github/terraform-provider-unifi
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
b9284f7758544f495d244133d459ffd530c9e7ed
terraform-provider-unifi/examples/resources/unifi_setting_usg/resource.tf
Mateusz Filipowicz b9284f7758 docs: improve documentation for 1.0.0 release (#75) 
* docs: add examples and recreate TF documentation

* update readme

* add information about experimental support of firewall zones
2025-03-22 19:13:16 +01:00

90 lines
2.1 KiB
HCL
Raw Blame History

resource "unifi_setting_usg" "example" {
# Geo IP Filtering Configuration
geo_ip_filtering = {
block = "block" # Options: "block" or "allow"
countries = ["UK", "CN", "AU"]
traffic_direction = "both" # Options: "both", "ingress", or "egress"
}
# UPNP Configuration
upnp = {
nat_pmp_enabled = true
secure_mode = true
wan_interface = "WAN"
}
# DNS Verification Settings
dns_verification = {
domain = "example.com"
primary_dns_server = "1.1.1.1"
secondary_dns_server = "1.0.0.1"
setting_preference = "manual" # Options: "auto" or "manual"
}
# TCP Timeout Settings
tcp_timeouts = {
close_timeout = 10
established_timeout = 3600
close_wait_timeout = 20
fin_wait_timeout = 30
last_ack_timeout = 30
syn_recv_timeout = 60
syn_sent_timeout = 120
time_wait_timeout = 120
}
# ARP Cache Configuration
arp_cache_timeout = "custom" # Options: "auto" or "custom"
arp_cache_base_reachable = 60
# DHCP Configuration
broadcast_ping = true
dhcpd_hostfile_update = true
dhcpd_use_dnsmasq = true
dnsmasq_all_servers = true
# DHCP Relay Configuration
dhcp_relay = {
agents_packets = "forward" # Options: "forward" or "replace"
hop_count = 5
}
dhcp_relay_servers = ["10.1.2.3", "10.1.2.4"]
# Network Tools
echo_server = "echo.example.com"
# Protocol Modules
ftp_module = true
gre_module = true
tftp_module = true
# ICMP & LLDP Settings
icmp_timeout = 20
lldp_enable_all = true
# MSS Clamp Settings
mss_clamp = "auto" # Options: "auto" or "custom"
mss_clamp_mss = 1452
# Offload Settings
offload_accounting = true
offload_l2_blocking = true
offload_scheduling = false
# Timeout Settings
other_timeout = 600
timeout_setting_preference = "auto" # Options: "auto" or "custom"
# Security Settings
receive_redirects = false
send_redirects = true
syn_cookies = true
# UDP Timeout Settings
udp_other_timeout = 30
udp_stream_timeout = 120
# Specify the site (optional)
# site = "default"
}
Reference in New Issue View Git Blame Copy Permalink