Class AWSManagedRulesAntiDDoSRuleSet

java.lang.Object
software.amazon.awssdk.services.wafv2.model.AWSManagedRulesAntiDDoSRuleSet
All Implemented Interfaces:
Serializable, SdkPojo, ToCopyableBuilder<AWSManagedRulesAntiDDoSRuleSet.Builder,AWSManagedRulesAntiDDoSRuleSet>
@Generated("software.amazon.awssdk:codegen") public final class AWSManagedRulesAntiDDoSRuleSet extends Object implements SdkPojo, Serializable, ToCopyableBuilder<AWSManagedRulesAntiDDoSRuleSet.Builder,AWSManagedRulesAntiDDoSRuleSet>

Configures the use of the anti-DDoS managed rule group, AWSManagedRulesAntiDDoSRuleSet. This configuration is used in ManagedRuleGroupConfig.

The configuration that you provide here determines whether and how the rules in the rule group are used.

For additional information about this and the other intelligent threat mitigation rule groups, see Intelligent threat mitigation in WAF and Amazon Web Services Managed Rules rule groups list in the WAF Developer Guide.

See Also:

  • Method Details

    • clientSideActionConfig

      public final ClientSideActionConfig clientSideActionConfig()

      Configures the request handling that's applied by the managed rule group rules ChallengeAllDuringEvent and ChallengeDDoSRequests during a distributed denial of service (DDoS) attack.

      Returns:
      Configures the request handling that's applied by the managed rule group rules ChallengeAllDuringEvent and ChallengeDDoSRequests during a distributed denial of service (DDoS) attack.

    • sensitivityToBlock

      public final SensitivityToAct sensitivityToBlock()

      The sensitivity that the rule group rule DDoSRequests uses when matching against the DDoS suspicion labeling on a request. The managed rule group adds the labeling during DDoS events, before the DDoSRequests rule runs.

      The higher the sensitivity, the more levels of labeling that the rule matches:

      • Low sensitivity is less sensitive, causing the rule to match only on the most likely participants in an attack, which are the requests with the high suspicion label awswaf:managed:aws:anti-ddos:high-suspicion-ddos-request.

      • Medium sensitivity causes the rule to match on the medium and high suspicion labels.

      • High sensitivity causes the rule to match on all of the suspicion labels: low, medium, and high.

      Default: LOW

      If the service returns an enum value that is not available in the current SDK version, sensitivityToBlock will return SensitivityToAct.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from sensitivityToBlockAsString().

      Returns:
      The sensitivity that the rule group rule DDoSRequests uses when matching against the DDoS suspicion labeling on a request. The managed rule group adds the labeling during DDoS events, before the DDoSRequests rule runs.

      The higher the sensitivity, the more levels of labeling that the rule matches:

      • Low sensitivity is less sensitive, causing the rule to match only on the most likely participants in an attack, which are the requests with the high suspicion label awswaf:managed:aws:anti-ddos:high-suspicion-ddos-request.

      • Medium sensitivity causes the rule to match on the medium and high suspicion labels.

      • High sensitivity causes the rule to match on all of the suspicion labels: low, medium, and high.

      Default: LOW

      See Also:

    • sensitivityToBlockAsString

      public final String sensitivityToBlockAsString()

      The sensitivity that the rule group rule DDoSRequests uses when matching against the DDoS suspicion labeling on a request. The managed rule group adds the labeling during DDoS events, before the DDoSRequests rule runs.

      The higher the sensitivity, the more levels of labeling that the rule matches:

      • Low sensitivity is less sensitive, causing the rule to match only on the most likely participants in an attack, which are the requests with the high suspicion label awswaf:managed:aws:anti-ddos:high-suspicion-ddos-request.

      • Medium sensitivity causes the rule to match on the medium and high suspicion labels.

      • High sensitivity causes the rule to match on all of the suspicion labels: low, medium, and high.

      Default: LOW

      If the service returns an enum value that is not available in the current SDK version, sensitivityToBlock will return SensitivityToAct.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from sensitivityToBlockAsString().

      Returns:
      The sensitivity that the rule group rule DDoSRequests uses when matching against the DDoS suspicion labeling on a request. The managed rule group adds the labeling during DDoS events, before the DDoSRequests rule runs.

      The higher the sensitivity, the more levels of labeling that the rule matches:

      • Low sensitivity is less sensitive, causing the rule to match only on the most likely participants in an attack, which are the requests with the high suspicion label awswaf:managed:aws:anti-ddos:high-suspicion-ddos-request.

      • Medium sensitivity causes the rule to match on the medium and high suspicion labels.

      • High sensitivity causes the rule to match on all of the suspicion labels: low, medium, and high.

      Default: LOW

      See Also:

    • toBuilder

      public AWSManagedRulesAntiDDoSRuleSet.Builder toBuilder()
      Description copied from interface: ToCopyableBuilder
      Take this object and create a builder that contains all of the current property values of this object.
      Specified by:
      toBuilder in interface ToCopyableBuilder<AWSManagedRulesAntiDDoSRuleSet.Builder,AWSManagedRulesAntiDDoSRuleSet>
      Returns:
      a builder for type T

    • builder

      public static AWSManagedRulesAntiDDoSRuleSet.Builder builder()

    • serializableBuilderClass

      public static Class<? extends AWSManagedRulesAntiDDoSRuleSet.Builder> serializableBuilderClass()

    • hashCode

      public final int hashCode()
      Overrides:
      hashCode in class Object

    • equals

      public final boolean equals(Object obj)
      Overrides:
      equals in class Object

    • equalsBySdkFields

      public final boolean equalsBySdkFields(Object obj)
      Description copied from interface: SdkPojo
      Indicates whether some other object is "equal to" this one by SDK fields. An SDK field is a modeled, non-inherited field in an SdkPojo class, and is generated based on a service model.

      If an SdkPojo class does not have any inherited fields, equalsBySdkFields and equals are essentially the same.

      Specified by:
      equalsBySdkFields in interface SdkPojo
      Parameters:
      obj - the object to be compared with
      Returns:
      true if the other object equals to this object by sdk fields, false otherwise.

    • toString

      public final String toString()
      Returns a string representation of this object. This is useful for testing and debugging. Sensitive data will be redacted from this string using a placeholder value.
      Overrides:
      toString in class Object

    • getValueForField

      public final <T> Optional<T> getValueForField(String fieldName, Class<T> clazz)

    • sdkFields

      public final List<SdkField<?>> sdkFields()
      Specified by:
      sdkFields in interface SdkPojo
      Returns:
      List of SdkField in this POJO. May be empty list but should never be null.

    • sdkFieldNameToField

      public final Map<String,SdkField<?>> sdkFieldNameToField()
      Specified by:
      sdkFieldNameToField in interface SdkPojo
      Returns:
      The mapping between the field name and its corresponding field.