NetworkFirewallRuleGroup

---

Resource Icon

Resource Overview

A reusable set of criteria for inspecting and handling network traffic

Associated Resources

Parent Resources

• Region

Connected Resources

• Network Firewall Policy

Resource Setting Values

• description : Rule group type
• rule_group_type : Rule group type - STATEFUL, STATELESS
• generated_rules_type : Rule group format - StandardStatefulRules, DomainList, SuricataRuleStrings
• rule_evaluation_order : The way that your stateful rules are ordered for evaluation - STRICT_ORDER, DEFAULT_ACTION_ORDER
• capacity : The number of rules expected to have in this rule group during its lifetime - 1-30000
• ip_set : IP set variable name
  • name : IP set variable name
  • cidrs : Values of the IP set variable
• port_set : Port variable name
  • name : Name of the port set variable
  • cidrs : Standard stateful rule
• stateful_rule : Standard stateful rule name
  • name : Name of the standard stateful rule
  • protocol : Transport protocols to inspect for - IP, TCP, UDP, ICMP, HTTP
  • source_ip_or_cidr : The source IP addresses and address ranges to inspect for
  • source_port : Source port or port range to inspect
  • target_ip_or_cidr : Target IP address and address range to inspect
  • traffic_direction : The traffic direction to inspect for - ANY, FORWARD
  • action : Action that a network firewall will do when a packet matches the rule settings - ALERT, DROP, PASS, REJECT
• encryption_configuration
  • enabled_custom_configuration : Encrypt data using AWS-managed key - false, true

---

Reference Materials

• NetworkFirewallRuleGroup(AWS)
• NetworkFirewallRuleGroup(Terraform)