Class CfnFirewallPolicy.StatefulRuleGroupReferenceProperty.Builder
- All Implemented Interfaces:
software.amazon.jsii.Builder<CfnFirewallPolicy.StatefulRuleGroupReferenceProperty>
- Enclosing interface:
CfnFirewallPolicy.StatefulRuleGroupReferenceProperty
CfnFirewallPolicy.StatefulRuleGroupReferenceProperty-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionbuild()Builds the configured instance.deepThreatInspection(Boolean deepThreatInspection) deepThreatInspection(IResolvable deepThreatInspection) override(IResolvable override) Sets the value ofCfnFirewallPolicy.StatefulRuleGroupReferenceProperty.getOverride()Sets the value ofCfnFirewallPolicy.StatefulRuleGroupReferenceProperty.getOverride()Sets the value ofCfnFirewallPolicy.StatefulRuleGroupReferenceProperty.getPriority()resourceArn(String resourceArn) Sets the value ofCfnFirewallPolicy.StatefulRuleGroupReferenceProperty.getResourceArn()
-
Constructor Details
-
Builder
public Builder()
-
-
Method Details
-
resourceArn
@Stability(Stable) public CfnFirewallPolicy.StatefulRuleGroupReferenceProperty.Builder resourceArn(String resourceArn) Sets the value ofCfnFirewallPolicy.StatefulRuleGroupReferenceProperty.getResourceArn()- Parameters:
resourceArn- The Amazon Resource Name (ARN) of the stateful rule group. This parameter is required.- Returns:
this
-
deepThreatInspection
@Stability(Stable) public CfnFirewallPolicy.StatefulRuleGroupReferenceProperty.Builder deepThreatInspection(Boolean deepThreatInspection) - Parameters:
deepThreatInspection- AWS Network Firewall plans to augment the active threat defense managed rule group with an additional deep threat inspection capability. When this capability is released, AWS will analyze service logs of network traffic processed by these rule groups to identify threat indicators across customers. AWS will use these threat indicators to improve the active threat defense managed rule groups and protect the security of AWS customers and services.Customers can opt-out of deep threat inspection at any time through the AWS Network Firewall console or API. When customers opt out, AWS Network Firewall will not use the network traffic processed by those customers' active threat defense rule groups for rule group improvement.
- Returns:
this
-
deepThreatInspection
@Stability(Stable) public CfnFirewallPolicy.StatefulRuleGroupReferenceProperty.Builder deepThreatInspection(IResolvable deepThreatInspection) - Parameters:
deepThreatInspection- AWS Network Firewall plans to augment the active threat defense managed rule group with an additional deep threat inspection capability. When this capability is released, AWS will analyze service logs of network traffic processed by these rule groups to identify threat indicators across customers. AWS will use these threat indicators to improve the active threat defense managed rule groups and protect the security of AWS customers and services.Customers can opt-out of deep threat inspection at any time through the AWS Network Firewall console or API. When customers opt out, AWS Network Firewall will not use the network traffic processed by those customers' active threat defense rule groups for rule group improvement.
- Returns:
this
-
override
@Stability(Stable) public CfnFirewallPolicy.StatefulRuleGroupReferenceProperty.Builder override(IResolvable override) Sets the value ofCfnFirewallPolicy.StatefulRuleGroupReferenceProperty.getOverride()- Parameters:
override- The action that allows the policy owner to override the behavior of the rule group within a policy.- Returns:
this
-
override
@Stability(Stable) public CfnFirewallPolicy.StatefulRuleGroupReferenceProperty.Builder override(CfnFirewallPolicy.StatefulRuleGroupOverrideProperty override) Sets the value ofCfnFirewallPolicy.StatefulRuleGroupReferenceProperty.getOverride()- Parameters:
override- The action that allows the policy owner to override the behavior of the rule group within a policy.- Returns:
this
-
priority
@Stability(Stable) public CfnFirewallPolicy.StatefulRuleGroupReferenceProperty.Builder priority(Number priority) Sets the value ofCfnFirewallPolicy.StatefulRuleGroupReferenceProperty.getPriority()- Parameters:
priority- An integer setting that indicates the order in which to run the stateful rule groups in a single firewall policy. This setting only applies to firewall policies that specify theSTRICT_ORDERrule order in the stateful engine options settings.Network Firewall evalutes each stateful rule group against a packet starting with the group that has the lowest priority setting. You must ensure that the priority settings are unique within each policy.
You can change the priority settings of your rule groups at any time. To make it easier to insert rule groups later, number them so there's a wide range in between, for example use 100, 200, and so on.
- Returns:
this
-
build
Builds the configured instance.- Specified by:
buildin interfacesoftware.amazon.jsii.Builder<CfnFirewallPolicy.StatefulRuleGroupReferenceProperty>- Returns:
- a new instance of
CfnFirewallPolicy.StatefulRuleGroupReferenceProperty - Throws:
NullPointerException- if any required attribute was not provided
-