Hierarchy

  • Resource
    • NetworkFirewallRuleGroup

Implements

  • INetworkFirewallRuleGroup

Constructors

  • Parameters

    • scope: Construct
    • id: string
    • props: NetworkFirewallRuleGroupProps

    Returns NetworkFirewallRuleGroup

Properties

env: ResourceEnvironment
groupArn: string
groupId: string
groupName: string
node: Node

The tree node.

Stability

stable

physicalName: string

Returns a string-encoded token that resolves to the physical name that should be passed to the CloudFormation resource.

This value will resolve to one of the following:

  • a concrete value (e.g. "my-awesome-bucket")
  • undefined, when a name should be generated by CloudFormation
  • a concrete name generated automatically during synthesis, in cross-environment scenarios.
ruleGroup?: RuleGroupProperty
stack: Stack

Methods

  • Internal

    Called when this resource is referenced across environments (account/region) to order to request that a physical name will be generated for this resource during synthesis, so the resource can be referenced through it's absolute name/arn.

    Returns void

  • Apply the given removal policy to this resource

    The Removal Policy controls what happens to this resource when it stops being managed by CloudFormation, either because you've removed it from the CDK application or because you've made a change that requires the resource to be replaced.

    The resource can be deleted (RemovalPolicy.DESTROY), or left in your AWS account for data recovery and cleanup later (RemovalPolicy.RETAIN).

    Parameters

    • policy: RemovalPolicy

    Returns void

  • Returns string

  • Returns an environment-sensitive token that should be used for the resource's "ARN" attribute (e.g. bucket.bucketArn).

    Normally, this token will resolve to arnAttr, but if the resource is referenced across environments, arnComponents will be used to synthesize a concrete ARN with the resource's physical name. Make sure to reference this.physicalName in arnComponents.

    Parameters

    • arnAttr: string

      The CFN attribute which resolves to the ARN of the resource. Commonly it will be called "Arn" (e.g. resource.attrArn), but sometimes it's the CFN resource's ref.

    • arnComponents: ArnComponents

      The format of the ARN of this resource. You must reference this.physicalName somewhere within the ARN in order for cross-environment references to work.

    Returns string

  • Returns an environment-sensitive token that should be used for the resource's "name" attribute (e.g. bucket.bucketName).

    Normally, this token will resolve to nameAttr, but if the resource is referenced across environments, it will be resolved to this.physicalName, which will be a concrete name.

    Parameters

    • nameAttr: string

      The CFN attribute which resolves to the resource's name. Commonly this is the resource's ref.

    Returns string

  • Takes in variable definitions as a map or array and transforms them into an array

    Returns

    Parameters

    • definition: NfwRuleVariableDefinitionConfig | NfwRuleVariableDefinitionConfig[]

    Returns NfwRuleVariableDefinitionConfig[]

  • Returns a string representation of this construct.

    Stability

    stable

    Returns string

  • Transform rule options to conform with L1 construct.

    Parameters

    • props: NfwRuleGroupRuleConfig

    Returns undefined | {
        ruleOrder: "STRICT_ORDER" | "DEFAULT_ACTION_ORDER";
    }

  • Transform rule variables to conform with L1 construct.

    Parameters

    • props: NfwRuleGroupRuleConfig

    Returns undefined | {
        ipSets: {
            [key: string]: {
                definition: string[];
            };
        };
        portSets: {
            [key: string]: {
                definition: string[];
            };
        };
    }

  • Transform stateless and custom rule group policies to conform with L1 construct.

    Parameters

    • props: NfwRuleGroupRuleConfig

    Returns undefined | {
        customActions: {
            actionDefinition: {
                publishMetricAction: {
                    dimensions: {
                        value: string;
                    }[];
                };
            };
            actionName: string;
        }[];
        statelessRules: {
            priority: number;
            ruleDefinition: {
                actions: ("aws:pass" | "aws:drop" | "aws:forward_to_sfe")[];
                matchAttributes: {
                    destinationPorts: NfwRuleSourceStatelessPortRangeConfig[];
                    destinations: {
                        addressDefinition: string;
                    }[];
                    protocols: number[];
                    sourcePorts: NfwRuleSourceStatelessPortRangeConfig[];
                    sources: {
                        addressDefinition: string;
                    }[];
                    tcpFlags: undefined | NfwRuleSourceStatelessTcpFlagsConfig[];
                };
            };
        }[];
    }

  • (deprecated) Checks if x is a construct.

    Returns

    true if x is an object created from a class which extends Construct.

    Deprecated

    use x instanceof Construct instead

    Parameters

    • x: any

      Any object.

    Returns x is Construct

  • Returns true if the construct was created by CDK, and false otherwise

    Parameters

    • construct: IConstruct

    Returns boolean

  • Check whether the given construct is a Resource

    Parameters

    • construct: IConstruct

    Returns construct is Resource

Generated using TypeDoc