Copyright | (c) 2013-2023 Brendan Hay |
---|---|
License | Mozilla Public License, v. 2.0. |
Maintainer | Brendan Hay |
Stability | auto-generated |
Portability | non-portable (GHC extensions) |
Safe Haskell | Safe-Inferred |
Language | Haskell2010 |
Synopsis
- data FirewallManagerRuleGroup = FirewallManagerRuleGroup' {}
- newFirewallManagerRuleGroup :: Text -> Natural -> FirewallManagerStatement -> OverrideAction -> VisibilityConfig -> FirewallManagerRuleGroup
- firewallManagerRuleGroup_name :: Lens' FirewallManagerRuleGroup Text
- firewallManagerRuleGroup_priority :: Lens' FirewallManagerRuleGroup Natural
- firewallManagerRuleGroup_firewallManagerStatement :: Lens' FirewallManagerRuleGroup FirewallManagerStatement
- firewallManagerRuleGroup_overrideAction :: Lens' FirewallManagerRuleGroup OverrideAction
- firewallManagerRuleGroup_visibilityConfig :: Lens' FirewallManagerRuleGroup VisibilityConfig
Documentation
data FirewallManagerRuleGroup Source #
A rule group that's defined for an Firewall Manager WAF policy.
See: newFirewallManagerRuleGroup
smart constructor.
FirewallManagerRuleGroup' | |
|
Instances
newFirewallManagerRuleGroup Source #
:: Text | |
-> Natural | |
-> FirewallManagerStatement | |
-> OverrideAction | |
-> VisibilityConfig | |
-> FirewallManagerRuleGroup |
Create a value of FirewallManagerRuleGroup
with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:name:FirewallManagerRuleGroup'
, firewallManagerRuleGroup_name
- The name of the rule group. You cannot change the name of a rule group
after you create it.
$sel:priority:FirewallManagerRuleGroup'
, firewallManagerRuleGroup_priority
- If you define more than one rule group in the first or last Firewall
Manager rule groups, WAF evaluates each request against the rule groups
in order, starting from the lowest priority setting. The priorities
don't need to be consecutive, but they must all be different.
$sel:firewallManagerStatement:FirewallManagerRuleGroup'
, firewallManagerRuleGroup_firewallManagerStatement
- The processing guidance for an Firewall Manager rule. This is like a
regular rule Statement, but it can only contain a rule group reference.
$sel:overrideAction:FirewallManagerRuleGroup'
, firewallManagerRuleGroup_overrideAction
- The action to use in the place of the action that results from the rule
group evaluation. Set the override action to none to leave the result of
the rule group alone. Set it to count to override the result to count
only.
You can only use this for rule statements that reference a rule group,
like RuleGroupReferenceStatement
and ManagedRuleGroupStatement
.
This option is usually set to none. It does not affect how the rules in
the rule group are evaluated. If you want the rules in the rule group to
only count matches, do not use this and instead use the rule action
override option, with Count
action, in your rule group reference
statement settings.
$sel:visibilityConfig:FirewallManagerRuleGroup'
, firewallManagerRuleGroup_visibilityConfig
- Defines and enables Amazon CloudWatch metrics and web request sample
collection.
firewallManagerRuleGroup_name :: Lens' FirewallManagerRuleGroup Text Source #
The name of the rule group. You cannot change the name of a rule group after you create it.
firewallManagerRuleGroup_priority :: Lens' FirewallManagerRuleGroup Natural Source #
If you define more than one rule group in the first or last Firewall Manager rule groups, WAF evaluates each request against the rule groups in order, starting from the lowest priority setting. The priorities don't need to be consecutive, but they must all be different.
firewallManagerRuleGroup_firewallManagerStatement :: Lens' FirewallManagerRuleGroup FirewallManagerStatement Source #
The processing guidance for an Firewall Manager rule. This is like a regular rule Statement, but it can only contain a rule group reference.
firewallManagerRuleGroup_overrideAction :: Lens' FirewallManagerRuleGroup OverrideAction Source #
The action to use in the place of the action that results from the rule group evaluation. Set the override action to none to leave the result of the rule group alone. Set it to count to override the result to count only.
You can only use this for rule statements that reference a rule group,
like RuleGroupReferenceStatement
and ManagedRuleGroupStatement
.
This option is usually set to none. It does not affect how the rules in
the rule group are evaluated. If you want the rules in the rule group to
only count matches, do not use this and instead use the rule action
override option, with Count
action, in your rule group reference
statement settings.
firewallManagerRuleGroup_visibilityConfig :: Lens' FirewallManagerRuleGroup VisibilityConfig Source #
Defines and enables Amazon CloudWatch metrics and web request sample collection.