IP geo

akamai_appsec_ip_geo

Get details about your IP/Geo settings for your network or client lists.

data "akamai_appsec_ip_geo" "my_ip_geo_settings" {
  config_id          = 12345
  security_policy_id = "abc1_234567"
}

output "my_ip_geo_list" {
  value = data.akamai_appsec_ip_geo.my_ip_geo_settings
}

my_ip_geo_settings = {
  asn_controls               = [
    {
      action            = "deny"
      asn_network_lists = ["78901_ASNLIST1", "76543_ASNLIST2"]
    },
  ]
  block_action               = null
  config_id                  = 12345
  exception_ip_network_lists = []
  geo_controls               = [
    {
      action            = "deny"
      geo_network_lists = ["12345_EMEAALLOW1", "23456_EMEAALLOW2"]
    },
  ]
  id                         = "12345"
  ip_controls                = [
    {
      action           = ""
      ip_network_lists = ["98765_IPALLOWLIST1", "87654_IPALLOWLIST1"]
    },
  ]
  mode                       = "block"
  security_policy_id         = "abcd_123456"
  ukraine_geo_control_action = "alert"
}

Arguments

Pass your security configuration and policy IDs to get details about your lists.

Argument	Required	Description
`config_id`	✔️	Your security configuration ID.
`security_policy_id`	✔️	Your security policy ID.

Attributes

Returned are details about your available network lists by type.

Note: There is an id attribute returned. It is an ID for the run of the data source and is not needed downstream anywhere.

Attribute	Description
`config_id`	Your security configuration's ID.
`security_policy_id`	Your security policy ID.
`mode`	The IP/Geo firewall actions. Possible values are: `block`. Prevents networks on the IP and geographic network and client lists from passing through the firewall. `allow`. Allows networks on the IP and geographic network and client lists to pass through the firewall.
`asn_controls`	An object that details the action and which lists to apply the action to. `asn_network_lists`. A list of your ASN network or client lists. `action`. The action to take against the given lists. Possible values are: `deny`. Default. Blocked traffic gets a 403 response. `deny_custom_{custom_deny_id}`. Blocked traffic gets a customized deny response.
`geo_controls`	An object that details the action and which lists to apply the action to. `geo_network_lists`. A list of your Geo network or client lists. `action`. The action to take against the given lists.Possible values are: `deny`. Default. Blocked traffic gets a 403 response. `deny_custom_{custom_deny_id}`. Blocked traffic gets a customized deny response.
`ip_controls`	An object that details the action and which lists to apply the action to. `ip_network_lists`. A list of your IP network or client lists. `action`. The action to take against the given lists.Possible values are: `deny`. Default. Blocked traffic gets a 403 response. `deny_custom_{custom_deny_id}`. Blocked traffic gets a customized deny response.
`ukraine_geo_control_action`	The action settings for Ukraine Geo control. Possible values are: `alert` `deny` `done`
`exception_ip_network_lists`	The network or client lists allowed through the firewall regardless of the values assigned to `mode`, `geo_network_lists`, and `ip_network_lists`.

Updated 11 days ago