Class NfwRuleSourceStatelessMatchAttributesConfig

NetworkConfig / CentralNetworkServicesConfig / NfwConfig / NfwRuleGroupConfig / NfwRuleGroupRuleConfig / NfwRuleSourceConfig / NfwStatelessRulesAndCustomActionsConfig / NfwRuleSourceStatelessRuleConfig / NfwRuleSourceStatelessRuleDefinitionConfig / NfwRuleSourceStatelessMatchAttributesConfig

Network Firewall stateless rule match attributes configuration. Use this configuration to define stateless rule match attributes for Network Firewall. To be a match, a packet must satisfy all of the match settings in the rule.

See

https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-matchattributes.html

Example

protocols: [6]
sources:
  - 10.1.0.0/16
sourcePorts:
  - fromPort: 1024
    toPort: 65535
destinations:
  - 10.0.0.0/16
destinationPorts:
  - fromPort: 22
    toPort: 22

Hierarchy

NfwRuleSourceStatelessMatchAttributesConfig

Implements

TypeOf<typeof nfwRuleSourceStatelessMatchAttributesConfig>

Index

Constructors

constructor

Properties

destinationPorts destinations protocols sourcePorts sources tcpFlags

Constructors

constructor

new NfwRuleSourceStatelessMatchAttributesConfig(): NfwRuleSourceStatelessMatchAttributesConfig
Returns NfwRuleSourceStatelessMatchAttributesConfig

Properties

`Readonly` destinationPorts

destinationPorts: undefined | NfwRuleSourceStatelessPortRangeConfig[] = undefined

(OPTIONAL) An array of Network Firewall stateless port range configurations.

Remarks

The destination ports to inspect for. If not specified, this matches with any destination port. This setting is only used for protocols 6 (TCP) and 17 (UDP).

See

NfwRuleSourceStatelessPortRangeConfig

`Readonly` destinations

destinations: undefined | string[] = undefined

(OPTIONAL) An array of destination CIDR ranges to inspect for.

Remarks

Use CIDR notation, i.e. 10.0.0.0/16

`Readonly` protocols

protocols: undefined | number[] = undefined

(OPTIONAL) An array of IP protocol numbers to inspect for.

`Readonly` sourcePorts

sourcePorts: undefined | NfwRuleSourceStatelessPortRangeConfig[] = undefined

(OPTIONAL) An array of Network Firewall stateless port range configurations.

Remarks

The source ports to inspect for. If not specified, this matches with any source port. This setting is only used for protocols 6 (TCP) and 17 (UDP).

See

NfwRuleSourceStatelessPortRangeConfig

`Readonly` sources

sources: undefined | string[] = undefined

(OPTIONAL) An array of source CIDR ranges to inspect for.

Remarks

Use CIDR notation, i.e. 10.0.0.0/16

`Readonly` tcpFlags

tcpFlags: undefined | NfwRuleSourceStatelessTcpFlagsConfig[] = undefined

(OPTIONAL) An array of Network Firewall stateless TCP flag configurations.

See

NfwRuleSourceStatelessTcpFlagsConfig

Class NfwRuleSourceStatelessMatchAttributesConfig

See

Example

Hierarchy

Implements

Index

Constructors

Properties

Constructors

constructor

Returns NfwRuleSourceStatelessMatchAttributesConfig

Properties

`Readonly` destinationPorts

Remarks

See

`Readonly` destinations

Remarks

`Readonly` protocols

`Readonly` sourcePorts

Remarks

See

`Readonly` sources

Remarks

`Readonly` tcpFlags

See

Settings

Member Visibility

Theme

Class NfwRuleSourceStatelessMatchAttributesConfig

See

Example

Hierarchy

Implements

Index

Constructors

Properties

Constructors

constructor

Returns NfwRuleSourceStatelessMatchAttributesConfig

Properties

Readonly destinationPorts

Remarks

See

Readonly destinations

Remarks

Readonly protocols

Readonly sourcePorts

Remarks

See

Readonly sources

Remarks

Readonly tcpFlags

See

Settings

Member Visibility

Theme

`Readonly` destinationPorts

`Readonly` destinations

`Readonly` protocols

`Readonly` sourcePorts

`Readonly` sources

`Readonly` tcpFlags