Categorygithub.com/aws/aws-cdk-go/awscdkawsnetworkfirewall

package

1.204.0-devpreview

Repository: https://github.com/aws/aws-cdk-go.git

Documentation: pkg.go.dev

# README

AWS::NetworkFirewall Construct Library

This module is part of the AWS Cloud Development Kit project.

import networkfirewall "github.com/aws/aws-cdk-go/awscdk"

There are no official hand-written (L2) constructs for this service yet. Here are some suggestions on how to proceed:

Search Construct Hub for NetworkFirewall construct libraries
Use the automatically generated L1 constructs, in the same way you would use the CloudFormation AWS::NetworkFirewall resources directly.

There are no hand-written (L2) constructs for this service yet. However, you can still use the automatically generated L1 constructs, and use this service exactly as you would using CloudFormation directly.

For more information on the resources and properties available for this service, see the CloudFormation documentation for AWS::NetworkFirewall.

(Read the CDK Contributing Guide and submit an RFC if you are interested in contributing to this construct library.)

# Functions

CfnFirewall_CFN_RESOURCE_TYPE_NAME

No description provided by the author

CfnFirewall_IsCfnElement

Returns `true` if a construct is a stack element (i.e.

CfnFirewall_IsCfnResource

Check whether the given construct is a CfnResource.

CfnFirewall_IsConstruct

Return whether the given object is a Construct.

CfnFirewallPolicy_CFN_RESOURCE_TYPE_NAME

No description provided by the author

CfnFirewallPolicy_IsCfnElement

Returns `true` if a construct is a stack element (i.e.

CfnFirewallPolicy_IsCfnResource

Check whether the given construct is a CfnResource.

CfnFirewallPolicy_IsConstruct

Return whether the given object is a Construct.

CfnLoggingConfiguration_CFN_RESOURCE_TYPE_NAME

No description provided by the author

CfnLoggingConfiguration_IsCfnElement

Returns `true` if a construct is a stack element (i.e.

CfnLoggingConfiguration_IsCfnResource

Check whether the given construct is a CfnResource.

CfnLoggingConfiguration_IsConstruct

Return whether the given object is a Construct.

CfnRuleGroup_CFN_RESOURCE_TYPE_NAME

No description provided by the author

CfnRuleGroup_IsCfnElement

Returns `true` if a construct is a stack element (i.e.

CfnRuleGroup_IsCfnResource

Check whether the given construct is a CfnResource.

CfnRuleGroup_IsConstruct

Return whether the given object is a Construct.

Create a new `AWS::NetworkFirewall::Firewall`.

NewCfnFirewall_Override

Create a new `AWS::NetworkFirewall::Firewall`.

NewCfnFirewallPolicy

Create a new `AWS::NetworkFirewall::FirewallPolicy`.

NewCfnFirewallPolicy_Override

Create a new `AWS::NetworkFirewall::FirewallPolicy`.

NewCfnLoggingConfiguration

Create a new `AWS::NetworkFirewall::LoggingConfiguration`.

NewCfnLoggingConfiguration_Override

Create a new `AWS::NetworkFirewall::LoggingConfiguration`.

NewCfnRuleGroup

Create a new `AWS::NetworkFirewall::RuleGroup`.

NewCfnRuleGroup_Override

Create a new `AWS::NetworkFirewall::RuleGroup`.

# Structs

CfnFirewall_SubnetMappingProperty

The ID for a subnet that you want to associate with the firewall.

CfnFirewallPolicy_ActionDefinitionProperty

A custom action to use in stateless rule actions settings.

CfnFirewallPolicy_CustomActionProperty

An optional, non-standard action to use for stateless packet handling.

CfnFirewallPolicy_DimensionProperty

The value to use in an Amazon CloudWatch custom metric dimension.

CfnFirewallPolicy_FirewallPolicyProperty

The traffic filtering behavior of a firewall policy, defined in a collection of stateless and stateful rule groups and other settings.

CfnFirewallPolicy_IPSetProperty

A list of IP addresses and address ranges, in CIDR notation.

CfnFirewallPolicy_PolicyVariablesProperty

Contains variables that you can use to override default Suricata settings in your firewall policy.

CfnFirewallPolicy_PublishMetricActionProperty

Stateless inspection criteria that publishes the specified metrics to Amazon CloudWatch for the matching packet.

CfnFirewallPolicy_StatefulEngineOptionsProperty

Configuration settings for the handling of the stateful rule groups in a firewall policy.

CfnFirewallPolicy_StatefulRuleGroupOverrideProperty

The setting that allows the policy owner to change the behavior of the rule group within a policy.

CfnFirewallPolicy_StatefulRuleGroupReferenceProperty

Identifier for a single stateful rule group, used in a firewall policy to refer to a rule group.

CfnFirewallPolicy_StatelessRuleGroupReferenceProperty

Identifier for a single stateless rule group, used in a firewall policy to refer to the rule group.

CfnFirewallPolicyProps

Properties for defining a `CfnFirewallPolicy`.

CfnFirewallProps

Properties for defining a `CfnFirewall`.

CfnLoggingConfiguration_LogDestinationConfigProperty

Defines where AWS Network Firewall sends logs for the firewall for one log type.

CfnLoggingConfiguration_LoggingConfigurationProperty

Defines how AWS Network Firewall performs logging for a `Firewall` .

CfnLoggingConfigurationProps

Properties for defining a `CfnLoggingConfiguration`.

CfnRuleGroup_ActionDefinitionProperty

A custom action to use in stateless rule actions settings.

CfnRuleGroup_AddressProperty

A single IP address specification.

CfnRuleGroup_CustomActionProperty

An optional, non-standard action to use for stateless packet handling.

CfnRuleGroup_DimensionProperty

The value to use in an Amazon CloudWatch custom metric dimension.

CfnRuleGroup_HeaderProperty

The 5-tuple criteria for AWS Network Firewall to use to inspect packet headers in stateful traffic flow inspection.

CfnRuleGroup_IPSetProperty

A list of IP addresses and address ranges, in CIDR notation.

CfnRuleGroup_IPSetReferenceProperty

Configures one or more `IPSetReferences` for a Suricata-compatible rule group.

CfnRuleGroup_MatchAttributesProperty

Criteria for Network Firewall to use to inspect an individual packet in stateless rule inspection.

CfnRuleGroup_PortRangeProperty

A single port range specification.

CfnRuleGroup_PortSetProperty

A set of port ranges for use in the rules in a rule group.

CfnRuleGroup_PublishMetricActionProperty

Stateless inspection criteria that publishes the specified metrics to Amazon CloudWatch for the matching packet.

CfnRuleGroup_ReferenceSetsProperty

Configures the `ReferenceSets` for a stateful rule group.

CfnRuleGroup_RuleDefinitionProperty

The inspection criteria and action for a single stateless rule.

CfnRuleGroup_RuleGroupProperty

The object that defines the rules in a rule group.

CfnRuleGroup_RuleOptionProperty

Additional settings for a stateful rule.

CfnRuleGroup_RulesSourceListProperty

Stateful inspection criteria for a domain list rule group.

CfnRuleGroup_RulesSourceProperty

The stateless or stateful rules definitions for use in a single rule group.

CfnRuleGroup_RuleVariablesProperty

Settings that are available for use in the rules in the `RuleGroup` where this is defined.

CfnRuleGroup_StatefulRuleOptionsProperty

Additional options governing how Network Firewall handles the rule group.

CfnRuleGroup_StatefulRuleProperty

A single Suricata rules specification, for use in a stateful rule group.

CfnRuleGroup_StatelessRuleProperty

A single stateless rule.

CfnRuleGroup_StatelessRulesAndCustomActionsProperty

Stateless inspection criteria.

CfnRuleGroup_TCPFlagFieldProperty

TCP flags and masks to inspect packets for.

CfnRuleGroupProps

Properties for defining a `CfnRuleGroup`.

# Interfaces

A CloudFormation `AWS::NetworkFirewall::Firewall`.

CfnFirewallPolicy

A CloudFormation `AWS::NetworkFirewall::FirewallPolicy`.

CfnLoggingConfiguration

A CloudFormation `AWS::NetworkFirewall::LoggingConfiguration`.

A CloudFormation `AWS::NetworkFirewall::RuleGroup`.