pulumi-cloudflare-kotlin/com.pulumi.cloudflare.kotlin/DnsFirewall

DnsFirewall

class DnsFirewall : KotlinCustomResource

Example Usage

resources:
  exampleDnsFirewall:
    type: cloudflare:DnsFirewall
    name: example_dns_firewall
    properties:
      accountId: 023e105f4ecef8ad9ca31a8372d0c353
      name: My Awesome DNS Firewall cluster
      upstreamIps:
        - 192.0.2.1
        - 198.51.100.1
        - 2001:DB8:100::CF
      attackMitigation:
        enabled: true
        only_when_upstream_unhealthy: false
      deprecateAnyRequests: true
      ecsFallback: false
      maximumCacheTtl: 900
      minimumCacheTtl: 60
      negativeCacheTtl: 900
      ratelimit: 600
      retries: 2
Content copied to clipboard

Import

$ pulumi import cloudflare:index/dnsFirewall:DnsFirewall example '<account_id>/<dns_firewall_id>'
Content copied to clipboard

Properties

Link copied to clipboard
val accountId: Output<String>

Identifier

Link copied to clipboard
val attackMitigation: Output<DnsFirewallAttackMitigation>

Attack mitigation settings

Link copied to clipboard
val deprecateAnyRequests: Output<Boolean>?

Whether to refuse to answer queries for the ANY type

Link copied to clipboard
val dnsFirewallIps: Output<List<String>>
Link copied to clipboard
val ecsFallback: Output<Boolean>?

Whether to forward client IP (resolver) subnet if no EDNS Client Subnet is sent

Link copied to clipboard
val id: Output<String>
Link copied to clipboard
val maximumCacheTtl: Output<Double>

Maximum DNS cache TTL This setting sets an upper bound on DNS TTLs for purposes of caching between DNS Firewall and the upstream servers. Higher TTLs will be decreased to the maximum defined here for caching purposes.

Link copied to clipboard
val minimumCacheTtl: Output<Double>

Minimum DNS cache TTL This setting sets a lower bound on DNS TTLs for purposes of caching between DNS Firewall and the upstream servers. Lower TTLs will be increased to the minimum defined here for caching purposes.

Link copied to clipboard
val modifiedOn: Output<String>

Last modification of DNS Firewall cluster

Link copied to clipboard
val name: Output<String>

DNS Firewall cluster name

Link copied to clipboard
val negativeCacheTtl: Output<Double>?

Negative DNS cache TTL This setting controls how long DNS Firewall should cache negative responses (e.g., NXDOMAIN) from the upstream servers.

Link copied to clipboard
val pulumiChildResources: Set<KotlinResource>
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
val ratelimit: Output<Double>?

Ratelimit in queries per second per datacenter (applies to DNS queries sent to the upstream nameservers configured on the cluster)

Link copied to clipboard
val retries: Output<Double>

Number of retries for fetching DNS responses from upstream nameservers (not counting the initial attempt)

Link copied to clipboard
val upstreamIps: Output<List<String>>
Link copied to clipboard
val urn: Output<String>