Skip to main content

AWSVPCFirewallPolicy

No description

type AWSVPCFirewallPolicy {
  arn: String!
  statelessDefaultActions: [String!]!
  statelessFragmentDefaultActions: [String!]!
  policyVariables: AWSVPCFirewallPolicyPolicyVariables
  statefulDefaultActions: [String!]!
  statefulEngineOptions: AWSVPCFirewallPolicyStatefulEngineOptions
  statefulRuleGroupReferences: [AWSVPCFirewallPolicyStatefulRuleGroupReference!]!
  statelessCustomActions: [AWSVPCFirewallPolicyCustomAction!]!
  statelessRuleGroupReferences: [AWSVPCFirewallPolicyStatelessRuleGroupReference!]!
  tlsInspectionConfigurationArn: String!
}

Fields

AWSVPCFirewallPolicy.arn ● String! non-null scalar

The Amazon Resource Name (ARN) of the firewall policy

AWSVPCFirewallPolicy.statelessDefaultActions ● [String!]! non-null scalar

The actions to take on a packet if it doesn't match any of the stateless rules in the policy

AWSVPCFirewallPolicy.statelessFragmentDefaultActions ● [String!]! non-null scalar

The actions to take on a fragmented UDP packet if it doesn't match any of the stateless rules in the policy

AWSVPCFirewallPolicy.policyVariables ● AWSVPCFirewallPolicyPolicyVariables object

Contains variables that you can use to override default Suricata settings in your firewall policy

AWSVPCFirewallPolicy.statefulDefaultActions ● [String!]! non-null scalar

The default actions to take on a packet that doesn't match any stateful rules

AWSVPCFirewallPolicy.statefulEngineOptions ● AWSVPCFirewallPolicyStatefulEngineOptions object

Additional options governing how Network Firewall handles stateful rules

AWSVPCFirewallPolicy.statefulRuleGroupReferences ● [AWSVPCFirewallPolicyStatefulRuleGroupReference!]! non-null object

References to the stateful rule groups that are used in the policy

AWSVPCFirewallPolicy.statelessCustomActions ● [AWSVPCFirewallPolicyCustomAction!]! non-null object

The custom action definitions that are available for use in the firewall policy's StatelessDefaultActions setting

AWSVPCFirewallPolicy.statelessRuleGroupReferences ● [AWSVPCFirewallPolicyStatelessRuleGroupReference!]! non-null object

References to the stateless rule groups that are used in the policy

AWSVPCFirewallPolicy.tlsInspectionConfigurationArn ● String! non-null scalar

The Amazon Resource Name (ARN) of the TLS inspection configuration

Member of

AWSVPCFirewall object