AWS::NetworkFirewall::RuleGroup RuleGroup - AWS CloudFormation

AWS::NetworkFirewall::RuleGroup RuleGroup

The object that defines the rules in a rule group.

AWS Network Firewall uses a rule group to inspect and control network traffic. You define stateless rule groups to inspect individual packets and you define stateful rule groups to inspect packets in the context of their traffic flow.

To use a rule group, you include it by reference in an Network Firewall firewall policy, then you use the policy in a firewall. You can reference a rule group from more than one firewall policy, and you can use a firewall policy in more than one firewall.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

Properties

RulesSource

The stateful rules or stateless rules for the rule group.

Required: Yes

Type: RulesSource

Update requires: No interruption

RuleVariables

Settings that are available for use in the rules in the rule group. You can only use these for stateful rule groups.

Required: No

Type: RuleVariables

Update requires: No interruption