aws-sdk-networkfirewall 1.54.0 → 1.56.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +10 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-networkfirewall/client.rb +8 -1
- data/lib/aws-sdk-networkfirewall/client_api.rb +6 -0
- data/lib/aws-sdk-networkfirewall/endpoint_parameters.rb +9 -6
- data/lib/aws-sdk-networkfirewall/endpoints.rb +2 -394
- data/lib/aws-sdk-networkfirewall/plugins/endpoints.rb +1 -78
- data/lib/aws-sdk-networkfirewall/types.rb +36 -1
- data/lib/aws-sdk-networkfirewall.rb +1 -1
- data/sig/client.rbs +8 -2
- data/sig/types.rbs +6 -0
- metadata +4 -4
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: d377b97b0266e3fb5945898c8b89b617b0ade5789365deeae077a86a039a75d8
|
4
|
+
data.tar.gz: 792d56761eaaaeed2f3886cd99983e1e4e3a5373c749d7984f4044b87099c91d
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 9ef2d952a2c764907196adad4adcd0a7671c4a8adcff9c602cd2c62d8dac0169e77f4af2ff267d727c2b58009e0e9bbaa72acb941211bff74343c2ce4492a549
|
7
|
+
data.tar.gz: c28ca0bbf17f32fd46ef35972979786d951febda0b36b97a25b6bf2bbd69389a52a9e72156a84bd04a9705cc4eda751754344e8e81ae1c4caaae9fa395a09f70
|
data/CHANGELOG.md
CHANGED
@@ -1,6 +1,16 @@
|
|
1
1
|
Unreleased Changes
|
2
2
|
------------------
|
3
3
|
|
4
|
+
1.56.0 (2024-10-30)
|
5
|
+
------------------
|
6
|
+
|
7
|
+
* Feature - AWS Network Firewall now supports configuring TCP idle timeout
|
8
|
+
|
9
|
+
1.55.0 (2024-10-18)
|
10
|
+
------------------
|
11
|
+
|
12
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
13
|
+
|
4
14
|
1.54.0 (2024-09-24)
|
5
15
|
------------------
|
6
16
|
|
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
1.
|
1
|
+
1.56.0
|
@@ -843,6 +843,9 @@ module Aws::NetworkFirewall
|
|
843
843
|
# stateful_engine_options: {
|
844
844
|
# rule_order: "DEFAULT_ACTION_ORDER", # accepts DEFAULT_ACTION_ORDER, STRICT_ORDER
|
845
845
|
# stream_exception_policy: "DROP", # accepts DROP, CONTINUE, REJECT
|
846
|
+
# flow_timeouts: {
|
847
|
+
# tcp_idle_timeout_seconds: 1,
|
848
|
+
# },
|
846
849
|
# },
|
847
850
|
# tls_inspection_configuration_arn: "ResourceArn",
|
848
851
|
# policy_variables: {
|
@@ -1784,6 +1787,7 @@ module Aws::NetworkFirewall
|
|
1784
1787
|
# resp.firewall_policy.stateful_default_actions[0] #=> String
|
1785
1788
|
# resp.firewall_policy.stateful_engine_options.rule_order #=> String, one of "DEFAULT_ACTION_ORDER", "STRICT_ORDER"
|
1786
1789
|
# resp.firewall_policy.stateful_engine_options.stream_exception_policy #=> String, one of "DROP", "CONTINUE", "REJECT"
|
1790
|
+
# resp.firewall_policy.stateful_engine_options.flow_timeouts.tcp_idle_timeout_seconds #=> Integer
|
1787
1791
|
# resp.firewall_policy.tls_inspection_configuration_arn #=> String
|
1788
1792
|
# resp.firewall_policy.policy_variables.rule_variables #=> Hash
|
1789
1793
|
# resp.firewall_policy.policy_variables.rule_variables["RuleVariableName"].definition #=> Array
|
@@ -2963,6 +2967,9 @@ module Aws::NetworkFirewall
|
|
2963
2967
|
# stateful_engine_options: {
|
2964
2968
|
# rule_order: "DEFAULT_ACTION_ORDER", # accepts DEFAULT_ACTION_ORDER, STRICT_ORDER
|
2965
2969
|
# stream_exception_policy: "DROP", # accepts DROP, CONTINUE, REJECT
|
2970
|
+
# flow_timeouts: {
|
2971
|
+
# tcp_idle_timeout_seconds: 1,
|
2972
|
+
# },
|
2966
2973
|
# },
|
2967
2974
|
# tls_inspection_configuration_arn: "ResourceArn",
|
2968
2975
|
# policy_variables: {
|
@@ -3678,7 +3685,7 @@ module Aws::NetworkFirewall
|
|
3678
3685
|
tracer: tracer
|
3679
3686
|
)
|
3680
3687
|
context[:gem_name] = 'aws-sdk-networkfirewall'
|
3681
|
-
context[:gem_version] = '1.
|
3688
|
+
context[:gem_version] = '1.56.0'
|
3682
3689
|
Seahorse::Client::Request.new(handlers, context)
|
3683
3690
|
end
|
3684
3691
|
|
@@ -93,6 +93,7 @@ module Aws::NetworkFirewall
|
|
93
93
|
FirewallStatusValue = Shapes::StringShape.new(name: 'FirewallStatusValue')
|
94
94
|
Firewalls = Shapes::ListShape.new(name: 'Firewalls')
|
95
95
|
Flags = Shapes::ListShape.new(name: 'Flags')
|
96
|
+
FlowTimeouts = Shapes::StructureShape.new(name: 'FlowTimeouts')
|
96
97
|
GeneratedRulesType = Shapes::StringShape.new(name: 'GeneratedRulesType')
|
97
98
|
HashMapKey = Shapes::StringShape.new(name: 'HashMapKey')
|
98
99
|
HashMapValue = Shapes::StringShape.new(name: 'HashMapValue')
|
@@ -234,6 +235,7 @@ module Aws::NetworkFirewall
|
|
234
235
|
TagsPaginationMaxResults = Shapes::IntegerShape.new(name: 'TagsPaginationMaxResults')
|
235
236
|
TargetType = Shapes::StringShape.new(name: 'TargetType')
|
236
237
|
TargetTypes = Shapes::ListShape.new(name: 'TargetTypes')
|
238
|
+
TcpIdleTimeoutRangeBound = Shapes::IntegerShape.new(name: 'TcpIdleTimeoutRangeBound')
|
237
239
|
ThrottlingException = Shapes::StructureShape.new(name: 'ThrottlingException')
|
238
240
|
TlsCertificateData = Shapes::StructureShape.new(name: 'TlsCertificateData')
|
239
241
|
UnsupportedOperationException = Shapes::StructureShape.new(name: 'UnsupportedOperationException')
|
@@ -566,6 +568,9 @@ module Aws::NetworkFirewall
|
|
566
568
|
|
567
569
|
Flags.member = Shapes::ShapeRef.new(shape: TCPFlag)
|
568
570
|
|
571
|
+
FlowTimeouts.add_member(:tcp_idle_timeout_seconds, Shapes::ShapeRef.new(shape: TcpIdleTimeoutRangeBound, location_name: "TcpIdleTimeoutSeconds"))
|
572
|
+
FlowTimeouts.struct_class = Types::FlowTimeouts
|
573
|
+
|
569
574
|
Header.add_member(:protocol, Shapes::ShapeRef.new(shape: StatefulRuleProtocol, required: true, location_name: "Protocol"))
|
570
575
|
Header.add_member(:source, Shapes::ShapeRef.new(shape: Source, required: true, location_name: "Source"))
|
571
576
|
Header.add_member(:source_port, Shapes::ShapeRef.new(shape: Port, required: true, location_name: "SourcePort"))
|
@@ -811,6 +816,7 @@ module Aws::NetworkFirewall
|
|
811
816
|
|
812
817
|
StatefulEngineOptions.add_member(:rule_order, Shapes::ShapeRef.new(shape: RuleOrder, location_name: "RuleOrder"))
|
813
818
|
StatefulEngineOptions.add_member(:stream_exception_policy, Shapes::ShapeRef.new(shape: StreamExceptionPolicy, location_name: "StreamExceptionPolicy"))
|
819
|
+
StatefulEngineOptions.add_member(:flow_timeouts, Shapes::ShapeRef.new(shape: FlowTimeouts, location_name: "FlowTimeouts"))
|
814
820
|
StatefulEngineOptions.struct_class = Types::StatefulEngineOptions
|
815
821
|
|
816
822
|
StatefulRule.add_member(:action, Shapes::ShapeRef.new(shape: StatefulAction, required: true, location_name: "Action"))
|
@@ -52,15 +52,18 @@ module Aws::NetworkFirewall
|
|
52
52
|
self[:region] = options[:region]
|
53
53
|
self[:use_dual_stack] = options[:use_dual_stack]
|
54
54
|
self[:use_dual_stack] = false if self[:use_dual_stack].nil?
|
55
|
-
if self[:use_dual_stack].nil?
|
56
|
-
raise ArgumentError, "Missing required EndpointParameter: :use_dual_stack"
|
57
|
-
end
|
58
55
|
self[:use_fips] = options[:use_fips]
|
59
56
|
self[:use_fips] = false if self[:use_fips].nil?
|
60
|
-
if self[:use_fips].nil?
|
61
|
-
raise ArgumentError, "Missing required EndpointParameter: :use_fips"
|
62
|
-
end
|
63
57
|
self[:endpoint] = options[:endpoint]
|
64
58
|
end
|
59
|
+
|
60
|
+
def self.create(config, options={})
|
61
|
+
new({
|
62
|
+
region: config.region,
|
63
|
+
use_dual_stack: config.use_dualstack_endpoint,
|
64
|
+
use_fips: config.use_fips_endpoint,
|
65
|
+
endpoint: (config.endpoint.to_s unless config.regional_endpoint),
|
66
|
+
}.merge(options))
|
67
|
+
end
|
65
68
|
end
|
66
69
|
end
|
@@ -12,401 +12,9 @@ module Aws::NetworkFirewall
|
|
12
12
|
# @api private
|
13
13
|
module Endpoints
|
14
14
|
|
15
|
-
class AssociateFirewallPolicy
|
16
|
-
def self.build(context)
|
17
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
18
|
-
region: context.config.region,
|
19
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
20
|
-
use_fips: context.config.use_fips_endpoint,
|
21
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
22
|
-
)
|
23
|
-
end
|
24
|
-
end
|
25
|
-
|
26
|
-
class AssociateSubnets
|
27
|
-
def self.build(context)
|
28
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
29
|
-
region: context.config.region,
|
30
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
31
|
-
use_fips: context.config.use_fips_endpoint,
|
32
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
33
|
-
)
|
34
|
-
end
|
35
|
-
end
|
36
|
-
|
37
|
-
class CreateFirewall
|
38
|
-
def self.build(context)
|
39
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
40
|
-
region: context.config.region,
|
41
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
42
|
-
use_fips: context.config.use_fips_endpoint,
|
43
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
44
|
-
)
|
45
|
-
end
|
46
|
-
end
|
47
|
-
|
48
|
-
class CreateFirewallPolicy
|
49
|
-
def self.build(context)
|
50
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
51
|
-
region: context.config.region,
|
52
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
53
|
-
use_fips: context.config.use_fips_endpoint,
|
54
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
55
|
-
)
|
56
|
-
end
|
57
|
-
end
|
58
|
-
|
59
|
-
class CreateRuleGroup
|
60
|
-
def self.build(context)
|
61
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
62
|
-
region: context.config.region,
|
63
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
64
|
-
use_fips: context.config.use_fips_endpoint,
|
65
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
66
|
-
)
|
67
|
-
end
|
68
|
-
end
|
69
|
-
|
70
|
-
class CreateTLSInspectionConfiguration
|
71
|
-
def self.build(context)
|
72
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
73
|
-
region: context.config.region,
|
74
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
75
|
-
use_fips: context.config.use_fips_endpoint,
|
76
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
77
|
-
)
|
78
|
-
end
|
79
|
-
end
|
80
|
-
|
81
|
-
class DeleteFirewall
|
82
|
-
def self.build(context)
|
83
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
84
|
-
region: context.config.region,
|
85
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
86
|
-
use_fips: context.config.use_fips_endpoint,
|
87
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
88
|
-
)
|
89
|
-
end
|
90
|
-
end
|
91
|
-
|
92
|
-
class DeleteFirewallPolicy
|
93
|
-
def self.build(context)
|
94
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
95
|
-
region: context.config.region,
|
96
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
97
|
-
use_fips: context.config.use_fips_endpoint,
|
98
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
99
|
-
)
|
100
|
-
end
|
101
|
-
end
|
102
|
-
|
103
|
-
class DeleteResourcePolicy
|
104
|
-
def self.build(context)
|
105
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
106
|
-
region: context.config.region,
|
107
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
108
|
-
use_fips: context.config.use_fips_endpoint,
|
109
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
110
|
-
)
|
111
|
-
end
|
112
|
-
end
|
113
|
-
|
114
|
-
class DeleteRuleGroup
|
115
|
-
def self.build(context)
|
116
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
117
|
-
region: context.config.region,
|
118
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
119
|
-
use_fips: context.config.use_fips_endpoint,
|
120
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
121
|
-
)
|
122
|
-
end
|
123
|
-
end
|
124
|
-
|
125
|
-
class DeleteTLSInspectionConfiguration
|
126
|
-
def self.build(context)
|
127
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
128
|
-
region: context.config.region,
|
129
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
130
|
-
use_fips: context.config.use_fips_endpoint,
|
131
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
132
|
-
)
|
133
|
-
end
|
134
|
-
end
|
135
|
-
|
136
|
-
class DescribeFirewall
|
137
|
-
def self.build(context)
|
138
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
139
|
-
region: context.config.region,
|
140
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
141
|
-
use_fips: context.config.use_fips_endpoint,
|
142
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
143
|
-
)
|
144
|
-
end
|
145
|
-
end
|
146
|
-
|
147
|
-
class DescribeFirewallPolicy
|
148
|
-
def self.build(context)
|
149
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
150
|
-
region: context.config.region,
|
151
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
152
|
-
use_fips: context.config.use_fips_endpoint,
|
153
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
154
|
-
)
|
155
|
-
end
|
156
|
-
end
|
157
|
-
|
158
|
-
class DescribeLoggingConfiguration
|
159
|
-
def self.build(context)
|
160
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
161
|
-
region: context.config.region,
|
162
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
163
|
-
use_fips: context.config.use_fips_endpoint,
|
164
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
165
|
-
)
|
166
|
-
end
|
167
|
-
end
|
168
|
-
|
169
|
-
class DescribeResourcePolicy
|
170
|
-
def self.build(context)
|
171
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
172
|
-
region: context.config.region,
|
173
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
174
|
-
use_fips: context.config.use_fips_endpoint,
|
175
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
176
|
-
)
|
177
|
-
end
|
178
|
-
end
|
179
|
-
|
180
|
-
class DescribeRuleGroup
|
181
|
-
def self.build(context)
|
182
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
183
|
-
region: context.config.region,
|
184
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
185
|
-
use_fips: context.config.use_fips_endpoint,
|
186
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
187
|
-
)
|
188
|
-
end
|
189
|
-
end
|
190
|
-
|
191
|
-
class DescribeRuleGroupMetadata
|
192
|
-
def self.build(context)
|
193
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
194
|
-
region: context.config.region,
|
195
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
196
|
-
use_fips: context.config.use_fips_endpoint,
|
197
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
198
|
-
)
|
199
|
-
end
|
200
|
-
end
|
201
|
-
|
202
|
-
class DescribeTLSInspectionConfiguration
|
203
|
-
def self.build(context)
|
204
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
205
|
-
region: context.config.region,
|
206
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
207
|
-
use_fips: context.config.use_fips_endpoint,
|
208
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
209
|
-
)
|
210
|
-
end
|
211
|
-
end
|
212
15
|
|
213
|
-
|
214
|
-
|
215
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
216
|
-
region: context.config.region,
|
217
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
218
|
-
use_fips: context.config.use_fips_endpoint,
|
219
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
220
|
-
)
|
221
|
-
end
|
16
|
+
def self.parameters_for_operation(context)
|
17
|
+
Aws::NetworkFirewall::EndpointParameters.create(context.config)
|
222
18
|
end
|
223
|
-
|
224
|
-
class ListFirewallPolicies
|
225
|
-
def self.build(context)
|
226
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
227
|
-
region: context.config.region,
|
228
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
229
|
-
use_fips: context.config.use_fips_endpoint,
|
230
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
231
|
-
)
|
232
|
-
end
|
233
|
-
end
|
234
|
-
|
235
|
-
class ListFirewalls
|
236
|
-
def self.build(context)
|
237
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
238
|
-
region: context.config.region,
|
239
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
240
|
-
use_fips: context.config.use_fips_endpoint,
|
241
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
242
|
-
)
|
243
|
-
end
|
244
|
-
end
|
245
|
-
|
246
|
-
class ListRuleGroups
|
247
|
-
def self.build(context)
|
248
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
249
|
-
region: context.config.region,
|
250
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
251
|
-
use_fips: context.config.use_fips_endpoint,
|
252
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
253
|
-
)
|
254
|
-
end
|
255
|
-
end
|
256
|
-
|
257
|
-
class ListTLSInspectionConfigurations
|
258
|
-
def self.build(context)
|
259
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
260
|
-
region: context.config.region,
|
261
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
262
|
-
use_fips: context.config.use_fips_endpoint,
|
263
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
264
|
-
)
|
265
|
-
end
|
266
|
-
end
|
267
|
-
|
268
|
-
class ListTagsForResource
|
269
|
-
def self.build(context)
|
270
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
271
|
-
region: context.config.region,
|
272
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
273
|
-
use_fips: context.config.use_fips_endpoint,
|
274
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
275
|
-
)
|
276
|
-
end
|
277
|
-
end
|
278
|
-
|
279
|
-
class PutResourcePolicy
|
280
|
-
def self.build(context)
|
281
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
282
|
-
region: context.config.region,
|
283
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
284
|
-
use_fips: context.config.use_fips_endpoint,
|
285
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
286
|
-
)
|
287
|
-
end
|
288
|
-
end
|
289
|
-
|
290
|
-
class TagResource
|
291
|
-
def self.build(context)
|
292
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
293
|
-
region: context.config.region,
|
294
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
295
|
-
use_fips: context.config.use_fips_endpoint,
|
296
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
297
|
-
)
|
298
|
-
end
|
299
|
-
end
|
300
|
-
|
301
|
-
class UntagResource
|
302
|
-
def self.build(context)
|
303
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
304
|
-
region: context.config.region,
|
305
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
306
|
-
use_fips: context.config.use_fips_endpoint,
|
307
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
308
|
-
)
|
309
|
-
end
|
310
|
-
end
|
311
|
-
|
312
|
-
class UpdateFirewallDeleteProtection
|
313
|
-
def self.build(context)
|
314
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
315
|
-
region: context.config.region,
|
316
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
317
|
-
use_fips: context.config.use_fips_endpoint,
|
318
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
319
|
-
)
|
320
|
-
end
|
321
|
-
end
|
322
|
-
|
323
|
-
class UpdateFirewallDescription
|
324
|
-
def self.build(context)
|
325
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
326
|
-
region: context.config.region,
|
327
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
328
|
-
use_fips: context.config.use_fips_endpoint,
|
329
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
330
|
-
)
|
331
|
-
end
|
332
|
-
end
|
333
|
-
|
334
|
-
class UpdateFirewallEncryptionConfiguration
|
335
|
-
def self.build(context)
|
336
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
337
|
-
region: context.config.region,
|
338
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
339
|
-
use_fips: context.config.use_fips_endpoint,
|
340
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
341
|
-
)
|
342
|
-
end
|
343
|
-
end
|
344
|
-
|
345
|
-
class UpdateFirewallPolicy
|
346
|
-
def self.build(context)
|
347
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
348
|
-
region: context.config.region,
|
349
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
350
|
-
use_fips: context.config.use_fips_endpoint,
|
351
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
352
|
-
)
|
353
|
-
end
|
354
|
-
end
|
355
|
-
|
356
|
-
class UpdateFirewallPolicyChangeProtection
|
357
|
-
def self.build(context)
|
358
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
359
|
-
region: context.config.region,
|
360
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
361
|
-
use_fips: context.config.use_fips_endpoint,
|
362
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
363
|
-
)
|
364
|
-
end
|
365
|
-
end
|
366
|
-
|
367
|
-
class UpdateLoggingConfiguration
|
368
|
-
def self.build(context)
|
369
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
370
|
-
region: context.config.region,
|
371
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
372
|
-
use_fips: context.config.use_fips_endpoint,
|
373
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
374
|
-
)
|
375
|
-
end
|
376
|
-
end
|
377
|
-
|
378
|
-
class UpdateRuleGroup
|
379
|
-
def self.build(context)
|
380
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
381
|
-
region: context.config.region,
|
382
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
383
|
-
use_fips: context.config.use_fips_endpoint,
|
384
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
385
|
-
)
|
386
|
-
end
|
387
|
-
end
|
388
|
-
|
389
|
-
class UpdateSubnetChangeProtection
|
390
|
-
def self.build(context)
|
391
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
392
|
-
region: context.config.region,
|
393
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
394
|
-
use_fips: context.config.use_fips_endpoint,
|
395
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
396
|
-
)
|
397
|
-
end
|
398
|
-
end
|
399
|
-
|
400
|
-
class UpdateTLSInspectionConfiguration
|
401
|
-
def self.build(context)
|
402
|
-
Aws::NetworkFirewall::EndpointParameters.new(
|
403
|
-
region: context.config.region,
|
404
|
-
use_dual_stack: context.config.use_dualstack_endpoint,
|
405
|
-
use_fips: context.config.use_fips_endpoint,
|
406
|
-
endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
|
407
|
-
)
|
408
|
-
end
|
409
|
-
end
|
410
|
-
|
411
19
|
end
|
412
20
|
end
|
@@ -27,7 +27,7 @@ The endpoint provider used to resolve endpoints. Any object that responds to
|
|
27
27
|
class Handler < Seahorse::Client::Handler
|
28
28
|
def call(context)
|
29
29
|
unless context[:discovered_endpoint]
|
30
|
-
params = parameters_for_operation(context)
|
30
|
+
params = Aws::NetworkFirewall::Endpoints.parameters_for_operation(context)
|
31
31
|
endpoint = context.config.endpoint_provider.resolve_endpoint(params)
|
32
32
|
|
33
33
|
context.http_request.endpoint = endpoint.url
|
@@ -67,83 +67,6 @@ The endpoint provider used to resolve endpoints. Any object that responds to
|
|
67
67
|
context.http_request.headers[key] = value
|
68
68
|
end
|
69
69
|
end
|
70
|
-
|
71
|
-
def parameters_for_operation(context)
|
72
|
-
case context.operation_name
|
73
|
-
when :associate_firewall_policy
|
74
|
-
Aws::NetworkFirewall::Endpoints::AssociateFirewallPolicy.build(context)
|
75
|
-
when :associate_subnets
|
76
|
-
Aws::NetworkFirewall::Endpoints::AssociateSubnets.build(context)
|
77
|
-
when :create_firewall
|
78
|
-
Aws::NetworkFirewall::Endpoints::CreateFirewall.build(context)
|
79
|
-
when :create_firewall_policy
|
80
|
-
Aws::NetworkFirewall::Endpoints::CreateFirewallPolicy.build(context)
|
81
|
-
when :create_rule_group
|
82
|
-
Aws::NetworkFirewall::Endpoints::CreateRuleGroup.build(context)
|
83
|
-
when :create_tls_inspection_configuration
|
84
|
-
Aws::NetworkFirewall::Endpoints::CreateTLSInspectionConfiguration.build(context)
|
85
|
-
when :delete_firewall
|
86
|
-
Aws::NetworkFirewall::Endpoints::DeleteFirewall.build(context)
|
87
|
-
when :delete_firewall_policy
|
88
|
-
Aws::NetworkFirewall::Endpoints::DeleteFirewallPolicy.build(context)
|
89
|
-
when :delete_resource_policy
|
90
|
-
Aws::NetworkFirewall::Endpoints::DeleteResourcePolicy.build(context)
|
91
|
-
when :delete_rule_group
|
92
|
-
Aws::NetworkFirewall::Endpoints::DeleteRuleGroup.build(context)
|
93
|
-
when :delete_tls_inspection_configuration
|
94
|
-
Aws::NetworkFirewall::Endpoints::DeleteTLSInspectionConfiguration.build(context)
|
95
|
-
when :describe_firewall
|
96
|
-
Aws::NetworkFirewall::Endpoints::DescribeFirewall.build(context)
|
97
|
-
when :describe_firewall_policy
|
98
|
-
Aws::NetworkFirewall::Endpoints::DescribeFirewallPolicy.build(context)
|
99
|
-
when :describe_logging_configuration
|
100
|
-
Aws::NetworkFirewall::Endpoints::DescribeLoggingConfiguration.build(context)
|
101
|
-
when :describe_resource_policy
|
102
|
-
Aws::NetworkFirewall::Endpoints::DescribeResourcePolicy.build(context)
|
103
|
-
when :describe_rule_group
|
104
|
-
Aws::NetworkFirewall::Endpoints::DescribeRuleGroup.build(context)
|
105
|
-
when :describe_rule_group_metadata
|
106
|
-
Aws::NetworkFirewall::Endpoints::DescribeRuleGroupMetadata.build(context)
|
107
|
-
when :describe_tls_inspection_configuration
|
108
|
-
Aws::NetworkFirewall::Endpoints::DescribeTLSInspectionConfiguration.build(context)
|
109
|
-
when :disassociate_subnets
|
110
|
-
Aws::NetworkFirewall::Endpoints::DisassociateSubnets.build(context)
|
111
|
-
when :list_firewall_policies
|
112
|
-
Aws::NetworkFirewall::Endpoints::ListFirewallPolicies.build(context)
|
113
|
-
when :list_firewalls
|
114
|
-
Aws::NetworkFirewall::Endpoints::ListFirewalls.build(context)
|
115
|
-
when :list_rule_groups
|
116
|
-
Aws::NetworkFirewall::Endpoints::ListRuleGroups.build(context)
|
117
|
-
when :list_tls_inspection_configurations
|
118
|
-
Aws::NetworkFirewall::Endpoints::ListTLSInspectionConfigurations.build(context)
|
119
|
-
when :list_tags_for_resource
|
120
|
-
Aws::NetworkFirewall::Endpoints::ListTagsForResource.build(context)
|
121
|
-
when :put_resource_policy
|
122
|
-
Aws::NetworkFirewall::Endpoints::PutResourcePolicy.build(context)
|
123
|
-
when :tag_resource
|
124
|
-
Aws::NetworkFirewall::Endpoints::TagResource.build(context)
|
125
|
-
when :untag_resource
|
126
|
-
Aws::NetworkFirewall::Endpoints::UntagResource.build(context)
|
127
|
-
when :update_firewall_delete_protection
|
128
|
-
Aws::NetworkFirewall::Endpoints::UpdateFirewallDeleteProtection.build(context)
|
129
|
-
when :update_firewall_description
|
130
|
-
Aws::NetworkFirewall::Endpoints::UpdateFirewallDescription.build(context)
|
131
|
-
when :update_firewall_encryption_configuration
|
132
|
-
Aws::NetworkFirewall::Endpoints::UpdateFirewallEncryptionConfiguration.build(context)
|
133
|
-
when :update_firewall_policy
|
134
|
-
Aws::NetworkFirewall::Endpoints::UpdateFirewallPolicy.build(context)
|
135
|
-
when :update_firewall_policy_change_protection
|
136
|
-
Aws::NetworkFirewall::Endpoints::UpdateFirewallPolicyChangeProtection.build(context)
|
137
|
-
when :update_logging_configuration
|
138
|
-
Aws::NetworkFirewall::Endpoints::UpdateLoggingConfiguration.build(context)
|
139
|
-
when :update_rule_group
|
140
|
-
Aws::NetworkFirewall::Endpoints::UpdateRuleGroup.build(context)
|
141
|
-
when :update_subnet_change_protection
|
142
|
-
Aws::NetworkFirewall::Endpoints::UpdateSubnetChangeProtection.build(context)
|
143
|
-
when :update_tls_inspection_configuration
|
144
|
-
Aws::NetworkFirewall::Endpoints::UpdateTLSInspectionConfiguration.build(context)
|
145
|
-
end
|
146
|
-
end
|
147
70
|
end
|
148
71
|
|
149
72
|
def add_handlers(handlers, _config)
|
@@ -2150,6 +2150,34 @@ module Aws::NetworkFirewall
|
|
2150
2150
|
include Aws::Structure
|
2151
2151
|
end
|
2152
2152
|
|
2153
|
+
# Describes the amount of time that can pass without any traffic sent
|
2154
|
+
# through the firewall before the firewall determines that the
|
2155
|
+
# connection is idle and Network Firewall removes the flow entry from
|
2156
|
+
# its flow table. Existing connections and flows are not impacted when
|
2157
|
+
# you update this value. Only new connections after you update this
|
2158
|
+
# value are impacted.
|
2159
|
+
#
|
2160
|
+
# @!attribute [rw] tcp_idle_timeout_seconds
|
2161
|
+
# The number of seconds that can pass without any TCP traffic sent
|
2162
|
+
# through the firewall before the firewall determines that the
|
2163
|
+
# connection is idle. After the idle timeout passes, data packets are
|
2164
|
+
# dropped, however, the next TCP SYN packet is considered a new flow
|
2165
|
+
# and is processed by the firewall. Clients or targets can use TCP
|
2166
|
+
# keepalive packets to reset the idle timeout.
|
2167
|
+
#
|
2168
|
+
# You can define the `TcpIdleTimeoutSeconds` value to be between 60
|
2169
|
+
# and 6000 seconds. If no value is provided, it defaults to 350
|
2170
|
+
# seconds.
|
2171
|
+
# @return [Integer]
|
2172
|
+
#
|
2173
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/FlowTimeouts AWS API Documentation
|
2174
|
+
#
|
2175
|
+
class FlowTimeouts < Struct.new(
|
2176
|
+
:tcp_idle_timeout_seconds)
|
2177
|
+
SENSITIVE = []
|
2178
|
+
include Aws::Structure
|
2179
|
+
end
|
2180
|
+
|
2153
2181
|
# The basic rule criteria for Network Firewall to use to inspect packet
|
2154
2182
|
# headers in stateful traffic flow inspection. Traffic flows that match
|
2155
2183
|
# the criteria are a match for the corresponding StatefulRule.
|
@@ -3687,11 +3715,18 @@ module Aws::NetworkFirewall
|
|
3687
3715
|
# subsequent traffic.
|
3688
3716
|
# @return [String]
|
3689
3717
|
#
|
3718
|
+
# @!attribute [rw] flow_timeouts
|
3719
|
+
# Configures the amount of time that can pass without any traffic sent
|
3720
|
+
# through the firewall before the firewall determines that the
|
3721
|
+
# connection is idle.
|
3722
|
+
# @return [Types::FlowTimeouts]
|
3723
|
+
#
|
3690
3724
|
# @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/StatefulEngineOptions AWS API Documentation
|
3691
3725
|
#
|
3692
3726
|
class StatefulEngineOptions < Struct.new(
|
3693
3727
|
:rule_order,
|
3694
|
-
:stream_exception_policy
|
3728
|
+
:stream_exception_policy,
|
3729
|
+
:flow_timeouts)
|
3695
3730
|
SENSITIVE = []
|
3696
3731
|
include Aws::Structure
|
3697
3732
|
end
|
data/sig/client.rbs
CHANGED
@@ -189,7 +189,10 @@ module Aws
|
|
189
189
|
stateful_default_actions: Array[::String]?,
|
190
190
|
stateful_engine_options: {
|
191
191
|
rule_order: ("DEFAULT_ACTION_ORDER" | "STRICT_ORDER")?,
|
192
|
-
stream_exception_policy: ("DROP" | "CONTINUE" | "REJECT")
|
192
|
+
stream_exception_policy: ("DROP" | "CONTINUE" | "REJECT")?,
|
193
|
+
flow_timeouts: {
|
194
|
+
tcp_idle_timeout_seconds: ::Integer?
|
195
|
+
}?
|
193
196
|
}?,
|
194
197
|
tls_inspection_configuration_arn: ::String?,
|
195
198
|
policy_variables: {
|
@@ -770,7 +773,10 @@ module Aws
|
|
770
773
|
stateful_default_actions: Array[::String]?,
|
771
774
|
stateful_engine_options: {
|
772
775
|
rule_order: ("DEFAULT_ACTION_ORDER" | "STRICT_ORDER")?,
|
773
|
-
stream_exception_policy: ("DROP" | "CONTINUE" | "REJECT")
|
776
|
+
stream_exception_policy: ("DROP" | "CONTINUE" | "REJECT")?,
|
777
|
+
flow_timeouts: {
|
778
|
+
tcp_idle_timeout_seconds: ::Integer?
|
779
|
+
}?
|
774
780
|
}?,
|
775
781
|
tls_inspection_configuration_arn: ::String?,
|
776
782
|
policy_variables: {
|
data/sig/types.rbs
CHANGED
@@ -400,6 +400,11 @@ module Aws::NetworkFirewall
|
|
400
400
|
SENSITIVE: []
|
401
401
|
end
|
402
402
|
|
403
|
+
class FlowTimeouts
|
404
|
+
attr_accessor tcp_idle_timeout_seconds: ::Integer
|
405
|
+
SENSITIVE: []
|
406
|
+
end
|
407
|
+
|
403
408
|
class Header
|
404
409
|
attr_accessor protocol: ("IP" | "TCP" | "UDP" | "ICMP" | "HTTP" | "FTP" | "TLS" | "SMB" | "DNS" | "DCERPC" | "SSH" | "SMTP" | "IMAP" | "MSN" | "KRB5" | "IKEV2" | "TFTP" | "NTP" | "DHCP")
|
405
410
|
attr_accessor source: ::String
|
@@ -700,6 +705,7 @@ module Aws::NetworkFirewall
|
|
700
705
|
class StatefulEngineOptions
|
701
706
|
attr_accessor rule_order: ("DEFAULT_ACTION_ORDER" | "STRICT_ORDER")
|
702
707
|
attr_accessor stream_exception_policy: ("DROP" | "CONTINUE" | "REJECT")
|
708
|
+
attr_accessor flow_timeouts: Types::FlowTimeouts
|
703
709
|
SENSITIVE: []
|
704
710
|
end
|
705
711
|
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-networkfirewall
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.56.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2024-
|
11
|
+
date: 2024-10-30 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|
@@ -19,7 +19,7 @@ dependencies:
|
|
19
19
|
version: '3'
|
20
20
|
- - ">="
|
21
21
|
- !ruby/object:Gem::Version
|
22
|
-
version: 3.
|
22
|
+
version: 3.210.0
|
23
23
|
type: :runtime
|
24
24
|
prerelease: false
|
25
25
|
version_requirements: !ruby/object:Gem::Requirement
|
@@ -29,7 +29,7 @@ dependencies:
|
|
29
29
|
version: '3'
|
30
30
|
- - ">="
|
31
31
|
- !ruby/object:Gem::Version
|
32
|
-
version: 3.
|
32
|
+
version: 3.210.0
|
33
33
|
- !ruby/object:Gem::Dependency
|
34
34
|
name: aws-sigv4
|
35
35
|
requirement: !ruby/object:Gem::Requirement
|