Readonly
capacityThe capacity of the rule group.
Readonly
description(OPTIONAL) A description for the rule group.
Readonly
nameA friendly name for the rule group.
CAUTION: Changing this property value after initial deployment causes the rule group to be recreated. Please be aware that any downstream dependencies may cause this property update to fail.
Readonly
regionsReadonly
ruleReadonly
share(OPTIONAL) Resource Access Manager (RAM) share targets.
Targets can be account names and/or organizational units. Targets must be configured for account(s)/OU(s) that require access to the rule group. A target is not required for the delegated admin account.
Readonly
tags(OPTIONAL) An array of tags for the rule group.
Readonly
typeThe type of rules in the rule group.
Generated using TypeDoc
NetworkConfig / CentralNetworkServicesConfig / NfwConfig / NfwRuleGroupConfig
Network Firewall rule group configuration. Use this configuration to define stateful and stateless rule groups for Network Firewall. An AWS Network Firewall rule group is a reusable set of criteria for inspecting and handling network traffic. You add one or more rule groups to a firewall policy as part of policy configuration.
See
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-rulegroup.html
Example
Stateful rule group:
Stateless rule group: