Class: Aws::WAFV2::Types::FirewallManagerRuleGroup

Inherits:

Struct

• Object
• Struct
• Aws::WAFV2::Types::FirewallManagerRuleGroup

Defined in:

gems/aws-sdk-wafv2/lib/aws-sdk-wafv2/types.rb

Overview

A rule group that's defined for an Firewall Manager WAF policy.

See Also:

• AWS API Documentation

Constant Summary

SENSITIVE =

[]

Instance Attribute Summary

• #firewall_manager_statement ⇒ Types::FirewallManagerStatement

  The processing guidance for an Firewall Manager rule.

• #name ⇒ String

  The name of the rule group.

• #override_action ⇒ Types::OverrideAction

  The action to use in the place of the action that results from the rule group evaluation.

• #priority ⇒ Integer

  If you define more than one rule group in the first or last Firewall Manager rule groups, WAF evaluates each request against the rule groups in order, starting from the lowest priority setting.

• #visibility_config ⇒ Types::VisibilityConfig

  Defines and enables Amazon CloudWatch metrics and web request sample collection.

Instance Attribute Details

#firewall_manager_statement ⇒ Types::FirewallManagerStatement

The processing guidance for an Firewall Manager rule. This is like a regular rule Statement, but it can only contain a rule group reference.

Returns:

• (Types::FirewallManagerStatement)

# File 'gems/aws-sdk-wafv2/lib/aws-sdk-wafv2/types.rb', line 1958

class FirewallManagerRuleGroup < Struct.new(
  :name,
  :priority,
  :firewall_manager_statement,
  :override_action,
  :visibility_config)
  SENSITIVE = []
  include Aws::Structure
end

#name ⇒ String

The name of the rule group. You cannot change the name of a rule group after you create it.

Returns:

• (String)

# File 'gems/aws-sdk-wafv2/lib/aws-sdk-wafv2/types.rb', line 1958

class FirewallManagerRuleGroup < Struct.new(
  :name,
  :priority,
  :firewall_manager_statement,
  :override_action,
  :visibility_config)
  SENSITIVE = []
  include Aws::Structure
end

#override_action ⇒ Types::OverrideAction

The action to use in the place of the action that results from the rule group evaluation. Set the override action to none to leave the result of the rule group alone. Set it to count to override the result to count only.

You can only use this for rule statements that reference a rule group, like RuleGroupReferenceStatement and ManagedRuleGroupStatement.

This option is usually set to none. It does not affect how the rules in the rule group are evaluated. If you want the rules in the rule group to only count matches, do not use this and instead use the rule action override option, with Count action, in your rule group reference statement settings.

Returns:

• (Types::OverrideAction)

# File 'gems/aws-sdk-wafv2/lib/aws-sdk-wafv2/types.rb', line 1958

class FirewallManagerRuleGroup < Struct.new(
  :name,
  :priority,
  :firewall_manager_statement,
  :override_action,
  :visibility_config)
  SENSITIVE = []
  include Aws::Structure
end

#priority ⇒ Integer

If you define more than one rule group in the first or last Firewall Manager rule groups, WAF evaluates each request against the rule groups in order, starting from the lowest priority setting. The priorities don't need to be consecutive, but they must all be different.

Returns:

• (Integer)

# File 'gems/aws-sdk-wafv2/lib/aws-sdk-wafv2/types.rb', line 1958

class FirewallManagerRuleGroup < Struct.new(
  :name,
  :priority,
  :firewall_manager_statement,
  :override_action,
  :visibility_config)
  SENSITIVE = []
  include Aws::Structure
end

#visibility_config ⇒ Types::VisibilityConfig

Defines and enables Amazon CloudWatch metrics and web request sample collection.

Returns:

• (Types::VisibilityConfig)

# File 'gems/aws-sdk-wafv2/lib/aws-sdk-wafv2/types.rb', line 1958

class FirewallManagerRuleGroup < Struct.new(
  :name,
  :priority,
  :firewall_manager_statement,
  :override_action,
  :visibility_config)
  SENSITIVE = []
  include Aws::Structure
end