Reachability Analyzer additional detail codes - Amazon Virtual Private Cloud

Reachability Analyzer additional detail codes

Reachability Analyzer uses additional detail codes to provide information about the result of a path analysis.

The following additional detail code is supported.

FIREWALL_UNSUPPORTED_HIGHER_PRIORITY_RULE_GROUP_TYPE

There is at least one higher priority rule that could match the traffic in this path, but we ignored because it contains an unsupported rule type. Verify that the result of the analysis matches the behavior of AWS Network Firewall in your network.

FIREWALL_UNSUPPORTED_HIGHER_PRIORITY_RULES

There is at least one higher priority rule that could match the traffic in this path, but we ignored because it contains an unsupported rule option. Verify that the result of the analysis matches the behavior of AWS Network Firewall in your network.

FIREWALL_UNSUPPORTED_RULE_OPTIONS

The matching firewall rule contains an unsupported rule option. Verify that the result of the analysis matches the behavior of AWS Network Firewall in your network.

PATH_THROUGH_GWLB_NOT_CHECKED

The analysis does not consider that traffic entering the VPC endpoint is forwarded to a Gateway Load Balancer for inspection before exiting the VPC endpoint.

UNIDIRECTIONAL_PATH_ANALYSIS_ONLY

The results include forward path analysis from the source to the destination. There might be a blocking configuration in the reverse path, which could not be analyzed.