Strata Cloud Manager v0.4.3 published on Saturday, Nov 8, 2025 by Pulumi
Strata Cloud Manager v0.4.3 published on Saturday, Nov 8, 2025 by Pulumi
VulnerabilityProtectionProfile resource
Example Usage
Example coming soon!
Example coming soon!
Example coming soon!
Example coming soon!
Example coming soon!
resources:
scmVpProfile1Test:
type: scm:VulnerabilityProtectionProfile
name: scm_vp_profile_1_test
properties:
folder: Shared
name: vp-profile-1-test
description: basic profile
scmVpProfile2Test:
type: scm:VulnerabilityProtectionProfile
name: scm_vp_profile_2_test
properties:
folder: Shared
name: vp-profile-2-test
description: 'rules: allow, alert, and drop'
rules:
- name: Rule-Informational-Allow
action:
allow: {}
packetCapture: extended-capture
severity:
- informational
category: scan
cve:
- N/A
host: client
vendorId:
- Match Any Vendor
threatName: '30000'
- name: Rule-Medium-Alert
action:
alert: {}
packetCapture: single-packet
severity:
- medium
category: info-leak
cve:
- Match Any CVE
host: server
vendorId:
- MS08-037
threatName: OpenSSL Threat
- name: Rule-Critical-High-Drop
action:
drop: {}
packetCapture: disable
severity:
- critical
- high
category: overflow
cve:
- CVE-2008-1147
host: any
vendorId:
- Match Any Vendor
threatName: any
scmVpProfile3Test:
type: scm:VulnerabilityProtectionProfile
name: scm_vp_profile_3_test
properties:
folder: Shared
name: vp-profile-3-test
description: 'rules: reset client, reset server, reset both'
rules:
- name: Rule-Low-Reset_Client
action:
resetClient: {}
severity:
- low
category: protocol-anomaly
cve:
- CVE-2010-3332
- CVE-2019-14537
host: client
vendorId:
- MSO5-032
- IZ18434
threatName: '30261'
- name: Rule-Info-Low-Reset_Server
action:
resetServer: {}
packetCapture: disable
severity:
- informational
- low
category: insecure-credentials
cve:
- N/A
host: server
vendorId:
- Match Any Vendor
threatName: Zone Bypass
- name: Rule-Medium-Reset_Both
action:
resetBoth: {}
packetCapture: single-packet
severity:
- medium
category: brute-force
cve:
- CVE-2012-0175
- CVE-2024-6387
- CVE-2017-14473
host: any
vendorId:
- CORE-1009-0227
- SHIRO-550
- AST-2012-008
threatName: any
scmVpProfile4Test:
type: scm:VulnerabilityProtectionProfile
name: scm_vp_profile_4_test
properties:
folder: Shared
name: vp-profile-4-test
description: 'rules: block ip'
rules:
- name: Rule-High-Critical-Block_IP
action:
blockIp:
duration: 3600
trackBy: source-and-destination
severity:
- high
- critical
category: insecure-credentials
cve:
- N/A
host: server
vendorId:
- Match Any Vendor
threatName: Zone Credentials
- name: Rule-Low-Medium-Block_IP
action:
blockIp:
duration: 2400
trackBy: source-and-destination
severity:
- low
- medium
category: command-execution
cve:
- N/A
host: server
vendorId:
- Match Any Vendor
threatName: any
scmVpProfile5Test:
type: scm:VulnerabilityProtectionProfile
name: scm_vp_profile_5_test
properties:
folder: Shared
name: vp-profile-5-test
description: override
threatExceptions:
- name: '12345'
action:
allow: {}
severity:
- informational
category: command-execution
exemptIp:
- name: 192.14.3.100
timeAttribute:
interval: 3600
threshold: 24000
trackBy: source
scmVpProfile6Test:
type: scm:VulnerabilityProtectionProfile
name: scm_vp_profile_6_test
properties:
folder: Shared
name: vp-profile-6-test
description: mixed
rules:
- name: Rule-Info-Rest_Both
action:
allow: {}
packetCapture: disable
severity:
- informational
category: exploit-kit
cve:
- N/A
host: client
vendorId:
- Match Any Vendor
threatName: '30000'
- name: Rule-Low-Alert
action:
alert: {}
packetCapture: single-packet
severity:
- low
category: dos
cve:
- CVE-2020-8790
host: server
vendorId:
- MS09-036
threatName: Memory Corruption
- name: Rule-Medium-Drop
action:
drop: {}
packetCapture: disable
severity:
- medium
- high
category: insecure-credentials
cve:
- N/A
host: any
vendorId:
- Match Any Vendor
threatName: any
threatExceptions:
- name: '12345'
action:
drop: {}
packetCapture: single-packet
host: any
category: scan
cve:
- CVE-2011-2663
- CVE-2016-9949
exemptIp:
- name: 192.14.3.100
Create VulnerabilityProtectionProfile Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new VulnerabilityProtectionProfile(name: string, args?: VulnerabilityProtectionProfileArgs, opts?: CustomResourceOptions);@overload
def VulnerabilityProtectionProfile(resource_name: str,
args: Optional[VulnerabilityProtectionProfileArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def VulnerabilityProtectionProfile(resource_name: str,
opts: Optional[ResourceOptions] = None,
description: Optional[str] = None,
device: Optional[str] = None,
folder: Optional[str] = None,
name: Optional[str] = None,
rules: Optional[Sequence[VulnerabilityProtectionProfileRuleArgs]] = None,
snippet: Optional[str] = None,
threat_exceptions: Optional[Sequence[VulnerabilityProtectionProfileThreatExceptionArgs]] = None)func NewVulnerabilityProtectionProfile(ctx *Context, name string, args *VulnerabilityProtectionProfileArgs, opts ...ResourceOption) (*VulnerabilityProtectionProfile, error)public VulnerabilityProtectionProfile(string name, VulnerabilityProtectionProfileArgs? args = null, CustomResourceOptions? opts = null)
public VulnerabilityProtectionProfile(String name, VulnerabilityProtectionProfileArgs args)
public VulnerabilityProtectionProfile(String name, VulnerabilityProtectionProfileArgs args, CustomResourceOptions options)
type: scm:VulnerabilityProtectionProfile
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args VulnerabilityProtectionProfileArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args VulnerabilityProtectionProfileArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args VulnerabilityProtectionProfileArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args VulnerabilityProtectionProfileArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args VulnerabilityProtectionProfileArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var vulnerabilityProtectionProfileResource = new Scm.VulnerabilityProtectionProfile("vulnerabilityProtectionProfileResource", new()
{
Description = "string",
Device = "string",
Folder = "string",
Name = "string",
Rules = new[]
{
new Scm.Inputs.VulnerabilityProtectionProfileRuleArgs
{
Action = new Scm.Inputs.VulnerabilityProtectionProfileRuleActionArgs
{
Alert = null,
Allow = null,
BlockIp = new Scm.Inputs.VulnerabilityProtectionProfileRuleActionBlockIpArgs
{
Duration = 0,
TrackBy = "string",
},
Default = null,
Drop = null,
ResetBoth = null,
ResetClient = null,
ResetServer = null,
},
Category = "string",
Cves = new[]
{
"string",
},
Host = "string",
Name = "string",
PacketCapture = "string",
Severities = new[]
{
"string",
},
ThreatName = "string",
VendorIds = new[]
{
"string",
},
},
},
Snippet = "string",
ThreatExceptions = new[]
{
new Scm.Inputs.VulnerabilityProtectionProfileThreatExceptionArgs
{
Action = new Scm.Inputs.VulnerabilityProtectionProfileThreatExceptionActionArgs
{
Alert = null,
Allow = null,
BlockIp = new Scm.Inputs.VulnerabilityProtectionProfileThreatExceptionActionBlockIpArgs
{
Duration = 0,
TrackBy = "string",
},
Default = null,
Drop = null,
ResetBoth = null,
ResetClient = null,
ResetServer = null,
},
ExemptIps = new[]
{
new Scm.Inputs.VulnerabilityProtectionProfileThreatExceptionExemptIpArgs
{
Name = "string",
},
},
Name = "string",
Notes = "string",
PacketCapture = "string",
TimeAttribute = new Scm.Inputs.VulnerabilityProtectionProfileThreatExceptionTimeAttributeArgs
{
Interval = 0,
Threshold = 0,
TrackBy = "string",
},
},
},
});
example, err := scm.NewVulnerabilityProtectionProfile(ctx, "vulnerabilityProtectionProfileResource", &scm.VulnerabilityProtectionProfileArgs{
Description: pulumi.String("string"),
Device: pulumi.String("string"),
Folder: pulumi.String("string"),
Name: pulumi.String("string"),
Rules: scm.VulnerabilityProtectionProfileRuleArray{
&scm.VulnerabilityProtectionProfileRuleArgs{
Action: &scm.VulnerabilityProtectionProfileRuleActionArgs{
Alert: &scm.VulnerabilityProtectionProfileRuleActionAlertArgs{},
Allow: &scm.VulnerabilityProtectionProfileRuleActionAllowArgs{},
BlockIp: &scm.VulnerabilityProtectionProfileRuleActionBlockIpArgs{
Duration: pulumi.Int(0),
TrackBy: pulumi.String("string"),
},
Default: &scm.VulnerabilityProtectionProfileRuleActionDefaultArgs{},
Drop: &scm.VulnerabilityProtectionProfileRuleActionDropArgs{},
ResetBoth: &scm.VulnerabilityProtectionProfileRuleActionResetBothArgs{},
ResetClient: &scm.VulnerabilityProtectionProfileRuleActionResetClientArgs{},
ResetServer: &scm.VulnerabilityProtectionProfileRuleActionResetServerArgs{},
},
Category: pulumi.String("string"),
Cves: pulumi.StringArray{
pulumi.String("string"),
},
Host: pulumi.String("string"),
Name: pulumi.String("string"),
PacketCapture: pulumi.String("string"),
Severities: pulumi.StringArray{
pulumi.String("string"),
},
ThreatName: pulumi.String("string"),
VendorIds: pulumi.StringArray{
pulumi.String("string"),
},
},
},
Snippet: pulumi.String("string"),
ThreatExceptions: scm.VulnerabilityProtectionProfileThreatExceptionArray{
&scm.VulnerabilityProtectionProfileThreatExceptionArgs{
Action: &scm.VulnerabilityProtectionProfileThreatExceptionActionArgs{
Alert: &scm.VulnerabilityProtectionProfileThreatExceptionActionAlertArgs{},
Allow: &scm.VulnerabilityProtectionProfileThreatExceptionActionAllowArgs{},
BlockIp: &scm.VulnerabilityProtectionProfileThreatExceptionActionBlockIpArgs{
Duration: pulumi.Int(0),
TrackBy: pulumi.String("string"),
},
Default: &scm.VulnerabilityProtectionProfileThreatExceptionActionDefaultArgs{},
Drop: &scm.VulnerabilityProtectionProfileThreatExceptionActionDropArgs{},
ResetBoth: &scm.VulnerabilityProtectionProfileThreatExceptionActionResetBothArgs{},
ResetClient: &scm.VulnerabilityProtectionProfileThreatExceptionActionResetClientArgs{},
ResetServer: &scm.VulnerabilityProtectionProfileThreatExceptionActionResetServerArgs{},
},
ExemptIps: scm.VulnerabilityProtectionProfileThreatExceptionExemptIpArray{
&scm.VulnerabilityProtectionProfileThreatExceptionExemptIpArgs{
Name: pulumi.String("string"),
},
},
Name: pulumi.String("string"),
Notes: pulumi.String("string"),
PacketCapture: pulumi.String("string"),
TimeAttribute: &scm.VulnerabilityProtectionProfileThreatExceptionTimeAttributeArgs{
Interval: pulumi.Int(0),
Threshold: pulumi.Int(0),
TrackBy: pulumi.String("string"),
},
},
},
})
var vulnerabilityProtectionProfileResource = new VulnerabilityProtectionProfile("vulnerabilityProtectionProfileResource", VulnerabilityProtectionProfileArgs.builder()
.description("string")
.device("string")
.folder("string")
.name("string")
.rules(VulnerabilityProtectionProfileRuleArgs.builder()
.action(VulnerabilityProtectionProfileRuleActionArgs.builder()
.alert(VulnerabilityProtectionProfileRuleActionAlertArgs.builder()
.build())
.allow(VulnerabilityProtectionProfileRuleActionAllowArgs.builder()
.build())
.blockIp(VulnerabilityProtectionProfileRuleActionBlockIpArgs.builder()
.duration(0)
.trackBy("string")
.build())
.default_(VulnerabilityProtectionProfileRuleActionDefaultArgs.builder()
.build())
.drop(VulnerabilityProtectionProfileRuleActionDropArgs.builder()
.build())
.resetBoth(VulnerabilityProtectionProfileRuleActionResetBothArgs.builder()
.build())
.resetClient(VulnerabilityProtectionProfileRuleActionResetClientArgs.builder()
.build())
.resetServer(VulnerabilityProtectionProfileRuleActionResetServerArgs.builder()
.build())
.build())
.category("string")
.cves("string")
.host("string")
.name("string")
.packetCapture("string")
.severities("string")
.threatName("string")
.vendorIds("string")
.build())
.snippet("string")
.threatExceptions(VulnerabilityProtectionProfileThreatExceptionArgs.builder()
.action(VulnerabilityProtectionProfileThreatExceptionActionArgs.builder()
.alert(VulnerabilityProtectionProfileThreatExceptionActionAlertArgs.builder()
.build())
.allow(VulnerabilityProtectionProfileThreatExceptionActionAllowArgs.builder()
.build())
.blockIp(VulnerabilityProtectionProfileThreatExceptionActionBlockIpArgs.builder()
.duration(0)
.trackBy("string")
.build())
.default_(VulnerabilityProtectionProfileThreatExceptionActionDefaultArgs.builder()
.build())
.drop(VulnerabilityProtectionProfileThreatExceptionActionDropArgs.builder()
.build())
.resetBoth(VulnerabilityProtectionProfileThreatExceptionActionResetBothArgs.builder()
.build())
.resetClient(VulnerabilityProtectionProfileThreatExceptionActionResetClientArgs.builder()
.build())
.resetServer(VulnerabilityProtectionProfileThreatExceptionActionResetServerArgs.builder()
.build())
.build())
.exemptIps(VulnerabilityProtectionProfileThreatExceptionExemptIpArgs.builder()
.name("string")
.build())
.name("string")
.notes("string")
.packetCapture("string")
.timeAttribute(VulnerabilityProtectionProfileThreatExceptionTimeAttributeArgs.builder()
.interval(0)
.threshold(0)
.trackBy("string")
.build())
.build())
.build());
vulnerability_protection_profile_resource = scm.VulnerabilityProtectionProfile("vulnerabilityProtectionProfileResource",
description="string",
device="string",
folder="string",
name="string",
rules=[{
"action": {
"alert": {},
"allow": {},
"block_ip": {
"duration": 0,
"track_by": "string",
},
"default": {},
"drop": {},
"reset_both": {},
"reset_client": {},
"reset_server": {},
},
"category": "string",
"cves": ["string"],
"host": "string",
"name": "string",
"packet_capture": "string",
"severities": ["string"],
"threat_name": "string",
"vendor_ids": ["string"],
}],
snippet="string",
threat_exceptions=[{
"action": {
"alert": {},
"allow": {},
"block_ip": {
"duration": 0,
"track_by": "string",
},
"default": {},
"drop": {},
"reset_both": {},
"reset_client": {},
"reset_server": {},
},
"exempt_ips": [{
"name": "string",
}],
"name": "string",
"notes": "string",
"packet_capture": "string",
"time_attribute": {
"interval": 0,
"threshold": 0,
"track_by": "string",
},
}])
const vulnerabilityProtectionProfileResource = new scm.VulnerabilityProtectionProfile("vulnerabilityProtectionProfileResource", {
description: "string",
device: "string",
folder: "string",
name: "string",
rules: [{
action: {
alert: {},
allow: {},
blockIp: {
duration: 0,
trackBy: "string",
},
"default": {},
drop: {},
resetBoth: {},
resetClient: {},
resetServer: {},
},
category: "string",
cves: ["string"],
host: "string",
name: "string",
packetCapture: "string",
severities: ["string"],
threatName: "string",
vendorIds: ["string"],
}],
snippet: "string",
threatExceptions: [{
action: {
alert: {},
allow: {},
blockIp: {
duration: 0,
trackBy: "string",
},
"default": {},
drop: {},
resetBoth: {},
resetClient: {},
resetServer: {},
},
exemptIps: [{
name: "string",
}],
name: "string",
notes: "string",
packetCapture: "string",
timeAttribute: {
interval: 0,
threshold: 0,
trackBy: "string",
},
}],
});
type: scm:VulnerabilityProtectionProfile
properties:
description: string
device: string
folder: string
name: string
rules:
- action:
alert: {}
allow: {}
blockIp:
duration: 0
trackBy: string
default: {}
drop: {}
resetBoth: {}
resetClient: {}
resetServer: {}
category: string
cves:
- string
host: string
name: string
packetCapture: string
severities:
- string
threatName: string
vendorIds:
- string
snippet: string
threatExceptions:
- action:
alert: {}
allow: {}
blockIp:
duration: 0
trackBy: string
default: {}
drop: {}
resetBoth: {}
resetClient: {}
resetServer: {}
exemptIps:
- name: string
name: string
notes: string
packetCapture: string
timeAttribute:
interval: 0
threshold: 0
trackBy: string
VulnerabilityProtectionProfile Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The VulnerabilityProtectionProfile resource accepts the following input properties:
- Description string
- Description
- Device string
- The device in which the resource is defined
- Folder string
- The folder in which the resource is defined
- Name string
- Name
- Rules
List<Vulnerability
Protection Profile Rule> - Rules
- Snippet string
- The snippet in which the resource is defined
- Threat
Exceptions List<VulnerabilityProtection Profile Threat Exception> - Threat exception
- Description string
- Description
- Device string
- The device in which the resource is defined
- Folder string
- The folder in which the resource is defined
- Name string
- Name
- Rules
[]Vulnerability
Protection Profile Rule Args - Rules
- Snippet string
- The snippet in which the resource is defined
- Threat
Exceptions []VulnerabilityProtection Profile Threat Exception Args - Threat exception
- description String
- Description
- device String
- The device in which the resource is defined
- folder String
- The folder in which the resource is defined
- name String
- Name
- rules
List<Vulnerability
Protection Profile Rule> - Rules
- snippet String
- The snippet in which the resource is defined
- threat
Exceptions List<VulnerabilityProtection Profile Threat Exception> - Threat exception
- description string
- Description
- device string
- The device in which the resource is defined
- folder string
- The folder in which the resource is defined
- name string
- Name
- rules
Vulnerability
Protection Profile Rule[] - Rules
- snippet string
- The snippet in which the resource is defined
- threat
Exceptions VulnerabilityProtection Profile Threat Exception[] - Threat exception
- description str
- Description
- device str
- The device in which the resource is defined
- folder str
- The folder in which the resource is defined
- name str
- Name
- rules
Sequence[Vulnerability
Protection Profile Rule Args] - Rules
- snippet str
- The snippet in which the resource is defined
- threat_
exceptions Sequence[VulnerabilityProtection Profile Threat Exception Args] - Threat exception
- description String
- Description
- device String
- The device in which the resource is defined
- folder String
- The folder in which the resource is defined
- name String
- Name
- rules List<Property Map>
- Rules
- snippet String
- The snippet in which the resource is defined
- threat
Exceptions List<Property Map> - Threat exception
Outputs
All input properties are implicitly available as output properties. Additionally, the VulnerabilityProtectionProfile resource produces the following output properties:
Look up Existing VulnerabilityProtectionProfile Resource
Get an existing VulnerabilityProtectionProfile resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: VulnerabilityProtectionProfileState, opts?: CustomResourceOptions): VulnerabilityProtectionProfile@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
description: Optional[str] = None,
device: Optional[str] = None,
folder: Optional[str] = None,
name: Optional[str] = None,
rules: Optional[Sequence[VulnerabilityProtectionProfileRuleArgs]] = None,
snippet: Optional[str] = None,
tfid: Optional[str] = None,
threat_exceptions: Optional[Sequence[VulnerabilityProtectionProfileThreatExceptionArgs]] = None) -> VulnerabilityProtectionProfilefunc GetVulnerabilityProtectionProfile(ctx *Context, name string, id IDInput, state *VulnerabilityProtectionProfileState, opts ...ResourceOption) (*VulnerabilityProtectionProfile, error)public static VulnerabilityProtectionProfile Get(string name, Input<string> id, VulnerabilityProtectionProfileState? state, CustomResourceOptions? opts = null)public static VulnerabilityProtectionProfile get(String name, Output<String> id, VulnerabilityProtectionProfileState state, CustomResourceOptions options)resources: _: type: scm:VulnerabilityProtectionProfile get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Description string
- Description
- Device string
- The device in which the resource is defined
- Folder string
- The folder in which the resource is defined
- Name string
- Name
- Rules
List<Vulnerability
Protection Profile Rule> - Rules
- Snippet string
- The snippet in which the resource is defined
- Tfid string
- Threat
Exceptions List<VulnerabilityProtection Profile Threat Exception> - Threat exception
- Description string
- Description
- Device string
- The device in which the resource is defined
- Folder string
- The folder in which the resource is defined
- Name string
- Name
- Rules
[]Vulnerability
Protection Profile Rule Args - Rules
- Snippet string
- The snippet in which the resource is defined
- Tfid string
- Threat
Exceptions []VulnerabilityProtection Profile Threat Exception Args - Threat exception
- description String
- Description
- device String
- The device in which the resource is defined
- folder String
- The folder in which the resource is defined
- name String
- Name
- rules
List<Vulnerability
Protection Profile Rule> - Rules
- snippet String
- The snippet in which the resource is defined
- tfid String
- threat
Exceptions List<VulnerabilityProtection Profile Threat Exception> - Threat exception
- description string
- Description
- device string
- The device in which the resource is defined
- folder string
- The folder in which the resource is defined
- name string
- Name
- rules
Vulnerability
Protection Profile Rule[] - Rules
- snippet string
- The snippet in which the resource is defined
- tfid string
- threat
Exceptions VulnerabilityProtection Profile Threat Exception[] - Threat exception
- description str
- Description
- device str
- The device in which the resource is defined
- folder str
- The folder in which the resource is defined
- name str
- Name
- rules
Sequence[Vulnerability
Protection Profile Rule Args] - Rules
- snippet str
- The snippet in which the resource is defined
- tfid str
- threat_
exceptions Sequence[VulnerabilityProtection Profile Threat Exception Args] - Threat exception
- description String
- Description
- device String
- The device in which the resource is defined
- folder String
- The folder in which the resource is defined
- name String
- Name
- rules List<Property Map>
- Rules
- snippet String
- The snippet in which the resource is defined
- tfid String
- threat
Exceptions List<Property Map> - Threat exception
Supporting Types
VulnerabilityProtectionProfileRule, VulnerabilityProtectionProfileRuleArgs
- Action
Vulnerability
Protection Profile Rule Action - vulnerability profiles threat exception default action
- Category string
- Category
- Cves List<string>
- Cve
- Host string
- Host
- Name string
- Name
- Packet
Capture string - Packet capture
- Severities List<string>
- Severity
- Threat
Name string - Threat name
- Vendor
Ids List<string> - Vendor id
- Action
Vulnerability
Protection Profile Rule Action - vulnerability profiles threat exception default action
- Category string
- Category
- Cves []string
- Cve
- Host string
- Host
- Name string
- Name
- Packet
Capture string - Packet capture
- Severities []string
- Severity
- Threat
Name string - Threat name
- Vendor
Ids []string - Vendor id
- action
Vulnerability
Protection Profile Rule Action - vulnerability profiles threat exception default action
- category String
- Category
- cves List<String>
- Cve
- host String
- Host
- name String
- Name
- packet
Capture String - Packet capture
- severities List<String>
- Severity
- threat
Name String - Threat name
- vendor
Ids List<String> - Vendor id
- action
Vulnerability
Protection Profile Rule Action - vulnerability profiles threat exception default action
- category string
- Category
- cves string[]
- Cve
- host string
- Host
- name string
- Name
- packet
Capture string - Packet capture
- severities string[]
- Severity
- threat
Name string - Threat name
- vendor
Ids string[] - Vendor id
- action
Vulnerability
Protection Profile Rule Action - vulnerability profiles threat exception default action
- category str
- Category
- cves Sequence[str]
- Cve
- host str
- Host
- name str
- Name
- packet_
capture str - Packet capture
- severities Sequence[str]
- Severity
- threat_
name str - Threat name
- vendor_
ids Sequence[str] - Vendor id
- action Property Map
- vulnerability profiles threat exception default action
- category String
- Category
- cves List<String>
- Cve
- host String
- Host
- name String
- Name
- packet
Capture String - Packet capture
- severities List<String>
- Severity
- threat
Name String - Threat name
- vendor
Ids List<String> - Vendor id
VulnerabilityProtectionProfileRuleAction, VulnerabilityProtectionProfileRuleActionArgs
- Alert
Vulnerability
Protection Profile Rule Action Alert - Alert
- Allow
Vulnerability
Protection Profile Rule Action Allow - Allow
- Block
Ip VulnerabilityProtection Profile Rule Action Block Ip - vulnerability protection block ip
- Default
Vulnerability
Protection Profile Rule Action Default - Default
- Drop
Vulnerability
Protection Profile Rule Action Drop - Drop
- Reset
Both VulnerabilityProtection Profile Rule Action Reset Both - Reset both
- Reset
Client VulnerabilityProtection Profile Rule Action Reset Client - Reset client
- Reset
Server VulnerabilityProtection Profile Rule Action Reset Server - Reset server
- Alert
Vulnerability
Protection Profile Rule Action Alert - Alert
- Allow
Vulnerability
Protection Profile Rule Action Allow - Allow
- Block
Ip VulnerabilityProtection Profile Rule Action Block Ip - vulnerability protection block ip
- Default
Vulnerability
Protection Profile Rule Action Default - Default
- Drop
Vulnerability
Protection Profile Rule Action Drop - Drop
- Reset
Both VulnerabilityProtection Profile Rule Action Reset Both - Reset both
- Reset
Client VulnerabilityProtection Profile Rule Action Reset Client - Reset client
- Reset
Server VulnerabilityProtection Profile Rule Action Reset Server - Reset server
- alert
Vulnerability
Protection Profile Rule Action Alert - Alert
- allow
Vulnerability
Protection Profile Rule Action Allow - Allow
- block
Ip VulnerabilityProtection Profile Rule Action Block Ip - vulnerability protection block ip
- default_
Vulnerability
Protection Profile Rule Action Default - Default
- drop
Vulnerability
Protection Profile Rule Action Drop - Drop
- reset
Both VulnerabilityProtection Profile Rule Action Reset Both - Reset both
- reset
Client VulnerabilityProtection Profile Rule Action Reset Client - Reset client
- reset
Server VulnerabilityProtection Profile Rule Action Reset Server - Reset server
- alert
Vulnerability
Protection Profile Rule Action Alert - Alert
- allow
Vulnerability
Protection Profile Rule Action Allow - Allow
- block
Ip VulnerabilityProtection Profile Rule Action Block Ip - vulnerability protection block ip
- default
Vulnerability
Protection Profile Rule Action Default - Default
- drop
Vulnerability
Protection Profile Rule Action Drop - Drop
- reset
Both VulnerabilityProtection Profile Rule Action Reset Both - Reset both
- reset
Client VulnerabilityProtection Profile Rule Action Reset Client - Reset client
- reset
Server VulnerabilityProtection Profile Rule Action Reset Server - Reset server
- alert
Vulnerability
Protection Profile Rule Action Alert - Alert
- allow
Vulnerability
Protection Profile Rule Action Allow - Allow
- block_
ip VulnerabilityProtection Profile Rule Action Block Ip - vulnerability protection block ip
- default
Vulnerability
Protection Profile Rule Action Default - Default
- drop
Vulnerability
Protection Profile Rule Action Drop - Drop
- reset_
both VulnerabilityProtection Profile Rule Action Reset Both - Reset both
- reset_
client VulnerabilityProtection Profile Rule Action Reset Client - Reset client
- reset_
server VulnerabilityProtection Profile Rule Action Reset Server - Reset server
- alert Property Map
- Alert
- allow Property Map
- Allow
- block
Ip Property Map - vulnerability protection block ip
- default Property Map
- Default
- drop Property Map
- Drop
- reset
Both Property Map - Reset both
- reset
Client Property Map - Reset client
- reset
Server Property Map - Reset server
VulnerabilityProtectionProfileRuleActionBlockIp, VulnerabilityProtectionProfileRuleActionBlockIpArgs
VulnerabilityProtectionProfileThreatException, VulnerabilityProtectionProfileThreatExceptionArgs
- Action
Vulnerability
Protection Profile Threat Exception Action - vulnerability threat exception default action
- Exempt
Ips List<VulnerabilityProtection Profile Threat Exception Exempt Ip> - Exempt ip
- Name string
- Name
- Notes string
- Notes
- Packet
Capture string - Packet capture
- Time
Attribute VulnerabilityProtection Profile Threat Exception Time Attribute - vulnerability time attribute
- Action
Vulnerability
Protection Profile Threat Exception Action - vulnerability threat exception default action
- Exempt
Ips []VulnerabilityProtection Profile Threat Exception Exempt Ip - Exempt ip
- Name string
- Name
- Notes string
- Notes
- Packet
Capture string - Packet capture
- Time
Attribute VulnerabilityProtection Profile Threat Exception Time Attribute - vulnerability time attribute
- action
Vulnerability
Protection Profile Threat Exception Action - vulnerability threat exception default action
- exempt
Ips List<VulnerabilityProtection Profile Threat Exception Exempt Ip> - Exempt ip
- name String
- Name
- notes String
- Notes
- packet
Capture String - Packet capture
- time
Attribute VulnerabilityProtection Profile Threat Exception Time Attribute - vulnerability time attribute
- action
Vulnerability
Protection Profile Threat Exception Action - vulnerability threat exception default action
- exempt
Ips VulnerabilityProtection Profile Threat Exception Exempt Ip[] - Exempt ip
- name string
- Name
- notes string
- Notes
- packet
Capture string - Packet capture
- time
Attribute VulnerabilityProtection Profile Threat Exception Time Attribute - vulnerability time attribute
- action
Vulnerability
Protection Profile Threat Exception Action - vulnerability threat exception default action
- exempt_
ips Sequence[VulnerabilityProtection Profile Threat Exception Exempt Ip] - Exempt ip
- name str
- Name
- notes str
- Notes
- packet_
capture str - Packet capture
- time_
attribute VulnerabilityProtection Profile Threat Exception Time Attribute - vulnerability time attribute
- action Property Map
- vulnerability threat exception default action
- exempt
Ips List<Property Map> - Exempt ip
- name String
- Name
- notes String
- Notes
- packet
Capture String - Packet capture
- time
Attribute Property Map - vulnerability time attribute
VulnerabilityProtectionProfileThreatExceptionAction, VulnerabilityProtectionProfileThreatExceptionActionArgs
- Alert
Vulnerability
Protection Profile Threat Exception Action Alert - Alert
- Allow
Vulnerability
Protection Profile Threat Exception Action Allow - Allow
- Block
Ip VulnerabilityProtection Profile Threat Exception Action Block Ip - vulnerability protection threat exception block ip
- Default
Vulnerability
Protection Profile Threat Exception Action Default - Default
- Drop
Vulnerability
Protection Profile Threat Exception Action Drop - Drop
- Reset
Both VulnerabilityProtection Profile Threat Exception Action Reset Both - Reset both
- Reset
Client VulnerabilityProtection Profile Threat Exception Action Reset Client - Reset client
- Reset
Server VulnerabilityProtection Profile Threat Exception Action Reset Server - Reset server
- Alert
Vulnerability
Protection Profile Threat Exception Action Alert - Alert
- Allow
Vulnerability
Protection Profile Threat Exception Action Allow - Allow
- Block
Ip VulnerabilityProtection Profile Threat Exception Action Block Ip - vulnerability protection threat exception block ip
- Default
Vulnerability
Protection Profile Threat Exception Action Default - Default
- Drop
Vulnerability
Protection Profile Threat Exception Action Drop - Drop
- Reset
Both VulnerabilityProtection Profile Threat Exception Action Reset Both - Reset both
- Reset
Client VulnerabilityProtection Profile Threat Exception Action Reset Client - Reset client
- Reset
Server VulnerabilityProtection Profile Threat Exception Action Reset Server - Reset server
- alert
Vulnerability
Protection Profile Threat Exception Action Alert - Alert
- allow
Vulnerability
Protection Profile Threat Exception Action Allow - Allow
- block
Ip VulnerabilityProtection Profile Threat Exception Action Block Ip - vulnerability protection threat exception block ip
- default_
Vulnerability
Protection Profile Threat Exception Action Default - Default
- drop
Vulnerability
Protection Profile Threat Exception Action Drop - Drop
- reset
Both VulnerabilityProtection Profile Threat Exception Action Reset Both - Reset both
- reset
Client VulnerabilityProtection Profile Threat Exception Action Reset Client - Reset client
- reset
Server VulnerabilityProtection Profile Threat Exception Action Reset Server - Reset server
- alert
Vulnerability
Protection Profile Threat Exception Action Alert - Alert
- allow
Vulnerability
Protection Profile Threat Exception Action Allow - Allow
- block
Ip VulnerabilityProtection Profile Threat Exception Action Block Ip - vulnerability protection threat exception block ip
- default
Vulnerability
Protection Profile Threat Exception Action Default - Default
- drop
Vulnerability
Protection Profile Threat Exception Action Drop - Drop
- reset
Both VulnerabilityProtection Profile Threat Exception Action Reset Both - Reset both
- reset
Client VulnerabilityProtection Profile Threat Exception Action Reset Client - Reset client
- reset
Server VulnerabilityProtection Profile Threat Exception Action Reset Server - Reset server
- alert
Vulnerability
Protection Profile Threat Exception Action Alert - Alert
- allow
Vulnerability
Protection Profile Threat Exception Action Allow - Allow
- block_
ip VulnerabilityProtection Profile Threat Exception Action Block Ip - vulnerability protection threat exception block ip
- default
Vulnerability
Protection Profile Threat Exception Action Default - Default
- drop
Vulnerability
Protection Profile Threat Exception Action Drop - Drop
- reset_
both VulnerabilityProtection Profile Threat Exception Action Reset Both - Reset both
- reset_
client VulnerabilityProtection Profile Threat Exception Action Reset Client - Reset client
- reset_
server VulnerabilityProtection Profile Threat Exception Action Reset Server - Reset server
- alert Property Map
- Alert
- allow Property Map
- Allow
- block
Ip Property Map - vulnerability protection threat exception block ip
- default Property Map
- Default
- drop Property Map
- Drop
- reset
Both Property Map - Reset both
- reset
Client Property Map - Reset client
- reset
Server Property Map - Reset server
VulnerabilityProtectionProfileThreatExceptionActionBlockIp, VulnerabilityProtectionProfileThreatExceptionActionBlockIpArgs
VulnerabilityProtectionProfileThreatExceptionExemptIp, VulnerabilityProtectionProfileThreatExceptionExemptIpArgs
- Name string
- Name
- Name string
- Name
- name String
- Name
- name string
- Name
- name str
- Name
- name String
- Name
VulnerabilityProtectionProfileThreatExceptionTimeAttribute, VulnerabilityProtectionProfileThreatExceptionTimeAttributeArgs
Package Details
- Repository
- scm pulumi/pulumi-scm
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
scmTerraform Provider.
Strata Cloud Manager v0.4.3 published on Saturday, Nov 8, 2025 by Pulumi
