import * as pulumi from "@pulumi/pulumi";
import * as inputs from "./types/input";
import * as outputs from "./types/output";
/**
 * ## Example Usage
 *
 * ## Import
 *
 * ```sh
 * $ pulumi import cloudflare:index/zeroTrustGatewayPolicy:ZeroTrustGatewayPolicy example '<account_id>/<rule_id>'
 * ```
 */
export declare class ZeroTrustGatewayPolicy extends pulumi.CustomResource {
    /**
     * Get an existing ZeroTrustGatewayPolicy resource's state with the given name, ID, and optional extra
     * properties used to qualify the lookup.
     *
     * @param name The _unique_ name of the resulting resource.
     * @param id The _unique_ provider ID of the resource to lookup.
     * @param state Any extra arguments used during the lookup.
     * @param opts Optional settings to control the behavior of the CustomResource.
     */
    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: ZeroTrustGatewayPolicyState, opts?: pulumi.CustomResourceOptions): ZeroTrustGatewayPolicy;
    /**
     * Returns true if the given object is an instance of ZeroTrustGatewayPolicy.  This is designed to work even
     * when multiple copies of the Pulumi SDK have been loaded into the same process.
     */
    static isInstance(obj: any): obj is ZeroTrustGatewayPolicy;
    readonly accountId: pulumi.Output<string>;
    /**
     * The action to preform when the associated traffic, identity, and device posture expressions are either absent or evaluate to `true`.
     * Available values: "on", "off", "allow", "block", "scan", "noscan", "safesearch", "ytrestricted", "isolate", "noisolate", "override", "l4Override", "egress", "resolve", "quarantine", "redirect".
     */
    readonly action: pulumi.Output<string>;
    readonly createdAt: pulumi.Output<string>;
    /**
     * Date of deletion, if any.
     */
    readonly deletedAt: pulumi.Output<string>;
    /**
     * The description of the rule.
     */
    readonly description: pulumi.Output<string | undefined>;
    /**
     * The wirefilter expression used for device posture check matching.
     */
    readonly devicePosture: pulumi.Output<string>;
    /**
     * True if the rule is enabled.
     */
    readonly enabled: pulumi.Output<boolean>;
    /**
     * The expiration time stamp and default duration of a DNS policy. Takes
     * precedence over the policy's `schedule` configuration, if any.
     */
    readonly expiration: pulumi.Output<outputs.ZeroTrustGatewayPolicyExpiration>;
    /**
     * The protocol or layer to evaluate the traffic, identity, and device posture expressions.
     */
    readonly filters: pulumi.Output<string[] | undefined>;
    /**
     * The wirefilter expression used for identity matching.
     */
    readonly identity: pulumi.Output<string>;
    /**
     * The name of the rule.
     */
    readonly name: pulumi.Output<string>;
    readonly precedence: pulumi.Output<number | undefined>;
    /**
     * Additional settings that modify the rule's action.
     */
    readonly ruleSettings: pulumi.Output<outputs.ZeroTrustGatewayPolicyRuleSettings>;
    /**
     * The schedule for activating DNS policies. This does not apply to HTTP or network policies.
     */
    readonly schedule: pulumi.Output<outputs.ZeroTrustGatewayPolicySchedule | undefined>;
    /**
     * The wirefilter expression used for traffic matching.
     */
    readonly traffic: pulumi.Output<string>;
    readonly updatedAt: pulumi.Output<string>;
    /**
     * version number of the rule
     */
    readonly version: pulumi.Output<number>;
    /**
     * Create a ZeroTrustGatewayPolicy resource with the given unique name, arguments, and options.
     *
     * @param name The _unique_ name of the resource.
     * @param args The arguments to use to populate this resource's properties.
     * @param opts A bag of options that control this resource's behavior.
     */
    constructor(name: string, args: ZeroTrustGatewayPolicyArgs, opts?: pulumi.CustomResourceOptions);
}
/**
 * Input properties used for looking up and filtering ZeroTrustGatewayPolicy resources.
 */
export interface ZeroTrustGatewayPolicyState {
    accountId?: pulumi.Input<string>;
    /**
     * The action to preform when the associated traffic, identity, and device posture expressions are either absent or evaluate to `true`.
     * Available values: "on", "off", "allow", "block", "scan", "noscan", "safesearch", "ytrestricted", "isolate", "noisolate", "override", "l4Override", "egress", "resolve", "quarantine", "redirect".
     */
    action?: pulumi.Input<string>;
    createdAt?: pulumi.Input<string>;
    /**
     * Date of deletion, if any.
     */
    deletedAt?: pulumi.Input<string>;
    /**
     * The description of the rule.
     */
    description?: pulumi.Input<string>;
    /**
     * The wirefilter expression used for device posture check matching.
     */
    devicePosture?: pulumi.Input<string>;
    /**
     * True if the rule is enabled.
     */
    enabled?: pulumi.Input<boolean>;
    /**
     * The expiration time stamp and default duration of a DNS policy. Takes
     * precedence over the policy's `schedule` configuration, if any.
     */
    expiration?: pulumi.Input<inputs.ZeroTrustGatewayPolicyExpiration>;
    /**
     * The protocol or layer to evaluate the traffic, identity, and device posture expressions.
     */
    filters?: pulumi.Input<pulumi.Input<string>[]>;
    /**
     * The wirefilter expression used for identity matching.
     */
    identity?: pulumi.Input<string>;
    /**
     * The name of the rule.
     */
    name?: pulumi.Input<string>;
    precedence?: pulumi.Input<number>;
    /**
     * Additional settings that modify the rule's action.
     */
    ruleSettings?: pulumi.Input<inputs.ZeroTrustGatewayPolicyRuleSettings>;
    /**
     * The schedule for activating DNS policies. This does not apply to HTTP or network policies.
     */
    schedule?: pulumi.Input<inputs.ZeroTrustGatewayPolicySchedule>;
    /**
     * The wirefilter expression used for traffic matching.
     */
    traffic?: pulumi.Input<string>;
    updatedAt?: pulumi.Input<string>;
    /**
     * version number of the rule
     */
    version?: pulumi.Input<number>;
}
/**
 * The set of arguments for constructing a ZeroTrustGatewayPolicy resource.
 */
export interface ZeroTrustGatewayPolicyArgs {
    accountId: pulumi.Input<string>;
    /**
     * The action to preform when the associated traffic, identity, and device posture expressions are either absent or evaluate to `true`.
     * Available values: "on", "off", "allow", "block", "scan", "noscan", "safesearch", "ytrestricted", "isolate", "noisolate", "override", "l4Override", "egress", "resolve", "quarantine", "redirect".
     */
    action: pulumi.Input<string>;
    /**
     * The description of the rule.
     */
    description?: pulumi.Input<string>;
    /**
     * The wirefilter expression used for device posture check matching.
     */
    devicePosture?: pulumi.Input<string>;
    /**
     * True if the rule is enabled.
     */
    enabled?: pulumi.Input<boolean>;
    /**
     * The expiration time stamp and default duration of a DNS policy. Takes
     * precedence over the policy's `schedule` configuration, if any.
     */
    expiration?: pulumi.Input<inputs.ZeroTrustGatewayPolicyExpiration>;
    /**
     * The protocol or layer to evaluate the traffic, identity, and device posture expressions.
     */
    filters?: pulumi.Input<pulumi.Input<string>[]>;
    /**
     * The wirefilter expression used for identity matching.
     */
    identity?: pulumi.Input<string>;
    /**
     * The name of the rule.
     */
    name: pulumi.Input<string>;
    precedence?: pulumi.Input<number>;
    /**
     * Additional settings that modify the rule's action.
     */
    ruleSettings?: pulumi.Input<inputs.ZeroTrustGatewayPolicyRuleSettings>;
    /**
     * The schedule for activating DNS policies. This does not apply to HTTP or network policies.
     */
    schedule?: pulumi.Input<inputs.ZeroTrustGatewayPolicySchedule>;
    /**
     * The wirefilter expression used for traffic matching.
     */
    traffic?: pulumi.Input<string>;
}