aws-sdk-networkfirewall 1.88.0 → 1.89.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (8) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +5 -0
  3. data/VERSION +1 -1
  4. data/lib/aws-sdk-networkfirewall/client.rb +1 -1
  5. data/lib/aws-sdk-networkfirewall.rb +1 -1
  6. data/sig/client.rbs +37 -504
  7. data/sig/params.rbs +260 -0
  8. metadata +2 -1
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: d369a320a6e11b39c40a8f4b2065bdab72b164bc406a6748105289c37c931f7f
4
- data.tar.gz: dea5c5ffe36088a52bccd26e3a8849ee7be40e5fedc0c60164404fa4e8265341
3
+ metadata.gz: 13fe30291f4dd1ee01652714f778acb4f906a00b6fe8f1c1346416e57473508b
4
+ data.tar.gz: f8a3a2cc761c75cce05900754875c430fceed48e2c1b29bdfff820d77f4a352e
5
5
  SHA512:
6
- metadata.gz: 057f07a9f61f2ad0fc93cfea108f2e5d03288c3e98824b4720cd3575f2259267a1ab5826541b4b739e48ea0e66c61443040842e33c9262689e5a414efb24c597
7
- data.tar.gz: 6cb0c1a01414b0f9a820a2a0d438ba3d0dca437f3ebe06a95ed2efcc955d273a3731cc75a17ac525e586facc51b912aa50b67566e7d91621bc244df1e53b7203
6
+ metadata.gz: f2582c828aa8b9715060e76b78570828a543c44e1db76f84b0cb2a3f9c66c2953936aac4d0d864e83bf3404bd7715088ecb14cb0101616cd072f8f4854fa60df
7
+ data.tar.gz: 9aa99f06c3522b6db15bcb1b842111738053ac914c16f1c1cbe2031216b684e31cd76d8f251a346d234d9bad72dbed80a0ba944c53ed290b72b027cfd2936ce2
data/CHANGELOG.md CHANGED
@@ -1,6 +1,11 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.89.0 (2026-05-19)
5
+ ------------------
6
+
7
+ * Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
8
+
4
9
  1.88.0 (2026-05-13)
5
10
  ------------------
6
11
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.88.0
1
+ 1.89.0
data/lib/aws-sdk-networkfirewall/client.rb CHANGED
@@ -6924,7 +6924,7 @@ module Aws::NetworkFirewall
6924
6924
  tracer: tracer
6925
6925
  )
6926
6926
  context[:gem_name] = 'aws-sdk-networkfirewall'
6927
- context[:gem_version] = '1.88.0'
6927
+ context[:gem_version] = '1.89.0'
6928
6928
  Seahorse::Client::Request.new(handlers, context)
6929
6929
  end
6930
6930
 
data/lib/aws-sdk-networkfirewall.rb CHANGED
@@ -54,7 +54,7 @@ module Aws::NetworkFirewall
54
54
  autoload :EndpointProvider, 'aws-sdk-networkfirewall/endpoint_provider'
55
55
  autoload :Endpoints, 'aws-sdk-networkfirewall/endpoints'
56
56
 
57
- GEM_VERSION = '1.88.0'
57
+ GEM_VERSION = '1.89.0'
58
58
 
59
59
  end
60
60
 
data/sig/client.rbs CHANGED
@@ -105,7 +105,7 @@ module Aws
105
105
  availability_zone_mappings: Array[
106
106
  {
107
107
  availability_zone: ::String
108
- },
108
+ }
109
109
  ]
110
110
  ) -> _AssociateAvailabilityZonesResponseSuccess
111
111
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _AssociateAvailabilityZonesResponseSuccess
@@ -142,7 +142,7 @@ module Aws
142
142
  {
143
143
  subnet_id: ::String,
144
144
  ip_address_type: ("DUALSTACK" | "IPV4" | "IPV6")?
145
- },
145
+ }
146
146
  ]
147
147
  ) -> _AssociateSubnetsResponseSuccess
148
148
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _AssociateSubnetsResponseSuccess
@@ -160,7 +160,7 @@ module Aws
160
160
  {
161
161
  proxy_rule_group_name: ::String?,
162
162
  insert_position: ::Integer?
163
- },
163
+ }
164
164
  ],
165
165
  update_token: ::String
166
166
  ) -> _AttachRuleGroupsToProxyConfigurationResponseSuccess
@@ -180,7 +180,7 @@ module Aws
180
180
  {
181
181
  subnet_id: ::String,
182
182
  ip_address_type: ("DUALSTACK" | "IPV4" | "IPV6")?
183
- },
183
+ }
184
184
  ],
185
185
  ?delete_protection: bool,
186
186
  ?subnet_change_protection: bool,
@@ -190,7 +190,7 @@ module Aws
190
190
  {
191
191
  key: ::String,
192
192
  value: ::String
193
- },
193
+ }
194
194
  ],
195
195
  ?encryption_configuration: {
196
196
  key_id: ::String?,
@@ -201,7 +201,7 @@ module Aws
201
201
  ?availability_zone_mappings: Array[
202
202
  {
203
203
  availability_zone: ::String
204
- },
204
+ }
205
205
  ],
206
206
  ?availability_zone_change_protection: bool
207
207
  ) -> _CreateFirewallResponseSuccess
@@ -215,61 +215,13 @@ module Aws
215
215
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#create_firewall_policy-instance_method
216
216
  def create_firewall_policy: (
217
217
  firewall_policy_name: ::String,
218
- firewall_policy: {
219
- stateless_rule_group_references: Array[
220
- {
221
- resource_arn: ::String,
222
- priority: ::Integer
223
- },
224
- ]?,
225
- stateless_default_actions: Array[::String],
226
- stateless_fragment_default_actions: Array[::String],
227
- stateless_custom_actions: Array[
228
- {
229
- action_name: ::String,
230
- action_definition: {
231
- publish_metric_action: {
232
- dimensions: Array[
233
- {
234
- value: ::String
235
- },
236
- ]
237
- }?
238
- }
239
- },
240
- ]?,
241
- stateful_rule_group_references: Array[
242
- {
243
- resource_arn: ::String,
244
- priority: ::Integer?,
245
- override: {
246
- action: ("DROP_TO_ALERT")?
247
- }?,
248
- deep_threat_inspection: bool?
249
- },
250
- ]?,
251
- stateful_default_actions: Array[::String]?,
252
- stateful_engine_options: {
253
- rule_order: ("DEFAULT_ACTION_ORDER" | "STRICT_ORDER")?,
254
- stream_exception_policy: ("DROP" | "CONTINUE" | "REJECT")?,
255
- flow_timeouts: {
256
- tcp_idle_timeout_seconds: ::Integer?
257
- }?
258
- }?,
259
- tls_inspection_configuration_arn: ::String?,
260
- policy_variables: {
261
- rule_variables: Hash[::String, {
262
- definition: Array[::String]
263
- }]?
264
- }?,
265
- enable_tls_session_holding: bool?
266
- },
218
+ firewall_policy: Params::firewall_policy,
267
219
  ?description: ::String,
268
220
  ?tags: Array[
269
221
  {
270
222
  key: ::String,
271
223
  value: ::String
272
- },
224
+ }
273
225
  ],
274
226
  ?dry_run: bool,
275
227
  ?encryption_configuration: {
@@ -294,7 +246,7 @@ module Aws
294
246
  {
295
247
  port: ::Integer,
296
248
  type: ("HTTP" | "HTTPS")
297
- },
249
+ }
298
250
  ],
299
251
  tls_intercept_properties: {
300
252
  pca_arn: ::String?,
@@ -304,7 +256,7 @@ module Aws
304
256
  {
305
257
  key: ::String,
306
258
  value: ::String
307
- },
259
+ }
308
260
  ]
309
261
  ) -> _CreateProxyResponseSuccess
310
262
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateProxyResponseSuccess
@@ -329,7 +281,7 @@ module Aws
329
281
  {
330
282
  key: ::String,
331
283
  value: ::String
332
- },
284
+ }
333
285
  ]
334
286
  ) -> _CreateProxyConfigurationResponseSuccess
335
287
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateProxyConfigurationResponseSuccess
@@ -345,53 +297,20 @@ module Aws
345
297
  ?description: ::String,
346
298
  ?rules: {
347
299
  pre_dns: Array[
348
- {
349
- proxy_rule_name: ::String?,
350
- description: ::String?,
351
- action: ("ALLOW" | "DENY" | "ALERT")?,
352
- conditions: Array[
353
- {
354
- condition_operator: ::String?,
355
- condition_key: ::String?,
356
- condition_values: Array[::String]?
357
- },
358
- ]?
359
- },
300
+ Params::proxy_rule
360
301
  ]?,
361
302
  pre_request: Array[
362
- {
363
- proxy_rule_name: ::String?,
364
- description: ::String?,
365
- action: ("ALLOW" | "DENY" | "ALERT")?,
366
- conditions: Array[
367
- {
368
- condition_operator: ::String?,
369
- condition_key: ::String?,
370
- condition_values: Array[::String]?
371
- },
372
- ]?
373
- },
303
+ Params::proxy_rule
374
304
  ]?,
375
305
  post_response: Array[
376
- {
377
- proxy_rule_name: ::String?,
378
- description: ::String?,
379
- action: ("ALLOW" | "DENY" | "ALERT")?,
380
- conditions: Array[
381
- {
382
- condition_operator: ::String?,
383
- condition_key: ::String?,
384
- condition_values: Array[::String]?
385
- },
386
- ]?
387
- },
306
+ Params::proxy_rule
388
307
  ]?
389
308
  },
390
309
  ?tags: Array[
391
310
  {
392
311
  key: ::String,
393
312
  value: ::String
394
- },
313
+ }
395
314
  ]
396
315
  ) -> _CreateProxyRuleGroupResponseSuccess
397
316
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateProxyRuleGroupResponseSuccess
@@ -407,49 +326,13 @@ module Aws
407
326
  ?proxy_rule_group_name: ::String,
408
327
  rules: {
409
328
  pre_dns: Array[
410
- {
411
- proxy_rule_name: ::String?,
412
- description: ::String?,
413
- action: ("ALLOW" | "DENY" | "ALERT")?,
414
- conditions: Array[
415
- {
416
- condition_operator: ::String?,
417
- condition_key: ::String?,
418
- condition_values: Array[::String]?
419
- },
420
- ]?,
421
- insert_position: ::Integer?
422
- },
329
+ Params::create_proxy_rule
423
330
  ]?,
424
331
  pre_request: Array[
425
- {
426
- proxy_rule_name: ::String?,
427
- description: ::String?,
428
- action: ("ALLOW" | "DENY" | "ALERT")?,
429
- conditions: Array[
430
- {
431
- condition_operator: ::String?,
432
- condition_key: ::String?,
433
- condition_values: Array[::String]?
434
- },
435
- ]?,
436
- insert_position: ::Integer?
437
- },
332
+ Params::create_proxy_rule
438
333
  ]?,
439
334
  post_response: Array[
440
- {
441
- proxy_rule_name: ::String?,
442
- description: ::String?,
443
- action: ("ALLOW" | "DENY" | "ALERT")?,
444
- conditions: Array[
445
- {
446
- condition_operator: ::String?,
447
- condition_key: ::String?,
448
- condition_values: Array[::String]?
449
- },
450
- ]?,
451
- insert_position: ::Integer?
452
- },
335
+ Params::create_proxy_rule
453
336
  ]?
454
337
  }
455
338
  ) -> _CreateProxyRulesResponseSuccess
@@ -463,106 +346,7 @@ module Aws
463
346
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#create_rule_group-instance_method
464
347
  def create_rule_group: (
465
348
  rule_group_name: ::String,
466
- ?rule_group: {
467
- rule_variables: {
468
- ip_sets: Hash[::String, {
469
- definition: Array[::String]
470
- }]?,
471
- port_sets: Hash[::String, {
472
- definition: Array[::String]?
473
- }]?
474
- }?,
475
- reference_sets: {
476
- ip_set_references: Hash[::String, {
477
- reference_arn: ::String?
478
- }]?
479
- }?,
480
- rules_source: {
481
- rules_string: ::String?,
482
- rules_source_list: {
483
- targets: Array[::String],
484
- target_types: Array[("TLS_SNI" | "HTTP_HOST")],
485
- generated_rules_type: ("ALLOWLIST" | "DENYLIST" | "REJECTLIST" | "ALERTLIST")
486
- }?,
487
- stateful_rules: Array[
488
- {
489
- action: ("PASS" | "DROP" | "ALERT" | "REJECT"),
490
- header: {
491
- protocol: ("IP" | "TCP" | "UDP" | "ICMP" | "HTTP" | "FTP" | "TLS" | "SMB" | "DNS" | "DCERPC" | "SSH" | "SMTP" | "IMAP" | "MSN" | "KRB5" | "IKEV2" | "TFTP" | "NTP" | "DHCP" | "HTTP2" | "QUIC"),
492
- source: ::String,
493
- source_port: ::String,
494
- direction: ("FORWARD" | "ANY"),
495
- destination: ::String,
496
- destination_port: ::String
497
- },
498
- rule_options: Array[
499
- {
500
- keyword: ::String,
501
- settings: Array[::String]?
502
- },
503
- ]
504
- },
505
- ]?,
506
- stateless_rules_and_custom_actions: {
507
- stateless_rules: Array[
508
- {
509
- rule_definition: {
510
- match_attributes: {
511
- sources: Array[
512
- {
513
- address_definition: ::String
514
- },
515
- ]?,
516
- destinations: Array[
517
- {
518
- address_definition: ::String
519
- },
520
- ]?,
521
- source_ports: Array[
522
- {
523
- from_port: ::Integer,
524
- to_port: ::Integer
525
- },
526
- ]?,
527
- destination_ports: Array[
528
- {
529
- from_port: ::Integer,
530
- to_port: ::Integer
531
- },
532
- ]?,
533
- protocols: Array[::Integer]?,
534
- tcp_flags: Array[
535
- {
536
- flags: Array[("FIN" | "SYN" | "RST" | "PSH" | "ACK" | "URG" | "ECE" | "CWR")],
537
- masks: Array[("FIN" | "SYN" | "RST" | "PSH" | "ACK" | "URG" | "ECE" | "CWR")]?
538
- },
539
- ]?
540
- },
541
- actions: Array[::String]
542
- },
543
- priority: ::Integer
544
- },
545
- ],
546
- custom_actions: Array[
547
- {
548
- action_name: ::String,
549
- action_definition: {
550
- publish_metric_action: {
551
- dimensions: Array[
552
- {
553
- value: ::String
554
- },
555
- ]
556
- }?
557
- }
558
- },
559
- ]?
560
- }?
561
- },
562
- stateful_rule_options: {
563
- rule_order: ("DEFAULT_ACTION_ORDER" | "STRICT_ORDER")?
564
- }?
565
- },
349
+ ?rule_group: Params::rule_group,
566
350
  ?rules: ::String,
567
351
  type: ("STATELESS" | "STATEFUL" | "STATEFUL_DOMAIN"),
568
352
  ?description: ::String,
@@ -571,7 +355,7 @@ module Aws
571
355
  {
572
356
  key: ::String,
573
357
  value: ::String
574
- },
358
+ }
575
359
  ],
576
360
  ?dry_run: bool,
577
361
  ?encryption_configuration: {
@@ -597,55 +381,13 @@ module Aws
597
381
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#create_tls_inspection_configuration-instance_method
598
382
  def create_tls_inspection_configuration: (
599
383
  tls_inspection_configuration_name: ::String,
600
- tls_inspection_configuration: {
601
- server_certificate_configurations: Array[
602
- {
603
- server_certificates: Array[
604
- {
605
- resource_arn: ::String?
606
- },
607
- ]?,
608
- scopes: Array[
609
- {
610
- sources: Array[
611
- {
612
- address_definition: ::String
613
- },
614
- ]?,
615
- destinations: Array[
616
- {
617
- address_definition: ::String
618
- },
619
- ]?,
620
- source_ports: Array[
621
- {
622
- from_port: ::Integer,
623
- to_port: ::Integer
624
- },
625
- ]?,
626
- destination_ports: Array[
627
- {
628
- from_port: ::Integer,
629
- to_port: ::Integer
630
- },
631
- ]?,
632
- protocols: Array[::Integer]?
633
- },
634
- ]?,
635
- certificate_authority_arn: ::String?,
636
- check_certificate_revocation_status: {
637
- revoked_status_action: ("PASS" | "DROP" | "REJECT")?,
638
- unknown_status_action: ("PASS" | "DROP" | "REJECT")?
639
- }?
640
- },
641
- ]?
642
- },
384
+ tls_inspection_configuration: Params::tls_inspection_configuration,
643
385
  ?description: ::String,
644
386
  ?tags: Array[
645
387
  {
646
388
  key: ::String,
647
389
  value: ::String
648
- },
390
+ }
649
391
  ],
650
392
  ?encryption_configuration: {
651
393
  key_id: ::String?,
@@ -672,7 +414,7 @@ module Aws
672
414
  {
673
415
  key: ::String,
674
416
  value: ::String
675
- },
417
+ }
676
418
  ]
677
419
  ) -> _CreateVpcEndpointAssociationResponseSuccess
678
420
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateVpcEndpointAssociationResponseSuccess
@@ -1044,7 +786,7 @@ module Aws
1044
786
  availability_zone_mappings: Array[
1045
787
  {
1046
788
  availability_zone: ::String
1047
- },
789
+ }
1048
790
  ]
1049
791
  ) -> _DisassociateAvailabilityZonesResponseSuccess
1050
792
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DisassociateAvailabilityZonesResponseSuccess
@@ -1303,17 +1045,7 @@ module Aws
1303
1045
  ?vpc_endpoint_id: ::String,
1304
1046
  ?minimum_flow_age_in_seconds: ::Integer,
1305
1047
  flow_filters: Array[
1306
- {
1307
- source_address: {
1308
- address_definition: ::String
1309
- }?,
1310
- destination_address: {
1311
- address_definition: ::String
1312
- }?,
1313
- source_port: ::String?,
1314
- destination_port: ::String?,
1315
- protocols: Array[::String]?
1316
- },
1048
+ Params::flow_filter
1317
1049
  ]
1318
1050
  ) -> _StartFlowCaptureResponseSuccess
1319
1051
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _StartFlowCaptureResponseSuccess
@@ -1332,17 +1064,7 @@ module Aws
1332
1064
  ?vpc_endpoint_id: ::String,
1333
1065
  ?minimum_flow_age_in_seconds: ::Integer,
1334
1066
  flow_filters: Array[
1335
- {
1336
- source_address: {
1337
- address_definition: ::String
1338
- }?,
1339
- destination_address: {
1340
- address_definition: ::String
1341
- }?,
1342
- source_port: ::String?,
1343
- destination_port: ::String?,
1344
- protocols: Array[::String]?
1345
- },
1067
+ Params::flow_filter
1346
1068
  ]
1347
1069
  ) -> _StartFlowFlushResponseSuccess
1348
1070
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _StartFlowFlushResponseSuccess
@@ -1357,7 +1079,7 @@ module Aws
1357
1079
  {
1358
1080
  key: ::String,
1359
1081
  value: ::String
1360
- },
1082
+ }
1361
1083
  ]
1362
1084
  ) -> _TagResourceResponseSuccess
1363
1085
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _TagResourceResponseSuccess
@@ -1465,55 +1187,7 @@ module Aws
1465
1187
  update_token: ::String,
1466
1188
  ?firewall_policy_arn: ::String,
1467
1189
  ?firewall_policy_name: ::String,
1468
- firewall_policy: {
1469
- stateless_rule_group_references: Array[
1470
- {
1471
- resource_arn: ::String,
1472
- priority: ::Integer
1473
- },
1474
- ]?,
1475
- stateless_default_actions: Array[::String],
1476
- stateless_fragment_default_actions: Array[::String],
1477
- stateless_custom_actions: Array[
1478
- {
1479
- action_name: ::String,
1480
- action_definition: {
1481
- publish_metric_action: {
1482
- dimensions: Array[
1483
- {
1484
- value: ::String
1485
- },
1486
- ]
1487
- }?
1488
- }
1489
- },
1490
- ]?,
1491
- stateful_rule_group_references: Array[
1492
- {
1493
- resource_arn: ::String,
1494
- priority: ::Integer?,
1495
- override: {
1496
- action: ("DROP_TO_ALERT")?
1497
- }?,
1498
- deep_threat_inspection: bool?
1499
- },
1500
- ]?,
1501
- stateful_default_actions: Array[::String]?,
1502
- stateful_engine_options: {
1503
- rule_order: ("DEFAULT_ACTION_ORDER" | "STRICT_ORDER")?,
1504
- stream_exception_policy: ("DROP" | "CONTINUE" | "REJECT")?,
1505
- flow_timeouts: {
1506
- tcp_idle_timeout_seconds: ::Integer?
1507
- }?
1508
- }?,
1509
- tls_inspection_configuration_arn: ::String?,
1510
- policy_variables: {
1511
- rule_variables: Hash[::String, {
1512
- definition: Array[::String]
1513
- }]?
1514
- }?,
1515
- enable_tls_session_holding: bool?
1516
- },
1190
+ firewall_policy: Params::firewall_policy,
1517
1191
  ?description: ::String,
1518
1192
  ?dry_run: bool,
1519
1193
  ?encryption_configuration: {
@@ -1556,7 +1230,7 @@ module Aws
1556
1230
  log_type: ("ALERT" | "FLOW" | "TLS"),
1557
1231
  log_destination_type: ("S3" | "CloudWatchLogs" | "KinesisDataFirehose"),
1558
1232
  log_destination: Hash[::String, ::String]
1559
- },
1233
+ }
1560
1234
  ]
1561
1235
  },
1562
1236
  ?enable_monitoring_dashboard: bool
@@ -1577,13 +1251,13 @@ module Aws
1577
1251
  {
1578
1252
  port: ::Integer,
1579
1253
  type: ("HTTP" | "HTTPS")
1580
- },
1254
+ }
1581
1255
  ],
1582
1256
  ?listener_properties_to_remove: Array[
1583
1257
  {
1584
1258
  port: ::Integer,
1585
1259
  type: ("HTTP" | "HTTPS")
1586
- },
1260
+ }
1587
1261
  ],
1588
1262
  ?tls_intercept_properties: {
1589
1263
  pca_arn: ::String?,
@@ -1629,14 +1303,14 @@ module Aws
1629
1303
  condition_operator: ::String?,
1630
1304
  condition_key: ::String?,
1631
1305
  condition_values: Array[::String]?
1632
- },
1306
+ }
1633
1307
  ],
1634
1308
  ?remove_conditions: Array[
1635
1309
  {
1636
1310
  condition_operator: ::String?,
1637
1311
  condition_key: ::String?,
1638
1312
  condition_values: Array[::String]?
1639
- },
1313
+ }
1640
1314
  ],
1641
1315
  update_token: ::String
1642
1316
  ) -> _UpdateProxyRuleResponseSuccess
@@ -1655,7 +1329,7 @@ module Aws
1655
1329
  {
1656
1330
  proxy_rule_group_name: ::String?,
1657
1331
  new_position: ::Integer?
1658
- },
1332
+ }
1659
1333
  ],
1660
1334
  update_token: ::String
1661
1335
  ) -> _UpdateProxyRuleGroupPrioritiesResponseSuccess
@@ -1678,7 +1352,7 @@ module Aws
1678
1352
  {
1679
1353
  proxy_rule_name: ::String?,
1680
1354
  new_position: ::Integer?
1681
- },
1355
+ }
1682
1356
  ],
1683
1357
  update_token: ::String
1684
1358
  ) -> _UpdateProxyRulePrioritiesResponseSuccess
@@ -1694,106 +1368,7 @@ module Aws
1694
1368
  update_token: ::String,
1695
1369
  ?rule_group_arn: ::String,
1696
1370
  ?rule_group_name: ::String,
1697
- ?rule_group: {
1698
- rule_variables: {
1699
- ip_sets: Hash[::String, {
1700
- definition: Array[::String]
1701
- }]?,
1702
- port_sets: Hash[::String, {
1703
- definition: Array[::String]?
1704
- }]?
1705
- }?,
1706
- reference_sets: {
1707
- ip_set_references: Hash[::String, {
1708
- reference_arn: ::String?
1709
- }]?
1710
- }?,
1711
- rules_source: {
1712
- rules_string: ::String?,
1713
- rules_source_list: {
1714
- targets: Array[::String],
1715
- target_types: Array[("TLS_SNI" | "HTTP_HOST")],
1716
- generated_rules_type: ("ALLOWLIST" | "DENYLIST" | "REJECTLIST" | "ALERTLIST")
1717
- }?,
1718
- stateful_rules: Array[
1719
- {
1720
- action: ("PASS" | "DROP" | "ALERT" | "REJECT"),
1721
- header: {
1722
- protocol: ("IP" | "TCP" | "UDP" | "ICMP" | "HTTP" | "FTP" | "TLS" | "SMB" | "DNS" | "DCERPC" | "SSH" | "SMTP" | "IMAP" | "MSN" | "KRB5" | "IKEV2" | "TFTP" | "NTP" | "DHCP" | "HTTP2" | "QUIC"),
1723
- source: ::String,
1724
- source_port: ::String,
1725
- direction: ("FORWARD" | "ANY"),
1726
- destination: ::String,
1727
- destination_port: ::String
1728
- },
1729
- rule_options: Array[
1730
- {
1731
- keyword: ::String,
1732
- settings: Array[::String]?
1733
- },
1734
- ]
1735
- },
1736
- ]?,
1737
- stateless_rules_and_custom_actions: {
1738
- stateless_rules: Array[
1739
- {
1740
- rule_definition: {
1741
- match_attributes: {
1742
- sources: Array[
1743
- {
1744
- address_definition: ::String
1745
- },
1746
- ]?,
1747
- destinations: Array[
1748
- {
1749
- address_definition: ::String
1750
- },
1751
- ]?,
1752
- source_ports: Array[
1753
- {
1754
- from_port: ::Integer,
1755
- to_port: ::Integer
1756
- },
1757
- ]?,
1758
- destination_ports: Array[
1759
- {
1760
- from_port: ::Integer,
1761
- to_port: ::Integer
1762
- },
1763
- ]?,
1764
- protocols: Array[::Integer]?,
1765
- tcp_flags: Array[
1766
- {
1767
- flags: Array[("FIN" | "SYN" | "RST" | "PSH" | "ACK" | "URG" | "ECE" | "CWR")],
1768
- masks: Array[("FIN" | "SYN" | "RST" | "PSH" | "ACK" | "URG" | "ECE" | "CWR")]?
1769
- },
1770
- ]?
1771
- },
1772
- actions: Array[::String]
1773
- },
1774
- priority: ::Integer
1775
- },
1776
- ],
1777
- custom_actions: Array[
1778
- {
1779
- action_name: ::String,
1780
- action_definition: {
1781
- publish_metric_action: {
1782
- dimensions: Array[
1783
- {
1784
- value: ::String
1785
- },
1786
- ]
1787
- }?
1788
- }
1789
- },
1790
- ]?
1791
- }?
1792
- },
1793
- stateful_rule_options: {
1794
- rule_order: ("DEFAULT_ACTION_ORDER" | "STRICT_ORDER")?
1795
- }?
1796
- },
1371
+ ?rule_group: Params::rule_group,
1797
1372
  ?rules: ::String,
1798
1373
  ?type: ("STATELESS" | "STATEFUL" | "STATEFUL_DOMAIN"),
1799
1374
  ?description: ::String,
@@ -1838,49 +1413,7 @@ module Aws
1838
1413
  def update_tls_inspection_configuration: (
1839
1414
  ?tls_inspection_configuration_arn: ::String,
1840
1415
  ?tls_inspection_configuration_name: ::String,
1841
- tls_inspection_configuration: {
1842
- server_certificate_configurations: Array[
1843
- {
1844
- server_certificates: Array[
1845
- {
1846
- resource_arn: ::String?
1847
- },
1848
- ]?,
1849
- scopes: Array[
1850
- {
1851
- sources: Array[
1852
- {
1853
- address_definition: ::String
1854
- },
1855
- ]?,
1856
- destinations: Array[
1857
- {
1858
- address_definition: ::String
1859
- },
1860
- ]?,
1861
- source_ports: Array[
1862
- {
1863
- from_port: ::Integer,
1864
- to_port: ::Integer
1865
- },
1866
- ]?,
1867
- destination_ports: Array[
1868
- {
1869
- from_port: ::Integer,
1870
- to_port: ::Integer
1871
- },
1872
- ]?,
1873
- protocols: Array[::Integer]?
1874
- },
1875
- ]?,
1876
- certificate_authority_arn: ::String?,
1877
- check_certificate_revocation_status: {
1878
- revoked_status_action: ("PASS" | "DROP" | "REJECT")?,
1879
- unknown_status_action: ("PASS" | "DROP" | "REJECT")?
1880
- }?
1881
- },
1882
- ]?
1883
- },
1416
+ tls_inspection_configuration: Params::tls_inspection_configuration,
1884
1417
  ?description: ::String,
1885
1418
  ?encryption_configuration: {
1886
1419
  key_id: ::String?,
data/sig/params.rbs ADDED
@@ -0,0 +1,260 @@
1
+ # WARNING ABOUT GENERATED CODE
2
+ #
3
+ # This file is generated. See the contributing guide for more information:
4
+ # https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
5
+ #
6
+ # WARNING ABOUT GENERATED CODE
7
+
8
+ module Aws
9
+ module NetworkFirewall
10
+ module Params
11
+ type firewall_policy = {
12
+ stateless_rule_group_references: Array[
13
+ {
14
+ resource_arn: ::String,
15
+ priority: ::Integer
16
+ }
17
+ ]?,
18
+ stateless_default_actions: Array[::String],
19
+ stateless_fragment_default_actions: Array[::String],
20
+ stateless_custom_actions: Array[
21
+ Params::custom_action
22
+ ]?,
23
+ stateful_rule_group_references: Array[
24
+ Params::stateful_rule_group_reference
25
+ ]?,
26
+ stateful_default_actions: Array[::String]?,
27
+ stateful_engine_options: {
28
+ rule_order: ("DEFAULT_ACTION_ORDER" | "STRICT_ORDER")?,
29
+ stream_exception_policy: ("DROP" | "CONTINUE" | "REJECT")?,
30
+ flow_timeouts: {
31
+ tcp_idle_timeout_seconds: ::Integer?
32
+ }?
33
+ }?,
34
+ tls_inspection_configuration_arn: ::String?,
35
+ policy_variables: {
36
+ rule_variables: Hash[::String, {
37
+ definition: Array[::String]
38
+ }]?
39
+ }?,
40
+ enable_tls_session_holding: bool?
41
+ }
42
+
43
+ type custom_action = {
44
+ action_name: ::String,
45
+ action_definition: {
46
+ publish_metric_action: {
47
+ dimensions: Array[
48
+ {
49
+ value: ::String
50
+ }
51
+ ]
52
+ }?
53
+ }
54
+ }
55
+
56
+ type stateful_rule_group_reference = {
57
+ resource_arn: ::String,
58
+ priority: ::Integer?,
59
+ override: {
60
+ action: ("DROP_TO_ALERT")?
61
+ }?,
62
+ deep_threat_inspection: bool?
63
+ }
64
+
65
+ type proxy_rule = {
66
+ proxy_rule_name: ::String?,
67
+ description: ::String?,
68
+ action: ("ALLOW" | "DENY" | "ALERT")?,
69
+ conditions: Array[
70
+ {
71
+ condition_operator: ::String?,
72
+ condition_key: ::String?,
73
+ condition_values: Array[::String]?
74
+ }
75
+ ]?
76
+ }
77
+
78
+ type create_proxy_rule = {
79
+ proxy_rule_name: ::String?,
80
+ description: ::String?,
81
+ action: ("ALLOW" | "DENY" | "ALERT")?,
82
+ conditions: Array[
83
+ {
84
+ condition_operator: ::String?,
85
+ condition_key: ::String?,
86
+ condition_values: Array[::String]?
87
+ }
88
+ ]?,
89
+ insert_position: ::Integer?
90
+ }
91
+
92
+ type rule_variables = {
93
+ ip_sets: Hash[::String, {
94
+ definition: Array[::String]
95
+ }]?,
96
+ port_sets: Hash[::String, {
97
+ definition: Array[::String]?
98
+ }]?
99
+ }
100
+
101
+ type stateless_rules_and_custom_actions = {
102
+ stateless_rules: Array[
103
+ Params::stateless_rule
104
+ ],
105
+ custom_actions: Array[
106
+ Params::custom_action
107
+ ]?
108
+ }
109
+
110
+ type rules_source = {
111
+ rules_string: ::String?,
112
+ rules_source_list: {
113
+ targets: Array[::String],
114
+ target_types: Array[("TLS_SNI" | "HTTP_HOST")],
115
+ generated_rules_type: ("ALLOWLIST" | "DENYLIST" | "REJECTLIST" | "ALERTLIST")
116
+ }?,
117
+ stateful_rules: Array[
118
+ Params::stateful_rule
119
+ ]?,
120
+ stateless_rules_and_custom_actions: Params::stateless_rules_and_custom_actions?
121
+ }
122
+
123
+ type rule_group = {
124
+ rule_variables: Params::rule_variables?,
125
+ reference_sets: {
126
+ ip_set_references: Hash[::String, {
127
+ reference_arn: ::String?
128
+ }]?
129
+ }?,
130
+ rules_source: Params::rules_source,
131
+ stateful_rule_options: {
132
+ rule_order: ("DEFAULT_ACTION_ORDER" | "STRICT_ORDER")?
133
+ }?
134
+ }
135
+
136
+ type header = {
137
+ protocol: ("IP" | "TCP" | "UDP" | "ICMP" | "HTTP" | "FTP" | "TLS" | "SMB" | "DNS" | "DCERPC" | "SSH" | "SMTP" | "IMAP" | "MSN" | "KRB5" | "IKEV2" | "TFTP" | "NTP" | "DHCP" | "HTTP2" | "QUIC"),
138
+ source: ::String,
139
+ source_port: ::String,
140
+ direction: ("FORWARD" | "ANY"),
141
+ destination: ::String,
142
+ destination_port: ::String
143
+ }
144
+
145
+ type stateful_rule = {
146
+ action: ("PASS" | "DROP" | "ALERT" | "REJECT"),
147
+ header: Params::header,
148
+ rule_options: Array[
149
+ {
150
+ keyword: ::String,
151
+ settings: Array[::String]?
152
+ }
153
+ ]
154
+ }
155
+
156
+ type match_attributes = {
157
+ sources: Array[
158
+ {
159
+ address_definition: ::String
160
+ }
161
+ ]?,
162
+ destinations: Array[
163
+ {
164
+ address_definition: ::String
165
+ }
166
+ ]?,
167
+ source_ports: Array[
168
+ {
169
+ from_port: ::Integer,
170
+ to_port: ::Integer
171
+ }
172
+ ]?,
173
+ destination_ports: Array[
174
+ {
175
+ from_port: ::Integer,
176
+ to_port: ::Integer
177
+ }
178
+ ]?,
179
+ protocols: Array[::Integer]?,
180
+ tcp_flags: Array[
181
+ {
182
+ flags: Array[("FIN" | "SYN" | "RST" | "PSH" | "ACK" | "URG" | "ECE" | "CWR")],
183
+ masks: Array[("FIN" | "SYN" | "RST" | "PSH" | "ACK" | "URG" | "ECE" | "CWR")]?
184
+ }
185
+ ]?
186
+ }
187
+
188
+ type rule_definition = {
189
+ match_attributes: Params::match_attributes,
190
+ actions: Array[::String]
191
+ }
192
+
193
+ type stateless_rule = {
194
+ rule_definition: Params::rule_definition,
195
+ priority: ::Integer
196
+ }
197
+
198
+ type tls_inspection_configuration = {
199
+ server_certificate_configurations: Array[
200
+ Params::server_certificate_configuration
201
+ ]?
202
+ }
203
+
204
+ type server_certificate_configuration = {
205
+ server_certificates: Array[
206
+ {
207
+ resource_arn: ::String?
208
+ }
209
+ ]?,
210
+ scopes: Array[
211
+ Params::server_certificate_scope
212
+ ]?,
213
+ certificate_authority_arn: ::String?,
214
+ check_certificate_revocation_status: {
215
+ revoked_status_action: ("PASS" | "DROP" | "REJECT")?,
216
+ unknown_status_action: ("PASS" | "DROP" | "REJECT")?
217
+ }?
218
+ }
219
+
220
+ type server_certificate_scope = {
221
+ sources: Array[
222
+ {
223
+ address_definition: ::String
224
+ }
225
+ ]?,
226
+ destinations: Array[
227
+ {
228
+ address_definition: ::String
229
+ }
230
+ ]?,
231
+ source_ports: Array[
232
+ {
233
+ from_port: ::Integer,
234
+ to_port: ::Integer
235
+ }
236
+ ]?,
237
+ destination_ports: Array[
238
+ {
239
+ from_port: ::Integer,
240
+ to_port: ::Integer
241
+ }
242
+ ]?,
243
+ protocols: Array[::Integer]?
244
+ }
245
+
246
+ type flow_filter = {
247
+ source_address: {
248
+ address_definition: ::String
249
+ }?,
250
+ destination_address: {
251
+ address_definition: ::String
252
+ }?,
253
+ source_port: ::String?,
254
+ destination_port: ::String?,
255
+ protocols: Array[::String]?
256
+ }
257
+
258
+ end
259
+ end
260
+ end
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: aws-sdk-networkfirewall
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.88.0
4
+ version: 1.89.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Amazon Web Services
@@ -67,6 +67,7 @@ files:
67
67
  - lib/aws-sdk-networkfirewall/types.rb
68
68
  - sig/client.rbs
69
69
  - sig/errors.rbs
70
+ - sig/params.rbs
70
71
  - sig/resource.rbs
71
72
  - sig/types.rbs
72
73
  - sig/waiters.rbs