Package fmsiface provides an interface to enable mocking the Firewall Management Service service client for testing your code.

AccountRoleStatus_Values returns all elements of the AccountRoleStatus enum.

CustomerPolicyScopeIdType_Values returns all elements of the CustomerPolicyScopeIdType enum.

CustomerPolicyStatus_Values returns all elements of the CustomerPolicyStatus enum.

DependentServiceName_Values returns all elements of the DependentServiceName enum.

DestinationType_Values returns all elements of the DestinationType enum.

EntryType_Values returns all elements of the EntryType enum.

EntryViolationReason_Values returns all elements of the EntryViolationReason enum.

FailedItemReason_Values returns all elements of the FailedItemReason enum.

FirewallDeploymentModel_Values returns all elements of the FirewallDeploymentModel enum.

MarketplaceSubscriptionOnboardingStatus_Values returns all elements of the MarketplaceSubscriptionOnboardingStatus enum.

NetworkAclRuleAction_Values returns all elements of the NetworkAclRuleAction enum.

NetworkFirewallOverrideAction_Values returns all elements of the NetworkFirewallOverrideAction enum.

New creates a new instance of the FMS client with a session.

OrganizationStatus_Values returns all elements of the OrganizationStatus enum.

PolicyComplianceStatusType_Values returns all elements of the PolicyComplianceStatusType enum.

RemediationActionType_Values returns all elements of the RemediationActionType enum.

ResourceSetStatus_Values returns all elements of the ResourceSetStatus enum.

RuleOrder_Values returns all elements of the RuleOrder enum.

SecurityServiceType_Values returns all elements of the SecurityServiceType enum.

StreamExceptionPolicy_Values returns all elements of the StreamExceptionPolicy enum.

TargetType_Values returns all elements of the TargetType enum.

ThirdPartyFirewall_Values returns all elements of the ThirdPartyFirewall enum.

ThirdPartyFirewallAssociationStatus_Values returns all elements of the ThirdPartyFirewallAssociationStatus enum.

ViolationReason_Values returns all elements of the ViolationReason enum.

AccountRoleStatusCreating is a AccountRoleStatus enum value.

AccountRoleStatusDeleted is a AccountRoleStatus enum value.

AccountRoleStatusDeleting is a AccountRoleStatus enum value.

AccountRoleStatusPendingDeletion is a AccountRoleStatus enum value.

AccountRoleStatusReady is a AccountRoleStatus enum value.

CustomerPolicyScopeIdTypeAccount is a CustomerPolicyScopeIdType enum value.

CustomerPolicyScopeIdTypeOrgUnit is a CustomerPolicyScopeIdType enum value.

CustomerPolicyStatusActive is a CustomerPolicyStatus enum value.

CustomerPolicyStatusOutOfAdminScope is a CustomerPolicyStatus enum value.

DependentServiceNameAwsconfig is a DependentServiceName enum value.

DependentServiceNameAwsshieldAdvanced is a DependentServiceName enum value.

DependentServiceNameAwsvpc is a DependentServiceName enum value.

DependentServiceNameAwswaf is a DependentServiceName enum value.

DestinationTypeIpv4 is a DestinationType enum value.

DestinationTypeIpv6 is a DestinationType enum value.

DestinationTypePrefixList is a DestinationType enum value.

ID to lookup a service endpoint with.

EntryTypeCustomEntry is a EntryType enum value.

EntryTypeFmsManagedFirstEntry is a EntryType enum value.

EntryTypeFmsManagedLastEntry is a EntryType enum value.

EntryViolationReasonEntryConflict is a EntryViolationReason enum value.

EntryViolationReasonIncorrectEntryOrder is a EntryViolationReason enum value.

EntryViolationReasonMissingExpectedEntry is a EntryViolationReason enum value.

ErrCodeInternalErrorException for service response error code "InternalErrorException".

ErrCodeInvalidInputException for service response error code "InvalidInputException".

ErrCodeInvalidOperationException for service response error code "InvalidOperationException".

ErrCodeInvalidTypeException for service response error code "InvalidTypeException".

ErrCodeLimitExceededException for service response error code "LimitExceededException".

ErrCodeResourceNotFoundException for service response error code "ResourceNotFoundException".

FailedItemReasonNotValidAccountId is a FailedItemReason enum value.

FailedItemReasonNotValidArn is a FailedItemReason enum value.

FailedItemReasonNotValidPartition is a FailedItemReason enum value.

FailedItemReasonNotValidRegion is a FailedItemReason enum value.

FailedItemReasonNotValidResourceType is a FailedItemReason enum value.

FailedItemReasonNotValidService is a FailedItemReason enum value.

FirewallDeploymentModelCentralized is a FirewallDeploymentModel enum value.

FirewallDeploymentModelDistributed is a FirewallDeploymentModel enum value.

MarketplaceSubscriptionOnboardingStatusComplete is a MarketplaceSubscriptionOnboardingStatus enum value.

MarketplaceSubscriptionOnboardingStatusNoSubscription is a MarketplaceSubscriptionOnboardingStatus enum value.

MarketplaceSubscriptionOnboardingStatusNotComplete is a MarketplaceSubscriptionOnboardingStatus enum value.

NetworkAclRuleActionAllow is a NetworkAclRuleAction enum value.

NetworkAclRuleActionDeny is a NetworkAclRuleAction enum value.

NetworkFirewallOverrideActionDropToAlert is a NetworkFirewallOverrideAction enum value.

OrganizationStatusOffboarding is a OrganizationStatus enum value.

OrganizationStatusOffboardingComplete is a OrganizationStatus enum value.

OrganizationStatusOnboarding is a OrganizationStatus enum value.

OrganizationStatusOnboardingComplete is a OrganizationStatus enum value.

PolicyComplianceStatusTypeCompliant is a PolicyComplianceStatusType enum value.

PolicyComplianceStatusTypeNonCompliant is a PolicyComplianceStatusType enum value.

RemediationActionTypeModify is a RemediationActionType enum value.

RemediationActionTypeRemove is a RemediationActionType enum value.

ResourceSetStatusActive is a ResourceSetStatus enum value.

ResourceSetStatusOutOfAdminScope is a ResourceSetStatus enum value.

RuleOrderDefaultActionOrder is a RuleOrder enum value.

RuleOrderStrictOrder is a RuleOrder enum value.

SecurityServiceTypeDnsFirewall is a SecurityServiceType enum value.

SecurityServiceTypeImportNetworkFirewall is a SecurityServiceType enum value.

SecurityServiceTypeNetworkAclCommon is a SecurityServiceType enum value.

SecurityServiceTypeNetworkFirewall is a SecurityServiceType enum value.

SecurityServiceTypeSecurityGroupsCommon is a SecurityServiceType enum value.

SecurityServiceTypeSecurityGroupsContentAudit is a SecurityServiceType enum value.

SecurityServiceTypeSecurityGroupsUsageAudit is a SecurityServiceType enum value.

SecurityServiceTypeShieldAdvanced is a SecurityServiceType enum value.

SecurityServiceTypeThirdPartyFirewall is a SecurityServiceType enum value.

SecurityServiceTypeWaf is a SecurityServiceType enum value.

SecurityServiceTypeWafv2 is a SecurityServiceType enum value.

ServiceID is a unique identifier of a specific service.

Name of service.

StreamExceptionPolicyContinue is a StreamExceptionPolicy enum value.

StreamExceptionPolicyDrop is a StreamExceptionPolicy enum value.

StreamExceptionPolicyFmsIgnore is a StreamExceptionPolicy enum value.

StreamExceptionPolicyReject is a StreamExceptionPolicy enum value.

TargetTypeCarrierGateway is a TargetType enum value.

TargetTypeEgressOnlyInternetGateway is a TargetType enum value.

TargetTypeGateway is a TargetType enum value.

TargetTypeInstance is a TargetType enum value.

TargetTypeLocalGateway is a TargetType enum value.

TargetTypeNatGateway is a TargetType enum value.

TargetTypeNetworkInterface is a TargetType enum value.

TargetTypeTransitGateway is a TargetType enum value.

TargetTypeVpcEndpoint is a TargetType enum value.

TargetTypeVpcPeeringConnection is a TargetType enum value.

ThirdPartyFirewallAssociationStatusNotExist is a ThirdPartyFirewallAssociationStatus enum value.

ThirdPartyFirewallAssociationStatusOffboardComplete is a ThirdPartyFirewallAssociationStatus enum value.

ThirdPartyFirewallAssociationStatusOffboarding is a ThirdPartyFirewallAssociationStatus enum value.

ThirdPartyFirewallAssociationStatusOnboardComplete is a ThirdPartyFirewallAssociationStatus enum value.

ThirdPartyFirewallAssociationStatusOnboarding is a ThirdPartyFirewallAssociationStatus enum value.

ThirdPartyFirewallFortigateCloudNativeFirewall is a ThirdPartyFirewall enum value.

ThirdPartyFirewallPaloAltoNetworksCloudNgfw is a ThirdPartyFirewall enum value.

ViolationReasonBlackHoleRouteDetected is a ViolationReason enum value.

ViolationReasonBlackHoleRouteDetectedInFirewallSubnet is a ViolationReason enum value.

ViolationReasonFirewallSubnetIsOutOfScope is a ViolationReason enum value.

ViolationReasonFirewallSubnetMissingExpectedRoute is a ViolationReason enum value.

ViolationReasonFirewallSubnetMissingVpceEndpoint is a ViolationReason enum value.

ViolationReasonFmsCreatedSecurityGroupEdited is a ViolationReason enum value.

ViolationReasonInternetGatewayMissingExpectedRoute is a ViolationReason enum value.

ViolationReasonInternetTrafficNotInspected is a ViolationReason enum value.

ViolationReasonInvalidNetworkAclEntry is a ViolationReason enum value.

ViolationReasonInvalidRouteConfiguration is a ViolationReason enum value.

ViolationReasonMissingExpectedRouteTable is a ViolationReason enum value.

ViolationReasonMissingFirewall is a ViolationReason enum value.

ViolationReasonMissingFirewallSubnetInAz is a ViolationReason enum value.

ViolationReasonMissingTargetGateway is a ViolationReason enum value.

ViolationReasonNetworkFirewallPolicyModified is a ViolationReason enum value.

ViolationReasonResourceIncorrectWebAcl is a ViolationReason enum value.

ViolationReasonResourceMissingDnsFirewall is a ViolationReason enum value.

ViolationReasonResourceMissingSecurityGroup is a ViolationReason enum value.

ViolationReasonResourceMissingShieldProtection is a ViolationReason enum value.

ViolationReasonResourceMissingWebAcl is a ViolationReason enum value.

ViolationReasonResourceMissingWebAclOrShieldProtection is a ViolationReason enum value.

ViolationReasonResourceViolatesAuditSecurityGroup is a ViolationReason enum value.

ViolationReasonRouteHasOutOfScopeEndpoint is a ViolationReason enum value.

ViolationReasonSecurityGroupRedundant is a ViolationReason enum value.

ViolationReasonSecurityGroupUnused is a ViolationReason enum value.

ViolationReasonTrafficInspectionCrossesAzBoundary is a ViolationReason enum value.

ViolationReasonUnexpectedFirewallRoutes is a ViolationReason enum value.

ViolationReasonUnexpectedTargetGatewayRoutes is a ViolationReason enum value.

ViolationReasonWebAclMissingRuleGroup is a ViolationReason enum value.

Configures the accounts within the administrator's Organizations organization that the specified Firewall Manager administrator can apply policies to.

Describes a remediation action target.

Contains high level information about the Firewall Manager administrator account.

Defines the resources that the Firewall Manager administrator can manage.

An individual Firewall Manager application.

An Firewall Manager applications list.

Details of the Firewall Manager applications list.

Violation detail for an EC2 instance resource.

Violation detail for network interfaces associated with an EC2 instance.

Violation detail for the rule violation in a security group when compared to the primary security group of the Firewall Manager policy.

Details of the resource that is not protected by the policy.

Information about the CreateNetworkAcl action in Amazon EC2.

Information about the CreateNetworkAclEntries action in Amazon EC2.

Information about the DeleteNetworkAclEntries action in Amazon EC2.

A resource in the organization that's available to be associated with a Firewall Manager resource set.

A DNS Firewall rule group that Firewall Manager tried to associate with a VPC is already associated with the VPC and can't be associated again.

The VPC that Firewall Manager was applying a DNS Fireall policy to reached the limit for associated DNS Firewall rule groups.

A rule group that Firewall Manager tried to associate with a VPC has the same priority as a rule group that's already associated.

The action of associating an EC2 resource, such as a subnet or internet gateway, with a route table.

An action that copies the EC2 route table for use in remediation.

Information about the CreateRoute action in Amazon EC2.

Information about the CreateRouteTable action in Amazon EC2.

Information about the DeleteRoute action in Amazon EC2.

Information about the ReplaceRoute action in Amazon EC2.

Information about the ReplaceRouteTableAssociation action in Amazon EC2.

Describes a single rule in a network ACL.

Detailed information about an entry violation in a network ACL.

Describes the compliance status for the account.

Information about the expected route in the route table.

Details of a resource that failed when trying to update it's association to a resource set.

Contains details about the firewall subnet that violates the policy scope.

The violation details for a firewall subnet's VPC endpoint that's deleted or missing.

FMS provides the API operation methods for making requests to Firewall Management Service.

Contains information about the actions that you can take to remediate scope violations caused by your policy's FirewallCreationConfig.

The operation failed because of a system problem, even though the request was valid.

The parameters of the request were invalid.

Violation detail for the entries in a network ACL resource.

The operation failed because there was nothing to do or the operation wasn't possible.

The value of the Type parameter is invalid.

The operation exceeds a resource limit, for example, the maximum number of policy objects that you can create for an Amazon Web Services account.

Defines a Firewall Manager network ACL policy.

Describes a rule in a network ACL.

The configuration of the first and last rules for the network ACL policy, and the remediation settings for each.

ICMP protocol: The ICMP type and code.

TCP or UDP protocols: The range of ports the rule applies to.

Violation detail for an internet gateway route with an inactive state in the customer subnet route table or Network Firewall subnet route table.

Violation detail for the subnet for which internet traffic that hasn't been inspected.

Violation detail for the improperly configured subnet route.

Violation detail for an expected route missing in Network Firewall.

Violation detail for Network Firewall for a subnet that's not associated to the expected Firewall Manager managed route table.

Violation detail for Network Firewall for a subnet that doesn't have a Firewall Manager managed firewall in its VPC.

Violation detail for Network Firewall for an Availability Zone that's missing the expected Firewall Manager managed subnet.

Configures the firewall policy deployment model of Network Firewall.

The definition of the Network Firewall firewall policy.

Violation detail for Network Firewall for a firewall policy that has a different NetworkFirewallPolicyDescription than is required by the Firewall Manager policy.

The setting that allows the policy owner to change the behavior of the rule group within a policy.

Violation detail for an unexpected route that's present in a route table.

Violation detail for an unexpected gateway route that’s present in a route table.

Defines the Organizations organizational units (OUs) that the specified Firewall Manager administrator can apply policies to.

The reference rule that partially matches the ViolationTarget rule and violation reason.

An Firewall Manager policy.

Describes the noncompliant resources in a member account for a specific Firewall Manager policy.

Indicates whether the account is compliant with the specified policy.

Contains the settings to configure a network ACL policy, a Network Firewall firewall policy deployment model, or a third-party firewall policy.

Details of the Firewall Manager policy.

Defines the policy types that the specified Firewall Manager administrator can manage.

A list of remediation actions.

A list of possible remediation action lists.

An Firewall Manager protocols list.

Details of the Firewall Manager protocols list.

Defines the Amazon Web Services Regions that the specified Firewall Manager administrator can manage.

Information about an individual action you can take to remediate a violation.

An ordered list of actions you can take to remediate a violation.

Information about the ReplaceNetworkAclAssociation action in Amazon EC2.

Details of a resource that is associated to an Firewall Manager resource set.

The specified resource was not found.

A set of resources to include in a policy.

Summarizes the resource sets used in a policy.

The resource tags that Firewall Manager uses to determine if a particular resource should be included or excluded from the Firewall Manager policy.

Violation detail based on resource type.

Describes a route in a route table.

Contains details about the route endpoint that violates the policy scope.

Remediation option for the rule specified in the ViolationTarget.

Describes a set of permissions for a security group rule.

Details about the security service that is being used to protect the resources.

Configuration settings for the handling of the stateful rule groups in a Network Firewall firewall policy.

Network Firewall stateful rule group, used in a NetworkFirewallPolicyDescription.

Network Firewall stateless rule group, used in a NetworkFirewallPolicyDescription.

A collection of key:value pairs associated with an Amazon Web Services resource.

Configures the third-party firewall's firewall policy.

The violation details for a third-party firewall that's not associated with an Firewall Manager managed route table.

The violation details about a third-party firewall's subnet that doesn't have a Firewall Manager managed firewall in its VPC.

The violation details for a third-party firewall for an Availability Zone that's missing the Firewall Manager managed subnet.

Configures the deployment model for the third-party firewall.

Violations for a resource based on the specified Firewall Manager policy and Amazon Web Services account.