aws-cdk-lib.aws_networkfirewall.CfnFirewallPolicyProps

interface CfnFirewallPolicyProps

LanguageType name
.NETAmazon.CDK.AWS.NetworkFirewall.CfnFirewallPolicyProps
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awsnetworkfirewall#CfnFirewallPolicyProps
Javasoftware.amazon.awscdk.services.networkfirewall.CfnFirewallPolicyProps
Pythonaws_cdk.aws_networkfirewall.CfnFirewallPolicyProps
TypeScript aws-cdk-lib » aws_networkfirewall » CfnFirewallPolicyProps

Properties for defining a CfnFirewallPolicy.

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_networkfirewall as networkfirewall } from 'aws-cdk-lib';
const cfnFirewallPolicyProps: networkfirewall.CfnFirewallPolicyProps = {
  firewallPolicy: {
    statelessDefaultActions: ['statelessDefaultActions'],
    statelessFragmentDefaultActions: ['statelessFragmentDefaultActions'],

    // the properties below are optional
    policyVariables: {
      ruleVariables: {
        ruleVariablesKey: {
          definition: ['definition'],
        },
      },
    },
    statefulDefaultActions: ['statefulDefaultActions'],
    statefulEngineOptions: {
      ruleOrder: 'ruleOrder',
      streamExceptionPolicy: 'streamExceptionPolicy',
    },
    statefulRuleGroupReferences: [{
      resourceArn: 'resourceArn',

      // the properties below are optional
      override: {
        action: 'action',
      },
      priority: 123,
    }],
    statelessCustomActions: [{
      actionDefinition: {
        publishMetricAction: {
          dimensions: [{
            value: 'value',
          }],
        },
      },
      actionName: 'actionName',
    }],
    statelessRuleGroupReferences: [{
      priority: 123,
      resourceArn: 'resourceArn',
    }],
  },
  firewallPolicyName: 'firewallPolicyName',

  // the properties below are optional
  description: 'description',
  tags: [{
    key: 'key',
    value: 'value',
  }],
};

Properties

NameTypeDescription
firewallPolicyIResolvable | FirewallPolicyPropertyThe traffic filtering behavior of a firewall policy, defined in a collection of stateless and stateful rule groups and other settings.
firewallPolicyNamestringThe descriptive name of the firewall policy.
description?stringA description of the firewall policy.
tags?CfnTag[]An array of key-value pairs to apply to this resource.

firewallPolicy

Type: IResolvable | FirewallPolicyProperty

The traffic filtering behavior of a firewall policy, defined in a collection of stateless and stateful rule groups and other settings.


firewallPolicyName

Type: string

The descriptive name of the firewall policy.

You can't change the name of a firewall policy after you create it.


description?

Type: string (optional)

A description of the firewall policy.


tags?

Type: CfnTag[] (optional)

An array of key-value pairs to apply to this resource.

For more information, see Tag .