Class: Aws::WAFV2::Types::FirewallManagerRuleGroup

Inherits:
Struct
  • Object
show all
Defined in:
gems/aws-sdk-wafv2/lib/aws-sdk-wafv2/types.rb

Overview

A rule group that's defined for an Firewall Manager WAF policy.

Constant Summary collapse

SENSITIVE =
[]

Instance Attribute Summary collapse

Instance Attribute Details

#firewall_manager_statementTypes::FirewallManagerStatement

The processing guidance for an Firewall Manager rule. This is like a regular rule Statement, but it can only contain a rule group reference.



3501
3502
3503
3504
3505
3506
3507
3508
3509
# File 'gems/aws-sdk-wafv2/lib/aws-sdk-wafv2/types.rb', line 3501

class FirewallManagerRuleGroup < Struct.new(
  :name,
  :priority,
  :firewall_manager_statement,
  :override_action,
  :visibility_config)
  SENSITIVE = []
  include Aws::Structure
end

#nameString

The name of the rule group. You cannot change the name of a rule group after you create it.

Returns:

  • (String)


3501
3502
3503
3504
3505
3506
3507
3508
3509
# File 'gems/aws-sdk-wafv2/lib/aws-sdk-wafv2/types.rb', line 3501

class FirewallManagerRuleGroup < Struct.new(
  :name,
  :priority,
  :firewall_manager_statement,
  :override_action,
  :visibility_config)
  SENSITIVE = []
  include Aws::Structure
end

#override_actionTypes::OverrideAction

The action to use in the place of the action that results from the rule group evaluation. Set the override action to none to leave the result of the rule group alone. Set it to count to override the result to count only.

You can only use this for rule statements that reference a rule group, like RuleGroupReferenceStatement and ManagedRuleGroupStatement.

This option is usually set to none. It does not affect how the rules in the rule group are evaluated. If you want the rules in the rule group to only count matches, do not use this and instead exclude those rules in your rule group reference statement settings.



3501
3502
3503
3504
3505
3506
3507
3508
3509
# File 'gems/aws-sdk-wafv2/lib/aws-sdk-wafv2/types.rb', line 3501

class FirewallManagerRuleGroup < Struct.new(
  :name,
  :priority,
  :firewall_manager_statement,
  :override_action,
  :visibility_config)
  SENSITIVE = []
  include Aws::Structure
end

#priorityInteger

If you define more than one rule group in the first or last Firewall Manager rule groups, WAF evaluates each request against the rule groups in order, starting from the lowest priority setting. The priorities don't need to be consecutive, but they must all be different.

Returns:

  • (Integer)


3501
3502
3503
3504
3505
3506
3507
3508
3509
# File 'gems/aws-sdk-wafv2/lib/aws-sdk-wafv2/types.rb', line 3501

class FirewallManagerRuleGroup < Struct.new(
  :name,
  :priority,
  :firewall_manager_statement,
  :override_action,
  :visibility_config)
  SENSITIVE = []
  include Aws::Structure
end

#visibility_configTypes::VisibilityConfig

Defines and enables Amazon CloudWatch metrics and web request sample collection.



3501
3502
3503
3504
3505
3506
3507
3508
3509
# File 'gems/aws-sdk-wafv2/lib/aws-sdk-wafv2/types.rb', line 3501

class FirewallManagerRuleGroup < Struct.new(
  :name,
  :priority,
  :firewall_manager_statement,
  :override_action,
  :visibility_config)
  SENSITIVE = []
  include Aws::Structure
end