NetworkFirewallInvalidRouteConfigurationViolation - AWS Firewall Manager
ContentsSee Also

NetworkFirewallInvalidRouteConfigurationViolation

Violation detail for the improperly configured subnet route. It's possible there is a missing route table route, or a configuration that causes traffic to cross an Availability Zone boundary.

Contents

ActualFirewallEndpoint

The actual firewall endpoint.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 1024.

Pattern: ^([\p{L}\p{Z}\p{N}_.:/=+\-@]*)$

Required: No

ActualFirewallSubnetId

The actual subnet ID for the firewall.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 1024.

Pattern: ^([\p{L}\p{Z}\p{N}_.:/=+\-@]*)$

Required: No

ActualFirewallSubnetRoutes

The actual firewall subnet routes that are expected.

Type: Array of Route objects

Required: No

ActualInternetGatewayRoutes

The actual internet gateway routes.

Type: Array of Route objects

Required: No

AffectedSubnets

The subnets that are affected.

Type: Array of strings

Length Constraints: Minimum length of 1. Maximum length of 1024.

Pattern: ^([\p{L}\p{Z}\p{N}_.:/=+\-@]*)$

Required: No

CurrentFirewallSubnetRouteTable

The subnet route table for the current firewall.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 1024.

Pattern: ^([\p{L}\p{Z}\p{N}_.:/=+\-@]*)$

Required: No

CurrentInternetGatewayRouteTable

The route table for the current internet gateway.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 1024.

Pattern: ^([\p{L}\p{Z}\p{N}_.:/=+\-@]*)$

Required: No

ExpectedFirewallEndpoint

The firewall endpoint that's expected.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 1024.

Pattern: ^([\p{L}\p{Z}\p{N}_.:/=+\-@]*)$

Required: No

ExpectedFirewallSubnetId

The expected subnet ID for the firewall.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 1024.

Pattern: ^([\p{L}\p{Z}\p{N}_.:/=+\-@]*)$

Required: No

ExpectedFirewallSubnetRoutes

The firewall subnet routes that are expected.

Type: Array of ExpectedRoute objects

Required: No

ExpectedInternetGatewayRoutes

The expected routes for the internet gateway.

Type: Array of ExpectedRoute objects

Required: No

InternetGatewayId

The internet gateway ID.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 1024.

Pattern: ^([\p{L}\p{Z}\p{N}_.:/=+\-@]*)$

Required: No

IsRouteTableUsedInDifferentAZ

Information about whether the route table is used in another Availability Zone.

Type: Boolean

Required: No

RouteTableId

The route table ID.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 1024.

Pattern: ^([\p{L}\p{Z}\p{N}_.:/=+\-@]*)$

Required: No

ViolatingRoute

The route that's in violation.

Type: Route object

Required: No

VpcId

Information about the VPC ID.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 1024.

Pattern: ^([\p{L}\p{Z}\p{N}_.:/=+\-@]*)$

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: