All Superinterfaces:: software.amazon.jsii.JsiiSerializable

All Known Implementing Classes:: CfnTLSInspectionConfiguration.ServerCertificateScopeProperty.Jsii$Proxy

Enclosing class:: CfnTLSInspectionConfiguration

@Stability(Stable) public static interface CfnTLSInspectionConfiguration.ServerCertificateScopeProperty extends software.amazon.jsii.JsiiSerializable

Settings that define the Secure Sockets Layer/Transport Layer Security (SSL/TLS) traffic that Network Firewall should decrypt for inspection by the stateful rule engine.

Example:

 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 import software.amazon.awscdk.services.networkfirewall.*;
 ServerCertificateScopeProperty serverCertificateScopeProperty = ServerCertificateScopeProperty.builder()
         .destinationPorts(List.of(PortRangeProperty.builder()
                 .fromPort(123)
                 .toPort(123)
                 .build()))
         .destinations(List.of(AddressProperty.builder()
                 .addressDefinition("addressDefinition")
                 .build()))
         .protocols(List.of(123))
         .sourcePorts(List.of(PortRangeProperty.builder()
                 .fromPort(123)
                 .toPort(123)
                 .build()))
         .sources(List.of(AddressProperty.builder()
                 .addressDefinition("addressDefinition")
                 .build()))
         .build();

See Also:

Nested Class Summary

Nested Classes

Modifier and Type

Interface

Description

static final class

CfnTLSInspectionConfiguration.ServerCertificateScopeProperty.Builder

A builder for CfnTLSInspectionConfiguration.ServerCertificateScopeProperty

static final class

CfnTLSInspectionConfiguration.ServerCertificateScopeProperty.Jsii$Proxy

An implementation for CfnTLSInspectionConfiguration.ServerCertificateScopeProperty
Method Summary

Modifier and Type

Method

Description

static CfnTLSInspectionConfiguration.ServerCertificateScopeProperty.Builder

builder()

default Object

getDestinationPorts()

The destination ports to decrypt for inspection, in Transmission Control Protocol (TCP) format.

default Object

getDestinations()

The destination IP addresses and address ranges to decrypt for inspection, in CIDR notation.

default Object

getProtocols()

The protocols to decrypt for inspection, specified using each protocol's assigned internet protocol number (IANA).

default Object

getSourcePorts()

The source ports to decrypt for inspection, in Transmission Control Protocol (TCP) format.

default Object

getSources()

The source IP addresses and address ranges to decrypt for inspection, in CIDR notation.

Methods inherited from interface software.amazon.jsii.JsiiSerializable
$jsii$toJson

Method Details
- getDestinationPorts
  
  @Stability(Stable) @Nullable default Object getDestinationPorts()
  
  The destination ports to decrypt for inspection, in Transmission Control Protocol (TCP) format.
  If not specified, this matches with any destination port.
  You can specify individual ports, for example 1994 , and you can specify port ranges, such as 1990:1994 .
  See Also:
  
  http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-tlsinspectionconfiguration-servercertificatescope.html#cfn-networkfirewall-tlsinspectionconfiguration-servercertificatescope-destinationports
- getDestinations
  
  @Stability(Stable) @Nullable default Object getDestinations()
  
  The destination IP addresses and address ranges to decrypt for inspection, in CIDR notation.
  If not specified, this matches with any destination address.
  See Also:
  
  http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-tlsinspectionconfiguration-servercertificatescope.html#cfn-networkfirewall-tlsinspectionconfiguration-servercertificatescope-destinations
- getProtocols
  
  @Stability(Stable) @Nullable default Object getProtocols()
  
  The protocols to decrypt for inspection, specified using each protocol's assigned internet protocol number (IANA).
  Network Firewall currently supports only TCP.
  See Also:
  
  http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-tlsinspectionconfiguration-servercertificatescope.html#cfn-networkfirewall-tlsinspectionconfiguration-servercertificatescope-protocols
- getSourcePorts
  
  @Stability(Stable) @Nullable default Object getSourcePorts()
  
  The source ports to decrypt for inspection, in Transmission Control Protocol (TCP) format.
  If not specified, this matches with any source port.
  You can specify individual ports, for example 1994 , and you can specify port ranges, such as 1990:1994 .
  See Also:
  
  http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-tlsinspectionconfiguration-servercertificatescope.html#cfn-networkfirewall-tlsinspectionconfiguration-servercertificatescope-sourceports
- getSources
  
  @Stability(Stable) @Nullable default Object getSources()
  
  The source IP addresses and address ranges to decrypt for inspection, in CIDR notation.
  If not specified, this matches with any source address.
  See Also:
  
  http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-tlsinspectionconfiguration-servercertificatescope.html#cfn-networkfirewall-tlsinspectionconfiguration-servercertificatescope-sources
- builder
  
  @Stability(Stable) static CfnTLSInspectionConfiguration.ServerCertificateScopeProperty.Builder builder()
  
  Returns:
  
  a CfnTLSInspectionConfiguration.ServerCertificateScopeProperty.Builder of CfnTLSInspectionConfiguration.ServerCertificateScopeProperty

Interface CfnTLSInspectionConfiguration.ServerCertificateScopeProperty

Nested Class Summary

Method Summary

Methods inherited from interface software.amazon.jsii.JsiiSerializable

Method Details

getDestinationPorts

getDestinations

getProtocols

getSourcePorts

getSources

builder