fortimanager.SystempSystemDns

fortimanager 1.17.0, May 4 26

Viewing docs for fortimanager 1.17.0
published on Monday, May 4, 2026 by fortinetdev

fortinetdev/terraform-provider-fortimanager

Viewing docs for fortimanager 1.17.0
published on Monday, May 4, 2026 by fortinetdev

fortinetdev/terraform-provider-fortimanager

Create SystempSystemDns Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new SystempSystemDns(name: string, args: SystempSystemDnsArgs, opts?: CustomResourceOptions);

@overload
def SystempSystemDns(resource_name: str,
                     args: SystempSystemDnsArgs,
                     opts: Optional[ResourceOptions] = None)

@overload
def SystempSystemDns(resource_name: str,
                     opts: Optional[ResourceOptions] = None,
                     devprof: Optional[str] = None,
                     ip6_primary: Optional[str] = None,
                     log: Optional[str] = None,
                     cache_notfound_responses: Optional[str] = None,
                     alt_primary: Optional[str] = None,
                     dns_cache_limit: Optional[float] = None,
                     dns_cache_ttl: Optional[float] = None,
                     dns_over_tls: Optional[str] = None,
                     domains: Optional[Sequence[str]] = None,
                     ip6_secondary: Optional[str] = None,
                     fqdn_max_refresh: Optional[float] = None,
                     fqdn_min_refresh: Optional[float] = None,
                     hostname_limit: Optional[float] = None,
                     hostname_ttl: Optional[float] = None,
                     interface_select_method: Optional[str] = None,
                     alt_secondary: Optional[str] = None,
                     interfaces: Optional[Sequence[str]] = None,
                     fqdn_cache_ttl: Optional[float] = None,
                     adom: Optional[str] = None,
                     primary: Optional[str] = None,
                     protocols: Optional[Sequence[str]] = None,
                     retry: Optional[float] = None,
                     root_servers: Optional[str] = None,
                     scopetype: Optional[str] = None,
                     secondary: Optional[str] = None,
                     server_hostnames: Optional[Sequence[str]] = None,
                     server_select_method: Optional[str] = None,
                     source_ip: Optional[str] = None,
                     source_ip_interfaces: Optional[Sequence[str]] = None,
                     ssl_certificates: Optional[Sequence[str]] = None,
                     systemp_system_dns_id: Optional[str] = None,
                     timeout: Optional[float] = None,
                     vrf_select: Optional[float] = None)

func NewSystempSystemDns(ctx *Context, name string, args SystempSystemDnsArgs, opts ...ResourceOption) (*SystempSystemDns, error)

public SystempSystemDns(string name, SystempSystemDnsArgs args, CustomResourceOptions? opts = null)

public SystempSystemDns(String name, SystempSystemDnsArgs args)
public SystempSystemDns(String name, SystempSystemDnsArgs args, CustomResourceOptions options)

type: fortimanager:SystempSystemDns
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args SystempSystemDnsArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args SystempSystemDnsArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args SystempSystemDnsArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args SystempSystemDnsArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args SystempSystemDnsArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var systempSystemDnsResource = new Fortimanager.SystempSystemDns("systempSystemDnsResource", new()
{
    Devprof = "string",
    Ip6Primary = "string",
    Log = "string",
    CacheNotfoundResponses = "string",
    AltPrimary = "string",
    DnsCacheLimit = 0,
    DnsCacheTtl = 0,
    DnsOverTls = "string",
    Domains = new[]
    {
        "string",
    },
    Ip6Secondary = "string",
    FqdnMaxRefresh = 0,
    FqdnMinRefresh = 0,
    HostnameLimit = 0,
    HostnameTtl = 0,
    InterfaceSelectMethod = "string",
    AltSecondary = "string",
    Interfaces = new[]
    {
        "string",
    },
    FqdnCacheTtl = 0,
    Adom = "string",
    Primary = "string",
    Protocols = new[]
    {
        "string",
    },
    Retry = 0,
    RootServers = "string",
    Scopetype = "string",
    Secondary = "string",
    ServerHostnames = new[]
    {
        "string",
    },
    ServerSelectMethod = "string",
    SourceIp = "string",
    SourceIpInterfaces = new[]
    {
        "string",
    },
    SslCertificates = new[]
    {
        "string",
    },
    SystempSystemDnsId = "string",
    Timeout = 0,
    VrfSelect = 0,
});

example, err := fortimanager.NewSystempSystemDns(ctx, "systempSystemDnsResource", &fortimanager.SystempSystemDnsArgs{
	Devprof:                pulumi.String("string"),
	Ip6Primary:             pulumi.String("string"),
	Log:                    pulumi.String("string"),
	CacheNotfoundResponses: pulumi.String("string"),
	AltPrimary:             pulumi.String("string"),
	DnsCacheLimit:          pulumi.Float64(0),
	DnsCacheTtl:            pulumi.Float64(0),
	DnsOverTls:             pulumi.String("string"),
	Domains: pulumi.StringArray{
		pulumi.String("string"),
	},
	Ip6Secondary:          pulumi.String("string"),
	FqdnMaxRefresh:        pulumi.Float64(0),
	FqdnMinRefresh:        pulumi.Float64(0),
	HostnameLimit:         pulumi.Float64(0),
	HostnameTtl:           pulumi.Float64(0),
	InterfaceSelectMethod: pulumi.String("string"),
	AltSecondary:          pulumi.String("string"),
	Interfaces: pulumi.StringArray{
		pulumi.String("string"),
	},
	FqdnCacheTtl: pulumi.Float64(0),
	Adom:         pulumi.String("string"),
	Primary:      pulumi.String("string"),
	Protocols: pulumi.StringArray{
		pulumi.String("string"),
	},
	Retry:       pulumi.Float64(0),
	RootServers: pulumi.String("string"),
	Scopetype:   pulumi.String("string"),
	Secondary:   pulumi.String("string"),
	ServerHostnames: pulumi.StringArray{
		pulumi.String("string"),
	},
	ServerSelectMethod: pulumi.String("string"),
	SourceIp:           pulumi.String("string"),
	SourceIpInterfaces: pulumi.StringArray{
		pulumi.String("string"),
	},
	SslCertificates: pulumi.StringArray{
		pulumi.String("string"),
	},
	SystempSystemDnsId: pulumi.String("string"),
	Timeout:            pulumi.Float64(0),
	VrfSelect:          pulumi.Float64(0),
})

var systempSystemDnsResource = new SystempSystemDns("systempSystemDnsResource", SystempSystemDnsArgs.builder()
    .devprof("string")
    .ip6Primary("string")
    .log("string")
    .cacheNotfoundResponses("string")
    .altPrimary("string")
    .dnsCacheLimit(0.0)
    .dnsCacheTtl(0.0)
    .dnsOverTls("string")
    .domains("string")
    .ip6Secondary("string")
    .fqdnMaxRefresh(0.0)
    .fqdnMinRefresh(0.0)
    .hostnameLimit(0.0)
    .hostnameTtl(0.0)
    .interfaceSelectMethod("string")
    .altSecondary("string")
    .interfaces("string")
    .fqdnCacheTtl(0.0)
    .adom("string")
    .primary("string")
    .protocols("string")
    .retry(0.0)
    .rootServers("string")
    .scopetype("string")
    .secondary("string")
    .serverHostnames("string")
    .serverSelectMethod("string")
    .sourceIp("string")
    .sourceIpInterfaces("string")
    .sslCertificates("string")
    .systempSystemDnsId("string")
    .timeout(0.0)
    .vrfSelect(0.0)
    .build());

systemp_system_dns_resource = fortimanager.SystempSystemDns("systempSystemDnsResource",
    devprof="string",
    ip6_primary="string",
    log="string",
    cache_notfound_responses="string",
    alt_primary="string",
    dns_cache_limit=float(0),
    dns_cache_ttl=float(0),
    dns_over_tls="string",
    domains=["string"],
    ip6_secondary="string",
    fqdn_max_refresh=float(0),
    fqdn_min_refresh=float(0),
    hostname_limit=float(0),
    hostname_ttl=float(0),
    interface_select_method="string",
    alt_secondary="string",
    interfaces=["string"],
    fqdn_cache_ttl=float(0),
    adom="string",
    primary="string",
    protocols=["string"],
    retry=float(0),
    root_servers="string",
    scopetype="string",
    secondary="string",
    server_hostnames=["string"],
    server_select_method="string",
    source_ip="string",
    source_ip_interfaces=["string"],
    ssl_certificates=["string"],
    systemp_system_dns_id="string",
    timeout=float(0),
    vrf_select=float(0))

const systempSystemDnsResource = new fortimanager.SystempSystemDns("systempSystemDnsResource", {
    devprof: "string",
    ip6Primary: "string",
    log: "string",
    cacheNotfoundResponses: "string",
    altPrimary: "string",
    dnsCacheLimit: 0,
    dnsCacheTtl: 0,
    dnsOverTls: "string",
    domains: ["string"],
    ip6Secondary: "string",
    fqdnMaxRefresh: 0,
    fqdnMinRefresh: 0,
    hostnameLimit: 0,
    hostnameTtl: 0,
    interfaceSelectMethod: "string",
    altSecondary: "string",
    interfaces: ["string"],
    fqdnCacheTtl: 0,
    adom: "string",
    primary: "string",
    protocols: ["string"],
    retry: 0,
    rootServers: "string",
    scopetype: "string",
    secondary: "string",
    serverHostnames: ["string"],
    serverSelectMethod: "string",
    sourceIp: "string",
    sourceIpInterfaces: ["string"],
    sslCertificates: ["string"],
    systempSystemDnsId: "string",
    timeout: 0,
    vrfSelect: 0,
});

type: fortimanager:SystempSystemDns
properties:
    adom: string
    altPrimary: string
    altSecondary: string
    cacheNotfoundResponses: string
    devprof: string
    dnsCacheLimit: 0
    dnsCacheTtl: 0
    dnsOverTls: string
    domains:
        - string
    fqdnCacheTtl: 0
    fqdnMaxRefresh: 0
    fqdnMinRefresh: 0
    hostnameLimit: 0
    hostnameTtl: 0
    interfaceSelectMethod: string
    interfaces:
        - string
    ip6Primary: string
    ip6Secondary: string
    log: string
    primary: string
    protocols:
        - string
    retry: 0
    rootServers: string
    scopetype: string
    secondary: string
    serverHostnames:
        - string
    serverSelectMethod: string
    sourceIp: string
    sourceIpInterfaces:
        - string
    sslCertificates:
        - string
    systempSystemDnsId: string
    timeout: 0
    vrfSelect: 0

SystempSystemDns Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The SystempSystemDns resource accepts the following input properties:

Devprof string: Devprof.
Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AltPrimary string: Alternate primary DNS server. This is not used as a failover DNS server.
AltSecondary string: Alternate secondary DNS server. This is not used as a failover DNS server.
CacheNotfoundResponses string: Enable/disable response from the DNS server when a record is not in cache. Valid values: disable, enable.
DnsCacheLimit double: Maximum number of records in the DNS cache.
DnsCacheTtl double: Duration in seconds that the DNS cache retains information.
DnsOverTls string: Enable/disable/enforce DNS over TLS. Valid values: disable, enable, enforce.
Domains List<string>: Support meta variable Search suffix list for hostname lookup.
FqdnCacheTtl double: FQDN cache time to live in seconds (0 - 86400, default = 0).
FqdnMaxRefresh double: FQDN cache maximum refresh time in seconds (3600 - 86400, default = 3600).
FqdnMinRefresh double: FQDN cache minimum refresh time in seconds (10 - 3600, default = 60).
HostnameLimit double: Limit of the number of hostname table entries (0 - 50000).
HostnameTtl double: TTL of hostname table entries (60 - 86400).
InterfaceSelectMethod string: Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
Interfaces List<string>: Support meta variable Specify outgoing interface to reach server.
Ip6Primary string: Primary DNS server IPv6 address.
Ip6Secondary string: Secondary DNS server IPv6 address.
Log string: Local DNS log setting. Valid values: disable, error, all.
Primary string: Support meta variable Primary DNS server IP address.
Protocols List<string>: DNS transport protocols. Valid values: cleartext, dot, doh.
Retry double: Number of times to retry (0 - 5).
RootServers string: Configure up to two preferred servers that serve the DNS root zone (default uses all 13 root servers).
Scopetype string: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
Secondary string: Support meta variable Secondary DNS server IP address.
ServerHostnames List<string>: DNS server host name list.
ServerSelectMethod string: Specify how configured servers are prioritized. Valid values: least-rtt, failover.
SourceIp string: IP address used by the DNS server as its source IP.
SourceIpInterfaces List<string>: IP address of the specified interface as the source IP address.
SslCertificates List<string>: Name of local certificate for SSL connections.
SystempSystemDnsId string: an identifier for the resource.
Timeout double: DNS query timeout interval in seconds (1 - 10).
VrfSelect double: VRF ID used for connection to server.

Devprof string: Devprof.
Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AltPrimary string: Alternate primary DNS server. This is not used as a failover DNS server.
AltSecondary string: Alternate secondary DNS server. This is not used as a failover DNS server.
CacheNotfoundResponses string: Enable/disable response from the DNS server when a record is not in cache. Valid values: disable, enable.
DnsCacheLimit float64: Maximum number of records in the DNS cache.
DnsCacheTtl float64: Duration in seconds that the DNS cache retains information.
DnsOverTls string: Enable/disable/enforce DNS over TLS. Valid values: disable, enable, enforce.
Domains []string: Support meta variable Search suffix list for hostname lookup.
FqdnCacheTtl float64: FQDN cache time to live in seconds (0 - 86400, default = 0).
FqdnMaxRefresh float64: FQDN cache maximum refresh time in seconds (3600 - 86400, default = 3600).
FqdnMinRefresh float64: FQDN cache minimum refresh time in seconds (10 - 3600, default = 60).
HostnameLimit float64: Limit of the number of hostname table entries (0 - 50000).
HostnameTtl float64: TTL of hostname table entries (60 - 86400).
InterfaceSelectMethod string: Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
Interfaces []string: Support meta variable Specify outgoing interface to reach server.
Ip6Primary string: Primary DNS server IPv6 address.
Ip6Secondary string: Secondary DNS server IPv6 address.
Log string: Local DNS log setting. Valid values: disable, error, all.
Primary string: Support meta variable Primary DNS server IP address.
Protocols []string: DNS transport protocols. Valid values: cleartext, dot, doh.
Retry float64: Number of times to retry (0 - 5).
RootServers string: Configure up to two preferred servers that serve the DNS root zone (default uses all 13 root servers).
Scopetype string: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
Secondary string: Support meta variable Secondary DNS server IP address.
ServerHostnames []string: DNS server host name list.
ServerSelectMethod string: Specify how configured servers are prioritized. Valid values: least-rtt, failover.
SourceIp string: IP address used by the DNS server as its source IP.
SourceIpInterfaces []string: IP address of the specified interface as the source IP address.
SslCertificates []string: Name of local certificate for SSL connections.
SystempSystemDnsId string: an identifier for the resource.
Timeout float64: DNS query timeout interval in seconds (1 - 10).
VrfSelect float64: VRF ID used for connection to server.

devprof String: Devprof.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
altPrimary String: Alternate primary DNS server. This is not used as a failover DNS server.
altSecondary String: Alternate secondary DNS server. This is not used as a failover DNS server.
cacheNotfoundResponses String: Enable/disable response from the DNS server when a record is not in cache. Valid values: disable, enable.
dnsCacheLimit Double: Maximum number of records in the DNS cache.
dnsCacheTtl Double: Duration in seconds that the DNS cache retains information.
dnsOverTls String: Enable/disable/enforce DNS over TLS. Valid values: disable, enable, enforce.
domains List<String>: Support meta variable Search suffix list for hostname lookup.
fqdnCacheTtl Double: FQDN cache time to live in seconds (0 - 86400, default = 0).
fqdnMaxRefresh Double: FQDN cache maximum refresh time in seconds (3600 - 86400, default = 3600).
fqdnMinRefresh Double: FQDN cache minimum refresh time in seconds (10 - 3600, default = 60).
hostnameLimit Double: Limit of the number of hostname table entries (0 - 50000).
hostnameTtl Double: TTL of hostname table entries (60 - 86400).
interfaceSelectMethod String: Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
interfaces List<String>: Support meta variable Specify outgoing interface to reach server.
ip6Primary String: Primary DNS server IPv6 address.
ip6Secondary String: Secondary DNS server IPv6 address.
log String: Local DNS log setting. Valid values: disable, error, all.
primary String: Support meta variable Primary DNS server IP address.
protocols List<String>: DNS transport protocols. Valid values: cleartext, dot, doh.
retry Double: Number of times to retry (0 - 5).
rootServers String: Configure up to two preferred servers that serve the DNS root zone (default uses all 13 root servers).
scopetype String: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
secondary String: Support meta variable Secondary DNS server IP address.
serverHostnames List<String>: DNS server host name list.
serverSelectMethod String: Specify how configured servers are prioritized. Valid values: least-rtt, failover.
sourceIp String: IP address used by the DNS server as its source IP.
sourceIpInterfaces List<String>: IP address of the specified interface as the source IP address.
sslCertificates List<String>: Name of local certificate for SSL connections.
systempSystemDnsId String: an identifier for the resource.
timeout Double: DNS query timeout interval in seconds (1 - 10).
vrfSelect Double: VRF ID used for connection to server.

devprof string: Devprof.
adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
altPrimary string: Alternate primary DNS server. This is not used as a failover DNS server.
altSecondary string: Alternate secondary DNS server. This is not used as a failover DNS server.
cacheNotfoundResponses string: Enable/disable response from the DNS server when a record is not in cache. Valid values: disable, enable.
dnsCacheLimit number: Maximum number of records in the DNS cache.
dnsCacheTtl number: Duration in seconds that the DNS cache retains information.
dnsOverTls string: Enable/disable/enforce DNS over TLS. Valid values: disable, enable, enforce.
domains string[]: Support meta variable Search suffix list for hostname lookup.
fqdnCacheTtl number: FQDN cache time to live in seconds (0 - 86400, default = 0).
fqdnMaxRefresh number: FQDN cache maximum refresh time in seconds (3600 - 86400, default = 3600).
fqdnMinRefresh number: FQDN cache minimum refresh time in seconds (10 - 3600, default = 60).
hostnameLimit number: Limit of the number of hostname table entries (0 - 50000).
hostnameTtl number: TTL of hostname table entries (60 - 86400).
interfaceSelectMethod string: Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
interfaces string[]: Support meta variable Specify outgoing interface to reach server.
ip6Primary string: Primary DNS server IPv6 address.
ip6Secondary string: Secondary DNS server IPv6 address.
log string: Local DNS log setting. Valid values: disable, error, all.
primary string: Support meta variable Primary DNS server IP address.
protocols string[]: DNS transport protocols. Valid values: cleartext, dot, doh.
retry number: Number of times to retry (0 - 5).
rootServers string: Configure up to two preferred servers that serve the DNS root zone (default uses all 13 root servers).
scopetype string: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
secondary string: Support meta variable Secondary DNS server IP address.
serverHostnames string[]: DNS server host name list.
serverSelectMethod string: Specify how configured servers are prioritized. Valid values: least-rtt, failover.
sourceIp string: IP address used by the DNS server as its source IP.
sourceIpInterfaces string[]: IP address of the specified interface as the source IP address.
sslCertificates string[]: Name of local certificate for SSL connections.
systempSystemDnsId string: an identifier for the resource.
timeout number: DNS query timeout interval in seconds (1 - 10).
vrfSelect number: VRF ID used for connection to server.

devprof str: Devprof.
adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
alt_primary str: Alternate primary DNS server. This is not used as a failover DNS server.
alt_secondary str: Alternate secondary DNS server. This is not used as a failover DNS server.
cache_notfound_responses str: Enable/disable response from the DNS server when a record is not in cache. Valid values: disable, enable.
dns_cache_limit float: Maximum number of records in the DNS cache.
dns_cache_ttl float: Duration in seconds that the DNS cache retains information.
dns_over_tls str: Enable/disable/enforce DNS over TLS. Valid values: disable, enable, enforce.
domains Sequence[str]: Support meta variable Search suffix list for hostname lookup.
fqdn_cache_ttl float: FQDN cache time to live in seconds (0 - 86400, default = 0).
fqdn_max_refresh float: FQDN cache maximum refresh time in seconds (3600 - 86400, default = 3600).
fqdn_min_refresh float: FQDN cache minimum refresh time in seconds (10 - 3600, default = 60).
hostname_limit float: Limit of the number of hostname table entries (0 - 50000).
hostname_ttl float: TTL of hostname table entries (60 - 86400).
interface_select_method str: Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
interfaces Sequence[str]: Support meta variable Specify outgoing interface to reach server.
ip6_primary str: Primary DNS server IPv6 address.
ip6_secondary str: Secondary DNS server IPv6 address.
log str: Local DNS log setting. Valid values: disable, error, all.
primary str: Support meta variable Primary DNS server IP address.
protocols Sequence[str]: DNS transport protocols. Valid values: cleartext, dot, doh.
retry float: Number of times to retry (0 - 5).
root_servers str: Configure up to two preferred servers that serve the DNS root zone (default uses all 13 root servers).
scopetype str: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
secondary str: Support meta variable Secondary DNS server IP address.
server_hostnames Sequence[str]: DNS server host name list.
server_select_method str: Specify how configured servers are prioritized. Valid values: least-rtt, failover.
source_ip str: IP address used by the DNS server as its source IP.
source_ip_interfaces Sequence[str]: IP address of the specified interface as the source IP address.
ssl_certificates Sequence[str]: Name of local certificate for SSL connections.
systemp_system_dns_id str: an identifier for the resource.
timeout float: DNS query timeout interval in seconds (1 - 10).
vrf_select float: VRF ID used for connection to server.

devprof String: Devprof.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
altPrimary String: Alternate primary DNS server. This is not used as a failover DNS server.
altSecondary String: Alternate secondary DNS server. This is not used as a failover DNS server.
cacheNotfoundResponses String: Enable/disable response from the DNS server when a record is not in cache. Valid values: disable, enable.
dnsCacheLimit Number: Maximum number of records in the DNS cache.
dnsCacheTtl Number: Duration in seconds that the DNS cache retains information.
dnsOverTls String: Enable/disable/enforce DNS over TLS. Valid values: disable, enable, enforce.
domains List<String>: Support meta variable Search suffix list for hostname lookup.
fqdnCacheTtl Number: FQDN cache time to live in seconds (0 - 86400, default = 0).
fqdnMaxRefresh Number: FQDN cache maximum refresh time in seconds (3600 - 86400, default = 3600).
fqdnMinRefresh Number: FQDN cache minimum refresh time in seconds (10 - 3600, default = 60).
hostnameLimit Number: Limit of the number of hostname table entries (0 - 50000).
hostnameTtl Number: TTL of hostname table entries (60 - 86400).
interfaceSelectMethod String: Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
interfaces List<String>: Support meta variable Specify outgoing interface to reach server.
ip6Primary String: Primary DNS server IPv6 address.
ip6Secondary String: Secondary DNS server IPv6 address.
log String: Local DNS log setting. Valid values: disable, error, all.
primary String: Support meta variable Primary DNS server IP address.
protocols List<String>: DNS transport protocols. Valid values: cleartext, dot, doh.
retry Number: Number of times to retry (0 - 5).
rootServers String: Configure up to two preferred servers that serve the DNS root zone (default uses all 13 root servers).
scopetype String: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
secondary String: Support meta variable Secondary DNS server IP address.
serverHostnames List<String>: DNS server host name list.
serverSelectMethod String: Specify how configured servers are prioritized. Valid values: least-rtt, failover.
sourceIp String: IP address used by the DNS server as its source IP.
sourceIpInterfaces List<String>: IP address of the specified interface as the source IP address.
sslCertificates List<String>: Name of local certificate for SSL connections.
systempSystemDnsId String: an identifier for the resource.
timeout Number: DNS query timeout interval in seconds (1 - 10).
vrfSelect Number: VRF ID used for connection to server.

Outputs

All input properties are implicitly available as output properties. Additionally, the SystempSystemDns resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing SystempSystemDns Resource

Get an existing SystempSystemDns resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: SystempSystemDnsState, opts?: CustomResourceOptions): SystempSystemDns

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        adom: Optional[str] = None,
        alt_primary: Optional[str] = None,
        alt_secondary: Optional[str] = None,
        cache_notfound_responses: Optional[str] = None,
        devprof: Optional[str] = None,
        dns_cache_limit: Optional[float] = None,
        dns_cache_ttl: Optional[float] = None,
        dns_over_tls: Optional[str] = None,
        domains: Optional[Sequence[str]] = None,
        fqdn_cache_ttl: Optional[float] = None,
        fqdn_max_refresh: Optional[float] = None,
        fqdn_min_refresh: Optional[float] = None,
        hostname_limit: Optional[float] = None,
        hostname_ttl: Optional[float] = None,
        interface_select_method: Optional[str] = None,
        interfaces: Optional[Sequence[str]] = None,
        ip6_primary: Optional[str] = None,
        ip6_secondary: Optional[str] = None,
        log: Optional[str] = None,
        primary: Optional[str] = None,
        protocols: Optional[Sequence[str]] = None,
        retry: Optional[float] = None,
        root_servers: Optional[str] = None,
        scopetype: Optional[str] = None,
        secondary: Optional[str] = None,
        server_hostnames: Optional[Sequence[str]] = None,
        server_select_method: Optional[str] = None,
        source_ip: Optional[str] = None,
        source_ip_interfaces: Optional[Sequence[str]] = None,
        ssl_certificates: Optional[Sequence[str]] = None,
        systemp_system_dns_id: Optional[str] = None,
        timeout: Optional[float] = None,
        vrf_select: Optional[float] = None) -> SystempSystemDns

func GetSystempSystemDns(ctx *Context, name string, id IDInput, state *SystempSystemDnsState, opts ...ResourceOption) (*SystempSystemDns, error)

public static SystempSystemDns Get(string name, Input<string> id, SystempSystemDnsState? state, CustomResourceOptions? opts = null)

public static SystempSystemDns get(String name, Output<String> id, SystempSystemDnsState state, CustomResourceOptions options)

resources:  _:    type: fortimanager:SystempSystemDns    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AltPrimary string: Alternate primary DNS server. This is not used as a failover DNS server.
AltSecondary string: Alternate secondary DNS server. This is not used as a failover DNS server.
CacheNotfoundResponses string: Enable/disable response from the DNS server when a record is not in cache. Valid values: disable, enable.
Devprof string: Devprof.
DnsCacheLimit double: Maximum number of records in the DNS cache.
DnsCacheTtl double: Duration in seconds that the DNS cache retains information.
DnsOverTls string: Enable/disable/enforce DNS over TLS. Valid values: disable, enable, enforce.
Domains List<string>: Support meta variable Search suffix list for hostname lookup.
FqdnCacheTtl double: FQDN cache time to live in seconds (0 - 86400, default = 0).
FqdnMaxRefresh double: FQDN cache maximum refresh time in seconds (3600 - 86400, default = 3600).
FqdnMinRefresh double: FQDN cache minimum refresh time in seconds (10 - 3600, default = 60).
HostnameLimit double: Limit of the number of hostname table entries (0 - 50000).
HostnameTtl double: TTL of hostname table entries (60 - 86400).
InterfaceSelectMethod string: Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
Interfaces List<string>: Support meta variable Specify outgoing interface to reach server.
Ip6Primary string: Primary DNS server IPv6 address.
Ip6Secondary string: Secondary DNS server IPv6 address.
Log string: Local DNS log setting. Valid values: disable, error, all.
Primary string: Support meta variable Primary DNS server IP address.
Protocols List<string>: DNS transport protocols. Valid values: cleartext, dot, doh.
Retry double: Number of times to retry (0 - 5).
RootServers string: Configure up to two preferred servers that serve the DNS root zone (default uses all 13 root servers).
Scopetype string: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
Secondary string: Support meta variable Secondary DNS server IP address.
ServerHostnames List<string>: DNS server host name list.
ServerSelectMethod string: Specify how configured servers are prioritized. Valid values: least-rtt, failover.
SourceIp string: IP address used by the DNS server as its source IP.
SourceIpInterfaces List<string>: IP address of the specified interface as the source IP address.
SslCertificates List<string>: Name of local certificate for SSL connections.
SystempSystemDnsId string: an identifier for the resource.
Timeout double: DNS query timeout interval in seconds (1 - 10).
VrfSelect double: VRF ID used for connection to server.

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AltPrimary string: Alternate primary DNS server. This is not used as a failover DNS server.
AltSecondary string: Alternate secondary DNS server. This is not used as a failover DNS server.
CacheNotfoundResponses string: Enable/disable response from the DNS server when a record is not in cache. Valid values: disable, enable.
Devprof string: Devprof.
DnsCacheLimit float64: Maximum number of records in the DNS cache.
DnsCacheTtl float64: Duration in seconds that the DNS cache retains information.
DnsOverTls string: Enable/disable/enforce DNS over TLS. Valid values: disable, enable, enforce.
Domains []string: Support meta variable Search suffix list for hostname lookup.
FqdnCacheTtl float64: FQDN cache time to live in seconds (0 - 86400, default = 0).
FqdnMaxRefresh float64: FQDN cache maximum refresh time in seconds (3600 - 86400, default = 3600).
FqdnMinRefresh float64: FQDN cache minimum refresh time in seconds (10 - 3600, default = 60).
HostnameLimit float64: Limit of the number of hostname table entries (0 - 50000).
HostnameTtl float64: TTL of hostname table entries (60 - 86400).
InterfaceSelectMethod string: Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
Interfaces []string: Support meta variable Specify outgoing interface to reach server.
Ip6Primary string: Primary DNS server IPv6 address.
Ip6Secondary string: Secondary DNS server IPv6 address.
Log string: Local DNS log setting. Valid values: disable, error, all.
Primary string: Support meta variable Primary DNS server IP address.
Protocols []string: DNS transport protocols. Valid values: cleartext, dot, doh.
Retry float64: Number of times to retry (0 - 5).
RootServers string: Configure up to two preferred servers that serve the DNS root zone (default uses all 13 root servers).
Scopetype string: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
Secondary string: Support meta variable Secondary DNS server IP address.
ServerHostnames []string: DNS server host name list.
ServerSelectMethod string: Specify how configured servers are prioritized. Valid values: least-rtt, failover.
SourceIp string: IP address used by the DNS server as its source IP.
SourceIpInterfaces []string: IP address of the specified interface as the source IP address.
SslCertificates []string: Name of local certificate for SSL connections.
SystempSystemDnsId string: an identifier for the resource.
Timeout float64: DNS query timeout interval in seconds (1 - 10).
VrfSelect float64: VRF ID used for connection to server.

adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
altPrimary String: Alternate primary DNS server. This is not used as a failover DNS server.
altSecondary String: Alternate secondary DNS server. This is not used as a failover DNS server.
cacheNotfoundResponses String: Enable/disable response from the DNS server when a record is not in cache. Valid values: disable, enable.
devprof String: Devprof.
dnsCacheLimit Double: Maximum number of records in the DNS cache.
dnsCacheTtl Double: Duration in seconds that the DNS cache retains information.
dnsOverTls String: Enable/disable/enforce DNS over TLS. Valid values: disable, enable, enforce.
domains List<String>: Support meta variable Search suffix list for hostname lookup.
fqdnCacheTtl Double: FQDN cache time to live in seconds (0 - 86400, default = 0).
fqdnMaxRefresh Double: FQDN cache maximum refresh time in seconds (3600 - 86400, default = 3600).
fqdnMinRefresh Double: FQDN cache minimum refresh time in seconds (10 - 3600, default = 60).
hostnameLimit Double: Limit of the number of hostname table entries (0 - 50000).
hostnameTtl Double: TTL of hostname table entries (60 - 86400).
interfaceSelectMethod String: Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
interfaces List<String>: Support meta variable Specify outgoing interface to reach server.
ip6Primary String: Primary DNS server IPv6 address.
ip6Secondary String: Secondary DNS server IPv6 address.
log String: Local DNS log setting. Valid values: disable, error, all.
primary String: Support meta variable Primary DNS server IP address.
protocols List<String>: DNS transport protocols. Valid values: cleartext, dot, doh.
retry Double: Number of times to retry (0 - 5).
rootServers String: Configure up to two preferred servers that serve the DNS root zone (default uses all 13 root servers).
scopetype String: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
secondary String: Support meta variable Secondary DNS server IP address.
serverHostnames List<String>: DNS server host name list.
serverSelectMethod String: Specify how configured servers are prioritized. Valid values: least-rtt, failover.
sourceIp String: IP address used by the DNS server as its source IP.
sourceIpInterfaces List<String>: IP address of the specified interface as the source IP address.
sslCertificates List<String>: Name of local certificate for SSL connections.
systempSystemDnsId String: an identifier for the resource.
timeout Double: DNS query timeout interval in seconds (1 - 10).
vrfSelect Double: VRF ID used for connection to server.

adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
altPrimary string: Alternate primary DNS server. This is not used as a failover DNS server.
altSecondary string: Alternate secondary DNS server. This is not used as a failover DNS server.
cacheNotfoundResponses string: Enable/disable response from the DNS server when a record is not in cache. Valid values: disable, enable.
devprof string: Devprof.
dnsCacheLimit number: Maximum number of records in the DNS cache.
dnsCacheTtl number: Duration in seconds that the DNS cache retains information.
dnsOverTls string: Enable/disable/enforce DNS over TLS. Valid values: disable, enable, enforce.
domains string[]: Support meta variable Search suffix list for hostname lookup.
fqdnCacheTtl number: FQDN cache time to live in seconds (0 - 86400, default = 0).
fqdnMaxRefresh number: FQDN cache maximum refresh time in seconds (3600 - 86400, default = 3600).
fqdnMinRefresh number: FQDN cache minimum refresh time in seconds (10 - 3600, default = 60).
hostnameLimit number: Limit of the number of hostname table entries (0 - 50000).
hostnameTtl number: TTL of hostname table entries (60 - 86400).
interfaceSelectMethod string: Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
interfaces string[]: Support meta variable Specify outgoing interface to reach server.
ip6Primary string: Primary DNS server IPv6 address.
ip6Secondary string: Secondary DNS server IPv6 address.
log string: Local DNS log setting. Valid values: disable, error, all.
primary string: Support meta variable Primary DNS server IP address.
protocols string[]: DNS transport protocols. Valid values: cleartext, dot, doh.
retry number: Number of times to retry (0 - 5).
rootServers string: Configure up to two preferred servers that serve the DNS root zone (default uses all 13 root servers).
scopetype string: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
secondary string: Support meta variable Secondary DNS server IP address.
serverHostnames string[]: DNS server host name list.
serverSelectMethod string: Specify how configured servers are prioritized. Valid values: least-rtt, failover.
sourceIp string: IP address used by the DNS server as its source IP.
sourceIpInterfaces string[]: IP address of the specified interface as the source IP address.
sslCertificates string[]: Name of local certificate for SSL connections.
systempSystemDnsId string: an identifier for the resource.
timeout number: DNS query timeout interval in seconds (1 - 10).
vrfSelect number: VRF ID used for connection to server.

adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
alt_primary str: Alternate primary DNS server. This is not used as a failover DNS server.
alt_secondary str: Alternate secondary DNS server. This is not used as a failover DNS server.
cache_notfound_responses str: Enable/disable response from the DNS server when a record is not in cache. Valid values: disable, enable.
devprof str: Devprof.
dns_cache_limit float: Maximum number of records in the DNS cache.
dns_cache_ttl float: Duration in seconds that the DNS cache retains information.
dns_over_tls str: Enable/disable/enforce DNS over TLS. Valid values: disable, enable, enforce.
domains Sequence[str]: Support meta variable Search suffix list for hostname lookup.
fqdn_cache_ttl float: FQDN cache time to live in seconds (0 - 86400, default = 0).
fqdn_max_refresh float: FQDN cache maximum refresh time in seconds (3600 - 86400, default = 3600).
fqdn_min_refresh float: FQDN cache minimum refresh time in seconds (10 - 3600, default = 60).
hostname_limit float: Limit of the number of hostname table entries (0 - 50000).
hostname_ttl float: TTL of hostname table entries (60 - 86400).
interface_select_method str: Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
interfaces Sequence[str]: Support meta variable Specify outgoing interface to reach server.
ip6_primary str: Primary DNS server IPv6 address.
ip6_secondary str: Secondary DNS server IPv6 address.
log str: Local DNS log setting. Valid values: disable, error, all.
primary str: Support meta variable Primary DNS server IP address.
protocols Sequence[str]: DNS transport protocols. Valid values: cleartext, dot, doh.
retry float: Number of times to retry (0 - 5).
root_servers str: Configure up to two preferred servers that serve the DNS root zone (default uses all 13 root servers).
scopetype str: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
secondary str: Support meta variable Secondary DNS server IP address.
server_hostnames Sequence[str]: DNS server host name list.
server_select_method str: Specify how configured servers are prioritized. Valid values: least-rtt, failover.
source_ip str: IP address used by the DNS server as its source IP.
source_ip_interfaces Sequence[str]: IP address of the specified interface as the source IP address.
ssl_certificates Sequence[str]: Name of local certificate for SSL connections.
systemp_system_dns_id str: an identifier for the resource.
timeout float: DNS query timeout interval in seconds (1 - 10).
vrf_select float: VRF ID used for connection to server.

adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
altPrimary String: Alternate primary DNS server. This is not used as a failover DNS server.
altSecondary String: Alternate secondary DNS server. This is not used as a failover DNS server.
cacheNotfoundResponses String: Enable/disable response from the DNS server when a record is not in cache. Valid values: disable, enable.
devprof String: Devprof.
dnsCacheLimit Number: Maximum number of records in the DNS cache.
dnsCacheTtl Number: Duration in seconds that the DNS cache retains information.
dnsOverTls String: Enable/disable/enforce DNS over TLS. Valid values: disable, enable, enforce.
domains List<String>: Support meta variable Search suffix list for hostname lookup.
fqdnCacheTtl Number: FQDN cache time to live in seconds (0 - 86400, default = 0).
fqdnMaxRefresh Number: FQDN cache maximum refresh time in seconds (3600 - 86400, default = 3600).
fqdnMinRefresh Number: FQDN cache minimum refresh time in seconds (10 - 3600, default = 60).
hostnameLimit Number: Limit of the number of hostname table entries (0 - 50000).
hostnameTtl Number: TTL of hostname table entries (60 - 86400).
interfaceSelectMethod String: Specify how to select outgoing interface to reach server. Valid values: auto, sdwan, specify.
interfaces List<String>: Support meta variable Specify outgoing interface to reach server.
ip6Primary String: Primary DNS server IPv6 address.
ip6Secondary String: Secondary DNS server IPv6 address.
log String: Local DNS log setting. Valid values: disable, error, all.
primary String: Support meta variable Primary DNS server IP address.
protocols List<String>: DNS transport protocols. Valid values: cleartext, dot, doh.
retry Number: Number of times to retry (0 - 5).
rootServers String: Configure up to two preferred servers that serve the DNS root zone (default uses all 13 root servers).
scopetype String: The scope of application of the resource. Valid values: inherit, adom. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
secondary String: Support meta variable Secondary DNS server IP address.
serverHostnames List<String>: DNS server host name list.
serverSelectMethod String: Specify how configured servers are prioritized. Valid values: least-rtt, failover.
sourceIp String: IP address used by the DNS server as its source IP.
sourceIpInterfaces List<String>: IP address of the specified interface as the source IP address.
sslCertificates List<String>: Name of local certificate for SSL connections.
systempSystemDnsId String: an identifier for the resource.
timeout Number: DNS query timeout interval in seconds (1 - 10).
vrfSelect Number: VRF ID used for connection to server.

Import

Systemp SystemDns can be imported using any of these accepted formats:

Set import_options = [“devprof=YOUR_VALUE”] in the provider section.

$ export “FORTIMANAGER_IMPORT_TABLE”=“true”

$ pulumi import fortimanager:index/systempSystemDns:SystempSystemDns labelname SystempSystemDns

$ unset “FORTIMANAGER_IMPORT_TABLE”

-> Hint: The scopetype and adom for import will directly inherit the scopetype and adom configuration of the provider.

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: fortimanager fortinetdev/terraform-provider-fortimanager
License
Notes: This Pulumi package is based on the fortimanager Terraform Provider.

Viewing docs for fortimanager 1.17.0
published on Monday, May 4, 2026 by fortinetdev

Schema (JSON)

fortinetdev/terraform-provider-fortimanager

fortimanager.SystempSystemDns

On this page

On this page

Create SystempSystemDns Resource

Constructor syntax

Parameters

Constructor example

SystempSystemDns Resource Properties

Inputs

Outputs

Look up Existing SystempSystemDns Resource

Import

Package Details

On this page

On this page