Zscaler Internet Access v1.2.0 published on Friday, Feb 20, 2026 by Zscaler
Zscaler Internet Access v1.2.0 published on Friday, Feb 20, 2026 by Zscaler
Use the zia_cloud_nss_feed resource to create, update, and delete cloud NSS feeds in the ZIA Admin Portal
Example Usage
NSS Splunk Feed
resource "zia_cloud_nss_feed" "this" {
name = "Splunk_Feed"
feed_status = "ENABLED"
nss_log_type = "WEBLOG"
nss_feed_type = "JSON"
time_zone = "GMT"
custom_escaped_character = [
"ASCII_34",
"ASCII_44",
"ASCII_92"
]
eps_rate_limit = 0
max_batch_size = 512
json_array_toggle = true
siem_type = "SPLUNK"
connection_url = "http://3.87.81.187:8088/services/collector?auto_extract_timestamp=true"
connection_headers = ["Authorization:Splunk xxxxx-xxx-xxxx-xxxx-xxxxxxxx"]
nss_type = "NSS_FOR_WEB"
feed_output_format = "\\{ \"sourcetype\" : \"zscalernss-web\", \"event\" : \\{\"datetime\":\"%d{yy}-%02d{mth}-%02d{dd} %02d{hh}:%02d{mm}:%02d{ss}\",\"reason\":\"%s{reason}\",\"event_id\":\"%d{recordid}\",\"protocol\":\"%s{proto}\",\"action\":\"%s{action}\",\"transactionsize\":\"%d{totalsize}\",\"responsesize\":\"%d{respsize}\",\"requestsize\":\"%d{reqsize}\",\"urlcategory\":\"%s{urlcat}\",\"serverip\":\"%s{sip}\",\"requestmethod\":\"%s{reqmethod}\",\"refererURL\":\"%s{ereferer}\",\"useragent\":\"%s{eua}\",\"product\":\"NSS\",\"location\":\"%s{elocation}\",\"ClientIP\":\"%s{cip}\",\"status\":\"%s{respcode}\",\"user\":\"%s{elogin}\",\"url\":\"%s{eurl}\",\"vendor\":\"Zscaler\",\"hostname\":\"%s{ehost}\",\"clientpublicIP\":\"%s{cintip}\",\"threatcategory\":\"%s{malwarecat}\",\"threatname\":\"%s{threatname}\",\"filetype\":\"%s{filetype}\",\"appname\":\"%s{appname}\",\"app_status\":\"%s{app_status}\",\"pagerisk\":\"%d{riskscore}\",\"threatseverity\":\"%s{threatseverity}\",\"department\":\"%s{edepartment}\",\"urlsupercategory\":\"%s{urlsupercat}\",\"appclass\":\"%s{appclass}\",\"dlpengine\":\"%s{dlpeng}\",\"urlclass\":\"%s{urlclass}\",\"threatclass\":\"%s{malwareclass}\",\"dlpdictionaries\":\"%s{dlpdict}\",\"fileclass\":\"%s{fileclass}\",\"bwthrottle\":\"%s{bwthrottle}\",\"contenttype\":\"%s{contenttype}\",\"unscannabletype\":\"%s{unscannabletype}\",\"deviceowner\":\"%s{deviceowner}\",\"devicehostname\":\"%s{devicehostname}\",\"keyprotectiontype\":\"%s{keyprotectiontype}\"\\}\\}\n"
departments {
id = [ 4451590 ]
}
users {
id = [ 6438644 ]
}
url_categories {
id = [ data.zia_url_categories.this.val ]
}
}
NSS Splunk Feed - Google Chronicle
resource "zia_cloud_nss_feed" "this" {
name = "Google_Firewall_Terraform"
feed_status = "ENABLED"
nss_log_type = "FWLOG"
nss_feed_type = "JSON"
time_zone = "GMT_06_00_BANGLADESH_CENTRAL_ASIA_GMT_06_00"
custom_escaped_character = [
"ASCII_44",
"ASCII_92",
"ASCII_34"
]
# eps_rate_limit = 0
max_batch_size = 512
json_array_toggle = true
siem_type = "SPLUNK"
connection_url = "https://us-chronicle.googleapis.com/v1alpha/projects/xxxxxxx/locations/us/instances/xxxxxxxxxxx/feeds/xxxx-xxxx-xxxx-xxxx-xxxxxxxx:importPushLogs"
connection_headers = [
"X-goog-api-key: <Your API Key>",
"X-Webhook-Access-Key:<Your Webhook API Key>"
]
nss_type = "NSS_FOR_FIREWALL"
firewall_logging_mode = "ALL"
feed_output_format = "\\{ \"sourcetype\" : \"zscalernss-fw\", \"event\" :\\{\"datetime\":\"%s{time}\",\"user\":\"%s{elogin}\",\"department\":\"%s{dept}\",\"locationname\":\"%s{location}\",\"cdport\":\"%d{cdport}\",\"csport\":\"%d{csport}\",\"sdport\":\"%d{sdport}\",\"ssport\":\"%d{ssport}\",\"csip\":\"%s{csip}\",\"cdip\":\"%s{cdip}\",\"ssip\":\"%s{ssip}\",\"sdip\":\"%s{sdip}\",\"tsip\":\"%s{tsip}\",\"tunsport\":\"%d{tsport}\",\"tuntype\":\"%s{ttype}\",\"action\":\"%s{action}\",\"dnat\":\"%s{dnat}\",\"stateful\":\"%s{stateful}\",\"aggregate\":\"%s{aggregate}\",\"nwsvc\":\"%s{nwsvc}\",\"nwapp\":\"%s{nwapp}\",\"proto\":\"%s{ipproto}\",\"ipcat\":\"%s{ipcat}\",\"destcountry\":\"%s{destcountry}\",\"avgduration\":\"%d{avgduration}\",\"rulelabel\":\"%s{erulelabel}\",\"inbytes\":\"%ld{inbytes}\",\"outbytes\":\"%ld{outbytes}\",\"duration\":\"%d{duration}\",\"durationms\":\"%d{durationms}\",\"numsessions\":\"%d{numsessions}\",\"ipsrulelabel\":\"%s{ipsrulelabel}\",\"threatcat\":\"%s{threatcat}\",\"threatname\":\"%s{ethreatname}\",\"deviceowner\":\"%s{deviceowner}\",\"devicehostname\":\"%s{devicehostname}\",\"threat_score\":\"%d{threat_score}\",\"threat_severity\":\"%s{threat_severity}\"\\}\\}\n"
departments {
id = [ 4451590 ]
}
users {
id = [ 6438644 ]
}
url_categories {
id = [ data.zia_url_categories.this.val ]
}
}
Block Attributes
casb_tenant CASB tenant filter
id- (Set of Integer) The unique identifiers for the CASB tenant.
locations Location filter
id- (Set of Integer) The unique identifiers for the locations.
location_groups A filter based on location groups
id- (Set of Integer) The unique identifiers for the location groups.
departments Department filter
id- (Set of Integer) The unique identifiers for the departments.
users User filter
id- (Set of Integer) The unique identifiers for the users.
sender_name Filter based on sender or owner name
id- (Set of Integer) The unique identifiers for the sender names.
buckets Filter based on public cloud storage buckets
id- (Set of Integer) The unique identifiers for the buckets.
external_owners Filter logs associated with file owners (inside or outside your organization) who are not provisioned to ZIA services
id- (Set of Integer) The unique identifiers for the external owners.
external_collaborators
id- (Set of Integer) The unique identifiers for the external collaborators.
internal_collaborators Filter logs to specific recipients within your organization
id- (Set of Integer) The unique identifiers for the internal collaborators.
itsm_object_type ITSM object type filter
id- (Set of Integer) The unique identifiers for the ITSM object types.
dlp_engines DLP engine filter
id- (Set of Integer) The unique identifiers for the DLP engines.NOTE When associating a DLP Engine, you can use the
zia.DLPEnginesresource or data source.
dlp_dictionaries DLP dictionary filter
id- (Set of Integer) The unique identifiers for the DLP dictionaries.NOTE When associating a DLP Dictionary, you can use the
zia.DLPDictionariesresource or data source.
url_categories - URL category filter
id- (Set of Integer) Identifier that uniquely identifies an entityNOTE When associating a URL category, you can use the
zia.URLCategoriesresource or data source; however, you must export the attributeval
vpn_credentials Filter based on specific VPN credentials
id- (Set of Integer) The unique identifiers for the VPN credentials.
rules Policy rules filter (e.g., Firewall Filtering or DNS Control rule filter)
id- (Set of Integer) The unique identifiers for the rules.
nw_services Network services filter
id- (Set of Integer) The unique identifiers for the network services.
Create CloudNSSFeed Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new CloudNSSFeed(name: string, args?: CloudNSSFeedArgs, opts?: CustomResourceOptions);@overload
def CloudNSSFeed(resource_name: str,
args: Optional[CloudNSSFeedArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def CloudNSSFeed(resource_name: str,
opts: Optional[ResourceOptions] = None,
action_filter: Optional[str] = None,
activities: Optional[Sequence[str]] = None,
adv_user_agents: Optional[Sequence[str]] = None,
advanced_threats: Optional[Sequence[str]] = None,
alerts: Optional[Sequence[str]] = None,
audit_log_types: Optional[Sequence[str]] = None,
authentication_token: Optional[str] = None,
authentication_url: Optional[str] = None,
base64_encoded_certificate: Optional[str] = None,
buckets: Optional[CloudNSSFeedBucketsArgs] = None,
casb_actions: Optional[Sequence[str]] = None,
casb_applications: Optional[Sequence[str]] = None,
casb_file_type_super_categories: Optional[Sequence[str]] = None,
casb_file_types: Optional[Sequence[str]] = None,
casb_policy_types: Optional[Sequence[str]] = None,
casb_severities: Optional[Sequence[str]] = None,
casb_tenant: Optional[CloudNSSFeedCasbTenantArgs] = None,
channel_names: Optional[Sequence[str]] = None,
client_destination_ips: Optional[Sequence[str]] = None,
client_destination_ports: Optional[Sequence[str]] = None,
client_id: Optional[str] = None,
client_ips: Optional[Sequence[str]] = None,
client_secret: Optional[str] = None,
client_source_ips: Optional[Sequence[str]] = None,
client_source_ports: Optional[Sequence[str]] = None,
connection_headers: Optional[Sequence[str]] = None,
connection_url: Optional[str] = None,
countries: Optional[Sequence[str]] = None,
custom_escaped_characters: Optional[Sequence[str]] = None,
departments: Optional[CloudNSSFeedDepartmentsArgs] = None,
direction: Optional[str] = None,
dlp_dictionaries: Optional[CloudNSSFeedDlpDictionariesArgs] = None,
dlp_engines: Optional[CloudNSSFeedDlpEnginesArgs] = None,
dns_actions: Optional[Sequence[str]] = None,
dns_request_types: Optional[Sequence[str]] = None,
dns_response_types: Optional[Sequence[str]] = None,
dns_responses: Optional[Sequence[str]] = None,
domains: Optional[Sequence[str]] = None,
download_times: Optional[Sequence[str]] = None,
durations: Optional[Sequence[str]] = None,
email_dlp_log_types: Optional[Sequence[str]] = None,
email_dlp_policy_action: Optional[str] = None,
end_point_dlp_log_types: Optional[Sequence[str]] = None,
eps_rate_limit: Optional[int] = None,
event: Optional[str] = None,
external_collaborators: Optional[CloudNSSFeedExternalCollaboratorsArgs] = None,
external_owners: Optional[CloudNSSFeedExternalOwnersArgs] = None,
feed_output_format: Optional[str] = None,
feed_status: Optional[str] = None,
file_names: Optional[Sequence[str]] = None,
file_sizes: Optional[Sequence[str]] = None,
file_sources: Optional[Sequence[str]] = None,
file_type_categories: Optional[Sequence[str]] = None,
file_type_super_categories: Optional[Sequence[str]] = None,
firewall_actions: Optional[Sequence[str]] = None,
firewall_logging_mode: Optional[str] = None,
full_urls: Optional[Sequence[str]] = None,
grant_type: Optional[str] = None,
host_names: Optional[Sequence[str]] = None,
in_bound_bytes: Optional[Sequence[str]] = None,
internal_collaborators: Optional[CloudNSSFeedInternalCollaboratorsArgs] = None,
internal_ips: Optional[Sequence[str]] = None,
itsm_object_type: Optional[CloudNSSFeedItsmObjectTypeArgs] = None,
json_array_toggle: Optional[bool] = None,
location_groups: Optional[CloudNSSFeedLocationGroupsArgs] = None,
locations: Optional[CloudNSSFeedLocationsArgs] = None,
malware_classes: Optional[Sequence[str]] = None,
malware_names: Optional[Sequence[str]] = None,
max_batch_size: Optional[int] = None,
name: Optional[str] = None,
nat_actions: Optional[Sequence[str]] = None,
nss_feed_type: Optional[str] = None,
nss_log_type: Optional[str] = None,
nss_type: Optional[str] = None,
nw_applications: Optional[Sequence[str]] = None,
nw_applications_excludes: Optional[Sequence[str]] = None,
nw_services: Optional[CloudNSSFeedNwServicesArgs] = None,
oauth_authentication: Optional[bool] = None,
object_names: Optional[Sequence[str]] = None,
object_type1s: Optional[Sequence[str]] = None,
object_type2s: Optional[Sequence[str]] = None,
object_types: Optional[Sequence[str]] = None,
out_bound_bytes: Optional[Sequence[str]] = None,
page_risk_indexes: Optional[Sequence[str]] = None,
policy_reasons: Optional[Sequence[str]] = None,
project_names: Optional[Sequence[str]] = None,
protocol_types: Optional[Sequence[str]] = None,
referer_urls: Optional[Sequence[str]] = None,
repo_names: Optional[Sequence[str]] = None,
request_methods: Optional[Sequence[str]] = None,
request_sizes: Optional[Sequence[str]] = None,
response_codes: Optional[Sequence[str]] = None,
response_sizes: Optional[Sequence[str]] = None,
rules: Optional[CloudNSSFeedRulesArgs] = None,
scan_times: Optional[Sequence[str]] = None,
scope: Optional[str] = None,
sender_name: Optional[CloudNSSFeedSenderNameArgs] = None,
server_destination_ips: Optional[Sequence[str]] = None,
server_ips: Optional[Sequence[str]] = None,
server_source_ips: Optional[Sequence[str]] = None,
server_source_ports: Optional[Sequence[str]] = None,
session_counts: Optional[Sequence[str]] = None,
siem_type: Optional[str] = None,
threat_names: Optional[Sequence[str]] = None,
time_zone: Optional[str] = None,
traffic_forwards: Optional[Sequence[str]] = None,
transaction_sizes: Optional[Sequence[str]] = None,
tunnel_dest_ips: Optional[Sequence[str]] = None,
tunnel_ips: Optional[Sequence[str]] = None,
tunnel_source_ips: Optional[Sequence[str]] = None,
tunnel_source_ports: Optional[Sequence[str]] = None,
tunnel_types: Optional[Sequence[str]] = None,
url_categories: Optional[CloudNSSFeedUrlCategoriesArgs] = None,
url_classes: Optional[Sequence[str]] = None,
url_super_categories: Optional[Sequence[str]] = None,
user_agents: Optional[Sequence[str]] = None,
users: Optional[CloudNSSFeedUsersArgs] = None,
vpn_credentials: Optional[CloudNSSFeedVpnCredentialsArgs] = None,
web_application_classes: Optional[Sequence[str]] = None,
web_applications: Optional[Sequence[str]] = None,
web_applications_excludes: Optional[Sequence[str]] = None,
web_traffic_forwards: Optional[Sequence[str]] = None)func NewCloudNSSFeed(ctx *Context, name string, args *CloudNSSFeedArgs, opts ...ResourceOption) (*CloudNSSFeed, error)public CloudNSSFeed(string name, CloudNSSFeedArgs? args = null, CustomResourceOptions? opts = null)
public CloudNSSFeed(String name, CloudNSSFeedArgs args)
public CloudNSSFeed(String name, CloudNSSFeedArgs args, CustomResourceOptions options)
type: zia:CloudNSSFeed
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args CloudNSSFeedArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args CloudNSSFeedArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args CloudNSSFeedArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args CloudNSSFeedArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args CloudNSSFeedArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var cloudNSSFeedResource = new Zia.CloudNSSFeed("cloudNSSFeedResource", new()
{
ActionFilter = "string",
Activities = new[]
{
"string",
},
AdvUserAgents = new[]
{
"string",
},
AdvancedThreats = new[]
{
"string",
},
Alerts = new[]
{
"string",
},
AuditLogTypes = new[]
{
"string",
},
AuthenticationToken = "string",
AuthenticationUrl = "string",
Base64EncodedCertificate = "string",
Buckets = new Zia.Inputs.CloudNSSFeedBucketsArgs
{
Ids = new[]
{
0,
},
},
CasbActions = new[]
{
"string",
},
CasbApplications = new[]
{
"string",
},
CasbFileTypeSuperCategories = new[]
{
"string",
},
CasbFileTypes = new[]
{
"string",
},
CasbPolicyTypes = new[]
{
"string",
},
CasbSeverities = new[]
{
"string",
},
CasbTenant = new Zia.Inputs.CloudNSSFeedCasbTenantArgs
{
Ids = new[]
{
0,
},
},
ChannelNames = new[]
{
"string",
},
ClientDestinationIps = new[]
{
"string",
},
ClientDestinationPorts = new[]
{
"string",
},
ClientId = "string",
ClientIps = new[]
{
"string",
},
ClientSecret = "string",
ClientSourceIps = new[]
{
"string",
},
ClientSourcePorts = new[]
{
"string",
},
ConnectionHeaders = new[]
{
"string",
},
ConnectionUrl = "string",
Countries = new[]
{
"string",
},
CustomEscapedCharacters = new[]
{
"string",
},
Departments = new Zia.Inputs.CloudNSSFeedDepartmentsArgs
{
Ids = new[]
{
0,
},
},
Direction = "string",
DlpDictionaries = new Zia.Inputs.CloudNSSFeedDlpDictionariesArgs
{
Ids = new[]
{
0,
},
},
DlpEngines = new Zia.Inputs.CloudNSSFeedDlpEnginesArgs
{
Ids = new[]
{
0,
},
},
DnsActions = new[]
{
"string",
},
DnsRequestTypes = new[]
{
"string",
},
DnsResponseTypes = new[]
{
"string",
},
DnsResponses = new[]
{
"string",
},
Domains = new[]
{
"string",
},
DownloadTimes = new[]
{
"string",
},
Durations = new[]
{
"string",
},
EmailDlpLogTypes = new[]
{
"string",
},
EmailDlpPolicyAction = "string",
EndPointDlpLogTypes = new[]
{
"string",
},
EpsRateLimit = 0,
Event = "string",
ExternalCollaborators = new Zia.Inputs.CloudNSSFeedExternalCollaboratorsArgs
{
Ids = new[]
{
0,
},
},
ExternalOwners = new Zia.Inputs.CloudNSSFeedExternalOwnersArgs
{
Ids = new[]
{
0,
},
},
FeedOutputFormat = "string",
FeedStatus = "string",
FileNames = new[]
{
"string",
},
FileSizes = new[]
{
"string",
},
FileSources = new[]
{
"string",
},
FileTypeCategories = new[]
{
"string",
},
FileTypeSuperCategories = new[]
{
"string",
},
FirewallActions = new[]
{
"string",
},
FirewallLoggingMode = "string",
FullUrls = new[]
{
"string",
},
GrantType = "string",
HostNames = new[]
{
"string",
},
InBoundBytes = new[]
{
"string",
},
InternalCollaborators = new Zia.Inputs.CloudNSSFeedInternalCollaboratorsArgs
{
Ids = new[]
{
0,
},
},
InternalIps = new[]
{
"string",
},
ItsmObjectType = new Zia.Inputs.CloudNSSFeedItsmObjectTypeArgs
{
Ids = new[]
{
0,
},
},
JsonArrayToggle = false,
LocationGroups = new Zia.Inputs.CloudNSSFeedLocationGroupsArgs
{
Ids = new[]
{
0,
},
},
Locations = new Zia.Inputs.CloudNSSFeedLocationsArgs
{
Ids = new[]
{
0,
},
},
MalwareClasses = new[]
{
"string",
},
MalwareNames = new[]
{
"string",
},
MaxBatchSize = 0,
Name = "string",
NatActions = new[]
{
"string",
},
NssFeedType = "string",
NssLogType = "string",
NssType = "string",
NwApplications = new[]
{
"string",
},
NwApplicationsExcludes = new[]
{
"string",
},
NwServices = new Zia.Inputs.CloudNSSFeedNwServicesArgs
{
Ids = new[]
{
0,
},
},
OauthAuthentication = false,
ObjectNames = new[]
{
"string",
},
ObjectType1s = new[]
{
"string",
},
ObjectType2s = new[]
{
"string",
},
ObjectTypes = new[]
{
"string",
},
OutBoundBytes = new[]
{
"string",
},
PageRiskIndexes = new[]
{
"string",
},
PolicyReasons = new[]
{
"string",
},
ProjectNames = new[]
{
"string",
},
ProtocolTypes = new[]
{
"string",
},
RefererUrls = new[]
{
"string",
},
RepoNames = new[]
{
"string",
},
RequestMethods = new[]
{
"string",
},
RequestSizes = new[]
{
"string",
},
ResponseCodes = new[]
{
"string",
},
ResponseSizes = new[]
{
"string",
},
Rules = new Zia.Inputs.CloudNSSFeedRulesArgs
{
Ids = new[]
{
0,
},
},
ScanTimes = new[]
{
"string",
},
Scope = "string",
SenderName = new Zia.Inputs.CloudNSSFeedSenderNameArgs
{
Ids = new[]
{
0,
},
},
ServerDestinationIps = new[]
{
"string",
},
ServerIps = new[]
{
"string",
},
ServerSourceIps = new[]
{
"string",
},
ServerSourcePorts = new[]
{
"string",
},
SessionCounts = new[]
{
"string",
},
SiemType = "string",
ThreatNames = new[]
{
"string",
},
TimeZone = "string",
TrafficForwards = new[]
{
"string",
},
TransactionSizes = new[]
{
"string",
},
TunnelDestIps = new[]
{
"string",
},
TunnelIps = new[]
{
"string",
},
TunnelSourceIps = new[]
{
"string",
},
TunnelSourcePorts = new[]
{
"string",
},
TunnelTypes = new[]
{
"string",
},
UrlCategories = new Zia.Inputs.CloudNSSFeedUrlCategoriesArgs
{
Ids = new[]
{
0,
},
},
UrlClasses = new[]
{
"string",
},
UrlSuperCategories = new[]
{
"string",
},
UserAgents = new[]
{
"string",
},
Users = new Zia.Inputs.CloudNSSFeedUsersArgs
{
Ids = new[]
{
0,
},
},
VpnCredentials = new Zia.Inputs.CloudNSSFeedVpnCredentialsArgs
{
Ids = new[]
{
0,
},
},
WebApplicationClasses = new[]
{
"string",
},
WebApplications = new[]
{
"string",
},
WebApplicationsExcludes = new[]
{
"string",
},
WebTrafficForwards = new[]
{
"string",
},
});
example, err := zia.NewCloudNSSFeed(ctx, "cloudNSSFeedResource", &zia.CloudNSSFeedArgs{
ActionFilter: pulumi.String("string"),
Activities: pulumi.StringArray{
pulumi.String("string"),
},
AdvUserAgents: pulumi.StringArray{
pulumi.String("string"),
},
AdvancedThreats: pulumi.StringArray{
pulumi.String("string"),
},
Alerts: pulumi.StringArray{
pulumi.String("string"),
},
AuditLogTypes: pulumi.StringArray{
pulumi.String("string"),
},
AuthenticationToken: pulumi.String("string"),
AuthenticationUrl: pulumi.String("string"),
Base64EncodedCertificate: pulumi.String("string"),
Buckets: &zia.CloudNSSFeedBucketsArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
CasbActions: pulumi.StringArray{
pulumi.String("string"),
},
CasbApplications: pulumi.StringArray{
pulumi.String("string"),
},
CasbFileTypeSuperCategories: pulumi.StringArray{
pulumi.String("string"),
},
CasbFileTypes: pulumi.StringArray{
pulumi.String("string"),
},
CasbPolicyTypes: pulumi.StringArray{
pulumi.String("string"),
},
CasbSeverities: pulumi.StringArray{
pulumi.String("string"),
},
CasbTenant: &zia.CloudNSSFeedCasbTenantArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
ChannelNames: pulumi.StringArray{
pulumi.String("string"),
},
ClientDestinationIps: pulumi.StringArray{
pulumi.String("string"),
},
ClientDestinationPorts: pulumi.StringArray{
pulumi.String("string"),
},
ClientId: pulumi.String("string"),
ClientIps: pulumi.StringArray{
pulumi.String("string"),
},
ClientSecret: pulumi.String("string"),
ClientSourceIps: pulumi.StringArray{
pulumi.String("string"),
},
ClientSourcePorts: pulumi.StringArray{
pulumi.String("string"),
},
ConnectionHeaders: pulumi.StringArray{
pulumi.String("string"),
},
ConnectionUrl: pulumi.String("string"),
Countries: pulumi.StringArray{
pulumi.String("string"),
},
CustomEscapedCharacters: pulumi.StringArray{
pulumi.String("string"),
},
Departments: &zia.CloudNSSFeedDepartmentsArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
Direction: pulumi.String("string"),
DlpDictionaries: &zia.CloudNSSFeedDlpDictionariesArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
DlpEngines: &zia.CloudNSSFeedDlpEnginesArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
DnsActions: pulumi.StringArray{
pulumi.String("string"),
},
DnsRequestTypes: pulumi.StringArray{
pulumi.String("string"),
},
DnsResponseTypes: pulumi.StringArray{
pulumi.String("string"),
},
DnsResponses: pulumi.StringArray{
pulumi.String("string"),
},
Domains: pulumi.StringArray{
pulumi.String("string"),
},
DownloadTimes: pulumi.StringArray{
pulumi.String("string"),
},
Durations: pulumi.StringArray{
pulumi.String("string"),
},
EmailDlpLogTypes: pulumi.StringArray{
pulumi.String("string"),
},
EmailDlpPolicyAction: pulumi.String("string"),
EndPointDlpLogTypes: pulumi.StringArray{
pulumi.String("string"),
},
EpsRateLimit: pulumi.Int(0),
Event: pulumi.String("string"),
ExternalCollaborators: &zia.CloudNSSFeedExternalCollaboratorsArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
ExternalOwners: &zia.CloudNSSFeedExternalOwnersArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
FeedOutputFormat: pulumi.String("string"),
FeedStatus: pulumi.String("string"),
FileNames: pulumi.StringArray{
pulumi.String("string"),
},
FileSizes: pulumi.StringArray{
pulumi.String("string"),
},
FileSources: pulumi.StringArray{
pulumi.String("string"),
},
FileTypeCategories: pulumi.StringArray{
pulumi.String("string"),
},
FileTypeSuperCategories: pulumi.StringArray{
pulumi.String("string"),
},
FirewallActions: pulumi.StringArray{
pulumi.String("string"),
},
FirewallLoggingMode: pulumi.String("string"),
FullUrls: pulumi.StringArray{
pulumi.String("string"),
},
GrantType: pulumi.String("string"),
HostNames: pulumi.StringArray{
pulumi.String("string"),
},
InBoundBytes: pulumi.StringArray{
pulumi.String("string"),
},
InternalCollaborators: &zia.CloudNSSFeedInternalCollaboratorsArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
InternalIps: pulumi.StringArray{
pulumi.String("string"),
},
ItsmObjectType: &zia.CloudNSSFeedItsmObjectTypeArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
JsonArrayToggle: pulumi.Bool(false),
LocationGroups: &zia.CloudNSSFeedLocationGroupsArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
Locations: &zia.CloudNSSFeedLocationsArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
MalwareClasses: pulumi.StringArray{
pulumi.String("string"),
},
MalwareNames: pulumi.StringArray{
pulumi.String("string"),
},
MaxBatchSize: pulumi.Int(0),
Name: pulumi.String("string"),
NatActions: pulumi.StringArray{
pulumi.String("string"),
},
NssFeedType: pulumi.String("string"),
NssLogType: pulumi.String("string"),
NssType: pulumi.String("string"),
NwApplications: pulumi.StringArray{
pulumi.String("string"),
},
NwApplicationsExcludes: pulumi.StringArray{
pulumi.String("string"),
},
NwServices: &zia.CloudNSSFeedNwServicesArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
OauthAuthentication: pulumi.Bool(false),
ObjectNames: pulumi.StringArray{
pulumi.String("string"),
},
ObjectType1s: pulumi.StringArray{
pulumi.String("string"),
},
ObjectType2s: pulumi.StringArray{
pulumi.String("string"),
},
ObjectTypes: pulumi.StringArray{
pulumi.String("string"),
},
OutBoundBytes: pulumi.StringArray{
pulumi.String("string"),
},
PageRiskIndexes: pulumi.StringArray{
pulumi.String("string"),
},
PolicyReasons: pulumi.StringArray{
pulumi.String("string"),
},
ProjectNames: pulumi.StringArray{
pulumi.String("string"),
},
ProtocolTypes: pulumi.StringArray{
pulumi.String("string"),
},
RefererUrls: pulumi.StringArray{
pulumi.String("string"),
},
RepoNames: pulumi.StringArray{
pulumi.String("string"),
},
RequestMethods: pulumi.StringArray{
pulumi.String("string"),
},
RequestSizes: pulumi.StringArray{
pulumi.String("string"),
},
ResponseCodes: pulumi.StringArray{
pulumi.String("string"),
},
ResponseSizes: pulumi.StringArray{
pulumi.String("string"),
},
Rules: &zia.CloudNSSFeedRulesArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
ScanTimes: pulumi.StringArray{
pulumi.String("string"),
},
Scope: pulumi.String("string"),
SenderName: &zia.CloudNSSFeedSenderNameArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
ServerDestinationIps: pulumi.StringArray{
pulumi.String("string"),
},
ServerIps: pulumi.StringArray{
pulumi.String("string"),
},
ServerSourceIps: pulumi.StringArray{
pulumi.String("string"),
},
ServerSourcePorts: pulumi.StringArray{
pulumi.String("string"),
},
SessionCounts: pulumi.StringArray{
pulumi.String("string"),
},
SiemType: pulumi.String("string"),
ThreatNames: pulumi.StringArray{
pulumi.String("string"),
},
TimeZone: pulumi.String("string"),
TrafficForwards: pulumi.StringArray{
pulumi.String("string"),
},
TransactionSizes: pulumi.StringArray{
pulumi.String("string"),
},
TunnelDestIps: pulumi.StringArray{
pulumi.String("string"),
},
TunnelIps: pulumi.StringArray{
pulumi.String("string"),
},
TunnelSourceIps: pulumi.StringArray{
pulumi.String("string"),
},
TunnelSourcePorts: pulumi.StringArray{
pulumi.String("string"),
},
TunnelTypes: pulumi.StringArray{
pulumi.String("string"),
},
UrlCategories: &zia.CloudNSSFeedUrlCategoriesArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
UrlClasses: pulumi.StringArray{
pulumi.String("string"),
},
UrlSuperCategories: pulumi.StringArray{
pulumi.String("string"),
},
UserAgents: pulumi.StringArray{
pulumi.String("string"),
},
Users: &zia.CloudNSSFeedUsersArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
VpnCredentials: &zia.CloudNSSFeedVpnCredentialsArgs{
Ids: pulumi.IntArray{
pulumi.Int(0),
},
},
WebApplicationClasses: pulumi.StringArray{
pulumi.String("string"),
},
WebApplications: pulumi.StringArray{
pulumi.String("string"),
},
WebApplicationsExcludes: pulumi.StringArray{
pulumi.String("string"),
},
WebTrafficForwards: pulumi.StringArray{
pulumi.String("string"),
},
})
var cloudNSSFeedResource = new CloudNSSFeed("cloudNSSFeedResource", CloudNSSFeedArgs.builder()
.actionFilter("string")
.activities("string")
.advUserAgents("string")
.advancedThreats("string")
.alerts("string")
.auditLogTypes("string")
.authenticationToken("string")
.authenticationUrl("string")
.base64EncodedCertificate("string")
.buckets(CloudNSSFeedBucketsArgs.builder()
.ids(0)
.build())
.casbActions("string")
.casbApplications("string")
.casbFileTypeSuperCategories("string")
.casbFileTypes("string")
.casbPolicyTypes("string")
.casbSeverities("string")
.casbTenant(CloudNSSFeedCasbTenantArgs.builder()
.ids(0)
.build())
.channelNames("string")
.clientDestinationIps("string")
.clientDestinationPorts("string")
.clientId("string")
.clientIps("string")
.clientSecret("string")
.clientSourceIps("string")
.clientSourcePorts("string")
.connectionHeaders("string")
.connectionUrl("string")
.countries("string")
.customEscapedCharacters("string")
.departments(CloudNSSFeedDepartmentsArgs.builder()
.ids(0)
.build())
.direction("string")
.dlpDictionaries(CloudNSSFeedDlpDictionariesArgs.builder()
.ids(0)
.build())
.dlpEngines(CloudNSSFeedDlpEnginesArgs.builder()
.ids(0)
.build())
.dnsActions("string")
.dnsRequestTypes("string")
.dnsResponseTypes("string")
.dnsResponses("string")
.domains("string")
.downloadTimes("string")
.durations("string")
.emailDlpLogTypes("string")
.emailDlpPolicyAction("string")
.endPointDlpLogTypes("string")
.epsRateLimit(0)
.event("string")
.externalCollaborators(CloudNSSFeedExternalCollaboratorsArgs.builder()
.ids(0)
.build())
.externalOwners(CloudNSSFeedExternalOwnersArgs.builder()
.ids(0)
.build())
.feedOutputFormat("string")
.feedStatus("string")
.fileNames("string")
.fileSizes("string")
.fileSources("string")
.fileTypeCategories("string")
.fileTypeSuperCategories("string")
.firewallActions("string")
.firewallLoggingMode("string")
.fullUrls("string")
.grantType("string")
.hostNames("string")
.inBoundBytes("string")
.internalCollaborators(CloudNSSFeedInternalCollaboratorsArgs.builder()
.ids(0)
.build())
.internalIps("string")
.itsmObjectType(CloudNSSFeedItsmObjectTypeArgs.builder()
.ids(0)
.build())
.jsonArrayToggle(false)
.locationGroups(CloudNSSFeedLocationGroupsArgs.builder()
.ids(0)
.build())
.locations(CloudNSSFeedLocationsArgs.builder()
.ids(0)
.build())
.malwareClasses("string")
.malwareNames("string")
.maxBatchSize(0)
.name("string")
.natActions("string")
.nssFeedType("string")
.nssLogType("string")
.nssType("string")
.nwApplications("string")
.nwApplicationsExcludes("string")
.nwServices(CloudNSSFeedNwServicesArgs.builder()
.ids(0)
.build())
.oauthAuthentication(false)
.objectNames("string")
.objectType1s("string")
.objectType2s("string")
.objectTypes("string")
.outBoundBytes("string")
.pageRiskIndexes("string")
.policyReasons("string")
.projectNames("string")
.protocolTypes("string")
.refererUrls("string")
.repoNames("string")
.requestMethods("string")
.requestSizes("string")
.responseCodes("string")
.responseSizes("string")
.rules(CloudNSSFeedRulesArgs.builder()
.ids(0)
.build())
.scanTimes("string")
.scope("string")
.senderName(CloudNSSFeedSenderNameArgs.builder()
.ids(0)
.build())
.serverDestinationIps("string")
.serverIps("string")
.serverSourceIps("string")
.serverSourcePorts("string")
.sessionCounts("string")
.siemType("string")
.threatNames("string")
.timeZone("string")
.trafficForwards("string")
.transactionSizes("string")
.tunnelDestIps("string")
.tunnelIps("string")
.tunnelSourceIps("string")
.tunnelSourcePorts("string")
.tunnelTypes("string")
.urlCategories(CloudNSSFeedUrlCategoriesArgs.builder()
.ids(0)
.build())
.urlClasses("string")
.urlSuperCategories("string")
.userAgents("string")
.users(CloudNSSFeedUsersArgs.builder()
.ids(0)
.build())
.vpnCredentials(CloudNSSFeedVpnCredentialsArgs.builder()
.ids(0)
.build())
.webApplicationClasses("string")
.webApplications("string")
.webApplicationsExcludes("string")
.webTrafficForwards("string")
.build());
cloud_nss_feed_resource = zia.CloudNSSFeed("cloudNSSFeedResource",
action_filter="string",
activities=["string"],
adv_user_agents=["string"],
advanced_threats=["string"],
alerts=["string"],
audit_log_types=["string"],
authentication_token="string",
authentication_url="string",
base64_encoded_certificate="string",
buckets={
"ids": [0],
},
casb_actions=["string"],
casb_applications=["string"],
casb_file_type_super_categories=["string"],
casb_file_types=["string"],
casb_policy_types=["string"],
casb_severities=["string"],
casb_tenant={
"ids": [0],
},
channel_names=["string"],
client_destination_ips=["string"],
client_destination_ports=["string"],
client_id="string",
client_ips=["string"],
client_secret="string",
client_source_ips=["string"],
client_source_ports=["string"],
connection_headers=["string"],
connection_url="string",
countries=["string"],
custom_escaped_characters=["string"],
departments={
"ids": [0],
},
direction="string",
dlp_dictionaries={
"ids": [0],
},
dlp_engines={
"ids": [0],
},
dns_actions=["string"],
dns_request_types=["string"],
dns_response_types=["string"],
dns_responses=["string"],
domains=["string"],
download_times=["string"],
durations=["string"],
email_dlp_log_types=["string"],
email_dlp_policy_action="string",
end_point_dlp_log_types=["string"],
eps_rate_limit=0,
event="string",
external_collaborators={
"ids": [0],
},
external_owners={
"ids": [0],
},
feed_output_format="string",
feed_status="string",
file_names=["string"],
file_sizes=["string"],
file_sources=["string"],
file_type_categories=["string"],
file_type_super_categories=["string"],
firewall_actions=["string"],
firewall_logging_mode="string",
full_urls=["string"],
grant_type="string",
host_names=["string"],
in_bound_bytes=["string"],
internal_collaborators={
"ids": [0],
},
internal_ips=["string"],
itsm_object_type={
"ids": [0],
},
json_array_toggle=False,
location_groups={
"ids": [0],
},
locations={
"ids": [0],
},
malware_classes=["string"],
malware_names=["string"],
max_batch_size=0,
name="string",
nat_actions=["string"],
nss_feed_type="string",
nss_log_type="string",
nss_type="string",
nw_applications=["string"],
nw_applications_excludes=["string"],
nw_services={
"ids": [0],
},
oauth_authentication=False,
object_names=["string"],
object_type1s=["string"],
object_type2s=["string"],
object_types=["string"],
out_bound_bytes=["string"],
page_risk_indexes=["string"],
policy_reasons=["string"],
project_names=["string"],
protocol_types=["string"],
referer_urls=["string"],
repo_names=["string"],
request_methods=["string"],
request_sizes=["string"],
response_codes=["string"],
response_sizes=["string"],
rules={
"ids": [0],
},
scan_times=["string"],
scope="string",
sender_name={
"ids": [0],
},
server_destination_ips=["string"],
server_ips=["string"],
server_source_ips=["string"],
server_source_ports=["string"],
session_counts=["string"],
siem_type="string",
threat_names=["string"],
time_zone="string",
traffic_forwards=["string"],
transaction_sizes=["string"],
tunnel_dest_ips=["string"],
tunnel_ips=["string"],
tunnel_source_ips=["string"],
tunnel_source_ports=["string"],
tunnel_types=["string"],
url_categories={
"ids": [0],
},
url_classes=["string"],
url_super_categories=["string"],
user_agents=["string"],
users={
"ids": [0],
},
vpn_credentials={
"ids": [0],
},
web_application_classes=["string"],
web_applications=["string"],
web_applications_excludes=["string"],
web_traffic_forwards=["string"])
const cloudNSSFeedResource = new zia.CloudNSSFeed("cloudNSSFeedResource", {
actionFilter: "string",
activities: ["string"],
advUserAgents: ["string"],
advancedThreats: ["string"],
alerts: ["string"],
auditLogTypes: ["string"],
authenticationToken: "string",
authenticationUrl: "string",
base64EncodedCertificate: "string",
buckets: {
ids: [0],
},
casbActions: ["string"],
casbApplications: ["string"],
casbFileTypeSuperCategories: ["string"],
casbFileTypes: ["string"],
casbPolicyTypes: ["string"],
casbSeverities: ["string"],
casbTenant: {
ids: [0],
},
channelNames: ["string"],
clientDestinationIps: ["string"],
clientDestinationPorts: ["string"],
clientId: "string",
clientIps: ["string"],
clientSecret: "string",
clientSourceIps: ["string"],
clientSourcePorts: ["string"],
connectionHeaders: ["string"],
connectionUrl: "string",
countries: ["string"],
customEscapedCharacters: ["string"],
departments: {
ids: [0],
},
direction: "string",
dlpDictionaries: {
ids: [0],
},
dlpEngines: {
ids: [0],
},
dnsActions: ["string"],
dnsRequestTypes: ["string"],
dnsResponseTypes: ["string"],
dnsResponses: ["string"],
domains: ["string"],
downloadTimes: ["string"],
durations: ["string"],
emailDlpLogTypes: ["string"],
emailDlpPolicyAction: "string",
endPointDlpLogTypes: ["string"],
epsRateLimit: 0,
event: "string",
externalCollaborators: {
ids: [0],
},
externalOwners: {
ids: [0],
},
feedOutputFormat: "string",
feedStatus: "string",
fileNames: ["string"],
fileSizes: ["string"],
fileSources: ["string"],
fileTypeCategories: ["string"],
fileTypeSuperCategories: ["string"],
firewallActions: ["string"],
firewallLoggingMode: "string",
fullUrls: ["string"],
grantType: "string",
hostNames: ["string"],
inBoundBytes: ["string"],
internalCollaborators: {
ids: [0],
},
internalIps: ["string"],
itsmObjectType: {
ids: [0],
},
jsonArrayToggle: false,
locationGroups: {
ids: [0],
},
locations: {
ids: [0],
},
malwareClasses: ["string"],
malwareNames: ["string"],
maxBatchSize: 0,
name: "string",
natActions: ["string"],
nssFeedType: "string",
nssLogType: "string",
nssType: "string",
nwApplications: ["string"],
nwApplicationsExcludes: ["string"],
nwServices: {
ids: [0],
},
oauthAuthentication: false,
objectNames: ["string"],
objectType1s: ["string"],
objectType2s: ["string"],
objectTypes: ["string"],
outBoundBytes: ["string"],
pageRiskIndexes: ["string"],
policyReasons: ["string"],
projectNames: ["string"],
protocolTypes: ["string"],
refererUrls: ["string"],
repoNames: ["string"],
requestMethods: ["string"],
requestSizes: ["string"],
responseCodes: ["string"],
responseSizes: ["string"],
rules: {
ids: [0],
},
scanTimes: ["string"],
scope: "string",
senderName: {
ids: [0],
},
serverDestinationIps: ["string"],
serverIps: ["string"],
serverSourceIps: ["string"],
serverSourcePorts: ["string"],
sessionCounts: ["string"],
siemType: "string",
threatNames: ["string"],
timeZone: "string",
trafficForwards: ["string"],
transactionSizes: ["string"],
tunnelDestIps: ["string"],
tunnelIps: ["string"],
tunnelSourceIps: ["string"],
tunnelSourcePorts: ["string"],
tunnelTypes: ["string"],
urlCategories: {
ids: [0],
},
urlClasses: ["string"],
urlSuperCategories: ["string"],
userAgents: ["string"],
users: {
ids: [0],
},
vpnCredentials: {
ids: [0],
},
webApplicationClasses: ["string"],
webApplications: ["string"],
webApplicationsExcludes: ["string"],
webTrafficForwards: ["string"],
});
type: zia:CloudNSSFeed
properties:
actionFilter: string
activities:
- string
advUserAgents:
- string
advancedThreats:
- string
alerts:
- string
auditLogTypes:
- string
authenticationToken: string
authenticationUrl: string
base64EncodedCertificate: string
buckets:
ids:
- 0
casbActions:
- string
casbApplications:
- string
casbFileTypeSuperCategories:
- string
casbFileTypes:
- string
casbPolicyTypes:
- string
casbSeverities:
- string
casbTenant:
ids:
- 0
channelNames:
- string
clientDestinationIps:
- string
clientDestinationPorts:
- string
clientId: string
clientIps:
- string
clientSecret: string
clientSourceIps:
- string
clientSourcePorts:
- string
connectionHeaders:
- string
connectionUrl: string
countries:
- string
customEscapedCharacters:
- string
departments:
ids:
- 0
direction: string
dlpDictionaries:
ids:
- 0
dlpEngines:
ids:
- 0
dnsActions:
- string
dnsRequestTypes:
- string
dnsResponseTypes:
- string
dnsResponses:
- string
domains:
- string
downloadTimes:
- string
durations:
- string
emailDlpLogTypes:
- string
emailDlpPolicyAction: string
endPointDlpLogTypes:
- string
epsRateLimit: 0
event: string
externalCollaborators:
ids:
- 0
externalOwners:
ids:
- 0
feedOutputFormat: string
feedStatus: string
fileNames:
- string
fileSizes:
- string
fileSources:
- string
fileTypeCategories:
- string
fileTypeSuperCategories:
- string
firewallActions:
- string
firewallLoggingMode: string
fullUrls:
- string
grantType: string
hostNames:
- string
inBoundBytes:
- string
internalCollaborators:
ids:
- 0
internalIps:
- string
itsmObjectType:
ids:
- 0
jsonArrayToggle: false
locationGroups:
ids:
- 0
locations:
ids:
- 0
malwareClasses:
- string
malwareNames:
- string
maxBatchSize: 0
name: string
natActions:
- string
nssFeedType: string
nssLogType: string
nssType: string
nwApplications:
- string
nwApplicationsExcludes:
- string
nwServices:
ids:
- 0
oauthAuthentication: false
objectNames:
- string
objectType1s:
- string
objectType2s:
- string
objectTypes:
- string
outBoundBytes:
- string
pageRiskIndexes:
- string
policyReasons:
- string
projectNames:
- string
protocolTypes:
- string
refererUrls:
- string
repoNames:
- string
requestMethods:
- string
requestSizes:
- string
responseCodes:
- string
responseSizes:
- string
rules:
ids:
- 0
scanTimes:
- string
scope: string
senderName:
ids:
- 0
serverDestinationIps:
- string
serverIps:
- string
serverSourceIps:
- string
serverSourcePorts:
- string
sessionCounts:
- string
siemType: string
threatNames:
- string
timeZone: string
trafficForwards:
- string
transactionSizes:
- string
tunnelDestIps:
- string
tunnelIps:
- string
tunnelSourceIps:
- string
tunnelSourcePorts:
- string
tunnelTypes:
- string
urlCategories:
ids:
- 0
urlClasses:
- string
urlSuperCategories:
- string
userAgents:
- string
users:
ids:
- 0
vpnCredentials:
ids:
- 0
webApplicationClasses:
- string
webApplications:
- string
webApplicationsExcludes:
- string
webTrafficForwards:
- string
CloudNSSFeed Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The CloudNSSFeed resource accepts the following input properties:
- Action
Filter string - Policy action filter
- Activities List<string>
- CASB activity filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Adv
User List<string>Agents - Filter based on custom user agent strings
- Advanced
Threats List<string> - Advanced threats filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Alerts List<string>
- Alert filter Supported Values: CRITICAL, WARN
- Audit
Log List<string>Types - Audit log type filter
- Authentication
Token string - The authentication token value
- Authentication
Url string - Authentication URL applicable when SIEM type is set to Azure Sentinel
- Base64Encoded
Certificate string - Base64-encoded certificate
- Buckets
zscaler.
Pulumi Package. Zia. Inputs. Cloud NSSFeed Buckets - Filter based on public cloud storage buckets
- Casb
Actions List<string> - CASB policy action filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Casb
Applications List<string> - CASB application filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Casb
File List<string>Type Super Categories - Endpoint DLP file type category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Casb
File List<string>Types - Endpoint DLP file type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Casb
Policy List<string>Types - CASB policy type filter Supported Values: MALWARE, DLP, ALL_INCIDENT
- Casb
Severities List<string> - Zscaler's Cloud Access Security Broker (CASB) severity filter Supported Values: RULE_SEVERITY_HIGH, RULE_SEVERITY_MEDIUM, RULE_SEVERITY_LOW, RULE_SEVERITY_INFO
- Casb
Tenant zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Casb Tenant - CASB tenant filter
- Channel
Names List<string> - Collaboration channel name filter
- Client
Destination List<string>Ips - Client's destination IPv4 addresses in Firewall policy
- Client
Destination List<string>Ports - Firewall logs filter based on a client's destination
- Client
Id string - Client ID applicable when SIEM type is set to S3 or Azure Sentinel
- Client
Ips List<string> - Filter to limit the logs based on a client's public IPv4 addresses
- Client
Secret string - Client secret applicable when SIEM type is set to S3 or Azure Sentinel
- Client
Source List<string>Ips - Client source IPs configured for NSS feed.
- Client
Source List<string>Ports - Firewall log filter based on a client's source ports
- Connection
Headers List<string> - The HTTP Connection headers
- Connection
Url string - The HTTPS URL of the SIEM log collection API endpoint
- Countries List<string>
- Countries filter in the Firewall policy See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Custom
Escaped List<string>Characters - Characters that need to be encoded using hex when they appear in URL, Host, or Referrer
- Departments
zscaler.
Pulumi Package. Zia. Inputs. Cloud NSSFeed Departments - Departments filter
- Direction string
- Traffic direction filter specifying inbound or outbound
- Dlp
Dictionaries zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Dlp Dictionaries - DLP dictionary filter
- Dlp
Engines zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Dlp Engines - DLP engine filter
- Dns
Actions List<string> - DNS Control policy action filter
- Dns
Request List<string>Types - DNS request types included in the feed Supported Values: ANY, NONE, DNSREQ_A, DNSREQ_NS, DNSREQ_CNAME, DNSREQ_SOA, DNSREQ_WKS, DNSREQ_PTR, DNSREQ_HINFO, DNSREQ_MINFO, DNSREQ_MX, DNSREQ_TXT, DNSREQ_AAAA, DNSREQ_ISDN, DNSREQ_LOC, DNSREQ_RP, DNSREQ_RT, DNSREQ_MR, DNSREQ_MG, DNSREQ_MB, DNSREQ_AFSDB, DNSREQ_HIP, DNSREQ_SRV, DNSREQ_DS, DNSREQ_NAPTR, DNSREQ_NSEC, DNSREQ_DNSKEY, DNSREQ_HTTPS, DNSREQ_UNKNOWN
- Dns
Response List<string>Types - DNS response types filter Supported Values: ANY, DNSRES_ZSCODE, DNSRES_CNAME, DNSRES_IPV6, DNSRES_SRV_CODE, DNSRES_IPV4
- Dns
Responses List<string> - DNS responses filter
- Domains List<string>
- Filter to limit the logs to sessions associated with specific domains
- Download
Times List<string> - Download time filter
- Durations List<string>
- Filter based on time durations
- Email
Dlp List<string>Log Types - Email DLP record type filter Supported Values: EPDLP_SCAN_AGGREGATE, EPDLP_SENSITIVE_ACTIVITY, EPDLP_DLP_INCIDENT
- Email
Dlp stringPolicy Action - Action filter for Email DLP log type
- End
Point List<string>Dlp Log Types - Endpoint DLP log type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Eps
Rate intLimit - Event per second limit
- Event string
- CASB event filter
- External
Collaborators zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed External Collaborators - Filter logs to specific recipients outside your organization
- External
Owners zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed External Owners - Filter logs associated with file owners (inside or outside your organization) who are not provisioned to ZIA services
- Feed
Output stringFormat - Output format used for the feed
- Feed
Status string - The status of the feed
- File
Names List<string> - Filter based on the file name
- File
Sizes List<string> - File size filter
- File
Sources List<string> - Filter based on the file source
- File
Type List<string>Categories - Filter based on the file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- File
Type List<string>Super Categories - Filter based on the category of file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Firewall
Actions List<string> - Firewall actions included in the NSS feed Supported Values: BLOCK,ALLOW,BLOCK_DROP,BLOCK_RESET,BLOCK_ICMP,COUNTRY_BLOCK IPS_BLOCK_DROP,IPS_BLOCK_RESET,ALLOW_INSUFFICIENT_APPDATA, BLOCK_ABUSE_DROP,INT_ERR_DROP,CFG_BYPASSED,CFG_TIMEDOUT
- Firewall
Logging stringMode - Filter based on the Firewall Filtering policy logging mode
- Full
Urls List<string> - Filter to limit the logs based on specific full URLs
- Grant
Type string - Grant type applicable when SIEM type is set to Azure Sentinel
- Host
Names List<string> - Filter to limit the logs based on specific hostnames
- In
Bound List<string>Bytes - Filter based on inbound bytes
- Internal
Collaborators zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Internal Collaborators - Filter logs to specific recipients within your organization
- Internal
Ips List<string> - Filter based on internal IPv4 addresses
- Itsm
Object zscaler.Type Pulumi Package. Zia. Inputs. Cloud NSSFeed Itsm Object Type - ITSM object type filter
- Json
Array boolToggle - A Boolean value indicating whether streaming of logs in JSON array format (e.g., [{JSON1},{JSON2}]) is enabled or disabled for the JSON feed output type
- Location
Groups zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Location Groups - A filter based on location groups
- Locations
zscaler.
Pulumi Package. Zia. Inputs. Cloud NSSFeed Locations - Location filter
- Malware
Classes List<string> - Malware category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Malware
Names List<string> - Filter based on malware names See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Max
Batch intSize - The maximum batch size in KB
- Name string
- The name of the cloud NSS feed
- Nat
Actions List<string> - NAT Control policy actions filter Supported Values: NONE, DNAT
- Nss
Feed stringType - NSS feed format type (e.g. CSV, syslog, Splunk Common Information Model (CIM), etc.
- Nss
Log stringType - The type of NSS logs that are streamed (e.g. Web, Firewall, DNS, Alert, etc.)
- Nss
Type string - NSS type
- Nw
Applications List<string> - Filter to include specific network applications in the logs. By default, all network applications are included in the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Nw
Applications List<string>Excludes - Filter to include specific network applications in the logs. By default, no network application is excluded from the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Nw
Services zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Nw Services - Firewall network services filter
- Oauth
Authentication bool - A Boolean value indicating whether OAuth 2.0 authentication is enabled or not
- Object
Names List<string> - CRM object name filter
- Object
Type1s List<string> - CASB activity object type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Object
Type2s List<string> - CASB activity object type filter if applicable See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Object
Types List<string> - CRM object type filter
- Out
Bound List<string>Bytes - Filter based on outbound bytes
- Page
Risk List<string>Indexes - Page Risk Index filter
- Policy
Reasons List<string> - Policy reason filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Project
Names List<string> - Repository project name filter
- Protocol
Types List<string> - Protocol types filter Supported Values: TUNNEL, SSL, HTTP, HTTPS, FTP, FTPOVERHTTP, HTTP_PROXY, TUNNEL_SSL, DNSOVERHTTPS, WEBSOCKET, WEBSOCKET_SSL
- Referer
Urls List<string> - Referrer URL filter
- Repo
Names List<string> - Repository name filter
- Request
Methods List<string> - Request methods filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Request
Sizes List<string> - Request size filter
- Response
Codes List<string> - Response codes filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Response
Sizes List<string> - Request size filter
- Rules
zscaler.
Pulumi Package. Zia. Inputs. Cloud NSSFeed Rules - Policy rules filter (e.g., Firewall Filtering or DNS Control rule filter)
- Scan
Times List<string> - Scan time filter
- Scope string
- Scope applicable when SIEM type is set to Azure Sentinel
- Sender
Name zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Sender Name - Filter based on sender or owner name
- Server
Destination List<string>Ips - Filter based on the server's destination IPv4 addresses in Firewall policy
- Server
Ips List<string> - Filter to limit the logs based on the server's IPv4 addresses
- Server
Source List<string>Ips - Filter based on the server's source IPv4 addresses in Firewall policy
- Server
Source List<string>Ports - Firewall log filter based on the traffic destination name
- Session
Counts List<string> - Firewall logs filter based on the number of sessions
- Siem
Type string - Cloud NSS SIEM type
- Threat
Names List<string> - Filter based on threat names
- Time
Zone string - Specifies the time zone that must be used in the output file See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Traffic
Forwards List<string> - Filter based on the firewall traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- Transaction
Sizes List<string> - Transaction size filter
- Tunnel
Dest List<string>Ips - Destination IPv4 addresses of tunnels
- Tunnel
Ips List<string> - Filter based on tunnel IPv4 addresses in Firewall policy
- Tunnel
Source List<string>Ips - Source IPv4 addresses of tunnels
- Tunnel
Source List<string>Ports - Filter based on the tunnel source port
- Tunnel
Types List<string> - Tunnel type filter Supported Values: GRE, IPSEC_IKEV1, IPSEC_IKEV2, SVPN, EXTRANET, ZUB, ZCB
- Url
Categories zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Url Categories - URL category filter
- Url
Classes List<string> - URL category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Url
Super List<string>Categories - URL supercategory filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- User
Agents List<string> - Predefined user agents filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Users
zscaler.
Pulumi Package. Zia. Inputs. Cloud NSSFeed Users - Users filter
- Vpn
Credentials zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Vpn Credentials - Filter based on specific VPN credentials
- Web
Application List<string>Classes - Cloud application categories Filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Web
Applications List<string> - Filter to include specific cloud applications in the logs. By default, all cloud applications are included in the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- Web
Applications List<string>Excludes - Filter to exclude specific cloud applications from the logs. By default, no cloud applications is excluded from the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request. To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- Web
Traffic List<string>Forwards - Filter based on the web traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- Action
Filter string - Policy action filter
- Activities []string
- CASB activity filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Adv
User []stringAgents - Filter based on custom user agent strings
- Advanced
Threats []string - Advanced threats filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Alerts []string
- Alert filter Supported Values: CRITICAL, WARN
- Audit
Log []stringTypes - Audit log type filter
- Authentication
Token string - The authentication token value
- Authentication
Url string - Authentication URL applicable when SIEM type is set to Azure Sentinel
- Base64Encoded
Certificate string - Base64-encoded certificate
- Buckets
Cloud
NSSFeed Buckets Args - Filter based on public cloud storage buckets
- Casb
Actions []string - CASB policy action filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Casb
Applications []string - CASB application filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Casb
File []stringType Super Categories - Endpoint DLP file type category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Casb
File []stringTypes - Endpoint DLP file type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Casb
Policy []stringTypes - CASB policy type filter Supported Values: MALWARE, DLP, ALL_INCIDENT
- Casb
Severities []string - Zscaler's Cloud Access Security Broker (CASB) severity filter Supported Values: RULE_SEVERITY_HIGH, RULE_SEVERITY_MEDIUM, RULE_SEVERITY_LOW, RULE_SEVERITY_INFO
- Casb
Tenant CloudNSSFeed Casb Tenant Args - CASB tenant filter
- Channel
Names []string - Collaboration channel name filter
- Client
Destination []stringIps - Client's destination IPv4 addresses in Firewall policy
- Client
Destination []stringPorts - Firewall logs filter based on a client's destination
- Client
Id string - Client ID applicable when SIEM type is set to S3 or Azure Sentinel
- Client
Ips []string - Filter to limit the logs based on a client's public IPv4 addresses
- Client
Secret string - Client secret applicable when SIEM type is set to S3 or Azure Sentinel
- Client
Source []stringIps - Client source IPs configured for NSS feed.
- Client
Source []stringPorts - Firewall log filter based on a client's source ports
- Connection
Headers []string - The HTTP Connection headers
- Connection
Url string - The HTTPS URL of the SIEM log collection API endpoint
- Countries []string
- Countries filter in the Firewall policy See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Custom
Escaped []stringCharacters - Characters that need to be encoded using hex when they appear in URL, Host, or Referrer
- Departments
Cloud
NSSFeed Departments Args - Departments filter
- Direction string
- Traffic direction filter specifying inbound or outbound
- Dlp
Dictionaries CloudNSSFeed Dlp Dictionaries Args - DLP dictionary filter
- Dlp
Engines CloudNSSFeed Dlp Engines Args - DLP engine filter
- Dns
Actions []string - DNS Control policy action filter
- Dns
Request []stringTypes - DNS request types included in the feed Supported Values: ANY, NONE, DNSREQ_A, DNSREQ_NS, DNSREQ_CNAME, DNSREQ_SOA, DNSREQ_WKS, DNSREQ_PTR, DNSREQ_HINFO, DNSREQ_MINFO, DNSREQ_MX, DNSREQ_TXT, DNSREQ_AAAA, DNSREQ_ISDN, DNSREQ_LOC, DNSREQ_RP, DNSREQ_RT, DNSREQ_MR, DNSREQ_MG, DNSREQ_MB, DNSREQ_AFSDB, DNSREQ_HIP, DNSREQ_SRV, DNSREQ_DS, DNSREQ_NAPTR, DNSREQ_NSEC, DNSREQ_DNSKEY, DNSREQ_HTTPS, DNSREQ_UNKNOWN
- Dns
Response []stringTypes - DNS response types filter Supported Values: ANY, DNSRES_ZSCODE, DNSRES_CNAME, DNSRES_IPV6, DNSRES_SRV_CODE, DNSRES_IPV4
- Dns
Responses []string - DNS responses filter
- Domains []string
- Filter to limit the logs to sessions associated with specific domains
- Download
Times []string - Download time filter
- Durations []string
- Filter based on time durations
- Email
Dlp []stringLog Types - Email DLP record type filter Supported Values: EPDLP_SCAN_AGGREGATE, EPDLP_SENSITIVE_ACTIVITY, EPDLP_DLP_INCIDENT
- Email
Dlp stringPolicy Action - Action filter for Email DLP log type
- End
Point []stringDlp Log Types - Endpoint DLP log type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Eps
Rate intLimit - Event per second limit
- Event string
- CASB event filter
- External
Collaborators CloudNSSFeed External Collaborators Args - Filter logs to specific recipients outside your organization
- External
Owners CloudNSSFeed External Owners Args - Filter logs associated with file owners (inside or outside your organization) who are not provisioned to ZIA services
- Feed
Output stringFormat - Output format used for the feed
- Feed
Status string - The status of the feed
- File
Names []string - Filter based on the file name
- File
Sizes []string - File size filter
- File
Sources []string - Filter based on the file source
- File
Type []stringCategories - Filter based on the file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- File
Type []stringSuper Categories - Filter based on the category of file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Firewall
Actions []string - Firewall actions included in the NSS feed Supported Values: BLOCK,ALLOW,BLOCK_DROP,BLOCK_RESET,BLOCK_ICMP,COUNTRY_BLOCK IPS_BLOCK_DROP,IPS_BLOCK_RESET,ALLOW_INSUFFICIENT_APPDATA, BLOCK_ABUSE_DROP,INT_ERR_DROP,CFG_BYPASSED,CFG_TIMEDOUT
- Firewall
Logging stringMode - Filter based on the Firewall Filtering policy logging mode
- Full
Urls []string - Filter to limit the logs based on specific full URLs
- Grant
Type string - Grant type applicable when SIEM type is set to Azure Sentinel
- Host
Names []string - Filter to limit the logs based on specific hostnames
- In
Bound []stringBytes - Filter based on inbound bytes
- Internal
Collaborators CloudNSSFeed Internal Collaborators Args - Filter logs to specific recipients within your organization
- Internal
Ips []string - Filter based on internal IPv4 addresses
- Itsm
Object CloudType NSSFeed Itsm Object Type Args - ITSM object type filter
- Json
Array boolToggle - A Boolean value indicating whether streaming of logs in JSON array format (e.g., [{JSON1},{JSON2}]) is enabled or disabled for the JSON feed output type
- Location
Groups CloudNSSFeed Location Groups Args - A filter based on location groups
- Locations
Cloud
NSSFeed Locations Args - Location filter
- Malware
Classes []string - Malware category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Malware
Names []string - Filter based on malware names See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Max
Batch intSize - The maximum batch size in KB
- Name string
- The name of the cloud NSS feed
- Nat
Actions []string - NAT Control policy actions filter Supported Values: NONE, DNAT
- Nss
Feed stringType - NSS feed format type (e.g. CSV, syslog, Splunk Common Information Model (CIM), etc.
- Nss
Log stringType - The type of NSS logs that are streamed (e.g. Web, Firewall, DNS, Alert, etc.)
- Nss
Type string - NSS type
- Nw
Applications []string - Filter to include specific network applications in the logs. By default, all network applications are included in the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Nw
Applications []stringExcludes - Filter to include specific network applications in the logs. By default, no network application is excluded from the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Nw
Services CloudNSSFeed Nw Services Args - Firewall network services filter
- Oauth
Authentication bool - A Boolean value indicating whether OAuth 2.0 authentication is enabled or not
- Object
Names []string - CRM object name filter
- Object
Type1s []string - CASB activity object type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Object
Type2s []string - CASB activity object type filter if applicable See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Object
Types []string - CRM object type filter
- Out
Bound []stringBytes - Filter based on outbound bytes
- Page
Risk []stringIndexes - Page Risk Index filter
- Policy
Reasons []string - Policy reason filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Project
Names []string - Repository project name filter
- Protocol
Types []string - Protocol types filter Supported Values: TUNNEL, SSL, HTTP, HTTPS, FTP, FTPOVERHTTP, HTTP_PROXY, TUNNEL_SSL, DNSOVERHTTPS, WEBSOCKET, WEBSOCKET_SSL
- Referer
Urls []string - Referrer URL filter
- Repo
Names []string - Repository name filter
- Request
Methods []string - Request methods filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Request
Sizes []string - Request size filter
- Response
Codes []string - Response codes filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Response
Sizes []string - Request size filter
- Rules
Cloud
NSSFeed Rules Args - Policy rules filter (e.g., Firewall Filtering or DNS Control rule filter)
- Scan
Times []string - Scan time filter
- Scope string
- Scope applicable when SIEM type is set to Azure Sentinel
- Sender
Name CloudNSSFeed Sender Name Args - Filter based on sender or owner name
- Server
Destination []stringIps - Filter based on the server's destination IPv4 addresses in Firewall policy
- Server
Ips []string - Filter to limit the logs based on the server's IPv4 addresses
- Server
Source []stringIps - Filter based on the server's source IPv4 addresses in Firewall policy
- Server
Source []stringPorts - Firewall log filter based on the traffic destination name
- Session
Counts []string - Firewall logs filter based on the number of sessions
- Siem
Type string - Cloud NSS SIEM type
- Threat
Names []string - Filter based on threat names
- Time
Zone string - Specifies the time zone that must be used in the output file See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Traffic
Forwards []string - Filter based on the firewall traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- Transaction
Sizes []string - Transaction size filter
- Tunnel
Dest []stringIps - Destination IPv4 addresses of tunnels
- Tunnel
Ips []string - Filter based on tunnel IPv4 addresses in Firewall policy
- Tunnel
Source []stringIps - Source IPv4 addresses of tunnels
- Tunnel
Source []stringPorts - Filter based on the tunnel source port
- Tunnel
Types []string - Tunnel type filter Supported Values: GRE, IPSEC_IKEV1, IPSEC_IKEV2, SVPN, EXTRANET, ZUB, ZCB
- Url
Categories CloudNSSFeed Url Categories Args - URL category filter
- Url
Classes []string - URL category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Url
Super []stringCategories - URL supercategory filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- User
Agents []string - Predefined user agents filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Users
Cloud
NSSFeed Users Args - Users filter
- Vpn
Credentials CloudNSSFeed Vpn Credentials Args - Filter based on specific VPN credentials
- Web
Application []stringClasses - Cloud application categories Filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Web
Applications []string - Filter to include specific cloud applications in the logs. By default, all cloud applications are included in the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- Web
Applications []stringExcludes - Filter to exclude specific cloud applications from the logs. By default, no cloud applications is excluded from the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request. To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- Web
Traffic []stringForwards - Filter based on the web traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- action
Filter String - Policy action filter
- activities List<String>
- CASB activity filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- adv
User List<String>Agents - Filter based on custom user agent strings
- advanced
Threats List<String> - Advanced threats filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- alerts List<String>
- Alert filter Supported Values: CRITICAL, WARN
- audit
Log List<String>Types - Audit log type filter
- authentication
Token String - The authentication token value
- authentication
Url String - Authentication URL applicable when SIEM type is set to Azure Sentinel
- base64Encoded
Certificate String - Base64-encoded certificate
- buckets
Cloud
NSSFeed Buckets - Filter based on public cloud storage buckets
- casb
Actions List<String> - CASB policy action filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
Applications List<String> - CASB application filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
File List<String>Type Super Categories - Endpoint DLP file type category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
File List<String>Types - Endpoint DLP file type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
Policy List<String>Types - CASB policy type filter Supported Values: MALWARE, DLP, ALL_INCIDENT
- casb
Severities List<String> - Zscaler's Cloud Access Security Broker (CASB) severity filter Supported Values: RULE_SEVERITY_HIGH, RULE_SEVERITY_MEDIUM, RULE_SEVERITY_LOW, RULE_SEVERITY_INFO
- casb
Tenant CloudNSSFeed Casb Tenant - CASB tenant filter
- channel
Names List<String> - Collaboration channel name filter
- client
Destination List<String>Ips - Client's destination IPv4 addresses in Firewall policy
- client
Destination List<String>Ports - Firewall logs filter based on a client's destination
- client
Id String - Client ID applicable when SIEM type is set to S3 or Azure Sentinel
- client
Ips List<String> - Filter to limit the logs based on a client's public IPv4 addresses
- client
Secret String - Client secret applicable when SIEM type is set to S3 or Azure Sentinel
- client
Source List<String>Ips - Client source IPs configured for NSS feed.
- client
Source List<String>Ports - Firewall log filter based on a client's source ports
- connection
Headers List<String> - The HTTP Connection headers
- connection
Url String - The HTTPS URL of the SIEM log collection API endpoint
- countries List<String>
- Countries filter in the Firewall policy See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- custom
Escaped List<String>Characters - Characters that need to be encoded using hex when they appear in URL, Host, or Referrer
- departments
Cloud
NSSFeed Departments - Departments filter
- direction String
- Traffic direction filter specifying inbound or outbound
- dlp
Dictionaries CloudNSSFeed Dlp Dictionaries - DLP dictionary filter
- dlp
Engines CloudNSSFeed Dlp Engines - DLP engine filter
- dns
Actions List<String> - DNS Control policy action filter
- dns
Request List<String>Types - DNS request types included in the feed Supported Values: ANY, NONE, DNSREQ_A, DNSREQ_NS, DNSREQ_CNAME, DNSREQ_SOA, DNSREQ_WKS, DNSREQ_PTR, DNSREQ_HINFO, DNSREQ_MINFO, DNSREQ_MX, DNSREQ_TXT, DNSREQ_AAAA, DNSREQ_ISDN, DNSREQ_LOC, DNSREQ_RP, DNSREQ_RT, DNSREQ_MR, DNSREQ_MG, DNSREQ_MB, DNSREQ_AFSDB, DNSREQ_HIP, DNSREQ_SRV, DNSREQ_DS, DNSREQ_NAPTR, DNSREQ_NSEC, DNSREQ_DNSKEY, DNSREQ_HTTPS, DNSREQ_UNKNOWN
- dns
Response List<String>Types - DNS response types filter Supported Values: ANY, DNSRES_ZSCODE, DNSRES_CNAME, DNSRES_IPV6, DNSRES_SRV_CODE, DNSRES_IPV4
- dns
Responses List<String> - DNS responses filter
- domains List<String>
- Filter to limit the logs to sessions associated with specific domains
- download
Times List<String> - Download time filter
- durations List<String>
- Filter based on time durations
- email
Dlp List<String>Log Types - Email DLP record type filter Supported Values: EPDLP_SCAN_AGGREGATE, EPDLP_SENSITIVE_ACTIVITY, EPDLP_DLP_INCIDENT
- email
Dlp StringPolicy Action - Action filter for Email DLP log type
- end
Point List<String>Dlp Log Types - Endpoint DLP log type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- eps
Rate IntegerLimit - Event per second limit
- event String
- CASB event filter
- external
Collaborators CloudNSSFeed External Collaborators - Filter logs to specific recipients outside your organization
- external
Owners CloudNSSFeed External Owners - Filter logs associated with file owners (inside or outside your organization) who are not provisioned to ZIA services
- feed
Output StringFormat - Output format used for the feed
- feed
Status String - The status of the feed
- file
Names List<String> - Filter based on the file name
- file
Sizes List<String> - File size filter
- file
Sources List<String> - Filter based on the file source
- file
Type List<String>Categories - Filter based on the file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- file
Type List<String>Super Categories - Filter based on the category of file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- firewall
Actions List<String> - Firewall actions included in the NSS feed Supported Values: BLOCK,ALLOW,BLOCK_DROP,BLOCK_RESET,BLOCK_ICMP,COUNTRY_BLOCK IPS_BLOCK_DROP,IPS_BLOCK_RESET,ALLOW_INSUFFICIENT_APPDATA, BLOCK_ABUSE_DROP,INT_ERR_DROP,CFG_BYPASSED,CFG_TIMEDOUT
- firewall
Logging StringMode - Filter based on the Firewall Filtering policy logging mode
- full
Urls List<String> - Filter to limit the logs based on specific full URLs
- grant
Type String - Grant type applicable when SIEM type is set to Azure Sentinel
- host
Names List<String> - Filter to limit the logs based on specific hostnames
- in
Bound List<String>Bytes - Filter based on inbound bytes
- internal
Collaborators CloudNSSFeed Internal Collaborators - Filter logs to specific recipients within your organization
- internal
Ips List<String> - Filter based on internal IPv4 addresses
- itsm
Object CloudType NSSFeed Itsm Object Type - ITSM object type filter
- json
Array BooleanToggle - A Boolean value indicating whether streaming of logs in JSON array format (e.g., [{JSON1},{JSON2}]) is enabled or disabled for the JSON feed output type
- location
Groups CloudNSSFeed Location Groups - A filter based on location groups
- locations
Cloud
NSSFeed Locations - Location filter
- malware
Classes List<String> - Malware category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- malware
Names List<String> - Filter based on malware names See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- max
Batch IntegerSize - The maximum batch size in KB
- name String
- The name of the cloud NSS feed
- nat
Actions List<String> - NAT Control policy actions filter Supported Values: NONE, DNAT
- nss
Feed StringType - NSS feed format type (e.g. CSV, syslog, Splunk Common Information Model (CIM), etc.
- nss
Log StringType - The type of NSS logs that are streamed (e.g. Web, Firewall, DNS, Alert, etc.)
- nss
Type String - NSS type
- nw
Applications List<String> - Filter to include specific network applications in the logs. By default, all network applications are included in the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- nw
Applications List<String>Excludes - Filter to include specific network applications in the logs. By default, no network application is excluded from the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- nw
Services CloudNSSFeed Nw Services - Firewall network services filter
- oauth
Authentication Boolean - A Boolean value indicating whether OAuth 2.0 authentication is enabled or not
- object
Names List<String> - CRM object name filter
- object
Type1s List<String> - CASB activity object type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- object
Type2s List<String> - CASB activity object type filter if applicable See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- object
Types List<String> - CRM object type filter
- out
Bound List<String>Bytes - Filter based on outbound bytes
- page
Risk List<String>Indexes - Page Risk Index filter
- policy
Reasons List<String> - Policy reason filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- project
Names List<String> - Repository project name filter
- protocol
Types List<String> - Protocol types filter Supported Values: TUNNEL, SSL, HTTP, HTTPS, FTP, FTPOVERHTTP, HTTP_PROXY, TUNNEL_SSL, DNSOVERHTTPS, WEBSOCKET, WEBSOCKET_SSL
- referer
Urls List<String> - Referrer URL filter
- repo
Names List<String> - Repository name filter
- request
Methods List<String> - Request methods filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- request
Sizes List<String> - Request size filter
- response
Codes List<String> - Response codes filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- response
Sizes List<String> - Request size filter
- rules
Cloud
NSSFeed Rules - Policy rules filter (e.g., Firewall Filtering or DNS Control rule filter)
- scan
Times List<String> - Scan time filter
- scope String
- Scope applicable when SIEM type is set to Azure Sentinel
- sender
Name CloudNSSFeed Sender Name - Filter based on sender or owner name
- server
Destination List<String>Ips - Filter based on the server's destination IPv4 addresses in Firewall policy
- server
Ips List<String> - Filter to limit the logs based on the server's IPv4 addresses
- server
Source List<String>Ips - Filter based on the server's source IPv4 addresses in Firewall policy
- server
Source List<String>Ports - Firewall log filter based on the traffic destination name
- session
Counts List<String> - Firewall logs filter based on the number of sessions
- siem
Type String - Cloud NSS SIEM type
- threat
Names List<String> - Filter based on threat names
- time
Zone String - Specifies the time zone that must be used in the output file See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- traffic
Forwards List<String> - Filter based on the firewall traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- transaction
Sizes List<String> - Transaction size filter
- tunnel
Dest List<String>Ips - Destination IPv4 addresses of tunnels
- tunnel
Ips List<String> - Filter based on tunnel IPv4 addresses in Firewall policy
- tunnel
Source List<String>Ips - Source IPv4 addresses of tunnels
- tunnel
Source List<String>Ports - Filter based on the tunnel source port
- tunnel
Types List<String> - Tunnel type filter Supported Values: GRE, IPSEC_IKEV1, IPSEC_IKEV2, SVPN, EXTRANET, ZUB, ZCB
- url
Categories CloudNSSFeed Url Categories - URL category filter
- url
Classes List<String> - URL category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- url
Super List<String>Categories - URL supercategory filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- user
Agents List<String> - Predefined user agents filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- users
Cloud
NSSFeed Users - Users filter
- vpn
Credentials CloudNSSFeed Vpn Credentials - Filter based on specific VPN credentials
- web
Application List<String>Classes - Cloud application categories Filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- web
Applications List<String> - Filter to include specific cloud applications in the logs. By default, all cloud applications are included in the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- web
Applications List<String>Excludes - Filter to exclude specific cloud applications from the logs. By default, no cloud applications is excluded from the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request. To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- web
Traffic List<String>Forwards - Filter based on the web traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- action
Filter string - Policy action filter
- activities string[]
- CASB activity filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- adv
User string[]Agents - Filter based on custom user agent strings
- advanced
Threats string[] - Advanced threats filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- alerts string[]
- Alert filter Supported Values: CRITICAL, WARN
- audit
Log string[]Types - Audit log type filter
- authentication
Token string - The authentication token value
- authentication
Url string - Authentication URL applicable when SIEM type is set to Azure Sentinel
- base64Encoded
Certificate string - Base64-encoded certificate
- buckets
Cloud
NSSFeed Buckets - Filter based on public cloud storage buckets
- casb
Actions string[] - CASB policy action filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
Applications string[] - CASB application filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
File string[]Type Super Categories - Endpoint DLP file type category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
File string[]Types - Endpoint DLP file type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
Policy string[]Types - CASB policy type filter Supported Values: MALWARE, DLP, ALL_INCIDENT
- casb
Severities string[] - Zscaler's Cloud Access Security Broker (CASB) severity filter Supported Values: RULE_SEVERITY_HIGH, RULE_SEVERITY_MEDIUM, RULE_SEVERITY_LOW, RULE_SEVERITY_INFO
- casb
Tenant CloudNSSFeed Casb Tenant - CASB tenant filter
- channel
Names string[] - Collaboration channel name filter
- client
Destination string[]Ips - Client's destination IPv4 addresses in Firewall policy
- client
Destination string[]Ports - Firewall logs filter based on a client's destination
- client
Id string - Client ID applicable when SIEM type is set to S3 or Azure Sentinel
- client
Ips string[] - Filter to limit the logs based on a client's public IPv4 addresses
- client
Secret string - Client secret applicable when SIEM type is set to S3 or Azure Sentinel
- client
Source string[]Ips - Client source IPs configured for NSS feed.
- client
Source string[]Ports - Firewall log filter based on a client's source ports
- connection
Headers string[] - The HTTP Connection headers
- connection
Url string - The HTTPS URL of the SIEM log collection API endpoint
- countries string[]
- Countries filter in the Firewall policy See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- custom
Escaped string[]Characters - Characters that need to be encoded using hex when they appear in URL, Host, or Referrer
- departments
Cloud
NSSFeed Departments - Departments filter
- direction string
- Traffic direction filter specifying inbound or outbound
- dlp
Dictionaries CloudNSSFeed Dlp Dictionaries - DLP dictionary filter
- dlp
Engines CloudNSSFeed Dlp Engines - DLP engine filter
- dns
Actions string[] - DNS Control policy action filter
- dns
Request string[]Types - DNS request types included in the feed Supported Values: ANY, NONE, DNSREQ_A, DNSREQ_NS, DNSREQ_CNAME, DNSREQ_SOA, DNSREQ_WKS, DNSREQ_PTR, DNSREQ_HINFO, DNSREQ_MINFO, DNSREQ_MX, DNSREQ_TXT, DNSREQ_AAAA, DNSREQ_ISDN, DNSREQ_LOC, DNSREQ_RP, DNSREQ_RT, DNSREQ_MR, DNSREQ_MG, DNSREQ_MB, DNSREQ_AFSDB, DNSREQ_HIP, DNSREQ_SRV, DNSREQ_DS, DNSREQ_NAPTR, DNSREQ_NSEC, DNSREQ_DNSKEY, DNSREQ_HTTPS, DNSREQ_UNKNOWN
- dns
Response string[]Types - DNS response types filter Supported Values: ANY, DNSRES_ZSCODE, DNSRES_CNAME, DNSRES_IPV6, DNSRES_SRV_CODE, DNSRES_IPV4
- dns
Responses string[] - DNS responses filter
- domains string[]
- Filter to limit the logs to sessions associated with specific domains
- download
Times string[] - Download time filter
- durations string[]
- Filter based on time durations
- email
Dlp string[]Log Types - Email DLP record type filter Supported Values: EPDLP_SCAN_AGGREGATE, EPDLP_SENSITIVE_ACTIVITY, EPDLP_DLP_INCIDENT
- email
Dlp stringPolicy Action - Action filter for Email DLP log type
- end
Point string[]Dlp Log Types - Endpoint DLP log type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- eps
Rate numberLimit - Event per second limit
- event string
- CASB event filter
- external
Collaborators CloudNSSFeed External Collaborators - Filter logs to specific recipients outside your organization
- external
Owners CloudNSSFeed External Owners - Filter logs associated with file owners (inside or outside your organization) who are not provisioned to ZIA services
- feed
Output stringFormat - Output format used for the feed
- feed
Status string - The status of the feed
- file
Names string[] - Filter based on the file name
- file
Sizes string[] - File size filter
- file
Sources string[] - Filter based on the file source
- file
Type string[]Categories - Filter based on the file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- file
Type string[]Super Categories - Filter based on the category of file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- firewall
Actions string[] - Firewall actions included in the NSS feed Supported Values: BLOCK,ALLOW,BLOCK_DROP,BLOCK_RESET,BLOCK_ICMP,COUNTRY_BLOCK IPS_BLOCK_DROP,IPS_BLOCK_RESET,ALLOW_INSUFFICIENT_APPDATA, BLOCK_ABUSE_DROP,INT_ERR_DROP,CFG_BYPASSED,CFG_TIMEDOUT
- firewall
Logging stringMode - Filter based on the Firewall Filtering policy logging mode
- full
Urls string[] - Filter to limit the logs based on specific full URLs
- grant
Type string - Grant type applicable when SIEM type is set to Azure Sentinel
- host
Names string[] - Filter to limit the logs based on specific hostnames
- in
Bound string[]Bytes - Filter based on inbound bytes
- internal
Collaborators CloudNSSFeed Internal Collaborators - Filter logs to specific recipients within your organization
- internal
Ips string[] - Filter based on internal IPv4 addresses
- itsm
Object CloudType NSSFeed Itsm Object Type - ITSM object type filter
- json
Array booleanToggle - A Boolean value indicating whether streaming of logs in JSON array format (e.g., [{JSON1},{JSON2}]) is enabled or disabled for the JSON feed output type
- location
Groups CloudNSSFeed Location Groups - A filter based on location groups
- locations
Cloud
NSSFeed Locations - Location filter
- malware
Classes string[] - Malware category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- malware
Names string[] - Filter based on malware names See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- max
Batch numberSize - The maximum batch size in KB
- name string
- The name of the cloud NSS feed
- nat
Actions string[] - NAT Control policy actions filter Supported Values: NONE, DNAT
- nss
Feed stringType - NSS feed format type (e.g. CSV, syslog, Splunk Common Information Model (CIM), etc.
- nss
Log stringType - The type of NSS logs that are streamed (e.g. Web, Firewall, DNS, Alert, etc.)
- nss
Type string - NSS type
- nw
Applications string[] - Filter to include specific network applications in the logs. By default, all network applications are included in the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- nw
Applications string[]Excludes - Filter to include specific network applications in the logs. By default, no network application is excluded from the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- nw
Services CloudNSSFeed Nw Services - Firewall network services filter
- oauth
Authentication boolean - A Boolean value indicating whether OAuth 2.0 authentication is enabled or not
- object
Names string[] - CRM object name filter
- object
Type1s string[] - CASB activity object type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- object
Type2s string[] - CASB activity object type filter if applicable See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- object
Types string[] - CRM object type filter
- out
Bound string[]Bytes - Filter based on outbound bytes
- page
Risk string[]Indexes - Page Risk Index filter
- policy
Reasons string[] - Policy reason filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- project
Names string[] - Repository project name filter
- protocol
Types string[] - Protocol types filter Supported Values: TUNNEL, SSL, HTTP, HTTPS, FTP, FTPOVERHTTP, HTTP_PROXY, TUNNEL_SSL, DNSOVERHTTPS, WEBSOCKET, WEBSOCKET_SSL
- referer
Urls string[] - Referrer URL filter
- repo
Names string[] - Repository name filter
- request
Methods string[] - Request methods filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- request
Sizes string[] - Request size filter
- response
Codes string[] - Response codes filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- response
Sizes string[] - Request size filter
- rules
Cloud
NSSFeed Rules - Policy rules filter (e.g., Firewall Filtering or DNS Control rule filter)
- scan
Times string[] - Scan time filter
- scope string
- Scope applicable when SIEM type is set to Azure Sentinel
- sender
Name CloudNSSFeed Sender Name - Filter based on sender or owner name
- server
Destination string[]Ips - Filter based on the server's destination IPv4 addresses in Firewall policy
- server
Ips string[] - Filter to limit the logs based on the server's IPv4 addresses
- server
Source string[]Ips - Filter based on the server's source IPv4 addresses in Firewall policy
- server
Source string[]Ports - Firewall log filter based on the traffic destination name
- session
Counts string[] - Firewall logs filter based on the number of sessions
- siem
Type string - Cloud NSS SIEM type
- threat
Names string[] - Filter based on threat names
- time
Zone string - Specifies the time zone that must be used in the output file See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- traffic
Forwards string[] - Filter based on the firewall traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- transaction
Sizes string[] - Transaction size filter
- tunnel
Dest string[]Ips - Destination IPv4 addresses of tunnels
- tunnel
Ips string[] - Filter based on tunnel IPv4 addresses in Firewall policy
- tunnel
Source string[]Ips - Source IPv4 addresses of tunnels
- tunnel
Source string[]Ports - Filter based on the tunnel source port
- tunnel
Types string[] - Tunnel type filter Supported Values: GRE, IPSEC_IKEV1, IPSEC_IKEV2, SVPN, EXTRANET, ZUB, ZCB
- url
Categories CloudNSSFeed Url Categories - URL category filter
- url
Classes string[] - URL category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- url
Super string[]Categories - URL supercategory filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- user
Agents string[] - Predefined user agents filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- users
Cloud
NSSFeed Users - Users filter
- vpn
Credentials CloudNSSFeed Vpn Credentials - Filter based on specific VPN credentials
- web
Application string[]Classes - Cloud application categories Filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- web
Applications string[] - Filter to include specific cloud applications in the logs. By default, all cloud applications are included in the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- web
Applications string[]Excludes - Filter to exclude specific cloud applications from the logs. By default, no cloud applications is excluded from the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request. To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- web
Traffic string[]Forwards - Filter based on the web traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- action_
filter str - Policy action filter
- activities Sequence[str]
- CASB activity filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- adv_
user_ Sequence[str]agents - Filter based on custom user agent strings
- advanced_
threats Sequence[str] - Advanced threats filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- alerts Sequence[str]
- Alert filter Supported Values: CRITICAL, WARN
- audit_
log_ Sequence[str]types - Audit log type filter
- authentication_
token str - The authentication token value
- authentication_
url str - Authentication URL applicable when SIEM type is set to Azure Sentinel
- base64_
encoded_ strcertificate - Base64-encoded certificate
- buckets
Cloud
NSSFeed Buckets Args - Filter based on public cloud storage buckets
- casb_
actions Sequence[str] - CASB policy action filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb_
applications Sequence[str] - CASB application filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb_
file_ Sequence[str]type_ super_ categories - Endpoint DLP file type category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb_
file_ Sequence[str]types - Endpoint DLP file type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb_
policy_ Sequence[str]types - CASB policy type filter Supported Values: MALWARE, DLP, ALL_INCIDENT
- casb_
severities Sequence[str] - Zscaler's Cloud Access Security Broker (CASB) severity filter Supported Values: RULE_SEVERITY_HIGH, RULE_SEVERITY_MEDIUM, RULE_SEVERITY_LOW, RULE_SEVERITY_INFO
- casb_
tenant CloudNSSFeed Casb Tenant Args - CASB tenant filter
- channel_
names Sequence[str] - Collaboration channel name filter
- client_
destination_ Sequence[str]ips - Client's destination IPv4 addresses in Firewall policy
- client_
destination_ Sequence[str]ports - Firewall logs filter based on a client's destination
- client_
id str - Client ID applicable when SIEM type is set to S3 or Azure Sentinel
- client_
ips Sequence[str] - Filter to limit the logs based on a client's public IPv4 addresses
- client_
secret str - Client secret applicable when SIEM type is set to S3 or Azure Sentinel
- client_
source_ Sequence[str]ips - Client source IPs configured for NSS feed.
- client_
source_ Sequence[str]ports - Firewall log filter based on a client's source ports
- connection_
headers Sequence[str] - The HTTP Connection headers
- connection_
url str - The HTTPS URL of the SIEM log collection API endpoint
- countries Sequence[str]
- Countries filter in the Firewall policy See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- custom_
escaped_ Sequence[str]characters - Characters that need to be encoded using hex when they appear in URL, Host, or Referrer
- departments
Cloud
NSSFeed Departments Args - Departments filter
- direction str
- Traffic direction filter specifying inbound or outbound
- dlp_
dictionaries CloudNSSFeed Dlp Dictionaries Args - DLP dictionary filter
- dlp_
engines CloudNSSFeed Dlp Engines Args - DLP engine filter
- dns_
actions Sequence[str] - DNS Control policy action filter
- dns_
request_ Sequence[str]types - DNS request types included in the feed Supported Values: ANY, NONE, DNSREQ_A, DNSREQ_NS, DNSREQ_CNAME, DNSREQ_SOA, DNSREQ_WKS, DNSREQ_PTR, DNSREQ_HINFO, DNSREQ_MINFO, DNSREQ_MX, DNSREQ_TXT, DNSREQ_AAAA, DNSREQ_ISDN, DNSREQ_LOC, DNSREQ_RP, DNSREQ_RT, DNSREQ_MR, DNSREQ_MG, DNSREQ_MB, DNSREQ_AFSDB, DNSREQ_HIP, DNSREQ_SRV, DNSREQ_DS, DNSREQ_NAPTR, DNSREQ_NSEC, DNSREQ_DNSKEY, DNSREQ_HTTPS, DNSREQ_UNKNOWN
- dns_
response_ Sequence[str]types - DNS response types filter Supported Values: ANY, DNSRES_ZSCODE, DNSRES_CNAME, DNSRES_IPV6, DNSRES_SRV_CODE, DNSRES_IPV4
- dns_
responses Sequence[str] - DNS responses filter
- domains Sequence[str]
- Filter to limit the logs to sessions associated with specific domains
- download_
times Sequence[str] - Download time filter
- durations Sequence[str]
- Filter based on time durations
- email_
dlp_ Sequence[str]log_ types - Email DLP record type filter Supported Values: EPDLP_SCAN_AGGREGATE, EPDLP_SENSITIVE_ACTIVITY, EPDLP_DLP_INCIDENT
- email_
dlp_ strpolicy_ action - Action filter for Email DLP log type
- end_
point_ Sequence[str]dlp_ log_ types - Endpoint DLP log type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- eps_
rate_ intlimit - Event per second limit
- event str
- CASB event filter
- external_
collaborators CloudNSSFeed External Collaborators Args - Filter logs to specific recipients outside your organization
- external_
owners CloudNSSFeed External Owners Args - Filter logs associated with file owners (inside or outside your organization) who are not provisioned to ZIA services
- feed_
output_ strformat - Output format used for the feed
- feed_
status str - The status of the feed
- file_
names Sequence[str] - Filter based on the file name
- file_
sizes Sequence[str] - File size filter
- file_
sources Sequence[str] - Filter based on the file source
- file_
type_ Sequence[str]categories - Filter based on the file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- file_
type_ Sequence[str]super_ categories - Filter based on the category of file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- firewall_
actions Sequence[str] - Firewall actions included in the NSS feed Supported Values: BLOCK,ALLOW,BLOCK_DROP,BLOCK_RESET,BLOCK_ICMP,COUNTRY_BLOCK IPS_BLOCK_DROP,IPS_BLOCK_RESET,ALLOW_INSUFFICIENT_APPDATA, BLOCK_ABUSE_DROP,INT_ERR_DROP,CFG_BYPASSED,CFG_TIMEDOUT
- firewall_
logging_ strmode - Filter based on the Firewall Filtering policy logging mode
- full_
urls Sequence[str] - Filter to limit the logs based on specific full URLs
- grant_
type str - Grant type applicable when SIEM type is set to Azure Sentinel
- host_
names Sequence[str] - Filter to limit the logs based on specific hostnames
- in_
bound_ Sequence[str]bytes - Filter based on inbound bytes
- internal_
collaborators CloudNSSFeed Internal Collaborators Args - Filter logs to specific recipients within your organization
- internal_
ips Sequence[str] - Filter based on internal IPv4 addresses
- itsm_
object_ Cloudtype NSSFeed Itsm Object Type Args - ITSM object type filter
- json_
array_ booltoggle - A Boolean value indicating whether streaming of logs in JSON array format (e.g., [{JSON1},{JSON2}]) is enabled or disabled for the JSON feed output type
- location_
groups CloudNSSFeed Location Groups Args - A filter based on location groups
- locations
Cloud
NSSFeed Locations Args - Location filter
- malware_
classes Sequence[str] - Malware category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- malware_
names Sequence[str] - Filter based on malware names See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- max_
batch_ intsize - The maximum batch size in KB
- name str
- The name of the cloud NSS feed
- nat_
actions Sequence[str] - NAT Control policy actions filter Supported Values: NONE, DNAT
- nss_
feed_ strtype - NSS feed format type (e.g. CSV, syslog, Splunk Common Information Model (CIM), etc.
- nss_
log_ strtype - The type of NSS logs that are streamed (e.g. Web, Firewall, DNS, Alert, etc.)
- nss_
type str - NSS type
- nw_
applications Sequence[str] - Filter to include specific network applications in the logs. By default, all network applications are included in the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- nw_
applications_ Sequence[str]excludes - Filter to include specific network applications in the logs. By default, no network application is excluded from the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- nw_
services CloudNSSFeed Nw Services Args - Firewall network services filter
- oauth_
authentication bool - A Boolean value indicating whether OAuth 2.0 authentication is enabled or not
- object_
names Sequence[str] - CRM object name filter
- object_
type1s Sequence[str] - CASB activity object type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- object_
type2s Sequence[str] - CASB activity object type filter if applicable See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- object_
types Sequence[str] - CRM object type filter
- out_
bound_ Sequence[str]bytes - Filter based on outbound bytes
- page_
risk_ Sequence[str]indexes - Page Risk Index filter
- policy_
reasons Sequence[str] - Policy reason filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- project_
names Sequence[str] - Repository project name filter
- protocol_
types Sequence[str] - Protocol types filter Supported Values: TUNNEL, SSL, HTTP, HTTPS, FTP, FTPOVERHTTP, HTTP_PROXY, TUNNEL_SSL, DNSOVERHTTPS, WEBSOCKET, WEBSOCKET_SSL
- referer_
urls Sequence[str] - Referrer URL filter
- repo_
names Sequence[str] - Repository name filter
- request_
methods Sequence[str] - Request methods filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- request_
sizes Sequence[str] - Request size filter
- response_
codes Sequence[str] - Response codes filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- response_
sizes Sequence[str] - Request size filter
- rules
Cloud
NSSFeed Rules Args - Policy rules filter (e.g., Firewall Filtering or DNS Control rule filter)
- scan_
times Sequence[str] - Scan time filter
- scope str
- Scope applicable when SIEM type is set to Azure Sentinel
- sender_
name CloudNSSFeed Sender Name Args - Filter based on sender or owner name
- server_
destination_ Sequence[str]ips - Filter based on the server's destination IPv4 addresses in Firewall policy
- server_
ips Sequence[str] - Filter to limit the logs based on the server's IPv4 addresses
- server_
source_ Sequence[str]ips - Filter based on the server's source IPv4 addresses in Firewall policy
- server_
source_ Sequence[str]ports - Firewall log filter based on the traffic destination name
- session_
counts Sequence[str] - Firewall logs filter based on the number of sessions
- siem_
type str - Cloud NSS SIEM type
- threat_
names Sequence[str] - Filter based on threat names
- time_
zone str - Specifies the time zone that must be used in the output file See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- traffic_
forwards Sequence[str] - Filter based on the firewall traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- transaction_
sizes Sequence[str] - Transaction size filter
- tunnel_
dest_ Sequence[str]ips - Destination IPv4 addresses of tunnels
- tunnel_
ips Sequence[str] - Filter based on tunnel IPv4 addresses in Firewall policy
- tunnel_
source_ Sequence[str]ips - Source IPv4 addresses of tunnels
- tunnel_
source_ Sequence[str]ports - Filter based on the tunnel source port
- tunnel_
types Sequence[str] - Tunnel type filter Supported Values: GRE, IPSEC_IKEV1, IPSEC_IKEV2, SVPN, EXTRANET, ZUB, ZCB
- url_
categories CloudNSSFeed Url Categories Args - URL category filter
- url_
classes Sequence[str] - URL category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- url_
super_ Sequence[str]categories - URL supercategory filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- user_
agents Sequence[str] - Predefined user agents filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- users
Cloud
NSSFeed Users Args - Users filter
- vpn_
credentials CloudNSSFeed Vpn Credentials Args - Filter based on specific VPN credentials
- web_
application_ Sequence[str]classes - Cloud application categories Filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- web_
applications Sequence[str] - Filter to include specific cloud applications in the logs. By default, all cloud applications are included in the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- web_
applications_ Sequence[str]excludes - Filter to exclude specific cloud applications from the logs. By default, no cloud applications is excluded from the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request. To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- web_
traffic_ Sequence[str]forwards - Filter based on the web traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- action
Filter String - Policy action filter
- activities List<String>
- CASB activity filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- adv
User List<String>Agents - Filter based on custom user agent strings
- advanced
Threats List<String> - Advanced threats filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- alerts List<String>
- Alert filter Supported Values: CRITICAL, WARN
- audit
Log List<String>Types - Audit log type filter
- authentication
Token String - The authentication token value
- authentication
Url String - Authentication URL applicable when SIEM type is set to Azure Sentinel
- base64Encoded
Certificate String - Base64-encoded certificate
- buckets Property Map
- Filter based on public cloud storage buckets
- casb
Actions List<String> - CASB policy action filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
Applications List<String> - CASB application filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
File List<String>Type Super Categories - Endpoint DLP file type category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
File List<String>Types - Endpoint DLP file type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
Policy List<String>Types - CASB policy type filter Supported Values: MALWARE, DLP, ALL_INCIDENT
- casb
Severities List<String> - Zscaler's Cloud Access Security Broker (CASB) severity filter Supported Values: RULE_SEVERITY_HIGH, RULE_SEVERITY_MEDIUM, RULE_SEVERITY_LOW, RULE_SEVERITY_INFO
- casb
Tenant Property Map - CASB tenant filter
- channel
Names List<String> - Collaboration channel name filter
- client
Destination List<String>Ips - Client's destination IPv4 addresses in Firewall policy
- client
Destination List<String>Ports - Firewall logs filter based on a client's destination
- client
Id String - Client ID applicable when SIEM type is set to S3 or Azure Sentinel
- client
Ips List<String> - Filter to limit the logs based on a client's public IPv4 addresses
- client
Secret String - Client secret applicable when SIEM type is set to S3 or Azure Sentinel
- client
Source List<String>Ips - Client source IPs configured for NSS feed.
- client
Source List<String>Ports - Firewall log filter based on a client's source ports
- connection
Headers List<String> - The HTTP Connection headers
- connection
Url String - The HTTPS URL of the SIEM log collection API endpoint
- countries List<String>
- Countries filter in the Firewall policy See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- custom
Escaped List<String>Characters - Characters that need to be encoded using hex when they appear in URL, Host, or Referrer
- departments Property Map
- Departments filter
- direction String
- Traffic direction filter specifying inbound or outbound
- dlp
Dictionaries Property Map - DLP dictionary filter
- dlp
Engines Property Map - DLP engine filter
- dns
Actions List<String> - DNS Control policy action filter
- dns
Request List<String>Types - DNS request types included in the feed Supported Values: ANY, NONE, DNSREQ_A, DNSREQ_NS, DNSREQ_CNAME, DNSREQ_SOA, DNSREQ_WKS, DNSREQ_PTR, DNSREQ_HINFO, DNSREQ_MINFO, DNSREQ_MX, DNSREQ_TXT, DNSREQ_AAAA, DNSREQ_ISDN, DNSREQ_LOC, DNSREQ_RP, DNSREQ_RT, DNSREQ_MR, DNSREQ_MG, DNSREQ_MB, DNSREQ_AFSDB, DNSREQ_HIP, DNSREQ_SRV, DNSREQ_DS, DNSREQ_NAPTR, DNSREQ_NSEC, DNSREQ_DNSKEY, DNSREQ_HTTPS, DNSREQ_UNKNOWN
- dns
Response List<String>Types - DNS response types filter Supported Values: ANY, DNSRES_ZSCODE, DNSRES_CNAME, DNSRES_IPV6, DNSRES_SRV_CODE, DNSRES_IPV4
- dns
Responses List<String> - DNS responses filter
- domains List<String>
- Filter to limit the logs to sessions associated with specific domains
- download
Times List<String> - Download time filter
- durations List<String>
- Filter based on time durations
- email
Dlp List<String>Log Types - Email DLP record type filter Supported Values: EPDLP_SCAN_AGGREGATE, EPDLP_SENSITIVE_ACTIVITY, EPDLP_DLP_INCIDENT
- email
Dlp StringPolicy Action - Action filter for Email DLP log type
- end
Point List<String>Dlp Log Types - Endpoint DLP log type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- eps
Rate NumberLimit - Event per second limit
- event String
- CASB event filter
- external
Collaborators Property Map - Filter logs to specific recipients outside your organization
- external
Owners Property Map - Filter logs associated with file owners (inside or outside your organization) who are not provisioned to ZIA services
- feed
Output StringFormat - Output format used for the feed
- feed
Status String - The status of the feed
- file
Names List<String> - Filter based on the file name
- file
Sizes List<String> - File size filter
- file
Sources List<String> - Filter based on the file source
- file
Type List<String>Categories - Filter based on the file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- file
Type List<String>Super Categories - Filter based on the category of file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- firewall
Actions List<String> - Firewall actions included in the NSS feed Supported Values: BLOCK,ALLOW,BLOCK_DROP,BLOCK_RESET,BLOCK_ICMP,COUNTRY_BLOCK IPS_BLOCK_DROP,IPS_BLOCK_RESET,ALLOW_INSUFFICIENT_APPDATA, BLOCK_ABUSE_DROP,INT_ERR_DROP,CFG_BYPASSED,CFG_TIMEDOUT
- firewall
Logging StringMode - Filter based on the Firewall Filtering policy logging mode
- full
Urls List<String> - Filter to limit the logs based on specific full URLs
- grant
Type String - Grant type applicable when SIEM type is set to Azure Sentinel
- host
Names List<String> - Filter to limit the logs based on specific hostnames
- in
Bound List<String>Bytes - Filter based on inbound bytes
- internal
Collaborators Property Map - Filter logs to specific recipients within your organization
- internal
Ips List<String> - Filter based on internal IPv4 addresses
- itsm
Object Property MapType - ITSM object type filter
- json
Array BooleanToggle - A Boolean value indicating whether streaming of logs in JSON array format (e.g., [{JSON1},{JSON2}]) is enabled or disabled for the JSON feed output type
- location
Groups Property Map - A filter based on location groups
- locations Property Map
- Location filter
- malware
Classes List<String> - Malware category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- malware
Names List<String> - Filter based on malware names See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- max
Batch NumberSize - The maximum batch size in KB
- name String
- The name of the cloud NSS feed
- nat
Actions List<String> - NAT Control policy actions filter Supported Values: NONE, DNAT
- nss
Feed StringType - NSS feed format type (e.g. CSV, syslog, Splunk Common Information Model (CIM), etc.
- nss
Log StringType - The type of NSS logs that are streamed (e.g. Web, Firewall, DNS, Alert, etc.)
- nss
Type String - NSS type
- nw
Applications List<String> - Filter to include specific network applications in the logs. By default, all network applications are included in the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- nw
Applications List<String>Excludes - Filter to include specific network applications in the logs. By default, no network application is excluded from the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- nw
Services Property Map - Firewall network services filter
- oauth
Authentication Boolean - A Boolean value indicating whether OAuth 2.0 authentication is enabled or not
- object
Names List<String> - CRM object name filter
- object
Type1s List<String> - CASB activity object type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- object
Type2s List<String> - CASB activity object type filter if applicable See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- object
Types List<String> - CRM object type filter
- out
Bound List<String>Bytes - Filter based on outbound bytes
- page
Risk List<String>Indexes - Page Risk Index filter
- policy
Reasons List<String> - Policy reason filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- project
Names List<String> - Repository project name filter
- protocol
Types List<String> - Protocol types filter Supported Values: TUNNEL, SSL, HTTP, HTTPS, FTP, FTPOVERHTTP, HTTP_PROXY, TUNNEL_SSL, DNSOVERHTTPS, WEBSOCKET, WEBSOCKET_SSL
- referer
Urls List<String> - Referrer URL filter
- repo
Names List<String> - Repository name filter
- request
Methods List<String> - Request methods filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- request
Sizes List<String> - Request size filter
- response
Codes List<String> - Response codes filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- response
Sizes List<String> - Request size filter
- rules Property Map
- Policy rules filter (e.g., Firewall Filtering or DNS Control rule filter)
- scan
Times List<String> - Scan time filter
- scope String
- Scope applicable when SIEM type is set to Azure Sentinel
- sender
Name Property Map - Filter based on sender or owner name
- server
Destination List<String>Ips - Filter based on the server's destination IPv4 addresses in Firewall policy
- server
Ips List<String> - Filter to limit the logs based on the server's IPv4 addresses
- server
Source List<String>Ips - Filter based on the server's source IPv4 addresses in Firewall policy
- server
Source List<String>Ports - Firewall log filter based on the traffic destination name
- session
Counts List<String> - Firewall logs filter based on the number of sessions
- siem
Type String - Cloud NSS SIEM type
- threat
Names List<String> - Filter based on threat names
- time
Zone String - Specifies the time zone that must be used in the output file See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- traffic
Forwards List<String> - Filter based on the firewall traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- transaction
Sizes List<String> - Transaction size filter
- tunnel
Dest List<String>Ips - Destination IPv4 addresses of tunnels
- tunnel
Ips List<String> - Filter based on tunnel IPv4 addresses in Firewall policy
- tunnel
Source List<String>Ips - Source IPv4 addresses of tunnels
- tunnel
Source List<String>Ports - Filter based on the tunnel source port
- tunnel
Types List<String> - Tunnel type filter Supported Values: GRE, IPSEC_IKEV1, IPSEC_IKEV2, SVPN, EXTRANET, ZUB, ZCB
- url
Categories Property Map - URL category filter
- url
Classes List<String> - URL category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- url
Super List<String>Categories - URL supercategory filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- user
Agents List<String> - Predefined user agents filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- users Property Map
- Users filter
- vpn
Credentials Property Map - Filter based on specific VPN credentials
- web
Application List<String>Classes - Cloud application categories Filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- web
Applications List<String> - Filter to include specific cloud applications in the logs. By default, all cloud applications are included in the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- web
Applications List<String>Excludes - Filter to exclude specific cloud applications from the logs. By default, no cloud applications is excluded from the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request. To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- web
Traffic List<String>Forwards - Filter based on the web traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
Outputs
All input properties are implicitly available as output properties. Additionally, the CloudNSSFeed resource produces the following output properties:
Look up Existing CloudNSSFeed Resource
Get an existing CloudNSSFeed resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: CloudNSSFeedState, opts?: CustomResourceOptions): CloudNSSFeed@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
action_filter: Optional[str] = None,
activities: Optional[Sequence[str]] = None,
adv_user_agents: Optional[Sequence[str]] = None,
advanced_threats: Optional[Sequence[str]] = None,
alerts: Optional[Sequence[str]] = None,
audit_log_types: Optional[Sequence[str]] = None,
authentication_token: Optional[str] = None,
authentication_url: Optional[str] = None,
base64_encoded_certificate: Optional[str] = None,
buckets: Optional[CloudNSSFeedBucketsArgs] = None,
casb_actions: Optional[Sequence[str]] = None,
casb_applications: Optional[Sequence[str]] = None,
casb_file_type_super_categories: Optional[Sequence[str]] = None,
casb_file_types: Optional[Sequence[str]] = None,
casb_policy_types: Optional[Sequence[str]] = None,
casb_severities: Optional[Sequence[str]] = None,
casb_tenant: Optional[CloudNSSFeedCasbTenantArgs] = None,
channel_names: Optional[Sequence[str]] = None,
client_destination_ips: Optional[Sequence[str]] = None,
client_destination_ports: Optional[Sequence[str]] = None,
client_id: Optional[str] = None,
client_ips: Optional[Sequence[str]] = None,
client_secret: Optional[str] = None,
client_source_ips: Optional[Sequence[str]] = None,
client_source_ports: Optional[Sequence[str]] = None,
connection_headers: Optional[Sequence[str]] = None,
connection_url: Optional[str] = None,
countries: Optional[Sequence[str]] = None,
custom_escaped_characters: Optional[Sequence[str]] = None,
departments: Optional[CloudNSSFeedDepartmentsArgs] = None,
direction: Optional[str] = None,
dlp_dictionaries: Optional[CloudNSSFeedDlpDictionariesArgs] = None,
dlp_engines: Optional[CloudNSSFeedDlpEnginesArgs] = None,
dns_actions: Optional[Sequence[str]] = None,
dns_request_types: Optional[Sequence[str]] = None,
dns_response_types: Optional[Sequence[str]] = None,
dns_responses: Optional[Sequence[str]] = None,
domains: Optional[Sequence[str]] = None,
download_times: Optional[Sequence[str]] = None,
durations: Optional[Sequence[str]] = None,
email_dlp_log_types: Optional[Sequence[str]] = None,
email_dlp_policy_action: Optional[str] = None,
end_point_dlp_log_types: Optional[Sequence[str]] = None,
eps_rate_limit: Optional[int] = None,
event: Optional[str] = None,
external_collaborators: Optional[CloudNSSFeedExternalCollaboratorsArgs] = None,
external_owners: Optional[CloudNSSFeedExternalOwnersArgs] = None,
feed_output_format: Optional[str] = None,
feed_status: Optional[str] = None,
file_names: Optional[Sequence[str]] = None,
file_sizes: Optional[Sequence[str]] = None,
file_sources: Optional[Sequence[str]] = None,
file_type_categories: Optional[Sequence[str]] = None,
file_type_super_categories: Optional[Sequence[str]] = None,
firewall_actions: Optional[Sequence[str]] = None,
firewall_logging_mode: Optional[str] = None,
full_urls: Optional[Sequence[str]] = None,
grant_type: Optional[str] = None,
host_names: Optional[Sequence[str]] = None,
in_bound_bytes: Optional[Sequence[str]] = None,
internal_collaborators: Optional[CloudNSSFeedInternalCollaboratorsArgs] = None,
internal_ips: Optional[Sequence[str]] = None,
itsm_object_type: Optional[CloudNSSFeedItsmObjectTypeArgs] = None,
json_array_toggle: Optional[bool] = None,
location_groups: Optional[CloudNSSFeedLocationGroupsArgs] = None,
locations: Optional[CloudNSSFeedLocationsArgs] = None,
malware_classes: Optional[Sequence[str]] = None,
malware_names: Optional[Sequence[str]] = None,
max_batch_size: Optional[int] = None,
name: Optional[str] = None,
nat_actions: Optional[Sequence[str]] = None,
nss_feed_type: Optional[str] = None,
nss_id: Optional[int] = None,
nss_log_type: Optional[str] = None,
nss_type: Optional[str] = None,
nw_applications: Optional[Sequence[str]] = None,
nw_applications_excludes: Optional[Sequence[str]] = None,
nw_services: Optional[CloudNSSFeedNwServicesArgs] = None,
oauth_authentication: Optional[bool] = None,
object_names: Optional[Sequence[str]] = None,
object_type1s: Optional[Sequence[str]] = None,
object_type2s: Optional[Sequence[str]] = None,
object_types: Optional[Sequence[str]] = None,
out_bound_bytes: Optional[Sequence[str]] = None,
page_risk_indexes: Optional[Sequence[str]] = None,
policy_reasons: Optional[Sequence[str]] = None,
project_names: Optional[Sequence[str]] = None,
protocol_types: Optional[Sequence[str]] = None,
referer_urls: Optional[Sequence[str]] = None,
repo_names: Optional[Sequence[str]] = None,
request_methods: Optional[Sequence[str]] = None,
request_sizes: Optional[Sequence[str]] = None,
response_codes: Optional[Sequence[str]] = None,
response_sizes: Optional[Sequence[str]] = None,
rules: Optional[CloudNSSFeedRulesArgs] = None,
scan_times: Optional[Sequence[str]] = None,
scope: Optional[str] = None,
sender_name: Optional[CloudNSSFeedSenderNameArgs] = None,
server_destination_ips: Optional[Sequence[str]] = None,
server_ips: Optional[Sequence[str]] = None,
server_source_ips: Optional[Sequence[str]] = None,
server_source_ports: Optional[Sequence[str]] = None,
session_counts: Optional[Sequence[str]] = None,
siem_type: Optional[str] = None,
threat_names: Optional[Sequence[str]] = None,
time_zone: Optional[str] = None,
traffic_forwards: Optional[Sequence[str]] = None,
transaction_sizes: Optional[Sequence[str]] = None,
tunnel_dest_ips: Optional[Sequence[str]] = None,
tunnel_ips: Optional[Sequence[str]] = None,
tunnel_source_ips: Optional[Sequence[str]] = None,
tunnel_source_ports: Optional[Sequence[str]] = None,
tunnel_types: Optional[Sequence[str]] = None,
url_categories: Optional[CloudNSSFeedUrlCategoriesArgs] = None,
url_classes: Optional[Sequence[str]] = None,
url_super_categories: Optional[Sequence[str]] = None,
user_agents: Optional[Sequence[str]] = None,
users: Optional[CloudNSSFeedUsersArgs] = None,
vpn_credentials: Optional[CloudNSSFeedVpnCredentialsArgs] = None,
web_application_classes: Optional[Sequence[str]] = None,
web_applications: Optional[Sequence[str]] = None,
web_applications_excludes: Optional[Sequence[str]] = None,
web_traffic_forwards: Optional[Sequence[str]] = None) -> CloudNSSFeedfunc GetCloudNSSFeed(ctx *Context, name string, id IDInput, state *CloudNSSFeedState, opts ...ResourceOption) (*CloudNSSFeed, error)public static CloudNSSFeed Get(string name, Input<string> id, CloudNSSFeedState? state, CustomResourceOptions? opts = null)public static CloudNSSFeed get(String name, Output<String> id, CloudNSSFeedState state, CustomResourceOptions options)resources: _: type: zia:CloudNSSFeed get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Action
Filter string - Policy action filter
- Activities List<string>
- CASB activity filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Adv
User List<string>Agents - Filter based on custom user agent strings
- Advanced
Threats List<string> - Advanced threats filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Alerts List<string>
- Alert filter Supported Values: CRITICAL, WARN
- Audit
Log List<string>Types - Audit log type filter
- Authentication
Token string - The authentication token value
- Authentication
Url string - Authentication URL applicable when SIEM type is set to Azure Sentinel
- Base64Encoded
Certificate string - Base64-encoded certificate
- Buckets
zscaler.
Pulumi Package. Zia. Inputs. Cloud NSSFeed Buckets - Filter based on public cloud storage buckets
- Casb
Actions List<string> - CASB policy action filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Casb
Applications List<string> - CASB application filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Casb
File List<string>Type Super Categories - Endpoint DLP file type category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Casb
File List<string>Types - Endpoint DLP file type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Casb
Policy List<string>Types - CASB policy type filter Supported Values: MALWARE, DLP, ALL_INCIDENT
- Casb
Severities List<string> - Zscaler's Cloud Access Security Broker (CASB) severity filter Supported Values: RULE_SEVERITY_HIGH, RULE_SEVERITY_MEDIUM, RULE_SEVERITY_LOW, RULE_SEVERITY_INFO
- Casb
Tenant zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Casb Tenant - CASB tenant filter
- Channel
Names List<string> - Collaboration channel name filter
- Client
Destination List<string>Ips - Client's destination IPv4 addresses in Firewall policy
- Client
Destination List<string>Ports - Firewall logs filter based on a client's destination
- Client
Id string - Client ID applicable when SIEM type is set to S3 or Azure Sentinel
- Client
Ips List<string> - Filter to limit the logs based on a client's public IPv4 addresses
- Client
Secret string - Client secret applicable when SIEM type is set to S3 or Azure Sentinel
- Client
Source List<string>Ips - Client source IPs configured for NSS feed.
- Client
Source List<string>Ports - Firewall log filter based on a client's source ports
- Connection
Headers List<string> - The HTTP Connection headers
- Connection
Url string - The HTTPS URL of the SIEM log collection API endpoint
- Countries List<string>
- Countries filter in the Firewall policy See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Custom
Escaped List<string>Characters - Characters that need to be encoded using hex when they appear in URL, Host, or Referrer
- Departments
zscaler.
Pulumi Package. Zia. Inputs. Cloud NSSFeed Departments - Departments filter
- Direction string
- Traffic direction filter specifying inbound or outbound
- Dlp
Dictionaries zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Dlp Dictionaries - DLP dictionary filter
- Dlp
Engines zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Dlp Engines - DLP engine filter
- Dns
Actions List<string> - DNS Control policy action filter
- Dns
Request List<string>Types - DNS request types included in the feed Supported Values: ANY, NONE, DNSREQ_A, DNSREQ_NS, DNSREQ_CNAME, DNSREQ_SOA, DNSREQ_WKS, DNSREQ_PTR, DNSREQ_HINFO, DNSREQ_MINFO, DNSREQ_MX, DNSREQ_TXT, DNSREQ_AAAA, DNSREQ_ISDN, DNSREQ_LOC, DNSREQ_RP, DNSREQ_RT, DNSREQ_MR, DNSREQ_MG, DNSREQ_MB, DNSREQ_AFSDB, DNSREQ_HIP, DNSREQ_SRV, DNSREQ_DS, DNSREQ_NAPTR, DNSREQ_NSEC, DNSREQ_DNSKEY, DNSREQ_HTTPS, DNSREQ_UNKNOWN
- Dns
Response List<string>Types - DNS response types filter Supported Values: ANY, DNSRES_ZSCODE, DNSRES_CNAME, DNSRES_IPV6, DNSRES_SRV_CODE, DNSRES_IPV4
- Dns
Responses List<string> - DNS responses filter
- Domains List<string>
- Filter to limit the logs to sessions associated with specific domains
- Download
Times List<string> - Download time filter
- Durations List<string>
- Filter based on time durations
- Email
Dlp List<string>Log Types - Email DLP record type filter Supported Values: EPDLP_SCAN_AGGREGATE, EPDLP_SENSITIVE_ACTIVITY, EPDLP_DLP_INCIDENT
- Email
Dlp stringPolicy Action - Action filter for Email DLP log type
- End
Point List<string>Dlp Log Types - Endpoint DLP log type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Eps
Rate intLimit - Event per second limit
- Event string
- CASB event filter
- External
Collaborators zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed External Collaborators - Filter logs to specific recipients outside your organization
- External
Owners zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed External Owners - Filter logs associated with file owners (inside or outside your organization) who are not provisioned to ZIA services
- Feed
Output stringFormat - Output format used for the feed
- Feed
Status string - The status of the feed
- File
Names List<string> - Filter based on the file name
- File
Sizes List<string> - File size filter
- File
Sources List<string> - Filter based on the file source
- File
Type List<string>Categories - Filter based on the file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- File
Type List<string>Super Categories - Filter based on the category of file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Firewall
Actions List<string> - Firewall actions included in the NSS feed Supported Values: BLOCK,ALLOW,BLOCK_DROP,BLOCK_RESET,BLOCK_ICMP,COUNTRY_BLOCK IPS_BLOCK_DROP,IPS_BLOCK_RESET,ALLOW_INSUFFICIENT_APPDATA, BLOCK_ABUSE_DROP,INT_ERR_DROP,CFG_BYPASSED,CFG_TIMEDOUT
- Firewall
Logging stringMode - Filter based on the Firewall Filtering policy logging mode
- Full
Urls List<string> - Filter to limit the logs based on specific full URLs
- Grant
Type string - Grant type applicable when SIEM type is set to Azure Sentinel
- Host
Names List<string> - Filter to limit the logs based on specific hostnames
- In
Bound List<string>Bytes - Filter based on inbound bytes
- Internal
Collaborators zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Internal Collaborators - Filter logs to specific recipients within your organization
- Internal
Ips List<string> - Filter based on internal IPv4 addresses
- Itsm
Object zscaler.Type Pulumi Package. Zia. Inputs. Cloud NSSFeed Itsm Object Type - ITSM object type filter
- Json
Array boolToggle - A Boolean value indicating whether streaming of logs in JSON array format (e.g., [{JSON1},{JSON2}]) is enabled or disabled for the JSON feed output type
- Location
Groups zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Location Groups - A filter based on location groups
- Locations
zscaler.
Pulumi Package. Zia. Inputs. Cloud NSSFeed Locations - Location filter
- Malware
Classes List<string> - Malware category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Malware
Names List<string> - Filter based on malware names See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Max
Batch intSize - The maximum batch size in KB
- Name string
- The name of the cloud NSS feed
- Nat
Actions List<string> - NAT Control policy actions filter Supported Values: NONE, DNAT
- Nss
Feed stringType - NSS feed format type (e.g. CSV, syslog, Splunk Common Information Model (CIM), etc.
- Nss
Id int - Nss
Log stringType - The type of NSS logs that are streamed (e.g. Web, Firewall, DNS, Alert, etc.)
- Nss
Type string - NSS type
- Nw
Applications List<string> - Filter to include specific network applications in the logs. By default, all network applications are included in the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Nw
Applications List<string>Excludes - Filter to include specific network applications in the logs. By default, no network application is excluded from the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Nw
Services zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Nw Services - Firewall network services filter
- Oauth
Authentication bool - A Boolean value indicating whether OAuth 2.0 authentication is enabled or not
- Object
Names List<string> - CRM object name filter
- Object
Type1s List<string> - CASB activity object type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Object
Type2s List<string> - CASB activity object type filter if applicable See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Object
Types List<string> - CRM object type filter
- Out
Bound List<string>Bytes - Filter based on outbound bytes
- Page
Risk List<string>Indexes - Page Risk Index filter
- Policy
Reasons List<string> - Policy reason filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Project
Names List<string> - Repository project name filter
- Protocol
Types List<string> - Protocol types filter Supported Values: TUNNEL, SSL, HTTP, HTTPS, FTP, FTPOVERHTTP, HTTP_PROXY, TUNNEL_SSL, DNSOVERHTTPS, WEBSOCKET, WEBSOCKET_SSL
- Referer
Urls List<string> - Referrer URL filter
- Repo
Names List<string> - Repository name filter
- Request
Methods List<string> - Request methods filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Request
Sizes List<string> - Request size filter
- Response
Codes List<string> - Response codes filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Response
Sizes List<string> - Request size filter
- Rules
zscaler.
Pulumi Package. Zia. Inputs. Cloud NSSFeed Rules - Policy rules filter (e.g., Firewall Filtering or DNS Control rule filter)
- Scan
Times List<string> - Scan time filter
- Scope string
- Scope applicable when SIEM type is set to Azure Sentinel
- Sender
Name zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Sender Name - Filter based on sender or owner name
- Server
Destination List<string>Ips - Filter based on the server's destination IPv4 addresses in Firewall policy
- Server
Ips List<string> - Filter to limit the logs based on the server's IPv4 addresses
- Server
Source List<string>Ips - Filter based on the server's source IPv4 addresses in Firewall policy
- Server
Source List<string>Ports - Firewall log filter based on the traffic destination name
- Session
Counts List<string> - Firewall logs filter based on the number of sessions
- Siem
Type string - Cloud NSS SIEM type
- Threat
Names List<string> - Filter based on threat names
- Time
Zone string - Specifies the time zone that must be used in the output file See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Traffic
Forwards List<string> - Filter based on the firewall traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- Transaction
Sizes List<string> - Transaction size filter
- Tunnel
Dest List<string>Ips - Destination IPv4 addresses of tunnels
- Tunnel
Ips List<string> - Filter based on tunnel IPv4 addresses in Firewall policy
- Tunnel
Source List<string>Ips - Source IPv4 addresses of tunnels
- Tunnel
Source List<string>Ports - Filter based on the tunnel source port
- Tunnel
Types List<string> - Tunnel type filter Supported Values: GRE, IPSEC_IKEV1, IPSEC_IKEV2, SVPN, EXTRANET, ZUB, ZCB
- Url
Categories zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Url Categories - URL category filter
- Url
Classes List<string> - URL category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Url
Super List<string>Categories - URL supercategory filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- User
Agents List<string> - Predefined user agents filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Users
zscaler.
Pulumi Package. Zia. Inputs. Cloud NSSFeed Users - Users filter
- Vpn
Credentials zscaler.Pulumi Package. Zia. Inputs. Cloud NSSFeed Vpn Credentials - Filter based on specific VPN credentials
- Web
Application List<string>Classes - Cloud application categories Filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Web
Applications List<string> - Filter to include specific cloud applications in the logs. By default, all cloud applications are included in the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- Web
Applications List<string>Excludes - Filter to exclude specific cloud applications from the logs. By default, no cloud applications is excluded from the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request. To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- Web
Traffic List<string>Forwards - Filter based on the web traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- Action
Filter string - Policy action filter
- Activities []string
- CASB activity filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Adv
User []stringAgents - Filter based on custom user agent strings
- Advanced
Threats []string - Advanced threats filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Alerts []string
- Alert filter Supported Values: CRITICAL, WARN
- Audit
Log []stringTypes - Audit log type filter
- Authentication
Token string - The authentication token value
- Authentication
Url string - Authentication URL applicable when SIEM type is set to Azure Sentinel
- Base64Encoded
Certificate string - Base64-encoded certificate
- Buckets
Cloud
NSSFeed Buckets Args - Filter based on public cloud storage buckets
- Casb
Actions []string - CASB policy action filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Casb
Applications []string - CASB application filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Casb
File []stringType Super Categories - Endpoint DLP file type category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Casb
File []stringTypes - Endpoint DLP file type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Casb
Policy []stringTypes - CASB policy type filter Supported Values: MALWARE, DLP, ALL_INCIDENT
- Casb
Severities []string - Zscaler's Cloud Access Security Broker (CASB) severity filter Supported Values: RULE_SEVERITY_HIGH, RULE_SEVERITY_MEDIUM, RULE_SEVERITY_LOW, RULE_SEVERITY_INFO
- Casb
Tenant CloudNSSFeed Casb Tenant Args - CASB tenant filter
- Channel
Names []string - Collaboration channel name filter
- Client
Destination []stringIps - Client's destination IPv4 addresses in Firewall policy
- Client
Destination []stringPorts - Firewall logs filter based on a client's destination
- Client
Id string - Client ID applicable when SIEM type is set to S3 or Azure Sentinel
- Client
Ips []string - Filter to limit the logs based on a client's public IPv4 addresses
- Client
Secret string - Client secret applicable when SIEM type is set to S3 or Azure Sentinel
- Client
Source []stringIps - Client source IPs configured for NSS feed.
- Client
Source []stringPorts - Firewall log filter based on a client's source ports
- Connection
Headers []string - The HTTP Connection headers
- Connection
Url string - The HTTPS URL of the SIEM log collection API endpoint
- Countries []string
- Countries filter in the Firewall policy See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Custom
Escaped []stringCharacters - Characters that need to be encoded using hex when they appear in URL, Host, or Referrer
- Departments
Cloud
NSSFeed Departments Args - Departments filter
- Direction string
- Traffic direction filter specifying inbound or outbound
- Dlp
Dictionaries CloudNSSFeed Dlp Dictionaries Args - DLP dictionary filter
- Dlp
Engines CloudNSSFeed Dlp Engines Args - DLP engine filter
- Dns
Actions []string - DNS Control policy action filter
- Dns
Request []stringTypes - DNS request types included in the feed Supported Values: ANY, NONE, DNSREQ_A, DNSREQ_NS, DNSREQ_CNAME, DNSREQ_SOA, DNSREQ_WKS, DNSREQ_PTR, DNSREQ_HINFO, DNSREQ_MINFO, DNSREQ_MX, DNSREQ_TXT, DNSREQ_AAAA, DNSREQ_ISDN, DNSREQ_LOC, DNSREQ_RP, DNSREQ_RT, DNSREQ_MR, DNSREQ_MG, DNSREQ_MB, DNSREQ_AFSDB, DNSREQ_HIP, DNSREQ_SRV, DNSREQ_DS, DNSREQ_NAPTR, DNSREQ_NSEC, DNSREQ_DNSKEY, DNSREQ_HTTPS, DNSREQ_UNKNOWN
- Dns
Response []stringTypes - DNS response types filter Supported Values: ANY, DNSRES_ZSCODE, DNSRES_CNAME, DNSRES_IPV6, DNSRES_SRV_CODE, DNSRES_IPV4
- Dns
Responses []string - DNS responses filter
- Domains []string
- Filter to limit the logs to sessions associated with specific domains
- Download
Times []string - Download time filter
- Durations []string
- Filter based on time durations
- Email
Dlp []stringLog Types - Email DLP record type filter Supported Values: EPDLP_SCAN_AGGREGATE, EPDLP_SENSITIVE_ACTIVITY, EPDLP_DLP_INCIDENT
- Email
Dlp stringPolicy Action - Action filter for Email DLP log type
- End
Point []stringDlp Log Types - Endpoint DLP log type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Eps
Rate intLimit - Event per second limit
- Event string
- CASB event filter
- External
Collaborators CloudNSSFeed External Collaborators Args - Filter logs to specific recipients outside your organization
- External
Owners CloudNSSFeed External Owners Args - Filter logs associated with file owners (inside or outside your organization) who are not provisioned to ZIA services
- Feed
Output stringFormat - Output format used for the feed
- Feed
Status string - The status of the feed
- File
Names []string - Filter based on the file name
- File
Sizes []string - File size filter
- File
Sources []string - Filter based on the file source
- File
Type []stringCategories - Filter based on the file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- File
Type []stringSuper Categories - Filter based on the category of file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Firewall
Actions []string - Firewall actions included in the NSS feed Supported Values: BLOCK,ALLOW,BLOCK_DROP,BLOCK_RESET,BLOCK_ICMP,COUNTRY_BLOCK IPS_BLOCK_DROP,IPS_BLOCK_RESET,ALLOW_INSUFFICIENT_APPDATA, BLOCK_ABUSE_DROP,INT_ERR_DROP,CFG_BYPASSED,CFG_TIMEDOUT
- Firewall
Logging stringMode - Filter based on the Firewall Filtering policy logging mode
- Full
Urls []string - Filter to limit the logs based on specific full URLs
- Grant
Type string - Grant type applicable when SIEM type is set to Azure Sentinel
- Host
Names []string - Filter to limit the logs based on specific hostnames
- In
Bound []stringBytes - Filter based on inbound bytes
- Internal
Collaborators CloudNSSFeed Internal Collaborators Args - Filter logs to specific recipients within your organization
- Internal
Ips []string - Filter based on internal IPv4 addresses
- Itsm
Object CloudType NSSFeed Itsm Object Type Args - ITSM object type filter
- Json
Array boolToggle - A Boolean value indicating whether streaming of logs in JSON array format (e.g., [{JSON1},{JSON2}]) is enabled or disabled for the JSON feed output type
- Location
Groups CloudNSSFeed Location Groups Args - A filter based on location groups
- Locations
Cloud
NSSFeed Locations Args - Location filter
- Malware
Classes []string - Malware category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Malware
Names []string - Filter based on malware names See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Max
Batch intSize - The maximum batch size in KB
- Name string
- The name of the cloud NSS feed
- Nat
Actions []string - NAT Control policy actions filter Supported Values: NONE, DNAT
- Nss
Feed stringType - NSS feed format type (e.g. CSV, syslog, Splunk Common Information Model (CIM), etc.
- Nss
Id int - Nss
Log stringType - The type of NSS logs that are streamed (e.g. Web, Firewall, DNS, Alert, etc.)
- Nss
Type string - NSS type
- Nw
Applications []string - Filter to include specific network applications in the logs. By default, all network applications are included in the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Nw
Applications []stringExcludes - Filter to include specific network applications in the logs. By default, no network application is excluded from the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Nw
Services CloudNSSFeed Nw Services Args - Firewall network services filter
- Oauth
Authentication bool - A Boolean value indicating whether OAuth 2.0 authentication is enabled or not
- Object
Names []string - CRM object name filter
- Object
Type1s []string - CASB activity object type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Object
Type2s []string - CASB activity object type filter if applicable See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Object
Types []string - CRM object type filter
- Out
Bound []stringBytes - Filter based on outbound bytes
- Page
Risk []stringIndexes - Page Risk Index filter
- Policy
Reasons []string - Policy reason filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Project
Names []string - Repository project name filter
- Protocol
Types []string - Protocol types filter Supported Values: TUNNEL, SSL, HTTP, HTTPS, FTP, FTPOVERHTTP, HTTP_PROXY, TUNNEL_SSL, DNSOVERHTTPS, WEBSOCKET, WEBSOCKET_SSL
- Referer
Urls []string - Referrer URL filter
- Repo
Names []string - Repository name filter
- Request
Methods []string - Request methods filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Request
Sizes []string - Request size filter
- Response
Codes []string - Response codes filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Response
Sizes []string - Request size filter
- Rules
Cloud
NSSFeed Rules Args - Policy rules filter (e.g., Firewall Filtering or DNS Control rule filter)
- Scan
Times []string - Scan time filter
- Scope string
- Scope applicable when SIEM type is set to Azure Sentinel
- Sender
Name CloudNSSFeed Sender Name Args - Filter based on sender or owner name
- Server
Destination []stringIps - Filter based on the server's destination IPv4 addresses in Firewall policy
- Server
Ips []string - Filter to limit the logs based on the server's IPv4 addresses
- Server
Source []stringIps - Filter based on the server's source IPv4 addresses in Firewall policy
- Server
Source []stringPorts - Firewall log filter based on the traffic destination name
- Session
Counts []string - Firewall logs filter based on the number of sessions
- Siem
Type string - Cloud NSS SIEM type
- Threat
Names []string - Filter based on threat names
- Time
Zone string - Specifies the time zone that must be used in the output file See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Traffic
Forwards []string - Filter based on the firewall traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- Transaction
Sizes []string - Transaction size filter
- Tunnel
Dest []stringIps - Destination IPv4 addresses of tunnels
- Tunnel
Ips []string - Filter based on tunnel IPv4 addresses in Firewall policy
- Tunnel
Source []stringIps - Source IPv4 addresses of tunnels
- Tunnel
Source []stringPorts - Filter based on the tunnel source port
- Tunnel
Types []string - Tunnel type filter Supported Values: GRE, IPSEC_IKEV1, IPSEC_IKEV2, SVPN, EXTRANET, ZUB, ZCB
- Url
Categories CloudNSSFeed Url Categories Args - URL category filter
- Url
Classes []string - URL category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Url
Super []stringCategories - URL supercategory filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- User
Agents []string - Predefined user agents filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Users
Cloud
NSSFeed Users Args - Users filter
- Vpn
Credentials CloudNSSFeed Vpn Credentials Args - Filter based on specific VPN credentials
- Web
Application []stringClasses - Cloud application categories Filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- Web
Applications []string - Filter to include specific cloud applications in the logs. By default, all cloud applications are included in the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- Web
Applications []stringExcludes - Filter to exclude specific cloud applications from the logs. By default, no cloud applications is excluded from the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request. To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- Web
Traffic []stringForwards - Filter based on the web traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- action
Filter String - Policy action filter
- activities List<String>
- CASB activity filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- adv
User List<String>Agents - Filter based on custom user agent strings
- advanced
Threats List<String> - Advanced threats filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- alerts List<String>
- Alert filter Supported Values: CRITICAL, WARN
- audit
Log List<String>Types - Audit log type filter
- authentication
Token String - The authentication token value
- authentication
Url String - Authentication URL applicable when SIEM type is set to Azure Sentinel
- base64Encoded
Certificate String - Base64-encoded certificate
- buckets
Cloud
NSSFeed Buckets - Filter based on public cloud storage buckets
- casb
Actions List<String> - CASB policy action filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
Applications List<String> - CASB application filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
File List<String>Type Super Categories - Endpoint DLP file type category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
File List<String>Types - Endpoint DLP file type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
Policy List<String>Types - CASB policy type filter Supported Values: MALWARE, DLP, ALL_INCIDENT
- casb
Severities List<String> - Zscaler's Cloud Access Security Broker (CASB) severity filter Supported Values: RULE_SEVERITY_HIGH, RULE_SEVERITY_MEDIUM, RULE_SEVERITY_LOW, RULE_SEVERITY_INFO
- casb
Tenant CloudNSSFeed Casb Tenant - CASB tenant filter
- channel
Names List<String> - Collaboration channel name filter
- client
Destination List<String>Ips - Client's destination IPv4 addresses in Firewall policy
- client
Destination List<String>Ports - Firewall logs filter based on a client's destination
- client
Id String - Client ID applicable when SIEM type is set to S3 or Azure Sentinel
- client
Ips List<String> - Filter to limit the logs based on a client's public IPv4 addresses
- client
Secret String - Client secret applicable when SIEM type is set to S3 or Azure Sentinel
- client
Source List<String>Ips - Client source IPs configured for NSS feed.
- client
Source List<String>Ports - Firewall log filter based on a client's source ports
- connection
Headers List<String> - The HTTP Connection headers
- connection
Url String - The HTTPS URL of the SIEM log collection API endpoint
- countries List<String>
- Countries filter in the Firewall policy See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- custom
Escaped List<String>Characters - Characters that need to be encoded using hex when they appear in URL, Host, or Referrer
- departments
Cloud
NSSFeed Departments - Departments filter
- direction String
- Traffic direction filter specifying inbound or outbound
- dlp
Dictionaries CloudNSSFeed Dlp Dictionaries - DLP dictionary filter
- dlp
Engines CloudNSSFeed Dlp Engines - DLP engine filter
- dns
Actions List<String> - DNS Control policy action filter
- dns
Request List<String>Types - DNS request types included in the feed Supported Values: ANY, NONE, DNSREQ_A, DNSREQ_NS, DNSREQ_CNAME, DNSREQ_SOA, DNSREQ_WKS, DNSREQ_PTR, DNSREQ_HINFO, DNSREQ_MINFO, DNSREQ_MX, DNSREQ_TXT, DNSREQ_AAAA, DNSREQ_ISDN, DNSREQ_LOC, DNSREQ_RP, DNSREQ_RT, DNSREQ_MR, DNSREQ_MG, DNSREQ_MB, DNSREQ_AFSDB, DNSREQ_HIP, DNSREQ_SRV, DNSREQ_DS, DNSREQ_NAPTR, DNSREQ_NSEC, DNSREQ_DNSKEY, DNSREQ_HTTPS, DNSREQ_UNKNOWN
- dns
Response List<String>Types - DNS response types filter Supported Values: ANY, DNSRES_ZSCODE, DNSRES_CNAME, DNSRES_IPV6, DNSRES_SRV_CODE, DNSRES_IPV4
- dns
Responses List<String> - DNS responses filter
- domains List<String>
- Filter to limit the logs to sessions associated with specific domains
- download
Times List<String> - Download time filter
- durations List<String>
- Filter based on time durations
- email
Dlp List<String>Log Types - Email DLP record type filter Supported Values: EPDLP_SCAN_AGGREGATE, EPDLP_SENSITIVE_ACTIVITY, EPDLP_DLP_INCIDENT
- email
Dlp StringPolicy Action - Action filter for Email DLP log type
- end
Point List<String>Dlp Log Types - Endpoint DLP log type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- eps
Rate IntegerLimit - Event per second limit
- event String
- CASB event filter
- external
Collaborators CloudNSSFeed External Collaborators - Filter logs to specific recipients outside your organization
- external
Owners CloudNSSFeed External Owners - Filter logs associated with file owners (inside or outside your organization) who are not provisioned to ZIA services
- feed
Output StringFormat - Output format used for the feed
- feed
Status String - The status of the feed
- file
Names List<String> - Filter based on the file name
- file
Sizes List<String> - File size filter
- file
Sources List<String> - Filter based on the file source
- file
Type List<String>Categories - Filter based on the file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- file
Type List<String>Super Categories - Filter based on the category of file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- firewall
Actions List<String> - Firewall actions included in the NSS feed Supported Values: BLOCK,ALLOW,BLOCK_DROP,BLOCK_RESET,BLOCK_ICMP,COUNTRY_BLOCK IPS_BLOCK_DROP,IPS_BLOCK_RESET,ALLOW_INSUFFICIENT_APPDATA, BLOCK_ABUSE_DROP,INT_ERR_DROP,CFG_BYPASSED,CFG_TIMEDOUT
- firewall
Logging StringMode - Filter based on the Firewall Filtering policy logging mode
- full
Urls List<String> - Filter to limit the logs based on specific full URLs
- grant
Type String - Grant type applicable when SIEM type is set to Azure Sentinel
- host
Names List<String> - Filter to limit the logs based on specific hostnames
- in
Bound List<String>Bytes - Filter based on inbound bytes
- internal
Collaborators CloudNSSFeed Internal Collaborators - Filter logs to specific recipients within your organization
- internal
Ips List<String> - Filter based on internal IPv4 addresses
- itsm
Object CloudType NSSFeed Itsm Object Type - ITSM object type filter
- json
Array BooleanToggle - A Boolean value indicating whether streaming of logs in JSON array format (e.g., [{JSON1},{JSON2}]) is enabled or disabled for the JSON feed output type
- location
Groups CloudNSSFeed Location Groups - A filter based on location groups
- locations
Cloud
NSSFeed Locations - Location filter
- malware
Classes List<String> - Malware category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- malware
Names List<String> - Filter based on malware names See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- max
Batch IntegerSize - The maximum batch size in KB
- name String
- The name of the cloud NSS feed
- nat
Actions List<String> - NAT Control policy actions filter Supported Values: NONE, DNAT
- nss
Feed StringType - NSS feed format type (e.g. CSV, syslog, Splunk Common Information Model (CIM), etc.
- nss
Id Integer - nss
Log StringType - The type of NSS logs that are streamed (e.g. Web, Firewall, DNS, Alert, etc.)
- nss
Type String - NSS type
- nw
Applications List<String> - Filter to include specific network applications in the logs. By default, all network applications are included in the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- nw
Applications List<String>Excludes - Filter to include specific network applications in the logs. By default, no network application is excluded from the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- nw
Services CloudNSSFeed Nw Services - Firewall network services filter
- oauth
Authentication Boolean - A Boolean value indicating whether OAuth 2.0 authentication is enabled or not
- object
Names List<String> - CRM object name filter
- object
Type1s List<String> - CASB activity object type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- object
Type2s List<String> - CASB activity object type filter if applicable See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- object
Types List<String> - CRM object type filter
- out
Bound List<String>Bytes - Filter based on outbound bytes
- page
Risk List<String>Indexes - Page Risk Index filter
- policy
Reasons List<String> - Policy reason filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- project
Names List<String> - Repository project name filter
- protocol
Types List<String> - Protocol types filter Supported Values: TUNNEL, SSL, HTTP, HTTPS, FTP, FTPOVERHTTP, HTTP_PROXY, TUNNEL_SSL, DNSOVERHTTPS, WEBSOCKET, WEBSOCKET_SSL
- referer
Urls List<String> - Referrer URL filter
- repo
Names List<String> - Repository name filter
- request
Methods List<String> - Request methods filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- request
Sizes List<String> - Request size filter
- response
Codes List<String> - Response codes filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- response
Sizes List<String> - Request size filter
- rules
Cloud
NSSFeed Rules - Policy rules filter (e.g., Firewall Filtering or DNS Control rule filter)
- scan
Times List<String> - Scan time filter
- scope String
- Scope applicable when SIEM type is set to Azure Sentinel
- sender
Name CloudNSSFeed Sender Name - Filter based on sender or owner name
- server
Destination List<String>Ips - Filter based on the server's destination IPv4 addresses in Firewall policy
- server
Ips List<String> - Filter to limit the logs based on the server's IPv4 addresses
- server
Source List<String>Ips - Filter based on the server's source IPv4 addresses in Firewall policy
- server
Source List<String>Ports - Firewall log filter based on the traffic destination name
- session
Counts List<String> - Firewall logs filter based on the number of sessions
- siem
Type String - Cloud NSS SIEM type
- threat
Names List<String> - Filter based on threat names
- time
Zone String - Specifies the time zone that must be used in the output file See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- traffic
Forwards List<String> - Filter based on the firewall traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- transaction
Sizes List<String> - Transaction size filter
- tunnel
Dest List<String>Ips - Destination IPv4 addresses of tunnels
- tunnel
Ips List<String> - Filter based on tunnel IPv4 addresses in Firewall policy
- tunnel
Source List<String>Ips - Source IPv4 addresses of tunnels
- tunnel
Source List<String>Ports - Filter based on the tunnel source port
- tunnel
Types List<String> - Tunnel type filter Supported Values: GRE, IPSEC_IKEV1, IPSEC_IKEV2, SVPN, EXTRANET, ZUB, ZCB
- url
Categories CloudNSSFeed Url Categories - URL category filter
- url
Classes List<String> - URL category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- url
Super List<String>Categories - URL supercategory filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- user
Agents List<String> - Predefined user agents filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- users
Cloud
NSSFeed Users - Users filter
- vpn
Credentials CloudNSSFeed Vpn Credentials - Filter based on specific VPN credentials
- web
Application List<String>Classes - Cloud application categories Filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- web
Applications List<String> - Filter to include specific cloud applications in the logs. By default, all cloud applications are included in the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- web
Applications List<String>Excludes - Filter to exclude specific cloud applications from the logs. By default, no cloud applications is excluded from the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request. To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- web
Traffic List<String>Forwards - Filter based on the web traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- action
Filter string - Policy action filter
- activities string[]
- CASB activity filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- adv
User string[]Agents - Filter based on custom user agent strings
- advanced
Threats string[] - Advanced threats filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- alerts string[]
- Alert filter Supported Values: CRITICAL, WARN
- audit
Log string[]Types - Audit log type filter
- authentication
Token string - The authentication token value
- authentication
Url string - Authentication URL applicable when SIEM type is set to Azure Sentinel
- base64Encoded
Certificate string - Base64-encoded certificate
- buckets
Cloud
NSSFeed Buckets - Filter based on public cloud storage buckets
- casb
Actions string[] - CASB policy action filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
Applications string[] - CASB application filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
File string[]Type Super Categories - Endpoint DLP file type category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
File string[]Types - Endpoint DLP file type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
Policy string[]Types - CASB policy type filter Supported Values: MALWARE, DLP, ALL_INCIDENT
- casb
Severities string[] - Zscaler's Cloud Access Security Broker (CASB) severity filter Supported Values: RULE_SEVERITY_HIGH, RULE_SEVERITY_MEDIUM, RULE_SEVERITY_LOW, RULE_SEVERITY_INFO
- casb
Tenant CloudNSSFeed Casb Tenant - CASB tenant filter
- channel
Names string[] - Collaboration channel name filter
- client
Destination string[]Ips - Client's destination IPv4 addresses in Firewall policy
- client
Destination string[]Ports - Firewall logs filter based on a client's destination
- client
Id string - Client ID applicable when SIEM type is set to S3 or Azure Sentinel
- client
Ips string[] - Filter to limit the logs based on a client's public IPv4 addresses
- client
Secret string - Client secret applicable when SIEM type is set to S3 or Azure Sentinel
- client
Source string[]Ips - Client source IPs configured for NSS feed.
- client
Source string[]Ports - Firewall log filter based on a client's source ports
- connection
Headers string[] - The HTTP Connection headers
- connection
Url string - The HTTPS URL of the SIEM log collection API endpoint
- countries string[]
- Countries filter in the Firewall policy See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- custom
Escaped string[]Characters - Characters that need to be encoded using hex when they appear in URL, Host, or Referrer
- departments
Cloud
NSSFeed Departments - Departments filter
- direction string
- Traffic direction filter specifying inbound or outbound
- dlp
Dictionaries CloudNSSFeed Dlp Dictionaries - DLP dictionary filter
- dlp
Engines CloudNSSFeed Dlp Engines - DLP engine filter
- dns
Actions string[] - DNS Control policy action filter
- dns
Request string[]Types - DNS request types included in the feed Supported Values: ANY, NONE, DNSREQ_A, DNSREQ_NS, DNSREQ_CNAME, DNSREQ_SOA, DNSREQ_WKS, DNSREQ_PTR, DNSREQ_HINFO, DNSREQ_MINFO, DNSREQ_MX, DNSREQ_TXT, DNSREQ_AAAA, DNSREQ_ISDN, DNSREQ_LOC, DNSREQ_RP, DNSREQ_RT, DNSREQ_MR, DNSREQ_MG, DNSREQ_MB, DNSREQ_AFSDB, DNSREQ_HIP, DNSREQ_SRV, DNSREQ_DS, DNSREQ_NAPTR, DNSREQ_NSEC, DNSREQ_DNSKEY, DNSREQ_HTTPS, DNSREQ_UNKNOWN
- dns
Response string[]Types - DNS response types filter Supported Values: ANY, DNSRES_ZSCODE, DNSRES_CNAME, DNSRES_IPV6, DNSRES_SRV_CODE, DNSRES_IPV4
- dns
Responses string[] - DNS responses filter
- domains string[]
- Filter to limit the logs to sessions associated with specific domains
- download
Times string[] - Download time filter
- durations string[]
- Filter based on time durations
- email
Dlp string[]Log Types - Email DLP record type filter Supported Values: EPDLP_SCAN_AGGREGATE, EPDLP_SENSITIVE_ACTIVITY, EPDLP_DLP_INCIDENT
- email
Dlp stringPolicy Action - Action filter for Email DLP log type
- end
Point string[]Dlp Log Types - Endpoint DLP log type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- eps
Rate numberLimit - Event per second limit
- event string
- CASB event filter
- external
Collaborators CloudNSSFeed External Collaborators - Filter logs to specific recipients outside your organization
- external
Owners CloudNSSFeed External Owners - Filter logs associated with file owners (inside or outside your organization) who are not provisioned to ZIA services
- feed
Output stringFormat - Output format used for the feed
- feed
Status string - The status of the feed
- file
Names string[] - Filter based on the file name
- file
Sizes string[] - File size filter
- file
Sources string[] - Filter based on the file source
- file
Type string[]Categories - Filter based on the file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- file
Type string[]Super Categories - Filter based on the category of file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- firewall
Actions string[] - Firewall actions included in the NSS feed Supported Values: BLOCK,ALLOW,BLOCK_DROP,BLOCK_RESET,BLOCK_ICMP,COUNTRY_BLOCK IPS_BLOCK_DROP,IPS_BLOCK_RESET,ALLOW_INSUFFICIENT_APPDATA, BLOCK_ABUSE_DROP,INT_ERR_DROP,CFG_BYPASSED,CFG_TIMEDOUT
- firewall
Logging stringMode - Filter based on the Firewall Filtering policy logging mode
- full
Urls string[] - Filter to limit the logs based on specific full URLs
- grant
Type string - Grant type applicable when SIEM type is set to Azure Sentinel
- host
Names string[] - Filter to limit the logs based on specific hostnames
- in
Bound string[]Bytes - Filter based on inbound bytes
- internal
Collaborators CloudNSSFeed Internal Collaborators - Filter logs to specific recipients within your organization
- internal
Ips string[] - Filter based on internal IPv4 addresses
- itsm
Object CloudType NSSFeed Itsm Object Type - ITSM object type filter
- json
Array booleanToggle - A Boolean value indicating whether streaming of logs in JSON array format (e.g., [{JSON1},{JSON2}]) is enabled or disabled for the JSON feed output type
- location
Groups CloudNSSFeed Location Groups - A filter based on location groups
- locations
Cloud
NSSFeed Locations - Location filter
- malware
Classes string[] - Malware category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- malware
Names string[] - Filter based on malware names See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- max
Batch numberSize - The maximum batch size in KB
- name string
- The name of the cloud NSS feed
- nat
Actions string[] - NAT Control policy actions filter Supported Values: NONE, DNAT
- nss
Feed stringType - NSS feed format type (e.g. CSV, syslog, Splunk Common Information Model (CIM), etc.
- nss
Id number - nss
Log stringType - The type of NSS logs that are streamed (e.g. Web, Firewall, DNS, Alert, etc.)
- nss
Type string - NSS type
- nw
Applications string[] - Filter to include specific network applications in the logs. By default, all network applications are included in the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- nw
Applications string[]Excludes - Filter to include specific network applications in the logs. By default, no network application is excluded from the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- nw
Services CloudNSSFeed Nw Services - Firewall network services filter
- oauth
Authentication boolean - A Boolean value indicating whether OAuth 2.0 authentication is enabled or not
- object
Names string[] - CRM object name filter
- object
Type1s string[] - CASB activity object type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- object
Type2s string[] - CASB activity object type filter if applicable See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- object
Types string[] - CRM object type filter
- out
Bound string[]Bytes - Filter based on outbound bytes
- page
Risk string[]Indexes - Page Risk Index filter
- policy
Reasons string[] - Policy reason filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- project
Names string[] - Repository project name filter
- protocol
Types string[] - Protocol types filter Supported Values: TUNNEL, SSL, HTTP, HTTPS, FTP, FTPOVERHTTP, HTTP_PROXY, TUNNEL_SSL, DNSOVERHTTPS, WEBSOCKET, WEBSOCKET_SSL
- referer
Urls string[] - Referrer URL filter
- repo
Names string[] - Repository name filter
- request
Methods string[] - Request methods filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- request
Sizes string[] - Request size filter
- response
Codes string[] - Response codes filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- response
Sizes string[] - Request size filter
- rules
Cloud
NSSFeed Rules - Policy rules filter (e.g., Firewall Filtering or DNS Control rule filter)
- scan
Times string[] - Scan time filter
- scope string
- Scope applicable when SIEM type is set to Azure Sentinel
- sender
Name CloudNSSFeed Sender Name - Filter based on sender or owner name
- server
Destination string[]Ips - Filter based on the server's destination IPv4 addresses in Firewall policy
- server
Ips string[] - Filter to limit the logs based on the server's IPv4 addresses
- server
Source string[]Ips - Filter based on the server's source IPv4 addresses in Firewall policy
- server
Source string[]Ports - Firewall log filter based on the traffic destination name
- session
Counts string[] - Firewall logs filter based on the number of sessions
- siem
Type string - Cloud NSS SIEM type
- threat
Names string[] - Filter based on threat names
- time
Zone string - Specifies the time zone that must be used in the output file See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- traffic
Forwards string[] - Filter based on the firewall traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- transaction
Sizes string[] - Transaction size filter
- tunnel
Dest string[]Ips - Destination IPv4 addresses of tunnels
- tunnel
Ips string[] - Filter based on tunnel IPv4 addresses in Firewall policy
- tunnel
Source string[]Ips - Source IPv4 addresses of tunnels
- tunnel
Source string[]Ports - Filter based on the tunnel source port
- tunnel
Types string[] - Tunnel type filter Supported Values: GRE, IPSEC_IKEV1, IPSEC_IKEV2, SVPN, EXTRANET, ZUB, ZCB
- url
Categories CloudNSSFeed Url Categories - URL category filter
- url
Classes string[] - URL category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- url
Super string[]Categories - URL supercategory filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- user
Agents string[] - Predefined user agents filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- users
Cloud
NSSFeed Users - Users filter
- vpn
Credentials CloudNSSFeed Vpn Credentials - Filter based on specific VPN credentials
- web
Application string[]Classes - Cloud application categories Filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- web
Applications string[] - Filter to include specific cloud applications in the logs. By default, all cloud applications are included in the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- web
Applications string[]Excludes - Filter to exclude specific cloud applications from the logs. By default, no cloud applications is excluded from the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request. To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- web
Traffic string[]Forwards - Filter based on the web traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- action_
filter str - Policy action filter
- activities Sequence[str]
- CASB activity filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- adv_
user_ Sequence[str]agents - Filter based on custom user agent strings
- advanced_
threats Sequence[str] - Advanced threats filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- alerts Sequence[str]
- Alert filter Supported Values: CRITICAL, WARN
- audit_
log_ Sequence[str]types - Audit log type filter
- authentication_
token str - The authentication token value
- authentication_
url str - Authentication URL applicable when SIEM type is set to Azure Sentinel
- base64_
encoded_ strcertificate - Base64-encoded certificate
- buckets
Cloud
NSSFeed Buckets Args - Filter based on public cloud storage buckets
- casb_
actions Sequence[str] - CASB policy action filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb_
applications Sequence[str] - CASB application filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb_
file_ Sequence[str]type_ super_ categories - Endpoint DLP file type category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb_
file_ Sequence[str]types - Endpoint DLP file type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb_
policy_ Sequence[str]types - CASB policy type filter Supported Values: MALWARE, DLP, ALL_INCIDENT
- casb_
severities Sequence[str] - Zscaler's Cloud Access Security Broker (CASB) severity filter Supported Values: RULE_SEVERITY_HIGH, RULE_SEVERITY_MEDIUM, RULE_SEVERITY_LOW, RULE_SEVERITY_INFO
- casb_
tenant CloudNSSFeed Casb Tenant Args - CASB tenant filter
- channel_
names Sequence[str] - Collaboration channel name filter
- client_
destination_ Sequence[str]ips - Client's destination IPv4 addresses in Firewall policy
- client_
destination_ Sequence[str]ports - Firewall logs filter based on a client's destination
- client_
id str - Client ID applicable when SIEM type is set to S3 or Azure Sentinel
- client_
ips Sequence[str] - Filter to limit the logs based on a client's public IPv4 addresses
- client_
secret str - Client secret applicable when SIEM type is set to S3 or Azure Sentinel
- client_
source_ Sequence[str]ips - Client source IPs configured for NSS feed.
- client_
source_ Sequence[str]ports - Firewall log filter based on a client's source ports
- connection_
headers Sequence[str] - The HTTP Connection headers
- connection_
url str - The HTTPS URL of the SIEM log collection API endpoint
- countries Sequence[str]
- Countries filter in the Firewall policy See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- custom_
escaped_ Sequence[str]characters - Characters that need to be encoded using hex when they appear in URL, Host, or Referrer
- departments
Cloud
NSSFeed Departments Args - Departments filter
- direction str
- Traffic direction filter specifying inbound or outbound
- dlp_
dictionaries CloudNSSFeed Dlp Dictionaries Args - DLP dictionary filter
- dlp_
engines CloudNSSFeed Dlp Engines Args - DLP engine filter
- dns_
actions Sequence[str] - DNS Control policy action filter
- dns_
request_ Sequence[str]types - DNS request types included in the feed Supported Values: ANY, NONE, DNSREQ_A, DNSREQ_NS, DNSREQ_CNAME, DNSREQ_SOA, DNSREQ_WKS, DNSREQ_PTR, DNSREQ_HINFO, DNSREQ_MINFO, DNSREQ_MX, DNSREQ_TXT, DNSREQ_AAAA, DNSREQ_ISDN, DNSREQ_LOC, DNSREQ_RP, DNSREQ_RT, DNSREQ_MR, DNSREQ_MG, DNSREQ_MB, DNSREQ_AFSDB, DNSREQ_HIP, DNSREQ_SRV, DNSREQ_DS, DNSREQ_NAPTR, DNSREQ_NSEC, DNSREQ_DNSKEY, DNSREQ_HTTPS, DNSREQ_UNKNOWN
- dns_
response_ Sequence[str]types - DNS response types filter Supported Values: ANY, DNSRES_ZSCODE, DNSRES_CNAME, DNSRES_IPV6, DNSRES_SRV_CODE, DNSRES_IPV4
- dns_
responses Sequence[str] - DNS responses filter
- domains Sequence[str]
- Filter to limit the logs to sessions associated with specific domains
- download_
times Sequence[str] - Download time filter
- durations Sequence[str]
- Filter based on time durations
- email_
dlp_ Sequence[str]log_ types - Email DLP record type filter Supported Values: EPDLP_SCAN_AGGREGATE, EPDLP_SENSITIVE_ACTIVITY, EPDLP_DLP_INCIDENT
- email_
dlp_ strpolicy_ action - Action filter for Email DLP log type
- end_
point_ Sequence[str]dlp_ log_ types - Endpoint DLP log type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- eps_
rate_ intlimit - Event per second limit
- event str
- CASB event filter
- external_
collaborators CloudNSSFeed External Collaborators Args - Filter logs to specific recipients outside your organization
- external_
owners CloudNSSFeed External Owners Args - Filter logs associated with file owners (inside or outside your organization) who are not provisioned to ZIA services
- feed_
output_ strformat - Output format used for the feed
- feed_
status str - The status of the feed
- file_
names Sequence[str] - Filter based on the file name
- file_
sizes Sequence[str] - File size filter
- file_
sources Sequence[str] - Filter based on the file source
- file_
type_ Sequence[str]categories - Filter based on the file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- file_
type_ Sequence[str]super_ categories - Filter based on the category of file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- firewall_
actions Sequence[str] - Firewall actions included in the NSS feed Supported Values: BLOCK,ALLOW,BLOCK_DROP,BLOCK_RESET,BLOCK_ICMP,COUNTRY_BLOCK IPS_BLOCK_DROP,IPS_BLOCK_RESET,ALLOW_INSUFFICIENT_APPDATA, BLOCK_ABUSE_DROP,INT_ERR_DROP,CFG_BYPASSED,CFG_TIMEDOUT
- firewall_
logging_ strmode - Filter based on the Firewall Filtering policy logging mode
- full_
urls Sequence[str] - Filter to limit the logs based on specific full URLs
- grant_
type str - Grant type applicable when SIEM type is set to Azure Sentinel
- host_
names Sequence[str] - Filter to limit the logs based on specific hostnames
- in_
bound_ Sequence[str]bytes - Filter based on inbound bytes
- internal_
collaborators CloudNSSFeed Internal Collaborators Args - Filter logs to specific recipients within your organization
- internal_
ips Sequence[str] - Filter based on internal IPv4 addresses
- itsm_
object_ Cloudtype NSSFeed Itsm Object Type Args - ITSM object type filter
- json_
array_ booltoggle - A Boolean value indicating whether streaming of logs in JSON array format (e.g., [{JSON1},{JSON2}]) is enabled or disabled for the JSON feed output type
- location_
groups CloudNSSFeed Location Groups Args - A filter based on location groups
- locations
Cloud
NSSFeed Locations Args - Location filter
- malware_
classes Sequence[str] - Malware category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- malware_
names Sequence[str] - Filter based on malware names See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- max_
batch_ intsize - The maximum batch size in KB
- name str
- The name of the cloud NSS feed
- nat_
actions Sequence[str] - NAT Control policy actions filter Supported Values: NONE, DNAT
- nss_
feed_ strtype - NSS feed format type (e.g. CSV, syslog, Splunk Common Information Model (CIM), etc.
- nss_
id int - nss_
log_ strtype - The type of NSS logs that are streamed (e.g. Web, Firewall, DNS, Alert, etc.)
- nss_
type str - NSS type
- nw_
applications Sequence[str] - Filter to include specific network applications in the logs. By default, all network applications are included in the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- nw_
applications_ Sequence[str]excludes - Filter to include specific network applications in the logs. By default, no network application is excluded from the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- nw_
services CloudNSSFeed Nw Services Args - Firewall network services filter
- oauth_
authentication bool - A Boolean value indicating whether OAuth 2.0 authentication is enabled or not
- object_
names Sequence[str] - CRM object name filter
- object_
type1s Sequence[str] - CASB activity object type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- object_
type2s Sequence[str] - CASB activity object type filter if applicable See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- object_
types Sequence[str] - CRM object type filter
- out_
bound_ Sequence[str]bytes - Filter based on outbound bytes
- page_
risk_ Sequence[str]indexes - Page Risk Index filter
- policy_
reasons Sequence[str] - Policy reason filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- project_
names Sequence[str] - Repository project name filter
- protocol_
types Sequence[str] - Protocol types filter Supported Values: TUNNEL, SSL, HTTP, HTTPS, FTP, FTPOVERHTTP, HTTP_PROXY, TUNNEL_SSL, DNSOVERHTTPS, WEBSOCKET, WEBSOCKET_SSL
- referer_
urls Sequence[str] - Referrer URL filter
- repo_
names Sequence[str] - Repository name filter
- request_
methods Sequence[str] - Request methods filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- request_
sizes Sequence[str] - Request size filter
- response_
codes Sequence[str] - Response codes filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- response_
sizes Sequence[str] - Request size filter
- rules
Cloud
NSSFeed Rules Args - Policy rules filter (e.g., Firewall Filtering or DNS Control rule filter)
- scan_
times Sequence[str] - Scan time filter
- scope str
- Scope applicable when SIEM type is set to Azure Sentinel
- sender_
name CloudNSSFeed Sender Name Args - Filter based on sender or owner name
- server_
destination_ Sequence[str]ips - Filter based on the server's destination IPv4 addresses in Firewall policy
- server_
ips Sequence[str] - Filter to limit the logs based on the server's IPv4 addresses
- server_
source_ Sequence[str]ips - Filter based on the server's source IPv4 addresses in Firewall policy
- server_
source_ Sequence[str]ports - Firewall log filter based on the traffic destination name
- session_
counts Sequence[str] - Firewall logs filter based on the number of sessions
- siem_
type str - Cloud NSS SIEM type
- threat_
names Sequence[str] - Filter based on threat names
- time_
zone str - Specifies the time zone that must be used in the output file See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- traffic_
forwards Sequence[str] - Filter based on the firewall traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- transaction_
sizes Sequence[str] - Transaction size filter
- tunnel_
dest_ Sequence[str]ips - Destination IPv4 addresses of tunnels
- tunnel_
ips Sequence[str] - Filter based on tunnel IPv4 addresses in Firewall policy
- tunnel_
source_ Sequence[str]ips - Source IPv4 addresses of tunnels
- tunnel_
source_ Sequence[str]ports - Filter based on the tunnel source port
- tunnel_
types Sequence[str] - Tunnel type filter Supported Values: GRE, IPSEC_IKEV1, IPSEC_IKEV2, SVPN, EXTRANET, ZUB, ZCB
- url_
categories CloudNSSFeed Url Categories Args - URL category filter
- url_
classes Sequence[str] - URL category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- url_
super_ Sequence[str]categories - URL supercategory filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- user_
agents Sequence[str] - Predefined user agents filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- users
Cloud
NSSFeed Users Args - Users filter
- vpn_
credentials CloudNSSFeed Vpn Credentials Args - Filter based on specific VPN credentials
- web_
application_ Sequence[str]classes - Cloud application categories Filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- web_
applications Sequence[str] - Filter to include specific cloud applications in the logs. By default, all cloud applications are included in the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- web_
applications_ Sequence[str]excludes - Filter to exclude specific cloud applications from the logs. By default, no cloud applications is excluded from the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request. To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- web_
traffic_ Sequence[str]forwards - Filter based on the web traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- action
Filter String - Policy action filter
- activities List<String>
- CASB activity filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- adv
User List<String>Agents - Filter based on custom user agent strings
- advanced
Threats List<String> - Advanced threats filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- alerts List<String>
- Alert filter Supported Values: CRITICAL, WARN
- audit
Log List<String>Types - Audit log type filter
- authentication
Token String - The authentication token value
- authentication
Url String - Authentication URL applicable when SIEM type is set to Azure Sentinel
- base64Encoded
Certificate String - Base64-encoded certificate
- buckets Property Map
- Filter based on public cloud storage buckets
- casb
Actions List<String> - CASB policy action filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
Applications List<String> - CASB application filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
File List<String>Type Super Categories - Endpoint DLP file type category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
File List<String>Types - Endpoint DLP file type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- casb
Policy List<String>Types - CASB policy type filter Supported Values: MALWARE, DLP, ALL_INCIDENT
- casb
Severities List<String> - Zscaler's Cloud Access Security Broker (CASB) severity filter Supported Values: RULE_SEVERITY_HIGH, RULE_SEVERITY_MEDIUM, RULE_SEVERITY_LOW, RULE_SEVERITY_INFO
- casb
Tenant Property Map - CASB tenant filter
- channel
Names List<String> - Collaboration channel name filter
- client
Destination List<String>Ips - Client's destination IPv4 addresses in Firewall policy
- client
Destination List<String>Ports - Firewall logs filter based on a client's destination
- client
Id String - Client ID applicable when SIEM type is set to S3 or Azure Sentinel
- client
Ips List<String> - Filter to limit the logs based on a client's public IPv4 addresses
- client
Secret String - Client secret applicable when SIEM type is set to S3 or Azure Sentinel
- client
Source List<String>Ips - Client source IPs configured for NSS feed.
- client
Source List<String>Ports - Firewall log filter based on a client's source ports
- connection
Headers List<String> - The HTTP Connection headers
- connection
Url String - The HTTPS URL of the SIEM log collection API endpoint
- countries List<String>
- Countries filter in the Firewall policy See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- custom
Escaped List<String>Characters - Characters that need to be encoded using hex when they appear in URL, Host, or Referrer
- departments Property Map
- Departments filter
- direction String
- Traffic direction filter specifying inbound or outbound
- dlp
Dictionaries Property Map - DLP dictionary filter
- dlp
Engines Property Map - DLP engine filter
- dns
Actions List<String> - DNS Control policy action filter
- dns
Request List<String>Types - DNS request types included in the feed Supported Values: ANY, NONE, DNSREQ_A, DNSREQ_NS, DNSREQ_CNAME, DNSREQ_SOA, DNSREQ_WKS, DNSREQ_PTR, DNSREQ_HINFO, DNSREQ_MINFO, DNSREQ_MX, DNSREQ_TXT, DNSREQ_AAAA, DNSREQ_ISDN, DNSREQ_LOC, DNSREQ_RP, DNSREQ_RT, DNSREQ_MR, DNSREQ_MG, DNSREQ_MB, DNSREQ_AFSDB, DNSREQ_HIP, DNSREQ_SRV, DNSREQ_DS, DNSREQ_NAPTR, DNSREQ_NSEC, DNSREQ_DNSKEY, DNSREQ_HTTPS, DNSREQ_UNKNOWN
- dns
Response List<String>Types - DNS response types filter Supported Values: ANY, DNSRES_ZSCODE, DNSRES_CNAME, DNSRES_IPV6, DNSRES_SRV_CODE, DNSRES_IPV4
- dns
Responses List<String> - DNS responses filter
- domains List<String>
- Filter to limit the logs to sessions associated with specific domains
- download
Times List<String> - Download time filter
- durations List<String>
- Filter based on time durations
- email
Dlp List<String>Log Types - Email DLP record type filter Supported Values: EPDLP_SCAN_AGGREGATE, EPDLP_SENSITIVE_ACTIVITY, EPDLP_DLP_INCIDENT
- email
Dlp StringPolicy Action - Action filter for Email DLP log type
- end
Point List<String>Dlp Log Types - Endpoint DLP log type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- eps
Rate NumberLimit - Event per second limit
- event String
- CASB event filter
- external
Collaborators Property Map - Filter logs to specific recipients outside your organization
- external
Owners Property Map - Filter logs associated with file owners (inside or outside your organization) who are not provisioned to ZIA services
- feed
Output StringFormat - Output format used for the feed
- feed
Status String - The status of the feed
- file
Names List<String> - Filter based on the file name
- file
Sizes List<String> - File size filter
- file
Sources List<String> - Filter based on the file source
- file
Type List<String>Categories - Filter based on the file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- file
Type List<String>Super Categories - Filter based on the category of file type in download See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- firewall
Actions List<String> - Firewall actions included in the NSS feed Supported Values: BLOCK,ALLOW,BLOCK_DROP,BLOCK_RESET,BLOCK_ICMP,COUNTRY_BLOCK IPS_BLOCK_DROP,IPS_BLOCK_RESET,ALLOW_INSUFFICIENT_APPDATA, BLOCK_ABUSE_DROP,INT_ERR_DROP,CFG_BYPASSED,CFG_TIMEDOUT
- firewall
Logging StringMode - Filter based on the Firewall Filtering policy logging mode
- full
Urls List<String> - Filter to limit the logs based on specific full URLs
- grant
Type String - Grant type applicable when SIEM type is set to Azure Sentinel
- host
Names List<String> - Filter to limit the logs based on specific hostnames
- in
Bound List<String>Bytes - Filter based on inbound bytes
- internal
Collaborators Property Map - Filter logs to specific recipients within your organization
- internal
Ips List<String> - Filter based on internal IPv4 addresses
- itsm
Object Property MapType - ITSM object type filter
- json
Array BooleanToggle - A Boolean value indicating whether streaming of logs in JSON array format (e.g., [{JSON1},{JSON2}]) is enabled or disabled for the JSON feed output type
- location
Groups Property Map - A filter based on location groups
- locations Property Map
- Location filter
- malware
Classes List<String> - Malware category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- malware
Names List<String> - Filter based on malware names See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- max
Batch NumberSize - The maximum batch size in KB
- name String
- The name of the cloud NSS feed
- nat
Actions List<String> - NAT Control policy actions filter Supported Values: NONE, DNAT
- nss
Feed StringType - NSS feed format type (e.g. CSV, syslog, Splunk Common Information Model (CIM), etc.
- nss
Id Number - nss
Log StringType - The type of NSS logs that are streamed (e.g. Web, Firewall, DNS, Alert, etc.)
- nss
Type String - NSS type
- nw
Applications List<String> - Filter to include specific network applications in the logs. By default, all network applications are included in the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- nw
Applications List<String>Excludes - Filter to include specific network applications in the logs. By default, no network application is excluded from the logs See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- nw
Services Property Map - Firewall network services filter
- oauth
Authentication Boolean - A Boolean value indicating whether OAuth 2.0 authentication is enabled or not
- object
Names List<String> - CRM object name filter
- object
Type1s List<String> - CASB activity object type filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- object
Type2s List<String> - CASB activity object type filter if applicable See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- object
Types List<String> - CRM object type filter
- out
Bound List<String>Bytes - Filter based on outbound bytes
- page
Risk List<String>Indexes - Page Risk Index filter
- policy
Reasons List<String> - Policy reason filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- project
Names List<String> - Repository project name filter
- protocol
Types List<String> - Protocol types filter Supported Values: TUNNEL, SSL, HTTP, HTTPS, FTP, FTPOVERHTTP, HTTP_PROXY, TUNNEL_SSL, DNSOVERHTTPS, WEBSOCKET, WEBSOCKET_SSL
- referer
Urls List<String> - Referrer URL filter
- repo
Names List<String> - Repository name filter
- request
Methods List<String> - Request methods filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- request
Sizes List<String> - Request size filter
- response
Codes List<String> - Response codes filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- response
Sizes List<String> - Request size filter
- rules Property Map
- Policy rules filter (e.g., Firewall Filtering or DNS Control rule filter)
- scan
Times List<String> - Scan time filter
- scope String
- Scope applicable when SIEM type is set to Azure Sentinel
- sender
Name Property Map - Filter based on sender or owner name
- server
Destination List<String>Ips - Filter based on the server's destination IPv4 addresses in Firewall policy
- server
Ips List<String> - Filter to limit the logs based on the server's IPv4 addresses
- server
Source List<String>Ips - Filter based on the server's source IPv4 addresses in Firewall policy
- server
Source List<String>Ports - Firewall log filter based on the traffic destination name
- session
Counts List<String> - Firewall logs filter based on the number of sessions
- siem
Type String - Cloud NSS SIEM type
- threat
Names List<String> - Filter based on threat names
- time
Zone String - Specifies the time zone that must be used in the output file See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- traffic
Forwards List<String> - Filter based on the firewall traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
- transaction
Sizes List<String> - Transaction size filter
- tunnel
Dest List<String>Ips - Destination IPv4 addresses of tunnels
- tunnel
Ips List<String> - Filter based on tunnel IPv4 addresses in Firewall policy
- tunnel
Source List<String>Ips - Source IPv4 addresses of tunnels
- tunnel
Source List<String>Ports - Filter based on the tunnel source port
- tunnel
Types List<String> - Tunnel type filter Supported Values: GRE, IPSEC_IKEV1, IPSEC_IKEV2, SVPN, EXTRANET, ZUB, ZCB
- url
Categories Property Map - URL category filter
- url
Classes List<String> - URL category filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- url
Super List<String>Categories - URL supercategory filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- user
Agents List<String> - Predefined user agents filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- users Property Map
- Users filter
- vpn
Credentials Property Map - Filter based on specific VPN credentials
- web
Application List<String>Classes - Cloud application categories Filter See the [Cloud Nanolog Streaming Service (NSS) documentation https://help.zscaler.com/zia/cloud-nanolog-streaming-service-nss#/nssFeeds-get
- web
Applications List<String> - Filter to include specific cloud applications in the logs. By default, all cloud applications are included in the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- web
Applications List<String>Excludes - Filter to exclude specific cloud applications from the logs. By default, no cloud applications is excluded from the logs. To obtain the list of cloud applications that can be specified in this attribute, use the GET /cloudApplications/lite request. To retrieve the list of cloud applications, use the data source: zia_cloud_applications
- web
Traffic List<String>Forwards - Filter based on the web traffic forwarding method Supported Values: ANY, NONE, PBF, GRE, IPSEC, Z_APP, ZAPP_GRE, ZAPP_IPSEC, EC, MTGRE, ZAPP_DIRECT, CCA, MTUN_PROXY, MTUN_CBI
Supporting Types
CloudNSSFeedBuckets, CloudNSSFeedBucketsArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
CloudNSSFeedCasbTenant, CloudNSSFeedCasbTenantArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
CloudNSSFeedDepartments, CloudNSSFeedDepartmentsArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
CloudNSSFeedDlpDictionaries, CloudNSSFeedDlpDictionariesArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
CloudNSSFeedDlpEngines, CloudNSSFeedDlpEnginesArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
CloudNSSFeedExternalCollaborators, CloudNSSFeedExternalCollaboratorsArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
CloudNSSFeedExternalOwners, CloudNSSFeedExternalOwnersArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
CloudNSSFeedInternalCollaborators, CloudNSSFeedInternalCollaboratorsArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
CloudNSSFeedItsmObjectType, CloudNSSFeedItsmObjectTypeArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
CloudNSSFeedLocationGroups, CloudNSSFeedLocationGroupsArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
CloudNSSFeedLocations, CloudNSSFeedLocationsArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
CloudNSSFeedNwServices, CloudNSSFeedNwServicesArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
CloudNSSFeedRules, CloudNSSFeedRulesArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
CloudNSSFeedSenderName, CloudNSSFeedSenderNameArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
CloudNSSFeedUrlCategories, CloudNSSFeedUrlCategoriesArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
CloudNSSFeedUsers, CloudNSSFeedUsersArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
CloudNSSFeedVpnCredentials, CloudNSSFeedVpnCredentialsArgs
- Ids List<int>
- Ids []int
- ids List<Integer>
- ids number[]
- ids Sequence[int]
- ids List<Number>
Import
Zscaler offers a dedicated tool called Zscaler-Terraformer to allow the automated import of ZIA configurations into Terraform-compliant HashiCorp Configuration Language. Visit
Cloud NSS feeds can be imported using the id or name, e.g.
$ pulumi import zia:index/cloudNSSFeed:CloudNSSFeed example 123456789
or
$ pulumi import zia:index/cloudNSSFeed:CloudNSSFeed example "Splunk_Audit_Feed_Terraform"
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- zia zscaler/pulumi-zia
- License
- MIT
- Notes
- This Pulumi package is based on the
ziaTerraform Provider.
Zscaler Internet Access v1.2.0 published on Friday, Feb 20, 2026 by Zscaler
