interface NetworkAclCommonPolicyProperty
| Language | Type name |
|---|---|
 .NET | Amazon.CDK.AWS.FMS.CfnPolicy.NetworkAclCommonPolicyProperty |
 Go | github.com/aws/aws-cdk-go/awscdk/v2/awsfms#CfnPolicy_NetworkAclCommonPolicyProperty |
 Java | software.amazon.awscdk.services.fms.CfnPolicy.NetworkAclCommonPolicyProperty |
 Python | aws_cdk.aws_fms.CfnPolicy.NetworkAclCommonPolicyProperty |
 TypeScript | aws-cdk-lib » aws_fms » CfnPolicy » NetworkAclCommonPolicyProperty |
Defines a Firewall Manager network ACL policy.
This is used in the PolicyOption of a SecurityServicePolicyData for a Policy , when the SecurityServicePolicyData type is set to NETWORK_ACL_COMMON .
For information about network ACLs, see Control traffic to subnets using network ACLs in the Amazon Virtual Private Cloud User Guide .
Example
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_fms as fms } from 'aws-cdk-lib';
const networkAclCommonPolicyProperty: fms.CfnPolicy.NetworkAclCommonPolicyProperty = {
networkAclEntrySet: {
forceRemediateForFirstEntries: false,
forceRemediateForLastEntries: false,
// the properties below are optional
firstEntries: [{
egress: false,
protocol: 'protocol',
ruleAction: 'ruleAction',
// the properties below are optional
cidrBlock: 'cidrBlock',
icmpTypeCode: {
code: 123,
type: 123,
},
ipv6CidrBlock: 'ipv6CidrBlock',
portRange: {
from: 123,
to: 123,
},
}],
lastEntries: [{
egress: false,
protocol: 'protocol',
ruleAction: 'ruleAction',
// the properties below are optional
cidrBlock: 'cidrBlock',
icmpTypeCode: {
code: 123,
type: 123,
},
ipv6CidrBlock: 'ipv6CidrBlock',
portRange: {
from: 123,
to: 123,
},
}],
},
};
Properties
| Name | Type | Description |
|---|---|---|
| network | IResolvable | Network | The definition of the first and last rules for the network ACL policy. |
networkAclEntrySet
Type:
IResolvable | Network
The definition of the first and last rules for the network ACL policy.