NetworkConfig / CentralNetworkServicesConfig / NfwConfig / NfwRuleGroupConfig / NfwRuleGroupRuleConfig / NfwRuleSourceConfig / NfwRuleSourceListConfig

Network Firewall rule source list configuration. Used to define DNS allow and deny lists for Network Firewall.

See

https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-rulessourcelist.html

Example

generatedRulesType: DENYLIST
targets:
- .example.com
targetTypes: ['TLS_SNI', 'HTTP_HOST']

Hierarchy

  • NfwRuleSourceListConfig

Implements

Constructors

Properties

generatedRulesType: "ALLOWLIST" | "DENYLIST" = 'DENYLIST'

The type of rules to generate from the source list.

See

nfwGeneratedRulesType

targetTypes: ("TLS_SNI" | "HTTP_HOST")[] = ...

An array of protocol types to inspect.

See

nfwTargetType

targets: string[] = []

An array of target domain names.

Remarks

Supported values are as fallows: Explicit domain names such as www.example.com. Wildcard domain names should be prefaced with a .. For example: .example.com

Generated using TypeDoc