Interface CfnTLSInspectionConfiguration.ServerCertificateScopeProperty
- All Superinterfaces:
software.amazon.jsii.JsiiSerializable
- All Known Implementing Classes:
CfnTLSInspectionConfiguration.ServerCertificateScopeProperty.Jsii$Proxy
- Enclosing class:
CfnTLSInspectionConfiguration
@Stability(Stable)
public static interface CfnTLSInspectionConfiguration.ServerCertificateScopeProperty
extends software.amazon.jsii.JsiiSerializable
Settings that define the Secure Sockets Layer/Transport Layer Security (SSL/TLS) traffic that Network Firewall should decrypt for inspection by the stateful rule engine.
Example:
// The code below shows an example of how to instantiate this type. // The values are placeholders you should change. import software.amazon.awscdk.services.networkfirewall.*; ServerCertificateScopeProperty serverCertificateScopeProperty = ServerCertificateScopeProperty.builder() .destinationPorts(List.of(PortRangeProperty.builder() .fromPort(123) .toPort(123) .build())) .destinations(List.of(AddressProperty.builder() .addressDefinition("addressDefinition") .build())) .protocols(List.of(123)) .sourcePorts(List.of(PortRangeProperty.builder() .fromPort(123) .toPort(123) .build())) .sources(List.of(AddressProperty.builder() .addressDefinition("addressDefinition") .build())) .build();
- See Also:
-
Nested Class Summary
Modifier and TypeInterfaceDescriptionstatic final class
static final class
An implementation forCfnTLSInspectionConfiguration.ServerCertificateScopeProperty
-
Method Summary
Modifier and TypeMethodDescriptionbuilder()
default Object
The destination ports to decrypt for inspection, in Transmission Control Protocol (TCP) format.default Object
The destination IP addresses and address ranges to decrypt for inspection, in CIDR notation.default Object
The protocols to decrypt for inspection, specified using each protocol's assigned internet protocol number (IANA).default Object
The source ports to decrypt for inspection, in Transmission Control Protocol (TCP) format.default Object
The source IP addresses and address ranges to decrypt for inspection, in CIDR notation.Methods inherited from interface software.amazon.jsii.JsiiSerializable
$jsii$toJson
-
Method Details
-
getDestinationPorts
The destination ports to decrypt for inspection, in Transmission Control Protocol (TCP) format.If not specified, this matches with any destination port.
You can specify individual ports, for example
1994
, and you can specify port ranges, such as1990:1994
.- See Also:
-
getDestinations
The destination IP addresses and address ranges to decrypt for inspection, in CIDR notation.If not specified, this matches with any destination address.
- See Also:
-
getProtocols
The protocols to decrypt for inspection, specified using each protocol's assigned internet protocol number (IANA).Network Firewall currently supports only TCP.
- See Also:
-
getSourcePorts
The source ports to decrypt for inspection, in Transmission Control Protocol (TCP) format.If not specified, this matches with any source port.
You can specify individual ports, for example
1994
, and you can specify port ranges, such as1990:1994
.- See Also:
-
getSources
The source IP addresses and address ranges to decrypt for inspection, in CIDR notation.If not specified, this matches with any source address.
- See Also:
-
builder
@Stability(Stable) static CfnTLSInspectionConfiguration.ServerCertificateScopeProperty.Builder builder()
-