# WARNING ABOUT GENERATED CODE
#
# This file is generated. See the contributing guide for more information:
# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
#
# WARNING ABOUT GENERATED CODE
module Aws
module NetworkFirewall
class Client < ::Seahorse::Client::Base
include ::Aws::ClientStubs
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#initialize-instance_method
def self.new: (
?credentials: untyped,
?region: String,
?access_key_id: String,
?active_endpoint_cache: bool,
?adaptive_retry_wait_to_fill: bool,
?client_side_monitoring: bool,
?client_side_monitoring_client_id: String,
?client_side_monitoring_host: String,
?client_side_monitoring_port: Integer,
?client_side_monitoring_publisher: untyped,
?convert_params: bool,
?correct_clock_skew: bool,
?defaults_mode: String,
?disable_host_prefix_injection: bool,
?disable_request_compression: bool,
?endpoint: String,
?endpoint_cache_max_entries: Integer,
?endpoint_cache_max_threads: Integer,
?endpoint_cache_poll_interval: Integer,
?endpoint_discovery: bool,
?ignore_configured_endpoint_urls: bool,
?log_formatter: untyped,
?log_level: Symbol,
?logger: untyped,
?max_attempts: Integer,
?profile: String,
?request_min_compression_size_bytes: Integer,
?retry_backoff: Proc,
?retry_base_delay: Float,
?retry_jitter: (:none | :equal | :full | ^(Integer) -> Integer),
?retry_limit: Integer,
?retry_max_delay: Integer,
?retry_mode: ("legacy" | "standard" | "adaptive"),
?sdk_ua_app_id: String,
?secret_access_key: String,
?session_token: String,
?sigv4a_signing_region_set: Array[String],
?simple_json: bool,
?stub_responses: untyped,
?telemetry_provider: Aws::Telemetry::TelemetryProviderBase,
?token_provider: untyped,
?use_dualstack_endpoint: bool,
?use_fips_endpoint: bool,
?validate_params: bool,
?endpoint_provider: untyped,
?http_proxy: String,
?http_open_timeout: (Float | Integer),
?http_read_timeout: (Float | Integer),
?http_idle_timeout: (Float | Integer),
?http_continue_timeout: (Float | Integer),
?ssl_timeout: (Float | Integer | nil),
?http_wire_trace: bool,
?ssl_verify_peer: bool,
?ssl_ca_bundle: String,
?ssl_ca_directory: String,
?ssl_ca_store: String,
?on_chunk_received: Proc,
?on_chunk_sent: Proc,
?raise_response_errors: bool
) -> instance
| (?Hash[Symbol, untyped]) -> instance
interface _AssociateFirewallPolicyResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::AssociateFirewallPolicyResponse]
def firewall_arn: () -> ::String
def firewall_name: () -> ::String
def firewall_policy_arn: () -> ::String
def update_token: () -> ::String
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#associate_firewall_policy-instance_method
def associate_firewall_policy: (
?update_token: ::String,
?firewall_arn: ::String,
?firewall_name: ::String,
firewall_policy_arn: ::String
) -> _AssociateFirewallPolicyResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _AssociateFirewallPolicyResponseSuccess
interface _AssociateSubnetsResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::AssociateSubnetsResponse]
def firewall_arn: () -> ::String
def firewall_name: () -> ::String
def subnet_mappings: () -> ::Array[Types::SubnetMapping]
def update_token: () -> ::String
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#associate_subnets-instance_method
def associate_subnets: (
?update_token: ::String,
?firewall_arn: ::String,
?firewall_name: ::String,
subnet_mappings: Array[
{
subnet_id: ::String,
ip_address_type: ("DUALSTACK" | "IPV4" | "IPV6")?
},
]
) -> _AssociateSubnetsResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _AssociateSubnetsResponseSuccess
interface _CreateFirewallResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::CreateFirewallResponse]
def firewall: () -> Types::Firewall
def firewall_status: () -> Types::FirewallStatus
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#create_firewall-instance_method
def create_firewall: (
firewall_name: ::String,
firewall_policy_arn: ::String,
vpc_id: ::String,
subnet_mappings: Array[
{
subnet_id: ::String,
ip_address_type: ("DUALSTACK" | "IPV4" | "IPV6")?
},
],
?delete_protection: bool,
?subnet_change_protection: bool,
?firewall_policy_change_protection: bool,
?description: ::String,
?tags: Array[
{
key: ::String,
value: ::String
},
],
?encryption_configuration: {
key_id: ::String?,
type: ("CUSTOMER_KMS" | "AWS_OWNED_KMS_KEY")
}
) -> _CreateFirewallResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateFirewallResponseSuccess
interface _CreateFirewallPolicyResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::CreateFirewallPolicyResponse]
def update_token: () -> ::String
def firewall_policy_response: () -> Types::FirewallPolicyResponse
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#create_firewall_policy-instance_method
def create_firewall_policy: (
firewall_policy_name: ::String,
firewall_policy: {
stateless_rule_group_references: Array[
{
resource_arn: ::String,
priority: ::Integer
},
]?,
stateless_default_actions: Array[::String],
stateless_fragment_default_actions: Array[::String],
stateless_custom_actions: Array[
{
action_name: ::String,
action_definition: {
publish_metric_action: {
dimensions: Array[
{
value: ::String
},
]
}?
}
},
]?,
stateful_rule_group_references: Array[
{
resource_arn: ::String,
priority: ::Integer?,
override: {
action: ("DROP_TO_ALERT")?
}?
},
]?,
stateful_default_actions: Array[::String]?,
stateful_engine_options: {
rule_order: ("DEFAULT_ACTION_ORDER" | "STRICT_ORDER")?,
stream_exception_policy: ("DROP" | "CONTINUE" | "REJECT")?
}?,
tls_inspection_configuration_arn: ::String?,
policy_variables: {
rule_variables: Hash[::String, {
definition: Array[::String]
}]?
}?
},
?description: ::String,
?tags: Array[
{
key: ::String,
value: ::String
},
],
?dry_run: bool,
?encryption_configuration: {
key_id: ::String?,
type: ("CUSTOMER_KMS" | "AWS_OWNED_KMS_KEY")
}
) -> _CreateFirewallPolicyResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateFirewallPolicyResponseSuccess
interface _CreateRuleGroupResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::CreateRuleGroupResponse]
def update_token: () -> ::String
def rule_group_response: () -> Types::RuleGroupResponse
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#create_rule_group-instance_method
def create_rule_group: (
rule_group_name: ::String,
?rule_group: {
rule_variables: {
ip_sets: Hash[::String, {
definition: Array[::String]
}]?,
port_sets: Hash[::String, {
definition: Array[::String]?
}]?
}?,
reference_sets: {
ip_set_references: Hash[::String, {
reference_arn: ::String?
}]?
}?,
rules_source: {
rules_string: ::String?,
rules_source_list: {
targets: Array[::String],
target_types: Array[("TLS_SNI" | "HTTP_HOST")],
generated_rules_type: ("ALLOWLIST" | "DENYLIST")
}?,
stateful_rules: Array[
{
action: ("PASS" | "DROP" | "ALERT" | "REJECT"),
header: {
protocol: ("IP" | "TCP" | "UDP" | "ICMP" | "HTTP" | "FTP" | "TLS" | "SMB" | "DNS" | "DCERPC" | "SSH" | "SMTP" | "IMAP" | "MSN" | "KRB5" | "IKEV2" | "TFTP" | "NTP" | "DHCP"),
source: ::String,
source_port: ::String,
direction: ("FORWARD" | "ANY"),
destination: ::String,
destination_port: ::String
},
rule_options: Array[
{
keyword: ::String,
settings: Array[::String]?
},
]
},
]?,
stateless_rules_and_custom_actions: {
stateless_rules: Array[
{
rule_definition: {
match_attributes: {
sources: Array[
{
address_definition: ::String
},
]?,
destinations: Array[
{
address_definition: ::String
},
]?,
source_ports: Array[
{
from_port: ::Integer,
to_port: ::Integer
},
]?,
destination_ports: Array[
{
from_port: ::Integer,
to_port: ::Integer
},
]?,
protocols: Array[::Integer]?,
tcp_flags: Array[
{
flags: Array[("FIN" | "SYN" | "RST" | "PSH" | "ACK" | "URG" | "ECE" | "CWR")],
masks: Array[("FIN" | "SYN" | "RST" | "PSH" | "ACK" | "URG" | "ECE" | "CWR")]?
},
]?
},
actions: Array[::String]
},
priority: ::Integer
},
],
custom_actions: Array[
{
action_name: ::String,
action_definition: {
publish_metric_action: {
dimensions: Array[
{
value: ::String
},
]
}?
}
},
]?
}?
},
stateful_rule_options: {
rule_order: ("DEFAULT_ACTION_ORDER" | "STRICT_ORDER")?
}?
},
?rules: ::String,
type: ("STATELESS" | "STATEFUL"),
?description: ::String,
capacity: ::Integer,
?tags: Array[
{
key: ::String,
value: ::String
},
],
?dry_run: bool,
?encryption_configuration: {
key_id: ::String?,
type: ("CUSTOMER_KMS" | "AWS_OWNED_KMS_KEY")
},
?source_metadata: {
source_arn: ::String?,
source_update_token: ::String?
},
?analyze_rule_group: bool
) -> _CreateRuleGroupResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateRuleGroupResponseSuccess
interface _CreateTLSInspectionConfigurationResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::CreateTLSInspectionConfigurationResponse]
def update_token: () -> ::String
def tls_inspection_configuration_response: () -> Types::TLSInspectionConfigurationResponse
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#create_tls_inspection_configuration-instance_method
def create_tls_inspection_configuration: (
tls_inspection_configuration_name: ::String,
tls_inspection_configuration: {
server_certificate_configurations: Array[
{
server_certificates: Array[
{
resource_arn: ::String?
},
]?,
scopes: Array[
{
sources: Array[
{
address_definition: ::String
},
]?,
destinations: Array[
{
address_definition: ::String
},
]?,
source_ports: Array[
{
from_port: ::Integer,
to_port: ::Integer
},
]?,
destination_ports: Array[
{
from_port: ::Integer,
to_port: ::Integer
},
]?,
protocols: Array[::Integer]?
},
]?,
certificate_authority_arn: ::String?,
check_certificate_revocation_status: {
revoked_status_action: ("PASS" | "DROP" | "REJECT")?,
unknown_status_action: ("PASS" | "DROP" | "REJECT")?
}?
},
]?
},
?description: ::String,
?tags: Array[
{
key: ::String,
value: ::String
},
],
?encryption_configuration: {
key_id: ::String?,
type: ("CUSTOMER_KMS" | "AWS_OWNED_KMS_KEY")
}
) -> _CreateTLSInspectionConfigurationResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateTLSInspectionConfigurationResponseSuccess
interface _DeleteFirewallResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::DeleteFirewallResponse]
def firewall: () -> Types::Firewall
def firewall_status: () -> Types::FirewallStatus
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#delete_firewall-instance_method
def delete_firewall: (
?firewall_name: ::String,
?firewall_arn: ::String
) -> _DeleteFirewallResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DeleteFirewallResponseSuccess
interface _DeleteFirewallPolicyResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::DeleteFirewallPolicyResponse]
def firewall_policy_response: () -> Types::FirewallPolicyResponse
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#delete_firewall_policy-instance_method
def delete_firewall_policy: (
?firewall_policy_name: ::String,
?firewall_policy_arn: ::String
) -> _DeleteFirewallPolicyResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DeleteFirewallPolicyResponseSuccess
interface _DeleteResourcePolicyResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::DeleteResourcePolicyResponse]
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#delete_resource_policy-instance_method
def delete_resource_policy: (
resource_arn: ::String
) -> _DeleteResourcePolicyResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DeleteResourcePolicyResponseSuccess
interface _DeleteRuleGroupResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::DeleteRuleGroupResponse]
def rule_group_response: () -> Types::RuleGroupResponse
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#delete_rule_group-instance_method
def delete_rule_group: (
?rule_group_name: ::String,
?rule_group_arn: ::String,
?type: ("STATELESS" | "STATEFUL")
) -> _DeleteRuleGroupResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DeleteRuleGroupResponseSuccess
interface _DeleteTLSInspectionConfigurationResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::DeleteTLSInspectionConfigurationResponse]
def tls_inspection_configuration_response: () -> Types::TLSInspectionConfigurationResponse
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#delete_tls_inspection_configuration-instance_method
def delete_tls_inspection_configuration: (
?tls_inspection_configuration_arn: ::String,
?tls_inspection_configuration_name: ::String
) -> _DeleteTLSInspectionConfigurationResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DeleteTLSInspectionConfigurationResponseSuccess
interface _DescribeFirewallResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::DescribeFirewallResponse]
def update_token: () -> ::String
def firewall: () -> Types::Firewall
def firewall_status: () -> Types::FirewallStatus
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#describe_firewall-instance_method
def describe_firewall: (
?firewall_name: ::String,
?firewall_arn: ::String
) -> _DescribeFirewallResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeFirewallResponseSuccess
interface _DescribeFirewallPolicyResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::DescribeFirewallPolicyResponse]
def update_token: () -> ::String
def firewall_policy_response: () -> Types::FirewallPolicyResponse
def firewall_policy: () -> Types::FirewallPolicy
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#describe_firewall_policy-instance_method
def describe_firewall_policy: (
?firewall_policy_name: ::String,
?firewall_policy_arn: ::String
) -> _DescribeFirewallPolicyResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeFirewallPolicyResponseSuccess
interface _DescribeLoggingConfigurationResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::DescribeLoggingConfigurationResponse]
def firewall_arn: () -> ::String
def logging_configuration: () -> Types::LoggingConfiguration
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#describe_logging_configuration-instance_method
def describe_logging_configuration: (
?firewall_arn: ::String,
?firewall_name: ::String
) -> _DescribeLoggingConfigurationResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeLoggingConfigurationResponseSuccess
interface _DescribeResourcePolicyResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::DescribeResourcePolicyResponse]
def policy: () -> ::String
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#describe_resource_policy-instance_method
def describe_resource_policy: (
resource_arn: ::String
) -> _DescribeResourcePolicyResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeResourcePolicyResponseSuccess
interface _DescribeRuleGroupResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::DescribeRuleGroupResponse]
def update_token: () -> ::String
def rule_group: () -> Types::RuleGroup
def rule_group_response: () -> Types::RuleGroupResponse
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#describe_rule_group-instance_method
def describe_rule_group: (
?rule_group_name: ::String,
?rule_group_arn: ::String,
?type: ("STATELESS" | "STATEFUL"),
?analyze_rule_group: bool
) -> _DescribeRuleGroupResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeRuleGroupResponseSuccess
interface _DescribeRuleGroupMetadataResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::DescribeRuleGroupMetadataResponse]
def rule_group_arn: () -> ::String
def rule_group_name: () -> ::String
def description: () -> ::String
def type: () -> ("STATELESS" | "STATEFUL")
def capacity: () -> ::Integer
def stateful_rule_options: () -> Types::StatefulRuleOptions
def last_modified_time: () -> ::Time
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#describe_rule_group_metadata-instance_method
def describe_rule_group_metadata: (
?rule_group_name: ::String,
?rule_group_arn: ::String,
?type: ("STATELESS" | "STATEFUL")
) -> _DescribeRuleGroupMetadataResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeRuleGroupMetadataResponseSuccess
interface _DescribeTLSInspectionConfigurationResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::DescribeTLSInspectionConfigurationResponse]
def update_token: () -> ::String
def tls_inspection_configuration: () -> Types::TLSInspectionConfiguration
def tls_inspection_configuration_response: () -> Types::TLSInspectionConfigurationResponse
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#describe_tls_inspection_configuration-instance_method
def describe_tls_inspection_configuration: (
?tls_inspection_configuration_arn: ::String,
?tls_inspection_configuration_name: ::String
) -> _DescribeTLSInspectionConfigurationResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeTLSInspectionConfigurationResponseSuccess
interface _DisassociateSubnetsResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::DisassociateSubnetsResponse]
def firewall_arn: () -> ::String
def firewall_name: () -> ::String
def subnet_mappings: () -> ::Array[Types::SubnetMapping]
def update_token: () -> ::String
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#disassociate_subnets-instance_method
def disassociate_subnets: (
?update_token: ::String,
?firewall_arn: ::String,
?firewall_name: ::String,
subnet_ids: Array[::String]
) -> _DisassociateSubnetsResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DisassociateSubnetsResponseSuccess
interface _ListFirewallPoliciesResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::ListFirewallPoliciesResponse]
def next_token: () -> ::String
def firewall_policies: () -> ::Array[Types::FirewallPolicyMetadata]
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#list_firewall_policies-instance_method
def list_firewall_policies: (
?next_token: ::String,
?max_results: ::Integer
) -> _ListFirewallPoliciesResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ListFirewallPoliciesResponseSuccess
interface _ListFirewallsResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::ListFirewallsResponse]
def next_token: () -> ::String
def firewalls: () -> ::Array[Types::FirewallMetadata]
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#list_firewalls-instance_method
def list_firewalls: (
?next_token: ::String,
?vpc_ids: Array[::String],
?max_results: ::Integer
) -> _ListFirewallsResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ListFirewallsResponseSuccess
interface _ListRuleGroupsResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::ListRuleGroupsResponse]
def next_token: () -> ::String
def rule_groups: () -> ::Array[Types::RuleGroupMetadata]
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#list_rule_groups-instance_method
def list_rule_groups: (
?next_token: ::String,
?max_results: ::Integer,
?scope: ("MANAGED" | "ACCOUNT"),
?managed_type: ("AWS_MANAGED_THREAT_SIGNATURES" | "AWS_MANAGED_DOMAIN_LISTS"),
?type: ("STATELESS" | "STATEFUL")
) -> _ListRuleGroupsResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ListRuleGroupsResponseSuccess
interface _ListTLSInspectionConfigurationsResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::ListTLSInspectionConfigurationsResponse]
def next_token: () -> ::String
def tls_inspection_configurations: () -> ::Array[Types::TLSInspectionConfigurationMetadata]
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#list_tls_inspection_configurations-instance_method
def list_tls_inspection_configurations: (
?next_token: ::String,
?max_results: ::Integer
) -> _ListTLSInspectionConfigurationsResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ListTLSInspectionConfigurationsResponseSuccess
interface _ListTagsForResourceResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::ListTagsForResourceResponse]
def next_token: () -> ::String
def tags: () -> ::Array[Types::Tag]
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#list_tags_for_resource-instance_method
def list_tags_for_resource: (
?next_token: ::String,
?max_results: ::Integer,
resource_arn: ::String
) -> _ListTagsForResourceResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ListTagsForResourceResponseSuccess
interface _PutResourcePolicyResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::PutResourcePolicyResponse]
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#put_resource_policy-instance_method
def put_resource_policy: (
resource_arn: ::String,
policy: ::String
) -> _PutResourcePolicyResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _PutResourcePolicyResponseSuccess
interface _TagResourceResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::TagResourceResponse]
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#tag_resource-instance_method
def tag_resource: (
resource_arn: ::String,
tags: Array[
{
key: ::String,
value: ::String
},
]
) -> _TagResourceResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _TagResourceResponseSuccess
interface _UntagResourceResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::UntagResourceResponse]
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#untag_resource-instance_method
def untag_resource: (
resource_arn: ::String,
tag_keys: Array[::String]
) -> _UntagResourceResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _UntagResourceResponseSuccess
interface _UpdateFirewallDeleteProtectionResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::UpdateFirewallDeleteProtectionResponse]
def firewall_arn: () -> ::String
def firewall_name: () -> ::String
def delete_protection: () -> bool
def update_token: () -> ::String
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#update_firewall_delete_protection-instance_method
def update_firewall_delete_protection: (
?update_token: ::String,
?firewall_arn: ::String,
?firewall_name: ::String,
delete_protection: bool
) -> _UpdateFirewallDeleteProtectionResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _UpdateFirewallDeleteProtectionResponseSuccess
interface _UpdateFirewallDescriptionResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::UpdateFirewallDescriptionResponse]
def firewall_arn: () -> ::String
def firewall_name: () -> ::String
def description: () -> ::String
def update_token: () -> ::String
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#update_firewall_description-instance_method
def update_firewall_description: (
?update_token: ::String,
?firewall_arn: ::String,
?firewall_name: ::String,
?description: ::String
) -> _UpdateFirewallDescriptionResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _UpdateFirewallDescriptionResponseSuccess
interface _UpdateFirewallEncryptionConfigurationResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::UpdateFirewallEncryptionConfigurationResponse]
def firewall_arn: () -> ::String
def firewall_name: () -> ::String
def update_token: () -> ::String
def encryption_configuration: () -> Types::EncryptionConfiguration
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#update_firewall_encryption_configuration-instance_method
def update_firewall_encryption_configuration: (
?update_token: ::String,
?firewall_arn: ::String,
?firewall_name: ::String,
?encryption_configuration: {
key_id: ::String?,
type: ("CUSTOMER_KMS" | "AWS_OWNED_KMS_KEY")
}
) -> _UpdateFirewallEncryptionConfigurationResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _UpdateFirewallEncryptionConfigurationResponseSuccess
interface _UpdateFirewallPolicyResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::UpdateFirewallPolicyResponse]
def update_token: () -> ::String
def firewall_policy_response: () -> Types::FirewallPolicyResponse
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#update_firewall_policy-instance_method
def update_firewall_policy: (
update_token: ::String,
?firewall_policy_arn: ::String,
?firewall_policy_name: ::String,
firewall_policy: {
stateless_rule_group_references: Array[
{
resource_arn: ::String,
priority: ::Integer
},
]?,
stateless_default_actions: Array[::String],
stateless_fragment_default_actions: Array[::String],
stateless_custom_actions: Array[
{
action_name: ::String,
action_definition: {
publish_metric_action: {
dimensions: Array[
{
value: ::String
},
]
}?
}
},
]?,
stateful_rule_group_references: Array[
{
resource_arn: ::String,
priority: ::Integer?,
override: {
action: ("DROP_TO_ALERT")?
}?
},
]?,
stateful_default_actions: Array[::String]?,
stateful_engine_options: {
rule_order: ("DEFAULT_ACTION_ORDER" | "STRICT_ORDER")?,
stream_exception_policy: ("DROP" | "CONTINUE" | "REJECT")?
}?,
tls_inspection_configuration_arn: ::String?,
policy_variables: {
rule_variables: Hash[::String, {
definition: Array[::String]
}]?
}?
},
?description: ::String,
?dry_run: bool,
?encryption_configuration: {
key_id: ::String?,
type: ("CUSTOMER_KMS" | "AWS_OWNED_KMS_KEY")
}
) -> _UpdateFirewallPolicyResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _UpdateFirewallPolicyResponseSuccess
interface _UpdateFirewallPolicyChangeProtectionResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::UpdateFirewallPolicyChangeProtectionResponse]
def update_token: () -> ::String
def firewall_arn: () -> ::String
def firewall_name: () -> ::String
def firewall_policy_change_protection: () -> bool
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#update_firewall_policy_change_protection-instance_method
def update_firewall_policy_change_protection: (
?update_token: ::String,
?firewall_arn: ::String,
?firewall_name: ::String,
firewall_policy_change_protection: bool
) -> _UpdateFirewallPolicyChangeProtectionResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _UpdateFirewallPolicyChangeProtectionResponseSuccess
interface _UpdateLoggingConfigurationResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::UpdateLoggingConfigurationResponse]
def firewall_arn: () -> ::String
def firewall_name: () -> ::String
def logging_configuration: () -> Types::LoggingConfiguration
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#update_logging_configuration-instance_method
def update_logging_configuration: (
?firewall_arn: ::String,
?firewall_name: ::String,
?logging_configuration: {
log_destination_configs: Array[
{
log_type: ("ALERT" | "FLOW" | "TLS"),
log_destination_type: ("S3" | "CloudWatchLogs" | "KinesisDataFirehose"),
log_destination: Hash[::String, ::String]
},
]
}
) -> _UpdateLoggingConfigurationResponseSuccess
| (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _UpdateLoggingConfigurationResponseSuccess
interface _UpdateRuleGroupResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::UpdateRuleGroupResponse]
def update_token: () -> ::String
def rule_group_response: () -> Types::RuleGroupResponse
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#update_rule_group-instance_method
def update_rule_group: (
update_token: ::String,
?rule_group_arn: ::String,
?rule_group_name: ::String,
?rule_group: {
rule_variables: {
ip_sets: Hash[::String, {
definition: Array[::String]
}]?,
port_sets: Hash[::String, {
definition: Array[::String]?
}]?
}?,
reference_sets: {
ip_set_references: Hash[::String, {
reference_arn: ::String?
}]?
}?,
rules_source: {
rules_string: ::String?,
rules_source_list: {
targets: Array[::String],
target_types: Array[("TLS_SNI" | "HTTP_HOST")],
generated_rules_type: ("ALLOWLIST" | "DENYLIST")
}?,
stateful_rules: Array[
{
action: ("PASS" | "DROP" | "ALERT" | "REJECT"),
header: {
protocol: ("IP" | "TCP" | "UDP" | "ICMP" | "HTTP" | "FTP" | "TLS" | "SMB" | "DNS" | "DCERPC" | "SSH" | "SMTP" | "IMAP" | "MSN" | "KRB5" | "IKEV2" | "TFTP" | "NTP" | "DHCP"),
source: ::String,
source_port: ::String,
direction: ("FORWARD" | "ANY"),
destination: ::String,
destination_port: ::String
},
rule_options: Array[
{
keyword: ::String,
settings: Array[::String]?
},
]
},
]?,
stateless_rules_and_custom_actions: {
stateless_rules: Array[
{
rule_definition: {
match_attributes: {
sources: Array[
{
address_definition: ::String
},
]?,
destinations: Array[
{
address_definition: ::String
},
]?,
source_ports: Array[
{
from_port: ::Integer,
to_port: ::Integer
},
]?,
destination_ports: Array[
{
from_port: ::Integer,
to_port: ::Integer
},
]?,
protocols: Array[::Integer]?,
tcp_flags: Array[
{
flags: Array[("FIN" | "SYN" | "RST" | "PSH" | "ACK" | "URG" | "ECE" | "CWR")],
masks: Array[("FIN" | "SYN" | "RST" | "PSH" | "ACK" | "URG" | "ECE" | "CWR")]?
},
]?
},
actions: Array[::String]
},
priority: ::Integer
},
],
custom_actions: Array[
{
action_name: ::String,
action_definition: {
publish_metric_action: {
dimensions: Array[
{
value: ::String
},
]
}?
}
},
]?
}?
},
stateful_rule_options: {
rule_order: ("DEFAULT_ACTION_ORDER" | "STRICT_ORDER")?
}?
},
?rules: ::String,
?type: ("STATELESS" | "STATEFUL"),
?description: ::String,
?dry_run: bool,
?encryption_configuration: {
key_id: ::String?,
type: ("CUSTOMER_KMS" | "AWS_OWNED_KMS_KEY")
},
?source_metadata: {
source_arn: ::String?,
source_update_token: ::String?
},
?analyze_rule_group: bool
) -> _UpdateRuleGroupResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _UpdateRuleGroupResponseSuccess
interface _UpdateSubnetChangeProtectionResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::UpdateSubnetChangeProtectionResponse]
def update_token: () -> ::String
def firewall_arn: () -> ::String
def firewall_name: () -> ::String
def subnet_change_protection: () -> bool
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#update_subnet_change_protection-instance_method
def update_subnet_change_protection: (
?update_token: ::String,
?firewall_arn: ::String,
?firewall_name: ::String,
subnet_change_protection: bool
) -> _UpdateSubnetChangeProtectionResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _UpdateSubnetChangeProtectionResponseSuccess
interface _UpdateTLSInspectionConfigurationResponseSuccess
include ::Seahorse::Client::_ResponseSuccess[Types::UpdateTLSInspectionConfigurationResponse]
def update_token: () -> ::String
def tls_inspection_configuration_response: () -> Types::TLSInspectionConfigurationResponse
end
# https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#update_tls_inspection_configuration-instance_method
def update_tls_inspection_configuration: (
?tls_inspection_configuration_arn: ::String,
?tls_inspection_configuration_name: ::String,
tls_inspection_configuration: {
server_certificate_configurations: Array[
{
server_certificates: Array[
{
resource_arn: ::String?
},
]?,
scopes: Array[
{
sources: Array[
{
address_definition: ::String
},
]?,
destinations: Array[
{
address_definition: ::String
},
]?,
source_ports: Array[
{
from_port: ::Integer,
to_port: ::Integer
},
]?,
destination_ports: Array[
{
from_port: ::Integer,
to_port: ::Integer
},
]?,
protocols: Array[::Integer]?
},
]?,
certificate_authority_arn: ::String?,
check_certificate_revocation_status: {
revoked_status_action: ("PASS" | "DROP" | "REJECT")?,
unknown_status_action: ("PASS" | "DROP" | "REJECT")?
}?
},
]?
},
?description: ::String,
?encryption_configuration: {
key_id: ::String?,
type: ("CUSTOMER_KMS" | "AWS_OWNED_KMS_KEY")
},
update_token: ::String
) -> _UpdateTLSInspectionConfigurationResponseSuccess
| (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _UpdateTLSInspectionConfigurationResponseSuccess
end
end
end