AWS::NetworkFirewall::RuleGroup Address - AWS CloudFormation

AWS::NetworkFirewall::RuleGroup Address

A single IP address specification. This is used in the AWS::NetworkFirewall::RuleGroup MatchAttributes source and destination specifications.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

{ "AddressDefinition" : String }

YAML

AddressDefinition: String

Properties

AddressDefinition

Specify an IP address or a block of IP addresses in Classless Inter-Domain Routing (CIDR) notation. Network Firewall supports all address ranges for IPv4 and IPv6.

Examples:

  • To configure Network Firewall to inspect for the IP address 192.0.2.44, specify 192.0.2.44/32.

  • To configure Network Firewall to inspect for IP addresses from 192.0.2.0 to 192.0.2.255, specify 192.0.2.0/24.

  • To configure Network Firewall to inspect for the IP address 1111:0000:0000:0000:0000:0000:0000:0111, specify 1111:0000:0000:0000:0000:0000:0000:0111/128.

  • To configure Network Firewall to inspect for IP addresses from 1111:0000:0000:0000:0000:0000:0000:0000 to 1111:0000:0000:0000:ffff:ffff:ffff:ffff, specify 1111:0000:0000:0000:0000:0000:0000:0000/64.

For more information about CIDR notation, see the Wikipedia entry Classless Inter-Domain Routing.

Required: Yes

Type: String

Pattern: ^([a-fA-F\d:\.]+/\d{1,3})$

Minimum: 1

Maximum: 255

Update requires: No interruption