Cloudflare v6.0.0 published on Monday, Apr 14, 2025 by Pulumi
cloudflare.getZeroTrustTunnelCloudflaredConfig
Explore with Pulumi AI
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as cloudflare from "@pulumi/cloudflare";
const exampleZeroTrustTunnelCloudflaredConfig = cloudflare.getZeroTrustTunnelCloudflaredConfig({
accountId: "023e105f4ecef8ad9ca31a8372d0c353",
tunnelId: "f70ff985-a4ef-4643-bbbc-4a0ed4fc8415",
});
import pulumi
import pulumi_cloudflare as cloudflare
example_zero_trust_tunnel_cloudflared_config = cloudflare.get_zero_trust_tunnel_cloudflared_config(account_id="023e105f4ecef8ad9ca31a8372d0c353",
tunnel_id="f70ff985-a4ef-4643-bbbc-4a0ed4fc8415")
package main
import (
"github.com/pulumi/pulumi-cloudflare/sdk/v6/go/cloudflare"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := cloudflare.LookupZeroTrustTunnelCloudflaredConfig(ctx, &cloudflare.LookupZeroTrustTunnelCloudflaredConfigArgs{
AccountId: "023e105f4ecef8ad9ca31a8372d0c353",
TunnelId: "f70ff985-a4ef-4643-bbbc-4a0ed4fc8415",
}, nil)
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Cloudflare = Pulumi.Cloudflare;
return await Deployment.RunAsync(() =>
{
var exampleZeroTrustTunnelCloudflaredConfig = Cloudflare.GetZeroTrustTunnelCloudflaredConfig.Invoke(new()
{
AccountId = "023e105f4ecef8ad9ca31a8372d0c353",
TunnelId = "f70ff985-a4ef-4643-bbbc-4a0ed4fc8415",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.cloudflare.CloudflareFunctions;
import com.pulumi.cloudflare.inputs.GetZeroTrustTunnelCloudflaredConfigArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var exampleZeroTrustTunnelCloudflaredConfig = CloudflareFunctions.getZeroTrustTunnelCloudflaredConfig(GetZeroTrustTunnelCloudflaredConfigArgs.builder()
.accountId("023e105f4ecef8ad9ca31a8372d0c353")
.tunnelId("f70ff985-a4ef-4643-bbbc-4a0ed4fc8415")
.build());
}
}
variables:
exampleZeroTrustTunnelCloudflaredConfig:
fn::invoke:
function: cloudflare:getZeroTrustTunnelCloudflaredConfig
arguments:
accountId: 023e105f4ecef8ad9ca31a8372d0c353
tunnelId: f70ff985-a4ef-4643-bbbc-4a0ed4fc8415
Using getZeroTrustTunnelCloudflaredConfig
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getZeroTrustTunnelCloudflaredConfig(args: GetZeroTrustTunnelCloudflaredConfigArgs, opts?: InvokeOptions): Promise<GetZeroTrustTunnelCloudflaredConfigResult>
function getZeroTrustTunnelCloudflaredConfigOutput(args: GetZeroTrustTunnelCloudflaredConfigOutputArgs, opts?: InvokeOptions): Output<GetZeroTrustTunnelCloudflaredConfigResult>
def get_zero_trust_tunnel_cloudflared_config(account_id: Optional[str] = None,
tunnel_id: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetZeroTrustTunnelCloudflaredConfigResult
def get_zero_trust_tunnel_cloudflared_config_output(account_id: Optional[pulumi.Input[str]] = None,
tunnel_id: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetZeroTrustTunnelCloudflaredConfigResult]
func LookupZeroTrustTunnelCloudflaredConfig(ctx *Context, args *LookupZeroTrustTunnelCloudflaredConfigArgs, opts ...InvokeOption) (*LookupZeroTrustTunnelCloudflaredConfigResult, error)
func LookupZeroTrustTunnelCloudflaredConfigOutput(ctx *Context, args *LookupZeroTrustTunnelCloudflaredConfigOutputArgs, opts ...InvokeOption) LookupZeroTrustTunnelCloudflaredConfigResultOutput
> Note: This function is named LookupZeroTrustTunnelCloudflaredConfig
in the Go SDK.
public static class GetZeroTrustTunnelCloudflaredConfig
{
public static Task<GetZeroTrustTunnelCloudflaredConfigResult> InvokeAsync(GetZeroTrustTunnelCloudflaredConfigArgs args, InvokeOptions? opts = null)
public static Output<GetZeroTrustTunnelCloudflaredConfigResult> Invoke(GetZeroTrustTunnelCloudflaredConfigInvokeArgs args, InvokeOptions? opts = null)
}
public static CompletableFuture<GetZeroTrustTunnelCloudflaredConfigResult> getZeroTrustTunnelCloudflaredConfig(GetZeroTrustTunnelCloudflaredConfigArgs args, InvokeOptions options)
public static Output<GetZeroTrustTunnelCloudflaredConfigResult> getZeroTrustTunnelCloudflaredConfig(GetZeroTrustTunnelCloudflaredConfigArgs args, InvokeOptions options)
fn::invoke:
function: cloudflare:index/getZeroTrustTunnelCloudflaredConfig:getZeroTrustTunnelCloudflaredConfig
arguments:
# arguments dictionary
The following arguments are supported:
- account_
id This property is required. str - Identifier
- tunnel_
id This property is required. str - UUID of the tunnel.
getZeroTrustTunnelCloudflaredConfig Result
The following output properties are available:
- Account
Id string - Identifier
- Config
Get
Zero Trust Tunnel Cloudflared Config Config - The tunnel configuration and ingress rules.
- Created
At string - Id string
- The provider-assigned unique ID for this managed resource.
- Source string
- Indicates if this is a locally or remotely configured tunnel. If
local
, manage the tunnel using a YAML file on the origin machine. Ifcloudflare
, manage the tunnel's configuration on the Zero Trust dashboard. Available values: "local", "cloudflare". - Tunnel
Id string - UUID of the tunnel.
- Version int
- The version of the Tunnel Configuration.
- Account
Id string - Identifier
- Config
Get
Zero Trust Tunnel Cloudflared Config Config - The tunnel configuration and ingress rules.
- Created
At string - Id string
- The provider-assigned unique ID for this managed resource.
- Source string
- Indicates if this is a locally or remotely configured tunnel. If
local
, manage the tunnel using a YAML file on the origin machine. Ifcloudflare
, manage the tunnel's configuration on the Zero Trust dashboard. Available values: "local", "cloudflare". - Tunnel
Id string - UUID of the tunnel.
- Version int
- The version of the Tunnel Configuration.
- account
Id String - Identifier
- config
Get
Zero Trust Tunnel Cloudflared Config Config - The tunnel configuration and ingress rules.
- created
At String - id String
- The provider-assigned unique ID for this managed resource.
- source String
- Indicates if this is a locally or remotely configured tunnel. If
local
, manage the tunnel using a YAML file on the origin machine. Ifcloudflare
, manage the tunnel's configuration on the Zero Trust dashboard. Available values: "local", "cloudflare". - tunnel
Id String - UUID of the tunnel.
- version Integer
- The version of the Tunnel Configuration.
- account
Id string - Identifier
- config
Get
Zero Trust Tunnel Cloudflared Config Config - The tunnel configuration and ingress rules.
- created
At string - id string
- The provider-assigned unique ID for this managed resource.
- source string
- Indicates if this is a locally or remotely configured tunnel. If
local
, manage the tunnel using a YAML file on the origin machine. Ifcloudflare
, manage the tunnel's configuration on the Zero Trust dashboard. Available values: "local", "cloudflare". - tunnel
Id string - UUID of the tunnel.
- version number
- The version of the Tunnel Configuration.
- account_
id str - Identifier
- config
Get
Zero Trust Tunnel Cloudflared Config Config - The tunnel configuration and ingress rules.
- created_
at str - id str
- The provider-assigned unique ID for this managed resource.
- source str
- Indicates if this is a locally or remotely configured tunnel. If
local
, manage the tunnel using a YAML file on the origin machine. Ifcloudflare
, manage the tunnel's configuration on the Zero Trust dashboard. Available values: "local", "cloudflare". - tunnel_
id str - UUID of the tunnel.
- version int
- The version of the Tunnel Configuration.
- account
Id String - Identifier
- config Property Map
- The tunnel configuration and ingress rules.
- created
At String - id String
- The provider-assigned unique ID for this managed resource.
- source String
- Indicates if this is a locally or remotely configured tunnel. If
local
, manage the tunnel using a YAML file on the origin machine. Ifcloudflare
, manage the tunnel's configuration on the Zero Trust dashboard. Available values: "local", "cloudflare". - tunnel
Id String - UUID of the tunnel.
- version Number
- The version of the Tunnel Configuration.
Supporting Types
GetZeroTrustTunnelCloudflaredConfigConfig
- Ingresses
This property is required. List<GetZero Trust Tunnel Cloudflared Config Config Ingress> - List of public hostname definitions. At least one ingress rule needs to be defined for the tunnel.
- Origin
Request This property is required. GetZero Trust Tunnel Cloudflared Config Config Origin Request - Configuration parameters for the public hostname specific connection settings between cloudflared and origin server.
- Warp
Routing This property is required. GetZero Trust Tunnel Cloudflared Config Config Warp Routing - Enable private network access from WARP users to private network routes. This is enabled if the tunnel has an assigned route.
- Ingresses
This property is required. []GetZero Trust Tunnel Cloudflared Config Config Ingress - List of public hostname definitions. At least one ingress rule needs to be defined for the tunnel.
- Origin
Request This property is required. GetZero Trust Tunnel Cloudflared Config Config Origin Request - Configuration parameters for the public hostname specific connection settings between cloudflared and origin server.
- Warp
Routing This property is required. GetZero Trust Tunnel Cloudflared Config Config Warp Routing - Enable private network access from WARP users to private network routes. This is enabled if the tunnel has an assigned route.
- ingresses
This property is required. List<GetZero Trust Tunnel Cloudflared Config Config Ingress> - List of public hostname definitions. At least one ingress rule needs to be defined for the tunnel.
- origin
Request This property is required. GetZero Trust Tunnel Cloudflared Config Config Origin Request - Configuration parameters for the public hostname specific connection settings between cloudflared and origin server.
- warp
Routing This property is required. GetZero Trust Tunnel Cloudflared Config Config Warp Routing - Enable private network access from WARP users to private network routes. This is enabled if the tunnel has an assigned route.
- ingresses
This property is required. GetZero Trust Tunnel Cloudflared Config Config Ingress[] - List of public hostname definitions. At least one ingress rule needs to be defined for the tunnel.
- origin
Request This property is required. GetZero Trust Tunnel Cloudflared Config Config Origin Request - Configuration parameters for the public hostname specific connection settings between cloudflared and origin server.
- warp
Routing This property is required. GetZero Trust Tunnel Cloudflared Config Config Warp Routing - Enable private network access from WARP users to private network routes. This is enabled if the tunnel has an assigned route.
- ingresses
This property is required. Sequence[GetZero Trust Tunnel Cloudflared Config Config Ingress] - List of public hostname definitions. At least one ingress rule needs to be defined for the tunnel.
- origin_
request This property is required. GetZero Trust Tunnel Cloudflared Config Config Origin Request - Configuration parameters for the public hostname specific connection settings between cloudflared and origin server.
- warp_
routing This property is required. GetZero Trust Tunnel Cloudflared Config Config Warp Routing - Enable private network access from WARP users to private network routes. This is enabled if the tunnel has an assigned route.
- ingresses
This property is required. List<Property Map> - List of public hostname definitions. At least one ingress rule needs to be defined for the tunnel.
- origin
Request This property is required. Property Map - Configuration parameters for the public hostname specific connection settings between cloudflared and origin server.
- warp
Routing This property is required. Property Map - Enable private network access from WARP users to private network routes. This is enabled if the tunnel has an assigned route.
GetZeroTrustTunnelCloudflaredConfigConfigIngress
- Hostname
This property is required. string - Public hostname for this service.
- Origin
Request This property is required. GetZero Trust Tunnel Cloudflared Config Config Ingress Origin Request - Configuration parameters for the public hostname specific connection settings between cloudflared and origin server.
- Path
This property is required. string - Requests with this path route to this public hostname.
- Service
This property is required. string - Protocol and address of destination server. Supported protocols: http://, https://, unix://, tcp://, ssh://, rdp://, unix+tls://, smb://. Alternatively can return a HTTP status code httpstatus:[code] e.g. 'httpstatus:404'.
- Hostname
This property is required. string - Public hostname for this service.
- Origin
Request This property is required. GetZero Trust Tunnel Cloudflared Config Config Ingress Origin Request - Configuration parameters for the public hostname specific connection settings between cloudflared and origin server.
- Path
This property is required. string - Requests with this path route to this public hostname.
- Service
This property is required. string - Protocol and address of destination server. Supported protocols: http://, https://, unix://, tcp://, ssh://, rdp://, unix+tls://, smb://. Alternatively can return a HTTP status code httpstatus:[code] e.g. 'httpstatus:404'.
- hostname
This property is required. String - Public hostname for this service.
- origin
Request This property is required. GetZero Trust Tunnel Cloudflared Config Config Ingress Origin Request - Configuration parameters for the public hostname specific connection settings between cloudflared and origin server.
- path
This property is required. String - Requests with this path route to this public hostname.
- service
This property is required. String - Protocol and address of destination server. Supported protocols: http://, https://, unix://, tcp://, ssh://, rdp://, unix+tls://, smb://. Alternatively can return a HTTP status code httpstatus:[code] e.g. 'httpstatus:404'.
- hostname
This property is required. string - Public hostname for this service.
- origin
Request This property is required. GetZero Trust Tunnel Cloudflared Config Config Ingress Origin Request - Configuration parameters for the public hostname specific connection settings between cloudflared and origin server.
- path
This property is required. string - Requests with this path route to this public hostname.
- service
This property is required. string - Protocol and address of destination server. Supported protocols: http://, https://, unix://, tcp://, ssh://, rdp://, unix+tls://, smb://. Alternatively can return a HTTP status code httpstatus:[code] e.g. 'httpstatus:404'.
- hostname
This property is required. str - Public hostname for this service.
- origin_
request This property is required. GetZero Trust Tunnel Cloudflared Config Config Ingress Origin Request - Configuration parameters for the public hostname specific connection settings between cloudflared and origin server.
- path
This property is required. str - Requests with this path route to this public hostname.
- service
This property is required. str - Protocol and address of destination server. Supported protocols: http://, https://, unix://, tcp://, ssh://, rdp://, unix+tls://, smb://. Alternatively can return a HTTP status code httpstatus:[code] e.g. 'httpstatus:404'.
- hostname
This property is required. String - Public hostname for this service.
- origin
Request This property is required. Property Map - Configuration parameters for the public hostname specific connection settings between cloudflared and origin server.
- path
This property is required. String - Requests with this path route to this public hostname.
- service
This property is required. String - Protocol and address of destination server. Supported protocols: http://, https://, unix://, tcp://, ssh://, rdp://, unix+tls://, smb://. Alternatively can return a HTTP status code httpstatus:[code] e.g. 'httpstatus:404'.
GetZeroTrustTunnelCloudflaredConfigConfigIngressOriginRequest
- Access
This property is required. GetZero Trust Tunnel Cloudflared Config Config Ingress Origin Request Access - For all L7 requests to this hostname, cloudflared will validate each request's Cf-Access-Jwt-Assertion request header.
- Ca
Pool This property is required. string - Path to the certificate authority (CA) for the certificate of your origin. This option should be used only if your certificate is not signed by Cloudflare.
- Connect
Timeout This property is required. int - Timeout for establishing a new TCP connection to your origin server. This excludes the time taken to establish TLS, which is controlled by tlsTimeout.
- Disable
Chunked Encoding This property is required. bool - Disables chunked transfer encoding. Useful if you are running a WSGI server.
- Http2Origin
This property is required. bool - Attempt to connect to origin using HTTP2. Origin must be configured as https.
- Http
Host Header This property is required. string - Sets the HTTP Host header on requests sent to the local service.
- Keep
Alive Connections This property is required. int - Maximum number of idle keepalive connections between Tunnel and your origin. This does not restrict the total number of concurrent connections.
- Keep
Alive Timeout This property is required. int - Timeout after which an idle keepalive connection can be discarded.
- No
Happy Eyeballs This property is required. bool - Disable the “happy eyeballs” algorithm for IPv4/IPv6 fallback if your local network has misconfigured one of the protocols.
- No
Tls Verify This property is required. bool - Disables TLS verification of the certificate presented by your origin. Will allow any certificate from the origin to be accepted.
- Origin
Server Name This property is required. string - Hostname that cloudflared should expect from your origin server certificate.
- Proxy
Type This property is required. string - cloudflared starts a proxy server to translate HTTP traffic into TCP when proxying, for example, SSH or RDP. This configures what type of proxy will be started. Valid options are: "" for the regular proxy and "socks" for a SOCKS5 proxy.
- Tcp
Keep Alive This property is required. int - The timeout after which a TCP keepalive packet is sent on a connection between Tunnel and the origin server.
- Tls
Timeout This property is required. int - Timeout for completing a TLS handshake to your origin server, if you have chosen to connect Tunnel to an HTTPS server.
- Access
This property is required. GetZero Trust Tunnel Cloudflared Config Config Ingress Origin Request Access - For all L7 requests to this hostname, cloudflared will validate each request's Cf-Access-Jwt-Assertion request header.
- Ca
Pool This property is required. string - Path to the certificate authority (CA) for the certificate of your origin. This option should be used only if your certificate is not signed by Cloudflare.
- Connect
Timeout This property is required. int - Timeout for establishing a new TCP connection to your origin server. This excludes the time taken to establish TLS, which is controlled by tlsTimeout.
- Disable
Chunked Encoding This property is required. bool - Disables chunked transfer encoding. Useful if you are running a WSGI server.
- Http2Origin
This property is required. bool - Attempt to connect to origin using HTTP2. Origin must be configured as https.
- Http
Host Header This property is required. string - Sets the HTTP Host header on requests sent to the local service.
- Keep
Alive Connections This property is required. int - Maximum number of idle keepalive connections between Tunnel and your origin. This does not restrict the total number of concurrent connections.
- Keep
Alive Timeout This property is required. int - Timeout after which an idle keepalive connection can be discarded.
- No
Happy Eyeballs This property is required. bool - Disable the “happy eyeballs” algorithm for IPv4/IPv6 fallback if your local network has misconfigured one of the protocols.
- No
Tls Verify This property is required. bool - Disables TLS verification of the certificate presented by your origin. Will allow any certificate from the origin to be accepted.
- Origin
Server Name This property is required. string - Hostname that cloudflared should expect from your origin server certificate.
- Proxy
Type This property is required. string - cloudflared starts a proxy server to translate HTTP traffic into TCP when proxying, for example, SSH or RDP. This configures what type of proxy will be started. Valid options are: "" for the regular proxy and "socks" for a SOCKS5 proxy.
- Tcp
Keep Alive This property is required. int - The timeout after which a TCP keepalive packet is sent on a connection between Tunnel and the origin server.
- Tls
Timeout This property is required. int - Timeout for completing a TLS handshake to your origin server, if you have chosen to connect Tunnel to an HTTPS server.
- access
This property is required. GetZero Trust Tunnel Cloudflared Config Config Ingress Origin Request Access - For all L7 requests to this hostname, cloudflared will validate each request's Cf-Access-Jwt-Assertion request header.
- ca
Pool This property is required. String - Path to the certificate authority (CA) for the certificate of your origin. This option should be used only if your certificate is not signed by Cloudflare.
- connect
Timeout This property is required. Integer - Timeout for establishing a new TCP connection to your origin server. This excludes the time taken to establish TLS, which is controlled by tlsTimeout.
- disable
Chunked Encoding This property is required. Boolean - Disables chunked transfer encoding. Useful if you are running a WSGI server.
- http2Origin
This property is required. Boolean - Attempt to connect to origin using HTTP2. Origin must be configured as https.
- http
Host Header This property is required. String - Sets the HTTP Host header on requests sent to the local service.
- keep
Alive Connections This property is required. Integer - Maximum number of idle keepalive connections between Tunnel and your origin. This does not restrict the total number of concurrent connections.
- keep
Alive Timeout This property is required. Integer - Timeout after which an idle keepalive connection can be discarded.
- no
Happy Eyeballs This property is required. Boolean - Disable the “happy eyeballs” algorithm for IPv4/IPv6 fallback if your local network has misconfigured one of the protocols.
- no
Tls Verify This property is required. Boolean - Disables TLS verification of the certificate presented by your origin. Will allow any certificate from the origin to be accepted.
- origin
Server Name This property is required. String - Hostname that cloudflared should expect from your origin server certificate.
- proxy
Type This property is required. String - cloudflared starts a proxy server to translate HTTP traffic into TCP when proxying, for example, SSH or RDP. This configures what type of proxy will be started. Valid options are: "" for the regular proxy and "socks" for a SOCKS5 proxy.
- tcp
Keep Alive This property is required. Integer - The timeout after which a TCP keepalive packet is sent on a connection between Tunnel and the origin server.
- tls
Timeout This property is required. Integer - Timeout for completing a TLS handshake to your origin server, if you have chosen to connect Tunnel to an HTTPS server.
- access
This property is required. GetZero Trust Tunnel Cloudflared Config Config Ingress Origin Request Access - For all L7 requests to this hostname, cloudflared will validate each request's Cf-Access-Jwt-Assertion request header.
- ca
Pool This property is required. string - Path to the certificate authority (CA) for the certificate of your origin. This option should be used only if your certificate is not signed by Cloudflare.
- connect
Timeout This property is required. number - Timeout for establishing a new TCP connection to your origin server. This excludes the time taken to establish TLS, which is controlled by tlsTimeout.
- disable
Chunked Encoding This property is required. boolean - Disables chunked transfer encoding. Useful if you are running a WSGI server.
- http2Origin
This property is required. boolean - Attempt to connect to origin using HTTP2. Origin must be configured as https.
- http
Host Header This property is required. string - Sets the HTTP Host header on requests sent to the local service.
- keep
Alive Connections This property is required. number - Maximum number of idle keepalive connections between Tunnel and your origin. This does not restrict the total number of concurrent connections.
- keep
Alive Timeout This property is required. number - Timeout after which an idle keepalive connection can be discarded.
- no
Happy Eyeballs This property is required. boolean - Disable the “happy eyeballs” algorithm for IPv4/IPv6 fallback if your local network has misconfigured one of the protocols.
- no
Tls Verify This property is required. boolean - Disables TLS verification of the certificate presented by your origin. Will allow any certificate from the origin to be accepted.
- origin
Server Name This property is required. string - Hostname that cloudflared should expect from your origin server certificate.
- proxy
Type This property is required. string - cloudflared starts a proxy server to translate HTTP traffic into TCP when proxying, for example, SSH or RDP. This configures what type of proxy will be started. Valid options are: "" for the regular proxy and "socks" for a SOCKS5 proxy.
- tcp
Keep Alive This property is required. number - The timeout after which a TCP keepalive packet is sent on a connection between Tunnel and the origin server.
- tls
Timeout This property is required. number - Timeout for completing a TLS handshake to your origin server, if you have chosen to connect Tunnel to an HTTPS server.
- access
This property is required. GetZero Trust Tunnel Cloudflared Config Config Ingress Origin Request Access - For all L7 requests to this hostname, cloudflared will validate each request's Cf-Access-Jwt-Assertion request header.
- ca_
pool This property is required. str - Path to the certificate authority (CA) for the certificate of your origin. This option should be used only if your certificate is not signed by Cloudflare.
- connect_
timeout This property is required. int - Timeout for establishing a new TCP connection to your origin server. This excludes the time taken to establish TLS, which is controlled by tlsTimeout.
- disable_
chunked_ encoding This property is required. bool - Disables chunked transfer encoding. Useful if you are running a WSGI server.
- http2_
origin This property is required. bool - Attempt to connect to origin using HTTP2. Origin must be configured as https.
- http_
host_ header This property is required. str - Sets the HTTP Host header on requests sent to the local service.
- keep_
alive_ connections This property is required. int - Maximum number of idle keepalive connections between Tunnel and your origin. This does not restrict the total number of concurrent connections.
- keep_
alive_ timeout This property is required. int - Timeout after which an idle keepalive connection can be discarded.
- no_
happy_ eyeballs This property is required. bool - Disable the “happy eyeballs” algorithm for IPv4/IPv6 fallback if your local network has misconfigured one of the protocols.
- no_
tls_ verify This property is required. bool - Disables TLS verification of the certificate presented by your origin. Will allow any certificate from the origin to be accepted.
- origin_
server_ name This property is required. str - Hostname that cloudflared should expect from your origin server certificate.
- proxy_
type This property is required. str - cloudflared starts a proxy server to translate HTTP traffic into TCP when proxying, for example, SSH or RDP. This configures what type of proxy will be started. Valid options are: "" for the regular proxy and "socks" for a SOCKS5 proxy.
- tcp_
keep_ alive This property is required. int - The timeout after which a TCP keepalive packet is sent on a connection between Tunnel and the origin server.
- tls_
timeout This property is required. int - Timeout for completing a TLS handshake to your origin server, if you have chosen to connect Tunnel to an HTTPS server.
- access
This property is required. Property Map - For all L7 requests to this hostname, cloudflared will validate each request's Cf-Access-Jwt-Assertion request header.
- ca
Pool This property is required. String - Path to the certificate authority (CA) for the certificate of your origin. This option should be used only if your certificate is not signed by Cloudflare.
- connect
Timeout This property is required. Number - Timeout for establishing a new TCP connection to your origin server. This excludes the time taken to establish TLS, which is controlled by tlsTimeout.
- disable
Chunked Encoding This property is required. Boolean - Disables chunked transfer encoding. Useful if you are running a WSGI server.
- http2Origin
This property is required. Boolean - Attempt to connect to origin using HTTP2. Origin must be configured as https.
- http
Host Header This property is required. String - Sets the HTTP Host header on requests sent to the local service.
- keep
Alive Connections This property is required. Number - Maximum number of idle keepalive connections between Tunnel and your origin. This does not restrict the total number of concurrent connections.
- keep
Alive Timeout This property is required. Number - Timeout after which an idle keepalive connection can be discarded.
- no
Happy Eyeballs This property is required. Boolean - Disable the “happy eyeballs” algorithm for IPv4/IPv6 fallback if your local network has misconfigured one of the protocols.
- no
Tls Verify This property is required. Boolean - Disables TLS verification of the certificate presented by your origin. Will allow any certificate from the origin to be accepted.
- origin
Server Name This property is required. String - Hostname that cloudflared should expect from your origin server certificate.
- proxy
Type This property is required. String - cloudflared starts a proxy server to translate HTTP traffic into TCP when proxying, for example, SSH or RDP. This configures what type of proxy will be started. Valid options are: "" for the regular proxy and "socks" for a SOCKS5 proxy.
- tcp
Keep Alive This property is required. Number - The timeout after which a TCP keepalive packet is sent on a connection between Tunnel and the origin server.
- tls
Timeout This property is required. Number - Timeout for completing a TLS handshake to your origin server, if you have chosen to connect Tunnel to an HTTPS server.
GetZeroTrustTunnelCloudflaredConfigConfigIngressOriginRequestAccess
This property is required. List<string>- Access applications that are allowed to reach this hostname for this Tunnel. Audience tags can be identified in the dashboard or via the List Access policies API.
- Required
This property is required. bool - Deny traffic that has not fulfilled Access authorization.
- Team
Name This property is required. string
This property is required. []string- Access applications that are allowed to reach this hostname for this Tunnel. Audience tags can be identified in the dashboard or via the List Access policies API.
- Required
This property is required. bool - Deny traffic that has not fulfilled Access authorization.
- Team
Name This property is required. string
This property is required. List<String>- Access applications that are allowed to reach this hostname for this Tunnel. Audience tags can be identified in the dashboard or via the List Access policies API.
- required
This property is required. Boolean - Deny traffic that has not fulfilled Access authorization.
- team
Name This property is required. String
This property is required. string[]- Access applications that are allowed to reach this hostname for this Tunnel. Audience tags can be identified in the dashboard or via the List Access policies API.
- required
This property is required. boolean - Deny traffic that has not fulfilled Access authorization.
- team
Name This property is required. string
This property is required. Sequence[str]- Access applications that are allowed to reach this hostname for this Tunnel. Audience tags can be identified in the dashboard or via the List Access policies API.
- required
This property is required. bool - Deny traffic that has not fulfilled Access authorization.
- team_
name This property is required. str
This property is required. List<String>- Access applications that are allowed to reach this hostname for this Tunnel. Audience tags can be identified in the dashboard or via the List Access policies API.
- required
This property is required. Boolean - Deny traffic that has not fulfilled Access authorization.
- team
Name This property is required. String
GetZeroTrustTunnelCloudflaredConfigConfigOriginRequest
- Access
This property is required. GetZero Trust Tunnel Cloudflared Config Config Origin Request Access - For all L7 requests to this hostname, cloudflared will validate each request's Cf-Access-Jwt-Assertion request header.
- Ca
Pool This property is required. string - Path to the certificate authority (CA) for the certificate of your origin. This option should be used only if your certificate is not signed by Cloudflare.
- Connect
Timeout This property is required. int - Timeout for establishing a new TCP connection to your origin server. This excludes the time taken to establish TLS, which is controlled by tlsTimeout.
- Disable
Chunked Encoding This property is required. bool - Disables chunked transfer encoding. Useful if you are running a WSGI server.
- Http2Origin
This property is required. bool - Attempt to connect to origin using HTTP2. Origin must be configured as https.
- Http
Host Header This property is required. string - Sets the HTTP Host header on requests sent to the local service.
- Keep
Alive Connections This property is required. int - Maximum number of idle keepalive connections between Tunnel and your origin. This does not restrict the total number of concurrent connections.
- Keep
Alive Timeout This property is required. int - Timeout after which an idle keepalive connection can be discarded.
- No
Happy Eyeballs This property is required. bool - Disable the “happy eyeballs” algorithm for IPv4/IPv6 fallback if your local network has misconfigured one of the protocols.
- No
Tls Verify This property is required. bool - Disables TLS verification of the certificate presented by your origin. Will allow any certificate from the origin to be accepted.
- Origin
Server Name This property is required. string - Hostname that cloudflared should expect from your origin server certificate.
- Proxy
Type This property is required. string - cloudflared starts a proxy server to translate HTTP traffic into TCP when proxying, for example, SSH or RDP. This configures what type of proxy will be started. Valid options are: "" for the regular proxy and "socks" for a SOCKS5 proxy.
- Tcp
Keep Alive This property is required. int - The timeout after which a TCP keepalive packet is sent on a connection between Tunnel and the origin server.
- Tls
Timeout This property is required. int - Timeout for completing a TLS handshake to your origin server, if you have chosen to connect Tunnel to an HTTPS server.
- Access
This property is required. GetZero Trust Tunnel Cloudflared Config Config Origin Request Access - For all L7 requests to this hostname, cloudflared will validate each request's Cf-Access-Jwt-Assertion request header.
- Ca
Pool This property is required. string - Path to the certificate authority (CA) for the certificate of your origin. This option should be used only if your certificate is not signed by Cloudflare.
- Connect
Timeout This property is required. int - Timeout for establishing a new TCP connection to your origin server. This excludes the time taken to establish TLS, which is controlled by tlsTimeout.
- Disable
Chunked Encoding This property is required. bool - Disables chunked transfer encoding. Useful if you are running a WSGI server.
- Http2Origin
This property is required. bool - Attempt to connect to origin using HTTP2. Origin must be configured as https.
- Http
Host Header This property is required. string - Sets the HTTP Host header on requests sent to the local service.
- Keep
Alive Connections This property is required. int - Maximum number of idle keepalive connections between Tunnel and your origin. This does not restrict the total number of concurrent connections.
- Keep
Alive Timeout This property is required. int - Timeout after which an idle keepalive connection can be discarded.
- No
Happy Eyeballs This property is required. bool - Disable the “happy eyeballs” algorithm for IPv4/IPv6 fallback if your local network has misconfigured one of the protocols.
- No
Tls Verify This property is required. bool - Disables TLS verification of the certificate presented by your origin. Will allow any certificate from the origin to be accepted.
- Origin
Server Name This property is required. string - Hostname that cloudflared should expect from your origin server certificate.
- Proxy
Type This property is required. string - cloudflared starts a proxy server to translate HTTP traffic into TCP when proxying, for example, SSH or RDP. This configures what type of proxy will be started. Valid options are: "" for the regular proxy and "socks" for a SOCKS5 proxy.
- Tcp
Keep Alive This property is required. int - The timeout after which a TCP keepalive packet is sent on a connection between Tunnel and the origin server.
- Tls
Timeout This property is required. int - Timeout for completing a TLS handshake to your origin server, if you have chosen to connect Tunnel to an HTTPS server.
- access
This property is required. GetZero Trust Tunnel Cloudflared Config Config Origin Request Access - For all L7 requests to this hostname, cloudflared will validate each request's Cf-Access-Jwt-Assertion request header.
- ca
Pool This property is required. String - Path to the certificate authority (CA) for the certificate of your origin. This option should be used only if your certificate is not signed by Cloudflare.
- connect
Timeout This property is required. Integer - Timeout for establishing a new TCP connection to your origin server. This excludes the time taken to establish TLS, which is controlled by tlsTimeout.
- disable
Chunked Encoding This property is required. Boolean - Disables chunked transfer encoding. Useful if you are running a WSGI server.
- http2Origin
This property is required. Boolean - Attempt to connect to origin using HTTP2. Origin must be configured as https.
- http
Host Header This property is required. String - Sets the HTTP Host header on requests sent to the local service.
- keep
Alive Connections This property is required. Integer - Maximum number of idle keepalive connections between Tunnel and your origin. This does not restrict the total number of concurrent connections.
- keep
Alive Timeout This property is required. Integer - Timeout after which an idle keepalive connection can be discarded.
- no
Happy Eyeballs This property is required. Boolean - Disable the “happy eyeballs” algorithm for IPv4/IPv6 fallback if your local network has misconfigured one of the protocols.
- no
Tls Verify This property is required. Boolean - Disables TLS verification of the certificate presented by your origin. Will allow any certificate from the origin to be accepted.
- origin
Server Name This property is required. String - Hostname that cloudflared should expect from your origin server certificate.
- proxy
Type This property is required. String - cloudflared starts a proxy server to translate HTTP traffic into TCP when proxying, for example, SSH or RDP. This configures what type of proxy will be started. Valid options are: "" for the regular proxy and "socks" for a SOCKS5 proxy.
- tcp
Keep Alive This property is required. Integer - The timeout after which a TCP keepalive packet is sent on a connection between Tunnel and the origin server.
- tls
Timeout This property is required. Integer - Timeout for completing a TLS handshake to your origin server, if you have chosen to connect Tunnel to an HTTPS server.
- access
This property is required. GetZero Trust Tunnel Cloudflared Config Config Origin Request Access - For all L7 requests to this hostname, cloudflared will validate each request's Cf-Access-Jwt-Assertion request header.
- ca
Pool This property is required. string - Path to the certificate authority (CA) for the certificate of your origin. This option should be used only if your certificate is not signed by Cloudflare.
- connect
Timeout This property is required. number - Timeout for establishing a new TCP connection to your origin server. This excludes the time taken to establish TLS, which is controlled by tlsTimeout.
- disable
Chunked Encoding This property is required. boolean - Disables chunked transfer encoding. Useful if you are running a WSGI server.
- http2Origin
This property is required. boolean - Attempt to connect to origin using HTTP2. Origin must be configured as https.
- http
Host Header This property is required. string - Sets the HTTP Host header on requests sent to the local service.
- keep
Alive Connections This property is required. number - Maximum number of idle keepalive connections between Tunnel and your origin. This does not restrict the total number of concurrent connections.
- keep
Alive Timeout This property is required. number - Timeout after which an idle keepalive connection can be discarded.
- no
Happy Eyeballs This property is required. boolean - Disable the “happy eyeballs” algorithm for IPv4/IPv6 fallback if your local network has misconfigured one of the protocols.
- no
Tls Verify This property is required. boolean - Disables TLS verification of the certificate presented by your origin. Will allow any certificate from the origin to be accepted.
- origin
Server Name This property is required. string - Hostname that cloudflared should expect from your origin server certificate.
- proxy
Type This property is required. string - cloudflared starts a proxy server to translate HTTP traffic into TCP when proxying, for example, SSH or RDP. This configures what type of proxy will be started. Valid options are: "" for the regular proxy and "socks" for a SOCKS5 proxy.
- tcp
Keep Alive This property is required. number - The timeout after which a TCP keepalive packet is sent on a connection between Tunnel and the origin server.
- tls
Timeout This property is required. number - Timeout for completing a TLS handshake to your origin server, if you have chosen to connect Tunnel to an HTTPS server.
- access
This property is required. GetZero Trust Tunnel Cloudflared Config Config Origin Request Access - For all L7 requests to this hostname, cloudflared will validate each request's Cf-Access-Jwt-Assertion request header.
- ca_
pool This property is required. str - Path to the certificate authority (CA) for the certificate of your origin. This option should be used only if your certificate is not signed by Cloudflare.
- connect_
timeout This property is required. int - Timeout for establishing a new TCP connection to your origin server. This excludes the time taken to establish TLS, which is controlled by tlsTimeout.
- disable_
chunked_ encoding This property is required. bool - Disables chunked transfer encoding. Useful if you are running a WSGI server.
- http2_
origin This property is required. bool - Attempt to connect to origin using HTTP2. Origin must be configured as https.
- http_
host_ header This property is required. str - Sets the HTTP Host header on requests sent to the local service.
- keep_
alive_ connections This property is required. int - Maximum number of idle keepalive connections between Tunnel and your origin. This does not restrict the total number of concurrent connections.
- keep_
alive_ timeout This property is required. int - Timeout after which an idle keepalive connection can be discarded.
- no_
happy_ eyeballs This property is required. bool - Disable the “happy eyeballs” algorithm for IPv4/IPv6 fallback if your local network has misconfigured one of the protocols.
- no_
tls_ verify This property is required. bool - Disables TLS verification of the certificate presented by your origin. Will allow any certificate from the origin to be accepted.
- origin_
server_ name This property is required. str - Hostname that cloudflared should expect from your origin server certificate.
- proxy_
type This property is required. str - cloudflared starts a proxy server to translate HTTP traffic into TCP when proxying, for example, SSH or RDP. This configures what type of proxy will be started. Valid options are: "" for the regular proxy and "socks" for a SOCKS5 proxy.
- tcp_
keep_ alive This property is required. int - The timeout after which a TCP keepalive packet is sent on a connection between Tunnel and the origin server.
- tls_
timeout This property is required. int - Timeout for completing a TLS handshake to your origin server, if you have chosen to connect Tunnel to an HTTPS server.
- access
This property is required. Property Map - For all L7 requests to this hostname, cloudflared will validate each request's Cf-Access-Jwt-Assertion request header.
- ca
Pool This property is required. String - Path to the certificate authority (CA) for the certificate of your origin. This option should be used only if your certificate is not signed by Cloudflare.
- connect
Timeout This property is required. Number - Timeout for establishing a new TCP connection to your origin server. This excludes the time taken to establish TLS, which is controlled by tlsTimeout.
- disable
Chunked Encoding This property is required. Boolean - Disables chunked transfer encoding. Useful if you are running a WSGI server.
- http2Origin
This property is required. Boolean - Attempt to connect to origin using HTTP2. Origin must be configured as https.
- http
Host Header This property is required. String - Sets the HTTP Host header on requests sent to the local service.
- keep
Alive Connections This property is required. Number - Maximum number of idle keepalive connections between Tunnel and your origin. This does not restrict the total number of concurrent connections.
- keep
Alive Timeout This property is required. Number - Timeout after which an idle keepalive connection can be discarded.
- no
Happy Eyeballs This property is required. Boolean - Disable the “happy eyeballs” algorithm for IPv4/IPv6 fallback if your local network has misconfigured one of the protocols.
- no
Tls Verify This property is required. Boolean - Disables TLS verification of the certificate presented by your origin. Will allow any certificate from the origin to be accepted.
- origin
Server Name This property is required. String - Hostname that cloudflared should expect from your origin server certificate.
- proxy
Type This property is required. String - cloudflared starts a proxy server to translate HTTP traffic into TCP when proxying, for example, SSH or RDP. This configures what type of proxy will be started. Valid options are: "" for the regular proxy and "socks" for a SOCKS5 proxy.
- tcp
Keep Alive This property is required. Number - The timeout after which a TCP keepalive packet is sent on a connection between Tunnel and the origin server.
- tls
Timeout This property is required. Number - Timeout for completing a TLS handshake to your origin server, if you have chosen to connect Tunnel to an HTTPS server.
GetZeroTrustTunnelCloudflaredConfigConfigOriginRequestAccess
This property is required. List<string>- Access applications that are allowed to reach this hostname for this Tunnel. Audience tags can be identified in the dashboard or via the List Access policies API.
- Required
This property is required. bool - Deny traffic that has not fulfilled Access authorization.
- Team
Name This property is required. string
This property is required. []string- Access applications that are allowed to reach this hostname for this Tunnel. Audience tags can be identified in the dashboard or via the List Access policies API.
- Required
This property is required. bool - Deny traffic that has not fulfilled Access authorization.
- Team
Name This property is required. string
This property is required. List<String>- Access applications that are allowed to reach this hostname for this Tunnel. Audience tags can be identified in the dashboard or via the List Access policies API.
- required
This property is required. Boolean - Deny traffic that has not fulfilled Access authorization.
- team
Name This property is required. String
This property is required. string[]- Access applications that are allowed to reach this hostname for this Tunnel. Audience tags can be identified in the dashboard or via the List Access policies API.
- required
This property is required. boolean - Deny traffic that has not fulfilled Access authorization.
- team
Name This property is required. string
This property is required. Sequence[str]- Access applications that are allowed to reach this hostname for this Tunnel. Audience tags can be identified in the dashboard or via the List Access policies API.
- required
This property is required. bool - Deny traffic that has not fulfilled Access authorization.
- team_
name This property is required. str
This property is required. List<String>- Access applications that are allowed to reach this hostname for this Tunnel. Audience tags can be identified in the dashboard or via the List Access policies API.
- required
This property is required. Boolean - Deny traffic that has not fulfilled Access authorization.
- team
Name This property is required. String
GetZeroTrustTunnelCloudflaredConfigConfigWarpRouting
- Enabled
This property is required. bool
- Enabled
This property is required. bool
- enabled
This property is required. Boolean
- enabled
This property is required. boolean
- enabled
This property is required. bool
- enabled
This property is required. Boolean
Package Details
- Repository
- Cloudflare pulumi/pulumi-cloudflare
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
cloudflare
Terraform Provider.