Interface ICfnFirewallProps
Properties for defining a CfnFirewall
.
Namespace: Amazon.CDK.AWS.NetworkFirewall
Assembly: Amazon.CDK.Lib.dll
Syntax (csharp)
public interface ICfnFirewallProps
Syntax (vb)
Public Interface ICfnFirewallProps
Remarks
ExampleMetadata: fixture=_generated
Examples
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
using Amazon.CDK.AWS.NetworkFirewall;
var cfnFirewallProps = new CfnFirewallProps {
FirewallName = "firewallName",
FirewallPolicyArn = "firewallPolicyArn",
SubnetMappings = new [] { new SubnetMappingProperty {
SubnetId = "subnetId",
// the properties below are optional
IpAddressType = "ipAddressType"
} },
VpcId = "vpcId",
// the properties below are optional
DeleteProtection = false,
Description = "description",
FirewallPolicyChangeProtection = false,
SubnetChangeProtection = false,
Tags = new [] { new CfnTag {
Key = "key",
Value = "value"
} }
};
Synopsis
Properties
DeleteProtection | A flag indicating whether it is possible to delete the firewall. |
Description | A description of the firewall. |
FirewallName | The descriptive name of the firewall. |
FirewallPolicyArn | The Amazon Resource Name (ARN) of the firewall policy. |
FirewallPolicyChangeProtection | A setting indicating whether the firewall is protected against a change to the firewall policy association. |
SubnetChangeProtection | A setting indicating whether the firewall is protected against changes to the subnet associations. |
SubnetMappings | The public subnets that Network Firewall is using for the firewall. |
Tags | An array of key-value pairs to apply to this resource. |
VpcId | The unique identifier of the VPC where the firewall is in use. |
Properties
DeleteProtection
A flag indicating whether it is possible to delete the firewall.
virtual object DeleteProtection { get; }
Property Value
System.Object
Remarks
A setting of TRUE
indicates that the firewall is protected against deletion. Use this setting to protect against accidentally deleting a firewall that is in use. When you create a firewall, the operation initializes this flag to TRUE
.
Description
A description of the firewall.
virtual string Description { get; }
Property Value
System.String
Remarks
FirewallName
The descriptive name of the firewall.
string FirewallName { get; }
Property Value
System.String
Remarks
You can't change the name of a firewall after you create it.
FirewallPolicyArn
The Amazon Resource Name (ARN) of the firewall policy.
string FirewallPolicyArn { get; }
Property Value
System.String
Remarks
The relationship of firewall to firewall policy is many to one. Each firewall requires one firewall policy association, and you can use the same firewall policy for multiple firewalls.
FirewallPolicyChangeProtection
A setting indicating whether the firewall is protected against a change to the firewall policy association.
virtual object FirewallPolicyChangeProtection { get; }
Property Value
System.Object
Remarks
Use this setting to protect against accidentally modifying the firewall policy for a firewall that is in use. When you create a firewall, the operation initializes this setting to TRUE
.
SubnetChangeProtection
A setting indicating whether the firewall is protected against changes to the subnet associations.
virtual object SubnetChangeProtection { get; }
Property Value
System.Object
Remarks
Use this setting to protect against accidentally modifying the subnet associations for a firewall that is in use. When you create a firewall, the operation initializes this setting to TRUE
.
SubnetMappings
The public subnets that Network Firewall is using for the firewall.
object SubnetMappings { get; }
Property Value
System.Object
Remarks
Each subnet must belong to a different Availability Zone.
Tags
An array of key-value pairs to apply to this resource.
virtual ICfnTag[] Tags { get; }
Property Value
ICfnTag[]
Remarks
VpcId
The unique identifier of the VPC where the firewall is in use.
string VpcId { get; }
Property Value
System.String
Remarks
You can't change the VPC of a firewall after you create the firewall.