com.amazonaws.services.networkfirewall.model

Class RulesSourceList

java.lang.Object

com.amazonaws.services.networkfirewall.model.RulesSourceList

All Implemented Interfaces:

StructuredPojo, Serializable, Cloneable

@Generated(value="com.amazonaws:aws-java-sdk-code-generator")
public class RulesSourceList
extends Object
implements Serializable, Cloneable, StructuredPojo

Stateful inspection criteria for a domain list rule group.

For HTTPS traffic, domain filtering is SNI-based. It uses the server name indicator extension of the TLS handshake.

By default, Network Firewall domain list inspection only includes traffic coming from the VPC where you deploy the firewall. To inspect traffic from IP addresses outside of the deployment VPC, you set the HOME_NET rule variable to include the CIDR range of the deployment VPC plus the other CIDR ranges. For more information, see RuleVariables in this guide and Stateful domain list rule groups in Network Firewall in the Network Firewall Developer Guide.

See Also:

AWS API Documentation, Serialized Form

Constructor Summary

Constructors

Constructor and Description
RulesSourceList()

Method Summary

Modifier and Type	Method and Description
RulesSourceList	clone()
boolean	equals(Object obj)
String	getGeneratedRulesType() Whether you want to allow or deny access to the domains in your target list.
List<String>	getTargets() The domains that you want to inspect for in your traffic flows.
List<String>	getTargetTypes() The protocols you want to inspect.
int	hashCode()
void	marshall(ProtocolMarshaller protocolMarshaller) Marshalls this structured data using the given ProtocolMarshaller.
void	setGeneratedRulesType(String generatedRulesType) Whether you want to allow or deny access to the domains in your target list.
void	setTargets(Collection<String> targets) The domains that you want to inspect for in your traffic flows.
void	setTargetTypes(Collection<String> targetTypes) The protocols you want to inspect.
String	toString() Returns a string representation of this object.
RulesSourceList	withGeneratedRulesType(GeneratedRulesType generatedRulesType) Whether you want to allow or deny access to the domains in your target list.
RulesSourceList	withGeneratedRulesType(String generatedRulesType) Whether you want to allow or deny access to the domains in your target list.
RulesSourceList	withTargets(Collection<String> targets) The domains that you want to inspect for in your traffic flows.
RulesSourceList	withTargets(String... targets) The domains that you want to inspect for in your traffic flows.
RulesSourceList	withTargetTypes(Collection<String> targetTypes) The protocols you want to inspect.
RulesSourceList	withTargetTypes(String... targetTypes) The protocols you want to inspect.
RulesSourceList	withTargetTypes(TargetType... targetTypes) The protocols you want to inspect.

Methods inherited from class java.lang.Object

getClass, notify, notifyAll, wait, wait, wait

Constructor Detail

RulesSourceList

public RulesSourceList()

Method Detail

getTargets

public List<String> getTargets()

The domains that you want to inspect for in your traffic flows. Valid domain specifications are the following:

• Explicit names. For example, abc.example.com matches only the domain abc.example.com.

• Names that use a domain wildcard, which you indicate with an initial '.'. For example, .example.com matches example.com and matches all subdomains of example.com , such as abc.example.com and www.example.com.

Returns:

The domains that you want to inspect for in your traffic flows. Valid domain specifications are the following:

• Explicit names. For example, abc.example.com matches only the domain abc.example.com.

• Names that use a domain wildcard, which you indicate with an initial '.'. For example, .example.com matches example.com and matches all subdomains of example.com, such as abc.example.com and www.example.com.

setTargets

public void setTargets(Collection<String> targets)

The domains that you want to inspect for in your traffic flows. Valid domain specifications are the following:

• Explicit names. For example, abc.example.com matches only the domain abc.example.com.

• Names that use a domain wildcard, which you indicate with an initial '.'. For example, .example.com matches example.com and matches all subdomains of example.com , such as abc.example.com and www.example.com.

Parameters:

targets - The domains that you want to inspect for in your traffic flows. Valid domain specifications are the following:

• Explicit names. For example, abc.example.com matches only the domain abc.example.com.

• Names that use a domain wildcard, which you indicate with an initial '.'. For example, .example.com matches example.com and matches all subdomains of example.com, such as abc.example.com and www.example.com.

withTargets

public RulesSourceList withTargets(String... targets)

The domains that you want to inspect for in your traffic flows. Valid domain specifications are the following:

• Explicit names. For example, abc.example.com matches only the domain abc.example.com.

• Names that use a domain wildcard, which you indicate with an initial '.'. For example, .example.com matches example.com and matches all subdomains of example.com , such as abc.example.com and www.example.com.

NOTE: This method appends the values to the existing list (if any). Use setTargets(java.util.Collection) or withTargets(java.util.Collection) if you want to override the existing values.

Parameters:

targets - The domains that you want to inspect for in your traffic flows. Valid domain specifications are the following:

• Explicit names. For example, abc.example.com matches only the domain abc.example.com.

• Names that use a domain wildcard, which you indicate with an initial '.'. For example, .example.com matches example.com and matches all subdomains of example.com, such as abc.example.com and www.example.com.

Returns:

Returns a reference to this object so that method calls can be chained together.

withTargets

public RulesSourceList withTargets(Collection<String> targets)

The domains that you want to inspect for in your traffic flows. Valid domain specifications are the following:

• Explicit names. For example, abc.example.com matches only the domain abc.example.com.

• Names that use a domain wildcard, which you indicate with an initial '.'. For example, .example.com matches example.com and matches all subdomains of example.com , such as abc.example.com and www.example.com.

Parameters:

targets - The domains that you want to inspect for in your traffic flows. Valid domain specifications are the following:

• Explicit names. For example, abc.example.com matches only the domain abc.example.com.

• Names that use a domain wildcard, which you indicate with an initial '.'. For example, .example.com matches example.com and matches all subdomains of example.com, such as abc.example.com and www.example.com.

Returns:

Returns a reference to this object so that method calls can be chained together.

getTargetTypes

public List<String> getTargetTypes()

The protocols you want to inspect. Specify TLS_SNI for HTTPS. Specify HTTP_HOST for HTTP. You can specify either or both.

Returns:

The protocols you want to inspect. Specify TLS_SNI for HTTPS. Specify HTTP_HOST for HTTP. You can specify either or both.

See Also:

TargetType

setTargetTypes

public void setTargetTypes(Collection<String> targetTypes)

The protocols you want to inspect. Specify TLS_SNI for HTTPS. Specify HTTP_HOST for HTTP. You can specify either or both.

Parameters:

targetTypes - The protocols you want to inspect. Specify TLS_SNI for HTTPS. Specify HTTP_HOST for HTTP. You can specify either or both.

See Also:

TargetType

withTargetTypes

public RulesSourceList withTargetTypes(String... targetTypes)

The protocols you want to inspect. Specify TLS_SNI for HTTPS. Specify HTTP_HOST for HTTP. You can specify either or both.

NOTE: This method appends the values to the existing list (if any). Use setTargetTypes(java.util.Collection) or withTargetTypes(java.util.Collection) if you want to override the existing values.

Parameters:

targetTypes - The protocols you want to inspect. Specify TLS_SNI for HTTPS. Specify HTTP_HOST for HTTP. You can specify either or both.

Returns:

Returns a reference to this object so that method calls can be chained together.

See Also:

TargetType

withTargetTypes

public RulesSourceList withTargetTypes(Collection<String> targetTypes)

The protocols you want to inspect. Specify TLS_SNI for HTTPS. Specify HTTP_HOST for HTTP. You can specify either or both.

Parameters:

targetTypes - The protocols you want to inspect. Specify TLS_SNI for HTTPS. Specify HTTP_HOST for HTTP. You can specify either or both.

Returns:

Returns a reference to this object so that method calls can be chained together.

See Also:

TargetType

withTargetTypes

public RulesSourceList withTargetTypes(TargetType... targetTypes)

The protocols you want to inspect. Specify TLS_SNI for HTTPS. Specify HTTP_HOST for HTTP. You can specify either or both.

Parameters:

targetTypes - The protocols you want to inspect. Specify TLS_SNI for HTTPS. Specify HTTP_HOST for HTTP. You can specify either or both.

Returns:

Returns a reference to this object so that method calls can be chained together.

See Also:

TargetType

setGeneratedRulesType

public void setGeneratedRulesType(String generatedRulesType)

Whether you want to allow or deny access to the domains in your target list.

Parameters:

generatedRulesType - Whether you want to allow or deny access to the domains in your target list.

See Also:

GeneratedRulesType

getGeneratedRulesType

public String getGeneratedRulesType()

Whether you want to allow or deny access to the domains in your target list.

Returns:

Whether you want to allow or deny access to the domains in your target list.

See Also:

GeneratedRulesType

withGeneratedRulesType

public RulesSourceList withGeneratedRulesType(String generatedRulesType)

Whether you want to allow or deny access to the domains in your target list.

Parameters:

generatedRulesType - Whether you want to allow or deny access to the domains in your target list.

Returns:

Returns a reference to this object so that method calls can be chained together.

See Also:

GeneratedRulesType

withGeneratedRulesType

public RulesSourceList withGeneratedRulesType(GeneratedRulesType generatedRulesType)

Whether you want to allow or deny access to the domains in your target list.

Parameters:

generatedRulesType - Whether you want to allow or deny access to the domains in your target list.

Returns:

Returns a reference to this object so that method calls can be chained together.

See Also:

GeneratedRulesType

toString

public String toString()

Returns a string representation of this object. This is useful for testing and debugging. Sensitive data will be redacted from this string using a placeholder value.

Overrides:

toString in class Object

Returns:

A string representation of this object.

See Also:

Object.toString()

equals

public boolean equals(Object obj)

Overrides:

equals in class Object

hashCode

public int hashCode()

Overrides:

hashCode in class Object

clone

public RulesSourceList clone()

Overrides:

clone in class Object

marshall

public void marshall(ProtocolMarshaller protocolMarshaller)

Description copied from interface: StructuredPojo

Marshalls this structured data using the given ProtocolMarshaller.

Specified by:

marshall in interface StructuredPojo

Parameters:

protocolMarshaller - Implementation of ProtocolMarshaller used to marshall this object's data.