aws-cdk-lib.aws_networkfirewall.CfnRuleGroup.RuleOptionProperty

interface RuleOptionProperty

LanguageType name
.NETAmazon.CDK.AWS.NetworkFirewall.CfnRuleGroup.RuleOptionProperty
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awsnetworkfirewall#CfnRuleGroup_RuleOptionProperty
Javasoftware.amazon.awscdk.services.networkfirewall.CfnRuleGroup.RuleOptionProperty
Pythonaws_cdk.aws_networkfirewall.CfnRuleGroup.RuleOptionProperty
TypeScript aws-cdk-lib » aws_networkfirewall » CfnRuleGroup » RuleOptionProperty

Additional settings for a stateful rule.

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_networkfirewall as networkfirewall } from 'aws-cdk-lib';
const ruleOptionProperty: networkfirewall.CfnRuleGroup.RuleOptionProperty = {
  keyword: 'keyword',

  // the properties below are optional
  settings: ['settings'],
};

Properties

NameTypeDescription
keywordstringThe Suricata rule option keywords.
settings?string[]The Suricata rule option settings.

keyword

Type: string

The Suricata rule option keywords.

For Network Firewall , the keyword signature ID (sid) is required in the format sid: 112233 . The sid must be unique within the rule group. For information about Suricata rule option keywords, see Rule options .


settings?

Type: string[] (optional)

The Suricata rule option settings.

Settings have zero or more values, and the number of possible settings and required settings depends on the keyword. The format for Settings is number . For information about Suricata rule option settings, see Rule options .