FirewallRuleAction

class aws_cdk.aws_route53resolver.FirewallRuleAction

Bases: object

(experimental) A Firewall Rule.

Stability

experimental

ExampleMetadata

infused

Example:

# my_block_list is of type FirewallDomainList

route53resolver.FirewallRuleGroup(self, "RuleGroup",
    rules=[route53resolver.FirewallRule(
        priority=10,
        firewall_domain_list=my_block_list,
        # block and reply with NODATA
        action=route53resolver.FirewallRuleAction.block()
    )
    ]
)

Stability

experimental

Attributes

action

(experimental) The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule’s domain list.

Stability

experimental

Return type

str

block_response

(experimental) The way that you want DNS Firewall to block the request.

Stability

experimental

Return type

Optional[DnsBlockResponse]

Static Methods

classmethod alert()

(experimental) Permit the request to go through but send an alert to the logs.

Stability

experimental

Return type

FirewallRuleAction

classmethod allow()

(experimental) Permit the request to go through.

Stability

experimental

Return type

FirewallRuleAction

classmethod block(response=None)

(experimental) Disallow the request.

Parameters

response (Optional[DnsBlockResponse]) – The way that you want DNS Firewall to block the request.

Stability

experimental

Return type

FirewallRuleAction