Cloudflare v5.49.1, Feb 18 25

Cloudflare v5.49.1 published on Tuesday, Feb 18, 2025 by Pulumi

cloudflare.MagicWanIpsecTunnel

Explore with Pulumi AI

Cloudflare v5.49.1 published on Tuesday, Feb 18, 2025 by Pulumi

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as cloudflare from "@pulumi/cloudflare";

const example = new cloudflare.MagicWanIpsecTunnel("example", {
    accountId: "f037e56e89293a057740de681ac9abbe",
    name: "IPsec_1",
    customerEndpoint: "203.0.113.1",
    cloudflareEndpoint: "203.0.113.1",
    interfaceAddress: "192.0.2.0/31",
    description: "Tunnel for ISP X",
    healthCheckEnabled: true,
    healthCheckTarget: "203.0.113.1",
    healthCheckType: "reply",
    psk: "asdf12341234",
    allowNullCipher: false,
});

import pulumi
import pulumi_cloudflare as cloudflare

example = cloudflare.MagicWanIpsecTunnel("example",
    account_id="f037e56e89293a057740de681ac9abbe",
    name="IPsec_1",
    customer_endpoint="203.0.113.1",
    cloudflare_endpoint="203.0.113.1",
    interface_address="192.0.2.0/31",
    description="Tunnel for ISP X",
    health_check_enabled=True,
    health_check_target="203.0.113.1",
    health_check_type="reply",
    psk="asdf12341234",
    allow_null_cipher=False)

package main

import (
	"github.com/pulumi/pulumi-cloudflare/sdk/v5/go/cloudflare"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := cloudflare.NewMagicWanIpsecTunnel(ctx, "example", &cloudflare.MagicWanIpsecTunnelArgs{
			AccountId:          pulumi.String("f037e56e89293a057740de681ac9abbe"),
			Name:               pulumi.String("IPsec_1"),
			CustomerEndpoint:   pulumi.String("203.0.113.1"),
			CloudflareEndpoint: pulumi.String("203.0.113.1"),
			InterfaceAddress:   pulumi.String("192.0.2.0/31"),
			Description:        pulumi.String("Tunnel for ISP X"),
			HealthCheckEnabled: pulumi.Bool(true),
			HealthCheckTarget:  pulumi.String("203.0.113.1"),
			HealthCheckType:    pulumi.String("reply"),
			Psk:                pulumi.String("asdf12341234"),
			AllowNullCipher:    pulumi.Bool(false),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Cloudflare = Pulumi.Cloudflare;

return await Deployment.RunAsync(() => 
{
    var example = new Cloudflare.MagicWanIpsecTunnel("example", new()
    {
        AccountId = "f037e56e89293a057740de681ac9abbe",
        Name = "IPsec_1",
        CustomerEndpoint = "203.0.113.1",
        CloudflareEndpoint = "203.0.113.1",
        InterfaceAddress = "192.0.2.0/31",
        Description = "Tunnel for ISP X",
        HealthCheckEnabled = true,
        HealthCheckTarget = "203.0.113.1",
        HealthCheckType = "reply",
        Psk = "asdf12341234",
        AllowNullCipher = false,
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.cloudflare.MagicWanIpsecTunnel;
import com.pulumi.cloudflare.MagicWanIpsecTunnelArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var example = new MagicWanIpsecTunnel("example", MagicWanIpsecTunnelArgs.builder()
            .accountId("f037e56e89293a057740de681ac9abbe")
            .name("IPsec_1")
            .customerEndpoint("203.0.113.1")
            .cloudflareEndpoint("203.0.113.1")
            .interfaceAddress("192.0.2.0/31")
            .description("Tunnel for ISP X")
            .healthCheckEnabled(true)
            .healthCheckTarget("203.0.113.1")
            .healthCheckType("reply")
            .psk("asdf12341234")
            .allowNullCipher(false)
            .build());

    }
}

resources:
  example:
    type: cloudflare:MagicWanIpsecTunnel
    properties:
      accountId: f037e56e89293a057740de681ac9abbe
      name: IPsec_1
      customerEndpoint: 203.0.113.1
      cloudflareEndpoint: 203.0.113.1
      interfaceAddress: 192.0.2.0/31
      description: Tunnel for ISP X
      healthCheckEnabled: true
      healthCheckTarget: 203.0.113.1
      healthCheckType: reply
      psk: asdf12341234
      allowNullCipher: false

Create MagicWanIpsecTunnel Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new MagicWanIpsecTunnel(name: string, args: MagicWanIpsecTunnelArgs, opts?: CustomResourceOptions);

@overload
def MagicWanIpsecTunnel(resource_name: str,
                        args: MagicWanIpsecTunnelArgs,
                        opts: Optional[ResourceOptions] = None)

@overload
def MagicWanIpsecTunnel(resource_name: str,
                        opts: Optional[ResourceOptions] = None,
                        interface_address: Optional[str] = None,
                        name: Optional[str] = None,
                        cloudflare_endpoint: Optional[str] = None,
                        customer_endpoint: Optional[str] = None,
                        description: Optional[str] = None,
                        hex_id: Optional[str] = None,
                        health_check_direction: Optional[str] = None,
                        health_check_enabled: Optional[bool] = None,
                        health_check_rate: Optional[str] = None,
                        health_check_target: Optional[str] = None,
                        health_check_type: Optional[str] = None,
                        fqdn_id: Optional[str] = None,
                        account_id: Optional[str] = None,
                        allow_null_cipher: Optional[bool] = None,
                        psk: Optional[str] = None,
                        remote_id: Optional[str] = None,
                        replay_protection: Optional[bool] = None,
                        user_id: Optional[str] = None)

func NewMagicWanIpsecTunnel(ctx *Context, name string, args MagicWanIpsecTunnelArgs, opts ...ResourceOption) (*MagicWanIpsecTunnel, error)

public MagicWanIpsecTunnel(string name, MagicWanIpsecTunnelArgs args, CustomResourceOptions? opts = null)

public MagicWanIpsecTunnel(String name, MagicWanIpsecTunnelArgs args)
public MagicWanIpsecTunnel(String name, MagicWanIpsecTunnelArgs args, CustomResourceOptions options)

type: cloudflare:MagicWanIpsecTunnel
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args MagicWanIpsecTunnelArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args MagicWanIpsecTunnelArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args MagicWanIpsecTunnelArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args MagicWanIpsecTunnelArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args MagicWanIpsecTunnelArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var magicWanIpsecTunnelResource = new Cloudflare.MagicWanIpsecTunnel("magicWanIpsecTunnelResource", new()
{
    InterfaceAddress = "string",
    Name = "string",
    CloudflareEndpoint = "string",
    CustomerEndpoint = "string",
    Description = "string",
    HexId = "string",
    HealthCheckDirection = "string",
    HealthCheckEnabled = false,
    HealthCheckRate = "string",
    HealthCheckTarget = "string",
    HealthCheckType = "string",
    FqdnId = "string",
    AccountId = "string",
    AllowNullCipher = false,
    Psk = "string",
    RemoteId = "string",
    ReplayProtection = false,
    UserId = "string",
});

example, err := cloudflare.NewMagicWanIpsecTunnel(ctx, "magicWanIpsecTunnelResource", &cloudflare.MagicWanIpsecTunnelArgs{
	InterfaceAddress:     pulumi.String("string"),
	Name:                 pulumi.String("string"),
	CloudflareEndpoint:   pulumi.String("string"),
	CustomerEndpoint:     pulumi.String("string"),
	Description:          pulumi.String("string"),
	HexId:                pulumi.String("string"),
	HealthCheckDirection: pulumi.String("string"),
	HealthCheckEnabled:   pulumi.Bool(false),
	HealthCheckRate:      pulumi.String("string"),
	HealthCheckTarget:    pulumi.String("string"),
	HealthCheckType:      pulumi.String("string"),
	FqdnId:               pulumi.String("string"),
	AccountId:            pulumi.String("string"),
	AllowNullCipher:      pulumi.Bool(false),
	Psk:                  pulumi.String("string"),
	RemoteId:             pulumi.String("string"),
	ReplayProtection:     pulumi.Bool(false),
	UserId:               pulumi.String("string"),
})

var magicWanIpsecTunnelResource = new MagicWanIpsecTunnel("magicWanIpsecTunnelResource", MagicWanIpsecTunnelArgs.builder()
    .interfaceAddress("string")
    .name("string")
    .cloudflareEndpoint("string")
    .customerEndpoint("string")
    .description("string")
    .hexId("string")
    .healthCheckDirection("string")
    .healthCheckEnabled(false)
    .healthCheckRate("string")
    .healthCheckTarget("string")
    .healthCheckType("string")
    .fqdnId("string")
    .accountId("string")
    .allowNullCipher(false)
    .psk("string")
    .remoteId("string")
    .replayProtection(false)
    .userId("string")
    .build());

magic_wan_ipsec_tunnel_resource = cloudflare.MagicWanIpsecTunnel("magicWanIpsecTunnelResource",
    interface_address="string",
    name="string",
    cloudflare_endpoint="string",
    customer_endpoint="string",
    description="string",
    hex_id="string",
    health_check_direction="string",
    health_check_enabled=False,
    health_check_rate="string",
    health_check_target="string",
    health_check_type="string",
    fqdn_id="string",
    account_id="string",
    allow_null_cipher=False,
    psk="string",
    remote_id="string",
    replay_protection=False,
    user_id="string")

const magicWanIpsecTunnelResource = new cloudflare.MagicWanIpsecTunnel("magicWanIpsecTunnelResource", {
    interfaceAddress: "string",
    name: "string",
    cloudflareEndpoint: "string",
    customerEndpoint: "string",
    description: "string",
    hexId: "string",
    healthCheckDirection: "string",
    healthCheckEnabled: false,
    healthCheckRate: "string",
    healthCheckTarget: "string",
    healthCheckType: "string",
    fqdnId: "string",
    accountId: "string",
    allowNullCipher: false,
    psk: "string",
    remoteId: "string",
    replayProtection: false,
    userId: "string",
});

type: cloudflare:MagicWanIpsecTunnel
properties:
    accountId: string
    allowNullCipher: false
    cloudflareEndpoint: string
    customerEndpoint: string
    description: string
    fqdnId: string
    healthCheckDirection: string
    healthCheckEnabled: false
    healthCheckRate: string
    healthCheckTarget: string
    healthCheckType: string
    hexId: string
    interfaceAddress: string
    name: string
    psk: string
    remoteId: string
    replayProtection: false
    userId: string

MagicWanIpsecTunnel Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The MagicWanIpsecTunnel resource accepts the following input properties:

CloudflareEndpoint string: IP address assigned to the Cloudflare side of the IPsec tunnel.
CustomerEndpoint string: IP address assigned to the customer side of the IPsec tunnel.
InterfaceAddress string: 31-bit prefix (/31 in CIDR notation) supporting 2 hosts, one for each side of the tunnel.
Name string: Name of the IPsec tunnel.
AccountId string: The account identifier to target for the resource. Modifying this attribute will force creation of a new resource.
AllowNullCipher bool: Specifies if this tunnel may use a null cipher (ENCR_NULL) in Phase 2. Defaults to false.
Description string: An optional description of the IPsec tunnel.
FqdnId string: remote_id in the form of a fqdn. This value is generated by cloudflare.
HealthCheckDirection string: Specifies the direction for the health check. Available values: unidirectional, bidirectional Default: unidirectional.
HealthCheckEnabled bool: Specifies if ICMP tunnel health checks are enabled. Default: true.
HealthCheckRate string: Specifies the ICMP rate for the health check. Available values: low, mid, high Default: mid.
HealthCheckTarget string: The IP address of the customer endpoint that will receive tunnel health checks. Default: <customer_gre_endpoint>.
HealthCheckType string: Specifies the ICMP echo type for the health check (request or reply). Available values: request, reply Default: reply.
HexId string: remote_id as a hex string. This value is generated by cloudflare.
Psk string: Pre shared key to be used with the IPsec tunnel. If left unset, it will be autogenerated.
RemoteId string: ID to be used while setting up the IPsec tunnel. This value is generated by cloudflare.
ReplayProtection bool: Specifies if replay protection is enabled. Defaults to false.
UserId string: remote_id in the form of an email address. This value is generated by cloudflare.

CloudflareEndpoint string: IP address assigned to the Cloudflare side of the IPsec tunnel.
CustomerEndpoint string: IP address assigned to the customer side of the IPsec tunnel.
InterfaceAddress string: 31-bit prefix (/31 in CIDR notation) supporting 2 hosts, one for each side of the tunnel.
Name string: Name of the IPsec tunnel.
AccountId string: The account identifier to target for the resource. Modifying this attribute will force creation of a new resource.
AllowNullCipher bool: Specifies if this tunnel may use a null cipher (ENCR_NULL) in Phase 2. Defaults to false.
Description string: An optional description of the IPsec tunnel.
FqdnId string: remote_id in the form of a fqdn. This value is generated by cloudflare.
HealthCheckDirection string: Specifies the direction for the health check. Available values: unidirectional, bidirectional Default: unidirectional.
HealthCheckEnabled bool: Specifies if ICMP tunnel health checks are enabled. Default: true.
HealthCheckRate string: Specifies the ICMP rate for the health check. Available values: low, mid, high Default: mid.
HealthCheckTarget string: The IP address of the customer endpoint that will receive tunnel health checks. Default: <customer_gre_endpoint>.
HealthCheckType string: Specifies the ICMP echo type for the health check (request or reply). Available values: request, reply Default: reply.
HexId string: remote_id as a hex string. This value is generated by cloudflare.
Psk string: Pre shared key to be used with the IPsec tunnel. If left unset, it will be autogenerated.
RemoteId string: ID to be used while setting up the IPsec tunnel. This value is generated by cloudflare.
ReplayProtection bool: Specifies if replay protection is enabled. Defaults to false.
UserId string: remote_id in the form of an email address. This value is generated by cloudflare.

cloudflareEndpoint String: IP address assigned to the Cloudflare side of the IPsec tunnel.
customerEndpoint String: IP address assigned to the customer side of the IPsec tunnel.
interfaceAddress String: 31-bit prefix (/31 in CIDR notation) supporting 2 hosts, one for each side of the tunnel.
name String: Name of the IPsec tunnel.
accountId String: The account identifier to target for the resource. Modifying this attribute will force creation of a new resource.
allowNullCipher Boolean: Specifies if this tunnel may use a null cipher (ENCR_NULL) in Phase 2. Defaults to false.
description String: An optional description of the IPsec tunnel.
fqdnId String: remote_id in the form of a fqdn. This value is generated by cloudflare.
healthCheckDirection String: Specifies the direction for the health check. Available values: unidirectional, bidirectional Default: unidirectional.
healthCheckEnabled Boolean: Specifies if ICMP tunnel health checks are enabled. Default: true.
healthCheckRate String: Specifies the ICMP rate for the health check. Available values: low, mid, high Default: mid.
healthCheckTarget String: The IP address of the customer endpoint that will receive tunnel health checks. Default: <customer_gre_endpoint>.
healthCheckType String: Specifies the ICMP echo type for the health check (request or reply). Available values: request, reply Default: reply.
hexId String: remote_id as a hex string. This value is generated by cloudflare.
psk String: Pre shared key to be used with the IPsec tunnel. If left unset, it will be autogenerated.
remoteId String: ID to be used while setting up the IPsec tunnel. This value is generated by cloudflare.
replayProtection Boolean: Specifies if replay protection is enabled. Defaults to false.
userId String: remote_id in the form of an email address. This value is generated by cloudflare.

cloudflareEndpoint string: IP address assigned to the Cloudflare side of the IPsec tunnel.
customerEndpoint string: IP address assigned to the customer side of the IPsec tunnel.
interfaceAddress string: 31-bit prefix (/31 in CIDR notation) supporting 2 hosts, one for each side of the tunnel.
name string: Name of the IPsec tunnel.
accountId string: The account identifier to target for the resource. Modifying this attribute will force creation of a new resource.
allowNullCipher boolean: Specifies if this tunnel may use a null cipher (ENCR_NULL) in Phase 2. Defaults to false.
description string: An optional description of the IPsec tunnel.
fqdnId string: remote_id in the form of a fqdn. This value is generated by cloudflare.
healthCheckDirection string: Specifies the direction for the health check. Available values: unidirectional, bidirectional Default: unidirectional.
healthCheckEnabled boolean: Specifies if ICMP tunnel health checks are enabled. Default: true.
healthCheckRate string: Specifies the ICMP rate for the health check. Available values: low, mid, high Default: mid.
healthCheckTarget string: The IP address of the customer endpoint that will receive tunnel health checks. Default: <customer_gre_endpoint>.
healthCheckType string: Specifies the ICMP echo type for the health check (request or reply). Available values: request, reply Default: reply.
hexId string: remote_id as a hex string. This value is generated by cloudflare.
psk string: Pre shared key to be used with the IPsec tunnel. If left unset, it will be autogenerated.
remoteId string: ID to be used while setting up the IPsec tunnel. This value is generated by cloudflare.
replayProtection boolean: Specifies if replay protection is enabled. Defaults to false.
userId string: remote_id in the form of an email address. This value is generated by cloudflare.

cloudflare_endpoint str: IP address assigned to the Cloudflare side of the IPsec tunnel.
customer_endpoint str: IP address assigned to the customer side of the IPsec tunnel.
interface_address str: 31-bit prefix (/31 in CIDR notation) supporting 2 hosts, one for each side of the tunnel.
name str: Name of the IPsec tunnel.
account_id str: The account identifier to target for the resource. Modifying this attribute will force creation of a new resource.
allow_null_cipher bool: Specifies if this tunnel may use a null cipher (ENCR_NULL) in Phase 2. Defaults to false.
description str: An optional description of the IPsec tunnel.
fqdn_id str: remote_id in the form of a fqdn. This value is generated by cloudflare.
health_check_direction str: Specifies the direction for the health check. Available values: unidirectional, bidirectional Default: unidirectional.
health_check_enabled bool: Specifies if ICMP tunnel health checks are enabled. Default: true.
health_check_rate str: Specifies the ICMP rate for the health check. Available values: low, mid, high Default: mid.
health_check_target str: The IP address of the customer endpoint that will receive tunnel health checks. Default: <customer_gre_endpoint>.
health_check_type str: Specifies the ICMP echo type for the health check (request or reply). Available values: request, reply Default: reply.
hex_id str: remote_id as a hex string. This value is generated by cloudflare.
psk str: Pre shared key to be used with the IPsec tunnel. If left unset, it will be autogenerated.
remote_id str: ID to be used while setting up the IPsec tunnel. This value is generated by cloudflare.
replay_protection bool: Specifies if replay protection is enabled. Defaults to false.
user_id str: remote_id in the form of an email address. This value is generated by cloudflare.

cloudflareEndpoint String: IP address assigned to the Cloudflare side of the IPsec tunnel.
customerEndpoint String: IP address assigned to the customer side of the IPsec tunnel.
interfaceAddress String: 31-bit prefix (/31 in CIDR notation) supporting 2 hosts, one for each side of the tunnel.
name String: Name of the IPsec tunnel.
accountId String: The account identifier to target for the resource. Modifying this attribute will force creation of a new resource.
allowNullCipher Boolean: Specifies if this tunnel may use a null cipher (ENCR_NULL) in Phase 2. Defaults to false.
description String: An optional description of the IPsec tunnel.
fqdnId String: remote_id in the form of a fqdn. This value is generated by cloudflare.
healthCheckDirection String: Specifies the direction for the health check. Available values: unidirectional, bidirectional Default: unidirectional.
healthCheckEnabled Boolean: Specifies if ICMP tunnel health checks are enabled. Default: true.
healthCheckRate String: Specifies the ICMP rate for the health check. Available values: low, mid, high Default: mid.
healthCheckTarget String: The IP address of the customer endpoint that will receive tunnel health checks. Default: <customer_gre_endpoint>.
healthCheckType String: Specifies the ICMP echo type for the health check (request or reply). Available values: request, reply Default: reply.
hexId String: remote_id as a hex string. This value is generated by cloudflare.
psk String: Pre shared key to be used with the IPsec tunnel. If left unset, it will be autogenerated.
remoteId String: ID to be used while setting up the IPsec tunnel. This value is generated by cloudflare.
replayProtection Boolean: Specifies if replay protection is enabled. Defaults to false.
userId String: remote_id in the form of an email address. This value is generated by cloudflare.

Outputs

All input properties are implicitly available as output properties. Additionally, the MagicWanIpsecTunnel resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing MagicWanIpsecTunnel Resource

Get an existing MagicWanIpsecTunnel resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: MagicWanIpsecTunnelState, opts?: CustomResourceOptions): MagicWanIpsecTunnel

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        account_id: Optional[str] = None,
        allow_null_cipher: Optional[bool] = None,
        cloudflare_endpoint: Optional[str] = None,
        customer_endpoint: Optional[str] = None,
        description: Optional[str] = None,
        fqdn_id: Optional[str] = None,
        health_check_direction: Optional[str] = None,
        health_check_enabled: Optional[bool] = None,
        health_check_rate: Optional[str] = None,
        health_check_target: Optional[str] = None,
        health_check_type: Optional[str] = None,
        hex_id: Optional[str] = None,
        interface_address: Optional[str] = None,
        name: Optional[str] = None,
        psk: Optional[str] = None,
        remote_id: Optional[str] = None,
        replay_protection: Optional[bool] = None,
        user_id: Optional[str] = None) -> MagicWanIpsecTunnel

func GetMagicWanIpsecTunnel(ctx *Context, name string, id IDInput, state *MagicWanIpsecTunnelState, opts ...ResourceOption) (*MagicWanIpsecTunnel, error)

public static MagicWanIpsecTunnel Get(string name, Input<string> id, MagicWanIpsecTunnelState? state, CustomResourceOptions? opts = null)

public static MagicWanIpsecTunnel get(String name, Output<String> id, MagicWanIpsecTunnelState state, CustomResourceOptions options)

resources:  _:    type: cloudflare:MagicWanIpsecTunnel    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AccountId string: The account identifier to target for the resource. Modifying this attribute will force creation of a new resource.
AllowNullCipher bool: Specifies if this tunnel may use a null cipher (ENCR_NULL) in Phase 2. Defaults to false.
CloudflareEndpoint string: IP address assigned to the Cloudflare side of the IPsec tunnel.
CustomerEndpoint string: IP address assigned to the customer side of the IPsec tunnel.
Description string: An optional description of the IPsec tunnel.
FqdnId string: remote_id in the form of a fqdn. This value is generated by cloudflare.
HealthCheckDirection string: Specifies the direction for the health check. Available values: unidirectional, bidirectional Default: unidirectional.
HealthCheckEnabled bool: Specifies if ICMP tunnel health checks are enabled. Default: true.
HealthCheckRate string: Specifies the ICMP rate for the health check. Available values: low, mid, high Default: mid.
HealthCheckTarget string: The IP address of the customer endpoint that will receive tunnel health checks. Default: <customer_gre_endpoint>.
HealthCheckType string: Specifies the ICMP echo type for the health check (request or reply). Available values: request, reply Default: reply.
HexId string: remote_id as a hex string. This value is generated by cloudflare.
InterfaceAddress string: 31-bit prefix (/31 in CIDR notation) supporting 2 hosts, one for each side of the tunnel.
Name string: Name of the IPsec tunnel.
Psk string: Pre shared key to be used with the IPsec tunnel. If left unset, it will be autogenerated.
RemoteId string: ID to be used while setting up the IPsec tunnel. This value is generated by cloudflare.
ReplayProtection bool: Specifies if replay protection is enabled. Defaults to false.
UserId string: remote_id in the form of an email address. This value is generated by cloudflare.

AccountId string: The account identifier to target for the resource. Modifying this attribute will force creation of a new resource.
AllowNullCipher bool: Specifies if this tunnel may use a null cipher (ENCR_NULL) in Phase 2. Defaults to false.
CloudflareEndpoint string: IP address assigned to the Cloudflare side of the IPsec tunnel.
CustomerEndpoint string: IP address assigned to the customer side of the IPsec tunnel.
Description string: An optional description of the IPsec tunnel.
FqdnId string: remote_id in the form of a fqdn. This value is generated by cloudflare.
HealthCheckDirection string: Specifies the direction for the health check. Available values: unidirectional, bidirectional Default: unidirectional.
HealthCheckEnabled bool: Specifies if ICMP tunnel health checks are enabled. Default: true.
HealthCheckRate string: Specifies the ICMP rate for the health check. Available values: low, mid, high Default: mid.
HealthCheckTarget string: The IP address of the customer endpoint that will receive tunnel health checks. Default: <customer_gre_endpoint>.
HealthCheckType string: Specifies the ICMP echo type for the health check (request or reply). Available values: request, reply Default: reply.
HexId string: remote_id as a hex string. This value is generated by cloudflare.
InterfaceAddress string: 31-bit prefix (/31 in CIDR notation) supporting 2 hosts, one for each side of the tunnel.
Name string: Name of the IPsec tunnel.
Psk string: Pre shared key to be used with the IPsec tunnel. If left unset, it will be autogenerated.
RemoteId string: ID to be used while setting up the IPsec tunnel. This value is generated by cloudflare.
ReplayProtection bool: Specifies if replay protection is enabled. Defaults to false.
UserId string: remote_id in the form of an email address. This value is generated by cloudflare.

accountId String: The account identifier to target for the resource. Modifying this attribute will force creation of a new resource.
allowNullCipher Boolean: Specifies if this tunnel may use a null cipher (ENCR_NULL) in Phase 2. Defaults to false.
cloudflareEndpoint String: IP address assigned to the Cloudflare side of the IPsec tunnel.
customerEndpoint String: IP address assigned to the customer side of the IPsec tunnel.
description String: An optional description of the IPsec tunnel.
fqdnId String: remote_id in the form of a fqdn. This value is generated by cloudflare.
healthCheckDirection String: Specifies the direction for the health check. Available values: unidirectional, bidirectional Default: unidirectional.
healthCheckEnabled Boolean: Specifies if ICMP tunnel health checks are enabled. Default: true.
healthCheckRate String: Specifies the ICMP rate for the health check. Available values: low, mid, high Default: mid.
healthCheckTarget String: The IP address of the customer endpoint that will receive tunnel health checks. Default: <customer_gre_endpoint>.
healthCheckType String: Specifies the ICMP echo type for the health check (request or reply). Available values: request, reply Default: reply.
hexId String: remote_id as a hex string. This value is generated by cloudflare.
interfaceAddress String: 31-bit prefix (/31 in CIDR notation) supporting 2 hosts, one for each side of the tunnel.
name String: Name of the IPsec tunnel.
psk String: Pre shared key to be used with the IPsec tunnel. If left unset, it will be autogenerated.
remoteId String: ID to be used while setting up the IPsec tunnel. This value is generated by cloudflare.
replayProtection Boolean: Specifies if replay protection is enabled. Defaults to false.
userId String: remote_id in the form of an email address. This value is generated by cloudflare.

accountId string: The account identifier to target for the resource. Modifying this attribute will force creation of a new resource.
allowNullCipher boolean: Specifies if this tunnel may use a null cipher (ENCR_NULL) in Phase 2. Defaults to false.
cloudflareEndpoint string: IP address assigned to the Cloudflare side of the IPsec tunnel.
customerEndpoint string: IP address assigned to the customer side of the IPsec tunnel.
description string: An optional description of the IPsec tunnel.
fqdnId string: remote_id in the form of a fqdn. This value is generated by cloudflare.
healthCheckDirection string: Specifies the direction for the health check. Available values: unidirectional, bidirectional Default: unidirectional.
healthCheckEnabled boolean: Specifies if ICMP tunnel health checks are enabled. Default: true.
healthCheckRate string: Specifies the ICMP rate for the health check. Available values: low, mid, high Default: mid.
healthCheckTarget string: The IP address of the customer endpoint that will receive tunnel health checks. Default: <customer_gre_endpoint>.
healthCheckType string: Specifies the ICMP echo type for the health check (request or reply). Available values: request, reply Default: reply.
hexId string: remote_id as a hex string. This value is generated by cloudflare.
interfaceAddress string: 31-bit prefix (/31 in CIDR notation) supporting 2 hosts, one for each side of the tunnel.
name string: Name of the IPsec tunnel.
psk string: Pre shared key to be used with the IPsec tunnel. If left unset, it will be autogenerated.
remoteId string: ID to be used while setting up the IPsec tunnel. This value is generated by cloudflare.
replayProtection boolean: Specifies if replay protection is enabled. Defaults to false.
userId string: remote_id in the form of an email address. This value is generated by cloudflare.

account_id str: The account identifier to target for the resource. Modifying this attribute will force creation of a new resource.
allow_null_cipher bool: Specifies if this tunnel may use a null cipher (ENCR_NULL) in Phase 2. Defaults to false.
cloudflare_endpoint str: IP address assigned to the Cloudflare side of the IPsec tunnel.
customer_endpoint str: IP address assigned to the customer side of the IPsec tunnel.
description str: An optional description of the IPsec tunnel.
fqdn_id str: remote_id in the form of a fqdn. This value is generated by cloudflare.
health_check_direction str: Specifies the direction for the health check. Available values: unidirectional, bidirectional Default: unidirectional.
health_check_enabled bool: Specifies if ICMP tunnel health checks are enabled. Default: true.
health_check_rate str: Specifies the ICMP rate for the health check. Available values: low, mid, high Default: mid.
health_check_target str: The IP address of the customer endpoint that will receive tunnel health checks. Default: <customer_gre_endpoint>.
health_check_type str: Specifies the ICMP echo type for the health check (request or reply). Available values: request, reply Default: reply.
hex_id str: remote_id as a hex string. This value is generated by cloudflare.
interface_address str: 31-bit prefix (/31 in CIDR notation) supporting 2 hosts, one for each side of the tunnel.
name str: Name of the IPsec tunnel.
psk str: Pre shared key to be used with the IPsec tunnel. If left unset, it will be autogenerated.
remote_id str: ID to be used while setting up the IPsec tunnel. This value is generated by cloudflare.
replay_protection bool: Specifies if replay protection is enabled. Defaults to false.
user_id str: remote_id in the form of an email address. This value is generated by cloudflare.

accountId String: The account identifier to target for the resource. Modifying this attribute will force creation of a new resource.
allowNullCipher Boolean: Specifies if this tunnel may use a null cipher (ENCR_NULL) in Phase 2. Defaults to false.
cloudflareEndpoint String: IP address assigned to the Cloudflare side of the IPsec tunnel.
customerEndpoint String: IP address assigned to the customer side of the IPsec tunnel.
description String: An optional description of the IPsec tunnel.
fqdnId String: remote_id in the form of a fqdn. This value is generated by cloudflare.
healthCheckDirection String: Specifies the direction for the health check. Available values: unidirectional, bidirectional Default: unidirectional.
healthCheckEnabled Boolean: Specifies if ICMP tunnel health checks are enabled. Default: true.
healthCheckRate String: Specifies the ICMP rate for the health check. Available values: low, mid, high Default: mid.
healthCheckTarget String: The IP address of the customer endpoint that will receive tunnel health checks. Default: <customer_gre_endpoint>.
healthCheckType String: Specifies the ICMP echo type for the health check (request or reply). Available values: request, reply Default: reply.
hexId String: remote_id as a hex string. This value is generated by cloudflare.
interfaceAddress String: 31-bit prefix (/31 in CIDR notation) supporting 2 hosts, one for each side of the tunnel.
name String: Name of the IPsec tunnel.
psk String: Pre shared key to be used with the IPsec tunnel. If left unset, it will be autogenerated.
remoteId String: ID to be used while setting up the IPsec tunnel. This value is generated by cloudflare.
replayProtection Boolean: Specifies if replay protection is enabled. Defaults to false.
userId String: remote_id in the form of an email address. This value is generated by cloudflare.

Import

$ pulumi import cloudflare:index/magicWanIpsecTunnel:MagicWanIpsecTunnel example <account_id>/<tunnel_id>

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: Cloudflare pulumi/pulumi-cloudflare
License: Apache-2.0
Notes: This Pulumi package is based on the cloudflare Terraform Provider.

Cloudflare v5.49.1 published on Tuesday, Feb 18, 2025 by Pulumi

pulumi/pulumi-cloudflare

cloudflare.MagicWanIpsecTunnel

On this page

On this page

Example Usage

Create MagicWanIpsecTunnel Resource

Constructor syntax

Parameters

Constructor example

MagicWanIpsecTunnel Resource Properties

Inputs

Outputs

Look up Existing MagicWanIpsecTunnel Resource

Import

Package Details

On this page

On this page