# Packages
Package networkfirewalliface provides an interface to enable mocking the AWS Network Firewall service client for testing your code.
# Functions
AttachmentStatus_Values returns all elements of the AttachmentStatus enum.
ConfigurationSyncState_Values returns all elements of the ConfigurationSyncState enum.
EncryptionType_Values returns all elements of the EncryptionType enum.
FirewallStatusValue_Values returns all elements of the FirewallStatusValue enum.
GeneratedRulesType_Values returns all elements of the GeneratedRulesType enum.
IdentifiedType_Values returns all elements of the IdentifiedType enum.
IPAddressType_Values returns all elements of the IPAddressType enum.
LogDestinationType_Values returns all elements of the LogDestinationType enum.
LogType_Values returns all elements of the LogType enum.
New creates a new instance of the NetworkFirewall client with a session.
OverrideAction_Values returns all elements of the OverrideAction enum.
PerObjectSyncStatus_Values returns all elements of the PerObjectSyncStatus enum.
ResourceManagedStatus_Values returns all elements of the ResourceManagedStatus enum.
ResourceManagedType_Values returns all elements of the ResourceManagedType enum.
ResourceStatus_Values returns all elements of the ResourceStatus enum.
RevocationCheckAction_Values returns all elements of the RevocationCheckAction enum.
RuleGroupType_Values returns all elements of the RuleGroupType enum.
RuleOrder_Values returns all elements of the RuleOrder enum.
StatefulAction_Values returns all elements of the StatefulAction enum.
StatefulRuleDirection_Values returns all elements of the StatefulRuleDirection enum.
StatefulRuleProtocol_Values returns all elements of the StatefulRuleProtocol enum.
StreamExceptionPolicy_Values returns all elements of the StreamExceptionPolicy enum.
TargetType_Values returns all elements of the TargetType enum.
TCPFlag_Values returns all elements of the TCPFlag enum.
# Constants
AttachmentStatusCreating is a AttachmentStatus enum value.
AttachmentStatusDeleting is a AttachmentStatus enum value.
AttachmentStatusError is a AttachmentStatus enum value.
AttachmentStatusFailed is a AttachmentStatus enum value.
AttachmentStatusReady is a AttachmentStatus enum value.
AttachmentStatusScaling is a AttachmentStatus enum value.
ConfigurationSyncStateCapacityConstrained is a ConfigurationSyncState enum value.
ConfigurationSyncStateInSync is a ConfigurationSyncState enum value.
ConfigurationSyncStatePending is a ConfigurationSyncState enum value.
EncryptionTypeAwsOwnedKmsKey is a EncryptionType enum value.
EncryptionTypeCustomerKms is a EncryptionType enum value.
ID to lookup a service endpoint with.
ErrCodeInsufficientCapacityException for service response error code "InsufficientCapacityException".
ErrCodeInternalServerError for service response error code "InternalServerError".
ErrCodeInvalidOperationException for service response error code "InvalidOperationException".
ErrCodeInvalidRequestException for service response error code "InvalidRequestException".
ErrCodeInvalidResourcePolicyException for service response error code "InvalidResourcePolicyException".
ErrCodeInvalidTokenException for service response error code "InvalidTokenException".
ErrCodeLimitExceededException for service response error code "LimitExceededException".
ErrCodeLogDestinationPermissionException for service response error code "LogDestinationPermissionException".
ErrCodeResourceNotFoundException for service response error code "ResourceNotFoundException".
ErrCodeResourceOwnerCheckException for service response error code "ResourceOwnerCheckException".
ErrCodeThrottlingException for service response error code "ThrottlingException".
ErrCodeUnsupportedOperationException for service response error code "UnsupportedOperationException".
FirewallStatusValueDeleting is a FirewallStatusValue enum value.
FirewallStatusValueProvisioning is a FirewallStatusValue enum value.
FirewallStatusValueReady is a FirewallStatusValue enum value.
GeneratedRulesTypeAllowlist is a GeneratedRulesType enum value.
GeneratedRulesTypeDenylist is a GeneratedRulesType enum value.
IdentifiedTypeStatelessRuleContainsTcpFlags is a IdentifiedType enum value.
IdentifiedTypeStatelessRuleForwardingAsymmetrically is a IdentifiedType enum value.
IPAddressTypeDualstack is a IPAddressType enum value.
IPAddressTypeIpv4 is a IPAddressType enum value.
IPAddressTypeIpv6 is a IPAddressType enum value.
LogDestinationTypeCloudWatchLogs is a LogDestinationType enum value.
LogDestinationTypeKinesisDataFirehose is a LogDestinationType enum value.
LogDestinationTypeS3 is a LogDestinationType enum value.
LogTypeAlert is a LogType enum value.
LogTypeFlow is a LogType enum value.
LogTypeTls is a LogType enum value.
OverrideActionDropToAlert is a OverrideAction enum value.
PerObjectSyncStatusCapacityConstrained is a PerObjectSyncStatus enum value.
PerObjectSyncStatusInSync is a PerObjectSyncStatus enum value.
PerObjectSyncStatusPending is a PerObjectSyncStatus enum value.
ResourceManagedStatusAccount is a ResourceManagedStatus enum value.
ResourceManagedStatusManaged is a ResourceManagedStatus enum value.
ResourceManagedTypeAwsManagedDomainLists is a ResourceManagedType enum value.
ResourceManagedTypeAwsManagedThreatSignatures is a ResourceManagedType enum value.
ResourceStatusActive is a ResourceStatus enum value.
ResourceStatusDeleting is a ResourceStatus enum value.
ResourceStatusError is a ResourceStatus enum value.
RevocationCheckActionDrop is a RevocationCheckAction enum value.
RevocationCheckActionPass is a RevocationCheckAction enum value.
RevocationCheckActionReject is a RevocationCheckAction enum value.
RuleGroupTypeStateful is a RuleGroupType enum value.
RuleGroupTypeStateless is a RuleGroupType enum value.
RuleOrderDefaultActionOrder is a RuleOrder enum value.
RuleOrderStrictOrder is a RuleOrder enum value.
ServiceID is a unique identifier of a specific service.
Name of service.
StatefulActionAlert is a StatefulAction enum value.
StatefulActionDrop is a StatefulAction enum value.
StatefulActionPass is a StatefulAction enum value.
StatefulActionReject is a StatefulAction enum value.
StatefulRuleDirectionAny is a StatefulRuleDirection enum value.
StatefulRuleDirectionForward is a StatefulRuleDirection enum value.
StatefulRuleProtocolDcerpc is a StatefulRuleProtocol enum value.
StatefulRuleProtocolDhcp is a StatefulRuleProtocol enum value.
StatefulRuleProtocolDns is a StatefulRuleProtocol enum value.
StatefulRuleProtocolFtp is a StatefulRuleProtocol enum value.
StatefulRuleProtocolHttp is a StatefulRuleProtocol enum value.
StatefulRuleProtocolIcmp is a StatefulRuleProtocol enum value.
StatefulRuleProtocolIkev2 is a StatefulRuleProtocol enum value.
StatefulRuleProtocolImap is a StatefulRuleProtocol enum value.
StatefulRuleProtocolIp is a StatefulRuleProtocol enum value.
StatefulRuleProtocolKrb5 is a StatefulRuleProtocol enum value.
StatefulRuleProtocolMsn is a StatefulRuleProtocol enum value.
StatefulRuleProtocolNtp is a StatefulRuleProtocol enum value.
StatefulRuleProtocolSmb is a StatefulRuleProtocol enum value.
StatefulRuleProtocolSmtp is a StatefulRuleProtocol enum value.
StatefulRuleProtocolSsh is a StatefulRuleProtocol enum value.
StatefulRuleProtocolTcp is a StatefulRuleProtocol enum value.
StatefulRuleProtocolTftp is a StatefulRuleProtocol enum value.
StatefulRuleProtocolTls is a StatefulRuleProtocol enum value.
StatefulRuleProtocolUdp is a StatefulRuleProtocol enum value.
StreamExceptionPolicyContinue is a StreamExceptionPolicy enum value.
StreamExceptionPolicyDrop is a StreamExceptionPolicy enum value.
StreamExceptionPolicyReject is a StreamExceptionPolicy enum value.
TargetTypeHttpHost is a TargetType enum value.
TargetTypeTlsSni is a TargetType enum value.
TCPFlagAck is a TCPFlag enum value.
TCPFlagCwr is a TCPFlag enum value.
TCPFlagEce is a TCPFlag enum value.
TCPFlagFin is a TCPFlag enum value.
TCPFlagPsh is a TCPFlag enum value.
TCPFlagRst is a TCPFlag enum value.
TCPFlagSyn is a TCPFlag enum value.
TCPFlagUrg is a TCPFlag enum value.
# Structs
A custom action to use in stateless rule actions settings.
A single IP address specification.
The analysis result for Network Firewall's stateless rule group analyzer.
The configuration and status for a single subnet that you've specified for use by the Network Firewall firewall.
The capacity usage summary of the resources used by the ReferenceSets in a firewall.
Defines the actions to take on the SSL/TLS connection if the certificate presented by the server in the connection has a revoked or unknown status.
Summarizes the CIDR blocks used by the IP set references in a firewall.
An optional, non-standard action to use for stateless packet handling.
The value to use in an Amazon CloudWatch custom metric dimension.
A complex type that contains optional Amazon Web Services Key Management Service (KMS) encryption settings for your Network Firewall resources.
The firewall defines the configuration settings for an Network Firewall firewall.
High-level information about a firewall, returned by operations like create and describe.
The firewall policy defines the behavior of a firewall using a collection of stateless and stateful rule groups and other settings.
High-level information about a firewall policy, returned by operations like create and describe.
The high-level properties of a firewall policy.
Detailed information about the current status of a Firewall.
The basic rule criteria for Network Firewall to use to inspect packet headers in stateful traffic flow inspection.
Amazon Web Services doesn't currently have enough available capacity to fulfill your request.
Your request is valid, but Network Firewall couldn't perform the operation because of a system problem.
The operation failed because it's not valid.
The operation failed because of a problem with your request.
The policy statement failed validation.
The token you provided is stale or isn't valid for the operation.
A list of IP addresses and address ranges, in CIDR notation.
General information about the IP set.
Configures one or more IP set references for a Suricata-compatible rule group.
Unable to perform the operation because doing so would violate a limit setting.
Defines where Network Firewall sends logs for the firewall for one log type.
Unable to send logs to a configured logging destination.
Defines how Network Firewall performs logging for a Firewall.
Criteria for Network Firewall to use to inspect an individual packet in stateless rule inspection.
NetworkFirewall provides the API operation methods for making requests to AWS Network Firewall.
Provides configuration status for a single policy or rule group that is used for a firewall endpoint.
Contains variables that you can use to override default Suricata settings in your firewall policy.
A single port range specification.
A set of port ranges for use in the rules in a rule group.
Stateless inspection criteria that publishes the specified metrics to Amazon CloudWatch for the matching packet.
Contains a set of IP set references.
Unable to locate a resource using the parameters that you provided.
Unable to change the resource because your account doesn't own it.
The inspection criteria and action for a single stateless rule.
The object that defines the rules in a rule group.
High-level information about a rule group, returned by ListRuleGroups.
The high-level properties of a rule group.
Additional settings for a stateful rule.
The stateless or stateful rules definitions for use in a single rule group.
Stateful inspection criteria for a domain list rule group.
Settings that are available for use in the rules in the RuleGroup where this is defined.
Any Certificate Manager (ACM) Secure Sockets Layer/Transport Layer Security (SSL/TLS) server certificate that's associated with a ServerCertificateConfiguration.
Configures the Certificate Manager certificates and scope that Network Firewall uses to decrypt and re-encrypt traffic using a TLSInspectionConfiguration.
Settings that define the Secure Sockets Layer/Transport Layer Security (SSL/TLS) traffic that Network Firewall should decrypt for inspection by the stateful rule engine.
High-level information about the managed rule group that your own rule group is copied from.
Configuration settings for the handling of the stateful rule groups in a firewall policy.
A single Suricata rules specification, for use in a stateful rule group.
The setting that allows the policy owner to change the behavior of the rule group within a policy.
Identifier for a single stateful rule group, used in a firewall policy to refer to a rule group.
Additional options governing how Network Firewall handles the rule group.
A single stateless rule.
Identifier for a single stateless rule group, used in a firewall policy to refer to the rule group.
Stateless inspection criteria.
The ID for a subnet that you want to associate with the firewall.
The status of the firewall endpoint and firewall policy configuration for a single VPC subnet.
A key:value pair associated with an Amazon Web Services resource.
TCP flags and masks to inspect packets for, used in stateless rules MatchAttributes settings.
Unable to process the request due to throttling limitations.
Contains metadata about an Certificate Manager certificate.
The object that defines a TLS inspection configuration.
High-level information about a TLS inspection configuration, returned by ListTLSInspectionConfigurations.
The high-level properties of a TLS inspection configuration.
The operation you requested isn't supported by Network Firewall.