Interface NetworkFirewallClient

All Superinterfaces:

AutoCloseable, AwsClient, SdkAutoCloseable, SdkClient

@Generated("software.amazon.awssdk:codegen")
@ThreadSafe
public interface NetworkFirewallClient
extends AwsClient

Service client for accessing Network Firewall. This can be created using the static builder() method.

This is the API Reference for Network Firewall. This guide is for developers who need detailed information about the Network Firewall API actions, data types, and errors.

• The REST API requires you to handle connection details, such as calculating signatures, handling request retries, and error handling. For general information about using the Amazon Web Services REST APIs, see Amazon Web Services APIs.

  To access Network Firewall using the REST API endpoint: https://network-firewall.<region>.amazonaws.com

• Alternatively, you can use one of the Amazon Web Services SDKs to access an API that's tailored to the programming language or platform that you're using. For more information, see Amazon Web Services SDKs.

• For descriptions of Network Firewall features, including and step-by-step instructions on how to use them through the Network Firewall console, see the Network Firewall Developer Guide.

Network Firewall is a stateful, managed, network firewall and intrusion detection and prevention service for Amazon Virtual Private Cloud (Amazon VPC). With Network Firewall, you can filter traffic at the perimeter of your VPC. This includes filtering traffic going to and coming from an internet gateway, NAT gateway, or over VPN or Direct Connect. Network Firewall uses rules that are compatible with Suricata, a free, open source network analysis and threat detection engine. Network Firewall supports Suricata version 6.0.9. For information about Suricata, see the Suricata website.

You can use Network Firewall to monitor and protect your VPC traffic in a number of ways. The following are just a few examples:

• Allow domains or IP addresses for known Amazon Web Services service endpoints, such as Amazon S3, and block all other forms of traffic.

• Use custom lists of known bad domains to limit the types of domain names that your applications can access.

• Perform deep packet inspection on traffic entering or leaving your VPC.

• Use stateful protocol detection to filter protocols like HTTPS, regardless of the port used.

To enable Network Firewall for your VPCs, you perform steps in both Amazon VPC and in Network Firewall. For information about using Amazon VPC, see Amazon VPC User Guide.

To start using Network Firewall, do the following:

1. (Optional) If you don't already have a VPC that you want to protect, create it in Amazon VPC.

2. In Amazon VPC, in each Availability Zone where you want to have a firewall endpoint, create a subnet for the sole use of Network Firewall.

3. In Network Firewall, create stateless and stateful rule groups, to define the components of the network traffic filtering behavior that you want your firewall to have.

4. In Network Firewall, create a firewall policy that uses your rule groups and specifies additional default traffic filtering behavior.

5. In Network Firewall, create a firewall and specify your new firewall policy and VPC subnets. Network Firewall creates a firewall endpoint in each subnet that you specify, with the behavior that's defined in the firewall policy.

6. In Amazon VPC, use ingress routing enhancements to route traffic through the new firewall endpoints.

Field Summary

Fields

Modifier and Type	Field	Description
static final String	SERVICE_METADATA_ID	Value for looking up the service's metadata from the ServiceMetadataProvider.
static final String	SERVICE_NAME

Method Summary

Modifier and Type	Method	Description
default AssociateFirewallPolicyResponse	associateFirewallPolicy(Consumer<AssociateFirewallPolicyRequest.Builder> associateFirewallPolicyRequest)	Associates a FirewallPolicy to a Firewall.
default AssociateFirewallPolicyResponse	associateFirewallPolicy(AssociateFirewallPolicyRequest associateFirewallPolicyRequest)	Associates a FirewallPolicy to a Firewall.
default AssociateSubnetsResponse	associateSubnets(Consumer<AssociateSubnetsRequest.Builder> associateSubnetsRequest)	Associates the specified subnets in the Amazon VPC to the firewall.
default AssociateSubnetsResponse	associateSubnets(AssociateSubnetsRequest associateSubnetsRequest)	Associates the specified subnets in the Amazon VPC to the firewall.
static NetworkFirewallClientBuilder	builder()	Create a builder that can be used to configure and create a NetworkFirewallClient.
static NetworkFirewallClient	create()	Create a NetworkFirewallClient with the region loaded from the DefaultAwsRegionProviderChain and credentials loaded from the DefaultCredentialsProvider.
default CreateFirewallResponse	createFirewall(Consumer<CreateFirewallRequest.Builder> createFirewallRequest)	Creates an Network Firewall Firewall and accompanying FirewallStatus for a VPC.
default CreateFirewallResponse	createFirewall(CreateFirewallRequest createFirewallRequest)	Creates an Network Firewall Firewall and accompanying FirewallStatus for a VPC.
default CreateFirewallPolicyResponse	createFirewallPolicy(Consumer<CreateFirewallPolicyRequest.Builder> createFirewallPolicyRequest)	Creates the firewall policy for the firewall according to the specifications.
default CreateFirewallPolicyResponse	createFirewallPolicy(CreateFirewallPolicyRequest createFirewallPolicyRequest)	Creates the firewall policy for the firewall according to the specifications.
default CreateRuleGroupResponse	createRuleGroup(Consumer<CreateRuleGroupRequest.Builder> createRuleGroupRequest)	Creates the specified stateless or stateful rule group, which includes the rules for network traffic inspection, a capacity setting, and tags.
default CreateRuleGroupResponse	createRuleGroup(CreateRuleGroupRequest createRuleGroupRequest)	Creates the specified stateless or stateful rule group, which includes the rules for network traffic inspection, a capacity setting, and tags.
default CreateTlsInspectionConfigurationResponse	createTLSInspectionConfiguration(Consumer<CreateTlsInspectionConfigurationRequest.Builder> createTlsInspectionConfigurationRequest)	Creates an Network Firewall TLS inspection configuration.
default CreateTlsInspectionConfigurationResponse	createTLSInspectionConfiguration(CreateTlsInspectionConfigurationRequest createTlsInspectionConfigurationRequest)	Creates an Network Firewall TLS inspection configuration.
default DeleteFirewallResponse	deleteFirewall(Consumer<DeleteFirewallRequest.Builder> deleteFirewallRequest)	Deletes the specified Firewall and its FirewallStatus.
default DeleteFirewallResponse	deleteFirewall(DeleteFirewallRequest deleteFirewallRequest)	Deletes the specified Firewall and its FirewallStatus.
default DeleteFirewallPolicyResponse	deleteFirewallPolicy(Consumer<DeleteFirewallPolicyRequest.Builder> deleteFirewallPolicyRequest)	Deletes the specified FirewallPolicy.
default DeleteFirewallPolicyResponse	deleteFirewallPolicy(DeleteFirewallPolicyRequest deleteFirewallPolicyRequest)	Deletes the specified FirewallPolicy.
default DeleteResourcePolicyResponse	deleteResourcePolicy(Consumer<DeleteResourcePolicyRequest.Builder> deleteResourcePolicyRequest)	Deletes a resource policy that you created in a PutResourcePolicy request.
default DeleteResourcePolicyResponse	deleteResourcePolicy(DeleteResourcePolicyRequest deleteResourcePolicyRequest)	Deletes a resource policy that you created in a PutResourcePolicy request.
default DeleteRuleGroupResponse	deleteRuleGroup(Consumer<DeleteRuleGroupRequest.Builder> deleteRuleGroupRequest)	Deletes the specified RuleGroup.
default DeleteRuleGroupResponse	deleteRuleGroup(DeleteRuleGroupRequest deleteRuleGroupRequest)	Deletes the specified RuleGroup.
default DeleteTlsInspectionConfigurationResponse	deleteTLSInspectionConfiguration(Consumer<DeleteTlsInspectionConfigurationRequest.Builder> deleteTlsInspectionConfigurationRequest)	Deletes the specified TLSInspectionConfiguration.
default DeleteTlsInspectionConfigurationResponse	deleteTLSInspectionConfiguration(DeleteTlsInspectionConfigurationRequest deleteTlsInspectionConfigurationRequest)	Deletes the specified TLSInspectionConfiguration.
default DescribeFirewallResponse	describeFirewall(Consumer<DescribeFirewallRequest.Builder> describeFirewallRequest)	Returns the data objects for the specified firewall.
default DescribeFirewallResponse	describeFirewall(DescribeFirewallRequest describeFirewallRequest)	Returns the data objects for the specified firewall.
default DescribeFirewallPolicyResponse	describeFirewallPolicy(Consumer<DescribeFirewallPolicyRequest.Builder> describeFirewallPolicyRequest)	Returns the data objects for the specified firewall policy.
default DescribeFirewallPolicyResponse	describeFirewallPolicy(DescribeFirewallPolicyRequest describeFirewallPolicyRequest)	Returns the data objects for the specified firewall policy.
default DescribeLoggingConfigurationResponse	describeLoggingConfiguration(Consumer<DescribeLoggingConfigurationRequest.Builder> describeLoggingConfigurationRequest)	Returns the logging configuration for the specified firewall.
default DescribeLoggingConfigurationResponse	describeLoggingConfiguration(DescribeLoggingConfigurationRequest describeLoggingConfigurationRequest)	Returns the logging configuration for the specified firewall.
default DescribeResourcePolicyResponse	describeResourcePolicy(Consumer<DescribeResourcePolicyRequest.Builder> describeResourcePolicyRequest)	Retrieves a resource policy that you created in a PutResourcePolicy request.
default DescribeResourcePolicyResponse	describeResourcePolicy(DescribeResourcePolicyRequest describeResourcePolicyRequest)	Retrieves a resource policy that you created in a PutResourcePolicy request.
default DescribeRuleGroupResponse	describeRuleGroup(Consumer<DescribeRuleGroupRequest.Builder> describeRuleGroupRequest)	Returns the data objects for the specified rule group.
default DescribeRuleGroupResponse	describeRuleGroup(DescribeRuleGroupRequest describeRuleGroupRequest)	Returns the data objects for the specified rule group.
default DescribeRuleGroupMetadataResponse	describeRuleGroupMetadata(Consumer<DescribeRuleGroupMetadataRequest.Builder> describeRuleGroupMetadataRequest)	High-level information about a rule group, returned by operations like create and describe.
default DescribeRuleGroupMetadataResponse	describeRuleGroupMetadata(DescribeRuleGroupMetadataRequest describeRuleGroupMetadataRequest)	High-level information about a rule group, returned by operations like create and describe.
default DescribeTlsInspectionConfigurationResponse	describeTLSInspectionConfiguration(Consumer<DescribeTlsInspectionConfigurationRequest.Builder> describeTlsInspectionConfigurationRequest)	Returns the data objects for the specified TLS inspection configuration.
default DescribeTlsInspectionConfigurationResponse	describeTLSInspectionConfiguration(DescribeTlsInspectionConfigurationRequest describeTlsInspectionConfigurationRequest)	Returns the data objects for the specified TLS inspection configuration.
default DisassociateSubnetsResponse	disassociateSubnets(Consumer<DisassociateSubnetsRequest.Builder> disassociateSubnetsRequest)	Removes the specified subnet associations from the firewall.
default DisassociateSubnetsResponse	disassociateSubnets(DisassociateSubnetsRequest disassociateSubnetsRequest)	Removes the specified subnet associations from the firewall.
default ListFirewallPoliciesResponse	listFirewallPolicies(Consumer<ListFirewallPoliciesRequest.Builder> listFirewallPoliciesRequest)	Retrieves the metadata for the firewall policies that you have defined.
default ListFirewallPoliciesResponse	listFirewallPolicies(ListFirewallPoliciesRequest listFirewallPoliciesRequest)	Retrieves the metadata for the firewall policies that you have defined.
default ListFirewallPoliciesIterable	listFirewallPoliciesPaginator(Consumer<ListFirewallPoliciesRequest.Builder> listFirewallPoliciesRequest)	This is a variant of listFirewallPolicies(software.amazon.awssdk.services.networkfirewall.model.ListFirewallPoliciesRequest) operation.
default ListFirewallPoliciesIterable	listFirewallPoliciesPaginator(ListFirewallPoliciesRequest listFirewallPoliciesRequest)	This is a variant of listFirewallPolicies(software.amazon.awssdk.services.networkfirewall.model.ListFirewallPoliciesRequest) operation.
default ListFirewallsResponse	listFirewalls(Consumer<ListFirewallsRequest.Builder> listFirewallsRequest)	Retrieves the metadata for the firewalls that you have defined.
default ListFirewallsResponse	listFirewalls(ListFirewallsRequest listFirewallsRequest)	Retrieves the metadata for the firewalls that you have defined.
default ListFirewallsIterable	listFirewallsPaginator(Consumer<ListFirewallsRequest.Builder> listFirewallsRequest)	This is a variant of listFirewalls(software.amazon.awssdk.services.networkfirewall.model.ListFirewallsRequest) operation.
default ListFirewallsIterable	listFirewallsPaginator(ListFirewallsRequest listFirewallsRequest)	This is a variant of listFirewalls(software.amazon.awssdk.services.networkfirewall.model.ListFirewallsRequest) operation.
default ListRuleGroupsResponse	listRuleGroups(Consumer<ListRuleGroupsRequest.Builder> listRuleGroupsRequest)	Retrieves the metadata for the rule groups that you have defined.
default ListRuleGroupsResponse	listRuleGroups(ListRuleGroupsRequest listRuleGroupsRequest)	Retrieves the metadata for the rule groups that you have defined.
default ListRuleGroupsIterable	listRuleGroupsPaginator(Consumer<ListRuleGroupsRequest.Builder> listRuleGroupsRequest)	This is a variant of listRuleGroups(software.amazon.awssdk.services.networkfirewall.model.ListRuleGroupsRequest) operation.
default ListRuleGroupsIterable	listRuleGroupsPaginator(ListRuleGroupsRequest listRuleGroupsRequest)	This is a variant of listRuleGroups(software.amazon.awssdk.services.networkfirewall.model.ListRuleGroupsRequest) operation.
default ListTagsForResourceResponse	listTagsForResource(Consumer<ListTagsForResourceRequest.Builder> listTagsForResourceRequest)	Retrieves the tags associated with the specified resource.
default ListTagsForResourceResponse	listTagsForResource(ListTagsForResourceRequest listTagsForResourceRequest)	Retrieves the tags associated with the specified resource.
default ListTagsForResourceIterable	listTagsForResourcePaginator(Consumer<ListTagsForResourceRequest.Builder> listTagsForResourceRequest)	This is a variant of listTagsForResource(software.amazon.awssdk.services.networkfirewall.model.ListTagsForResourceRequest) operation.
default ListTagsForResourceIterable	listTagsForResourcePaginator(ListTagsForResourceRequest listTagsForResourceRequest)	This is a variant of listTagsForResource(software.amazon.awssdk.services.networkfirewall.model.ListTagsForResourceRequest) operation.
default ListTlsInspectionConfigurationsResponse	listTLSInspectionConfigurations(Consumer<ListTlsInspectionConfigurationsRequest.Builder> listTlsInspectionConfigurationsRequest)	Retrieves the metadata for the TLS inspection configurations that you have defined.
default ListTlsInspectionConfigurationsResponse	listTLSInspectionConfigurations(ListTlsInspectionConfigurationsRequest listTlsInspectionConfigurationsRequest)	Retrieves the metadata for the TLS inspection configurations that you have defined.
default ListTLSInspectionConfigurationsIterable	listTLSInspectionConfigurationsPaginator(Consumer<ListTlsInspectionConfigurationsRequest.Builder> listTlsInspectionConfigurationsRequest)	This is a variant of listTLSInspectionConfigurations(software.amazon.awssdk.services.networkfirewall.model.ListTlsInspectionConfigurationsRequest) operation.
default ListTLSInspectionConfigurationsIterable	listTLSInspectionConfigurationsPaginator(ListTlsInspectionConfigurationsRequest listTlsInspectionConfigurationsRequest)	This is a variant of listTLSInspectionConfigurations(software.amazon.awssdk.services.networkfirewall.model.ListTlsInspectionConfigurationsRequest) operation.
default PutResourcePolicyResponse	putResourcePolicy(Consumer<PutResourcePolicyRequest.Builder> putResourcePolicyRequest)	Creates or updates an IAM policy for your rule group or firewall policy.
default PutResourcePolicyResponse	putResourcePolicy(PutResourcePolicyRequest putResourcePolicyRequest)	Creates or updates an IAM policy for your rule group or firewall policy.
default NetworkFirewallServiceClientConfiguration	serviceClientConfiguration()	The SDK service client configuration exposes client settings to the user, e.g., ClientOverrideConfiguration
static ServiceMetadata	serviceMetadata()
default TagResourceResponse	tagResource(Consumer<TagResourceRequest.Builder> tagResourceRequest)	Adds the specified tags to the specified resource.
default TagResourceResponse	tagResource(TagResourceRequest tagResourceRequest)	Adds the specified tags to the specified resource.
default UntagResourceResponse	untagResource(Consumer<UntagResourceRequest.Builder> untagResourceRequest)	Removes the tags with the specified keys from the specified resource.
default UntagResourceResponse	untagResource(UntagResourceRequest untagResourceRequest)	Removes the tags with the specified keys from the specified resource.
default UpdateFirewallDeleteProtectionResponse	updateFirewallDeleteProtection(Consumer<UpdateFirewallDeleteProtectionRequest.Builder> updateFirewallDeleteProtectionRequest)	Modifies the flag, DeleteProtection, which indicates whether it is possible to delete the firewall.
default UpdateFirewallDeleteProtectionResponse	updateFirewallDeleteProtection(UpdateFirewallDeleteProtectionRequest updateFirewallDeleteProtectionRequest)	Modifies the flag, DeleteProtection, which indicates whether it is possible to delete the firewall.
default UpdateFirewallDescriptionResponse	updateFirewallDescription(Consumer<UpdateFirewallDescriptionRequest.Builder> updateFirewallDescriptionRequest)	Modifies the description for the specified firewall.
default UpdateFirewallDescriptionResponse	updateFirewallDescription(UpdateFirewallDescriptionRequest updateFirewallDescriptionRequest)	Modifies the description for the specified firewall.
default UpdateFirewallEncryptionConfigurationResponse	updateFirewallEncryptionConfiguration(Consumer<UpdateFirewallEncryptionConfigurationRequest.Builder> updateFirewallEncryptionConfigurationRequest)	A complex type that contains settings for encryption of your firewall resources.
default UpdateFirewallEncryptionConfigurationResponse	updateFirewallEncryptionConfiguration(UpdateFirewallEncryptionConfigurationRequest updateFirewallEncryptionConfigurationRequest)	A complex type that contains settings for encryption of your firewall resources.
default UpdateFirewallPolicyResponse	updateFirewallPolicy(Consumer<UpdateFirewallPolicyRequest.Builder> updateFirewallPolicyRequest)	Updates the properties of the specified firewall policy.
default UpdateFirewallPolicyResponse	updateFirewallPolicy(UpdateFirewallPolicyRequest updateFirewallPolicyRequest)	Updates the properties of the specified firewall policy.
default UpdateFirewallPolicyChangeProtectionResponse	updateFirewallPolicyChangeProtection(Consumer<UpdateFirewallPolicyChangeProtectionRequest.Builder> updateFirewallPolicyChangeProtectionRequest)	Modifies the flag, ChangeProtection, which indicates whether it is possible to change the firewall.
default UpdateFirewallPolicyChangeProtectionResponse	updateFirewallPolicyChangeProtection(UpdateFirewallPolicyChangeProtectionRequest updateFirewallPolicyChangeProtectionRequest)	Modifies the flag, ChangeProtection, which indicates whether it is possible to change the firewall.
default UpdateLoggingConfigurationResponse	updateLoggingConfiguration(Consumer<UpdateLoggingConfigurationRequest.Builder> updateLoggingConfigurationRequest)	Sets the logging configuration for the specified firewall.
default UpdateLoggingConfigurationResponse	updateLoggingConfiguration(UpdateLoggingConfigurationRequest updateLoggingConfigurationRequest)	Sets the logging configuration for the specified firewall.
default UpdateRuleGroupResponse	updateRuleGroup(Consumer<UpdateRuleGroupRequest.Builder> updateRuleGroupRequest)	Updates the rule settings for the specified rule group.
default UpdateRuleGroupResponse	updateRuleGroup(UpdateRuleGroupRequest updateRuleGroupRequest)	Updates the rule settings for the specified rule group.
default UpdateSubnetChangeProtectionResponse	updateSubnetChangeProtection(Consumer<UpdateSubnetChangeProtectionRequest.Builder> updateSubnetChangeProtectionRequest)
default UpdateSubnetChangeProtectionResponse	updateSubnetChangeProtection(UpdateSubnetChangeProtectionRequest updateSubnetChangeProtectionRequest)
default UpdateTlsInspectionConfigurationResponse	updateTLSInspectionConfiguration(Consumer<UpdateTlsInspectionConfigurationRequest.Builder> updateTlsInspectionConfigurationRequest)	Updates the TLS inspection configuration settings for the specified TLS inspection configuration.
default UpdateTlsInspectionConfigurationResponse	updateTLSInspectionConfiguration(UpdateTlsInspectionConfigurationRequest updateTlsInspectionConfigurationRequest)	Updates the TLS inspection configuration settings for the specified TLS inspection configuration.

Methods inherited from interface software.amazon.awssdk.utils.SdkAutoCloseable

close

Methods inherited from interface software.amazon.awssdk.core.SdkClient

serviceName

Field Details

SERVICE_NAME

static final String SERVICE_NAME

See Also:

• Constant Field Values

SERVICE_METADATA_ID

static final String SERVICE_METADATA_ID

Value for looking up the service's metadata from the ServiceMetadataProvider.

See Also:

• Constant Field Values

Method Details

associateFirewallPolicy

default AssociateFirewallPolicyResponse associateFirewallPolicy(AssociateFirewallPolicyRequest associateFirewallPolicyRequest)
                                                         throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
InvalidOperationException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Associates a FirewallPolicy to a Firewall.

A firewall policy defines how to monitor and manage your VPC network traffic, using a collection of inspection rule groups and other settings. Each firewall requires one firewall policy association, and you can use the same firewall policy for multiple firewalls.

Parameters:

associateFirewallPolicyRequest -

Returns:

Result of the AssociateFirewallPolicy operation returned by the service.

See Also:

• AWS API Documentation

associateFirewallPolicy

default AssociateFirewallPolicyResponse associateFirewallPolicy(Consumer<AssociateFirewallPolicyRequest.Builder> associateFirewallPolicyRequest)
                                                         throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
InvalidOperationException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Associates a FirewallPolicy to a Firewall.

A firewall policy defines how to monitor and manage your VPC network traffic, using a collection of inspection rule groups and other settings. Each firewall requires one firewall policy association, and you can use the same firewall policy for multiple firewalls.

This is a convenience which creates an instance of the AssociateFirewallPolicyRequest.Builder avoiding the need to create one manually via AssociateFirewallPolicyRequest.builder()

Parameters:

associateFirewallPolicyRequest - A Consumer that will call methods on AssociateFirewallPolicyRequest.Builder to create a request.

Returns:

Result of the AssociateFirewallPolicy operation returned by the service.

See Also:

• AWS API Documentation

associateSubnets

default AssociateSubnetsResponse associateSubnets(AssociateSubnetsRequest associateSubnetsRequest)
                                           throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
InvalidOperationException,
InsufficientCapacityException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Associates the specified subnets in the Amazon VPC to the firewall. You can specify one subnet for each of the Availability Zones that the VPC spans.

This request creates an Network Firewall firewall endpoint in each of the subnets. To enable the firewall's protections, you must also modify the VPC's route tables for each subnet's Availability Zone, to redirect the traffic that's coming into and going out of the zone through the firewall endpoint.

Parameters:

associateSubnetsRequest -

Returns:

Result of the AssociateSubnets operation returned by the service.

See Also:

• AWS API Documentation

associateSubnets

default AssociateSubnetsResponse associateSubnets(Consumer<AssociateSubnetsRequest.Builder> associateSubnetsRequest)
                                           throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
InvalidOperationException,
InsufficientCapacityException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Associates the specified subnets in the Amazon VPC to the firewall. You can specify one subnet for each of the Availability Zones that the VPC spans.

This request creates an Network Firewall firewall endpoint in each of the subnets. To enable the firewall's protections, you must also modify the VPC's route tables for each subnet's Availability Zone, to redirect the traffic that's coming into and going out of the zone through the firewall endpoint.

This is a convenience which creates an instance of the AssociateSubnetsRequest.Builder avoiding the need to create one manually via AssociateSubnetsRequest.builder()

Parameters:

associateSubnetsRequest - A Consumer that will call methods on AssociateSubnetsRequest.Builder to create a request.

Returns:

Result of the AssociateSubnets operation returned by the service.

See Also:

• AWS API Documentation

createFirewall

default CreateFirewallResponse createFirewall(CreateFirewallRequest createFirewallRequest)
                                       throws InvalidRequestException,
LimitExceededException,
InternalServerErrorException,
ThrottlingException,
InsufficientCapacityException,
InvalidOperationException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Creates an Network Firewall Firewall and accompanying FirewallStatus for a VPC.

The firewall defines the configuration settings for an Network Firewall firewall. The settings that you can define at creation include the firewall policy, the subnets in your VPC to use for the firewall endpoints, and any tags that are attached to the firewall Amazon Web Services resource.

After you create a firewall, you can provide additional settings, like the logging configuration.

To update the settings for a firewall, you use the operations that apply to the settings themselves, for example UpdateLoggingConfiguration, AssociateSubnets, and UpdateFirewallDeleteProtection.

To manage a firewall's tags, use the standard Amazon Web Services resource tagging operations, ListTagsForResource, TagResource, and UntagResource.

To retrieve information about firewalls, use ListFirewalls and DescribeFirewall.

Parameters:

createFirewallRequest -

Returns:

Result of the CreateFirewall operation returned by the service.

See Also:

• AWS API Documentation

createFirewall

default CreateFirewallResponse createFirewall(Consumer<CreateFirewallRequest.Builder> createFirewallRequest)
                                       throws InvalidRequestException,
LimitExceededException,
InternalServerErrorException,
ThrottlingException,
InsufficientCapacityException,
InvalidOperationException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Creates an Network Firewall Firewall and accompanying FirewallStatus for a VPC.

The firewall defines the configuration settings for an Network Firewall firewall. The settings that you can define at creation include the firewall policy, the subnets in your VPC to use for the firewall endpoints, and any tags that are attached to the firewall Amazon Web Services resource.

After you create a firewall, you can provide additional settings, like the logging configuration.

To update the settings for a firewall, you use the operations that apply to the settings themselves, for example UpdateLoggingConfiguration, AssociateSubnets, and UpdateFirewallDeleteProtection.

To manage a firewall's tags, use the standard Amazon Web Services resource tagging operations, ListTagsForResource, TagResource, and UntagResource.

To retrieve information about firewalls, use ListFirewalls and DescribeFirewall.

This is a convenience which creates an instance of the CreateFirewallRequest.Builder avoiding the need to create one manually via CreateFirewallRequest.builder()

Parameters:

createFirewallRequest - A Consumer that will call methods on CreateFirewallRequest.Builder to create a request.

Returns:

Result of the CreateFirewall operation returned by the service.

See Also:

• AWS API Documentation

createFirewallPolicy

default CreateFirewallPolicyResponse createFirewallPolicy(CreateFirewallPolicyRequest createFirewallPolicyRequest)
                                                   throws LimitExceededException,
InvalidRequestException,
ThrottlingException,
InternalServerErrorException,
InsufficientCapacityException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Creates the firewall policy for the firewall according to the specifications.

An Network Firewall firewall policy defines the behavior of a firewall, in a collection of stateless and stateful rule groups and other settings. You can use one firewall policy for multiple firewalls.

Parameters:

createFirewallPolicyRequest -

Returns:

Result of the CreateFirewallPolicy operation returned by the service.

See Also:

• AWS API Documentation

createFirewallPolicy

default CreateFirewallPolicyResponse createFirewallPolicy(Consumer<CreateFirewallPolicyRequest.Builder> createFirewallPolicyRequest)
                                                   throws LimitExceededException,
InvalidRequestException,
ThrottlingException,
InternalServerErrorException,
InsufficientCapacityException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Creates the firewall policy for the firewall according to the specifications.

An Network Firewall firewall policy defines the behavior of a firewall, in a collection of stateless and stateful rule groups and other settings. You can use one firewall policy for multiple firewalls.

This is a convenience which creates an instance of the CreateFirewallPolicyRequest.Builder avoiding the need to create one manually via CreateFirewallPolicyRequest.builder()

Parameters:

createFirewallPolicyRequest - A Consumer that will call methods on CreateFirewallPolicyRequest.Builder to create a request.

Returns:

Result of the CreateFirewallPolicy operation returned by the service.

See Also:

• AWS API Documentation

createRuleGroup

default CreateRuleGroupResponse createRuleGroup(CreateRuleGroupRequest createRuleGroupRequest)
                                         throws LimitExceededException,
InvalidRequestException,
ThrottlingException,
InternalServerErrorException,
InsufficientCapacityException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Creates the specified stateless or stateful rule group, which includes the rules for network traffic inspection, a capacity setting, and tags.

You provide your rule group specification in your request using either RuleGroup or Rules.

Parameters:

createRuleGroupRequest -

Returns:

Result of the CreateRuleGroup operation returned by the service.

See Also:

• AWS API Documentation

createRuleGroup

default CreateRuleGroupResponse createRuleGroup(Consumer<CreateRuleGroupRequest.Builder> createRuleGroupRequest)
                                         throws LimitExceededException,
InvalidRequestException,
ThrottlingException,
InternalServerErrorException,
InsufficientCapacityException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Creates the specified stateless or stateful rule group, which includes the rules for network traffic inspection, a capacity setting, and tags.

You provide your rule group specification in your request using either RuleGroup or Rules.

This is a convenience which creates an instance of the CreateRuleGroupRequest.Builder avoiding the need to create one manually via CreateRuleGroupRequest.builder()

Parameters:

createRuleGroupRequest - A Consumer that will call methods on CreateRuleGroupRequest.Builder to create a request.

Returns:

Result of the CreateRuleGroup operation returned by the service.

See Also:

• AWS API Documentation

createTLSInspectionConfiguration

default CreateTlsInspectionConfigurationResponse createTLSInspectionConfiguration(CreateTlsInspectionConfigurationRequest createTlsInspectionConfigurationRequest)
                                                                           throws InvalidRequestException,
ThrottlingException,
InternalServerErrorException,
LimitExceededException,
InsufficientCapacityException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Creates an Network Firewall TLS inspection configuration. Network Firewall uses TLS inspection configurations to decrypt your firewall's inbound and outbound SSL/TLS traffic. After decryption, Network Firewall inspects the traffic according to your firewall policy's stateful rules, and then re-encrypts it before sending it to its destination. You can enable inspection of your firewall's inbound traffic, outbound traffic, or both. To use TLS inspection with your firewall, you must first import or provision certificates using ACM, create a TLS inspection configuration, add that configuration to a new firewall policy, and then associate that policy with your firewall.

To update the settings for a TLS inspection configuration, use UpdateTLSInspectionConfiguration.

To manage a TLS inspection configuration's tags, use the standard Amazon Web Services resource tagging operations, ListTagsForResource, TagResource, and UntagResource.

To retrieve information about TLS inspection configurations, use ListTLSInspectionConfigurations and DescribeTLSInspectionConfiguration.

For more information about TLS inspection configurations, see Inspecting SSL/TLS traffic with TLS inspection configurations in the Network Firewall Developer Guide.

Parameters:

createTlsInspectionConfigurationRequest -

Returns:

Result of the CreateTLSInspectionConfiguration operation returned by the service.

See Also:

• AWS API Documentation

createTLSInspectionConfiguration

default CreateTlsInspectionConfigurationResponse createTLSInspectionConfiguration(Consumer<CreateTlsInspectionConfigurationRequest.Builder> createTlsInspectionConfigurationRequest)
                                                                           throws InvalidRequestException,
ThrottlingException,
InternalServerErrorException,
LimitExceededException,
InsufficientCapacityException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Creates an Network Firewall TLS inspection configuration. Network Firewall uses TLS inspection configurations to decrypt your firewall's inbound and outbound SSL/TLS traffic. After decryption, Network Firewall inspects the traffic according to your firewall policy's stateful rules, and then re-encrypts it before sending it to its destination. You can enable inspection of your firewall's inbound traffic, outbound traffic, or both. To use TLS inspection with your firewall, you must first import or provision certificates using ACM, create a TLS inspection configuration, add that configuration to a new firewall policy, and then associate that policy with your firewall.

To update the settings for a TLS inspection configuration, use UpdateTLSInspectionConfiguration.

To manage a TLS inspection configuration's tags, use the standard Amazon Web Services resource tagging operations, ListTagsForResource, TagResource, and UntagResource.

To retrieve information about TLS inspection configurations, use ListTLSInspectionConfigurations and DescribeTLSInspectionConfiguration.

For more information about TLS inspection configurations, see Inspecting SSL/TLS traffic with TLS inspection configurations in the Network Firewall Developer Guide.

This is a convenience which creates an instance of the CreateTlsInspectionConfigurationRequest.Builder avoiding the need to create one manually via CreateTlsInspectionConfigurationRequest.builder()

Parameters:

createTlsInspectionConfigurationRequest - A Consumer that will call methods on CreateTlsInspectionConfigurationRequest.Builder to create a request.

Returns:

Result of the CreateTLSInspectionConfiguration operation returned by the service.

See Also:

• AWS API Documentation

deleteFirewall

default DeleteFirewallResponse deleteFirewall(DeleteFirewallRequest deleteFirewallRequest)
                                       throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
UnsupportedOperationException,
InvalidOperationException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Deletes the specified Firewall and its FirewallStatus. This operation requires the firewall's DeleteProtection flag to be FALSE. You can't revert this operation.

You can check whether a firewall is in use by reviewing the route tables for the Availability Zones where you have firewall subnet mappings. Retrieve the subnet mappings by calling DescribeFirewall. You define and update the route tables through Amazon VPC. As needed, update the route tables for the zones to remove the firewall endpoints. When the route tables no longer use the firewall endpoints, you can remove the firewall safely.

To delete a firewall, remove the delete protection if you need to using UpdateFirewallDeleteProtection, then delete the firewall by calling DeleteFirewall.

Parameters:

deleteFirewallRequest -

Returns:

Result of the DeleteFirewall operation returned by the service.

See Also:

• AWS API Documentation

deleteFirewall

default DeleteFirewallResponse deleteFirewall(Consumer<DeleteFirewallRequest.Builder> deleteFirewallRequest)
                                       throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
UnsupportedOperationException,
InvalidOperationException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Deletes the specified Firewall and its FirewallStatus. This operation requires the firewall's DeleteProtection flag to be FALSE. You can't revert this operation.

You can check whether a firewall is in use by reviewing the route tables for the Availability Zones where you have firewall subnet mappings. Retrieve the subnet mappings by calling DescribeFirewall. You define and update the route tables through Amazon VPC. As needed, update the route tables for the zones to remove the firewall endpoints. When the route tables no longer use the firewall endpoints, you can remove the firewall safely.

To delete a firewall, remove the delete protection if you need to using UpdateFirewallDeleteProtection, then delete the firewall by calling DeleteFirewall.

This is a convenience which creates an instance of the DeleteFirewallRequest.Builder avoiding the need to create one manually via DeleteFirewallRequest.builder()

Parameters:

deleteFirewallRequest - A Consumer that will call methods on DeleteFirewallRequest.Builder to create a request.

Returns:

Result of the DeleteFirewall operation returned by the service.

See Also:

• AWS API Documentation

deleteFirewallPolicy

default DeleteFirewallPolicyResponse deleteFirewallPolicy(DeleteFirewallPolicyRequest deleteFirewallPolicyRequest)
                                                   throws InvalidRequestException,
ResourceNotFoundException,
ThrottlingException,
InternalServerErrorException,
UnsupportedOperationException,
InvalidOperationException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Deletes the specified FirewallPolicy.

Parameters:

deleteFirewallPolicyRequest -

Returns:

Result of the DeleteFirewallPolicy operation returned by the service.

See Also:

• AWS API Documentation

deleteFirewallPolicy

default DeleteFirewallPolicyResponse deleteFirewallPolicy(Consumer<DeleteFirewallPolicyRequest.Builder> deleteFirewallPolicyRequest)
                                                   throws InvalidRequestException,
ResourceNotFoundException,
ThrottlingException,
InternalServerErrorException,
UnsupportedOperationException,
InvalidOperationException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Deletes the specified FirewallPolicy.

This is a convenience which creates an instance of the DeleteFirewallPolicyRequest.Builder avoiding the need to create one manually via DeleteFirewallPolicyRequest.builder()

Parameters:

deleteFirewallPolicyRequest - A Consumer that will call methods on DeleteFirewallPolicyRequest.Builder to create a request.

Returns:

Result of the DeleteFirewallPolicy operation returned by the service.

See Also:

• AWS API Documentation

deleteResourcePolicy

default DeleteResourcePolicyResponse deleteResourcePolicy(DeleteResourcePolicyRequest deleteResourcePolicyRequest)
                                                   throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidResourcePolicyException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Deletes a resource policy that you created in a PutResourcePolicy request.

Parameters:

deleteResourcePolicyRequest -

Returns:

Result of the DeleteResourcePolicy operation returned by the service.

See Also:

• AWS API Documentation

deleteResourcePolicy

default DeleteResourcePolicyResponse deleteResourcePolicy(Consumer<DeleteResourcePolicyRequest.Builder> deleteResourcePolicyRequest)
                                                   throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidResourcePolicyException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Deletes a resource policy that you created in a PutResourcePolicy request.

This is a convenience which creates an instance of the DeleteResourcePolicyRequest.Builder avoiding the need to create one manually via DeleteResourcePolicyRequest.builder()

Parameters:

deleteResourcePolicyRequest - A Consumer that will call methods on DeleteResourcePolicyRequest.Builder to create a request.

Returns:

Result of the DeleteResourcePolicy operation returned by the service.

See Also:

• AWS API Documentation

deleteRuleGroup

default DeleteRuleGroupResponse deleteRuleGroup(DeleteRuleGroupRequest deleteRuleGroupRequest)
                                         throws InvalidRequestException,
ResourceNotFoundException,
ThrottlingException,
InternalServerErrorException,
UnsupportedOperationException,
InvalidOperationException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Deletes the specified RuleGroup.

Parameters:

deleteRuleGroupRequest -

Returns:

Result of the DeleteRuleGroup operation returned by the service.

See Also:

• AWS API Documentation

deleteRuleGroup

default DeleteRuleGroupResponse deleteRuleGroup(Consumer<DeleteRuleGroupRequest.Builder> deleteRuleGroupRequest)
                                         throws InvalidRequestException,
ResourceNotFoundException,
ThrottlingException,
InternalServerErrorException,
UnsupportedOperationException,
InvalidOperationException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Deletes the specified RuleGroup.

This is a convenience which creates an instance of the DeleteRuleGroupRequest.Builder avoiding the need to create one manually via DeleteRuleGroupRequest.builder()

Parameters:

deleteRuleGroupRequest - A Consumer that will call methods on DeleteRuleGroupRequest.Builder to create a request.

Returns:

Result of the DeleteRuleGroup operation returned by the service.

See Also:

• AWS API Documentation

deleteTLSInspectionConfiguration

default DeleteTlsInspectionConfigurationResponse deleteTLSInspectionConfiguration(DeleteTlsInspectionConfigurationRequest deleteTlsInspectionConfigurationRequest)
                                                                           throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidOperationException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Deletes the specified TLSInspectionConfiguration.

Parameters:

deleteTlsInspectionConfigurationRequest -

Returns:

Result of the DeleteTLSInspectionConfiguration operation returned by the service.

See Also:

• AWS API Documentation

deleteTLSInspectionConfiguration

default DeleteTlsInspectionConfigurationResponse deleteTLSInspectionConfiguration(Consumer<DeleteTlsInspectionConfigurationRequest.Builder> deleteTlsInspectionConfigurationRequest)
                                                                           throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidOperationException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Deletes the specified TLSInspectionConfiguration.

This is a convenience which creates an instance of the DeleteTlsInspectionConfigurationRequest.Builder avoiding the need to create one manually via DeleteTlsInspectionConfigurationRequest.builder()

Parameters:

deleteTlsInspectionConfigurationRequest - A Consumer that will call methods on DeleteTlsInspectionConfigurationRequest.Builder to create a request.

Returns:

Result of the DeleteTLSInspectionConfiguration operation returned by the service.

See Also:

• AWS API Documentation

describeFirewall

default DescribeFirewallResponse describeFirewall(DescribeFirewallRequest describeFirewallRequest)
                                           throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Returns the data objects for the specified firewall.

Parameters:

describeFirewallRequest -

Returns:

Result of the DescribeFirewall operation returned by the service.

See Also:

• AWS API Documentation

describeFirewall

default DescribeFirewallResponse describeFirewall(Consumer<DescribeFirewallRequest.Builder> describeFirewallRequest)
                                           throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Returns the data objects for the specified firewall.

This is a convenience which creates an instance of the DescribeFirewallRequest.Builder avoiding the need to create one manually via DescribeFirewallRequest.builder()

Parameters:

describeFirewallRequest - A Consumer that will call methods on DescribeFirewallRequest.Builder to create a request.

Returns:

Result of the DescribeFirewall operation returned by the service.

See Also:

• AWS API Documentation

describeFirewallPolicy

default DescribeFirewallPolicyResponse describeFirewallPolicy(DescribeFirewallPolicyRequest describeFirewallPolicyRequest)
                                                       throws InvalidRequestException,
ResourceNotFoundException,
ThrottlingException,
InternalServerErrorException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Returns the data objects for the specified firewall policy.

Parameters:

describeFirewallPolicyRequest -

Returns:

Result of the DescribeFirewallPolicy operation returned by the service.

See Also:

• AWS API Documentation

describeFirewallPolicy

default DescribeFirewallPolicyResponse describeFirewallPolicy(Consumer<DescribeFirewallPolicyRequest.Builder> describeFirewallPolicyRequest)
                                                       throws InvalidRequestException,
ResourceNotFoundException,
ThrottlingException,
InternalServerErrorException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Returns the data objects for the specified firewall policy.

This is a convenience which creates an instance of the DescribeFirewallPolicyRequest.Builder avoiding the need to create one manually via DescribeFirewallPolicyRequest.builder()

Parameters:

describeFirewallPolicyRequest - A Consumer that will call methods on DescribeFirewallPolicyRequest.Builder to create a request.

Returns:

Result of the DescribeFirewallPolicy operation returned by the service.

See Also:

• AWS API Documentation

describeLoggingConfiguration

default DescribeLoggingConfigurationResponse describeLoggingConfiguration(DescribeLoggingConfigurationRequest describeLoggingConfigurationRequest)
                                                                   throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Returns the logging configuration for the specified firewall.

Parameters:

describeLoggingConfigurationRequest -

Returns:

Result of the DescribeLoggingConfiguration operation returned by the service.

See Also:

• AWS API Documentation

describeLoggingConfiguration

default DescribeLoggingConfigurationResponse describeLoggingConfiguration(Consumer<DescribeLoggingConfigurationRequest.Builder> describeLoggingConfigurationRequest)
                                                                   throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Returns the logging configuration for the specified firewall.

This is a convenience which creates an instance of the DescribeLoggingConfigurationRequest.Builder avoiding the need to create one manually via DescribeLoggingConfigurationRequest.builder()

Parameters:

describeLoggingConfigurationRequest - A Consumer that will call methods on DescribeLoggingConfigurationRequest.Builder to create a request.

Returns:

Result of the DescribeLoggingConfiguration operation returned by the service.

See Also:

• AWS API Documentation

describeResourcePolicy

default DescribeResourcePolicyResponse describeResourcePolicy(DescribeResourcePolicyRequest describeResourcePolicyRequest)
                                                       throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Retrieves a resource policy that you created in a PutResourcePolicy request.

Parameters:

describeResourcePolicyRequest -

Returns:

Result of the DescribeResourcePolicy operation returned by the service.

See Also:

• AWS API Documentation

describeResourcePolicy

default DescribeResourcePolicyResponse describeResourcePolicy(Consumer<DescribeResourcePolicyRequest.Builder> describeResourcePolicyRequest)
                                                       throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Retrieves a resource policy that you created in a PutResourcePolicy request.

This is a convenience which creates an instance of the DescribeResourcePolicyRequest.Builder avoiding the need to create one manually via DescribeResourcePolicyRequest.builder()

Parameters:

describeResourcePolicyRequest - A Consumer that will call methods on DescribeResourcePolicyRequest.Builder to create a request.

Returns:

Result of the DescribeResourcePolicy operation returned by the service.

See Also:

• AWS API Documentation

describeRuleGroup

default DescribeRuleGroupResponse describeRuleGroup(DescribeRuleGroupRequest describeRuleGroupRequest)
                                             throws InvalidRequestException,
ResourceNotFoundException,
ThrottlingException,
InternalServerErrorException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Returns the data objects for the specified rule group.

Parameters:

describeRuleGroupRequest -

Returns:

Result of the DescribeRuleGroup operation returned by the service.

See Also:

• AWS API Documentation

describeRuleGroup

default DescribeRuleGroupResponse describeRuleGroup(Consumer<DescribeRuleGroupRequest.Builder> describeRuleGroupRequest)
                                             throws InvalidRequestException,
ResourceNotFoundException,
ThrottlingException,
InternalServerErrorException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Returns the data objects for the specified rule group.

This is a convenience which creates an instance of the DescribeRuleGroupRequest.Builder avoiding the need to create one manually via DescribeRuleGroupRequest.builder()

Parameters:

describeRuleGroupRequest - A Consumer that will call methods on DescribeRuleGroupRequest.Builder to create a request.

Returns:

Result of the DescribeRuleGroup operation returned by the service.

See Also:

• AWS API Documentation

describeRuleGroupMetadata

default DescribeRuleGroupMetadataResponse describeRuleGroupMetadata(DescribeRuleGroupMetadataRequest describeRuleGroupMetadataRequest)
                                                             throws InvalidRequestException,
ResourceNotFoundException,
ThrottlingException,
InternalServerErrorException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

High-level information about a rule group, returned by operations like create and describe. You can use the information provided in the metadata to retrieve and manage a rule group. You can retrieve all objects for a rule group by calling DescribeRuleGroup.

Parameters:

describeRuleGroupMetadataRequest -

Returns:

Result of the DescribeRuleGroupMetadata operation returned by the service.

See Also:

• AWS API Documentation

describeRuleGroupMetadata

default DescribeRuleGroupMetadataResponse describeRuleGroupMetadata(Consumer<DescribeRuleGroupMetadataRequest.Builder> describeRuleGroupMetadataRequest)
                                                             throws InvalidRequestException,
ResourceNotFoundException,
ThrottlingException,
InternalServerErrorException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

High-level information about a rule group, returned by operations like create and describe. You can use the information provided in the metadata to retrieve and manage a rule group. You can retrieve all objects for a rule group by calling DescribeRuleGroup.

This is a convenience which creates an instance of the DescribeRuleGroupMetadataRequest.Builder avoiding the need to create one manually via DescribeRuleGroupMetadataRequest.builder()

Parameters:

describeRuleGroupMetadataRequest - A Consumer that will call methods on DescribeRuleGroupMetadataRequest.Builder to create a request.

Returns:

Result of the DescribeRuleGroupMetadata operation returned by the service.

See Also:

• AWS API Documentation

describeTLSInspectionConfiguration

default DescribeTlsInspectionConfigurationResponse describeTLSInspectionConfiguration(DescribeTlsInspectionConfigurationRequest describeTlsInspectionConfigurationRequest)
                                                                               throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Returns the data objects for the specified TLS inspection configuration.

Parameters:

describeTlsInspectionConfigurationRequest -

Returns:

Result of the DescribeTLSInspectionConfiguration operation returned by the service.

See Also:

• AWS API Documentation

describeTLSInspectionConfiguration

default DescribeTlsInspectionConfigurationResponse describeTLSInspectionConfiguration(Consumer<DescribeTlsInspectionConfigurationRequest.Builder> describeTlsInspectionConfigurationRequest)
                                                                               throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Returns the data objects for the specified TLS inspection configuration.

This is a convenience which creates an instance of the DescribeTlsInspectionConfigurationRequest.Builder avoiding the need to create one manually via DescribeTlsInspectionConfigurationRequest.builder()

Parameters:

describeTlsInspectionConfigurationRequest - A Consumer that will call methods on DescribeTlsInspectionConfigurationRequest.Builder to create a request.

Returns:

Result of the DescribeTLSInspectionConfiguration operation returned by the service.

See Also:

• AWS API Documentation

disassociateSubnets

default DisassociateSubnetsResponse disassociateSubnets(DisassociateSubnetsRequest disassociateSubnetsRequest)
                                                 throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
InvalidOperationException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Removes the specified subnet associations from the firewall. This removes the firewall endpoints from the subnets and removes any network filtering protections that the endpoints were providing.

Parameters:

disassociateSubnetsRequest -

Returns:

Result of the DisassociateSubnets operation returned by the service.

See Also:

• AWS API Documentation

disassociateSubnets

default DisassociateSubnetsResponse disassociateSubnets(Consumer<DisassociateSubnetsRequest.Builder> disassociateSubnetsRequest)
                                                 throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
InvalidOperationException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Removes the specified subnet associations from the firewall. This removes the firewall endpoints from the subnets and removes any network filtering protections that the endpoints were providing.

This is a convenience which creates an instance of the DisassociateSubnetsRequest.Builder avoiding the need to create one manually via DisassociateSubnetsRequest.builder()

Parameters:

disassociateSubnetsRequest - A Consumer that will call methods on DisassociateSubnetsRequest.Builder to create a request.

Returns:

Result of the DisassociateSubnets operation returned by the service.

See Also:

• AWS API Documentation

listFirewallPolicies

default ListFirewallPoliciesResponse listFirewallPolicies(ListFirewallPoliciesRequest listFirewallPoliciesRequest)
                                                   throws InvalidRequestException,
ThrottlingException,
InternalServerErrorException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Retrieves the metadata for the firewall policies that you have defined. Depending on your setting for max results and the number of firewall policies, a single call might not return the full list.

Parameters:

listFirewallPoliciesRequest -

Returns:

Result of the ListFirewallPolicies operation returned by the service.

See Also:

• AWS API Documentation

listFirewallPolicies

default ListFirewallPoliciesResponse listFirewallPolicies(Consumer<ListFirewallPoliciesRequest.Builder> listFirewallPoliciesRequest)
                                                   throws InvalidRequestException,
ThrottlingException,
InternalServerErrorException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Retrieves the metadata for the firewall policies that you have defined. Depending on your setting for max results and the number of firewall policies, a single call might not return the full list.

This is a convenience which creates an instance of the ListFirewallPoliciesRequest.Builder avoiding the need to create one manually via ListFirewallPoliciesRequest.builder()

Parameters:

listFirewallPoliciesRequest - A Consumer that will call methods on ListFirewallPoliciesRequest.Builder to create a request.

Returns:

Result of the ListFirewallPolicies operation returned by the service.

See Also:

• AWS API Documentation

listFirewallPoliciesPaginator

default ListFirewallPoliciesIterable listFirewallPoliciesPaginator(ListFirewallPoliciesRequest listFirewallPoliciesRequest)
                                                            throws InvalidRequestException,
ThrottlingException,
InternalServerErrorException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

This is a variant of listFirewallPolicies(software.amazon.awssdk.services.networkfirewall.model.ListFirewallPoliciesRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListFirewallPoliciesIterable responses = client.listFirewallPoliciesPaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.networkfirewall.paginators.ListFirewallPoliciesIterable responses = client
             .listFirewallPoliciesPaginator(request);
     for (software.amazon.awssdk.services.networkfirewall.model.ListFirewallPoliciesResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListFirewallPoliciesIterable responses = client.listFirewallPoliciesPaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the listFirewallPolicies(software.amazon.awssdk.services.networkfirewall.model.ListFirewallPoliciesRequest) operation.

Parameters:

listFirewallPoliciesRequest -

Returns:

A custom iterable that can be used to iterate through all the response pages.

See Also:

• AWS API Documentation

listFirewallPoliciesPaginator

default ListFirewallPoliciesIterable listFirewallPoliciesPaginator(Consumer<ListFirewallPoliciesRequest.Builder> listFirewallPoliciesRequest)
                                                            throws InvalidRequestException,
ThrottlingException,
InternalServerErrorException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

This is a variant of listFirewallPolicies(software.amazon.awssdk.services.networkfirewall.model.ListFirewallPoliciesRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListFirewallPoliciesIterable responses = client.listFirewallPoliciesPaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.networkfirewall.paginators.ListFirewallPoliciesIterable responses = client
             .listFirewallPoliciesPaginator(request);
     for (software.amazon.awssdk.services.networkfirewall.model.ListFirewallPoliciesResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListFirewallPoliciesIterable responses = client.listFirewallPoliciesPaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the listFirewallPolicies(software.amazon.awssdk.services.networkfirewall.model.ListFirewallPoliciesRequest) operation.

This is a convenience which creates an instance of the ListFirewallPoliciesRequest.Builder avoiding the need to create one manually via ListFirewallPoliciesRequest.builder()

Parameters:

listFirewallPoliciesRequest - A Consumer that will call methods on ListFirewallPoliciesRequest.Builder to create a request.

Returns:

A custom iterable that can be used to iterate through all the response pages.

See Also:

• AWS API Documentation

listFirewalls

default ListFirewallsResponse listFirewalls(ListFirewallsRequest listFirewallsRequest)
                                     throws InvalidRequestException,
InternalServerErrorException,
ThrottlingException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Retrieves the metadata for the firewalls that you have defined. If you provide VPC identifiers in your request, this returns only the firewalls for those VPCs.

Depending on your setting for max results and the number of firewalls, a single call might not return the full list.

Parameters:

listFirewallsRequest -

Returns:

Result of the ListFirewalls operation returned by the service.

See Also:

• AWS API Documentation

listFirewalls

default ListFirewallsResponse listFirewalls(Consumer<ListFirewallsRequest.Builder> listFirewallsRequest)
                                     throws InvalidRequestException,
InternalServerErrorException,
ThrottlingException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Retrieves the metadata for the firewalls that you have defined. If you provide VPC identifiers in your request, this returns only the firewalls for those VPCs.

Depending on your setting for max results and the number of firewalls, a single call might not return the full list.

This is a convenience which creates an instance of the ListFirewallsRequest.Builder avoiding the need to create one manually via ListFirewallsRequest.builder()

Parameters:

listFirewallsRequest - A Consumer that will call methods on ListFirewallsRequest.Builder to create a request.

Returns:

Result of the ListFirewalls operation returned by the service.

See Also:

• AWS API Documentation

listFirewallsPaginator

default ListFirewallsIterable listFirewallsPaginator(ListFirewallsRequest listFirewallsRequest)
                                              throws InvalidRequestException,
InternalServerErrorException,
ThrottlingException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

This is a variant of listFirewalls(software.amazon.awssdk.services.networkfirewall.model.ListFirewallsRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListFirewallsIterable responses = client.listFirewallsPaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.networkfirewall.paginators.ListFirewallsIterable responses = client
             .listFirewallsPaginator(request);
     for (software.amazon.awssdk.services.networkfirewall.model.ListFirewallsResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListFirewallsIterable responses = client.listFirewallsPaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the listFirewalls(software.amazon.awssdk.services.networkfirewall.model.ListFirewallsRequest) operation.

Parameters:

listFirewallsRequest -

Returns:

A custom iterable that can be used to iterate through all the response pages.

See Also:

• AWS API Documentation

listFirewallsPaginator

default ListFirewallsIterable listFirewallsPaginator(Consumer<ListFirewallsRequest.Builder> listFirewallsRequest)
                                              throws InvalidRequestException,
InternalServerErrorException,
ThrottlingException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

This is a variant of listFirewalls(software.amazon.awssdk.services.networkfirewall.model.ListFirewallsRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListFirewallsIterable responses = client.listFirewallsPaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.networkfirewall.paginators.ListFirewallsIterable responses = client
             .listFirewallsPaginator(request);
     for (software.amazon.awssdk.services.networkfirewall.model.ListFirewallsResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListFirewallsIterable responses = client.listFirewallsPaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the listFirewalls(software.amazon.awssdk.services.networkfirewall.model.ListFirewallsRequest) operation.

This is a convenience which creates an instance of the ListFirewallsRequest.Builder avoiding the need to create one manually via ListFirewallsRequest.builder()

Parameters:

listFirewallsRequest - A Consumer that will call methods on ListFirewallsRequest.Builder to create a request.

Returns:

A custom iterable that can be used to iterate through all the response pages.

See Also:

• AWS API Documentation

listRuleGroups

default ListRuleGroupsResponse listRuleGroups(ListRuleGroupsRequest listRuleGroupsRequest)
                                       throws InvalidRequestException,
ThrottlingException,
InternalServerErrorException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Retrieves the metadata for the rule groups that you have defined. Depending on your setting for max results and the number of rule groups, a single call might not return the full list.

Parameters:

listRuleGroupsRequest -

Returns:

Result of the ListRuleGroups operation returned by the service.

See Also:

• AWS API Documentation

listRuleGroups

default ListRuleGroupsResponse listRuleGroups(Consumer<ListRuleGroupsRequest.Builder> listRuleGroupsRequest)
                                       throws InvalidRequestException,
ThrottlingException,
InternalServerErrorException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Retrieves the metadata for the rule groups that you have defined. Depending on your setting for max results and the number of rule groups, a single call might not return the full list.

This is a convenience which creates an instance of the ListRuleGroupsRequest.Builder avoiding the need to create one manually via ListRuleGroupsRequest.builder()

Parameters:

listRuleGroupsRequest - A Consumer that will call methods on ListRuleGroupsRequest.Builder to create a request.

Returns:

Result of the ListRuleGroups operation returned by the service.

See Also:

• AWS API Documentation

listRuleGroupsPaginator

default ListRuleGroupsIterable listRuleGroupsPaginator(ListRuleGroupsRequest listRuleGroupsRequest)
                                                throws InvalidRequestException,
ThrottlingException,
InternalServerErrorException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

This is a variant of listRuleGroups(software.amazon.awssdk.services.networkfirewall.model.ListRuleGroupsRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListRuleGroupsIterable responses = client.listRuleGroupsPaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.networkfirewall.paginators.ListRuleGroupsIterable responses = client
             .listRuleGroupsPaginator(request);
     for (software.amazon.awssdk.services.networkfirewall.model.ListRuleGroupsResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListRuleGroupsIterable responses = client.listRuleGroupsPaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the listRuleGroups(software.amazon.awssdk.services.networkfirewall.model.ListRuleGroupsRequest) operation.

Parameters:

listRuleGroupsRequest -

Returns:

A custom iterable that can be used to iterate through all the response pages.

See Also:

• AWS API Documentation

listRuleGroupsPaginator

default ListRuleGroupsIterable listRuleGroupsPaginator(Consumer<ListRuleGroupsRequest.Builder> listRuleGroupsRequest)
                                                throws InvalidRequestException,
ThrottlingException,
InternalServerErrorException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

This is a variant of listRuleGroups(software.amazon.awssdk.services.networkfirewall.model.ListRuleGroupsRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListRuleGroupsIterable responses = client.listRuleGroupsPaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.networkfirewall.paginators.ListRuleGroupsIterable responses = client
             .listRuleGroupsPaginator(request);
     for (software.amazon.awssdk.services.networkfirewall.model.ListRuleGroupsResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListRuleGroupsIterable responses = client.listRuleGroupsPaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the listRuleGroups(software.amazon.awssdk.services.networkfirewall.model.ListRuleGroupsRequest) operation.

This is a convenience which creates an instance of the ListRuleGroupsRequest.Builder avoiding the need to create one manually via ListRuleGroupsRequest.builder()

Parameters:

listRuleGroupsRequest - A Consumer that will call methods on ListRuleGroupsRequest.Builder to create a request.

Returns:

A custom iterable that can be used to iterate through all the response pages.

See Also:

• AWS API Documentation

listTLSInspectionConfigurations

default ListTlsInspectionConfigurationsResponse listTLSInspectionConfigurations(ListTlsInspectionConfigurationsRequest listTlsInspectionConfigurationsRequest)
                                                                         throws InvalidRequestException,
InternalServerErrorException,
ThrottlingException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Retrieves the metadata for the TLS inspection configurations that you have defined. Depending on your setting for max results and the number of TLS inspection configurations, a single call might not return the full list.

Parameters:

listTlsInspectionConfigurationsRequest -

Returns:

Result of the ListTLSInspectionConfigurations operation returned by the service.

See Also:

• AWS API Documentation

listTLSInspectionConfigurations

default ListTlsInspectionConfigurationsResponse listTLSInspectionConfigurations(Consumer<ListTlsInspectionConfigurationsRequest.Builder> listTlsInspectionConfigurationsRequest)
                                                                         throws InvalidRequestException,
InternalServerErrorException,
ThrottlingException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Retrieves the metadata for the TLS inspection configurations that you have defined. Depending on your setting for max results and the number of TLS inspection configurations, a single call might not return the full list.

This is a convenience which creates an instance of the ListTlsInspectionConfigurationsRequest.Builder avoiding the need to create one manually via ListTlsInspectionConfigurationsRequest.builder()

Parameters:

listTlsInspectionConfigurationsRequest - A Consumer that will call methods on ListTlsInspectionConfigurationsRequest.Builder to create a request.

Returns:

Result of the ListTLSInspectionConfigurations operation returned by the service.

See Also:

• AWS API Documentation

listTLSInspectionConfigurationsPaginator

default ListTLSInspectionConfigurationsIterable listTLSInspectionConfigurationsPaginator(ListTlsInspectionConfigurationsRequest listTlsInspectionConfigurationsRequest)
                                                                                  throws InvalidRequestException,
InternalServerErrorException,
ThrottlingException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

This is a variant of listTLSInspectionConfigurations(software.amazon.awssdk.services.networkfirewall.model.ListTlsInspectionConfigurationsRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListTLSInspectionConfigurationsIterable responses = client.listTLSInspectionConfigurationsPaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.networkfirewall.paginators.ListTLSInspectionConfigurationsIterable responses = client
             .listTLSInspectionConfigurationsPaginator(request);
     for (software.amazon.awssdk.services.networkfirewall.model.ListTlsInspectionConfigurationsResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListTLSInspectionConfigurationsIterable responses = client.listTLSInspectionConfigurationsPaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the listTLSInspectionConfigurations(software.amazon.awssdk.services.networkfirewall.model.ListTlsInspectionConfigurationsRequest) operation.

Parameters:

listTlsInspectionConfigurationsRequest -

Returns:

A custom iterable that can be used to iterate through all the response pages.

See Also:

• AWS API Documentation

listTLSInspectionConfigurationsPaginator

default ListTLSInspectionConfigurationsIterable listTLSInspectionConfigurationsPaginator(Consumer<ListTlsInspectionConfigurationsRequest.Builder> listTlsInspectionConfigurationsRequest)
                                                                                  throws InvalidRequestException,
InternalServerErrorException,
ThrottlingException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

This is a variant of listTLSInspectionConfigurations(software.amazon.awssdk.services.networkfirewall.model.ListTlsInspectionConfigurationsRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListTLSInspectionConfigurationsIterable responses = client.listTLSInspectionConfigurationsPaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.networkfirewall.paginators.ListTLSInspectionConfigurationsIterable responses = client
             .listTLSInspectionConfigurationsPaginator(request);
     for (software.amazon.awssdk.services.networkfirewall.model.ListTlsInspectionConfigurationsResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListTLSInspectionConfigurationsIterable responses = client.listTLSInspectionConfigurationsPaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the listTLSInspectionConfigurations(software.amazon.awssdk.services.networkfirewall.model.ListTlsInspectionConfigurationsRequest) operation.

This is a convenience which creates an instance of the ListTlsInspectionConfigurationsRequest.Builder avoiding the need to create one manually via ListTlsInspectionConfigurationsRequest.builder()

Parameters:

listTlsInspectionConfigurationsRequest - A Consumer that will call methods on ListTlsInspectionConfigurationsRequest.Builder to create a request.

Returns:

A custom iterable that can be used to iterate through all the response pages.

See Also:

• AWS API Documentation

listTagsForResource

default ListTagsForResourceResponse listTagsForResource(ListTagsForResourceRequest listTagsForResourceRequest)
                                                 throws ThrottlingException,
InternalServerErrorException,
ResourceNotFoundException,
InvalidRequestException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Retrieves the tags associated with the specified resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing. For example, you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.

You can tag the Amazon Web Services resources that you manage through Network Firewall: firewalls, firewall policies, and rule groups.

Parameters:

listTagsForResourceRequest -

Returns:

Result of the ListTagsForResource operation returned by the service.

See Also:

• AWS API Documentation

listTagsForResource

default ListTagsForResourceResponse listTagsForResource(Consumer<ListTagsForResourceRequest.Builder> listTagsForResourceRequest)
                                                 throws ThrottlingException,
InternalServerErrorException,
ResourceNotFoundException,
InvalidRequestException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Retrieves the tags associated with the specified resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing. For example, you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.

You can tag the Amazon Web Services resources that you manage through Network Firewall: firewalls, firewall policies, and rule groups.

This is a convenience which creates an instance of the ListTagsForResourceRequest.Builder avoiding the need to create one manually via ListTagsForResourceRequest.builder()

Parameters:

listTagsForResourceRequest - A Consumer that will call methods on ListTagsForResourceRequest.Builder to create a request.

Returns:

Result of the ListTagsForResource operation returned by the service.

See Also:

• AWS API Documentation

listTagsForResourcePaginator

default ListTagsForResourceIterable listTagsForResourcePaginator(ListTagsForResourceRequest listTagsForResourceRequest)
                                                          throws ThrottlingException,
InternalServerErrorException,
ResourceNotFoundException,
InvalidRequestException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

This is a variant of listTagsForResource(software.amazon.awssdk.services.networkfirewall.model.ListTagsForResourceRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListTagsForResourceIterable responses = client.listTagsForResourcePaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.networkfirewall.paginators.ListTagsForResourceIterable responses = client
             .listTagsForResourcePaginator(request);
     for (software.amazon.awssdk.services.networkfirewall.model.ListTagsForResourceResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListTagsForResourceIterable responses = client.listTagsForResourcePaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the listTagsForResource(software.amazon.awssdk.services.networkfirewall.model.ListTagsForResourceRequest) operation.

Parameters:

listTagsForResourceRequest -

Returns:

A custom iterable that can be used to iterate through all the response pages.

See Also:

• AWS API Documentation

listTagsForResourcePaginator

default ListTagsForResourceIterable listTagsForResourcePaginator(Consumer<ListTagsForResourceRequest.Builder> listTagsForResourceRequest)
                                                          throws ThrottlingException,
InternalServerErrorException,
ResourceNotFoundException,
InvalidRequestException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

This is a variant of listTagsForResource(software.amazon.awssdk.services.networkfirewall.model.ListTagsForResourceRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListTagsForResourceIterable responses = client.listTagsForResourcePaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.networkfirewall.paginators.ListTagsForResourceIterable responses = client
             .listTagsForResourcePaginator(request);
     for (software.amazon.awssdk.services.networkfirewall.model.ListTagsForResourceResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.networkfirewall.paginators.ListTagsForResourceIterable responses = client.listTagsForResourcePaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the listTagsForResource(software.amazon.awssdk.services.networkfirewall.model.ListTagsForResourceRequest) operation.

This is a convenience which creates an instance of the ListTagsForResourceRequest.Builder avoiding the need to create one manually via ListTagsForResourceRequest.builder()

Parameters:

listTagsForResourceRequest - A Consumer that will call methods on ListTagsForResourceRequest.Builder to create a request.

Returns:

A custom iterable that can be used to iterate through all the response pages.

See Also:

• AWS API Documentation

putResourcePolicy

default PutResourcePolicyResponse putResourcePolicy(PutResourcePolicyRequest putResourcePolicyRequest)
                                             throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidResourcePolicyException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Creates or updates an IAM policy for your rule group or firewall policy. Use this to share rule groups and firewall policies between accounts. This operation works in conjunction with the Amazon Web Services Resource Access Manager (RAM) service to manage resource sharing for Network Firewall.

Use this operation to create or update a resource policy for your rule group or firewall policy. In the policy, you specify the accounts that you want to share the resource with and the operations that you want the accounts to be able to perform.

When you add an account in the resource policy, you then run the following Resource Access Manager (RAM) operations to access and accept the shared rule group or firewall policy.

• GetResourceShareInvitations - Returns the Amazon Resource Names (ARNs) of the resource share invitations.

• AcceptResourceShareInvitation - Accepts the share invitation for a specified resource share.

For additional information about resource sharing using RAM, see Resource Access Manager User Guide.

Parameters:

putResourcePolicyRequest -

Returns:

Result of the PutResourcePolicy operation returned by the service.

See Also:

• AWS API Documentation

putResourcePolicy

default PutResourcePolicyResponse putResourcePolicy(Consumer<PutResourcePolicyRequest.Builder> putResourcePolicyRequest)
                                             throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidResourcePolicyException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Creates or updates an IAM policy for your rule group or firewall policy. Use this to share rule groups and firewall policies between accounts. This operation works in conjunction with the Amazon Web Services Resource Access Manager (RAM) service to manage resource sharing for Network Firewall.

Use this operation to create or update a resource policy for your rule group or firewall policy. In the policy, you specify the accounts that you want to share the resource with and the operations that you want the accounts to be able to perform.

When you add an account in the resource policy, you then run the following Resource Access Manager (RAM) operations to access and accept the shared rule group or firewall policy.

• GetResourceShareInvitations - Returns the Amazon Resource Names (ARNs) of the resource share invitations.

• AcceptResourceShareInvitation - Accepts the share invitation for a specified resource share.

For additional information about resource sharing using RAM, see Resource Access Manager User Guide.

This is a convenience which creates an instance of the PutResourcePolicyRequest.Builder avoiding the need to create one manually via PutResourcePolicyRequest.builder()

Parameters:

putResourcePolicyRequest - A Consumer that will call methods on PutResourcePolicyRequest.Builder to create a request.

Returns:

Result of the PutResourcePolicy operation returned by the service.

See Also:

• AWS API Documentation

tagResource

default TagResourceResponse tagResource(TagResourceRequest tagResourceRequest)
                                 throws ThrottlingException,
InternalServerErrorException,
ResourceNotFoundException,
InvalidRequestException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Adds the specified tags to the specified resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing. For example, you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.

You can tag the Amazon Web Services resources that you manage through Network Firewall: firewalls, firewall policies, and rule groups.

Parameters:

tagResourceRequest -

Returns:

Result of the TagResource operation returned by the service.

See Also:

• AWS API Documentation

tagResource

default TagResourceResponse tagResource(Consumer<TagResourceRequest.Builder> tagResourceRequest)
                                 throws ThrottlingException,
InternalServerErrorException,
ResourceNotFoundException,
InvalidRequestException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Adds the specified tags to the specified resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing. For example, you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.

You can tag the Amazon Web Services resources that you manage through Network Firewall: firewalls, firewall policies, and rule groups.

This is a convenience which creates an instance of the TagResourceRequest.Builder avoiding the need to create one manually via TagResourceRequest.builder()

Parameters:

tagResourceRequest - A Consumer that will call methods on TagResourceRequest.Builder to create a request.

Returns:

Result of the TagResource operation returned by the service.

See Also:

• AWS API Documentation

untagResource

default UntagResourceResponse untagResource(UntagResourceRequest untagResourceRequest)
                                     throws ThrottlingException,
InternalServerErrorException,
ResourceNotFoundException,
InvalidRequestException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Removes the tags with the specified keys from the specified resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing. For example, you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.

You can manage tags for the Amazon Web Services resources that you manage through Network Firewall: firewalls, firewall policies, and rule groups.

Parameters:

untagResourceRequest -

Returns:

Result of the UntagResource operation returned by the service.

See Also:

• AWS API Documentation

untagResource

default UntagResourceResponse untagResource(Consumer<UntagResourceRequest.Builder> untagResourceRequest)
                                     throws ThrottlingException,
InternalServerErrorException,
ResourceNotFoundException,
InvalidRequestException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Removes the tags with the specified keys from the specified resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing. For example, you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.

You can manage tags for the Amazon Web Services resources that you manage through Network Firewall: firewalls, firewall policies, and rule groups.

This is a convenience which creates an instance of the UntagResourceRequest.Builder avoiding the need to create one manually via UntagResourceRequest.builder()

Parameters:

untagResourceRequest - A Consumer that will call methods on UntagResourceRequest.Builder to create a request.

Returns:

Result of the UntagResource operation returned by the service.

See Also:

• AWS API Documentation

updateFirewallDeleteProtection

default UpdateFirewallDeleteProtectionResponse updateFirewallDeleteProtection(UpdateFirewallDeleteProtectionRequest updateFirewallDeleteProtectionRequest)
                                                                       throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
ResourceOwnerCheckException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Modifies the flag, DeleteProtection, which indicates whether it is possible to delete the firewall. If the flag is set to TRUE, the firewall is protected against deletion. This setting helps protect against accidentally deleting a firewall that's in use.

Parameters:

updateFirewallDeleteProtectionRequest -

Returns:

Result of the UpdateFirewallDeleteProtection operation returned by the service.

See Also:

• AWS API Documentation

updateFirewallDeleteProtection

default UpdateFirewallDeleteProtectionResponse updateFirewallDeleteProtection(Consumer<UpdateFirewallDeleteProtectionRequest.Builder> updateFirewallDeleteProtectionRequest)
                                                                       throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
ResourceOwnerCheckException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Modifies the flag, DeleteProtection, which indicates whether it is possible to delete the firewall. If the flag is set to TRUE, the firewall is protected against deletion. This setting helps protect against accidentally deleting a firewall that's in use.

This is a convenience which creates an instance of the UpdateFirewallDeleteProtectionRequest.Builder avoiding the need to create one manually via UpdateFirewallDeleteProtectionRequest.builder()

Parameters:

updateFirewallDeleteProtectionRequest - A Consumer that will call methods on UpdateFirewallDeleteProtectionRequest.Builder to create a request.

Returns:

Result of the UpdateFirewallDeleteProtection operation returned by the service.

See Also:

• AWS API Documentation

updateFirewallDescription

default UpdateFirewallDescriptionResponse updateFirewallDescription(UpdateFirewallDescriptionRequest updateFirewallDescriptionRequest)
                                                             throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Modifies the description for the specified firewall. Use the description to help you identify the firewall when you're working with it.

Parameters:

updateFirewallDescriptionRequest -

Returns:

Result of the UpdateFirewallDescription operation returned by the service.

See Also:

• AWS API Documentation

updateFirewallDescription

default UpdateFirewallDescriptionResponse updateFirewallDescription(Consumer<UpdateFirewallDescriptionRequest.Builder> updateFirewallDescriptionRequest)
                                                             throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Modifies the description for the specified firewall. Use the description to help you identify the firewall when you're working with it.

This is a convenience which creates an instance of the UpdateFirewallDescriptionRequest.Builder avoiding the need to create one manually via UpdateFirewallDescriptionRequest.builder()

Parameters:

updateFirewallDescriptionRequest - A Consumer that will call methods on UpdateFirewallDescriptionRequest.Builder to create a request.

Returns:

Result of the UpdateFirewallDescription operation returned by the service.

See Also:

• AWS API Documentation

updateFirewallEncryptionConfiguration

default UpdateFirewallEncryptionConfigurationResponse updateFirewallEncryptionConfiguration(UpdateFirewallEncryptionConfigurationRequest updateFirewallEncryptionConfigurationRequest)
                                                                                     throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
ResourceOwnerCheckException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

A complex type that contains settings for encryption of your firewall resources.

Parameters:

updateFirewallEncryptionConfigurationRequest -

Returns:

Result of the UpdateFirewallEncryptionConfiguration operation returned by the service.

See Also:

• AWS API Documentation

updateFirewallEncryptionConfiguration

default UpdateFirewallEncryptionConfigurationResponse updateFirewallEncryptionConfiguration(Consumer<UpdateFirewallEncryptionConfigurationRequest.Builder> updateFirewallEncryptionConfigurationRequest)
                                                                                     throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
ResourceOwnerCheckException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

A complex type that contains settings for encryption of your firewall resources.

This is a convenience which creates an instance of the UpdateFirewallEncryptionConfigurationRequest.Builder avoiding the need to create one manually via UpdateFirewallEncryptionConfigurationRequest.builder()

Parameters:

updateFirewallEncryptionConfigurationRequest - A Consumer that will call methods on UpdateFirewallEncryptionConfigurationRequest.Builder to create a request.

Returns:

Result of the UpdateFirewallEncryptionConfiguration operation returned by the service.

See Also:

• AWS API Documentation

updateFirewallPolicy

default UpdateFirewallPolicyResponse updateFirewallPolicy(UpdateFirewallPolicyRequest updateFirewallPolicyRequest)
                                                   throws InvalidRequestException,
ResourceNotFoundException,
ThrottlingException,
InternalServerErrorException,
InvalidTokenException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Updates the properties of the specified firewall policy.

Parameters:

updateFirewallPolicyRequest -

Returns:

Result of the UpdateFirewallPolicy operation returned by the service.

See Also:

• AWS API Documentation

updateFirewallPolicy

default UpdateFirewallPolicyResponse updateFirewallPolicy(Consumer<UpdateFirewallPolicyRequest.Builder> updateFirewallPolicyRequest)
                                                   throws InvalidRequestException,
ResourceNotFoundException,
ThrottlingException,
InternalServerErrorException,
InvalidTokenException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Updates the properties of the specified firewall policy.

This is a convenience which creates an instance of the UpdateFirewallPolicyRequest.Builder avoiding the need to create one manually via UpdateFirewallPolicyRequest.builder()

Parameters:

updateFirewallPolicyRequest - A Consumer that will call methods on UpdateFirewallPolicyRequest.Builder to create a request.

Returns:

Result of the UpdateFirewallPolicy operation returned by the service.

See Also:

• AWS API Documentation

updateFirewallPolicyChangeProtection

default UpdateFirewallPolicyChangeProtectionResponse updateFirewallPolicyChangeProtection(UpdateFirewallPolicyChangeProtectionRequest updateFirewallPolicyChangeProtectionRequest)
                                                                                   throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
ResourceOwnerCheckException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Modifies the flag, ChangeProtection, which indicates whether it is possible to change the firewall. If the flag is set to TRUE, the firewall is protected from changes. This setting helps protect against accidentally changing a firewall that's in use.

Parameters:

updateFirewallPolicyChangeProtectionRequest -

Returns:

Result of the UpdateFirewallPolicyChangeProtection operation returned by the service.

See Also:

• AWS API Documentation

updateFirewallPolicyChangeProtection

default UpdateFirewallPolicyChangeProtectionResponse updateFirewallPolicyChangeProtection(Consumer<UpdateFirewallPolicyChangeProtectionRequest.Builder> updateFirewallPolicyChangeProtectionRequest)
                                                                                   throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
ResourceOwnerCheckException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Modifies the flag, ChangeProtection, which indicates whether it is possible to change the firewall. If the flag is set to TRUE, the firewall is protected from changes. This setting helps protect against accidentally changing a firewall that's in use.

This is a convenience which creates an instance of the UpdateFirewallPolicyChangeProtectionRequest.Builder avoiding the need to create one manually via UpdateFirewallPolicyChangeProtectionRequest.builder()

Parameters:

updateFirewallPolicyChangeProtectionRequest - A Consumer that will call methods on UpdateFirewallPolicyChangeProtectionRequest.Builder to create a request.

Returns:

Result of the UpdateFirewallPolicyChangeProtection operation returned by the service.

See Also:

• AWS API Documentation

updateLoggingConfiguration

default UpdateLoggingConfigurationResponse updateLoggingConfiguration(UpdateLoggingConfigurationRequest updateLoggingConfigurationRequest)
                                                               throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
LogDestinationPermissionException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Sets the logging configuration for the specified firewall.

To change the logging configuration, retrieve the LoggingConfiguration by calling DescribeLoggingConfiguration, then change it and provide the modified object to this update call. You must change the logging configuration one LogDestinationConfig at a time inside the retrieved LoggingConfiguration object.

You can perform only one of the following actions in any call to UpdateLoggingConfiguration:

• Create a new log destination object by adding a single LogDestinationConfig array element to LogDestinationConfigs.

• Delete a log destination object by removing a single LogDestinationConfig array element from LogDestinationConfigs.

• Change the LogDestination setting in a single LogDestinationConfig array element.

You can't change the LogDestinationType or LogType in a LogDestinationConfig. To change these settings, delete the existing LogDestinationConfig object and create a new one, using two separate calls to this update operation.

Parameters:

updateLoggingConfigurationRequest -

Returns:

Result of the UpdateLoggingConfiguration operation returned by the service.

See Also:

• AWS API Documentation

updateLoggingConfiguration

default UpdateLoggingConfigurationResponse updateLoggingConfiguration(Consumer<UpdateLoggingConfigurationRequest.Builder> updateLoggingConfigurationRequest)
                                                               throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
LogDestinationPermissionException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Sets the logging configuration for the specified firewall.

To change the logging configuration, retrieve the LoggingConfiguration by calling DescribeLoggingConfiguration, then change it and provide the modified object to this update call. You must change the logging configuration one LogDestinationConfig at a time inside the retrieved LoggingConfiguration object.

You can perform only one of the following actions in any call to UpdateLoggingConfiguration:

• Create a new log destination object by adding a single LogDestinationConfig array element to LogDestinationConfigs.

• Delete a log destination object by removing a single LogDestinationConfig array element from LogDestinationConfigs.

• Change the LogDestination setting in a single LogDestinationConfig array element.

You can't change the LogDestinationType or LogType in a LogDestinationConfig. To change these settings, delete the existing LogDestinationConfig object and create a new one, using two separate calls to this update operation.

This is a convenience which creates an instance of the UpdateLoggingConfigurationRequest.Builder avoiding the need to create one manually via UpdateLoggingConfigurationRequest.builder()

Parameters:

updateLoggingConfigurationRequest - A Consumer that will call methods on UpdateLoggingConfigurationRequest.Builder to create a request.

Returns:

Result of the UpdateLoggingConfiguration operation returned by the service.

See Also:

• AWS API Documentation

updateRuleGroup

default UpdateRuleGroupResponse updateRuleGroup(UpdateRuleGroupRequest updateRuleGroupRequest)
                                         throws ResourceNotFoundException,
InvalidRequestException,
ThrottlingException,
InternalServerErrorException,
InvalidTokenException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Updates the rule settings for the specified rule group. You use a rule group by reference in one or more firewall policies. When you modify a rule group, you modify all firewall policies that use the rule group.

To update a rule group, first call DescribeRuleGroup to retrieve the current RuleGroup object, update the object as needed, and then provide the updated object to this call.

Parameters:

updateRuleGroupRequest -

Returns:

Result of the UpdateRuleGroup operation returned by the service.

See Also:

• AWS API Documentation

updateRuleGroup

default UpdateRuleGroupResponse updateRuleGroup(Consumer<UpdateRuleGroupRequest.Builder> updateRuleGroupRequest)
                                         throws ResourceNotFoundException,
InvalidRequestException,
ThrottlingException,
InternalServerErrorException,
InvalidTokenException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Updates the rule settings for the specified rule group. You use a rule group by reference in one or more firewall policies. When you modify a rule group, you modify all firewall policies that use the rule group.

To update a rule group, first call DescribeRuleGroup to retrieve the current RuleGroup object, update the object as needed, and then provide the updated object to this call.

This is a convenience which creates an instance of the UpdateRuleGroupRequest.Builder avoiding the need to create one manually via UpdateRuleGroupRequest.builder()

Parameters:

updateRuleGroupRequest - A Consumer that will call methods on UpdateRuleGroupRequest.Builder to create a request.

Returns:

Result of the UpdateRuleGroup operation returned by the service.

See Also:

• AWS API Documentation

updateSubnetChangeProtection

default UpdateSubnetChangeProtectionResponse updateSubnetChangeProtection(UpdateSubnetChangeProtectionRequest updateSubnetChangeProtectionRequest)
                                                                   throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
ResourceOwnerCheckException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Parameters:

updateSubnetChangeProtectionRequest -

Returns:

Result of the UpdateSubnetChangeProtection operation returned by the service.

See Also:

• AWS API Documentation

updateSubnetChangeProtection

default UpdateSubnetChangeProtectionResponse updateSubnetChangeProtection(Consumer<UpdateSubnetChangeProtectionRequest.Builder> updateSubnetChangeProtectionRequest)
                                                                   throws InvalidRequestException,
InternalServerErrorException,
ResourceNotFoundException,
ThrottlingException,
InvalidTokenException,
ResourceOwnerCheckException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

This is a convenience which creates an instance of the UpdateSubnetChangeProtectionRequest.Builder avoiding the need to create one manually via UpdateSubnetChangeProtectionRequest.builder()

Parameters:

updateSubnetChangeProtectionRequest - A Consumer that will call methods on UpdateSubnetChangeProtectionRequest.Builder to create a request.

Returns:

Result of the UpdateSubnetChangeProtection operation returned by the service.

See Also:

• AWS API Documentation

updateTLSInspectionConfiguration

default UpdateTlsInspectionConfigurationResponse updateTLSInspectionConfiguration(UpdateTlsInspectionConfigurationRequest updateTlsInspectionConfigurationRequest)
                                                                           throws InvalidRequestException,
ResourceNotFoundException,
ThrottlingException,
InternalServerErrorException,
InvalidTokenException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Updates the TLS inspection configuration settings for the specified TLS inspection configuration. You use a TLS inspection configuration by referencing it in one or more firewall policies. When you modify a TLS inspection configuration, you modify all firewall policies that use the TLS inspection configuration.

To update a TLS inspection configuration, first call DescribeTLSInspectionConfiguration to retrieve the current TLSInspectionConfiguration object, update the object as needed, and then provide the updated object to this call.

Parameters:

updateTlsInspectionConfigurationRequest -

Returns:

Result of the UpdateTLSInspectionConfiguration operation returned by the service.

See Also:

• AWS API Documentation

updateTLSInspectionConfiguration

default UpdateTlsInspectionConfigurationResponse updateTLSInspectionConfiguration(Consumer<UpdateTlsInspectionConfigurationRequest.Builder> updateTlsInspectionConfigurationRequest)
                                                                           throws InvalidRequestException,
ResourceNotFoundException,
ThrottlingException,
InternalServerErrorException,
InvalidTokenException,
AwsServiceException,
SdkClientException,
NetworkFirewallException

Updates the TLS inspection configuration settings for the specified TLS inspection configuration. You use a TLS inspection configuration by referencing it in one or more firewall policies. When you modify a TLS inspection configuration, you modify all firewall policies that use the TLS inspection configuration.

To update a TLS inspection configuration, first call DescribeTLSInspectionConfiguration to retrieve the current TLSInspectionConfiguration object, update the object as needed, and then provide the updated object to this call.

This is a convenience which creates an instance of the UpdateTlsInspectionConfigurationRequest.Builder avoiding the need to create one manually via UpdateTlsInspectionConfigurationRequest.builder()

Parameters:

updateTlsInspectionConfigurationRequest - A Consumer that will call methods on UpdateTlsInspectionConfigurationRequest.Builder to create a request.

Returns:

Result of the UpdateTLSInspectionConfiguration operation returned by the service.

See Also:

• AWS API Documentation

create

static NetworkFirewallClient create()

Create a NetworkFirewallClient with the region loaded from the DefaultAwsRegionProviderChain and credentials loaded from the DefaultCredentialsProvider.

builder

static NetworkFirewallClientBuilder builder()

Create a builder that can be used to configure and create a NetworkFirewallClient.

serviceMetadata

static ServiceMetadata serviceMetadata()

serviceClientConfiguration

default NetworkFirewallServiceClientConfiguration serviceClientConfiguration()

Description copied from interface: SdkClient

The SDK service client configuration exposes client settings to the user, e.g., ClientOverrideConfiguration

Specified by:

serviceClientConfiguration in interface AwsClient

Specified by:

serviceClientConfiguration in interface SdkClient

Returns:

SdkServiceClientConfiguration