Package software.amazon.awscdk.services.route53resolver

Class CfnFirewallRuleGroupAssociation

java.lang.Object
software.amazon.jsii.JsiiObject
software.constructs.Construct
software.amazon.awscdk.core.Construct
software.amazon.awscdk.core.CfnElement
software.amazon.awscdk.core.CfnRefElement
software.amazon.awscdk.core.CfnResource
software.amazon.awscdk.services.route53resolver.CfnFirewallRuleGroupAssociation
All Implemented Interfaces:
IConstruct, IDependable, IInspectable, software.amazon.jsii.JsiiSerializable, software.constructs.IConstruct
@Generated(value="jsii-pacmak/1.84.0 (build 5404dcf)", date="2023-06-19T16:30:40.360Z") @Stability(Stable) public class CfnFirewallRuleGroupAssociation extends CfnResource implements IInspectable
A CloudFormation AWS::Route53Resolver::FirewallRuleGroupAssociation.

An association between a firewall rule group and a VPC, which enables DNS filtering for the VPC.

Example: 

 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 import software.amazon.awscdk.services.route53resolver.*;
 CfnFirewallRuleGroupAssociation cfnFirewallRuleGroupAssociation = CfnFirewallRuleGroupAssociation.Builder.create(this, "MyCfnFirewallRuleGroupAssociation")
         .firewallRuleGroupId("firewallRuleGroupId")
         .priority(123)
         .vpcId("vpcId")
         // the properties below are optional
         .mutationProtection("mutationProtection")
         .name("name")
         .tags(List.of(CfnTag.builder()
                 .key("key")
                 .value("value")
                 .build()))
         .build();

  • Field Details

    • CFN_RESOURCE_TYPE_NAME

      @Stability(Stable) public static final String CFN_RESOURCE_TYPE_NAME
      The CloudFormation resource type name for this resource class.

  • Constructor Details

    • CfnFirewallRuleGroupAssociation

      protected CfnFirewallRuleGroupAssociation(software.amazon.jsii.JsiiObjectRef objRef)

    • CfnFirewallRuleGroupAssociation

      protected CfnFirewallRuleGroupAssociation(software.amazon.jsii.JsiiObject.InitializationMode initializationMode)

    • CfnFirewallRuleGroupAssociation

      @Stability(Stable) public CfnFirewallRuleGroupAssociation(@NotNull Construct scope, @NotNull String id, @NotNull CfnFirewallRuleGroupAssociationProps props)
      Create a new AWS::Route53Resolver::FirewallRuleGroupAssociation.

      Parameters:
      scope -
      • scope in which this resource is defined.
      This parameter is required.
      id -
      • scoped id of the resource.
      This parameter is required.
      props -
      • resource properties.
      This parameter is required.

  • Method Details

    • inspect

      @Stability(Stable) public void inspect(@NotNull TreeInspector inspector)
      Examines the CloudFormation resource and discloses attributes.

      Specified by:
      inspect in interface IInspectable
      Parameters:
      inspector -
      • tree inspector to collect and process attributes.
      This parameter is required.

    • renderProperties

      @Stability(Stable) @NotNull protected Map<String,Object> renderProperties(@NotNull Map<String,Object> props)
      Overrides:
      renderProperties in class CfnResource
      Parameters:
      props - This parameter is required.

    • getAttrArn

      @Stability(Stable) @NotNull public String getAttrArn()
      The Amazon Resource Name (ARN) of the firewall rule group association.

    • getAttrCreationTime

      @Stability(Stable) @NotNull public String getAttrCreationTime()
      The date and time that the association was created, in Unix time format and Coordinated Universal Time (UTC).

    • getAttrCreatorRequestId

      @Stability(Stable) @NotNull public String getAttrCreatorRequestId()
      A unique string defined by you to identify the request.

      This allows you to retry failed requests without the risk of running the operation twice. This can be any unique string, for example, a timestamp.

    • getAttrId

      @Stability(Stable) @NotNull public String getAttrId()
      The identifier for the association.

    • getAttrManagedOwnerName

      @Stability(Stable) @NotNull public String getAttrManagedOwnerName()
      The owner of the association, used only for associations that are not managed by you.

      If you use AWS Firewall Manager to manage your firewallls from DNS Firewall, then this reports Firewall Manager as the managed owner.

    • getAttrModificationTime

      @Stability(Stable) @NotNull public String getAttrModificationTime()
      The date and time that the association was last modified, in Unix time format and Coordinated Universal Time (UTC).

    • getAttrStatus

      @Stability(Stable) @NotNull public String getAttrStatus()
      The current status of the association.

    • getAttrStatusMessage

      @Stability(Stable) @NotNull public String getAttrStatusMessage()
      Additional information about the status of the response, if available.

    • getCfnProperties

      @Stability(Stable) @NotNull protected Map<String,Object> getCfnProperties()
      Overrides:
      getCfnProperties in class CfnResource

    • getTags

      @Stability(Stable) @NotNull public TagManager getTags()
      A list of the tag keys and values that you want to associate with the rule group.

    • getFirewallRuleGroupId

      @Stability(Stable) @NotNull public String getFirewallRuleGroupId()
      The unique identifier of the firewall rule group.

    • setFirewallRuleGroupId

      @Stability(Stable) public void setFirewallRuleGroupId(@NotNull String value)
      The unique identifier of the firewall rule group.

    • getPriority

      @Stability(Stable) @NotNull public Number getPriority()
      The setting that determines the processing order of the rule group among the rule groups that are associated with a single VPC.

      DNS Firewall filters VPC traffic starting from rule group with the lowest numeric priority setting.

      You must specify a unique priority for each rule group that you associate with a single VPC. To make it easier to insert rule groups later, leave space between the numbers, for example, use 101, 200, and so on. You can change the priority setting for a rule group association after you create it.

      The allowed values for Priority are between 100 and 9900 (excluding 100 and 9900).

    • setPriority

      @Stability(Stable) public void setPriority(@NotNull Number value)
      The setting that determines the processing order of the rule group among the rule groups that are associated with a single VPC.

      DNS Firewall filters VPC traffic starting from rule group with the lowest numeric priority setting.

      You must specify a unique priority for each rule group that you associate with a single VPC. To make it easier to insert rule groups later, leave space between the numbers, for example, use 101, 200, and so on. You can change the priority setting for a rule group association after you create it.

      The allowed values for Priority are between 100 and 9900 (excluding 100 and 9900).

    • getVpcId

      @Stability(Stable) @NotNull public String getVpcId()
      The unique identifier of the VPC that is associated with the rule group.

    • setVpcId

      @Stability(Stable) public void setVpcId(@NotNull String value)
      The unique identifier of the VPC that is associated with the rule group.

    • getMutationProtection

      @Stability(Stable) @Nullable public String getMutationProtection()
      If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections.

    • setMutationProtection

      @Stability(Stable) public void setMutationProtection(@Nullable String value)
      If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections.

    • getName

      @Stability(Stable) @Nullable public String getName()
      The name of the association.

    • setName

      @Stability(Stable) public void setName(@Nullable String value)
      The name of the association.