pulumi-cloudflare-kotlin/com.pulumi.cloudflare.kotlin/DnsFirewallArgs

DnsFirewallArgs

data class DnsFirewallArgs(val accountId: Output<String>? = null, val attackMitigation: Output<DnsFirewallAttackMitigationArgs>? = null, val deprecateAnyRequests: Output<Boolean>? = null, val ecsFallback: Output<Boolean>? = null, val maximumCacheTtl: Output<Double>? = null, val minimumCacheTtl: Output<Double>? = null, val name: Output<String>? = null, val negativeCacheTtl: Output<Double>? = null, val ratelimit: Output<Double>? = null, val retries: Output<Double>? = null, val upstreamIps: Output<List<String>>? = null) : ConvertibleToJava<DnsFirewallArgs>

Example Usage

resources:
  exampleDnsFirewall:
    type: cloudflare:DnsFirewall
    name: example_dns_firewall
    properties:
      accountId: 023e105f4ecef8ad9ca31a8372d0c353
      name: My Awesome DNS Firewall cluster
      upstreamIps:
        - 192.0.2.1
        - 198.51.100.1
        - 2001:DB8:100::CF
      attackMitigation:
        enabled: true
        only_when_upstream_unhealthy: false
      deprecateAnyRequests: true
      ecsFallback: false
      maximumCacheTtl: 900
      minimumCacheTtl: 60
      negativeCacheTtl: 900
      ratelimit: 600
      retries: 2
Content copied to clipboard

Import

$ pulumi import cloudflare:index/dnsFirewall:DnsFirewall example '<account_id>/<dns_firewall_id>'
Content copied to clipboard

Constructors

Link copied to clipboard
constructor(accountId: Output<String>? = null, attackMitigation: Output<DnsFirewallAttackMitigationArgs>? = null, deprecateAnyRequests: Output<Boolean>? = null, ecsFallback: Output<Boolean>? = null, maximumCacheTtl: Output<Double>? = null, minimumCacheTtl: Output<Double>? = null, name: Output<String>? = null, negativeCacheTtl: Output<Double>? = null, ratelimit: Output<Double>? = null, retries: Output<Double>? = null, upstreamIps: Output<List<String>>? = null)

Properties

Link copied to clipboard
val accountId: Output<String>? = null

Identifier

Link copied to clipboard
val attackMitigation: Output<DnsFirewallAttackMitigationArgs>? = null

Attack mitigation settings

Link copied to clipboard
val deprecateAnyRequests: Output<Boolean>? = null

Whether to refuse to answer queries for the ANY type

Link copied to clipboard
val ecsFallback: Output<Boolean>? = null

Whether to forward client IP (resolver) subnet if no EDNS Client Subnet is sent

Link copied to clipboard
val maximumCacheTtl: Output<Double>? = null

Maximum DNS cache TTL This setting sets an upper bound on DNS TTLs for purposes of caching between DNS Firewall and the upstream servers. Higher TTLs will be decreased to the maximum defined here for caching purposes.

Link copied to clipboard
val minimumCacheTtl: Output<Double>? = null

Minimum DNS cache TTL This setting sets a lower bound on DNS TTLs for purposes of caching between DNS Firewall and the upstream servers. Lower TTLs will be increased to the minimum defined here for caching purposes.

Link copied to clipboard
val name: Output<String>? = null

DNS Firewall cluster name

Link copied to clipboard
val negativeCacheTtl: Output<Double>? = null

Negative DNS cache TTL This setting controls how long DNS Firewall should cache negative responses (e.g., NXDOMAIN) from the upstream servers.

Link copied to clipboard
val ratelimit: Output<Double>? = null

Ratelimit in queries per second per datacenter (applies to DNS queries sent to the upstream nameservers configured on the cluster)

Link copied to clipboard
val retries: Output<Double>? = null

Number of retries for fetching DNS responses from upstream nameservers (not counting the initial attempt)

Link copied to clipboard
val upstreamIps: Output<List<String>>? = null

Functions

Link copied to clipboard
open override fun toJava(): DnsFirewallArgs