Class: Aws::SecurityHub::Types::AwsEc2NetworkAclEntry

Inherits:
Struct
  • Object
show all
Defined in:
gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb

Overview

Note:

When making an API call, you may pass AwsEc2NetworkAclEntry data as a hash:

{
  cidr_block: "NonEmptyString",
  egress: false,
  icmp_type_code: {
    code: 1,
    type: 1,
  },
  ipv_6_cidr_block: "NonEmptyString",
  port_range: {
    from: 1,
    to: 1,
  },
  protocol: "NonEmptyString",
  rule_action: "NonEmptyString",
  rule_number: 1,
}

A rule for the network ACL. Each rule allows or denies access based on the IP address, traffic direction, port, and protocol.

Constant Summary collapse

SENSITIVE =
[]

Instance Attribute Summary collapse

Instance Attribute Details

#cidr_blockString

The IPV4 network range for which to deny or allow access.

Returns:

  • (String)


4397
4398
4399
4400
4401
4402
4403
4404
4405
4406
4407
4408
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4397

class AwsEc2NetworkAclEntry < Struct.new(
  :cidr_block,
  :egress,
  :icmp_type_code,
  :ipv_6_cidr_block,
  :port_range,
  :protocol,
  :rule_action,
  :rule_number)
  SENSITIVE = []
  include Aws::Structure
end

#egressBoolean

Whether the rule is an egress rule. An egress rule is a rule that applies to traffic that leaves the subnet.

Returns:

  • (Boolean)


4397
4398
4399
4400
4401
4402
4403
4404
4405
4406
4407
4408
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4397

class AwsEc2NetworkAclEntry < Struct.new(
  :cidr_block,
  :egress,
  :icmp_type_code,
  :ipv_6_cidr_block,
  :port_range,
  :protocol,
  :rule_action,
  :rule_number)
  SENSITIVE = []
  include Aws::Structure
end

#icmp_type_codeTypes::IcmpTypeCode

The Internet Control Message Protocol (ICMP) type and code for which to deny or allow access.

Returns:



4397
4398
4399
4400
4401
4402
4403
4404
4405
4406
4407
4408
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4397

class AwsEc2NetworkAclEntry < Struct.new(
  :cidr_block,
  :egress,
  :icmp_type_code,
  :ipv_6_cidr_block,
  :port_range,
  :protocol,
  :rule_action,
  :rule_number)
  SENSITIVE = []
  include Aws::Structure
end

#ipv_6_cidr_blockString

The IPV6 network range for which to deny or allow access.

Returns:

  • (String)


4397
4398
4399
4400
4401
4402
4403
4404
4405
4406
4407
4408
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4397

class AwsEc2NetworkAclEntry < Struct.new(
  :cidr_block,
  :egress,
  :icmp_type_code,
  :ipv_6_cidr_block,
  :port_range,
  :protocol,
  :rule_action,
  :rule_number)
  SENSITIVE = []
  include Aws::Structure
end

#port_rangeTypes::PortRangeFromTo

For TCP or UDP protocols, the range of ports that the rule applies to.



4397
4398
4399
4400
4401
4402
4403
4404
4405
4406
4407
4408
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4397

class AwsEc2NetworkAclEntry < Struct.new(
  :cidr_block,
  :egress,
  :icmp_type_code,
  :ipv_6_cidr_block,
  :port_range,
  :protocol,
  :rule_action,
  :rule_number)
  SENSITIVE = []
  include Aws::Structure
end

#protocolString

The protocol that the rule applies to. To deny or allow access to all protocols, use the value -1.

Returns:

  • (String)


4397
4398
4399
4400
4401
4402
4403
4404
4405
4406
4407
4408
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4397

class AwsEc2NetworkAclEntry < Struct.new(
  :cidr_block,
  :egress,
  :icmp_type_code,
  :ipv_6_cidr_block,
  :port_range,
  :protocol,
  :rule_action,
  :rule_number)
  SENSITIVE = []
  include Aws::Structure
end

#rule_actionString

Whether the rule is used to allow access or deny access.

Returns:

  • (String)


4397
4398
4399
4400
4401
4402
4403
4404
4405
4406
4407
4408
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4397

class AwsEc2NetworkAclEntry < Struct.new(
  :cidr_block,
  :egress,
  :icmp_type_code,
  :ipv_6_cidr_block,
  :port_range,
  :protocol,
  :rule_action,
  :rule_number)
  SENSITIVE = []
  include Aws::Structure
end

#rule_numberInteger

The rule number. The rules are processed in order by their number.

Returns:

  • (Integer)


4397
4398
4399
4400
4401
4402
4403
4404
4405
4406
4407
4408
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4397

class AwsEc2NetworkAclEntry < Struct.new(
  :cidr_block,
  :egress,
  :icmp_type_code,
  :ipv_6_cidr_block,
  :port_range,
  :protocol,
  :rule_action,
  :rule_number)
  SENSITIVE = []
  include Aws::Structure
end