Class: Aws::NetworkFirewall::Types::StatefulRuleGroupReference

Inherits:

Struct

Object
Struct
Aws::NetworkFirewall::Types::StatefulRuleGroupReference

show all

Defined in:: gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/types.rb

Overview

Note:

When making an API call, you may pass StatefulRuleGroupReference data as a hash:

{
  resource_arn: "ResourceArn", # required
  priority: 1,
}

Identifier for a single stateful rule group, used in a firewall policy to refer to a rule group.

Constant Summary collapse

SENSITIVE =

[]

Instance Attribute Summary collapse

#priority ⇒ Integer
An integer setting that indicates the order in which to run the stateful rule groups in a single FirewallPolicy.
#resource_arn ⇒ String
The Amazon Resource Name (ARN) of the stateful rule group.

Instance Attribute Details

#priority ⇒ `Integer`

An integer setting that indicates the order in which to run the stateful rule groups in a single FirewallPolicy. This setting only applies to firewall policies that specify the STRICT_ORDER rule order in the stateful engine options settings.

Network Firewall evalutes each stateful rule group against a packet starting with the group that has the lowest priority setting. You must ensure that the priority settings are unique within each policy.

You can change the priority settings of your rule groups at any time. To make it easier to insert rule groups later, number them so there's a wide range in between, for example use 100, 200, and so on.

Returns:

(Integer)

# File 'gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/types.rb', line 3483

class StatefulRuleGroupReference < Struct.new(
  :resource_arn,
  :priority)
  SENSITIVE = []
  include Aws::Structure
end

#resource_arn ⇒ `String`

The Amazon Resource Name (ARN) of the stateful rule group.