IP Geo

akamai_appsec_ip_geo

Create, update, or delete the IP/Geo settings for your network and client lists. To delete your settings, run terraform destroy.

resource "akamai_appsec_ip_geo" "my_ip_geo_settings" {
  config_id                  = 12345
  security_policy_id         = "abc1_234567"
  mode                       = "allow"
  geo_network_lists          = ["12345_EMEAALLOW1", "23456_EMEAALLOW2"]
  ip_network_lists           = ["98765_IPALLOWLIST1", "87654_IPALLOWLIST1"]
  exception_ip_network_lists = ["34567_EXCEPTIONLIST1", "45678_EXCEPTIONLIST1"]
}

Arguments

Pass your config and security policy IDs along with the firewall action mode to create or update your IP/GEO settings.

Attribute	Required	Description
`config_id`	✔️	Your security configuration's ID.
`security_policy_id`	✔️	Your security policy ID.
`mode`	✔️	The IP/Geo firewall actions. Possible values are: `block`. Prevents networks on the IP and geographic network lists from passing through the firewall. `allow`. Allows networks on the IP and geographic network to pass through the firewall.
`asn_network_lists`		A set of your ASN network or client lists.
`exception_ip_network_lists`		A list of network or client lists allowed through the firewall regardless of the values assigned to `mode`, `geo_network_lists`, and `ip_network_lists`.
`geo_network_lists`		A list of your Geo network or client lists.
`ip_network_lists`		A list of your IP network or client lists.
`ukraine_geo_control_action`		The action settings for Ukraine Geo control. Possible values are: `alert` `deny` `done`

Attributes

There is no standard output for this resource, but setting an output method returns these attributes.

Attribute	Description
`asn_network_lists`	A list of available ASN network or client lists.
`config_id`	Your security configuration's ID.
`exception_ip_network_lists`	The network or client lists allowed through the firewall regardless of the values assigned to `mode`, `geo_network_lists`, and `ip_network_lists`.
`geo_network_lists`	A list of available Geo network or client lists.
`ip_network_lists`	A list of available IP network or client lists.
`mode`	The IP/Geo firewall actions. Possible values are: `block`. Prevents networks on the IP and geographic network and client lists from passing through the firewall. `allow`. Allows networks on the IP and geographic network and client lists to pass through the firewall.
`security_policy_id`	Your security policy ID.
`ukraine_geo_control_action`	The action settings for Ukraine Geo control. Possible values are: `alert` `deny` `done`

Updated 2 months ago