software.amazon.awscdk.services.route53resolver

Class CfnFirewallRuleGroupAssociation

java.lang.Object

software.constructs.Construct

software.amazon.awscdk.core.Construct

software.amazon.awscdk.core.CfnElement

software.amazon.awscdk.core.CfnRefElement

software.amazon.awscdk.core.CfnResource

software.amazon.awscdk.services.route53resolver.CfnFirewallRuleGroupAssociation

All Implemented Interfaces:

IConstruct, IDependable, IInspectable

@Generated(value="jsii-pacmak/1.74.0 (build 6d08790)",
           date="2023-03-14T16:25:29.454Z")
public class CfnFirewallRuleGroupAssociation
extends CfnResource
implements IInspectable

A CloudFormation `AWS::Route53Resolver::FirewallRuleGroupAssociation`.

An association between a firewall rule group and a VPC, which enables DNS filtering for the VPC.

Example:

 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 import software.amazon.awscdk.services.route53resolver.*;
 CfnFirewallRuleGroupAssociation cfnFirewallRuleGroupAssociation = CfnFirewallRuleGroupAssociation.Builder.create(this, "MyCfnFirewallRuleGroupAssociation")
         .firewallRuleGroupId("firewallRuleGroupId")
         .priority(123)
         .vpcId("vpcId")
         // the properties below are optional
         .mutationProtection("mutationProtection")
         .name("name")
         .tags(List.of(CfnTag.builder()
                 .key("key")
                 .value("value")
                 .build()))
         .build();
 

Nested Class Summary

Nested Classes

Modifier and Type	Class and Description
static class	CfnFirewallRuleGroupAssociation.Builder A fluent builder for CfnFirewallRuleGroupAssociation.

Nested classes/interfaces inherited from interface software.amazon.awscdk.core.IInspectable

IInspectable.Jsii$Default, IInspectable.Jsii$Proxy

Nested classes/interfaces inherited from interface software.amazon.awscdk.core.IConstruct

IConstruct.Jsii$Default

Field Summary

Fields

Modifier and Type	Field and Description
static java.lang.String	CFN_RESOURCE_TYPE_NAME The CloudFormation resource type name for this resource class.

Constructor Summary

Constructors

Modifier	Constructor and Description
	CfnFirewallRuleGroupAssociation(Construct scope, java.lang.String id, CfnFirewallRuleGroupAssociationProps props) Create a new `AWS::Route53Resolver::FirewallRuleGroupAssociation`.
protected	CfnFirewallRuleGroupAssociation(software.amazon.jsii.JsiiObject.InitializationMode initializationMode)
protected	CfnFirewallRuleGroupAssociation(software.amazon.jsii.JsiiObjectRef objRef)

Method Summary

Modifier and Type	Method and Description
java.lang.String	getAttrArn() The Amazon Resource Name (ARN) of the firewall rule group association.
java.lang.String	getAttrCreationTime() The date and time that the association was created, in Unix time format and Coordinated Universal Time (UTC).
java.lang.String	getAttrCreatorRequestId() A unique string defined by you to identify the request.
java.lang.String	getAttrId() The identifier for the association.
java.lang.String	getAttrManagedOwnerName() The owner of the association, used only for associations that are not managed by you.
java.lang.String	getAttrModificationTime() The date and time that the association was last modified, in Unix time format and Coordinated Universal Time (UTC).
java.lang.String	getAttrStatus() The current status of the association.
java.lang.String	getAttrStatusMessage() Additional information about the status of the response, if available.
protected java.util.Map<java.lang.String,java.lang.Object>	getCfnProperties()
java.lang.String	getFirewallRuleGroupId() The unique identifier of the firewall rule group.
java.lang.String	getMutationProtection() If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections.
java.lang.String	getName() The name of the association.
java.lang.Number	getPriority() The setting that determines the processing order of the rule group among the rule groups that are associated with a single VPC.
TagManager	getTags() A list of the tag keys and values that you want to associate with the rule group.
java.lang.String	getVpcId() The unique identifier of the VPC that is associated with the rule group.
void	inspect(TreeInspector inspector) Examines the CloudFormation resource and discloses attributes.
protected java.util.Map<java.lang.String,java.lang.Object>	renderProperties(java.util.Map<java.lang.String,java.lang.Object> props)
void	setFirewallRuleGroupId(java.lang.String value) The unique identifier of the firewall rule group.
void	setMutationProtection(java.lang.String value) If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections.
void	setName(java.lang.String value) The name of the association.
void	setPriority(java.lang.Number value) The setting that determines the processing order of the rule group among the rule groups that are associated with a single VPC.
void	setVpcId(java.lang.String value) The unique identifier of the VPC that is associated with the rule group.

Methods inherited from class software.amazon.awscdk.core.CfnResource

addDeletionOverride, addDependsOn, addMetadata, addOverride, addPropertyDeletionOverride, addPropertyOverride, applyRemovalPolicy, applyRemovalPolicy, applyRemovalPolicy, getAtt, getCfnOptions, getCfnResourceType, getMetadata, getUpdatedProperites, isCfnResource, shouldSynthesize, toString, validateProperties

Methods inherited from class software.amazon.awscdk.core.CfnRefElement

getRef

Methods inherited from class software.amazon.awscdk.core.CfnElement

getCreationStack, getLogicalId, getStack, isCfnElement, overrideLogicalId

Methods inherited from class software.amazon.awscdk.core.Construct

getNode, isConstruct, onPrepare, onSynthesize, onValidate, prepare, synthesize, validate

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Field Detail

CFN_RESOURCE_TYPE_NAME

public static final java.lang.String CFN_RESOURCE_TYPE_NAME

The CloudFormation resource type name for this resource class.

Constructor Detail

CfnFirewallRuleGroupAssociation

protected CfnFirewallRuleGroupAssociation(software.amazon.jsii.JsiiObjectRef objRef)

CfnFirewallRuleGroupAssociation

protected CfnFirewallRuleGroupAssociation(software.amazon.jsii.JsiiObject.InitializationMode initializationMode)

CfnFirewallRuleGroupAssociation

public CfnFirewallRuleGroupAssociation(Construct scope,
                                       java.lang.String id,
                                       CfnFirewallRuleGroupAssociationProps props)

Create a new `AWS::Route53Resolver::FirewallRuleGroupAssociation`.

Parameters:

scope - - scope in which this resource is defined. This parameter is required.

id - - scoped id of the resource. This parameter is required.

props - - resource properties. This parameter is required.

Method Detail

inspect

public void inspect(TreeInspector inspector)

Examines the CloudFormation resource and discloses attributes.

Specified by:

inspect in interface IInspectable

Parameters:

inspector - - tree inspector to collect and process attributes. This parameter is required.

renderProperties

protected java.util.Map<java.lang.String,java.lang.Object> renderProperties(java.util.Map<java.lang.String,java.lang.Object> props)

Overrides:

renderProperties in class CfnResource

Parameters:

props - This parameter is required.

getAttrArn

public java.lang.String getAttrArn()

The Amazon Resource Name (ARN) of the firewall rule group association.

getAttrCreationTime

public java.lang.String getAttrCreationTime()

The date and time that the association was created, in Unix time format and Coordinated Universal Time (UTC).

getAttrCreatorRequestId

public java.lang.String getAttrCreatorRequestId()

A unique string defined by you to identify the request.

This allows you to retry failed requests without the risk of running the operation twice. This can be any unique string, for example, a timestamp.

getAttrId

public java.lang.String getAttrId()

The identifier for the association.

getAttrManagedOwnerName

public java.lang.String getAttrManagedOwnerName()

The owner of the association, used only for associations that are not managed by you.

If you use AWS Firewall Manager to manage your firewallls from DNS Firewall, then this reports Firewall Manager as the managed owner.

getAttrModificationTime

public java.lang.String getAttrModificationTime()

The date and time that the association was last modified, in Unix time format and Coordinated Universal Time (UTC).

getAttrStatus

public java.lang.String getAttrStatus()

The current status of the association.

getAttrStatusMessage

public java.lang.String getAttrStatusMessage()

Additional information about the status of the response, if available.

getCfnProperties

protected java.util.Map<java.lang.String,java.lang.Object> getCfnProperties()

Overrides:

getCfnProperties in class CfnResource

getTags

public TagManager getTags()

A list of the tag keys and values that you want to associate with the rule group.

getFirewallRuleGroupId

public java.lang.String getFirewallRuleGroupId()

The unique identifier of the firewall rule group.

setFirewallRuleGroupId

public void setFirewallRuleGroupId(java.lang.String value)

The unique identifier of the firewall rule group.

getPriority

public java.lang.Number getPriority()

The setting that determines the processing order of the rule group among the rule groups that are associated with a single VPC.

DNS Firewall filters VPC traffic starting from rule group with the lowest numeric priority setting.

You must specify a unique priority for each rule group that you associate with a single VPC. To make it easier to insert rule groups later, leave space between the numbers, for example, use 101, 200, and so on. You can change the priority setting for a rule group association after you create it.

The allowed values for Priority are between 100 and 9900 (excluding 100 and 9900).

setPriority

public void setPriority(java.lang.Number value)

The setting that determines the processing order of the rule group among the rule groups that are associated with a single VPC.

DNS Firewall filters VPC traffic starting from rule group with the lowest numeric priority setting.

You must specify a unique priority for each rule group that you associate with a single VPC. To make it easier to insert rule groups later, leave space between the numbers, for example, use 101, 200, and so on. You can change the priority setting for a rule group association after you create it.

The allowed values for Priority are between 100 and 9900 (excluding 100 and 9900).

getVpcId

public java.lang.String getVpcId()

The unique identifier of the VPC that is associated with the rule group.

setVpcId

public void setVpcId(java.lang.String value)

The unique identifier of the VPC that is associated with the rule group.

getMutationProtection

public java.lang.String getMutationProtection()

If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections.

setMutationProtection

public void setMutationProtection(java.lang.String value)

If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections.

getName

public java.lang.String getName()

The name of the association.

setName

public void setName(java.lang.String value)

The name of the association.