Class: Aws::SecurityHub::Types::FirewallPolicyDetails

Inherits:

Struct

• Object
• Struct
• Aws::SecurityHub::Types::FirewallPolicyDetails

Includes:

Aws::Structure

Defined in:

lib/aws-sdk-securityhub/types.rb

Overview

Defines the behavior of the firewall.

See Also:

• AWS API Documentation

Constant Summary

SENSITIVE =

[]

Instance Attribute Summary

• #stateful_rule_group_references ⇒ Array<Types::FirewallPolicyStatefulRuleGroupReferencesDetails>

  The stateful rule groups that are used in the firewall policy.

• #stateless_custom_actions ⇒ Array<Types::FirewallPolicyStatelessCustomActionsDetails>

  The custom action definitions that are available to use in the firewall policy’s ‘StatelessDefaultActions` setting.

• #stateless_default_actions ⇒ Array<String>

  The actions to take on a packet if it doesn’t match any of the stateless rules in the policy.

• #stateless_fragment_default_actions ⇒ Array<String>

  The actions to take on a fragmented UDP packet if it doesn’t match any of the stateless rules in the policy.

• #stateless_rule_group_references ⇒ Array<Types::FirewallPolicyStatelessRuleGroupReferencesDetails>

  The stateless rule groups that are used in the firewall policy.

Instance Attribute Details

#stateful_rule_group_references ⇒ Array<Types::FirewallPolicyStatefulRuleGroupReferencesDetails>

The stateful rule groups that are used in the firewall policy.

Returns:

• (Array<Types::FirewallPolicyStatefulRuleGroupReferencesDetails>)

# File 'lib/aws-sdk-securityhub/types.rb', line 25171

class FirewallPolicyDetails < Struct.new(
  :stateful_rule_group_references,
  :stateless_custom_actions,
  :stateless_default_actions,
  :stateless_fragment_default_actions,
  :stateless_rule_group_references)
  SENSITIVE = []
  include Aws::Structure
end

#stateless_custom_actions ⇒ Array<Types::FirewallPolicyStatelessCustomActionsDetails>

The custom action definitions that are available to use in the firewall policy’s ‘StatelessDefaultActions` setting.

Returns:

• (Array<Types::FirewallPolicyStatelessCustomActionsDetails>)

# File 'lib/aws-sdk-securityhub/types.rb', line 25171

class FirewallPolicyDetails < Struct.new(
  :stateful_rule_group_references,
  :stateless_custom_actions,
  :stateless_default_actions,
  :stateless_fragment_default_actions,
  :stateless_rule_group_references)
  SENSITIVE = []
  include Aws::Structure
end

#stateless_default_actions ⇒ Array<String>

The actions to take on a packet if it doesn’t match any of the stateless rules in the policy.

You must specify a standard action (‘aws:pass`, `aws:drop`, `aws:forward_to_sfe`), and can optionally include a custom action from `StatelessCustomActions`.

Returns:

• (Array<String>)

# File 'lib/aws-sdk-securityhub/types.rb', line 25171

class FirewallPolicyDetails < Struct.new(
  :stateful_rule_group_references,
  :stateless_custom_actions,
  :stateless_default_actions,
  :stateless_fragment_default_actions,
  :stateless_rule_group_references)
  SENSITIVE = []
  include Aws::Structure
end

#stateless_fragment_default_actions ⇒ Array<String>

The actions to take on a fragmented UDP packet if it doesn’t match any of the stateless rules in the policy.

You must specify a standard action (‘aws:pass`, `aws:drop`, `aws:forward_to_sfe`), and can optionally include a custom action from `StatelessCustomActions`.

Returns:

• (Array<String>)

# File 'lib/aws-sdk-securityhub/types.rb', line 25171

class FirewallPolicyDetails < Struct.new(
  :stateful_rule_group_references,
  :stateless_custom_actions,
  :stateless_default_actions,
  :stateless_fragment_default_actions,
  :stateless_rule_group_references)
  SENSITIVE = []
  include Aws::Structure
end

#stateless_rule_group_references ⇒ Array<Types::FirewallPolicyStatelessRuleGroupReferencesDetails>

The stateless rule groups that are used in the firewall policy.

Returns:

• (Array<Types::FirewallPolicyStatelessRuleGroupReferencesDetails>)

# File 'lib/aws-sdk-securityhub/types.rb', line 25171

class FirewallPolicyDetails < Struct.new(
  :stateful_rule_group_references,
  :stateless_custom_actions,
  :stateless_default_actions,
  :stateless_fragment_default_actions,
  :stateless_rule_group_references)
  SENSITIVE = []
  include Aws::Structure
end