FirewallRuleGroupAssociationOptions

class aws_cdk.aws_route53resolver.FirewallRuleGroupAssociationOptions(*, priority, vpc, mutation_protection=None, name=None)

Bases: object

(experimental) Options for a Firewall Rule Group Association.

Parameters:
  • priority (Union[int, float]) – (experimental) The setting that determines the processing order of the rule group among the rule groups that are associated with a single VPC. DNS Firewall filters VPC traffic starting from rule group with the lowest numeric priority setting. This value must be greater than 100 and less than 9,000

  • vpc (IVpc) – (experimental) The VPC that to associate with the rule group.

  • mutation_protection (Optional[bool]) – (experimental) If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections. Default: true

  • name (Optional[str]) – (experimental) The name of the association. Default: - a CloudFormation generated name

Stability:

experimental

ExampleMetadata:

infused

Example:

import aws_cdk.aws_ec2 as ec2

# rule_group: route53resolver.FirewallRuleGroup
# my_vpc: ec2.Vpc


rule_group.associate("Association",
    priority=101,
    vpc=my_vpc
)

Attributes

mutation_protection

(experimental) If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections.

Default:

true

Stability:

experimental

name

(experimental) The name of the association.

Default:
  • a CloudFormation generated name

Stability:

experimental

priority

(experimental) The setting that determines the processing order of the rule group among the rule groups that are associated with a single VPC.

DNS Firewall filters VPC traffic starting from rule group with the lowest numeric priority setting.

This value must be greater than 100 and less than 9,000

Stability:

experimental

vpc

(experimental) The VPC that to associate with the rule group.

Stability:

experimental