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
tunnel_source_interface_variable str
Variable name
tunnel_source_variable str
Variable name
version int
The version of the feature template
application String
Enable Application Tunnel Type - Choices: none, sig - Default value: none
applicationVariable String
Variable name
clearDontFragment Boolean
Enable clear dont fragment (Currently Only SDWAN Tunnel Interface) - Default value: false
clearDontFragmentVariable String
Variable name
deadPeerDetectionInterval Number
IKE keepalive interval (seconds) - Range: 10-3600 - Default value: 10
deadPeerDetectionIntervalVariable String
Variable name
deadPeerDetectionRetries Number
IKE keepalive retries - Range: 2-60 - Default value: 3
deadPeerDetectionRetriesVariable String
Variable name
description String
The description of the feature template
deviceTypes List<String>
List of supported device types - Choices: vedge-C8000V, vedge-C8300-1N1S-4T2X, vedge-C8300-1N1S-6T, vedge-C8300-2N2S-6T, vedge-C8300-2N2S-4T2X, vedge-C8500-12X4QC, vedge-C8500-12X, vedge-C8500-20X6C, vedge-C8500L-8S4X, vedge-C8200-1N-4T, vedge-C8200L-1N-4T
ikeCiphersuite String
IKE identity the IKE preshared secret belongs to - Choices: aes256-cbc-sha1, aes256-cbc-sha2, aes128-cbc-sha1, aes128-cbc-sha2 - Default value: aes256-cbc-sha1
ikeCiphersuiteVariable String
Variable name
ikeGroup String
IKE Diffie Hellman Groups - Choices: 2, 14, 15, 16, 19, 20, 21, 24 - Default value: 16
ikeGroupVariable String
Variable name
ikeMode String
IKE integrity protocol - Choices: main, aggressive - Default value: main
ikeModeVariable String
Variable name
ikePreSharedKey String
Use preshared key to authenticate IKE peer
ikePreSharedKeyLocalId String
IKE ID for the local endpoint. Input IPv4 address, domain name, or email address
ikePreSharedKeyLocalIdVariable String
Variable name
ikePreSharedKeyRemoteId String
IKE ID for the remote endpoint. Input IPv4 address, domain name, or email address
ikePreSharedKeyRemoteIdVariable String
Variable name
ikePreSharedKeyVariable String
Variable name
ikeRekeyInterval Number
IKE rekey interval <60..86400> seconds - Range: 60-86400 - Default value: 14400
ikeRekeyIntervalVariable String
Variable name
ikeVersion Number
IKE Version <1..2> - Range: 1-2 - Default value: 1
interfaceDescription String
Interface description
interfaceDescriptionVariable String
Variable name
interfaceName String
Interface name: IPsec when present
interfaceNameVariable String
Variable name
ipAddress String
Assign IPv4 address
ipAddressVariable String
Variable name
ipsecCiphersuite String
IPsec(ESP) encryption and integrity protocol - Choices: aes256-cbc-sha1, aes256-cbc-sha384, aes256-cbc-sha256, aes256-cbc-sha512, aes256-gcm, null-sha1, null-sha384, null-sha256, null-sha512 - Default value: aes256-gcm
ipsecCiphersuiteVariable String
Variable name
ipsecPerfectForwardSecrecy String
IPsec perfect forward secrecy settings - Choices: group-1, group-2, group-5, group-14, group-15, group-16, group-19, group-20, group-21, group-24, none - Default value: group-16
ipsecPerfectForwardSecrecyVariable String
Variable name
ipsecRekeyInterval Number
IPsec rekey interval <300..1209600> seconds - Range: 120-2592000 - Default value: 3600
ipsecRekeyIntervalVariable String
Variable name
ipsecReplayWindow Number
Replay window size 32..8192 (must be a power of 2) - Range: 64-4096 - Default value: 512
ipsecReplayWindowVariable String
Variable name
mtu Number
Interface MTU <68..9216>, in bytes - Range: 68-9216 - Default value: 1500
mtuVariable String
Variable name
name String
The name of the feature template
shutdown Boolean
Administrative state - Default value: true
shutdownVariable String
Variable name
tcpMssAdjust Number
TCP MSS on SYN packets, in bytes - Range: 500-1460
tcpMssAdjustVariable String
Variable name
templateType String
The template type
trackerVariable String
Variable name
trackers List<String>
Enable tracker for this interface
tunnelDestination String
Tunnel destination IP address
tunnelDestinationVariable String
Variable name
tunnelRouteVia String
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
tunnelRouteViaVariable String
Variable name
tunnelSource String
Tunnel source IP Address
tunnelSourceInterface String
<1..32 characters> Interface name: ge0/<0-..> or ge0/<0-..>.vlanid
tunnelSourceInterfaceVariable String
Variable name
tunnelSourceVariable String
Variable name
version Number
The version of the feature template

Import

$ pulumi import sdwan:index/ciscoVpnInterfaceIpsecFeatureTemplate:CiscoVpnInterfaceIpsecFeatureTemplate example "f6b2c44c-693c-4763-b010-895aa3d236bd"
Copy

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository
sdwan pulumi/pulumi-sdwan
License
Apache-2.0
Notes
This Pulumi package is based on the sdwan Terraform Provider.