Cisco Catalyst SD-WAN v0.3.2, Jul 16 25

Cisco Catalyst SD-WAN v0.3.2 published on Wednesday, Jul 16, 2025 by Pulumi

sdwan.getSecurityPolicy

Explore with Pulumi AI

Cisco Catalyst SD-WAN v0.3.2 published on Wednesday, Jul 16, 2025 by Pulumi

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as sdwan from "@pulumi/sdwan";

const example = sdwan.getSecurityPolicy({
    id: "f6b2c44c-693c-4763-b010-895aa3d236bd",
});

import pulumi
import pulumi_sdwan as sdwan

example = sdwan.get_security_policy(id="f6b2c44c-693c-4763-b010-895aa3d236bd")

package main

import (
	"github.com/pulumi/pulumi-sdwan/sdk/go/sdwan"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := sdwan.LookupSecurityPolicy(ctx, &sdwan.LookupSecurityPolicyArgs{
			Id: "f6b2c44c-693c-4763-b010-895aa3d236bd",
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Sdwan = Pulumi.Sdwan;

return await Deployment.RunAsync(() => 
{
    var example = Sdwan.GetSecurityPolicy.Invoke(new()
    {
        Id = "f6b2c44c-693c-4763-b010-895aa3d236bd",
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.sdwan.SdwanFunctions;
import com.pulumi.sdwan.inputs.GetSecurityPolicyArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var example = SdwanFunctions.getSecurityPolicy(GetSecurityPolicyArgs.builder()
            .id("f6b2c44c-693c-4763-b010-895aa3d236bd")
            .build());

    }
}

variables:
  example:
    fn::invoke:
      function: sdwan:getSecurityPolicy
      arguments:
        id: f6b2c44c-693c-4763-b010-895aa3d236bd

Using getSecurityPolicy

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getSecurityPolicy(args: GetSecurityPolicyArgs, opts?: InvokeOptions): Promise<GetSecurityPolicyResult>
function getSecurityPolicyOutput(args: GetSecurityPolicyOutputArgs, opts?: InvokeOptions): Output<GetSecurityPolicyResult>

def get_security_policy(id: Optional[str] = None,
                        opts: Optional[InvokeOptions] = None) -> GetSecurityPolicyResult
def get_security_policy_output(id: Optional[pulumi.Input[str]] = None,
                        opts: Optional[InvokeOptions] = None) -> Output[GetSecurityPolicyResult]

func LookupSecurityPolicy(ctx *Context, args *LookupSecurityPolicyArgs, opts ...InvokeOption) (*LookupSecurityPolicyResult, error)
func LookupSecurityPolicyOutput(ctx *Context, args *LookupSecurityPolicyOutputArgs, opts ...InvokeOption) LookupSecurityPolicyResultOutput

> Note: This function is named LookupSecurityPolicy in the Go SDK.

public static class GetSecurityPolicy 
{
    public static Task<GetSecurityPolicyResult> InvokeAsync(GetSecurityPolicyArgs args, InvokeOptions? opts = null)
    public static Output<GetSecurityPolicyResult> Invoke(GetSecurityPolicyInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetSecurityPolicyResult> getSecurityPolicy(GetSecurityPolicyArgs args, InvokeOptions options)
public static Output<GetSecurityPolicyResult> getSecurityPolicy(GetSecurityPolicyArgs args, InvokeOptions options)

fn::invoke:
  function: sdwan:index/getSecurityPolicy:getSecurityPolicy
  arguments:
    # arguments dictionary

The following arguments are supported:

Id string: The id of the object

Id string: The id of the object

id String: The id of the object

id string: The id of the object

id str: The id of the object

id String: The id of the object

getSecurityPolicy Result

The following output properties are available:

AuditTrail string: Audit trail
Definitions List<GetSecurityPolicyDefinition>: List of policy definitions
Description string: The description of the security policy
DirectInternetApplications string: Bypass firewall policy and allow all Internet traffic to/from VPN 0
FailureMode string: Failure mode
HighSpeedLoggingServerIp string: High Speed Logging Server IP
HighSpeedLoggingServerPort string: High Speed Logging Port
HighSpeedLoggingServerSourceInterface string: High Speed Logging Source Interface
HighSpeedLoggingVpn string: High Speed Logging VPN
Id string: The id of the object
ImcpUnreachableAllow bool: ICMP Unreachable Allow
Loggings List<GetSecurityPolicyLogging>
MatchStatisticsPerFilter string: Match Statistics per-filter
MaxIncompleteIcmpLimit int: Max Incomplete ICMP Limit
MaxIncompleteTcpLimit int: Max Incomplete TCP Limit
MaxIncompleteUdpLimit int: Max Incomplete UDP Limit
Mode string: The policy mode
Name string: The name of the security policy
SessionReclassifyAllow bool: Session Reclassify Allow
TcpSynFloodLimit string: TCP SYN Flood Limit, value from 1 to 4294967295
UnifiedLogging bool: Unified Logging
UseCase string: The use case of the security policy
Version int: The version of the object

AuditTrail string: Audit trail
Definitions []GetSecurityPolicyDefinition: List of policy definitions
Description string: The description of the security policy
DirectInternetApplications string: Bypass firewall policy and allow all Internet traffic to/from VPN 0
FailureMode string: Failure mode
HighSpeedLoggingServerIp string: High Speed Logging Server IP
HighSpeedLoggingServerPort string: High Speed Logging Port
HighSpeedLoggingServerSourceInterface string: High Speed Logging Source Interface
HighSpeedLoggingVpn string: High Speed Logging VPN
Id string: The id of the object
ImcpUnreachableAllow bool: ICMP Unreachable Allow
Loggings []GetSecurityPolicyLogging
MatchStatisticsPerFilter string: Match Statistics per-filter
MaxIncompleteIcmpLimit int: Max Incomplete ICMP Limit
MaxIncompleteTcpLimit int: Max Incomplete TCP Limit
MaxIncompleteUdpLimit int: Max Incomplete UDP Limit
Mode string: The policy mode
Name string: The name of the security policy
SessionReclassifyAllow bool: Session Reclassify Allow
TcpSynFloodLimit string: TCP SYN Flood Limit, value from 1 to 4294967295
UnifiedLogging bool: Unified Logging
UseCase string: The use case of the security policy
Version int: The version of the object

auditTrail String: Audit trail
definitions List<GetSecurityPolicyDefinition>: List of policy definitions
description String: The description of the security policy
directInternetApplications String: Bypass firewall policy and allow all Internet traffic to/from VPN 0
failureMode String: Failure mode
highSpeedLoggingServerIp String: High Speed Logging Server IP
highSpeedLoggingServerPort String: High Speed Logging Port
highSpeedLoggingServerSourceInterface String: High Speed Logging Source Interface
highSpeedLoggingVpn String: High Speed Logging VPN
id String: The id of the object
imcpUnreachableAllow Boolean: ICMP Unreachable Allow
loggings List<GetSecurityPolicyLogging>
matchStatisticsPerFilter String: Match Statistics per-filter
maxIncompleteIcmpLimit Integer: Max Incomplete ICMP Limit
maxIncompleteTcpLimit Integer: Max Incomplete TCP Limit
maxIncompleteUdpLimit Integer: Max Incomplete UDP Limit
mode String: The policy mode
name String: The name of the security policy
sessionReclassifyAllow Boolean: Session Reclassify Allow
tcpSynFloodLimit String: TCP SYN Flood Limit, value from 1 to 4294967295
unifiedLogging Boolean: Unified Logging
useCase String: The use case of the security policy
version Integer: The version of the object

auditTrail string: Audit trail
definitions GetSecurityPolicyDefinition[]: List of policy definitions
description string: The description of the security policy
directInternetApplications string: Bypass firewall policy and allow all Internet traffic to/from VPN 0
failureMode string: Failure mode
highSpeedLoggingServerIp string: High Speed Logging Server IP
highSpeedLoggingServerPort string: High Speed Logging Port
highSpeedLoggingServerSourceInterface string: High Speed Logging Source Interface
highSpeedLoggingVpn string: High Speed Logging VPN
id string: The id of the object
imcpUnreachableAllow boolean: ICMP Unreachable Allow
loggings GetSecurityPolicyLogging[]
matchStatisticsPerFilter string: Match Statistics per-filter
maxIncompleteIcmpLimit number: Max Incomplete ICMP Limit
maxIncompleteTcpLimit number: Max Incomplete TCP Limit
maxIncompleteUdpLimit number: Max Incomplete UDP Limit
mode string: The policy mode
name string: The name of the security policy
sessionReclassifyAllow boolean: Session Reclassify Allow
tcpSynFloodLimit string: TCP SYN Flood Limit, value from 1 to 4294967295
unifiedLogging boolean: Unified Logging
useCase string: The use case of the security policy
version number: The version of the object

audit_trail str: Audit trail
definitions Sequence[GetSecurityPolicyDefinition]: List of policy definitions
description str: The description of the security policy
direct_internet_applications str: Bypass firewall policy and allow all Internet traffic to/from VPN 0
failure_mode str: Failure mode
high_speed_logging_server_ip str: High Speed Logging Server IP
high_speed_logging_server_port str: High Speed Logging Port
high_speed_logging_server_source_interface str: High Speed Logging Source Interface
high_speed_logging_vpn str: High Speed Logging VPN
id str: The id of the object
imcp_unreachable_allow bool: ICMP Unreachable Allow
loggings Sequence[GetSecurityPolicyLogging]
match_statistics_per_filter str: Match Statistics per-filter
max_incomplete_icmp_limit int: Max Incomplete ICMP Limit
max_incomplete_tcp_limit int: Max Incomplete TCP Limit
max_incomplete_udp_limit int: Max Incomplete UDP Limit
mode str: The policy mode
name str: The name of the security policy
session_reclassify_allow bool: Session Reclassify Allow
tcp_syn_flood_limit str: TCP SYN Flood Limit, value from 1 to 4294967295
unified_logging bool: Unified Logging
use_case str: The use case of the security policy
version int: The version of the object

auditTrail String: Audit trail
definitions List<Property Map>: List of policy definitions
description String: The description of the security policy
directInternetApplications String: Bypass firewall policy and allow all Internet traffic to/from VPN 0
failureMode String: Failure mode
highSpeedLoggingServerIp String: High Speed Logging Server IP
highSpeedLoggingServerPort String: High Speed Logging Port
highSpeedLoggingServerSourceInterface String: High Speed Logging Source Interface
highSpeedLoggingVpn String: High Speed Logging VPN
id String: The id of the object
imcpUnreachableAllow Boolean: ICMP Unreachable Allow
loggings List<Property Map>
matchStatisticsPerFilter String: Match Statistics per-filter
maxIncompleteIcmpLimit Number: Max Incomplete ICMP Limit
maxIncompleteTcpLimit Number: Max Incomplete TCP Limit
maxIncompleteUdpLimit Number: Max Incomplete UDP Limit
mode String: The policy mode
name String: The name of the security policy
sessionReclassifyAllow Boolean: Session Reclassify Allow
tcpSynFloodLimit String: TCP SYN Flood Limit, value from 1 to 4294967295
unifiedLogging Boolean: Unified Logging
useCase String: The use case of the security policy
version Number: The version of the object

Supporting Types

GetSecurityPolicyDefinition

DestinationZone string: Destination Zone
Id string: Policy definition ID
SourceZone string: Source Zone
Type string: Policy definition type
Version int: Policy definition version

DestinationZone string: Destination Zone
Id string: Policy definition ID
SourceZone string: Source Zone
Type string: Policy definition type
Version int: Policy definition version

destinationZone String: Destination Zone
id String: Policy definition ID
sourceZone String: Source Zone
type String: Policy definition type
version Integer: Policy definition version

destinationZone string: Destination Zone
id string: Policy definition ID
sourceZone string: Source Zone
type string: Policy definition type
version number: Policy definition version

destination_zone str: Destination Zone
id str: Policy definition ID
source_zone str: Source Zone
type str: Policy definition type
version int: Policy definition version

destinationZone String: Destination Zone
id String: Policy definition ID
sourceZone String: Source Zone
type String: Policy definition type
version Number: Policy definition version

GetSecurityPolicyLogging

ExternalSyslogServerIp string: External Syslog Server IP
ExternalSyslogServerSourceInterface string: External Syslog Server Source Interface
ExternalSyslogServerVpn string: External Syslog Server VPN

ExternalSyslogServerIp string: External Syslog Server IP
ExternalSyslogServerSourceInterface string: External Syslog Server Source Interface
ExternalSyslogServerVpn string: External Syslog Server VPN

externalSyslogServerIp String: External Syslog Server IP
externalSyslogServerSourceInterface String: External Syslog Server Source Interface
externalSyslogServerVpn String: External Syslog Server VPN

externalSyslogServerIp string: External Syslog Server IP
externalSyslogServerSourceInterface string: External Syslog Server Source Interface
externalSyslogServerVpn string: External Syslog Server VPN

external_syslog_server_ip str: External Syslog Server IP
external_syslog_server_source_interface str: External Syslog Server Source Interface
external_syslog_server_vpn str: External Syslog Server VPN

externalSyslogServerIp String: External Syslog Server IP
externalSyslogServerSourceInterface String: External Syslog Server Source Interface
externalSyslogServerVpn String: External Syslog Server VPN

Package Details

Repository: sdwan pulumi/pulumi-sdwan
License: Apache-2.0
Notes: This Pulumi package is based on the sdwan Terraform Provider.

Cisco Catalyst SD-WAN v0.3.2 published on Wednesday, Jul 16, 2025 by Pulumi

pulumi/pulumi-sdwan

sdwan.getSecurityPolicy

On this page

On this page

Example Usage

Using getSecurityPolicy

getSecurityPolicy Result

Supporting Types

GetSecurityPolicyDefinition

GetSecurityPolicyLogging

Package Details

On this page

On this page