java.lang.Object
software.amazon.awssdk.services.route53resolver.model.FirewallConfig
All Implemented Interfaces:
Serializable, SdkPojo, ToCopyableBuilder<FirewallConfig.Builder,FirewallConfig>

@Generated("software.amazon.awssdk:codegen") public final class FirewallConfig extends Object implements SdkPojo, Serializable, ToCopyableBuilder<FirewallConfig.Builder,FirewallConfig>

Configuration of the firewall behavior provided by DNS Firewall for a single VPC from Amazon Virtual Private Cloud (Amazon VPC).

See Also:
  • Method Details

    • id

      public final String id()

      The ID of the firewall configuration.

      Returns:
      The ID of the firewall configuration.
    • resourceId

      public final String resourceId()

      The ID of the VPC that this firewall configuration applies to.

      Returns:
      The ID of the VPC that this firewall configuration applies to.
    • ownerId

      public final String ownerId()

      The Amazon Web Services account ID of the owner of the VPC that this firewall configuration applies to.

      Returns:
      The Amazon Web Services account ID of the owner of the VPC that this firewall configuration applies to.
    • firewallFailOpen

      public final FirewallFailOpenStatus firewallFailOpen()

      Determines how DNS Firewall operates during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply.

      • By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall returns a failure error when it is unable to properly evaluate a query.

      • If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them.

      This behavior is only enforced for VPCs that have at least one DNS Firewall rule group association.

      If the service returns an enum value that is not available in the current SDK version, firewallFailOpen will return FirewallFailOpenStatus.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from firewallFailOpenAsString().

      Returns:
      Determines how DNS Firewall operates during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply.

      • By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall returns a failure error when it is unable to properly evaluate a query.

      • If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them.

      This behavior is only enforced for VPCs that have at least one DNS Firewall rule group association.

      See Also:
    • firewallFailOpenAsString

      public final String firewallFailOpenAsString()

      Determines how DNS Firewall operates during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply.

      • By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall returns a failure error when it is unable to properly evaluate a query.

      • If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them.

      This behavior is only enforced for VPCs that have at least one DNS Firewall rule group association.

      If the service returns an enum value that is not available in the current SDK version, firewallFailOpen will return FirewallFailOpenStatus.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from firewallFailOpenAsString().

      Returns:
      Determines how DNS Firewall operates during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply.

      • By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall returns a failure error when it is unable to properly evaluate a query.

      • If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them.

      This behavior is only enforced for VPCs that have at least one DNS Firewall rule group association.

      See Also:
    • toBuilder

      public FirewallConfig.Builder toBuilder()
      Description copied from interface: ToCopyableBuilder
      Take this object and create a builder that contains all of the current property values of this object.
      Specified by:
      toBuilder in interface ToCopyableBuilder<FirewallConfig.Builder,FirewallConfig>
      Returns:
      a builder for type T
    • builder

      public static FirewallConfig.Builder builder()
    • serializableBuilderClass

      public static Class<? extends FirewallConfig.Builder> serializableBuilderClass()
    • hashCode

      public final int hashCode()
      Overrides:
      hashCode in class Object
    • equals

      public final boolean equals(Object obj)
      Overrides:
      equals in class Object
    • equalsBySdkFields

      public final boolean equalsBySdkFields(Object obj)
      Description copied from interface: SdkPojo
      Indicates whether some other object is "equal to" this one by SDK fields. An SDK field is a modeled, non-inherited field in an SdkPojo class, and is generated based on a service model.

      If an SdkPojo class does not have any inherited fields, equalsBySdkFields and equals are essentially the same.

      Specified by:
      equalsBySdkFields in interface SdkPojo
      Parameters:
      obj - the object to be compared with
      Returns:
      true if the other object equals to this object by sdk fields, false otherwise.
    • toString

      public final String toString()
      Returns a string representation of this object. This is useful for testing and debugging. Sensitive data will be redacted from this string using a placeholder value.
      Overrides:
      toString in class Object
    • getValueForField

      public final <T> Optional<T> getValueForField(String fieldName, Class<T> clazz)
    • sdkFields

      public final List<SdkField<?>> sdkFields()
      Specified by:
      sdkFields in interface SdkPojo
      Returns:
      List of SdkField in this POJO. May be empty list but should never be null.