aws-sdk-networkfirewall 1.69.0 → 1.70.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: cad30eb0730be43dba55f8f37ee7f37fa6154e60acc8b8169a6abf148b9166f2
-  data.tar.gz: adeec5b752ae386788194748430a990bda96946b679ce8fdc85d430547d7946d
+  metadata.gz: 4f3134b43932c0f657c5b217006de08a84e1a85fd28458b4ef25bd21f652c51d
+  data.tar.gz: eeee993d3949f5a043bbff10c4aa56c20f5839e8cfc55692c9914c8ef010edb6
 SHA512:
-  metadata.gz: 6af62b765cd8c67599e28c6ad31fc0094c86719a7b7c7b172f94eec21fc8a7448c35426174910fe03964c7b6b540994d397fa8f439b5795e4107684d2e0254c4
-  data.tar.gz: 8e076917fc63035dc0ad614b042dd0b07e68005170f1f22d8b578111517a51e16cef815b77044aea543108d413d766ffeaf2ee0ae2aac5b264775e1c7b9b5f30
+  metadata.gz: dd89276d39b0fa979ad8013f054e614318b0f913a6029e3dbb7fd9944ce367faa96bf02d9c4b622f1b4d98b57c8f0218be07da41852d60558b52a58a00bba2b9
+  data.tar.gz: 33fa7422069b7380d5ec1500a0e95b64d2c7e95f44476094b0e0368ae4e5c5dc084014d891855f92db9950bb7ec2b4a6ab0db2145a122d71e3885ea8954d8de8

data/CHANGELOG.md

@@ -1,6 +1,11 @@
 Unreleased Changes
 ------------------
 
+1.70.0 (2025-06-17)
+------------------
+
+* Feature - Release of Active Threat Defense in Network Firewall
+
 1.69.0 (2025-06-16)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.69.0
+1.70.0

data/lib/aws-sdk-networkfirewall/client.rb

@@ -1054,6 +1054,7 @@ module Aws::NetworkFirewall
     #           override: {
     #             action: "DROP_TO_ALERT", # accepts DROP_TO_ALERT
     #           },
+    #           deep_threat_inspection: false,
     #         },
     #       ],
     #       stateful_default_actions: ["CollectionMember_String"],
@@ -1238,6 +1239,17 @@ module Aws::NetworkFirewall
     #   the rule group for you. To run the stateless rule group analyzer
     #   without creating the rule group, set `DryRun` to `TRUE`.
     #
+    # @option params [Types::SummaryConfiguration] :summary_configuration
+    #   An object that contains a `RuleOptions` array of strings. You use
+    #   `RuleOptions` to determine which of the following RuleSummary values
+    #   are returned in response to `DescribeRuleGroupSummary`.
+    #
+    #   * `Metadata` - returns
+    #
+    #   * `Msg`
+    #
+    #   * `SID`
+    #
     # @return [Types::CreateRuleGroupResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::CreateRuleGroupResponse#update_token #update_token} => String
@@ -1373,6 +1385,9 @@ module Aws::NetworkFirewall
     #       source_update_token: "UpdateToken",
     #     },
     #     analyze_rule_group: false,
+    #     summary_configuration: {
+    #       rule_options: ["SID"], # accepts SID, MSG, METADATA
+    #     },
     #   })
     #
     # @example Response structure
@@ -1401,6 +1416,8 @@ module Aws::NetworkFirewall
     #   resp.rule_group_response.analysis_results[0].identified_rule_ids[0] #=> String
     #   resp.rule_group_response.analysis_results[0].identified_type #=> String, one of "STATELESS_RULE_FORWARDING_ASYMMETRICALLY", "STATELESS_RULE_CONTAINS_TCP_FLAGS"
     #   resp.rule_group_response.analysis_results[0].analysis_detail #=> String
+    #   resp.rule_group_response.summary_configuration.rule_options #=> Array
+    #   resp.rule_group_response.summary_configuration.rule_options[0] #=> String, one of "SID", "MSG", "METADATA"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/CreateRuleGroup AWS API Documentation
     #
@@ -1814,7 +1831,7 @@ module Aws::NetworkFirewall
     # the firewall owner or the transit gateway owner can delete the
     # attachment.
     #
-    # After you delete a transit gateway attachment, traffic will no longer
+    # After you delete a transit gateway attachment, raffic will no longer
     # flow through the firewall endpoints.
     #
     # After you initiate the delete operation, use DescribeFirewall to
@@ -1933,6 +1950,8 @@ module Aws::NetworkFirewall
     #   resp.rule_group_response.analysis_results[0].identified_rule_ids[0] #=> String
     #   resp.rule_group_response.analysis_results[0].identified_type #=> String, one of "STATELESS_RULE_FORWARDING_ASYMMETRICALLY", "STATELESS_RULE_CONTAINS_TCP_FLAGS"
     #   resp.rule_group_response.analysis_results[0].analysis_detail #=> String
+    #   resp.rule_group_response.summary_configuration.rule_options #=> Array
+    #   resp.rule_group_response.summary_configuration.rule_options[0] #=> String, one of "SID", "MSG", "METADATA"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/DeleteRuleGroup AWS API Documentation
     #
@@ -2232,6 +2251,7 @@ module Aws::NetworkFirewall
     #   resp.firewall_policy.stateful_rule_group_references[0].resource_arn #=> String
     #   resp.firewall_policy.stateful_rule_group_references[0].priority #=> Integer
     #   resp.firewall_policy.stateful_rule_group_references[0].override.action #=> String, one of "DROP_TO_ALERT"
+    #   resp.firewall_policy.stateful_rule_group_references[0].deep_threat_inspection #=> Boolean
     #   resp.firewall_policy.stateful_default_actions #=> Array
     #   resp.firewall_policy.stateful_default_actions[0] #=> String
     #   resp.firewall_policy.stateful_engine_options.rule_order #=> String, one of "DEFAULT_ACTION_ORDER", "STRICT_ORDER"
@@ -2523,6 +2543,8 @@ module Aws::NetworkFirewall
     #   resp.rule_group_response.analysis_results[0].identified_rule_ids[0] #=> String
     #   resp.rule_group_response.analysis_results[0].identified_type #=> String, one of "STATELESS_RULE_FORWARDING_ASYMMETRICALLY", "STATELESS_RULE_CONTAINS_TCP_FLAGS"
     #   resp.rule_group_response.analysis_results[0].analysis_detail #=> String
+    #   resp.rule_group_response.summary_configuration.rule_options #=> Array
+    #   resp.rule_group_response.summary_configuration.rule_options[0] #=> String, one of "SID", "MSG", "METADATA"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/DescribeRuleGroup AWS API Documentation
     #
@@ -2597,6 +2619,69 @@ module Aws::NetworkFirewall
       req.send_request(options)
     end
 
+    # Returns detailed information for a stateful rule group.
+    #
+    # For active threat defense Amazon Web Services managed rule groups,
+    # this operation provides insight into the protections enabled by the
+    # rule group, based on Suricata rule metadata fields. Summaries are
+    # available for rule groups you manage and for active threat defense
+    # Amazon Web Services managed rule groups.
+    #
+    # To modify how threat information appears in summaries, use the
+    # `SummaryConfiguration` parameter in UpdateRuleGroup.
+    #
+    # @option params [String] :rule_group_name
+    #   The descriptive name of the rule group. You can't change the name of
+    #   a rule group after you create it.
+    #
+    #   You must specify the ARN or the name, and you can specify both.
+    #
+    # @option params [String] :rule_group_arn
+    #   Required. The Amazon Resource Name (ARN) of the rule group.
+    #
+    #   You must specify the ARN or the name, and you can specify both.
+    #
+    # @option params [String] :type
+    #   The type of rule group you want a summary for. This is a required
+    #   field.
+    #
+    #   Valid value: `STATEFUL`
+    #
+    #   Note that `STATELESS` exists but is not currently supported. If you
+    #   provide `STATELESS`, an exception is returned.
+    #
+    # @return [Types::DescribeRuleGroupSummaryResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::DescribeRuleGroupSummaryResponse#rule_group_name #rule_group_name} => String
+    #   * {Types::DescribeRuleGroupSummaryResponse#description #description} => String
+    #   * {Types::DescribeRuleGroupSummaryResponse#summary #summary} => Types::Summary
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.describe_rule_group_summary({
+    #     rule_group_name: "ResourceName",
+    #     rule_group_arn: "ResourceArn",
+    #     type: "STATELESS", # accepts STATELESS, STATEFUL
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.rule_group_name #=> String
+    #   resp.description #=> String
+    #   resp.summary.rule_summaries #=> Array
+    #   resp.summary.rule_summaries[0].sid #=> String
+    #   resp.summary.rule_summaries[0].msg #=> String
+    #   resp.summary.rule_summaries[0].metadata #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/DescribeRuleGroupSummary AWS API Documentation
+    #
+    # @overload describe_rule_group_summary(params = {})
+    # @param [Hash] params ({})
+    def describe_rule_group_summary(params = {}, options = {})
+      req = build_request(:describe_rule_group_summary, params)
+      req.send_request(options)
+    end
+
     # Returns the data objects for the specified TLS inspection
     # configuration.
     #
@@ -3352,7 +3437,7 @@ module Aws::NetworkFirewall
     #     next_token: "PaginationToken",
     #     max_results: 1,
     #     scope: "MANAGED", # accepts MANAGED, ACCOUNT
-    #     managed_type: "AWS_MANAGED_THREAT_SIGNATURES", # accepts AWS_MANAGED_THREAT_SIGNATURES, AWS_MANAGED_DOMAIN_LISTS
+    #     managed_type: "AWS_MANAGED_THREAT_SIGNATURES", # accepts AWS_MANAGED_THREAT_SIGNATURES, AWS_MANAGED_DOMAIN_LISTS, ACTIVE_THREAT_DEFENSE
     #     type: "STATELESS", # accepts STATELESS, STATEFUL
     #   })
     #
@@ -3630,9 +3715,8 @@ module Aws::NetworkFirewall
     # creation of routing components between the transit gateway and
     # firewall endpoints.
     #
-    # Only the transit gateway owner can reject the attachment. After
-    # rejection, no traffic will flow through the firewall endpoints for
-    # this attachment.
+    # Only the firewall owner can reject the attachment. After rejection, no
+    # traffic will flow through the firewall endpoints for this attachment.
     #
     # Use DescribeFirewall to monitor the rejection status. To accept the
     # attachment instead of rejecting it, use
@@ -4431,6 +4515,7 @@ module Aws::NetworkFirewall
     #           override: {
     #             action: "DROP_TO_ALERT", # accepts DROP_TO_ALERT
     #           },
+    #           deep_threat_inspection: false,
     #         },
     #       ],
     #       stateful_default_actions: ["CollectionMember_String"],
@@ -4757,6 +4842,11 @@ module Aws::NetworkFirewall
     #   the rule group for you. To run the stateless rule group analyzer
     #   without updating the rule group, set `DryRun` to `TRUE`.
     #
+    # @option params [Types::SummaryConfiguration] :summary_configuration
+    #   Updates the selected summary configuration for a rule group.
+    #
+    #   Changes affect subsequent responses from DescribeRuleGroupSummary.
+    #
     # @return [Types::UpdateRuleGroupResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::UpdateRuleGroupResponse#update_token #update_token} => String
@@ -4887,6 +4977,9 @@ module Aws::NetworkFirewall
     #       source_update_token: "UpdateToken",
     #     },
     #     analyze_rule_group: false,
+    #     summary_configuration: {
+    #       rule_options: ["SID"], # accepts SID, MSG, METADATA
+    #     },
     #   })
     #
     # @example Response structure
@@ -4915,6 +5008,8 @@ module Aws::NetworkFirewall
     #   resp.rule_group_response.analysis_results[0].identified_rule_ids[0] #=> String
     #   resp.rule_group_response.analysis_results[0].identified_type #=> String, one of "STATELESS_RULE_FORWARDING_ASYMMETRICALLY", "STATELESS_RULE_CONTAINS_TCP_FLAGS"
     #   resp.rule_group_response.analysis_results[0].analysis_detail #=> String
+    #   resp.rule_group_response.summary_configuration.rule_options #=> Array
+    #   resp.rule_group_response.summary_configuration.rule_options[0] #=> String, one of "SID", "MSG", "METADATA"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/UpdateRuleGroup AWS API Documentation
     #
@@ -5171,7 +5266,7 @@ module Aws::NetworkFirewall
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-networkfirewall'
-      context[:gem_version] = '1.69.0'
+      context[:gem_version] = '1.70.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-networkfirewall/client_api.rb

@@ -71,6 +71,7 @@ module Aws::NetworkFirewall
     CreateVpcEndpointAssociationResponse = Shapes::StructureShape.new(name: 'CreateVpcEndpointAssociationResponse')
     CustomAction = Shapes::StructureShape.new(name: 'CustomAction')
     CustomActions = Shapes::ListShape.new(name: 'CustomActions')
+    DeepThreatInspection = Shapes::BooleanShape.new(name: 'DeepThreatInspection')
     DeleteFirewallPolicyRequest = Shapes::StructureShape.new(name: 'DeleteFirewallPolicyRequest')
     DeleteFirewallPolicyResponse = Shapes::StructureShape.new(name: 'DeleteFirewallPolicyResponse')
     DeleteFirewallRequest = Shapes::StructureShape.new(name: 'DeleteFirewallRequest')
@@ -101,6 +102,8 @@ module Aws::NetworkFirewall
     DescribeRuleGroupMetadataResponse = Shapes::StructureShape.new(name: 'DescribeRuleGroupMetadataResponse')
     DescribeRuleGroupRequest = Shapes::StructureShape.new(name: 'DescribeRuleGroupRequest')
     DescribeRuleGroupResponse = Shapes::StructureShape.new(name: 'DescribeRuleGroupResponse')
+    DescribeRuleGroupSummaryRequest = Shapes::StructureShape.new(name: 'DescribeRuleGroupSummaryRequest')
+    DescribeRuleGroupSummaryResponse = Shapes::StructureShape.new(name: 'DescribeRuleGroupSummaryResponse')
     DescribeTLSInspectionConfigurationRequest = Shapes::StructureShape.new(name: 'DescribeTLSInspectionConfigurationRequest')
     DescribeTLSInspectionConfigurationResponse = Shapes::StructureShape.new(name: 'DescribeTLSInspectionConfigurationResponse')
     DescribeVpcEndpointAssociationRequest = Shapes::StructureShape.new(name: 'DescribeVpcEndpointAssociationRequest')
@@ -247,6 +250,8 @@ module Aws::NetworkFirewall
     RuleOption = Shapes::StructureShape.new(name: 'RuleOption')
     RuleOptions = Shapes::ListShape.new(name: 'RuleOptions')
     RuleOrder = Shapes::StringShape.new(name: 'RuleOrder')
+    RuleSummaries = Shapes::ListShape.new(name: 'RuleSummaries')
+    RuleSummary = Shapes::StructureShape.new(name: 'RuleSummary')
     RuleTargets = Shapes::ListShape.new(name: 'RuleTargets')
     RuleVariableName = Shapes::StringShape.new(name: 'RuleVariableName')
     RuleVariables = Shapes::StructureShape.new(name: 'RuleVariables')
@@ -293,6 +298,10 @@ module Aws::NetworkFirewall
     StreamExceptionPolicy = Shapes::StringShape.new(name: 'StreamExceptionPolicy')
     SubnetMapping = Shapes::StructureShape.new(name: 'SubnetMapping')
     SubnetMappings = Shapes::ListShape.new(name: 'SubnetMappings')
+    Summary = Shapes::StructureShape.new(name: 'Summary')
+    SummaryConfiguration = Shapes::StructureShape.new(name: 'SummaryConfiguration')
+    SummaryRuleOption = Shapes::StringShape.new(name: 'SummaryRuleOption')
+    SummaryRuleOptions = Shapes::ListShape.new(name: 'SummaryRuleOptions')
     SupportedAvailabilityZones = Shapes::MapShape.new(name: 'SupportedAvailabilityZones')
     SyncState = Shapes::StructureShape.new(name: 'SyncState')
     SyncStateConfig = Shapes::MapShape.new(name: 'SyncStateConfig')
@@ -514,6 +523,7 @@ module Aws::NetworkFirewall
     CreateRuleGroupRequest.add_member(:encryption_configuration, Shapes::ShapeRef.new(shape: EncryptionConfiguration, location_name: "EncryptionConfiguration"))
     CreateRuleGroupRequest.add_member(:source_metadata, Shapes::ShapeRef.new(shape: SourceMetadata, location_name: "SourceMetadata"))
     CreateRuleGroupRequest.add_member(:analyze_rule_group, Shapes::ShapeRef.new(shape: Boolean, location_name: "AnalyzeRuleGroup"))
+    CreateRuleGroupRequest.add_member(:summary_configuration, Shapes::ShapeRef.new(shape: SummaryConfiguration, location_name: "SummaryConfiguration"))
     CreateRuleGroupRequest.struct_class = Types::CreateRuleGroupRequest
 
     CreateRuleGroupResponse.add_member(:update_token, Shapes::ShapeRef.new(shape: UpdateToken, required: true, location_name: "UpdateToken"))
@@ -685,6 +695,16 @@ module Aws::NetworkFirewall
     DescribeRuleGroupResponse.add_member(:rule_group_response, Shapes::ShapeRef.new(shape: RuleGroupResponse, required: true, location_name: "RuleGroupResponse"))
     DescribeRuleGroupResponse.struct_class = Types::DescribeRuleGroupResponse
 
+    DescribeRuleGroupSummaryRequest.add_member(:rule_group_name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "RuleGroupName"))
+    DescribeRuleGroupSummaryRequest.add_member(:rule_group_arn, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "RuleGroupArn"))
+    DescribeRuleGroupSummaryRequest.add_member(:type, Shapes::ShapeRef.new(shape: RuleGroupType, location_name: "Type"))
+    DescribeRuleGroupSummaryRequest.struct_class = Types::DescribeRuleGroupSummaryRequest
+
+    DescribeRuleGroupSummaryResponse.add_member(:rule_group_name, Shapes::ShapeRef.new(shape: ResourceName, required: true, location_name: "RuleGroupName"))
+    DescribeRuleGroupSummaryResponse.add_member(:description, Shapes::ShapeRef.new(shape: Description, location_name: "Description"))
+    DescribeRuleGroupSummaryResponse.add_member(:summary, Shapes::ShapeRef.new(shape: Summary, location_name: "Summary"))
+    DescribeRuleGroupSummaryResponse.struct_class = Types::DescribeRuleGroupSummaryResponse
+
     DescribeTLSInspectionConfigurationRequest.add_member(:tls_inspection_configuration_arn, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "TLSInspectionConfigurationArn"))
     DescribeTLSInspectionConfigurationRequest.add_member(:tls_inspection_configuration_name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "TLSInspectionConfigurationName"))
     DescribeTLSInspectionConfigurationRequest.struct_class = Types::DescribeTLSInspectionConfigurationRequest
@@ -1103,6 +1123,7 @@ module Aws::NetworkFirewall
     RuleGroupResponse.add_member(:sns_topic, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "SnsTopic"))
     RuleGroupResponse.add_member(:last_modified_time, Shapes::ShapeRef.new(shape: LastUpdateTime, location_name: "LastModifiedTime"))
     RuleGroupResponse.add_member(:analysis_results, Shapes::ShapeRef.new(shape: AnalysisResultList, location_name: "AnalysisResults"))
+    RuleGroupResponse.add_member(:summary_configuration, Shapes::ShapeRef.new(shape: SummaryConfiguration, location_name: "SummaryConfiguration"))
     RuleGroupResponse.struct_class = Types::RuleGroupResponse
 
     RuleGroups.member = Shapes::ShapeRef.new(shape: RuleGroupMetadata)
@@ -1115,6 +1136,13 @@ module Aws::NetworkFirewall
 
     RuleOptions.member = Shapes::ShapeRef.new(shape: RuleOption)
 
+    RuleSummaries.member = Shapes::ShapeRef.new(shape: RuleSummary)
+
+    RuleSummary.add_member(:sid, Shapes::ShapeRef.new(shape: CollectionMember_String, location_name: "SID"))
+    RuleSummary.add_member(:msg, Shapes::ShapeRef.new(shape: CollectionMember_String, location_name: "Msg"))
+    RuleSummary.add_member(:metadata, Shapes::ShapeRef.new(shape: CollectionMember_String, location_name: "Metadata"))
+    RuleSummary.struct_class = Types::RuleSummary
+
     RuleTargets.member = Shapes::ShapeRef.new(shape: CollectionMember_String)
 
     RuleVariables.add_member(:ip_sets, Shapes::ShapeRef.new(shape: IPSets, location_name: "IPSets"))
@@ -1212,6 +1240,7 @@ module Aws::NetworkFirewall
     StatefulRuleGroupReference.add_member(:resource_arn, Shapes::ShapeRef.new(shape: ResourceArn, required: true, location_name: "ResourceArn"))
     StatefulRuleGroupReference.add_member(:priority, Shapes::ShapeRef.new(shape: Priority, location_name: "Priority", metadata: {"box" => true}))
     StatefulRuleGroupReference.add_member(:override, Shapes::ShapeRef.new(shape: StatefulRuleGroupOverride, location_name: "Override"))
+    StatefulRuleGroupReference.add_member(:deep_threat_inspection, Shapes::ShapeRef.new(shape: DeepThreatInspection, location_name: "DeepThreatInspection"))
     StatefulRuleGroupReference.struct_class = Types::StatefulRuleGroupReference
 
     StatefulRuleGroupReferences.member = Shapes::ShapeRef.new(shape: StatefulRuleGroupReference)
@@ -1245,6 +1274,14 @@ module Aws::NetworkFirewall
 
     SubnetMappings.member = Shapes::ShapeRef.new(shape: SubnetMapping)
 
+    Summary.add_member(:rule_summaries, Shapes::ShapeRef.new(shape: RuleSummaries, location_name: "RuleSummaries"))
+    Summary.struct_class = Types::Summary
+
+    SummaryConfiguration.add_member(:rule_options, Shapes::ShapeRef.new(shape: SummaryRuleOptions, location_name: "RuleOptions"))
+    SummaryConfiguration.struct_class = Types::SummaryConfiguration
+
+    SummaryRuleOptions.member = Shapes::ShapeRef.new(shape: SummaryRuleOption)
+
     SupportedAvailabilityZones.key = Shapes::ShapeRef.new(shape: AvailabilityZone)
     SupportedAvailabilityZones.value = Shapes::ShapeRef.new(shape: AvailabilityZoneMetadata)
 
@@ -1436,6 +1473,7 @@ module Aws::NetworkFirewall
     UpdateRuleGroupRequest.add_member(:encryption_configuration, Shapes::ShapeRef.new(shape: EncryptionConfiguration, location_name: "EncryptionConfiguration"))
     UpdateRuleGroupRequest.add_member(:source_metadata, Shapes::ShapeRef.new(shape: SourceMetadata, location_name: "SourceMetadata"))
     UpdateRuleGroupRequest.add_member(:analyze_rule_group, Shapes::ShapeRef.new(shape: Boolean, location_name: "AnalyzeRuleGroup"))
+    UpdateRuleGroupRequest.add_member(:summary_configuration, Shapes::ShapeRef.new(shape: SummaryConfiguration, location_name: "SummaryConfiguration"))
     UpdateRuleGroupRequest.struct_class = Types::UpdateRuleGroupRequest
 
     UpdateRuleGroupResponse.add_member(:update_token, Shapes::ShapeRef.new(shape: UpdateToken, required: true, location_name: "UpdateToken"))
@@ -1823,6 +1861,18 @@ module Aws::NetworkFirewall
         o.errors << Shapes::ShapeRef.new(shape: InternalServerError)
       end)
 
+      api.add_operation(:describe_rule_group_summary, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "DescribeRuleGroupSummary"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: DescribeRuleGroupSummaryRequest)
+        o.output = Shapes::ShapeRef.new(shape: DescribeRuleGroupSummaryResponse)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidRequestException)
+        o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
+        o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
+        o.errors << Shapes::ShapeRef.new(shape: InternalServerError)
+      end)
+
       api.add_operation(:describe_tls_inspection_configuration, Seahorse::Model::Operation.new.tap do |o|
         o.name = "DescribeTLSInspectionConfiguration"
         o.http_method = "POST"

data/lib/aws-sdk-networkfirewall/types.rb

@@ -1146,6 +1146,18 @@ module Aws::NetworkFirewall
     #   analyzer without creating the rule group, set `DryRun` to `TRUE`.
     #   @return [Boolean]
     #
+    # @!attribute [rw] summary_configuration
+    #   An object that contains a `RuleOptions` array of strings. You use
+    #   `RuleOptions` to determine which of the following RuleSummary values
+    #   are returned in response to `DescribeRuleGroupSummary`.
+    #
+    #   * `Metadata` - returns
+    #
+    #   * `Msg`
+    #
+    #   * `SID`
+    #   @return [Types::SummaryConfiguration]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/CreateRuleGroupRequest AWS API Documentation
     #
     class CreateRuleGroupRequest < Struct.new(
@@ -1159,7 +1171,8 @@ module Aws::NetworkFirewall
       :dry_run,
       :encryption_configuration,
       :source_metadata,
-      :analyze_rule_group)
+      :analyze_rule_group,
+      :summary_configuration)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -2233,6 +2246,73 @@ module Aws::NetworkFirewall
       include Aws::Structure
     end
 
+    # @!attribute [rw] rule_group_name
+    #   The descriptive name of the rule group. You can't change the name
+    #   of a rule group after you create it.
+    #
+    #   You must specify the ARN or the name, and you can specify both.
+    #   @return [String]
+    #
+    # @!attribute [rw] rule_group_arn
+    #   Required. The Amazon Resource Name (ARN) of the rule group.
+    #
+    #   You must specify the ARN or the name, and you can specify both.
+    #   @return [String]
+    #
+    # @!attribute [rw] type
+    #   The type of rule group you want a summary for. This is a required
+    #   field.
+    #
+    #   Valid value: `STATEFUL`
+    #
+    #   Note that `STATELESS` exists but is not currently supported. If you
+    #   provide `STATELESS`, an exception is returned.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/DescribeRuleGroupSummaryRequest AWS API Documentation
+    #
+    class DescribeRuleGroupSummaryRequest < Struct.new(
+      :rule_group_name,
+      :rule_group_arn,
+      :type)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] rule_group_name
+    #   The descriptive name of the rule group. You can't change the name
+    #   of a rule group after you create it.
+    #   @return [String]
+    #
+    # @!attribute [rw] description
+    #   A description of the rule group.
+    #   @return [String]
+    #
+    # @!attribute [rw] summary
+    #   A complex type that contains rule information based on the rule
+    #   group's configured summary settings. The content varies depending
+    #   on the fields that you specified to extract in your
+    #   SummaryConfiguration. When you haven't configured any summary
+    #   settings, this returns an empty array. The response might include:
+    #
+    #   * Rule identifiers
+    #
+    #   * Rule descriptions
+    #
+    #   * Any metadata fields that you specified in your
+    #     SummaryConfiguration
+    #   @return [Types::Summary]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/DescribeRuleGroupSummaryResponse AWS API Documentation
+    #
+    class DescribeRuleGroupSummaryResponse < Struct.new(
+      :rule_group_name,
+      :description,
+      :summary)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] tls_inspection_configuration_arn
     #   The Amazon Resource Name (ARN) of the TLS inspection configuration.
     #
@@ -4911,6 +4991,16 @@ module Aws::NetworkFirewall
     #   in the list of analysis results.
     #   @return [Array<Types::AnalysisResult>]
     #
+    # @!attribute [rw] summary_configuration
+    #   A complex type containing the currently selected rule option fields
+    #   that will be displayed for rule summarization returned by
+    #   DescribeRuleGroupSummary.
+    #
+    #   * The `RuleOptions` specified in SummaryConfiguration
+    #
+    #   * Rule metadata organization preferences
+    #   @return [Types::SummaryConfiguration]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/RuleGroupResponse AWS API Documentation
     #
     class RuleGroupResponse < Struct.new(
@@ -4928,7 +5018,8 @@ module Aws::NetworkFirewall
       :source_metadata,
       :sns_topic,
       :last_modified_time,
-      :analysis_results)
+      :analysis_results,
+      :summary_configuration)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -4967,6 +5058,39 @@ module Aws::NetworkFirewall
       include Aws::Structure
     end
 
+    # A complex type containing details about a Suricata rule. Contains:
+    #
+    # * `SID`
+    #
+    # * `Msg`
+    #
+    # * `Metadata`
+    #
+    # Summaries are available for rule groups you manage and for active
+    # threat defense Amazon Web Services managed rule groups.
+    #
+    # @!attribute [rw] sid
+    #   The unique identifier (Signature ID) of the Suricata rule.
+    #   @return [String]
+    #
+    # @!attribute [rw] msg
+    #   The contents taken from the rule's msg field.
+    #   @return [String]
+    #
+    # @!attribute [rw] metadata
+    #   The contents of the rule's metadata.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/RuleSummary AWS API Documentation
+    #
+    class RuleSummary < Struct.new(
+      :sid,
+      :msg,
+      :metadata)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Settings that are available for use in the rules in the RuleGroup
     # where this is defined. See CreateRuleGroup or UpdateRuleGroup for
     # usage.
@@ -5644,12 +5768,32 @@ module Aws::NetworkFirewall
     #   the rule group within a policy.
     #   @return [Types::StatefulRuleGroupOverride]
     #
+    # @!attribute [rw] deep_threat_inspection
+    #   Network Firewall plans to augment the active threat defense managed
+    #   rule group with an additional deep threat inspection capability.
+    #   When this capability is released, Amazon Web Services will analyze
+    #   service logs of network traffic processed by these rule groups to
+    #   identify threat indicators across customers. Amazon Web Services
+    #   will use these threat indicators to improve the active threat
+    #   defense managed rule groups and protect the security of Amazon Web
+    #   Services customers and services.
+    #
+    #   <note markdown="1"> Customers can opt-out of deep threat inspection at any time through
+    #   the Network Firewall console or API. When customers opt out, Network
+    #   Firewall will not use the network traffic processed by those
+    #   customers' active threat defense rule groups for rule group
+    #   improvement.
+    #
+    #    </note>
+    #   @return [Boolean]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/StatefulRuleGroupReference AWS API Documentation
     #
     class StatefulRuleGroupReference < Struct.new(
       :resource_arn,
       :priority,
-      :override)
+      :override,
+      :deep_threat_inspection)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -5787,6 +5931,52 @@ module Aws::NetworkFirewall
       include Aws::Structure
     end
 
+    # A complex type containing summaries of security protections provided
+    # by a rule group.
+    #
+    # Network Firewall extracts this information from selected fields in the
+    # rule group's Suricata rules, based on your SummaryConfiguration
+    # settings.
+    #
+    # @!attribute [rw] rule_summaries
+    #   An array of RuleSummary objects containing individual rule details
+    #   that had been configured by the rulegroup's SummaryConfiguration.
+    #   @return [Array<Types::RuleSummary>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/Summary AWS API Documentation
+    #
+    class Summary < Struct.new(
+      :rule_summaries)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # A complex type that specifies which Suricata rule metadata fields to
+    # use when displaying threat information. Contains:
+    #
+    # * `RuleOptions` - The Suricata rule options fields to extract and
+    #   display
+    #
+    # ^
+    #
+    # These settings affect how threat information appears in both the
+    # console and API responses. Summaries are available for rule groups you
+    # manage and for active threat defense Amazon Web Services managed rule
+    # groups.
+    #
+    # @!attribute [rw] rule_options
+    #   Specifies the selected rule options returned by
+    #   DescribeRuleGroupSummary.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/SummaryConfiguration AWS API Documentation
+    #
+    class SummaryConfiguration < Struct.new(
+      :rule_options)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # The status of the firewall endpoint and firewall policy configuration
     # for a single VPC subnet. This is part of the FirewallStatus.
     #
@@ -7102,6 +7292,12 @@ module Aws::NetworkFirewall
     #   analyzer without updating the rule group, set `DryRun` to `TRUE`.
     #   @return [Boolean]
     #
+    # @!attribute [rw] summary_configuration
+    #   Updates the selected summary configuration for a rule group.
+    #
+    #   Changes affect subsequent responses from DescribeRuleGroupSummary.
+    #   @return [Types::SummaryConfiguration]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/UpdateRuleGroupRequest AWS API Documentation
     #
     class UpdateRuleGroupRequest < Struct.new(
@@ -7115,7 +7311,8 @@ module Aws::NetworkFirewall
       :dry_run,
       :encryption_configuration,
       :source_metadata,
-      :analyze_rule_group)
+      :analyze_rule_group,
+      :summary_configuration)
       SENSITIVE = []
       include Aws::Structure
     end

data/lib/aws-sdk-networkfirewall.rb

@@ -54,7 +54,7 @@ module Aws::NetworkFirewall
   autoload :EndpointProvider, 'aws-sdk-networkfirewall/endpoint_provider'
   autoload :Endpoints, 'aws-sdk-networkfirewall/endpoints'
 
-  GEM_VERSION = '1.69.0'
+  GEM_VERSION = '1.70.0'
 
 end
 

data/sig/client.rbs

@@ -224,7 +224,8 @@ module Aws
                                           priority: ::Integer?,
                                           override: {
                                             action: ("DROP_TO_ALERT")?
-                                          }?
+                                          }?,
+                                          deep_threat_inspection: bool?
                                         },
                                       ]?,
                                       stateful_default_actions: Array[::String]?,
@@ -384,7 +385,10 @@ module Aws
                                  source_arn: ::String?,
                                  source_update_token: ::String?
                                },
-                               ?analyze_rule_group: bool
+                               ?analyze_rule_group: bool,
+                               ?summary_configuration: {
+                                 rule_options: Array[("SID" | "MSG" | "METADATA")]?
+                               }
                              ) -> _CreateRuleGroupResponseSuccess
                            | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateRuleGroupResponseSuccess
 
@@ -673,6 +677,20 @@ module Aws
                                         ) -> _DescribeRuleGroupMetadataResponseSuccess
                                       | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeRuleGroupMetadataResponseSuccess
 
+      interface _DescribeRuleGroupSummaryResponseSuccess
+        include ::Seahorse::Client::_ResponseSuccess[Types::DescribeRuleGroupSummaryResponse]
+        def rule_group_name: () -> ::String
+        def description: () -> ::String
+        def summary: () -> Types::Summary
+      end
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/NetworkFirewall/Client.html#describe_rule_group_summary-instance_method
+      def describe_rule_group_summary: (
+                                         ?rule_group_name: ::String,
+                                         ?rule_group_arn: ::String,
+                                         ?type: ("STATELESS" | "STATEFUL")
+                                       ) -> _DescribeRuleGroupSummaryResponseSuccess
+                                     | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeRuleGroupSummaryResponseSuccess
+
       interface _DescribeTLSInspectionConfigurationResponseSuccess
         include ::Seahorse::Client::_ResponseSuccess[Types::DescribeTLSInspectionConfigurationResponse]
         def update_token: () -> ::String
@@ -844,7 +862,7 @@ module Aws
                               ?next_token: ::String,
                               ?max_results: ::Integer,
                               ?scope: ("MANAGED" | "ACCOUNT"),
-                              ?managed_type: ("AWS_MANAGED_THREAT_SIGNATURES" | "AWS_MANAGED_DOMAIN_LISTS"),
+                              ?managed_type: ("AWS_MANAGED_THREAT_SIGNATURES" | "AWS_MANAGED_DOMAIN_LISTS" | "ACTIVE_THREAT_DEFENSE"),
                               ?type: ("STATELESS" | "STATEFUL")
                             ) -> _ListRuleGroupsResponseSuccess
                           | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ListRuleGroupsResponseSuccess
@@ -1125,7 +1143,8 @@ module Aws
                                           priority: ::Integer?,
                                           override: {
                                             action: ("DROP_TO_ALERT")?
-                                          }?
+                                          }?,
+                                          deep_threat_inspection: bool?
                                         },
                                       ]?,
                                       stateful_default_actions: Array[::String]?,
@@ -1314,7 +1333,10 @@ module Aws
                                  source_arn: ::String?,
                                  source_update_token: ::String?
                                },
-                               ?analyze_rule_group: bool
+                               ?analyze_rule_group: bool,
+                               ?summary_configuration: {
+                                 rule_options: Array[("SID" | "MSG" | "METADATA")]?
+                               }
                              ) -> _UpdateRuleGroupResponseSuccess
                            | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _UpdateRuleGroupResponseSuccess
 

data/sig/types.rbs

@@ -195,6 +195,7 @@ module Aws::NetworkFirewall
       attr_accessor encryption_configuration: Types::EncryptionConfiguration
       attr_accessor source_metadata: Types::SourceMetadata
       attr_accessor analyze_rule_group: bool
+      attr_accessor summary_configuration: Types::SummaryConfiguration
       SENSITIVE: []
     end
 
@@ -436,6 +437,20 @@ module Aws::NetworkFirewall
       SENSITIVE: []
     end
 
+    class DescribeRuleGroupSummaryRequest
+      attr_accessor rule_group_name: ::String
+      attr_accessor rule_group_arn: ::String
+      attr_accessor type: ("STATELESS" | "STATEFUL")
+      SENSITIVE: []
+    end
+
+    class DescribeRuleGroupSummaryResponse
+      attr_accessor rule_group_name: ::String
+      attr_accessor description: ::String
+      attr_accessor summary: Types::Summary
+      SENSITIVE: []
+    end
+
     class DescribeTLSInspectionConfigurationRequest
       attr_accessor tls_inspection_configuration_arn: ::String
       attr_accessor tls_inspection_configuration_name: ::String
@@ -785,7 +800,7 @@ module Aws::NetworkFirewall
       attr_accessor next_token: ::String
       attr_accessor max_results: ::Integer
       attr_accessor scope: ("MANAGED" | "ACCOUNT")
-      attr_accessor managed_type: ("AWS_MANAGED_THREAT_SIGNATURES" | "AWS_MANAGED_DOMAIN_LISTS")
+      attr_accessor managed_type: ("AWS_MANAGED_THREAT_SIGNATURES" | "AWS_MANAGED_DOMAIN_LISTS" | "ACTIVE_THREAT_DEFENSE")
       attr_accessor type: ("STATELESS" | "STATEFUL")
       SENSITIVE: []
     end
@@ -959,6 +974,7 @@ module Aws::NetworkFirewall
       attr_accessor sns_topic: ::String
       attr_accessor last_modified_time: ::Time
       attr_accessor analysis_results: ::Array[Types::AnalysisResult]
+      attr_accessor summary_configuration: Types::SummaryConfiguration
       SENSITIVE: []
     end
 
@@ -968,6 +984,13 @@ module Aws::NetworkFirewall
       SENSITIVE: []
     end
 
+    class RuleSummary
+      attr_accessor sid: ::String
+      attr_accessor msg: ::String
+      attr_accessor metadata: ::String
+      SENSITIVE: []
+    end
+
     class RuleVariables
       attr_accessor ip_sets: ::Hash[::String, Types::IPSet]
       attr_accessor port_sets: ::Hash[::String, Types::PortSet]
@@ -1086,6 +1109,7 @@ module Aws::NetworkFirewall
       attr_accessor resource_arn: ::String
       attr_accessor priority: ::Integer
       attr_accessor override: Types::StatefulRuleGroupOverride
+      attr_accessor deep_threat_inspection: bool
       SENSITIVE: []
     end
 
@@ -1118,6 +1142,16 @@ module Aws::NetworkFirewall
       SENSITIVE: []
     end
 
+    class Summary
+      attr_accessor rule_summaries: ::Array[Types::RuleSummary]
+      SENSITIVE: []
+    end
+
+    class SummaryConfiguration
+      attr_accessor rule_options: ::Array[("SID" | "MSG" | "METADATA")]
+      SENSITIVE: []
+    end
+
     class SyncState
       attr_accessor attachment: Types::Attachment
       attr_accessor config: ::Hash[::String, Types::PerObjectStatus]
@@ -1351,6 +1385,7 @@ module Aws::NetworkFirewall
       attr_accessor encryption_configuration: Types::EncryptionConfiguration
       attr_accessor source_metadata: Types::SourceMetadata
       attr_accessor analyze_rule_group: bool
+      attr_accessor summary_configuration: Types::SummaryConfiguration
       SENSITIVE: []
     end
 

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-networkfirewall
 version: !ruby/object:Gem::Version
-  version: 1.69.0
+  version: 1.70.0
 platform: ruby
 authors:
 - Amazon Web Services