import * as pulumi from "@pulumi/pulumi"; /** * The zia_atp_settings resource manages Advanced Threat Protection (ATP) settings in the Zscaler Internet Access (ZIA) cloud service. ATP settings control which threat categories are blocked or captured (logged) for packet capture analysis. This is a singleton resource. * * For more information, see the [ZIA Advanced Threat Protection documentation](https://help.zscaler.com/zia/about-advanced-threat-protection-policy). * * ## Example Usage * ### Configure ATP Settings * * ```typescript * import * as zia from "@bdzscaler/pulumi-zia"; * * const example = new zia.AtpSettings("example", { * malwareSitesBlocked: true, * malwareSitesCapture: true, * knownPhishingSitesBlocked: true, * knownPhishingSitesCapture: true, * cmdCtlServerBlocked: true, * cryptoMiningBlocked: true, * torBlocked: true, * riskTolerance: 0, * }); * ``` * * > This is a singleton resource. Import is not applicable. */ export declare class AtpSettings extends pulumi.CustomResource { /** * Get an existing AtpSettings resource's state with the given name, ID, and optional extra * properties used to qualify the lookup. * * @param name The _unique_ name of the resulting resource. * @param id The _unique_ provider ID of the resource to lookup. * @param opts Optional settings to control the behavior of the CustomResource. */ static get(name: string, id: pulumi.Input, opts?: pulumi.CustomResourceOptions): AtpSettings; /** * Returns true if the given object is an instance of AtpSettings. This is designed to work even * when multiple copies of the Pulumi SDK have been loaded into the same process. */ static isInstance(obj: any): obj is AtpSettings; /** * Block ActiveX controls. */ readonly activexBlocked: pulumi.Output; /** * Enable packet capture for ActiveX events. */ readonly activexCapture: pulumi.Output; /** * Block adware/spyware sites. */ readonly adSpywareSitesBlocked: pulumi.Output; /** * Enable packet capture for adware/spyware site events. */ readonly adSpywareSitesCapture: pulumi.Output; /** * Enable alerts for unknown or suspicious C2 traffic. */ readonly alertForUnknownSuspiciousC2Traffic: pulumi.Output; /** * Block anonymizers. */ readonly anonymizerBlocked: pulumi.Output; /** * Enable packet capture for anonymizer events. */ readonly anonymizerCapture: pulumi.Output; /** * Block BitTorrent traffic. */ readonly bitTorrentBlocked: pulumi.Output; /** * Enable packet capture for BitTorrent events. */ readonly bitTorrentCapture: pulumi.Output; /** * Enable packet capture for blocked countries events. */ readonly blockCountriesCapture: pulumi.Output; /** * List of countries (ISO 3166-1 alpha-2 codes) to block. */ readonly blockedCountries: pulumi.Output; /** * Block browser exploits. */ readonly browserExploitsBlocked: pulumi.Output; /** * Enable packet capture for browser exploit events. */ readonly browserExploitsCapture: pulumi.Output; /** * Block known command-and-control servers. */ readonly cmdCtlServerBlocked: pulumi.Output; /** * Enable packet capture for command-and-control server events. */ readonly cmdCtlServerCapture: pulumi.Output; /** * Block command-and-control traffic. */ readonly cmdCtlTrafficBlocked: pulumi.Output; /** * Enable packet capture for command-and-control traffic events. */ readonly cmdCtlTrafficCapture: pulumi.Output; /** * Block cookie stealing attempts. */ readonly cookieStealingBlocked: pulumi.Output; /** * Enable packet capture for cookie stealing events. */ readonly cookieStealingPcapEnabled: pulumi.Output; /** * Block crypto mining traffic. */ readonly cryptoMiningBlocked: pulumi.Output; /** * Enable packet capture for crypto mining events. */ readonly cryptoMiningCapture: pulumi.Output; /** * Block domain generation algorithm (DGA) domains. */ readonly dgaDomainsBlocked: pulumi.Output; /** * Enable packet capture for DGA domain events. */ readonly dgaDomainsCapture: pulumi.Output; /** * Block file format vulnerabilities. */ readonly fileFormatVunerabilitesBlocked: pulumi.Output; /** * Enable packet capture for file format vulnerability events. */ readonly fileFormatVunerabilitesCapture: pulumi.Output; /** * Block Google Talk traffic. */ readonly googleTalkBlocked: pulumi.Output; /** * Enable packet capture for Google Talk events. */ readonly googleTalkCapture: pulumi.Output; /** * Block IRC tunnelling. */ readonly ircTunnellingBlocked: pulumi.Output; /** * Enable packet capture for IRC tunnelling events. */ readonly ircTunnellingCapture: pulumi.Output; /** * Block known phishing sites. */ readonly knownPhishingSitesBlocked: pulumi.Output; /** * Enable packet capture for known phishing site events. */ readonly knownPhishingSitesCapture: pulumi.Output; /** * Enable packet capture for malicious URL events. */ readonly maliciousUrlsCapture: pulumi.Output; /** * Block known malware sites. */ readonly malwareSitesBlocked: pulumi.Output; /** * Enable packet capture for malware site events. */ readonly malwareSitesCapture: pulumi.Output; /** * Block potentially malicious requests. */ readonly potentialMaliciousRequestsBlocked: pulumi.Output; /** * Enable packet capture for potentially malicious request events. */ readonly potentialMaliciousRequestsCapture: pulumi.Output; /** * The internal resource identifier for the ATP settings. */ readonly resourceId: pulumi.Output; /** * Risk tolerance level. Controls the sensitivity for detecting threats. */ readonly riskTolerance: pulumi.Output; /** * Enable packet capture for risk tolerance events. */ readonly riskToleranceCapture: pulumi.Output; /** * Block SSH tunnelling. */ readonly sshTunnellingBlocked: pulumi.Output; /** * Enable packet capture for SSH tunnelling events. */ readonly sshTunnellingCapture: pulumi.Output; /** * Block suspect adware/spyware sites. */ readonly suspectAdwareSpywareSitesBlocked: pulumi.Output; /** * Enable packet capture for suspect adware/spyware site events. */ readonly suspectAdwareSpywareSitesCapture: pulumi.Output; /** * Block suspected phishing sites. */ readonly suspectedPhishingSitesBlocked: pulumi.Output; /** * Enable packet capture for suspected phishing site events. */ readonly suspectedPhishingSitesCapture: pulumi.Output; /** * Block Tor traffic. */ readonly torBlocked: pulumi.Output; /** * Enable packet capture for Tor events. */ readonly torCapture: pulumi.Output; /** * Block web spam. */ readonly webSpamBlocked: pulumi.Output; /** * Enable packet capture for web spam events. */ readonly webSpamCapture: pulumi.Output; /** * Create a AtpSettings resource with the given unique name, arguments, and options. * * @param name The _unique_ name of the resource. * @param args The arguments to use to populate this resource's properties. * @param opts A bag of options that control this resource's behavior. */ constructor(name: string, args?: AtpSettingsArgs, opts?: pulumi.CustomResourceOptions); } /** * The set of arguments for constructing a AtpSettings resource. */ export interface AtpSettingsArgs { /** * Block ActiveX controls. */ activexBlocked?: pulumi.Input; /** * Enable packet capture for ActiveX events. */ activexCapture?: pulumi.Input; /** * Block adware/spyware sites. */ adSpywareSitesBlocked?: pulumi.Input; /** * Enable packet capture for adware/spyware site events. */ adSpywareSitesCapture?: pulumi.Input; /** * Enable alerts for unknown or suspicious C2 traffic. */ alertForUnknownSuspiciousC2Traffic?: pulumi.Input; /** * Block anonymizers. */ anonymizerBlocked?: pulumi.Input; /** * Enable packet capture for anonymizer events. */ anonymizerCapture?: pulumi.Input; /** * Block BitTorrent traffic. */ bitTorrentBlocked?: pulumi.Input; /** * Enable packet capture for BitTorrent events. */ bitTorrentCapture?: pulumi.Input; /** * Enable packet capture for blocked countries events. */ blockCountriesCapture?: pulumi.Input; /** * List of countries (ISO 3166-1 alpha-2 codes) to block. */ blockedCountries?: pulumi.Input[] | undefined>; /** * Block browser exploits. */ browserExploitsBlocked?: pulumi.Input; /** * Enable packet capture for browser exploit events. */ browserExploitsCapture?: pulumi.Input; /** * Block known command-and-control servers. */ cmdCtlServerBlocked?: pulumi.Input; /** * Enable packet capture for command-and-control server events. */ cmdCtlServerCapture?: pulumi.Input; /** * Block command-and-control traffic. */ cmdCtlTrafficBlocked?: pulumi.Input; /** * Enable packet capture for command-and-control traffic events. */ cmdCtlTrafficCapture?: pulumi.Input; /** * Block cookie stealing attempts. */ cookieStealingBlocked?: pulumi.Input; /** * Enable packet capture for cookie stealing events. */ cookieStealingPcapEnabled?: pulumi.Input; /** * Block crypto mining traffic. */ cryptoMiningBlocked?: pulumi.Input; /** * Enable packet capture for crypto mining events. */ cryptoMiningCapture?: pulumi.Input; /** * Block domain generation algorithm (DGA) domains. */ dgaDomainsBlocked?: pulumi.Input; /** * Enable packet capture for DGA domain events. */ dgaDomainsCapture?: pulumi.Input; /** * Block file format vulnerabilities. */ fileFormatVunerabilitesBlocked?: pulumi.Input; /** * Enable packet capture for file format vulnerability events. */ fileFormatVunerabilitesCapture?: pulumi.Input; /** * Block Google Talk traffic. */ googleTalkBlocked?: pulumi.Input; /** * Enable packet capture for Google Talk events. */ googleTalkCapture?: pulumi.Input; /** * Block IRC tunnelling. */ ircTunnellingBlocked?: pulumi.Input; /** * Enable packet capture for IRC tunnelling events. */ ircTunnellingCapture?: pulumi.Input; /** * Block known phishing sites. */ knownPhishingSitesBlocked?: pulumi.Input; /** * Enable packet capture for known phishing site events. */ knownPhishingSitesCapture?: pulumi.Input; /** * Enable packet capture for malicious URL events. */ maliciousUrlsCapture?: pulumi.Input; /** * Block known malware sites. */ malwareSitesBlocked?: pulumi.Input; /** * Enable packet capture for malware site events. */ malwareSitesCapture?: pulumi.Input; /** * Block potentially malicious requests. */ potentialMaliciousRequestsBlocked?: pulumi.Input; /** * Enable packet capture for potentially malicious request events. */ potentialMaliciousRequestsCapture?: pulumi.Input; /** * Risk tolerance level. Controls the sensitivity for detecting threats. */ riskTolerance?: pulumi.Input; /** * Enable packet capture for risk tolerance events. */ riskToleranceCapture?: pulumi.Input; /** * Block SSH tunnelling. */ sshTunnellingBlocked?: pulumi.Input; /** * Enable packet capture for SSH tunnelling events. */ sshTunnellingCapture?: pulumi.Input; /** * Block suspect adware/spyware sites. */ suspectAdwareSpywareSitesBlocked?: pulumi.Input; /** * Enable packet capture for suspect adware/spyware site events. */ suspectAdwareSpywareSitesCapture?: pulumi.Input; /** * Block suspected phishing sites. */ suspectedPhishingSitesBlocked?: pulumi.Input; /** * Enable packet capture for suspected phishing site events. */ suspectedPhishingSitesCapture?: pulumi.Input; /** * Block Tor traffic. */ torBlocked?: pulumi.Input; /** * Enable packet capture for Tor events. */ torCapture?: pulumi.Input; /** * Block web spam. */ webSpamBlocked?: pulumi.Input; /** * Enable packet capture for web spam events. */ webSpamCapture?: pulumi.Input; } //# sourceMappingURL=atpSettings.d.ts.map