FirewallRuleGroupAssociationProps

class aws_cdk.aws_route53resolver.FirewallRuleGroupAssociationProps(*, priority, vpc, mutation_protection=None, name=None, firewall_rule_group)

Bases: FirewallRuleGroupAssociationOptions

(experimental) Properties for a Firewall Rule Group Association.

Parameters:

  • priority (Union[int, float]) – (experimental) The setting that determines the processing order of the rule group among the rule groups that are associated with a single VPC. DNS Firewall filters VPC traffic starting from rule group with the lowest numeric priority setting. This value must be greater than 100 and less than 9,000

  • vpc (IVpc) – (experimental) The VPC that to associate with the rule group.

  • mutation_protection (Optional[bool]) – (experimental) If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections. Default: true

  • name (Optional[str]) – (experimental) The name of the association. Default: - a CloudFormation generated name

  • firewall_rule_group (IFirewallRuleGroup) – (experimental) The firewall rule group which must be associated.

Stability:

experimental

ExampleMetadata:

fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
import aws_cdk.aws_ec2 as ec2
import aws_cdk.aws_route53resolver as route53resolver

# firewall_rule_group: route53resolver.FirewallRuleGroup
# vpc: ec2.Vpc

firewall_rule_group_association_props = route53resolver.FirewallRuleGroupAssociationProps(
    firewall_rule_group=firewall_rule_group,
    priority=123,
    vpc=vpc,

    # the properties below are optional
    mutation_protection=False,
    name="name"
)

Attributes

firewall_rule_group

(experimental) The firewall rule group which must be associated.

Stability:

experimental

mutation_protection

(experimental) If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections.

Default:

true

Stability:

experimental

name

(experimental) The name of the association.

Default:

  • a CloudFormation generated name

Stability:

experimental

priority

(experimental) The setting that determines the processing order of the rule group among the rule groups that are associated with a single VPC.

DNS Firewall filters VPC traffic starting from rule group with the lowest numeric priority setting.

This value must be greater than 100 and less than 9,000

Stability:

experimental

vpc

(experimental) The VPC that to associate with the rule group.

Stability:

experimental