Copyright | (c) 2013-2023 Brendan Hay |
---|---|
License | Mozilla Public License, v. 2.0. |
Maintainer | Brendan Hay |
Stability | auto-generated |
Portability | non-portable (GHC extensions) |
Safe Haskell | Safe-Inferred |
Language | Haskell2010 |
Synopsis
- data NetworkFirewallPolicyDescription = NetworkFirewallPolicyDescription' {
- statefulDefaultActions :: Maybe [Text]
- statefulEngineOptions :: Maybe StatefulEngineOptions
- statefulRuleGroups :: Maybe [StatefulRuleGroup]
- statelessCustomActions :: Maybe [Text]
- statelessDefaultActions :: Maybe [Text]
- statelessFragmentDefaultActions :: Maybe [Text]
- statelessRuleGroups :: Maybe [StatelessRuleGroup]
- newNetworkFirewallPolicyDescription :: NetworkFirewallPolicyDescription
- networkFirewallPolicyDescription_statefulDefaultActions :: Lens' NetworkFirewallPolicyDescription (Maybe [Text])
- networkFirewallPolicyDescription_statefulEngineOptions :: Lens' NetworkFirewallPolicyDescription (Maybe StatefulEngineOptions)
- networkFirewallPolicyDescription_statefulRuleGroups :: Lens' NetworkFirewallPolicyDescription (Maybe [StatefulRuleGroup])
- networkFirewallPolicyDescription_statelessCustomActions :: Lens' NetworkFirewallPolicyDescription (Maybe [Text])
- networkFirewallPolicyDescription_statelessDefaultActions :: Lens' NetworkFirewallPolicyDescription (Maybe [Text])
- networkFirewallPolicyDescription_statelessFragmentDefaultActions :: Lens' NetworkFirewallPolicyDescription (Maybe [Text])
- networkFirewallPolicyDescription_statelessRuleGroups :: Lens' NetworkFirewallPolicyDescription (Maybe [StatelessRuleGroup])
Documentation
data NetworkFirewallPolicyDescription Source #
The definition of the Network Firewall firewall policy.
See: newNetworkFirewallPolicyDescription
smart constructor.
NetworkFirewallPolicyDescription' | |
|
Instances
newNetworkFirewallPolicyDescription :: NetworkFirewallPolicyDescription Source #
Create a value of NetworkFirewallPolicyDescription
with all optional fields omitted.
Use generic-lens or optics to modify other optional fields.
The following record fields are available, with the corresponding lenses provided for backwards compatibility:
$sel:statefulDefaultActions:NetworkFirewallPolicyDescription'
, networkFirewallPolicyDescription_statefulDefaultActions
- The default actions to take on a packet that doesn't match any stateful
rules. The stateful default action is optional, and is only valid when
using the strict rule order.
Valid values of the stateful default action:
- aws:drop_strict
- aws:drop_established
- aws:alert_strict
- aws:alert_established
$sel:statefulEngineOptions:NetworkFirewallPolicyDescription'
, networkFirewallPolicyDescription_statefulEngineOptions
- Additional options governing how Network Firewall handles stateful
rules. The stateful rule groups that you use in your policy must have
stateful rule options settings that are compatible with these settings.
$sel:statefulRuleGroups:NetworkFirewallPolicyDescription'
, networkFirewallPolicyDescription_statefulRuleGroups
- The stateful rule groups that are used in the Network Firewall firewall
policy.
$sel:statelessCustomActions:NetworkFirewallPolicyDescription'
, networkFirewallPolicyDescription_statelessCustomActions
- Names of custom actions that are available for use in the stateless
default actions settings.
$sel:statelessDefaultActions:NetworkFirewallPolicyDescription'
, networkFirewallPolicyDescription_statelessDefaultActions
- The actions to take on packets that don't match any of the stateless
rule groups.
$sel:statelessFragmentDefaultActions:NetworkFirewallPolicyDescription'
, networkFirewallPolicyDescription_statelessFragmentDefaultActions
- The actions to take on packet fragments that don't match any of the
stateless rule groups.
$sel:statelessRuleGroups:NetworkFirewallPolicyDescription'
, networkFirewallPolicyDescription_statelessRuleGroups
- The stateless rule groups that are used in the Network Firewall firewall
policy.
networkFirewallPolicyDescription_statefulDefaultActions :: Lens' NetworkFirewallPolicyDescription (Maybe [Text]) Source #
The default actions to take on a packet that doesn't match any stateful rules. The stateful default action is optional, and is only valid when using the strict rule order.
Valid values of the stateful default action:
- aws:drop_strict
- aws:drop_established
- aws:alert_strict
- aws:alert_established
networkFirewallPolicyDescription_statefulEngineOptions :: Lens' NetworkFirewallPolicyDescription (Maybe StatefulEngineOptions) Source #
Additional options governing how Network Firewall handles stateful rules. The stateful rule groups that you use in your policy must have stateful rule options settings that are compatible with these settings.
networkFirewallPolicyDescription_statefulRuleGroups :: Lens' NetworkFirewallPolicyDescription (Maybe [StatefulRuleGroup]) Source #
The stateful rule groups that are used in the Network Firewall firewall policy.
networkFirewallPolicyDescription_statelessCustomActions :: Lens' NetworkFirewallPolicyDescription (Maybe [Text]) Source #
Names of custom actions that are available for use in the stateless default actions settings.
networkFirewallPolicyDescription_statelessDefaultActions :: Lens' NetworkFirewallPolicyDescription (Maybe [Text]) Source #
The actions to take on packets that don't match any of the stateless rule groups.
networkFirewallPolicyDescription_statelessFragmentDefaultActions :: Lens' NetworkFirewallPolicyDescription (Maybe [Text]) Source #
The actions to take on packet fragments that don't match any of the stateless rule groups.
networkFirewallPolicyDescription_statelessRuleGroups :: Lens' NetworkFirewallPolicyDescription (Maybe [StatelessRuleGroup]) Source #
The stateless rule groups that are used in the Network Firewall firewall policy.