ResourceViolation - AWS Firewall Manager

ResourceViolation

Violation detail based on resource type.

Contents

AwsEc2InstanceViolation

Violation details for an EC2 instance.

Type: AwsEc2InstanceViolation object

Required: No

AwsEc2NetworkInterfaceViolation

Violation details for network interface.

Type: AwsEc2NetworkInterfaceViolation object

Required: No

AwsVPCSecurityGroupViolation

Violation details for security groups.

Type: AwsVPCSecurityGroupViolation object

Required: No

NetworkFirewallMissingExpectedRTViolation

Violation detail for an Network Firewall policy that indicates that a subnet is not associated with the expected Firewall Manager managed route table.

Type: NetworkFirewallMissingExpectedRTViolation object

Required: No

NetworkFirewallMissingFirewallViolation

Violation detail for an Network Firewall policy that indicates that a subnet has no Firewall Manager managed firewall in its VPC.

Type: NetworkFirewallMissingFirewallViolation object

Required: No

NetworkFirewallMissingSubnetViolation

Violation detail for an Network Firewall policy that indicates that an Availability Zone is missing the expected Firewall Manager managed subnet.

Type: NetworkFirewallMissingSubnetViolation object

Required: No

NetworkFirewallPolicyModifiedViolation

Violation detail for an Network Firewall policy that indicates that a firewall policy in an individual account has been modified in a way that makes it noncompliant. For example, the individual account owner might have deleted a rule group, changed the priority of a stateless rule group, or changed a policy default action.

Type: NetworkFirewallPolicyModifiedViolation object

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: