Class: Aws::NetworkFirewall::Types::StatefulRuleGroupReference
- Inherits:
-
Struct
- Object
- Struct
- Aws::NetworkFirewall::Types::StatefulRuleGroupReference
- Defined in:
- gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/types.rb
Overview
Identifier for a single stateful rule group, used in a firewall policy to refer to a rule group.
Constant Summary collapse
- SENSITIVE =
[]
Instance Attribute Summary collapse
-
#deep_threat_inspection ⇒ Boolean
Network Firewall plans to augment the active threat defense managed rule group with an additional deep threat inspection capability.
-
#override ⇒ Types::StatefulRuleGroupOverride
The action that allows the policy owner to override the behavior of the rule group within a policy.
-
#priority ⇒ Integer
An integer setting that indicates the order in which to run the stateful rule groups in a single FirewallPolicy.
-
#resource_arn ⇒ String
The Amazon Resource Name (ARN) of the stateful rule group.
Instance Attribute Details
#deep_threat_inspection ⇒ Boolean
Network Firewall plans to augment the active threat defense managed rule group with an additional deep threat inspection capability. When this capability is released, Amazon Web Services will analyze service logs of network traffic processed by these rule groups to identify threat indicators across customers. Amazon Web Services will use these threat indicators to improve the active threat defense managed rule groups and protect the security of Amazon Web Services customers and services.
5792 5793 5794 5795 5796 5797 5798 5799 |
# File 'gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/types.rb', line 5792 class StatefulRuleGroupReference < Struct.new( :resource_arn, :priority, :override, :deep_threat_inspection) SENSITIVE = [] include Aws::Structure end |
#override ⇒ Types::StatefulRuleGroupOverride
The action that allows the policy owner to override the behavior of the rule group within a policy.
5792 5793 5794 5795 5796 5797 5798 5799 |
# File 'gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/types.rb', line 5792 class StatefulRuleGroupReference < Struct.new( :resource_arn, :priority, :override, :deep_threat_inspection) SENSITIVE = [] include Aws::Structure end |
#priority ⇒ Integer
An integer setting that indicates the order in which to run the
stateful rule groups in a single FirewallPolicy. This setting only
applies to firewall policies that specify the STRICT_ORDER
rule
order in the stateful engine options settings.
Network Firewall evalutes each stateful rule group against a packet starting with the group that has the lowest priority setting. You must ensure that the priority settings are unique within each policy.
You can change the priority settings of your rule groups at any time. To make it easier to insert rule groups later, number them so there's a wide range in between, for example use 100, 200, and so on.
5792 5793 5794 5795 5796 5797 5798 5799 |
# File 'gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/types.rb', line 5792 class StatefulRuleGroupReference < Struct.new( :resource_arn, :priority, :override, :deep_threat_inspection) SENSITIVE = [] include Aws::Structure end |
#resource_arn ⇒ String
The Amazon Resource Name (ARN) of the stateful rule group.
5792 5793 5794 5795 5796 5797 5798 5799 |
# File 'gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/types.rb', line 5792 class StatefulRuleGroupReference < Struct.new( :resource_arn, :priority, :override, :deep_threat_inspection) SENSITIVE = [] include Aws::Structure end |