AWS::NetworkFirewall::RuleGroup RuleGroup
The object that defines the rules in a rule group.
AWS Network Firewall uses a rule group to inspect and control network traffic. You define stateless rule groups to inspect individual packets and you define stateful rule groups to inspect packets in the context of their traffic flow.
To use a rule group, you include it by reference in an Network Firewall firewall policy, then you use the policy in a firewall. You can reference a rule group from more than one firewall policy, and you can use a firewall policy in more than one firewall.
Syntax
To declare this entity in your AWS CloudFormation template, use the following syntax:
JSON
{ "ReferenceSets" :ReferenceSets, "RulesSource" :RulesSource, "RuleVariables" :RuleVariables, "StatefulRuleOptions" :StatefulRuleOptions}
YAML
ReferenceSets:ReferenceSetsRulesSource:RulesSourceRuleVariables:RuleVariablesStatefulRuleOptions:StatefulRuleOptions
Properties
ReferenceSets-
The reference sets for the stateful rule group.
Required: No
Type: ReferenceSets
Update requires: No interruption
RulesSource-
The stateful rules or stateless rules for the rule group.
Required: Yes
Type: RulesSource
Update requires: No interruption
RuleVariables-
Settings that are available for use in the rules in the rule group. You can only use these for stateful rule groups.
Required: No
Type: RuleVariables
Update requires: No interruption
StatefulRuleOptions-
Additional options governing how Network Firewall handles stateful rules. The policies where you use your stateful rule group must have stateful rule options settings that are compatible with these settings. Some limitations apply; for more information, see Strict evaluation order in the AWS Network Firewall Developer Guide.
Required: No
Type: StatefulRuleOptions
Update requires: No interruption
