AWS SDK for C++  1.9.67
AWS SDK for C++
Public Member Functions | List of all members
Aws::NetworkFirewall::Model::FirewallPolicy Class Reference

#include <FirewallPolicy.h>

Public Member Functions

 FirewallPolicy ()
 
 FirewallPolicy (Aws::Utils::Json::JsonView jsonValue)
 
FirewallPolicyoperator= (Aws::Utils::Json::JsonView jsonValue)
 
Aws::Utils::Json::JsonValue Jsonize () const
 
const Aws::Vector< StatelessRuleGroupReference > & GetStatelessRuleGroupReferences () const
 
bool StatelessRuleGroupReferencesHasBeenSet () const
 
void SetStatelessRuleGroupReferences (const Aws::Vector< StatelessRuleGroupReference > &value)
 
void SetStatelessRuleGroupReferences (Aws::Vector< StatelessRuleGroupReference > &&value)
 
FirewallPolicyWithStatelessRuleGroupReferences (const Aws::Vector< StatelessRuleGroupReference > &value)
 
FirewallPolicyWithStatelessRuleGroupReferences (Aws::Vector< StatelessRuleGroupReference > &&value)
 
FirewallPolicyAddStatelessRuleGroupReferences (const StatelessRuleGroupReference &value)
 
FirewallPolicyAddStatelessRuleGroupReferences (StatelessRuleGroupReference &&value)
 
const Aws::Vector< Aws::String > & GetStatelessDefaultActions () const
 
bool StatelessDefaultActionsHasBeenSet () const
 
void SetStatelessDefaultActions (const Aws::Vector< Aws::String > &value)
 
void SetStatelessDefaultActions (Aws::Vector< Aws::String > &&value)
 
FirewallPolicyWithStatelessDefaultActions (const Aws::Vector< Aws::String > &value)
 
FirewallPolicyWithStatelessDefaultActions (Aws::Vector< Aws::String > &&value)
 
FirewallPolicyAddStatelessDefaultActions (const Aws::String &value)
 
FirewallPolicyAddStatelessDefaultActions (Aws::String &&value)
 
FirewallPolicyAddStatelessDefaultActions (const char *value)
 
const Aws::Vector< Aws::String > & GetStatelessFragmentDefaultActions () const
 
bool StatelessFragmentDefaultActionsHasBeenSet () const
 
void SetStatelessFragmentDefaultActions (const Aws::Vector< Aws::String > &value)
 
void SetStatelessFragmentDefaultActions (Aws::Vector< Aws::String > &&value)
 
FirewallPolicyWithStatelessFragmentDefaultActions (const Aws::Vector< Aws::String > &value)
 
FirewallPolicyWithStatelessFragmentDefaultActions (Aws::Vector< Aws::String > &&value)
 
FirewallPolicyAddStatelessFragmentDefaultActions (const Aws::String &value)
 
FirewallPolicyAddStatelessFragmentDefaultActions (Aws::String &&value)
 
FirewallPolicyAddStatelessFragmentDefaultActions (const char *value)
 
const Aws::Vector< CustomAction > & GetStatelessCustomActions () const
 
bool StatelessCustomActionsHasBeenSet () const
 
void SetStatelessCustomActions (const Aws::Vector< CustomAction > &value)
 
void SetStatelessCustomActions (Aws::Vector< CustomAction > &&value)
 
FirewallPolicyWithStatelessCustomActions (const Aws::Vector< CustomAction > &value)
 
FirewallPolicyWithStatelessCustomActions (Aws::Vector< CustomAction > &&value)
 
FirewallPolicyAddStatelessCustomActions (const CustomAction &value)
 
FirewallPolicyAddStatelessCustomActions (CustomAction &&value)
 
const Aws::Vector< StatefulRuleGroupReference > & GetStatefulRuleGroupReferences () const
 
bool StatefulRuleGroupReferencesHasBeenSet () const
 
void SetStatefulRuleGroupReferences (const Aws::Vector< StatefulRuleGroupReference > &value)
 
void SetStatefulRuleGroupReferences (Aws::Vector< StatefulRuleGroupReference > &&value)
 
FirewallPolicyWithStatefulRuleGroupReferences (const Aws::Vector< StatefulRuleGroupReference > &value)
 
FirewallPolicyWithStatefulRuleGroupReferences (Aws::Vector< StatefulRuleGroupReference > &&value)
 
FirewallPolicyAddStatefulRuleGroupReferences (const StatefulRuleGroupReference &value)
 
FirewallPolicyAddStatefulRuleGroupReferences (StatefulRuleGroupReference &&value)
 

Detailed Description

The firewall policy defines the behavior of a firewall using a collection of stateless and stateful rule groups and other settings. You can use one firewall policy for multiple firewalls.

This, along with FirewallPolicyResponse, define the policy. You can retrieve all objects for a firewall policy by calling DescribeFirewallPolicy.

See Also:

AWS API Reference

Definition at line 40 of file FirewallPolicy.h.

Constructor & Destructor Documentation

◆ FirewallPolicy() [1/2]

Aws::NetworkFirewall::Model::FirewallPolicy::FirewallPolicy ( )

◆ FirewallPolicy() [2/2]

Aws::NetworkFirewall::Model::FirewallPolicy::FirewallPolicy ( Aws::Utils::Json::JsonView  jsonValue)

Member Function Documentation

◆ AddStatefulRuleGroupReferences() [1/2]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::AddStatefulRuleGroupReferences ( const StatefulRuleGroupReference value)
inline

References to the stateless rule groups that are used in the policy. These define the inspection criteria in stateful rules.

Definition at line 466 of file FirewallPolicy.h.

◆ AddStatefulRuleGroupReferences() [2/2]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::AddStatefulRuleGroupReferences ( StatefulRuleGroupReference &&  value)
inline

References to the stateless rule groups that are used in the policy. These define the inspection criteria in stateful rules.

Definition at line 472 of file FirewallPolicy.h.

◆ AddStatelessCustomActions() [1/2]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::AddStatelessCustomActions ( const CustomAction value)
inline

The custom action definitions that are available for use in the firewall policy's StatelessDefaultActions setting. You name each custom action that you define, and then you can use it by name in your default actions specifications.

Definition at line 415 of file FirewallPolicy.h.

◆ AddStatelessCustomActions() [2/2]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::AddStatelessCustomActions ( CustomAction &&  value)
inline

The custom action definitions that are available for use in the firewall policy's StatelessDefaultActions setting. You name each custom action that you define, and then you can use it by name in your default actions specifications.

Definition at line 423 of file FirewallPolicy.h.

◆ AddStatelessDefaultActions() [1/3]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::AddStatelessDefaultActions ( Aws::String &&  value)
inline

The actions to take on a packet if it doesn't match any of the stateless rules in the policy. If you want non-matching packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 208 of file FirewallPolicy.h.

◆ AddStatelessDefaultActions() [2/3]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::AddStatelessDefaultActions ( const Aws::String value)
inline

The actions to take on a packet if it doesn't match any of the stateless rules in the policy. If you want non-matching packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 194 of file FirewallPolicy.h.

◆ AddStatelessDefaultActions() [3/3]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::AddStatelessDefaultActions ( const char *  value)
inline

The actions to take on a packet if it doesn't match any of the stateless rules in the policy. If you want non-matching packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 222 of file FirewallPolicy.h.

◆ AddStatelessFragmentDefaultActions() [1/3]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::AddStatelessFragmentDefaultActions ( Aws::String &&  value)
inline

The actions to take on a fragmented UDP packet if it doesn't match any of the stateless rules in the policy. Network Firewall only manages UDP packet fragments and silently drops packet fragments for other protocols. If you want non-matching fragmented UDP packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 343 of file FirewallPolicy.h.

◆ AddStatelessFragmentDefaultActions() [2/3]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::AddStatelessFragmentDefaultActions ( const Aws::String value)
inline

The actions to take on a fragmented UDP packet if it doesn't match any of the stateless rules in the policy. Network Firewall only manages UDP packet fragments and silently drops packet fragments for other protocols. If you want non-matching fragmented UDP packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 328 of file FirewallPolicy.h.

◆ AddStatelessFragmentDefaultActions() [3/3]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::AddStatelessFragmentDefaultActions ( const char *  value)
inline

The actions to take on a fragmented UDP packet if it doesn't match any of the stateless rules in the policy. Network Firewall only manages UDP packet fragments and silently drops packet fragments for other protocols. If you want non-matching fragmented UDP packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 358 of file FirewallPolicy.h.

◆ AddStatelessRuleGroupReferences() [1/2]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::AddStatelessRuleGroupReferences ( const StatelessRuleGroupReference value)
inline

References to the stateless rule groups that are used in the policy. These define the matching criteria in stateless rules.

Definition at line 89 of file FirewallPolicy.h.

◆ AddStatelessRuleGroupReferences() [2/2]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::AddStatelessRuleGroupReferences ( StatelessRuleGroupReference &&  value)
inline

References to the stateless rule groups that are used in the policy. These define the matching criteria in stateless rules.

Definition at line 95 of file FirewallPolicy.h.

◆ GetStatefulRuleGroupReferences()

const Aws::Vector<StatefulRuleGroupReference>& Aws::NetworkFirewall::Model::FirewallPolicy::GetStatefulRuleGroupReferences ( ) const
inline

References to the stateless rule groups that are used in the policy. These define the inspection criteria in stateful rules.

Definition at line 430 of file FirewallPolicy.h.

◆ GetStatelessCustomActions()

const Aws::Vector<CustomAction>& Aws::NetworkFirewall::Model::FirewallPolicy::GetStatelessCustomActions ( ) const
inline

The custom action definitions that are available for use in the firewall policy's StatelessDefaultActions setting. You name each custom action that you define, and then you can use it by name in your default actions specifications.

Definition at line 367 of file FirewallPolicy.h.

◆ GetStatelessDefaultActions()

const Aws::Vector<Aws::String>& Aws::NetworkFirewall::Model::FirewallPolicy::GetStatelessDefaultActions ( ) const
inline

The actions to take on a packet if it doesn't match any of the stateless rules in the policy. If you want non-matching packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 110 of file FirewallPolicy.h.

◆ GetStatelessFragmentDefaultActions()

const Aws::Vector<Aws::String>& Aws::NetworkFirewall::Model::FirewallPolicy::GetStatelessFragmentDefaultActions ( ) const
inline

The actions to take on a fragmented UDP packet if it doesn't match any of the stateless rules in the policy. Network Firewall only manages UDP packet fragments and silently drops packet fragments for other protocols. If you want non-matching fragmented UDP packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 238 of file FirewallPolicy.h.

◆ GetStatelessRuleGroupReferences()

const Aws::Vector<StatelessRuleGroupReference>& Aws::NetworkFirewall::Model::FirewallPolicy::GetStatelessRuleGroupReferences ( ) const
inline

References to the stateless rule groups that are used in the policy. These define the matching criteria in stateless rules.

Definition at line 53 of file FirewallPolicy.h.

◆ Jsonize()

Aws::Utils::Json::JsonValue Aws::NetworkFirewall::Model::FirewallPolicy::Jsonize ( ) const

◆ operator=()

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::operator= ( Aws::Utils::Json::JsonView  jsonValue)

◆ SetStatefulRuleGroupReferences() [1/2]

void Aws::NetworkFirewall::Model::FirewallPolicy::SetStatefulRuleGroupReferences ( Aws::Vector< StatefulRuleGroupReference > &&  value)
inline

References to the stateless rule groups that are used in the policy. These define the inspection criteria in stateful rules.

Definition at line 448 of file FirewallPolicy.h.

◆ SetStatefulRuleGroupReferences() [2/2]

void Aws::NetworkFirewall::Model::FirewallPolicy::SetStatefulRuleGroupReferences ( const Aws::Vector< StatefulRuleGroupReference > &  value)
inline

References to the stateless rule groups that are used in the policy. These define the inspection criteria in stateful rules.

Definition at line 442 of file FirewallPolicy.h.

◆ SetStatelessCustomActions() [1/2]

void Aws::NetworkFirewall::Model::FirewallPolicy::SetStatelessCustomActions ( Aws::Vector< CustomAction > &&  value)
inline

The custom action definitions that are available for use in the firewall policy's StatelessDefaultActions setting. You name each custom action that you define, and then you can use it by name in your default actions specifications.

Definition at line 391 of file FirewallPolicy.h.

◆ SetStatelessCustomActions() [2/2]

void Aws::NetworkFirewall::Model::FirewallPolicy::SetStatelessCustomActions ( const Aws::Vector< CustomAction > &  value)
inline

The custom action definitions that are available for use in the firewall policy's StatelessDefaultActions setting. You name each custom action that you define, and then you can use it by name in your default actions specifications.

Definition at line 383 of file FirewallPolicy.h.

◆ SetStatelessDefaultActions() [1/2]

void Aws::NetworkFirewall::Model::FirewallPolicy::SetStatelessDefaultActions ( Aws::Vector< Aws::String > &&  value)
inline

The actions to take on a packet if it doesn't match any of the stateless rules in the policy. If you want non-matching packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 152 of file FirewallPolicy.h.

◆ SetStatelessDefaultActions() [2/2]

void Aws::NetworkFirewall::Model::FirewallPolicy::SetStatelessDefaultActions ( const Aws::Vector< Aws::String > &  value)
inline

The actions to take on a packet if it doesn't match any of the stateless rules in the policy. If you want non-matching packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 138 of file FirewallPolicy.h.

◆ SetStatelessFragmentDefaultActions() [1/2]

void Aws::NetworkFirewall::Model::FirewallPolicy::SetStatelessFragmentDefaultActions ( Aws::Vector< Aws::String > &&  value)
inline

The actions to take on a fragmented UDP packet if it doesn't match any of the stateless rules in the policy. Network Firewall only manages UDP packet fragments and silently drops packet fragments for other protocols. If you want non-matching fragmented UDP packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 283 of file FirewallPolicy.h.

◆ SetStatelessFragmentDefaultActions() [2/2]

void Aws::NetworkFirewall::Model::FirewallPolicy::SetStatelessFragmentDefaultActions ( const Aws::Vector< Aws::String > &  value)
inline

The actions to take on a fragmented UDP packet if it doesn't match any of the stateless rules in the policy. Network Firewall only manages UDP packet fragments and silently drops packet fragments for other protocols. If you want non-matching fragmented UDP packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 268 of file FirewallPolicy.h.

◆ SetStatelessRuleGroupReferences() [1/2]

void Aws::NetworkFirewall::Model::FirewallPolicy::SetStatelessRuleGroupReferences ( Aws::Vector< StatelessRuleGroupReference > &&  value)
inline

References to the stateless rule groups that are used in the policy. These define the matching criteria in stateless rules.

Definition at line 71 of file FirewallPolicy.h.

◆ SetStatelessRuleGroupReferences() [2/2]

void Aws::NetworkFirewall::Model::FirewallPolicy::SetStatelessRuleGroupReferences ( const Aws::Vector< StatelessRuleGroupReference > &  value)
inline

References to the stateless rule groups that are used in the policy. These define the matching criteria in stateless rules.

Definition at line 65 of file FirewallPolicy.h.

◆ StatefulRuleGroupReferencesHasBeenSet()

bool Aws::NetworkFirewall::Model::FirewallPolicy::StatefulRuleGroupReferencesHasBeenSet ( ) const
inline

References to the stateless rule groups that are used in the policy. These define the inspection criteria in stateful rules.

Definition at line 436 of file FirewallPolicy.h.

◆ StatelessCustomActionsHasBeenSet()

bool Aws::NetworkFirewall::Model::FirewallPolicy::StatelessCustomActionsHasBeenSet ( ) const
inline

The custom action definitions that are available for use in the firewall policy's StatelessDefaultActions setting. You name each custom action that you define, and then you can use it by name in your default actions specifications.

Definition at line 375 of file FirewallPolicy.h.

◆ StatelessDefaultActionsHasBeenSet()

bool Aws::NetworkFirewall::Model::FirewallPolicy::StatelessDefaultActionsHasBeenSet ( ) const
inline

The actions to take on a packet if it doesn't match any of the stateless rules in the policy. If you want non-matching packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 124 of file FirewallPolicy.h.

◆ StatelessFragmentDefaultActionsHasBeenSet()

bool Aws::NetworkFirewall::Model::FirewallPolicy::StatelessFragmentDefaultActionsHasBeenSet ( ) const
inline

The actions to take on a fragmented UDP packet if it doesn't match any of the stateless rules in the policy. Network Firewall only manages UDP packet fragments and silently drops packet fragments for other protocols. If you want non-matching fragmented UDP packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 253 of file FirewallPolicy.h.

◆ StatelessRuleGroupReferencesHasBeenSet()

bool Aws::NetworkFirewall::Model::FirewallPolicy::StatelessRuleGroupReferencesHasBeenSet ( ) const
inline

References to the stateless rule groups that are used in the policy. These define the matching criteria in stateless rules.

Definition at line 59 of file FirewallPolicy.h.

◆ WithStatefulRuleGroupReferences() [1/2]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::WithStatefulRuleGroupReferences ( Aws::Vector< StatefulRuleGroupReference > &&  value)
inline

References to the stateless rule groups that are used in the policy. These define the inspection criteria in stateful rules.

Definition at line 460 of file FirewallPolicy.h.

◆ WithStatefulRuleGroupReferences() [2/2]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::WithStatefulRuleGroupReferences ( const Aws::Vector< StatefulRuleGroupReference > &  value)
inline

References to the stateless rule groups that are used in the policy. These define the inspection criteria in stateful rules.

Definition at line 454 of file FirewallPolicy.h.

◆ WithStatelessCustomActions() [1/2]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::WithStatelessCustomActions ( Aws::Vector< CustomAction > &&  value)
inline

The custom action definitions that are available for use in the firewall policy's StatelessDefaultActions setting. You name each custom action that you define, and then you can use it by name in your default actions specifications.

Definition at line 407 of file FirewallPolicy.h.

◆ WithStatelessCustomActions() [2/2]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::WithStatelessCustomActions ( const Aws::Vector< CustomAction > &  value)
inline

The custom action definitions that are available for use in the firewall policy's StatelessDefaultActions setting. You name each custom action that you define, and then you can use it by name in your default actions specifications.

Definition at line 399 of file FirewallPolicy.h.

◆ WithStatelessDefaultActions() [1/2]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::WithStatelessDefaultActions ( Aws::Vector< Aws::String > &&  value)
inline

The actions to take on a packet if it doesn't match any of the stateless rules in the policy. If you want non-matching packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 180 of file FirewallPolicy.h.

◆ WithStatelessDefaultActions() [2/2]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::WithStatelessDefaultActions ( const Aws::Vector< Aws::String > &  value)
inline

The actions to take on a packet if it doesn't match any of the stateless rules in the policy. If you want non-matching packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 166 of file FirewallPolicy.h.

◆ WithStatelessFragmentDefaultActions() [1/2]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::WithStatelessFragmentDefaultActions ( Aws::Vector< Aws::String > &&  value)
inline

The actions to take on a fragmented UDP packet if it doesn't match any of the stateless rules in the policy. Network Firewall only manages UDP packet fragments and silently drops packet fragments for other protocols. If you want non-matching fragmented UDP packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 313 of file FirewallPolicy.h.

◆ WithStatelessFragmentDefaultActions() [2/2]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::WithStatelessFragmentDefaultActions ( const Aws::Vector< Aws::String > &  value)
inline

The actions to take on a fragmented UDP packet if it doesn't match any of the stateless rules in the policy. Network Firewall only manages UDP packet fragments and silently drops packet fragments for other protocols. If you want non-matching fragmented UDP packets to be forwarded for stateful inspection, specify aws:forward_to_sfe.

You must specify one of the standard actions: aws:pass, aws:drop, or aws:forward_to_sfe. In addition, you can specify custom actions that are compatible with your standard section choice.

For example, you could specify ["aws:pass"] or you could specify ["aws:pass", “customActionName”]. For information about compatibility, see the custom action descriptions under CustomAction.

Definition at line 298 of file FirewallPolicy.h.

◆ WithStatelessRuleGroupReferences() [1/2]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::WithStatelessRuleGroupReferences ( Aws::Vector< StatelessRuleGroupReference > &&  value)
inline

References to the stateless rule groups that are used in the policy. These define the matching criteria in stateless rules.

Definition at line 83 of file FirewallPolicy.h.

◆ WithStatelessRuleGroupReferences() [2/2]

FirewallPolicy& Aws::NetworkFirewall::Model::FirewallPolicy::WithStatelessRuleGroupReferences ( const Aws::Vector< StatelessRuleGroupReference > &  value)
inline

References to the stateless rule groups that are used in the policy. These define the matching criteria in stateless rules.

Definition at line 77 of file FirewallPolicy.h.


The documentation for this class was generated from the following file: