interface CfnFirewallPolicyProps
| Language | Type name |
|---|---|
 .NET | Amazon.CDK.AWS.NetworkFirewall.CfnFirewallPolicyProps |
 Java | software.amazon.awscdk.services.networkfirewall.CfnFirewallPolicyProps |
 Python | aws_cdk.aws_networkfirewall.CfnFirewallPolicyProps |
 TypeScript | @aws-cdk/aws-networkfirewall » CfnFirewallPolicyProps |
Properties for defining a CfnFirewallPolicy.
Example
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import * as networkfirewall from '@aws-cdk/aws-networkfirewall';
const cfnFirewallPolicyProps: networkfirewall.CfnFirewallPolicyProps = {
firewallPolicy: {
statelessDefaultActions: ['statelessDefaultActions'],
statelessFragmentDefaultActions: ['statelessFragmentDefaultActions'],
// the properties below are optional
policyVariables: {
ruleVariables: {
ruleVariablesKey: {
definition: ['definition'],
},
},
},
statefulDefaultActions: ['statefulDefaultActions'],
statefulEngineOptions: {
ruleOrder: 'ruleOrder',
streamExceptionPolicy: 'streamExceptionPolicy',
},
statefulRuleGroupReferences: [{
resourceArn: 'resourceArn',
// the properties below are optional
override: {
action: 'action',
},
priority: 123,
}],
statelessCustomActions: [{
actionDefinition: {
publishMetricAction: {
dimensions: [{
value: 'value',
}],
},
},
actionName: 'actionName',
}],
statelessRuleGroupReferences: [{
priority: 123,
resourceArn: 'resourceArn',
}],
},
firewallPolicyName: 'firewallPolicyName',
// the properties below are optional
description: 'description',
tags: [{
key: 'key',
value: 'value',
}],
};
Properties
| Name | Type | Description |
|---|---|---|
| firewall | IResolvable | Firewall | The traffic filtering behavior of a firewall policy, defined in a collection of stateless and stateful rule groups and other settings. |
| firewall | string | The descriptive name of the firewall policy. |
| description? | string | A description of the firewall policy. |
| tags? | Cfn[] | An array of key-value pairs to apply to this resource. |
firewallPolicy
Type:
IResolvable | Firewall
The traffic filtering behavior of a firewall policy, defined in a collection of stateless and stateful rule groups and other settings.
firewallPolicyName
Type:
string
The descriptive name of the firewall policy.
You can't change the name of a firewall policy after you create it.
description?
Type:
string
(optional)
A description of the firewall policy.
tags?
Type:
Cfn[]
(optional)
An array of key-value pairs to apply to this resource.
For more information, see Tag .