Class NfwRuleSourceConfig

NetworkConfig / CentralNetworkServicesConfig / NfwConfig / NfwRuleGroupConfig / NfwRuleGroupRuleConfig / NfwRuleSourceConfig

Network Firewall rule source configuration. Used to define rules for a Network Firewall.

See

https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-rulessource.html

Example

File with list of Suricata rules:

rulesFile: path/to/rules.txt

DNS rule list:

rulesSourceList:
  generatedRulesType: DENYLIST
  targets:
    - .example.com
  targetTypes: ['TLS_SNI', 'HTTP_HOST']

Single Suricata rule:

rulesString: 'pass ip 10.1.0.0/16 any -> 10.0.0.0/16 any (sid:100;)'

Stateful rules:

statefulRules:
  - action: PASS
    header:
      source: 10.1.0.0/16
      sourcePort: ANY
      destination: 10.0.0.0/16
      destinationPort: ANY
      direction: FORWARD
      protocol: IP
    ruleOptions:
      - keyword: sid
        settings: ['100']

Stateless rules:

statelessRulesAndCustomActions:
  statelessRules:
    - priority: 100
      ruleDefinition:
        actions: ['aws:pass']
        matchAttributes:
          sources:
            - 10.1.0.0/16
          sourcePorts:
            - fromPort: 1024
              toPort: 65535
          destinations:
            - 10.0.0.0/16
          destinationPorts:
            - fromPort: 22
              toPort: 22

Hierarchy

  • NfwRuleSourceConfig

Implements

Constructors

constructor

Properties

rulesFile rulesSourceList rulesString statefulRules statelessRulesAndCustomActions

Constructors

constructor

Properties

Readonly rulesFile

rulesFile: undefined | string = undefined

Suricata rules file.

See

https://suricata.readthedocs.io/en/suricata-6.0.2/rules/intro.html

Readonly rulesSourceList

rulesSourceList: undefined | NfwRuleSourceListConfig = undefined

A Network Firewall rule source list configuration.

See

NfwRuleSourceListConfig

Readonly rulesString

rulesString: undefined | string = undefined

A Suricata-compatible stateful rule string.

See

https://docs.aws.amazon.com/network-firewall/latest/developerguide/suricata-examples.html#suricata-example-rule-with-variables

Readonly statefulRules

statefulRules: undefined | NfwRuleSourceStatefulRuleConfig[] = undefined

An array of Network Firewall stateful rule configurations.

See

NfwRuleSourceStatefulRuleConfig

Readonly statelessRulesAndCustomActions

statelessRulesAndCustomActions: undefined | NfwStatelessRulesAndCustomActionsConfig = undefined

A Network Firewall stateless rules and custom action configuration.

See

NfwStatelessRulesAndCustomActionsConfig

Settings

Member Visibility

Theme

Generated using TypeDoc