@aws-sdk/client-fms 3.686.0 → 3.691.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (3) hide show
  1. package/dist-types/models/models_0.d.ts +460 -460
  2. package/dist-types/ts3.4/models/models_0.d.ts +516 -460
  3. package/package.json +7 -7
package/dist-types/models/models_0.d.ts CHANGED
@@ -24,17 +24,17 @@ export interface AccountScope {
24
24
  * <p>The list of accounts within the organization that the specified Firewall Manager administrator either can or cannot apply policies to, based on the value of <code>ExcludeSpecifiedAccounts</code>. If <code>ExcludeSpecifiedAccounts</code> is set to <code>true</code>, then the Firewall Manager administrator can apply policies to all members of the organization except for the accounts in this list. If <code>ExcludeSpecifiedAccounts</code> is set to <code>false</code>, then the Firewall Manager administrator can only apply policies to the accounts in this list.</p>
25
25
  * @public
26
26
  */
27
- Accounts?: string[];
27
+ Accounts?: string[] | undefined;
28
28
  /**
29
29
  * <p>A boolean value that indicates if the administrator can apply policies to all accounts within an organization. If true, the administrator can apply policies to all accounts within the organization. You can either enable management of all accounts through this operation, or you can specify a list of accounts to manage in <code>AccountScope$Accounts</code>. You cannot specify both.</p>
30
30
  * @public
31
31
  */
32
- AllAccountsEnabled?: boolean;
32
+ AllAccountsEnabled?: boolean | undefined;
33
33
  /**
34
34
  * <p>A boolean value that excludes the accounts in <code>AccountScope$Accounts</code> from the administrator's scope. If true, the Firewall Manager administrator can apply policies to all members of the organization except for the accounts listed in <code>AccountScope$Accounts</code>. You can either specify a list of accounts to exclude by <code>AccountScope$Accounts</code>, or you can enable management of all accounts by <code>AccountScope$AllAccountsEnabled</code>. You cannot specify both.</p>
35
35
  * @public
36
36
  */
37
- ExcludeSpecifiedAccounts?: boolean;
37
+ ExcludeSpecifiedAccounts?: boolean | undefined;
38
38
  }
39
39
  /**
40
40
  * <p>Describes a remediation action target.</p>
@@ -45,12 +45,12 @@ export interface ActionTarget {
45
45
  * <p>The ID of the remediation target.</p>
46
46
  * @public
47
47
  */
48
- ResourceId?: string;
48
+ ResourceId?: string | undefined;
49
49
  /**
50
50
  * <p>A description of the remediation action target.</p>
51
51
  * @public
52
52
  */
53
- Description?: string;
53
+ Description?: string | undefined;
54
54
  }
55
55
  /**
56
56
  * @public
@@ -75,12 +75,12 @@ export interface AdminAccountSummary {
75
75
  * <p>The Amazon Web Services account ID of the Firewall Manager administrator's account.</p>
76
76
  * @public
77
77
  */
78
- AdminAccount?: string;
78
+ AdminAccount?: string | undefined;
79
79
  /**
80
80
  * <p>A boolean value that indicates if the administrator is the default administrator. If true, then this is the default administrator account. The default administrator can manage third-party firewalls and has full administrative scope. There is only one default administrator account per organization. For information about Firewall Manager default administrator accounts, see <a href="https://docs.aws.amazon.com/waf/latest/developerguide/fms-administrators.html">Managing Firewall Manager administrators</a> in the <i>Firewall Manager Developer Guide</i>.</p>
81
81
  * @public
82
82
  */
83
- DefaultAdmin?: boolean;
83
+ DefaultAdmin?: boolean | undefined;
84
84
  /**
85
85
  * <p>The current status of the request to onboard a member account as an Firewall Manager administrator.</p>
86
86
  * <ul>
@@ -103,7 +103,7 @@ export interface AdminAccountSummary {
103
103
  * </ul>
104
104
  * @public
105
105
  */
106
- Status?: OrganizationStatus;
106
+ Status?: OrganizationStatus | undefined;
107
107
  }
108
108
  /**
109
109
  * <p>Defines the Organizations organizational units (OUs) that the specified Firewall Manager administrator can apply policies to. For more information about OUs in Organizations, see <a href="https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_ous.html">Managing organizational units (OUs)
@@ -115,17 +115,17 @@ export interface OrganizationalUnitScope {
115
115
  * <p>The list of OUs within the organization that the specified Firewall Manager administrator either can or cannot apply policies to, based on the value of <code>OrganizationalUnitScope$ExcludeSpecifiedOrganizationalUnits</code>. If <code>OrganizationalUnitScope$ExcludeSpecifiedOrganizationalUnits</code> is set to <code>true</code>, then the Firewall Manager administrator can apply policies to all OUs in the organization except for the OUs in this list. If <code>OrganizationalUnitScope$ExcludeSpecifiedOrganizationalUnits</code> is set to <code>false</code>, then the Firewall Manager administrator can only apply policies to the OUs in this list.</p>
116
116
  * @public
117
117
  */
118
- OrganizationalUnits?: string[];
118
+ OrganizationalUnits?: string[] | undefined;
119
119
  /**
120
120
  * <p>A boolean value that indicates if the administrator can apply policies to all OUs within an organization. If true, the administrator can manage all OUs within the organization. You can either enable management of all OUs through this operation, or you can specify OUs to manage in <code>OrganizationalUnitScope$OrganizationalUnits</code>. You cannot specify both.</p>
121
121
  * @public
122
122
  */
123
- AllOrganizationalUnitsEnabled?: boolean;
123
+ AllOrganizationalUnitsEnabled?: boolean | undefined;
124
124
  /**
125
125
  * <p>A boolean value that excludes the OUs in <code>OrganizationalUnitScope$OrganizationalUnits</code> from the administrator's scope. If true, the Firewall Manager administrator can apply policies to all OUs in the organization except for the OUs listed in <code>OrganizationalUnitScope$OrganizationalUnits</code>. You can either specify a list of OUs to exclude by <code>OrganizationalUnitScope$OrganizationalUnits</code>, or you can enable management of all OUs by <code>OrganizationalUnitScope$AllOrganizationalUnitsEnabled</code>. You cannot specify both.</p>
126
126
  * @public
127
127
  */
128
- ExcludeSpecifiedOrganizationalUnits?: boolean;
128
+ ExcludeSpecifiedOrganizationalUnits?: boolean | undefined;
129
129
  }
130
130
  /**
131
131
  * @public
@@ -157,12 +157,12 @@ export interface PolicyTypeScope {
157
157
  * <p>The list of policy types that the specified Firewall Manager administrator can manage.</p>
158
158
  * @public
159
159
  */
160
- PolicyTypes?: SecurityServiceType[];
160
+ PolicyTypes?: SecurityServiceType[] | undefined;
161
161
  /**
162
162
  * <p>Allows the specified Firewall Manager administrator to manage all Firewall Manager policy types, except for third-party policy types. Third-party policy types can only be managed by the Firewall Manager default administrator.</p>
163
163
  * @public
164
164
  */
165
- AllPolicyTypesEnabled?: boolean;
165
+ AllPolicyTypesEnabled?: boolean | undefined;
166
166
  }
167
167
  /**
168
168
  * <p>Defines the Amazon Web Services Regions that the specified Firewall Manager administrator can manage.</p>
@@ -173,12 +173,12 @@ export interface RegionScope {
173
173
  * <p>The Amazon Web Services Regions that the specified Firewall Manager administrator can perform actions in.</p>
174
174
  * @public
175
175
  */
176
- Regions?: string[];
176
+ Regions?: string[] | undefined;
177
177
  /**
178
178
  * <p>Allows the specified Firewall Manager administrator to manage all Amazon Web Services Regions.</p>
179
179
  * @public
180
180
  */
181
- AllRegionsEnabled?: boolean;
181
+ AllRegionsEnabled?: boolean | undefined;
182
182
  }
183
183
  /**
184
184
  * <p>Defines the resources that the Firewall Manager administrator can manage. For more information about administrative scope, see <a href="https://docs.aws.amazon.com/waf/latest/developerguide/fms-administrators.html">Managing Firewall Manager administrators</a> in the <i>Firewall Manager Developer Guide</i>.</p>
@@ -189,23 +189,23 @@ export interface AdminScope {
189
189
  * <p>Defines the accounts that the specified Firewall Manager administrator can apply policies to.</p>
190
190
  * @public
191
191
  */
192
- AccountScope?: AccountScope;
192
+ AccountScope?: AccountScope | undefined;
193
193
  /**
194
194
  * <p>Defines the Organizations organizational units that the specified Firewall Manager administrator can apply policies to. For more information about OUs in Organizations, see <a href="https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_ous.html">Managing organizational units (OUs)
195
195
  * </a> in the <i>Organizations User Guide</i>.</p>
196
196
  * @public
197
197
  */
198
- OrganizationalUnitScope?: OrganizationalUnitScope;
198
+ OrganizationalUnitScope?: OrganizationalUnitScope | undefined;
199
199
  /**
200
200
  * <p>Defines the Amazon Web Services Regions that the specified Firewall Manager administrator can perform actions in.</p>
201
201
  * @public
202
202
  */
203
- RegionScope?: RegionScope;
203
+ RegionScope?: RegionScope | undefined;
204
204
  /**
205
205
  * <p>Defines the Firewall Manager policy types that the specified Firewall Manager administrator can create and manage.</p>
206
206
  * @public
207
207
  */
208
- PolicyTypeScope?: PolicyTypeScope;
208
+ PolicyTypeScope?: PolicyTypeScope | undefined;
209
209
  }
210
210
  /**
211
211
  * <p>An individual Firewall Manager application.</p>
@@ -237,7 +237,7 @@ export interface AppsListData {
237
237
  * <p>The ID of the Firewall Manager applications list.</p>
238
238
  * @public
239
239
  */
240
- ListId?: string;
240
+ ListId?: string | undefined;
241
241
  /**
242
242
  * <p>The name of the Firewall Manager applications list.</p>
243
243
  * @public
@@ -249,17 +249,17 @@ export interface AppsListData {
249
249
  * You can retrieve the update token by getting the list. </p>
250
250
  * @public
251
251
  */
252
- ListUpdateToken?: string;
252
+ ListUpdateToken?: string | undefined;
253
253
  /**
254
254
  * <p>The time that the Firewall Manager applications list was created.</p>
255
255
  * @public
256
256
  */
257
- CreateTime?: Date;
257
+ CreateTime?: Date | undefined;
258
258
  /**
259
259
  * <p>The time that the Firewall Manager applications list was last updated.</p>
260
260
  * @public
261
261
  */
262
- LastUpdateTime?: Date;
262
+ LastUpdateTime?: Date | undefined;
263
263
  /**
264
264
  * <p>An array of applications in the Firewall Manager applications list.</p>
265
265
  * @public
@@ -269,7 +269,7 @@ export interface AppsListData {
269
269
  * <p>A map of previous version numbers to their corresponding <code>App</code> object arrays.</p>
270
270
  * @public
271
271
  */
272
- PreviousAppsList?: Record<string, App[]>;
272
+ PreviousAppsList?: Record<string, App[]> | undefined;
273
273
  }
274
274
  /**
275
275
  * <p>Details of the Firewall Manager applications list.</p>
@@ -280,22 +280,22 @@ export interface AppsListDataSummary {
280
280
  * <p>The Amazon Resource Name (ARN) of the applications list.</p>
281
281
  * @public
282
282
  */
283
- ListArn?: string;
283
+ ListArn?: string | undefined;
284
284
  /**
285
285
  * <p>The ID of the applications list.</p>
286
286
  * @public
287
287
  */
288
- ListId?: string;
288
+ ListId?: string | undefined;
289
289
  /**
290
290
  * <p>The name of the applications list.</p>
291
291
  * @public
292
292
  */
293
- ListName?: string;
293
+ ListName?: string | undefined;
294
294
  /**
295
295
  * <p>An array of <code>App</code> objects in the Firewall Manager applications list.</p>
296
296
  * @public
297
297
  */
298
- AppsList?: App[];
298
+ AppsList?: App[] | undefined;
299
299
  }
300
300
  /**
301
301
  * @public
@@ -319,7 +319,7 @@ export interface AssociateAdminAccountRequest {
319
319
  export declare class InternalErrorException extends __BaseException {
320
320
  readonly name: "InternalErrorException";
321
321
  readonly $fault: "client";
322
- Message?: string;
322
+ Message?: string | undefined;
323
323
  /**
324
324
  * @internal
325
325
  */
@@ -332,7 +332,7 @@ export declare class InternalErrorException extends __BaseException {
332
332
  export declare class InvalidInputException extends __BaseException {
333
333
  readonly name: "InvalidInputException";
334
334
  readonly $fault: "client";
335
- Message?: string;
335
+ Message?: string | undefined;
336
336
  /**
337
337
  * @internal
338
338
  */
@@ -349,7 +349,7 @@ export declare class InvalidInputException extends __BaseException {
349
349
  export declare class InvalidOperationException extends __BaseException {
350
350
  readonly name: "InvalidOperationException";
351
351
  readonly $fault: "client";
352
- Message?: string;
352
+ Message?: string | undefined;
353
353
  /**
354
354
  * @internal
355
355
  */
@@ -365,7 +365,7 @@ export declare class InvalidOperationException extends __BaseException {
365
365
  export declare class LimitExceededException extends __BaseException {
366
366
  readonly name: "LimitExceededException";
367
367
  readonly $fault: "client";
368
- Message?: string;
368
+ Message?: string | undefined;
369
369
  /**
370
370
  * @internal
371
371
  */
@@ -378,7 +378,7 @@ export declare class LimitExceededException extends __BaseException {
378
378
  export declare class ResourceNotFoundException extends __BaseException {
379
379
  readonly name: "ResourceNotFoundException";
380
380
  readonly $fault: "client";
381
- Message?: string;
381
+ Message?: string | undefined;
382
382
  /**
383
383
  * @internal
384
384
  */
@@ -451,7 +451,7 @@ export interface AssociateThirdPartyFirewallResponse {
451
451
  * </ul>
452
452
  * @public
453
453
  */
454
- ThirdPartyFirewallStatus?: ThirdPartyFirewallAssociationStatus;
454
+ ThirdPartyFirewallStatus?: ThirdPartyFirewallAssociationStatus | undefined;
455
455
  }
456
456
  /**
457
457
  * <p>Violation detail for network interfaces associated with an EC2 instance.</p>
@@ -462,12 +462,12 @@ export interface AwsEc2NetworkInterfaceViolation {
462
462
  * <p>The resource ID of the network interface.</p>
463
463
  * @public
464
464
  */
465
- ViolationTarget?: string;
465
+ ViolationTarget?: string | undefined;
466
466
  /**
467
467
  * <p>List of security groups that violate the rules specified in the primary security group of the Firewall Manager policy.</p>
468
468
  * @public
469
469
  */
470
- ViolatingSecurityGroups?: string[];
470
+ ViolatingSecurityGroups?: string[] | undefined;
471
471
  }
472
472
  /**
473
473
  * <p>Violation detail for an EC2 instance resource.</p>
@@ -478,12 +478,12 @@ export interface AwsEc2InstanceViolation {
478
478
  * <p>The resource ID of the EC2 instance.</p>
479
479
  * @public
480
480
  */
481
- ViolationTarget?: string;
481
+ ViolationTarget?: string | undefined;
482
482
  /**
483
483
  * <p>Violation detail for network interfaces associated with the EC2 instance.</p>
484
484
  * @public
485
485
  */
486
- AwsEc2NetworkInterfaceViolations?: AwsEc2NetworkInterfaceViolation[];
486
+ AwsEc2NetworkInterfaceViolations?: AwsEc2NetworkInterfaceViolation[] | undefined;
487
487
  }
488
488
  /**
489
489
  * @public
@@ -525,12 +525,12 @@ export interface FailedItem {
525
525
  * <p>The univeral resource indicator (URI) of the resource that failed.</p>
526
526
  * @public
527
527
  */
528
- URI?: string;
528
+ URI?: string | undefined;
529
529
  /**
530
530
  * <p>The reason the resource's association could not be updated.</p>
531
531
  * @public
532
532
  */
533
- Reason?: FailedItemReason;
533
+ Reason?: FailedItemReason | undefined;
534
534
  }
535
535
  /**
536
536
  * @public
@@ -639,7 +639,7 @@ export interface DeletePolicyRequest {
639
639
  * If you don't specify tags or accounts, all resources are in scope. </p>
640
640
  * @public
641
641
  */
642
- DeleteAllPolicyResources?: boolean;
642
+ DeleteAllPolicyResources?: boolean | undefined;
643
643
  }
644
644
  /**
645
645
  * @public
@@ -685,7 +685,7 @@ export interface DisassociateThirdPartyFirewallResponse {
685
685
  * <p>The current status for the disassociation of a Firewall Manager administrators account with a third-party firewall.</p>
686
686
  * @public
687
687
  */
688
- ThirdPartyFirewallStatus?: ThirdPartyFirewallAssociationStatus;
688
+ ThirdPartyFirewallStatus?: ThirdPartyFirewallAssociationStatus | undefined;
689
689
  }
690
690
  /**
691
691
  * @public
@@ -700,13 +700,13 @@ export interface GetAdminAccountResponse {
700
700
  * <p>The account that is set as the Firewall Manager default administrator.</p>
701
701
  * @public
702
702
  */
703
- AdminAccount?: string;
703
+ AdminAccount?: string | undefined;
704
704
  /**
705
705
  * <p>The status of the account that you set as the Firewall Manager
706
706
  * default administrator.</p>
707
707
  * @public
708
708
  */
709
- RoleStatus?: AccountRoleStatus;
709
+ RoleStatus?: AccountRoleStatus | undefined;
710
710
  }
711
711
  /**
712
712
  * @public
@@ -726,7 +726,7 @@ export interface GetAdminScopeResponse {
726
726
  * <p>Contains details about the administrative scope of the requested account.</p>
727
727
  * @public
728
728
  */
729
- AdminScope?: AdminScope;
729
+ AdminScope?: AdminScope | undefined;
730
730
  /**
731
731
  * <p>The current status of the request to onboard a member account as an Firewall Manager administrator.</p>
732
732
  * <ul>
@@ -749,7 +749,7 @@ export interface GetAdminScopeResponse {
749
749
  * </ul>
750
750
  * @public
751
751
  */
752
- Status?: OrganizationStatus;
752
+ Status?: OrganizationStatus | undefined;
753
753
  }
754
754
  /**
755
755
  * @public
@@ -764,7 +764,7 @@ export interface GetAppsListRequest {
764
764
  * <p>Specifies whether the list to retrieve is a default list owned by Firewall Manager.</p>
765
765
  * @public
766
766
  */
767
- DefaultList?: boolean;
767
+ DefaultList?: boolean | undefined;
768
768
  }
769
769
  /**
770
770
  * @public
@@ -774,12 +774,12 @@ export interface GetAppsListResponse {
774
774
  * <p>Information about the specified Firewall Manager applications list.</p>
775
775
  * @public
776
776
  */
777
- AppsList?: AppsListData;
777
+ AppsList?: AppsListData | undefined;
778
778
  /**
779
779
  * <p>The Amazon Resource Name (ARN) of the applications list.</p>
780
780
  * @public
781
781
  */
782
- AppsListArn?: string;
782
+ AppsListArn?: string | undefined;
783
783
  }
784
784
  /**
785
785
  * @public
@@ -860,12 +860,12 @@ export interface ComplianceViolator {
860
860
  * <p>The resource ID.</p>
861
861
  * @public
862
862
  */
863
- ResourceId?: string;
863
+ ResourceId?: string | undefined;
864
864
  /**
865
865
  * <p>The reason that the resource is not protected by the policy.</p>
866
866
  * @public
867
867
  */
868
- ViolationReason?: ViolationReason;
868
+ ViolationReason?: ViolationReason | undefined;
869
869
  /**
870
870
  * <p>The resource type. This is in the format shown in the <a href="https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-template-resource-type-ref.html">Amazon Web Services Resource Types Reference</a>. For example:
871
871
  * <code>AWS::ElasticLoadBalancingV2::LoadBalancer</code>,
@@ -873,12 +873,12 @@ export interface ComplianceViolator {
873
873
  * <code>AWS::NetworkFirewall::FirewallPolicy</code>.</p>
874
874
  * @public
875
875
  */
876
- ResourceType?: string;
876
+ ResourceType?: string | undefined;
877
877
  /**
878
878
  * <p>Metadata about the resource that doesn't comply with the policy scope.</p>
879
879
  * @public
880
880
  */
881
- Metadata?: Record<string, string>;
881
+ Metadata?: Record<string, string> | undefined;
882
882
  }
883
883
  /**
884
884
  * <p>Describes
@@ -891,41 +891,41 @@ export interface PolicyComplianceDetail {
891
891
  * <p>The Amazon Web Services account that created the Firewall Manager policy.</p>
892
892
  * @public
893
893
  */
894
- PolicyOwner?: string;
894
+ PolicyOwner?: string | undefined;
895
895
  /**
896
896
  * <p>The ID of the Firewall Manager policy.</p>
897
897
  * @public
898
898
  */
899
- PolicyId?: string;
899
+ PolicyId?: string | undefined;
900
900
  /**
901
901
  * <p>The Amazon Web Services account ID.</p>
902
902
  * @public
903
903
  */
904
- MemberAccount?: string;
904
+ MemberAccount?: string | undefined;
905
905
  /**
906
906
  * <p>An array of resources that aren't protected by the WAF or Shield Advanced policy or
907
907
  * that aren't in compliance with the security group policy.</p>
908
908
  * @public
909
909
  */
910
- Violators?: ComplianceViolator[];
910
+ Violators?: ComplianceViolator[] | undefined;
911
911
  /**
912
912
  * <p>Indicates if over 100 resources are noncompliant with the Firewall Manager
913
913
  * policy.</p>
914
914
  * @public
915
915
  */
916
- EvaluationLimitExceeded?: boolean;
916
+ EvaluationLimitExceeded?: boolean | undefined;
917
917
  /**
918
918
  * <p>A timestamp that indicates when the returned information should be considered out of
919
919
  * date.</p>
920
920
  * @public
921
921
  */
922
- ExpiredAt?: Date;
922
+ ExpiredAt?: Date | undefined;
923
923
  /**
924
924
  * <p>Details about problems with dependent services, such as WAF or Config,
925
925
  * and the error message received that indicates the problem with the service.</p>
926
926
  * @public
927
927
  */
928
- IssueInfoMap?: Partial<Record<DependentServiceName, string>>;
928
+ IssueInfoMap?: Partial<Record<DependentServiceName, string>> | undefined;
929
929
  }
930
930
  /**
931
931
  * @public
@@ -936,7 +936,7 @@ export interface GetComplianceDetailResponse {
936
936
  * <code>GetComplianceDetail</code> request.</p>
937
937
  * @public
938
938
  */
939
- PolicyComplianceDetail?: PolicyComplianceDetail;
939
+ PolicyComplianceDetail?: PolicyComplianceDetail | undefined;
940
940
  }
941
941
  /**
942
942
  * @public
@@ -951,12 +951,12 @@ export interface GetNotificationChannelResponse {
951
951
  * <p>The SNS topic that records Firewall Manager activity. </p>
952
952
  * @public
953
953
  */
954
- SnsTopicArn?: string;
954
+ SnsTopicArn?: string | undefined;
955
955
  /**
956
956
  * <p>The IAM role that is used by Firewall Manager to record activity to SNS.</p>
957
957
  * @public
958
958
  */
959
- SnsRoleName?: string;
959
+ SnsRoleName?: string | undefined;
960
960
  }
961
961
  /**
962
962
  * @public
@@ -1016,7 +1016,7 @@ export interface ResourceTag {
1016
1016
  * <p>The resource tag value. To specify an empty string value, either don't provide this or specify it as "". </p>
1017
1017
  * @public
1018
1018
  */
1019
- Value?: string;
1019
+ Value?: string | undefined;
1020
1020
  }
1021
1021
  /**
1022
1022
  * <p>ICMP protocol: The ICMP type and code.</p>
@@ -1027,12 +1027,12 @@ export interface NetworkAclIcmpTypeCode {
1027
1027
  * <p>ICMP code. </p>
1028
1028
  * @public
1029
1029
  */
1030
- Code?: number;
1030
+ Code?: number | undefined;
1031
1031
  /**
1032
1032
  * <p>ICMP type. </p>
1033
1033
  * @public
1034
1034
  */
1035
- Type?: number;
1035
+ Type?: number | undefined;
1036
1036
  }
1037
1037
  /**
1038
1038
  * <p>TCP or UDP protocols: The range of ports the rule applies to.</p>
@@ -1043,12 +1043,12 @@ export interface NetworkAclPortRange {
1043
1043
  * <p>The beginning port number of the range. </p>
1044
1044
  * @public
1045
1045
  */
1046
- From?: number;
1046
+ From?: number | undefined;
1047
1047
  /**
1048
1048
  * <p>The ending port number of the range. </p>
1049
1049
  * @public
1050
1050
  */
1051
- To?: number;
1051
+ To?: number | undefined;
1052
1052
  }
1053
1053
  /**
1054
1054
  * @public
@@ -1077,7 +1077,7 @@ export interface NetworkAclEntry {
1077
1077
  * <p>ICMP protocol: The ICMP type and code.</p>
1078
1078
  * @public
1079
1079
  */
1080
- IcmpTypeCode?: NetworkAclIcmpTypeCode;
1080
+ IcmpTypeCode?: NetworkAclIcmpTypeCode | undefined;
1081
1081
  /**
1082
1082
  * <p>The protocol number. A value of "-1" means all protocols. </p>
1083
1083
  * @public
@@ -1087,17 +1087,17 @@ export interface NetworkAclEntry {
1087
1087
  * <p>TCP or UDP protocols: The range of ports the rule applies to.</p>
1088
1088
  * @public
1089
1089
  */
1090
- PortRange?: NetworkAclPortRange;
1090
+ PortRange?: NetworkAclPortRange | undefined;
1091
1091
  /**
1092
1092
  * <p>The IPv4 network range to allow or deny, in CIDR notation.</p>
1093
1093
  * @public
1094
1094
  */
1095
- CidrBlock?: string;
1095
+ CidrBlock?: string | undefined;
1096
1096
  /**
1097
1097
  * <p>The IPv6 network range to allow or deny, in CIDR notation.</p>
1098
1098
  * @public
1099
1099
  */
1100
- Ipv6CidrBlock?: string;
1100
+ Ipv6CidrBlock?: string | undefined;
1101
1101
  /**
1102
1102
  * <p>Indicates whether to allow or deny the traffic that matches the rule.</p>
1103
1103
  * @public
@@ -1124,7 +1124,7 @@ export interface NetworkAclEntrySet {
1124
1124
  * <p>You must specify at least one first entry or one last entry in any network ACL policy. </p>
1125
1125
  * @public
1126
1126
  */
1127
- FirstEntries?: NetworkAclEntry[];
1127
+ FirstEntries?: NetworkAclEntry[] | undefined;
1128
1128
  /**
1129
1129
  * <p>Applies only when remediation is enabled for the policy as a whole. Firewall Manager uses this setting when it finds policy
1130
1130
  * violations that involve conflicts between the custom entries and the policy entries. </p>
@@ -1144,7 +1144,7 @@ export interface NetworkAclEntrySet {
1144
1144
  * <p>You must specify at least one first entry or one last entry in any network ACL policy. </p>
1145
1145
  * @public
1146
1146
  */
1147
- LastEntries?: NetworkAclEntry[];
1147
+ LastEntries?: NetworkAclEntry[] | undefined;
1148
1148
  /**
1149
1149
  * <p>Applies only when remediation is enabled for the policy as a whole. Firewall Manager uses this setting when it finds policy
1150
1150
  * violations that involve conflicts between the custom entries and the policy entries. </p>
@@ -1196,7 +1196,7 @@ export interface NetworkFirewallPolicy {
1196
1196
  * set <a href="https://docs.aws.amazon.com/fms/2018-01-01/APIReference/API_PolicyOption.html">PolicyOption</a> to <code>NULL</code>.</p>
1197
1197
  * @public
1198
1198
  */
1199
- FirewallDeploymentModel?: FirewallDeploymentModel;
1199
+ FirewallDeploymentModel?: FirewallDeploymentModel | undefined;
1200
1200
  }
1201
1201
  /**
1202
1202
  * <p>Configures the deployment model for the third-party firewall.</p>
@@ -1207,7 +1207,7 @@ export interface ThirdPartyFirewallPolicy {
1207
1207
  * <p>Defines the deployment model to use for the third-party firewall policy.</p>
1208
1208
  * @public
1209
1209
  */
1210
- FirewallDeploymentModel?: FirewallDeploymentModel;
1210
+ FirewallDeploymentModel?: FirewallDeploymentModel | undefined;
1211
1211
  }
1212
1212
  /**
1213
1213
  * <p>Contains the settings to configure a network ACL policy, a Network Firewall firewall policy deployment model, or a third-party firewall policy.</p>
@@ -1218,17 +1218,17 @@ export interface PolicyOption {
1218
1218
  * <p>Defines the deployment model to use for the firewall policy.</p>
1219
1219
  * @public
1220
1220
  */
1221
- NetworkFirewallPolicy?: NetworkFirewallPolicy;
1221
+ NetworkFirewallPolicy?: NetworkFirewallPolicy | undefined;
1222
1222
  /**
1223
1223
  * <p>Defines the policy options for a third-party firewall policy.</p>
1224
1224
  * @public
1225
1225
  */
1226
- ThirdPartyFirewallPolicy?: ThirdPartyFirewallPolicy;
1226
+ ThirdPartyFirewallPolicy?: ThirdPartyFirewallPolicy | undefined;
1227
1227
  /**
1228
1228
  * <p>Defines a Firewall Manager network ACL policy. </p>
1229
1229
  * @public
1230
1230
  */
1231
- NetworkAclCommonPolicy?: NetworkAclCommonPolicy;
1231
+ NetworkAclCommonPolicy?: NetworkAclCommonPolicy | undefined;
1232
1232
  }
1233
1233
  /**
1234
1234
  * <p>Details about the security service that is being used to protect the resources.</p>
@@ -1508,12 +1508,12 @@ export interface SecurityServicePolicyData {
1508
1508
  * </ul>
1509
1509
  * @public
1510
1510
  */
1511
- ManagedServiceData?: string;
1511
+ ManagedServiceData?: string | undefined;
1512
1512
  /**
1513
1513
  * <p>Contains the settings to configure a network ACL policy, a Network Firewall firewall policy deployment model, or a third-party firewall policy.</p>
1514
1514
  * @public
1515
1515
  */
1516
- PolicyOption?: PolicyOption;
1516
+ PolicyOption?: PolicyOption | undefined;
1517
1517
  }
1518
1518
  /**
1519
1519
  * <p>An Firewall Manager policy.</p>
@@ -1524,7 +1524,7 @@ export interface Policy {
1524
1524
  * <p>The ID of the Firewall Manager policy.</p>
1525
1525
  * @public
1526
1526
  */
1527
- PolicyId?: string;
1527
+ PolicyId?: string | undefined;
1528
1528
  /**
1529
1529
  * <p>The name of the Firewall Manager policy.</p>
1530
1530
  * @public
@@ -1538,7 +1538,7 @@ export interface Policy {
1538
1538
  * request.</p>
1539
1539
  * @public
1540
1540
  */
1541
- PolicyUpdateToken?: string;
1541
+ PolicyUpdateToken?: string | undefined;
1542
1542
  /**
1543
1543
  * <p>Details about the security service that is being used to protect the resources.</p>
1544
1544
  * @public
@@ -1579,12 +1579,12 @@ export interface Policy {
1579
1579
  * <p>An array of <code>ResourceType</code> objects. Use this only to specify multiple resource types. To specify a single resource type, use <code>ResourceType</code>.</p>
1580
1580
  * @public
1581
1581
  */
1582
- ResourceTypeList?: string[];
1582
+ ResourceTypeList?: string[] | undefined;
1583
1583
  /**
1584
1584
  * <p>An array of <code>ResourceTag</code> objects.</p>
1585
1585
  * @public
1586
1586
  */
1587
- ResourceTags?: ResourceTag[];
1587
+ ResourceTags?: ResourceTag[] | undefined;
1588
1588
  /**
1589
1589
  * <p>If set to <code>True</code>, resources with the tags that are specified in the
1590
1590
  * <code>ResourceTag</code> array are not in scope of the policy. If set to <code>False</code>,
@@ -1606,7 +1606,7 @@ export interface Policy {
1606
1606
  * <p>This option is not available for Shield Advanced or WAF Classic policies.</p>
1607
1607
  * @public
1608
1608
  */
1609
- DeleteUnusedFMManagedResources?: boolean;
1609
+ DeleteUnusedFMManagedResources?: boolean | undefined;
1610
1610
  /**
1611
1611
  * <p>Specifies the Amazon Web Services account IDs and Organizations organizational units (OUs) to include in the policy.
1612
1612
  * Specifying an OU is the equivalent of specifying all accounts in the OU and in any of its child OUs, including any child OUs and accounts that are added at a later time.</p>
@@ -1631,7 +1631,7 @@ export interface Policy {
1631
1631
  * </ul>
1632
1632
  * @public
1633
1633
  */
1634
- IncludeMap?: Partial<Record<CustomerPolicyScopeIdType, string[]>>;
1634
+ IncludeMap?: Partial<Record<CustomerPolicyScopeIdType, string[]>> | undefined;
1635
1635
  /**
1636
1636
  * <p>Specifies the Amazon Web Services account IDs and Organizations organizational units (OUs) to exclude from the policy.
1637
1637
  * Specifying an OU is the equivalent of specifying all accounts in the OU and in any of its child OUs, including any child OUs and accounts that are added at a later time.</p>
@@ -1656,17 +1656,17 @@ export interface Policy {
1656
1656
  * </ul>
1657
1657
  * @public
1658
1658
  */
1659
- ExcludeMap?: Partial<Record<CustomerPolicyScopeIdType, string[]>>;
1659
+ ExcludeMap?: Partial<Record<CustomerPolicyScopeIdType, string[]>> | undefined;
1660
1660
  /**
1661
1661
  * <p>The unique identifiers of the resource sets used by the policy.</p>
1662
1662
  * @public
1663
1663
  */
1664
- ResourceSetIds?: string[];
1664
+ ResourceSetIds?: string[] | undefined;
1665
1665
  /**
1666
1666
  * <p>Your description of the Firewall Manager policy.</p>
1667
1667
  * @public
1668
1668
  */
1669
- PolicyDescription?: string;
1669
+ PolicyDescription?: string | undefined;
1670
1670
  /**
1671
1671
  * <p>Indicates whether the policy is in or out of an admin's policy or Region scope.</p>
1672
1672
  * <ul>
@@ -1681,7 +1681,7 @@ export interface Policy {
1681
1681
  * </ul>
1682
1682
  * @public
1683
1683
  */
1684
- PolicyStatus?: CustomerPolicyStatus;
1684
+ PolicyStatus?: CustomerPolicyStatus | undefined;
1685
1685
  }
1686
1686
  /**
1687
1687
  * @public
@@ -1691,12 +1691,12 @@ export interface GetPolicyResponse {
1691
1691
  * <p>Information about the specified Firewall Manager policy.</p>
1692
1692
  * @public
1693
1693
  */
1694
- Policy?: Policy;
1694
+ Policy?: Policy | undefined;
1695
1695
  /**
1696
1696
  * <p>The Amazon Resource Name (ARN) of the specified policy.</p>
1697
1697
  * @public
1698
1698
  */
1699
- PolicyArn?: string;
1699
+ PolicyArn?: string | undefined;
1700
1700
  }
1701
1701
  /**
1702
1702
  * <p>The value of the <code>Type</code> parameter is invalid.</p>
@@ -1705,7 +1705,7 @@ export interface GetPolicyResponse {
1705
1705
  export declare class InvalidTypeException extends __BaseException {
1706
1706
  readonly name: "InvalidTypeException";
1707
1707
  readonly $fault: "client";
1708
- Message?: string;
1708
+ Message?: string | undefined;
1709
1709
  /**
1710
1710
  * @internal
1711
1711
  */
@@ -1725,21 +1725,21 @@ export interface GetProtectionStatusRequest {
1725
1725
  * for.</p>
1726
1726
  * @public
1727
1727
  */
1728
- MemberAccountId?: string;
1728
+ MemberAccountId?: string | undefined;
1729
1729
  /**
1730
1730
  * <p>The start of the time period to query for the attacks. This is a <code>timestamp</code> type. The
1731
1731
  * request syntax listing indicates a <code>number</code> type because the default used by Firewall Manager is Unix time in seconds. However, any valid <code>timestamp</code> format is
1732
1732
  * allowed.</p>
1733
1733
  * @public
1734
1734
  */
1735
- StartTime?: Date;
1735
+ StartTime?: Date | undefined;
1736
1736
  /**
1737
1737
  * <p>The end of the time period to query for the attacks. This is a <code>timestamp</code> type. The
1738
1738
  * request syntax listing indicates a <code>number</code> type because the default used by Firewall Manager is Unix time in seconds. However, any valid <code>timestamp</code> format is
1739
1739
  * allowed.</p>
1740
1740
  * @public
1741
1741
  */
1742
- EndTime?: Date;
1742
+ EndTime?: Date | undefined;
1743
1743
  /**
1744
1744
  * <p>If you specify a value for <code>MaxResults</code> and you have more objects than the number that you specify
1745
1745
  * for <code>MaxResults</code>, Firewall Manager returns a <code>NextToken</code> value in the response, which you can use to retrieve another group of
@@ -1747,14 +1747,14 @@ export interface GetProtectionStatusRequest {
1747
1747
  * from the previous response to get information about another batch of objects.</p>
1748
1748
  * @public
1749
1749
  */
1750
- NextToken?: string;
1750
+ NextToken?: string | undefined;
1751
1751
  /**
1752
1752
  * <p>Specifies the number of objects that you want Firewall Manager to return for this request. If you have more
1753
1753
  * objects than the number that you specify for <code>MaxResults</code>, the response includes a
1754
1754
  * <code>NextToken</code> value that you can use to get another batch of objects.</p>
1755
1755
  * @public
1756
1756
  */
1757
- MaxResults?: number;
1757
+ MaxResults?: number | undefined;
1758
1758
  }
1759
1759
  /**
1760
1760
  * @public
@@ -1764,13 +1764,13 @@ export interface GetProtectionStatusResponse {
1764
1764
  * <p>The ID of the Firewall Manager administrator account for this policy.</p>
1765
1765
  * @public
1766
1766
  */
1767
- AdminAccountId?: string;
1767
+ AdminAccountId?: string | undefined;
1768
1768
  /**
1769
1769
  * <p>The service type that is protected by the policy. Currently, this is always
1770
1770
  * <code>SHIELD_ADVANCED</code>.</p>
1771
1771
  * @public
1772
1772
  */
1773
- ServiceType?: SecurityServiceType;
1773
+ ServiceType?: SecurityServiceType | undefined;
1774
1774
  /**
1775
1775
  * <p>Details about the attack, including the following:</p>
1776
1776
  * <ul>
@@ -1793,7 +1793,7 @@ export interface GetProtectionStatusResponse {
1793
1793
  * <p>The details are in JSON format. </p>
1794
1794
  * @public
1795
1795
  */
1796
- Data?: string;
1796
+ Data?: string | undefined;
1797
1797
  /**
1798
1798
  * <p>If you have more objects than the number that you specified for <code>MaxResults</code> in the request,
1799
1799
  * the response includes a <code>NextToken</code> value. To list more objects, submit another
@@ -1805,7 +1805,7 @@ export interface GetProtectionStatusResponse {
1805
1805
  * <code>NextToken</code> using your own processes. </p>
1806
1806
  * @public
1807
1807
  */
1808
- NextToken?: string;
1808
+ NextToken?: string | undefined;
1809
1809
  }
1810
1810
  /**
1811
1811
  * @public
@@ -1820,7 +1820,7 @@ export interface GetProtocolsListRequest {
1820
1820
  * <p>Specifies whether the list to retrieve is a default list owned by Firewall Manager.</p>
1821
1821
  * @public
1822
1822
  */
1823
- DefaultList?: boolean;
1823
+ DefaultList?: boolean | undefined;
1824
1824
  }
1825
1825
  /**
1826
1826
  * <p>An Firewall Manager protocols list.</p>
@@ -1831,7 +1831,7 @@ export interface ProtocolsListData {
1831
1831
  * <p>The ID of the Firewall Manager protocols list.</p>
1832
1832
  * @public
1833
1833
  */
1834
- ListId?: string;
1834
+ ListId?: string | undefined;
1835
1835
  /**
1836
1836
  * <p>The name of the Firewall Manager protocols list.</p>
1837
1837
  * @public
@@ -1843,17 +1843,17 @@ export interface ProtocolsListData {
1843
1843
  * You can retrieve the update token by getting the list. </p>
1844
1844
  * @public
1845
1845
  */
1846
- ListUpdateToken?: string;
1846
+ ListUpdateToken?: string | undefined;
1847
1847
  /**
1848
1848
  * <p>The time that the Firewall Manager protocols list was created.</p>
1849
1849
  * @public
1850
1850
  */
1851
- CreateTime?: Date;
1851
+ CreateTime?: Date | undefined;
1852
1852
  /**
1853
1853
  * <p>The time that the Firewall Manager protocols list was last updated.</p>
1854
1854
  * @public
1855
1855
  */
1856
- LastUpdateTime?: Date;
1856
+ LastUpdateTime?: Date | undefined;
1857
1857
  /**
1858
1858
  * <p>An array of protocols in the Firewall Manager protocols list.</p>
1859
1859
  * @public
@@ -1863,7 +1863,7 @@ export interface ProtocolsListData {
1863
1863
  * <p>A map of previous version numbers to their corresponding protocol arrays.</p>
1864
1864
  * @public
1865
1865
  */
1866
- PreviousProtocolsList?: Record<string, string[]>;
1866
+ PreviousProtocolsList?: Record<string, string[]> | undefined;
1867
1867
  }
1868
1868
  /**
1869
1869
  * @public
@@ -1873,12 +1873,12 @@ export interface GetProtocolsListResponse {
1873
1873
  * <p>Information about the specified Firewall Manager protocols list.</p>
1874
1874
  * @public
1875
1875
  */
1876
- ProtocolsList?: ProtocolsListData;
1876
+ ProtocolsList?: ProtocolsListData | undefined;
1877
1877
  /**
1878
1878
  * <p>The Amazon Resource Name (ARN) of the specified protocols list.</p>
1879
1879
  * @public
1880
1880
  */
1881
- ProtocolsListArn?: string;
1881
+ ProtocolsListArn?: string | undefined;
1882
1882
  }
1883
1883
  /**
1884
1884
  * @public
@@ -1911,7 +1911,7 @@ export interface ResourceSet {
1911
1911
  * <p>A unique identifier for the resource set. This ID is returned in the responses to create and list commands. You provide it to operations like update and delete.</p>
1912
1912
  * @public
1913
1913
  */
1914
- Id?: string;
1914
+ Id?: string | undefined;
1915
1915
  /**
1916
1916
  * <p>The descriptive name of the resource set. You can't change the name of a resource set after you create it.</p>
1917
1917
  * @public
@@ -1921,7 +1921,7 @@ export interface ResourceSet {
1921
1921
  * <p>A description of the resource set.</p>
1922
1922
  * @public
1923
1923
  */
1924
- Description?: string;
1924
+ Description?: string | undefined;
1925
1925
  /**
1926
1926
  * <p>An optional token that you can use for optimistic locking. Firewall Manager returns a token to your requests that access the resource set. The token marks the state of the resource set resource at the time of the request. Update tokens are not allowed when creating a resource set. After creation, each subsequent update call to the resource set requires the update token.
1927
1927
  * </p>
@@ -1929,7 +1929,7 @@ export interface ResourceSet {
1929
1929
  * <p>To make a conditional change to the resource set, provide the token in your update request. Firewall Manager uses the token to ensure that the resource set hasn't changed since you last retrieved it. If it has changed, the operation fails with an <code>InvalidTokenException</code>. If this happens, retrieve the resource set again to get a current copy of it with a new token. Reapply your changes as needed, then try the operation again using the new token. </p>
1930
1930
  * @public
1931
1931
  */
1932
- UpdateToken?: string;
1932
+ UpdateToken?: string | undefined;
1933
1933
  /**
1934
1934
  * <p>Determines the resources that can be associated to the resource set. Depending on
1935
1935
  * your setting for max results and the number of resource sets, a single call might not
@@ -1941,7 +1941,7 @@ export interface ResourceSet {
1941
1941
  * <p>The last time that the resource set was changed.</p>
1942
1942
  * @public
1943
1943
  */
1944
- LastUpdateTime?: Date;
1944
+ LastUpdateTime?: Date | undefined;
1945
1945
  /**
1946
1946
  * <p>Indicates whether the resource set is in or out of an admin's Region scope.</p>
1947
1947
  * <ul>
@@ -1956,7 +1956,7 @@ export interface ResourceSet {
1956
1956
  * </ul>
1957
1957
  * @public
1958
1958
  */
1959
- ResourceSetStatus?: ResourceSetStatus;
1959
+ ResourceSetStatus?: ResourceSetStatus | undefined;
1960
1960
  }
1961
1961
  /**
1962
1962
  * @public
@@ -2026,7 +2026,7 @@ export interface GetThirdPartyFirewallAssociationStatusResponse {
2026
2026
  * </ul>
2027
2027
  * @public
2028
2028
  */
2029
- ThirdPartyFirewallStatus?: ThirdPartyFirewallAssociationStatus;
2029
+ ThirdPartyFirewallStatus?: ThirdPartyFirewallAssociationStatus | undefined;
2030
2030
  /**
2031
2031
  * <p>The status for subscribing to the third-party firewall vendor in the Amazon Web Services Marketplace.</p>
2032
2032
  * <ul>
@@ -2045,7 +2045,7 @@ export interface GetThirdPartyFirewallAssociationStatusResponse {
2045
2045
  * </ul>
2046
2046
  * @public
2047
2047
  */
2048
- MarketplaceOnboardingStatus?: MarketplaceSubscriptionOnboardingStatus;
2048
+ MarketplaceOnboardingStatus?: MarketplaceSubscriptionOnboardingStatus | undefined;
2049
2049
  }
2050
2050
  /**
2051
2051
  * @public
@@ -2128,12 +2128,12 @@ export interface PartialMatch {
2128
2128
  * <p>The reference rule from the primary security group of the Firewall Manager policy.</p>
2129
2129
  * @public
2130
2130
  */
2131
- Reference?: string;
2131
+ Reference?: string | undefined;
2132
2132
  /**
2133
2133
  * <p>The violation reason.</p>
2134
2134
  * @public
2135
2135
  */
2136
- TargetViolationReasons?: string[];
2136
+ TargetViolationReasons?: string[] | undefined;
2137
2137
  }
2138
2138
  /**
2139
2139
  * @public
@@ -2156,32 +2156,32 @@ export interface SecurityGroupRuleDescription {
2156
2156
  * <p>The IPv4 ranges for the security group rule.</p>
2157
2157
  * @public
2158
2158
  */
2159
- IPV4Range?: string;
2159
+ IPV4Range?: string | undefined;
2160
2160
  /**
2161
2161
  * <p>The IPv6 ranges for the security group rule.</p>
2162
2162
  * @public
2163
2163
  */
2164
- IPV6Range?: string;
2164
+ IPV6Range?: string | undefined;
2165
2165
  /**
2166
2166
  * <p>The ID of the prefix list for the security group rule.</p>
2167
2167
  * @public
2168
2168
  */
2169
- PrefixListId?: string;
2169
+ PrefixListId?: string | undefined;
2170
2170
  /**
2171
2171
  * <p>The IP protocol name (<code>tcp</code>, <code>udp</code>, <code>icmp</code>, <code>icmpv6</code>) or number.</p>
2172
2172
  * @public
2173
2173
  */
2174
- Protocol?: string;
2174
+ Protocol?: string | undefined;
2175
2175
  /**
2176
2176
  * <p>The start of the port range for the TCP and UDP protocols, or an ICMP/ICMPv6 type number. A value of <code>-1</code> indicates all ICMP/ICMPv6 types.</p>
2177
2177
  * @public
2178
2178
  */
2179
- FromPort?: number;
2179
+ FromPort?: number | undefined;
2180
2180
  /**
2181
2181
  * <p>The end of the port range for the TCP and UDP protocols, or an ICMP/ICMPv6 code. A value of <code>-1</code> indicates all ICMP/ICMPv6 codes.</p>
2182
2182
  * @public
2183
2183
  */
2184
- ToPort?: number;
2184
+ ToPort?: number | undefined;
2185
2185
  }
2186
2186
  /**
2187
2187
  * <p>Remediation option for the rule specified in the <code>ViolationTarget</code>.</p>
@@ -2192,22 +2192,22 @@ export interface SecurityGroupRemediationAction {
2192
2192
  * <p>The remediation action that will be performed.</p>
2193
2193
  * @public
2194
2194
  */
2195
- RemediationActionType?: RemediationActionType;
2195
+ RemediationActionType?: RemediationActionType | undefined;
2196
2196
  /**
2197
2197
  * <p>Brief description of the action that will be performed.</p>
2198
2198
  * @public
2199
2199
  */
2200
- Description?: string;
2200
+ Description?: string | undefined;
2201
2201
  /**
2202
2202
  * <p>The final state of the rule specified in the <code>ViolationTarget</code> after it is remediated.</p>
2203
2203
  * @public
2204
2204
  */
2205
- RemediationResult?: SecurityGroupRuleDescription;
2205
+ RemediationResult?: SecurityGroupRuleDescription | undefined;
2206
2206
  /**
2207
2207
  * <p>Indicates if the current action is the default action.</p>
2208
2208
  * @public
2209
2209
  */
2210
- IsDefaultAction?: boolean;
2210
+ IsDefaultAction?: boolean | undefined;
2211
2211
  }
2212
2212
  /**
2213
2213
  * <p>Violation detail for the rule violation in a security group when compared to the primary security group of the Firewall Manager policy.</p>
@@ -2218,22 +2218,22 @@ export interface AwsVPCSecurityGroupViolation {
2218
2218
  * <p>The security group rule that is being evaluated.</p>
2219
2219
  * @public
2220
2220
  */
2221
- ViolationTarget?: string;
2221
+ ViolationTarget?: string | undefined;
2222
2222
  /**
2223
2223
  * <p>A description of the security group that violates the policy.</p>
2224
2224
  * @public
2225
2225
  */
2226
- ViolationTargetDescription?: string;
2226
+ ViolationTargetDescription?: string | undefined;
2227
2227
  /**
2228
2228
  * <p>List of rules specified in the security group of the Firewall Manager policy that partially match the <code>ViolationTarget</code> rule.</p>
2229
2229
  * @public
2230
2230
  */
2231
- PartialMatches?: PartialMatch[];
2231
+ PartialMatches?: PartialMatch[] | undefined;
2232
2232
  /**
2233
2233
  * <p>Remediation options for the rule specified in the <code>ViolationTarget</code>.</p>
2234
2234
  * @public
2235
2235
  */
2236
- PossibleSecurityGroupRemediationActions?: SecurityGroupRemediationAction[];
2236
+ PossibleSecurityGroupRemediationActions?: SecurityGroupRemediationAction[] | undefined;
2237
2237
  }
2238
2238
  /**
2239
2239
  * <p>A DNS Firewall rule group that Firewall Manager
@@ -2245,12 +2245,12 @@ export interface DnsDuplicateRuleGroupViolation {
2245
2245
  * <p>Information about the VPC ID. </p>
2246
2246
  * @public
2247
2247
  */
2248
- ViolationTarget?: string;
2248
+ ViolationTarget?: string | undefined;
2249
2249
  /**
2250
2250
  * <p>A description of the violation that specifies the rule group and VPC.</p>
2251
2251
  * @public
2252
2252
  */
2253
- ViolationTargetDescription?: string;
2253
+ ViolationTargetDescription?: string | undefined;
2254
2254
  }
2255
2255
  /**
2256
2256
  * <p>The VPC that Firewall Manager was applying a DNS Fireall policy to reached the limit for associated DNS Firewall rule groups. Firewall Manager tried to associate another rule group with the VPC and failed due to the limit. </p>
@@ -2261,17 +2261,17 @@ export interface DnsRuleGroupLimitExceededViolation {
2261
2261
  * <p>Information about the VPC ID. </p>
2262
2262
  * @public
2263
2263
  */
2264
- ViolationTarget?: string;
2264
+ ViolationTarget?: string | undefined;
2265
2265
  /**
2266
2266
  * <p>A description of the violation that specifies the rule group and VPC.</p>
2267
2267
  * @public
2268
2268
  */
2269
- ViolationTargetDescription?: string;
2269
+ ViolationTargetDescription?: string | undefined;
2270
2270
  /**
2271
2271
  * <p>The number of rule groups currently associated with the VPC. </p>
2272
2272
  * @public
2273
2273
  */
2274
- NumberOfRuleGroupsAlreadyAssociated?: number;
2274
+ NumberOfRuleGroupsAlreadyAssociated?: number | undefined;
2275
2275
  }
2276
2276
  /**
2277
2277
  * <p>A rule group that Firewall Manager
@@ -2283,29 +2283,29 @@ export interface DnsRuleGroupPriorityConflictViolation {
2283
2283
  * <p>Information about the VPC ID. </p>
2284
2284
  * @public
2285
2285
  */
2286
- ViolationTarget?: string;
2286
+ ViolationTarget?: string | undefined;
2287
2287
  /**
2288
2288
  * <p>A description of the violation that specifies the VPC and the rule group that's already associated with it.</p>
2289
2289
  * @public
2290
2290
  */
2291
- ViolationTargetDescription?: string;
2291
+ ViolationTargetDescription?: string | undefined;
2292
2292
  /**
2293
2293
  * <p>The priority setting of the two conflicting rule groups.</p>
2294
2294
  * @public
2295
2295
  */
2296
- ConflictingPriority?: number;
2296
+ ConflictingPriority?: number | undefined;
2297
2297
  /**
2298
2298
  * <p>The ID of the Firewall Manager DNS Firewall policy that was already applied to the VPC.
2299
2299
  * This policy contains the rule group that's already associated with the VPC. </p>
2300
2300
  * @public
2301
2301
  */
2302
- ConflictingPolicyId?: string;
2302
+ ConflictingPolicyId?: string | undefined;
2303
2303
  /**
2304
2304
  * <p>The priorities of rule groups that are already associated with the VPC. To retry your operation,
2305
2305
  * choose priority settings that aren't in this list for the rule groups in your new DNS Firewall policy. </p>
2306
2306
  * @public
2307
2307
  */
2308
- UnavailablePriorities?: number[];
2308
+ UnavailablePriorities?: number[] | undefined;
2309
2309
  }
2310
2310
  /**
2311
2311
  * <p>Contains details about the firewall subnet that violates the policy scope.</p>
@@ -2316,27 +2316,27 @@ export interface FirewallSubnetIsOutOfScopeViolation {
2316
2316
  * <p>The ID of the firewall subnet that violates the policy scope.</p>
2317
2317
  * @public
2318
2318
  */
2319
- FirewallSubnetId?: string;
2319
+ FirewallSubnetId?: string | undefined;
2320
2320
  /**
2321
2321
  * <p>The VPC ID of the firewall subnet that violates the policy scope.</p>
2322
2322
  * @public
2323
2323
  */
2324
- VpcId?: string;
2324
+ VpcId?: string | undefined;
2325
2325
  /**
2326
2326
  * <p>The Availability Zone of the firewall subnet that violates the policy scope.</p>
2327
2327
  * @public
2328
2328
  */
2329
- SubnetAvailabilityZone?: string;
2329
+ SubnetAvailabilityZone?: string | undefined;
2330
2330
  /**
2331
2331
  * <p>The Availability Zone ID of the firewall subnet that violates the policy scope.</p>
2332
2332
  * @public
2333
2333
  */
2334
- SubnetAvailabilityZoneId?: string;
2334
+ SubnetAvailabilityZoneId?: string | undefined;
2335
2335
  /**
2336
2336
  * <p>The VPC endpoint ID of the firewall subnet that violates the policy scope.</p>
2337
2337
  * @public
2338
2338
  */
2339
- VpcEndpointId?: string;
2339
+ VpcEndpointId?: string | undefined;
2340
2340
  }
2341
2341
  /**
2342
2342
  * <p>The violation details for a firewall subnet's VPC endpoint that's deleted or missing.</p>
@@ -2347,22 +2347,22 @@ export interface FirewallSubnetMissingVPCEndpointViolation {
2347
2347
  * <p>The ID of the firewall that this VPC endpoint is associated with.</p>
2348
2348
  * @public
2349
2349
  */
2350
- FirewallSubnetId?: string;
2350
+ FirewallSubnetId?: string | undefined;
2351
2351
  /**
2352
2352
  * <p>The resource ID of the VPC associated with the deleted VPC subnet.</p>
2353
2353
  * @public
2354
2354
  */
2355
- VpcId?: string;
2355
+ VpcId?: string | undefined;
2356
2356
  /**
2357
2357
  * <p>The name of the Availability Zone of the deleted VPC subnet.</p>
2358
2358
  * @public
2359
2359
  */
2360
- SubnetAvailabilityZone?: string;
2360
+ SubnetAvailabilityZone?: string | undefined;
2361
2361
  /**
2362
2362
  * <p>The ID of the Availability Zone of the deleted VPC subnet.</p>
2363
2363
  * @public
2364
2364
  */
2365
- SubnetAvailabilityZoneId?: string;
2365
+ SubnetAvailabilityZoneId?: string | undefined;
2366
2366
  }
2367
2367
  /**
2368
2368
  * @public
@@ -2392,19 +2392,19 @@ export interface EntryDescription {
2392
2392
  * that you want them to run. Firewall Manager assigns the rule numbers for you when you save the network ACL policy specification.</p>
2393
2393
  * @public
2394
2394
  */
2395
- EntryDetail?: NetworkAclEntry;
2395
+ EntryDetail?: NetworkAclEntry | undefined;
2396
2396
  /**
2397
2397
  * <p>The rule number for the entry. ACL entries are processed in ascending order by rule number. In a Firewall Manager network ACL policy, Firewall Manager
2398
2398
  * assigns rule numbers. </p>
2399
2399
  * @public
2400
2400
  */
2401
- EntryRuleNumber?: number;
2401
+ EntryRuleNumber?: number | undefined;
2402
2402
  /**
2403
2403
  * <p>Specifies whether the entry is managed by Firewall Manager or by a user, and, for Firewall Manager-managed entries, specifies whether the entry
2404
2404
  * is among those that run first in the network ACL or those that run last. </p>
2405
2405
  * @public
2406
2406
  */
2407
- EntryType?: EntryType;
2407
+ EntryType?: EntryType | undefined;
2408
2408
  }
2409
2409
  /**
2410
2410
  * @public
@@ -2429,32 +2429,32 @@ export interface EntryViolation {
2429
2429
  * <p>The Firewall Manager-managed network ACL entry that is involved in the entry violation. </p>
2430
2430
  * @public
2431
2431
  */
2432
- ExpectedEntry?: EntryDescription;
2432
+ ExpectedEntry?: EntryDescription | undefined;
2433
2433
  /**
2434
2434
  * <p>The evaluation location within the ordered list of entries where the <code>ExpectedEntry</code> should be, according to the network ACL policy specifications. </p>
2435
2435
  * @public
2436
2436
  */
2437
- ExpectedEvaluationOrder?: string;
2437
+ ExpectedEvaluationOrder?: string | undefined;
2438
2438
  /**
2439
2439
  * <p>The evaluation location within the ordered list of entries where the <code>ExpectedEntry</code> is currently located. </p>
2440
2440
  * @public
2441
2441
  */
2442
- ActualEvaluationOrder?: string;
2442
+ ActualEvaluationOrder?: string | undefined;
2443
2443
  /**
2444
2444
  * <p>The entry that's currently in the <code>ExpectedEvaluationOrder</code> location, in place of the expected entry. </p>
2445
2445
  * @public
2446
2446
  */
2447
- EntryAtExpectedEvaluationOrder?: EntryDescription;
2447
+ EntryAtExpectedEvaluationOrder?: EntryDescription | undefined;
2448
2448
  /**
2449
2449
  * <p>The list of entries that are in conflict with <code>ExpectedEntry</code>. </p>
2450
2450
  * @public
2451
2451
  */
2452
- EntriesWithConflicts?: EntryDescription[];
2452
+ EntriesWithConflicts?: EntryDescription[] | undefined;
2453
2453
  /**
2454
2454
  * <p>Descriptions of the violations that Firewall Manager found for these entries. </p>
2455
2455
  * @public
2456
2456
  */
2457
- EntryViolationReasons?: EntryViolationReason[];
2457
+ EntryViolationReasons?: EntryViolationReason[] | undefined;
2458
2458
  }
2459
2459
  /**
2460
2460
  * <p>Violation detail for the entries in a network ACL resource.</p>
@@ -2465,27 +2465,27 @@ export interface InvalidNetworkAclEntriesViolation {
2465
2465
  * <p>The VPC where the violation was found. </p>
2466
2466
  * @public
2467
2467
  */
2468
- Vpc?: string;
2468
+ Vpc?: string | undefined;
2469
2469
  /**
2470
2470
  * <p>The subnet that's associated with the network ACL.</p>
2471
2471
  * @public
2472
2472
  */
2473
- Subnet?: string;
2473
+ Subnet?: string | undefined;
2474
2474
  /**
2475
2475
  * <p>The Availability Zone where the network ACL is in use. </p>
2476
2476
  * @public
2477
2477
  */
2478
- SubnetAvailabilityZone?: string;
2478
+ SubnetAvailabilityZone?: string | undefined;
2479
2479
  /**
2480
2480
  * <p>The network ACL containing the entry violations. </p>
2481
2481
  * @public
2482
2482
  */
2483
- CurrentAssociatedNetworkAcl?: string;
2483
+ CurrentAssociatedNetworkAcl?: string | undefined;
2484
2484
  /**
2485
2485
  * <p>Detailed information about the entry violations in the network ACL. </p>
2486
2486
  * @public
2487
2487
  */
2488
- EntryViolations?: EntryViolation[];
2488
+ EntryViolations?: EntryViolation[] | undefined;
2489
2489
  }
2490
2490
  /**
2491
2491
  * @public
@@ -2529,22 +2529,22 @@ export interface Route {
2529
2529
  * <p>The type of destination for the route.</p>
2530
2530
  * @public
2531
2531
  */
2532
- DestinationType?: DestinationType;
2532
+ DestinationType?: DestinationType | undefined;
2533
2533
  /**
2534
2534
  * <p>The type of target for the route.</p>
2535
2535
  * @public
2536
2536
  */
2537
- TargetType?: TargetType;
2537
+ TargetType?: TargetType | undefined;
2538
2538
  /**
2539
2539
  * <p>The destination of the route.</p>
2540
2540
  * @public
2541
2541
  */
2542
- Destination?: string;
2542
+ Destination?: string | undefined;
2543
2543
  /**
2544
2544
  * <p>The route's target.</p>
2545
2545
  * @public
2546
2546
  */
2547
- Target?: string;
2547
+ Target?: string | undefined;
2548
2548
  }
2549
2549
  /**
2550
2550
  * <p>Violation detail for an internet gateway route with an inactive state in the customer subnet route table or Network Firewall subnet route table.</p>
@@ -2555,22 +2555,22 @@ export interface NetworkFirewallBlackHoleRouteDetectedViolation {
2555
2555
  * <p>The subnet that has an inactive state.</p>
2556
2556
  * @public
2557
2557
  */
2558
- ViolationTarget?: string;
2558
+ ViolationTarget?: string | undefined;
2559
2559
  /**
2560
2560
  * <p>Information about the route table ID.</p>
2561
2561
  * @public
2562
2562
  */
2563
- RouteTableId?: string;
2563
+ RouteTableId?: string | undefined;
2564
2564
  /**
2565
2565
  * <p>Information about the VPC ID.</p>
2566
2566
  * @public
2567
2567
  */
2568
- VpcId?: string;
2568
+ VpcId?: string | undefined;
2569
2569
  /**
2570
2570
  * <p>Information about the route or routes that are in violation.</p>
2571
2571
  * @public
2572
2572
  */
2573
- ViolatingRoutes?: Route[];
2573
+ ViolatingRoutes?: Route[] | undefined;
2574
2574
  }
2575
2575
  /**
2576
2576
  * <p>Information about the expected route in the route table.</p>
@@ -2581,32 +2581,32 @@ export interface ExpectedRoute {
2581
2581
  * <p>Information about the IPv4 CIDR block.</p>
2582
2582
  * @public
2583
2583
  */
2584
- IpV4Cidr?: string;
2584
+ IpV4Cidr?: string | undefined;
2585
2585
  /**
2586
2586
  * <p>Information about the ID of the prefix list for the route.</p>
2587
2587
  * @public
2588
2588
  */
2589
- PrefixListId?: string;
2589
+ PrefixListId?: string | undefined;
2590
2590
  /**
2591
2591
  * <p>Information about the IPv6 CIDR block.</p>
2592
2592
  * @public
2593
2593
  */
2594
- IpV6Cidr?: string;
2594
+ IpV6Cidr?: string | undefined;
2595
2595
  /**
2596
2596
  * <p>Information about the contributing subnets.</p>
2597
2597
  * @public
2598
2598
  */
2599
- ContributingSubnets?: string[];
2599
+ ContributingSubnets?: string[] | undefined;
2600
2600
  /**
2601
2601
  * <p>Information about the allowed targets.</p>
2602
2602
  * @public
2603
2603
  */
2604
- AllowedTargets?: string[];
2604
+ AllowedTargets?: string[] | undefined;
2605
2605
  /**
2606
2606
  * <p>Information about the route table ID.</p>
2607
2607
  * @public
2608
2608
  */
2609
- RouteTableId?: string;
2609
+ RouteTableId?: string | undefined;
2610
2610
  }
2611
2611
  /**
2612
2612
  * <p>Violation detail for the subnet for which internet traffic that hasn't been inspected.</p>
@@ -2617,77 +2617,77 @@ export interface NetworkFirewallInternetTrafficNotInspectedViolation {
2617
2617
  * <p>The subnet ID.</p>
2618
2618
  * @public
2619
2619
  */
2620
- SubnetId?: string;
2620
+ SubnetId?: string | undefined;
2621
2621
  /**
2622
2622
  * <p>The subnet Availability Zone.</p>
2623
2623
  * @public
2624
2624
  */
2625
- SubnetAvailabilityZone?: string;
2625
+ SubnetAvailabilityZone?: string | undefined;
2626
2626
  /**
2627
2627
  * <p>Information about the route table ID.</p>
2628
2628
  * @public
2629
2629
  */
2630
- RouteTableId?: string;
2630
+ RouteTableId?: string | undefined;
2631
2631
  /**
2632
2632
  * <p>The route or routes that are in violation.</p>
2633
2633
  * @public
2634
2634
  */
2635
- ViolatingRoutes?: Route[];
2635
+ ViolatingRoutes?: Route[] | undefined;
2636
2636
  /**
2637
2637
  * <p>Information about whether the route table is used in another Availability Zone.</p>
2638
2638
  * @public
2639
2639
  */
2640
- IsRouteTableUsedInDifferentAZ?: boolean;
2640
+ IsRouteTableUsedInDifferentAZ?: boolean | undefined;
2641
2641
  /**
2642
2642
  * <p>Information about the subnet route table for the current firewall.</p>
2643
2643
  * @public
2644
2644
  */
2645
- CurrentFirewallSubnetRouteTable?: string;
2645
+ CurrentFirewallSubnetRouteTable?: string | undefined;
2646
2646
  /**
2647
2647
  * <p>The expected endpoint for the current firewall.</p>
2648
2648
  * @public
2649
2649
  */
2650
- ExpectedFirewallEndpoint?: string;
2650
+ ExpectedFirewallEndpoint?: string | undefined;
2651
2651
  /**
2652
2652
  * <p>The firewall subnet ID.</p>
2653
2653
  * @public
2654
2654
  */
2655
- FirewallSubnetId?: string;
2655
+ FirewallSubnetId?: string | undefined;
2656
2656
  /**
2657
2657
  * <p>The firewall subnet routes that are expected.</p>
2658
2658
  * @public
2659
2659
  */
2660
- ExpectedFirewallSubnetRoutes?: ExpectedRoute[];
2660
+ ExpectedFirewallSubnetRoutes?: ExpectedRoute[] | undefined;
2661
2661
  /**
2662
2662
  * <p>The actual firewall subnet routes.</p>
2663
2663
  * @public
2664
2664
  */
2665
- ActualFirewallSubnetRoutes?: Route[];
2665
+ ActualFirewallSubnetRoutes?: Route[] | undefined;
2666
2666
  /**
2667
2667
  * <p>The internet gateway ID.</p>
2668
2668
  * @public
2669
2669
  */
2670
- InternetGatewayId?: string;
2670
+ InternetGatewayId?: string | undefined;
2671
2671
  /**
2672
2672
  * <p>The current route table for the internet gateway.</p>
2673
2673
  * @public
2674
2674
  */
2675
- CurrentInternetGatewayRouteTable?: string;
2675
+ CurrentInternetGatewayRouteTable?: string | undefined;
2676
2676
  /**
2677
2677
  * <p>The internet gateway routes that are expected.</p>
2678
2678
  * @public
2679
2679
  */
2680
- ExpectedInternetGatewayRoutes?: ExpectedRoute[];
2680
+ ExpectedInternetGatewayRoutes?: ExpectedRoute[] | undefined;
2681
2681
  /**
2682
2682
  * <p>The actual internet gateway routes.</p>
2683
2683
  * @public
2684
2684
  */
2685
- ActualInternetGatewayRoutes?: Route[];
2685
+ ActualInternetGatewayRoutes?: Route[] | undefined;
2686
2686
  /**
2687
2687
  * <p>Information about the VPC ID.</p>
2688
2688
  * @public
2689
2689
  */
2690
- VpcId?: string;
2690
+ VpcId?: string | undefined;
2691
2691
  }
2692
2692
  /**
2693
2693
  * <p>Violation detail for the improperly configured subnet route. It's possible there is a missing route table route,
@@ -2699,82 +2699,82 @@ export interface NetworkFirewallInvalidRouteConfigurationViolation {
2699
2699
  * <p>The subnets that are affected.</p>
2700
2700
  * @public
2701
2701
  */
2702
- AffectedSubnets?: string[];
2702
+ AffectedSubnets?: string[] | undefined;
2703
2703
  /**
2704
2704
  * <p>The route table ID.</p>
2705
2705
  * @public
2706
2706
  */
2707
- RouteTableId?: string;
2707
+ RouteTableId?: string | undefined;
2708
2708
  /**
2709
2709
  * <p>Information about whether the route table is used in another Availability Zone.</p>
2710
2710
  * @public
2711
2711
  */
2712
- IsRouteTableUsedInDifferentAZ?: boolean;
2712
+ IsRouteTableUsedInDifferentAZ?: boolean | undefined;
2713
2713
  /**
2714
2714
  * <p>The route that's in violation.</p>
2715
2715
  * @public
2716
2716
  */
2717
- ViolatingRoute?: Route;
2717
+ ViolatingRoute?: Route | undefined;
2718
2718
  /**
2719
2719
  * <p>The subnet route table for the current firewall.</p>
2720
2720
  * @public
2721
2721
  */
2722
- CurrentFirewallSubnetRouteTable?: string;
2722
+ CurrentFirewallSubnetRouteTable?: string | undefined;
2723
2723
  /**
2724
2724
  * <p>The firewall endpoint that's expected.</p>
2725
2725
  * @public
2726
2726
  */
2727
- ExpectedFirewallEndpoint?: string;
2727
+ ExpectedFirewallEndpoint?: string | undefined;
2728
2728
  /**
2729
2729
  * <p>The actual firewall endpoint.</p>
2730
2730
  * @public
2731
2731
  */
2732
- ActualFirewallEndpoint?: string;
2732
+ ActualFirewallEndpoint?: string | undefined;
2733
2733
  /**
2734
2734
  * <p>The expected subnet ID for the firewall.</p>
2735
2735
  * @public
2736
2736
  */
2737
- ExpectedFirewallSubnetId?: string;
2737
+ ExpectedFirewallSubnetId?: string | undefined;
2738
2738
  /**
2739
2739
  * <p>The actual subnet ID for the firewall.</p>
2740
2740
  * @public
2741
2741
  */
2742
- ActualFirewallSubnetId?: string;
2742
+ ActualFirewallSubnetId?: string | undefined;
2743
2743
  /**
2744
2744
  * <p>The firewall subnet routes that are expected.</p>
2745
2745
  * @public
2746
2746
  */
2747
- ExpectedFirewallSubnetRoutes?: ExpectedRoute[];
2747
+ ExpectedFirewallSubnetRoutes?: ExpectedRoute[] | undefined;
2748
2748
  /**
2749
2749
  * <p>The actual firewall subnet routes that are expected.</p>
2750
2750
  * @public
2751
2751
  */
2752
- ActualFirewallSubnetRoutes?: Route[];
2752
+ ActualFirewallSubnetRoutes?: Route[] | undefined;
2753
2753
  /**
2754
2754
  * <p>The internet gateway ID.</p>
2755
2755
  * @public
2756
2756
  */
2757
- InternetGatewayId?: string;
2757
+ InternetGatewayId?: string | undefined;
2758
2758
  /**
2759
2759
  * <p>The route table for the current internet gateway.</p>
2760
2760
  * @public
2761
2761
  */
2762
- CurrentInternetGatewayRouteTable?: string;
2762
+ CurrentInternetGatewayRouteTable?: string | undefined;
2763
2763
  /**
2764
2764
  * <p>The expected routes for the internet gateway.</p>
2765
2765
  * @public
2766
2766
  */
2767
- ExpectedInternetGatewayRoutes?: ExpectedRoute[];
2767
+ ExpectedInternetGatewayRoutes?: ExpectedRoute[] | undefined;
2768
2768
  /**
2769
2769
  * <p>The actual internet gateway routes.</p>
2770
2770
  * @public
2771
2771
  */
2772
- ActualInternetGatewayRoutes?: Route[];
2772
+ ActualInternetGatewayRoutes?: Route[] | undefined;
2773
2773
  /**
2774
2774
  * <p>Information about the VPC ID.</p>
2775
2775
  * @public
2776
2776
  */
2777
- VpcId?: string;
2777
+ VpcId?: string | undefined;
2778
2778
  }
2779
2779
  /**
2780
2780
  * <p>Violation detail for an expected route missing in Network Firewall.</p>
@@ -2785,17 +2785,17 @@ export interface NetworkFirewallMissingExpectedRoutesViolation {
2785
2785
  * <p>The target of the violation.</p>
2786
2786
  * @public
2787
2787
  */
2788
- ViolationTarget?: string;
2788
+ ViolationTarget?: string | undefined;
2789
2789
  /**
2790
2790
  * <p>The expected routes.</p>
2791
2791
  * @public
2792
2792
  */
2793
- ExpectedRoutes?: ExpectedRoute[];
2793
+ ExpectedRoutes?: ExpectedRoute[] | undefined;
2794
2794
  /**
2795
2795
  * <p>Information about the VPC ID.</p>
2796
2796
  * @public
2797
2797
  */
2798
- VpcId?: string;
2798
+ VpcId?: string | undefined;
2799
2799
  }
2800
2800
  /**
2801
2801
  * <p>Violation detail for Network Firewall for a subnet that's not associated to the expected
@@ -2807,27 +2807,27 @@ export interface NetworkFirewallMissingExpectedRTViolation {
2807
2807
  * <p>The ID of the Network Firewall or VPC resource that's in violation.</p>
2808
2808
  * @public
2809
2809
  */
2810
- ViolationTarget?: string;
2810
+ ViolationTarget?: string | undefined;
2811
2811
  /**
2812
2812
  * <p>The resource ID of the VPC associated with a violating subnet.</p>
2813
2813
  * @public
2814
2814
  */
2815
- VPC?: string;
2815
+ VPC?: string | undefined;
2816
2816
  /**
2817
2817
  * <p>The Availability Zone of a violating subnet. </p>
2818
2818
  * @public
2819
2819
  */
2820
- AvailabilityZone?: string;
2820
+ AvailabilityZone?: string | undefined;
2821
2821
  /**
2822
2822
  * <p>The resource ID of the current route table that's associated with the subnet, if one is available.</p>
2823
2823
  * @public
2824
2824
  */
2825
- CurrentRouteTable?: string;
2825
+ CurrentRouteTable?: string | undefined;
2826
2826
  /**
2827
2827
  * <p>The resource ID of the route table that should be associated with the subnet.</p>
2828
2828
  * @public
2829
2829
  */
2830
- ExpectedRouteTable?: string;
2830
+ ExpectedRouteTable?: string | undefined;
2831
2831
  }
2832
2832
  /**
2833
2833
  * <p>Violation detail for Network Firewall for a subnet that doesn't have a
@@ -2839,22 +2839,22 @@ export interface NetworkFirewallMissingFirewallViolation {
2839
2839
  * <p>The ID of the Network Firewall or VPC resource that's in violation.</p>
2840
2840
  * @public
2841
2841
  */
2842
- ViolationTarget?: string;
2842
+ ViolationTarget?: string | undefined;
2843
2843
  /**
2844
2844
  * <p>The resource ID of the VPC associated with a violating subnet.</p>
2845
2845
  * @public
2846
2846
  */
2847
- VPC?: string;
2847
+ VPC?: string | undefined;
2848
2848
  /**
2849
2849
  * <p>The Availability Zone of a violating subnet. </p>
2850
2850
  * @public
2851
2851
  */
2852
- AvailabilityZone?: string;
2852
+ AvailabilityZone?: string | undefined;
2853
2853
  /**
2854
2854
  * <p>The reason the resource has this violation, if one is available. </p>
2855
2855
  * @public
2856
2856
  */
2857
- TargetViolationReason?: string;
2857
+ TargetViolationReason?: string | undefined;
2858
2858
  }
2859
2859
  /**
2860
2860
  * <p>Violation detail for Network Firewall for an Availability Zone that's
@@ -2866,22 +2866,22 @@ export interface NetworkFirewallMissingSubnetViolation {
2866
2866
  * <p>The ID of the Network Firewall or VPC resource that's in violation.</p>
2867
2867
  * @public
2868
2868
  */
2869
- ViolationTarget?: string;
2869
+ ViolationTarget?: string | undefined;
2870
2870
  /**
2871
2871
  * <p>The resource ID of the VPC associated with a violating subnet.</p>
2872
2872
  * @public
2873
2873
  */
2874
- VPC?: string;
2874
+ VPC?: string | undefined;
2875
2875
  /**
2876
2876
  * <p>The Availability Zone of a violating subnet. </p>
2877
2877
  * @public
2878
2878
  */
2879
- AvailabilityZone?: string;
2879
+ AvailabilityZone?: string | undefined;
2880
2880
  /**
2881
2881
  * <p>The reason the resource has this violation, if one is available. </p>
2882
2882
  * @public
2883
2883
  */
2884
- TargetViolationReason?: string;
2884
+ TargetViolationReason?: string | undefined;
2885
2885
  }
2886
2886
  /**
2887
2887
  * @public
@@ -2923,7 +2923,7 @@ export interface StatefulEngineOptions {
2923
2923
  * </p>
2924
2924
  * @public
2925
2925
  */
2926
- RuleOrder?: RuleOrder;
2926
+ RuleOrder?: RuleOrder | undefined;
2927
2927
  /**
2928
2928
  * <p>Indicates how Network Firewall should handle traffic when a network connection breaks midstream.</p>
2929
2929
  * <ul>
@@ -2952,7 +2952,7 @@ export interface StatefulEngineOptions {
2952
2952
  * </p>
2953
2953
  * @public
2954
2954
  */
2955
- StreamExceptionPolicy?: StreamExceptionPolicy;
2955
+ StreamExceptionPolicy?: StreamExceptionPolicy | undefined;
2956
2956
  }
2957
2957
  /**
2958
2958
  * @public
@@ -2974,7 +2974,7 @@ export interface NetworkFirewallStatefulRuleGroupOverride {
2974
2974
  * <p>The action that changes the rule group from <code>DROP</code> to <code>ALERT</code>. This only applies to managed rule groups.</p>
2975
2975
  * @public
2976
2976
  */
2977
- Action?: NetworkFirewallOverrideAction;
2977
+ Action?: NetworkFirewallOverrideAction | undefined;
2978
2978
  }
2979
2979
  /**
2980
2980
  * <p>Network Firewall stateful rule group, used in a <a>NetworkFirewallPolicyDescription</a>. </p>
@@ -2985,12 +2985,12 @@ export interface StatefulRuleGroup {
2985
2985
  * <p>The name of the rule group.</p>
2986
2986
  * @public
2987
2987
  */
2988
- RuleGroupName?: string;
2988
+ RuleGroupName?: string | undefined;
2989
2989
  /**
2990
2990
  * <p>The resource ID of the rule group.</p>
2991
2991
  * @public
2992
2992
  */
2993
- ResourceId?: string;
2993
+ ResourceId?: string | undefined;
2994
2994
  /**
2995
2995
  * <p>An integer setting that indicates the order in which to run the stateful rule groups in a single
2996
2996
  * Network Firewall firewall policy. This setting only applies to firewall policies that specify the <code>STRICT_ORDER</code>
@@ -3005,12 +3005,12 @@ export interface StatefulRuleGroup {
3005
3005
  * </p>
3006
3006
  * @public
3007
3007
  */
3008
- Priority?: number;
3008
+ Priority?: number | undefined;
3009
3009
  /**
3010
3010
  * <p>The action that allows the policy owner to override the behavior of the rule group within a policy.</p>
3011
3011
  * @public
3012
3012
  */
3013
- Override?: NetworkFirewallStatefulRuleGroupOverride;
3013
+ Override?: NetworkFirewallStatefulRuleGroupOverride | undefined;
3014
3014
  }
3015
3015
  /**
3016
3016
  * <p>Network Firewall stateless rule group, used in a <a>NetworkFirewallPolicyDescription</a>. </p>
@@ -3021,17 +3021,17 @@ export interface StatelessRuleGroup {
3021
3021
  * <p>The name of the rule group.</p>
3022
3022
  * @public
3023
3023
  */
3024
- RuleGroupName?: string;
3024
+ RuleGroupName?: string | undefined;
3025
3025
  /**
3026
3026
  * <p>The resource ID of the rule group.</p>
3027
3027
  * @public
3028
3028
  */
3029
- ResourceId?: string;
3029
+ ResourceId?: string | undefined;
3030
3030
  /**
3031
3031
  * <p>The priority of the rule group. Network Firewall evaluates the stateless rule groups in a firewall policy starting from the lowest priority setting. </p>
3032
3032
  * @public
3033
3033
  */
3034
- Priority?: number;
3034
+ Priority?: number | undefined;
3035
3035
  }
3036
3036
  /**
3037
3037
  * <p>The definition of the Network Firewall firewall policy.</p>
@@ -3042,27 +3042,27 @@ export interface NetworkFirewallPolicyDescription {
3042
3042
  * <p>The stateless rule groups that are used in the Network Firewall firewall policy. </p>
3043
3043
  * @public
3044
3044
  */
3045
- StatelessRuleGroups?: StatelessRuleGroup[];
3045
+ StatelessRuleGroups?: StatelessRuleGroup[] | undefined;
3046
3046
  /**
3047
3047
  * <p>The actions to take on packets that don't match any of the stateless rule groups. </p>
3048
3048
  * @public
3049
3049
  */
3050
- StatelessDefaultActions?: string[];
3050
+ StatelessDefaultActions?: string[] | undefined;
3051
3051
  /**
3052
3052
  * <p>The actions to take on packet fragments that don't match any of the stateless rule groups. </p>
3053
3053
  * @public
3054
3054
  */
3055
- StatelessFragmentDefaultActions?: string[];
3055
+ StatelessFragmentDefaultActions?: string[] | undefined;
3056
3056
  /**
3057
3057
  * <p>Names of custom actions that are available for use in the stateless default actions settings.</p>
3058
3058
  * @public
3059
3059
  */
3060
- StatelessCustomActions?: string[];
3060
+ StatelessCustomActions?: string[] | undefined;
3061
3061
  /**
3062
3062
  * <p>The stateful rule groups that are used in the Network Firewall firewall policy. </p>
3063
3063
  * @public
3064
3064
  */
3065
- StatefulRuleGroups?: StatefulRuleGroup[];
3065
+ StatefulRuleGroups?: StatefulRuleGroup[] | undefined;
3066
3066
  /**
3067
3067
  * <p>The default actions to take on a packet that doesn't match any stateful rules. The stateful default
3068
3068
  * action is optional, and is only valid when using the strict rule order.</p>
@@ -3085,14 +3085,14 @@ export interface NetworkFirewallPolicyDescription {
3085
3085
  * </ul>
3086
3086
  * @public
3087
3087
  */
3088
- StatefulDefaultActions?: string[];
3088
+ StatefulDefaultActions?: string[] | undefined;
3089
3089
  /**
3090
3090
  * <p>Additional options governing how Network Firewall handles stateful rules. The stateful rule groups
3091
3091
  * that you use in your policy must have stateful rule options settings that are compatible with these
3092
3092
  * settings.</p>
3093
3093
  * @public
3094
3094
  */
3095
- StatefulEngineOptions?: StatefulEngineOptions;
3095
+ StatefulEngineOptions?: StatefulEngineOptions | undefined;
3096
3096
  }
3097
3097
  /**
3098
3098
  * <p>Violation detail for Network Firewall for a firewall policy that has a different
@@ -3104,17 +3104,17 @@ export interface NetworkFirewallPolicyModifiedViolation {
3104
3104
  * <p>The ID of the Network Firewall or VPC resource that's in violation.</p>
3105
3105
  * @public
3106
3106
  */
3107
- ViolationTarget?: string;
3107
+ ViolationTarget?: string | undefined;
3108
3108
  /**
3109
3109
  * <p>The policy that's currently in use in the individual account. </p>
3110
3110
  * @public
3111
3111
  */
3112
- CurrentPolicyDescription?: NetworkFirewallPolicyDescription;
3112
+ CurrentPolicyDescription?: NetworkFirewallPolicyDescription | undefined;
3113
3113
  /**
3114
3114
  * <p>The policy that should be in use in the individual account in order to be compliant. </p>
3115
3115
  * @public
3116
3116
  */
3117
- ExpectedPolicyDescription?: NetworkFirewallPolicyDescription;
3117
+ ExpectedPolicyDescription?: NetworkFirewallPolicyDescription | undefined;
3118
3118
  }
3119
3119
  /**
3120
3120
  * <p>Violation detail for an unexpected route that's present in a route table.</p>
@@ -3125,27 +3125,27 @@ export interface NetworkFirewallUnexpectedFirewallRoutesViolation {
3125
3125
  * <p>The subnet ID for the firewall.</p>
3126
3126
  * @public
3127
3127
  */
3128
- FirewallSubnetId?: string;
3128
+ FirewallSubnetId?: string | undefined;
3129
3129
  /**
3130
3130
  * <p>The routes that are in violation.</p>
3131
3131
  * @public
3132
3132
  */
3133
- ViolatingRoutes?: Route[];
3133
+ ViolatingRoutes?: Route[] | undefined;
3134
3134
  /**
3135
3135
  * <p>The ID of the route table.</p>
3136
3136
  * @public
3137
3137
  */
3138
- RouteTableId?: string;
3138
+ RouteTableId?: string | undefined;
3139
3139
  /**
3140
3140
  * <p>The endpoint of the firewall.</p>
3141
3141
  * @public
3142
3142
  */
3143
- FirewallEndpoint?: string;
3143
+ FirewallEndpoint?: string | undefined;
3144
3144
  /**
3145
3145
  * <p>Information about the VPC ID.</p>
3146
3146
  * @public
3147
3147
  */
3148
- VpcId?: string;
3148
+ VpcId?: string | undefined;
3149
3149
  }
3150
3150
  /**
3151
3151
  * <p>Violation detail for an unexpected gateway route that’s present in a route table.</p>
@@ -3156,22 +3156,22 @@ export interface NetworkFirewallUnexpectedGatewayRoutesViolation {
3156
3156
  * <p>Information about the gateway ID.</p>
3157
3157
  * @public
3158
3158
  */
3159
- GatewayId?: string;
3159
+ GatewayId?: string | undefined;
3160
3160
  /**
3161
3161
  * <p>The routes that are in violation.</p>
3162
3162
  * @public
3163
3163
  */
3164
- ViolatingRoutes?: Route[];
3164
+ ViolatingRoutes?: Route[] | undefined;
3165
3165
  /**
3166
3166
  * <p>Information about the route table.</p>
3167
3167
  * @public
3168
3168
  */
3169
- RouteTableId?: string;
3169
+ RouteTableId?: string | undefined;
3170
3170
  /**
3171
3171
  * <p>Information about the VPC ID.</p>
3172
3172
  * @public
3173
3173
  */
3174
- VpcId?: string;
3174
+ VpcId?: string | undefined;
3175
3175
  }
3176
3176
  /**
3177
3177
  * <p>Information about the <code>CreateNetworkAcl</code> action in Amazon EC2. This is a remediation option in <code>RemediationAction</code>.</p>
@@ -3182,17 +3182,17 @@ export interface CreateNetworkAclAction {
3182
3182
  * <p>Brief description of this remediation action. </p>
3183
3183
  * @public
3184
3184
  */
3185
- Description?: string;
3185
+ Description?: string | undefined;
3186
3186
  /**
3187
3187
  * <p>The VPC that's associated with the remediation action.</p>
3188
3188
  * @public
3189
3189
  */
3190
- Vpc?: ActionTarget;
3190
+ Vpc?: ActionTarget | undefined;
3191
3191
  /**
3192
3192
  * <p>Indicates whether it is possible for Firewall Manager to perform this remediation action. A false value indicates that auto remediation is disabled or Firewall Manager is unable to perform the action due to a conflict of some kind.</p>
3193
3193
  * @public
3194
3194
  */
3195
- FMSCanRemediate?: boolean;
3195
+ FMSCanRemediate?: boolean | undefined;
3196
3196
  }
3197
3197
  /**
3198
3198
  * <p>Information about the <code>CreateNetworkAclEntries</code> action in Amazon EC2. This is a remediation option in <code>RemediationAction</code>.</p>
@@ -3203,22 +3203,22 @@ export interface CreateNetworkAclEntriesAction {
3203
3203
  * <p>Brief description of this remediation action. </p>
3204
3204
  * @public
3205
3205
  */
3206
- Description?: string;
3206
+ Description?: string | undefined;
3207
3207
  /**
3208
3208
  * <p>The network ACL that's associated with the remediation action.</p>
3209
3209
  * @public
3210
3210
  */
3211
- NetworkAclId?: ActionTarget;
3211
+ NetworkAclId?: ActionTarget | undefined;
3212
3212
  /**
3213
3213
  * <p>Lists the entries that the remediation action would create.</p>
3214
3214
  * @public
3215
3215
  */
3216
- NetworkAclEntriesToBeCreated?: EntryDescription[];
3216
+ NetworkAclEntriesToBeCreated?: EntryDescription[] | undefined;
3217
3217
  /**
3218
3218
  * <p>Indicates whether it is possible for Firewall Manager to perform this remediation action. A false value indicates that auto remediation is disabled or Firewall Manager is unable to perform the action due to a conflict of some kind.</p>
3219
3219
  * @public
3220
3220
  */
3221
- FMSCanRemediate?: boolean;
3221
+ FMSCanRemediate?: boolean | undefined;
3222
3222
  }
3223
3223
  /**
3224
3224
  * <p>Information about the <code>DeleteNetworkAclEntries</code> action in Amazon EC2. This is a remediation option in <code>RemediationAction</code>. </p>
@@ -3229,22 +3229,22 @@ export interface DeleteNetworkAclEntriesAction {
3229
3229
  * <p>Brief description of this remediation action. </p>
3230
3230
  * @public
3231
3231
  */
3232
- Description?: string;
3232
+ Description?: string | undefined;
3233
3233
  /**
3234
3234
  * <p>The network ACL that's associated with the remediation action.</p>
3235
3235
  * @public
3236
3236
  */
3237
- NetworkAclId?: ActionTarget;
3237
+ NetworkAclId?: ActionTarget | undefined;
3238
3238
  /**
3239
3239
  * <p>Lists the entries that the remediation action would delete.</p>
3240
3240
  * @public
3241
3241
  */
3242
- NetworkAclEntriesToBeDeleted?: EntryDescription[];
3242
+ NetworkAclEntriesToBeDeleted?: EntryDescription[] | undefined;
3243
3243
  /**
3244
3244
  * <p>Indicates whether it is possible for Firewall Manager to perform this remediation action. A false value indicates that auto remediation is disabled or Firewall Manager is unable to perform the action due to a conflict of some kind.</p>
3245
3245
  * @public
3246
3246
  */
3247
- FMSCanRemediate?: boolean;
3247
+ FMSCanRemediate?: boolean | undefined;
3248
3248
  }
3249
3249
  /**
3250
3250
  * <p>The action of associating an EC2 resource, such as a subnet or internet gateway, with a route table.</p>
@@ -3255,7 +3255,7 @@ export interface EC2AssociateRouteTableAction {
3255
3255
  * <p>A description of the EC2 route table that is associated with the remediation action.</p>
3256
3256
  * @public
3257
3257
  */
3258
- Description?: string;
3258
+ Description?: string | undefined;
3259
3259
  /**
3260
3260
  * <p>The ID of the EC2 route table that is associated with the remediation action.</p>
3261
3261
  * @public
@@ -3265,12 +3265,12 @@ export interface EC2AssociateRouteTableAction {
3265
3265
  * <p>The ID of the subnet for the EC2 route table that is associated with the remediation action.</p>
3266
3266
  * @public
3267
3267
  */
3268
- SubnetId?: ActionTarget;
3268
+ SubnetId?: ActionTarget | undefined;
3269
3269
  /**
3270
3270
  * <p>The ID of the gateway to be used with the EC2 route table that is associated with the remediation action.</p>
3271
3271
  * @public
3272
3272
  */
3273
- GatewayId?: ActionTarget;
3273
+ GatewayId?: ActionTarget | undefined;
3274
3274
  }
3275
3275
  /**
3276
3276
  * <p>An action that copies the EC2 route table for use in remediation.</p>
@@ -3281,7 +3281,7 @@ export interface EC2CopyRouteTableAction {
3281
3281
  * <p>A description of the copied EC2 route table that is associated with the remediation action.</p>
3282
3282
  * @public
3283
3283
  */
3284
- Description?: string;
3284
+ Description?: string | undefined;
3285
3285
  /**
3286
3286
  * <p>The VPC ID of the copied EC2 route table that is associated with the remediation action.</p>
3287
3287
  * @public
@@ -3302,32 +3302,32 @@ export interface EC2CreateRouteAction {
3302
3302
  * <p>A description of CreateRoute action in Amazon EC2.</p>
3303
3303
  * @public
3304
3304
  */
3305
- Description?: string;
3305
+ Description?: string | undefined;
3306
3306
  /**
3307
3307
  * <p>Information about the IPv4 CIDR address block used for the destination match.</p>
3308
3308
  * @public
3309
3309
  */
3310
- DestinationCidrBlock?: string;
3310
+ DestinationCidrBlock?: string | undefined;
3311
3311
  /**
3312
3312
  * <p>Information about the ID of a prefix list used for the destination match.</p>
3313
3313
  * @public
3314
3314
  */
3315
- DestinationPrefixListId?: string;
3315
+ DestinationPrefixListId?: string | undefined;
3316
3316
  /**
3317
3317
  * <p>Information about the IPv6 CIDR block destination.</p>
3318
3318
  * @public
3319
3319
  */
3320
- DestinationIpv6CidrBlock?: string;
3320
+ DestinationIpv6CidrBlock?: string | undefined;
3321
3321
  /**
3322
3322
  * <p>Information about the ID of a VPC endpoint. Supported for Gateway Load Balancer endpoints only.</p>
3323
3323
  * @public
3324
3324
  */
3325
- VpcEndpointId?: ActionTarget;
3325
+ VpcEndpointId?: ActionTarget | undefined;
3326
3326
  /**
3327
3327
  * <p>Information about the ID of an internet gateway or virtual private gateway attached to your VPC.</p>
3328
3328
  * @public
3329
3329
  */
3330
- GatewayId?: ActionTarget;
3330
+ GatewayId?: ActionTarget | undefined;
3331
3331
  /**
3332
3332
  * <p>Information about the ID of the route table for the route.</p>
3333
3333
  * @public
@@ -3343,7 +3343,7 @@ export interface EC2CreateRouteTableAction {
3343
3343
  * <p>A description of the CreateRouteTable action.</p>
3344
3344
  * @public
3345
3345
  */
3346
- Description?: string;
3346
+ Description?: string | undefined;
3347
3347
  /**
3348
3348
  * <p>Information about the ID of a VPC.</p>
3349
3349
  * @public
@@ -3359,22 +3359,22 @@ export interface EC2DeleteRouteAction {
3359
3359
  * <p>A description of the DeleteRoute action.</p>
3360
3360
  * @public
3361
3361
  */
3362
- Description?: string;
3362
+ Description?: string | undefined;
3363
3363
  /**
3364
3364
  * <p>Information about the IPv4 CIDR range for the route. The value you specify must match the CIDR for the route exactly.</p>
3365
3365
  * @public
3366
3366
  */
3367
- DestinationCidrBlock?: string;
3367
+ DestinationCidrBlock?: string | undefined;
3368
3368
  /**
3369
3369
  * <p>Information about the ID of the prefix list for the route.</p>
3370
3370
  * @public
3371
3371
  */
3372
- DestinationPrefixListId?: string;
3372
+ DestinationPrefixListId?: string | undefined;
3373
3373
  /**
3374
3374
  * <p>Information about the IPv6 CIDR range for the route. The value you specify must match the CIDR for the route exactly.</p>
3375
3375
  * @public
3376
3376
  */
3377
- DestinationIpv6CidrBlock?: string;
3377
+ DestinationIpv6CidrBlock?: string | undefined;
3378
3378
  /**
3379
3379
  * <p>Information about the ID of the route table.</p>
3380
3380
  * @public
@@ -3390,27 +3390,27 @@ export interface EC2ReplaceRouteAction {
3390
3390
  * <p>A description of the ReplaceRoute action in Amazon EC2.</p>
3391
3391
  * @public
3392
3392
  */
3393
- Description?: string;
3393
+ Description?: string | undefined;
3394
3394
  /**
3395
3395
  * <p>Information about the IPv4 CIDR address block used for the destination match. The value that you provide must match the CIDR of an existing route in the table.</p>
3396
3396
  * @public
3397
3397
  */
3398
- DestinationCidrBlock?: string;
3398
+ DestinationCidrBlock?: string | undefined;
3399
3399
  /**
3400
3400
  * <p>Information about the ID of the prefix list for the route.</p>
3401
3401
  * @public
3402
3402
  */
3403
- DestinationPrefixListId?: string;
3403
+ DestinationPrefixListId?: string | undefined;
3404
3404
  /**
3405
3405
  * <p>Information about the IPv6 CIDR address block used for the destination match. The value that you provide must match the CIDR of an existing route in the table.</p>
3406
3406
  * @public
3407
3407
  */
3408
- DestinationIpv6CidrBlock?: string;
3408
+ DestinationIpv6CidrBlock?: string | undefined;
3409
3409
  /**
3410
3410
  * <p>Information about the ID of an internet gateway or virtual private gateway.</p>
3411
3411
  * @public
3412
3412
  */
3413
- GatewayId?: ActionTarget;
3413
+ GatewayId?: ActionTarget | undefined;
3414
3414
  /**
3415
3415
  * <p>Information about the ID of the route table.</p>
3416
3416
  * @public
@@ -3426,7 +3426,7 @@ export interface EC2ReplaceRouteTableAssociationAction {
3426
3426
  * <p>A description of the ReplaceRouteTableAssociation action in Amazon EC2.</p>
3427
3427
  * @public
3428
3428
  */
3429
- Description?: string;
3429
+ Description?: string | undefined;
3430
3430
  /**
3431
3431
  * <p>Information about the association ID.</p>
3432
3432
  * @public
@@ -3450,13 +3450,13 @@ export interface FMSPolicyUpdateFirewallCreationConfigAction {
3450
3450
  * <p>Describes the remedial action.</p>
3451
3451
  * @public
3452
3452
  */
3453
- Description?: string;
3453
+ Description?: string | undefined;
3454
3454
  /**
3455
3455
  * <p>A <code>FirewallCreationConfig</code> that you can copy into your current policy's
3456
3456
  * <a href="https://docs.aws.amazon.com/fms/2018-01-01/APIReference/API_SecurityServicePolicyData.html">SecurityServiceData</a> in order to remedy scope violations.</p>
3457
3457
  * @public
3458
3458
  */
3459
- FirewallCreationConfig?: string;
3459
+ FirewallCreationConfig?: string | undefined;
3460
3460
  }
3461
3461
  /**
3462
3462
  * <p>Information about the <code>ReplaceNetworkAclAssociation</code> action in Amazon EC2. This is a remediation option in <code>RemediationAction</code>.</p>
@@ -3467,22 +3467,22 @@ export interface ReplaceNetworkAclAssociationAction {
3467
3467
  * <p>Brief description of this remediation action. </p>
3468
3468
  * @public
3469
3469
  */
3470
- Description?: string;
3470
+ Description?: string | undefined;
3471
3471
  /**
3472
3472
  * <p>Describes a remediation action target.</p>
3473
3473
  * @public
3474
3474
  */
3475
- AssociationId?: ActionTarget;
3475
+ AssociationId?: ActionTarget | undefined;
3476
3476
  /**
3477
3477
  * <p>The network ACL that's associated with the remediation action.</p>
3478
3478
  * @public
3479
3479
  */
3480
- NetworkAclId?: ActionTarget;
3480
+ NetworkAclId?: ActionTarget | undefined;
3481
3481
  /**
3482
3482
  * <p>Indicates whether it is possible for Firewall Manager to perform this remediation action. A false value indicates that auto remediation is disabled or Firewall Manager is unable to perform the action due to a conflict of some kind.</p>
3483
3483
  * @public
3484
3484
  */
3485
- FMSCanRemediate?: boolean;
3485
+ FMSCanRemediate?: boolean | undefined;
3486
3486
  }
3487
3487
  /**
3488
3488
  * <p>Information about an individual action you can take to remediate a violation.</p>
@@ -3493,67 +3493,67 @@ export interface RemediationAction {
3493
3493
  * <p>A description of a remediation action.</p>
3494
3494
  * @public
3495
3495
  */
3496
- Description?: string;
3496
+ Description?: string | undefined;
3497
3497
  /**
3498
3498
  * <p>Information about the CreateRoute action in the Amazon EC2 API.</p>
3499
3499
  * @public
3500
3500
  */
3501
- EC2CreateRouteAction?: EC2CreateRouteAction;
3501
+ EC2CreateRouteAction?: EC2CreateRouteAction | undefined;
3502
3502
  /**
3503
3503
  * <p>Information about the ReplaceRoute action in the Amazon EC2 API.</p>
3504
3504
  * @public
3505
3505
  */
3506
- EC2ReplaceRouteAction?: EC2ReplaceRouteAction;
3506
+ EC2ReplaceRouteAction?: EC2ReplaceRouteAction | undefined;
3507
3507
  /**
3508
3508
  * <p>Information about the DeleteRoute action in the Amazon EC2 API.</p>
3509
3509
  * @public
3510
3510
  */
3511
- EC2DeleteRouteAction?: EC2DeleteRouteAction;
3511
+ EC2DeleteRouteAction?: EC2DeleteRouteAction | undefined;
3512
3512
  /**
3513
3513
  * <p>Information about the CopyRouteTable action in the Amazon EC2 API.</p>
3514
3514
  * @public
3515
3515
  */
3516
- EC2CopyRouteTableAction?: EC2CopyRouteTableAction;
3516
+ EC2CopyRouteTableAction?: EC2CopyRouteTableAction | undefined;
3517
3517
  /**
3518
3518
  * <p>Information about the ReplaceRouteTableAssociation action in the Amazon EC2 API.</p>
3519
3519
  * @public
3520
3520
  */
3521
- EC2ReplaceRouteTableAssociationAction?: EC2ReplaceRouteTableAssociationAction;
3521
+ EC2ReplaceRouteTableAssociationAction?: EC2ReplaceRouteTableAssociationAction | undefined;
3522
3522
  /**
3523
3523
  * <p>Information about the AssociateRouteTable action in the Amazon EC2 API.</p>
3524
3524
  * @public
3525
3525
  */
3526
- EC2AssociateRouteTableAction?: EC2AssociateRouteTableAction;
3526
+ EC2AssociateRouteTableAction?: EC2AssociateRouteTableAction | undefined;
3527
3527
  /**
3528
3528
  * <p>Information about the CreateRouteTable action in the Amazon EC2 API.</p>
3529
3529
  * @public
3530
3530
  */
3531
- EC2CreateRouteTableAction?: EC2CreateRouteTableAction;
3531
+ EC2CreateRouteTableAction?: EC2CreateRouteTableAction | undefined;
3532
3532
  /**
3533
3533
  * <p>The remedial action to take when updating a firewall configuration.</p>
3534
3534
  * @public
3535
3535
  */
3536
- FMSPolicyUpdateFirewallCreationConfigAction?: FMSPolicyUpdateFirewallCreationConfigAction;
3536
+ FMSPolicyUpdateFirewallCreationConfigAction?: FMSPolicyUpdateFirewallCreationConfigAction | undefined;
3537
3537
  /**
3538
3538
  * <p>Information about the <code>CreateNetworkAcl</code> action in Amazon EC2.</p>
3539
3539
  * @public
3540
3540
  */
3541
- CreateNetworkAclAction?: CreateNetworkAclAction;
3541
+ CreateNetworkAclAction?: CreateNetworkAclAction | undefined;
3542
3542
  /**
3543
3543
  * <p>Information about the <code>ReplaceNetworkAclAssociation</code> action in Amazon EC2. </p>
3544
3544
  * @public
3545
3545
  */
3546
- ReplaceNetworkAclAssociationAction?: ReplaceNetworkAclAssociationAction;
3546
+ ReplaceNetworkAclAssociationAction?: ReplaceNetworkAclAssociationAction | undefined;
3547
3547
  /**
3548
3548
  * <p>Information about the <code>CreateNetworkAclEntries</code> action in Amazon EC2.</p>
3549
3549
  * @public
3550
3550
  */
3551
- CreateNetworkAclEntriesAction?: CreateNetworkAclEntriesAction;
3551
+ CreateNetworkAclEntriesAction?: CreateNetworkAclEntriesAction | undefined;
3552
3552
  /**
3553
3553
  * <p>Information about the <code>DeleteNetworkAclEntries</code> action in Amazon EC2.</p>
3554
3554
  * @public
3555
3555
  */
3556
- DeleteNetworkAclEntriesAction?: DeleteNetworkAclEntriesAction;
3556
+ DeleteNetworkAclEntriesAction?: DeleteNetworkAclEntriesAction | undefined;
3557
3557
  }
3558
3558
  /**
3559
3559
  * <p>An ordered list of actions you can take to remediate a violation.</p>
@@ -3564,12 +3564,12 @@ export interface RemediationActionWithOrder {
3564
3564
  * <p>Information about an action you can take to remediate a violation.</p>
3565
3565
  * @public
3566
3566
  */
3567
- RemediationAction?: RemediationAction;
3567
+ RemediationAction?: RemediationAction | undefined;
3568
3568
  /**
3569
3569
  * <p>The order of the remediation actions in the list.</p>
3570
3570
  * @public
3571
3571
  */
3572
- Order?: number;
3572
+ Order?: number | undefined;
3573
3573
  }
3574
3574
  /**
3575
3575
  * <p>A list of remediation actions.</p>
@@ -3580,7 +3580,7 @@ export interface PossibleRemediationAction {
3580
3580
  * <p>A description of the list of remediation actions.</p>
3581
3581
  * @public
3582
3582
  */
3583
- Description?: string;
3583
+ Description?: string | undefined;
3584
3584
  /**
3585
3585
  * <p>The ordered list of remediation actions.</p>
3586
3586
  * @public
@@ -3590,7 +3590,7 @@ export interface PossibleRemediationAction {
3590
3590
  * <p>Information about whether an action is taken by default.</p>
3591
3591
  * @public
3592
3592
  */
3593
- IsDefaultAction?: boolean;
3593
+ IsDefaultAction?: boolean | undefined;
3594
3594
  }
3595
3595
  /**
3596
3596
  * <p>A list of possible remediation action lists. Each individual possible remediation action is a list of individual remediation actions.</p>
@@ -3601,12 +3601,12 @@ export interface PossibleRemediationActions {
3601
3601
  * <p>A description of the possible remediation actions list.</p>
3602
3602
  * @public
3603
3603
  */
3604
- Description?: string;
3604
+ Description?: string | undefined;
3605
3605
  /**
3606
3606
  * <p>Information about the actions.</p>
3607
3607
  * @public
3608
3608
  */
3609
- Actions?: PossibleRemediationAction[];
3609
+ Actions?: PossibleRemediationAction[] | undefined;
3610
3610
  }
3611
3611
  /**
3612
3612
  * <p>Contains details about the route endpoint that violates the policy scope.</p>
@@ -3617,62 +3617,62 @@ export interface RouteHasOutOfScopeEndpointViolation {
3617
3617
  * <p>The ID of the subnet associated with the route that violates the policy scope.</p>
3618
3618
  * @public
3619
3619
  */
3620
- SubnetId?: string;
3620
+ SubnetId?: string | undefined;
3621
3621
  /**
3622
3622
  * <p>The VPC ID of the route that violates the policy scope.</p>
3623
3623
  * @public
3624
3624
  */
3625
- VpcId?: string;
3625
+ VpcId?: string | undefined;
3626
3626
  /**
3627
3627
  * <p>The ID of the route table.</p>
3628
3628
  * @public
3629
3629
  */
3630
- RouteTableId?: string;
3630
+ RouteTableId?: string | undefined;
3631
3631
  /**
3632
3632
  * <p>The list of routes that violate the route table.</p>
3633
3633
  * @public
3634
3634
  */
3635
- ViolatingRoutes?: Route[];
3635
+ ViolatingRoutes?: Route[] | undefined;
3636
3636
  /**
3637
3637
  * <p>The subnet's Availability Zone.</p>
3638
3638
  * @public
3639
3639
  */
3640
- SubnetAvailabilityZone?: string;
3640
+ SubnetAvailabilityZone?: string | undefined;
3641
3641
  /**
3642
3642
  * <p>The ID of the subnet's Availability Zone.</p>
3643
3643
  * @public
3644
3644
  */
3645
- SubnetAvailabilityZoneId?: string;
3645
+ SubnetAvailabilityZoneId?: string | undefined;
3646
3646
  /**
3647
3647
  * <p>The route table associated with the current firewall subnet.</p>
3648
3648
  * @public
3649
3649
  */
3650
- CurrentFirewallSubnetRouteTable?: string;
3650
+ CurrentFirewallSubnetRouteTable?: string | undefined;
3651
3651
  /**
3652
3652
  * <p>The ID of the firewall subnet.</p>
3653
3653
  * @public
3654
3654
  */
3655
- FirewallSubnetId?: string;
3655
+ FirewallSubnetId?: string | undefined;
3656
3656
  /**
3657
3657
  * <p>The list of firewall subnet routes.</p>
3658
3658
  * @public
3659
3659
  */
3660
- FirewallSubnetRoutes?: Route[];
3660
+ FirewallSubnetRoutes?: Route[] | undefined;
3661
3661
  /**
3662
3662
  * <p>The ID of the Internet Gateway.</p>
3663
3663
  * @public
3664
3664
  */
3665
- InternetGatewayId?: string;
3665
+ InternetGatewayId?: string | undefined;
3666
3666
  /**
3667
3667
  * <p>The current route table associated with the Internet Gateway.</p>
3668
3668
  * @public
3669
3669
  */
3670
- CurrentInternetGatewayRouteTable?: string;
3670
+ CurrentInternetGatewayRouteTable?: string | undefined;
3671
3671
  /**
3672
3672
  * <p>The routes in the route table associated with the Internet Gateway.</p>
3673
3673
  * @public
3674
3674
  */
3675
- InternetGatewayRoutes?: Route[];
3675
+ InternetGatewayRoutes?: Route[] | undefined;
3676
3676
  }
3677
3677
  /**
3678
3678
  * <p>The violation details for a third-party firewall that's not associated with an Firewall Manager managed route table.</p>
@@ -3683,27 +3683,27 @@ export interface ThirdPartyFirewallMissingExpectedRouteTableViolation {
3683
3683
  * <p>The ID of the third-party firewall or VPC resource that's causing the violation.</p>
3684
3684
  * @public
3685
3685
  */
3686
- ViolationTarget?: string;
3686
+ ViolationTarget?: string | undefined;
3687
3687
  /**
3688
3688
  * <p>The resource ID of the VPC associated with a fireawll subnet that's causing the violation.</p>
3689
3689
  * @public
3690
3690
  */
3691
- VPC?: string;
3691
+ VPC?: string | undefined;
3692
3692
  /**
3693
3693
  * <p>The Availability Zone of the firewall subnet that's causing the violation.</p>
3694
3694
  * @public
3695
3695
  */
3696
- AvailabilityZone?: string;
3696
+ AvailabilityZone?: string | undefined;
3697
3697
  /**
3698
3698
  * <p>The resource ID of the current route table that's associated with the subnet, if one is available.</p>
3699
3699
  * @public
3700
3700
  */
3701
- CurrentRouteTable?: string;
3701
+ CurrentRouteTable?: string | undefined;
3702
3702
  /**
3703
3703
  * <p>The resource ID of the route table that should be associated with the subnet.</p>
3704
3704
  * @public
3705
3705
  */
3706
- ExpectedRouteTable?: string;
3706
+ ExpectedRouteTable?: string | undefined;
3707
3707
  }
3708
3708
  /**
3709
3709
  * <p>The violation details about a third-party firewall's subnet that doesn't have a Firewall Manager managed firewall in its VPC.</p>
@@ -3714,22 +3714,22 @@ export interface ThirdPartyFirewallMissingFirewallViolation {
3714
3714
  * <p>The ID of the third-party firewall that's causing the violation.</p>
3715
3715
  * @public
3716
3716
  */
3717
- ViolationTarget?: string;
3717
+ ViolationTarget?: string | undefined;
3718
3718
  /**
3719
3719
  * <p>The resource ID of the VPC associated with a third-party firewall.</p>
3720
3720
  * @public
3721
3721
  */
3722
- VPC?: string;
3722
+ VPC?: string | undefined;
3723
3723
  /**
3724
3724
  * <p>The Availability Zone of the third-party firewall that's causing the violation.</p>
3725
3725
  * @public
3726
3726
  */
3727
- AvailabilityZone?: string;
3727
+ AvailabilityZone?: string | undefined;
3728
3728
  /**
3729
3729
  * <p>The reason the resource is causing this violation, if a reason is available.</p>
3730
3730
  * @public
3731
3731
  */
3732
- TargetViolationReason?: string;
3732
+ TargetViolationReason?: string | undefined;
3733
3733
  }
3734
3734
  /**
3735
3735
  * <p>The violation details for a third-party firewall for an Availability Zone that's missing the Firewall Manager managed subnet.</p>
@@ -3740,22 +3740,22 @@ export interface ThirdPartyFirewallMissingSubnetViolation {
3740
3740
  * <p>The ID of the third-party firewall or VPC resource that's causing the violation.</p>
3741
3741
  * @public
3742
3742
  */
3743
- ViolationTarget?: string;
3743
+ ViolationTarget?: string | undefined;
3744
3744
  /**
3745
3745
  * <p>The resource ID of the VPC associated with a subnet that's causing the violation.</p>
3746
3746
  * @public
3747
3747
  */
3748
- VPC?: string;
3748
+ VPC?: string | undefined;
3749
3749
  /**
3750
3750
  * <p>The Availability Zone of a subnet that's causing the violation.</p>
3751
3751
  * @public
3752
3752
  */
3753
- AvailabilityZone?: string;
3753
+ AvailabilityZone?: string | undefined;
3754
3754
  /**
3755
3755
  * <p>The reason the resource is causing the violation, if a reason is available.</p>
3756
3756
  * @public
3757
3757
  */
3758
- TargetViolationReason?: string;
3758
+ TargetViolationReason?: string | undefined;
3759
3759
  }
3760
3760
  /**
3761
3761
  * <p>The violation details for a web ACL whose configuration is incompatible with the Firewall Manager policy. </p>
@@ -3766,12 +3766,12 @@ export interface WebACLHasIncompatibleConfigurationViolation {
3766
3766
  * <p>The Amazon Resource Name (ARN) of the web ACL. </p>
3767
3767
  * @public
3768
3768
  */
3769
- WebACLArn?: string;
3769
+ WebACLArn?: string | undefined;
3770
3770
  /**
3771
3771
  * <p>Information about the problems that Firewall Manager encountered with the web ACL configuration. </p>
3772
3772
  * @public
3773
3773
  */
3774
- Description?: string;
3774
+ Description?: string | undefined;
3775
3775
  }
3776
3776
  /**
3777
3777
  * <p>The violation details for a web ACL that's associated with at least one resource that's out of scope of the Firewall Manager policy. </p>
@@ -3782,12 +3782,12 @@ export interface WebACLHasOutOfScopeResourcesViolation {
3782
3782
  * <p>The Amazon Resource Name (ARN) of the web ACL. </p>
3783
3783
  * @public
3784
3784
  */
3785
- WebACLArn?: string;
3785
+ WebACLArn?: string | undefined;
3786
3786
  /**
3787
3787
  * <p>An array of Amazon Resource Name (ARN) for the resources that are out of scope of the policy and are associated with the web ACL. </p>
3788
3788
  * @public
3789
3789
  */
3790
- OutOfScopeResourceList?: string[];
3790
+ OutOfScopeResourceList?: string[] | undefined;
3791
3791
  }
3792
3792
  /**
3793
3793
  * <p>Violation detail based on resource type.</p>
@@ -3798,35 +3798,35 @@ export interface ResourceViolation {
3798
3798
  * <p>Violation detail for security groups.</p>
3799
3799
  * @public
3800
3800
  */
3801
- AwsVPCSecurityGroupViolation?: AwsVPCSecurityGroupViolation;
3801
+ AwsVPCSecurityGroupViolation?: AwsVPCSecurityGroupViolation | undefined;
3802
3802
  /**
3803
3803
  * <p>Violation detail for a network interface.</p>
3804
3804
  * @public
3805
3805
  */
3806
- AwsEc2NetworkInterfaceViolation?: AwsEc2NetworkInterfaceViolation;
3806
+ AwsEc2NetworkInterfaceViolation?: AwsEc2NetworkInterfaceViolation | undefined;
3807
3807
  /**
3808
3808
  * <p>Violation detail for an EC2 instance.</p>
3809
3809
  * @public
3810
3810
  */
3811
- AwsEc2InstanceViolation?: AwsEc2InstanceViolation;
3811
+ AwsEc2InstanceViolation?: AwsEc2InstanceViolation | undefined;
3812
3812
  /**
3813
3813
  * <p>Violation detail for an Network Firewall policy that indicates that a subnet has no Firewall Manager
3814
3814
  * managed firewall in its VPC. </p>
3815
3815
  * @public
3816
3816
  */
3817
- NetworkFirewallMissingFirewallViolation?: NetworkFirewallMissingFirewallViolation;
3817
+ NetworkFirewallMissingFirewallViolation?: NetworkFirewallMissingFirewallViolation | undefined;
3818
3818
  /**
3819
3819
  * <p>Violation detail for an Network Firewall policy that indicates that an Availability Zone is
3820
3820
  * missing the expected Firewall Manager managed subnet.</p>
3821
3821
  * @public
3822
3822
  */
3823
- NetworkFirewallMissingSubnetViolation?: NetworkFirewallMissingSubnetViolation;
3823
+ NetworkFirewallMissingSubnetViolation?: NetworkFirewallMissingSubnetViolation | undefined;
3824
3824
  /**
3825
3825
  * <p>Violation detail for an Network Firewall policy that indicates that a subnet
3826
3826
  * is not associated with the expected Firewall Manager managed route table. </p>
3827
3827
  * @public
3828
3828
  */
3829
- NetworkFirewallMissingExpectedRTViolation?: NetworkFirewallMissingExpectedRTViolation;
3829
+ NetworkFirewallMissingExpectedRTViolation?: NetworkFirewallMissingExpectedRTViolation | undefined;
3830
3830
  /**
3831
3831
  * <p>Violation detail for an Network Firewall policy that indicates that a firewall policy
3832
3832
  * in an individual account has been modified in a way that makes it noncompliant.
@@ -3834,104 +3834,104 @@ export interface ResourceViolation {
3834
3834
  * changed the priority of a stateless rule group, or changed a policy default action.</p>
3835
3835
  * @public
3836
3836
  */
3837
- NetworkFirewallPolicyModifiedViolation?: NetworkFirewallPolicyModifiedViolation;
3837
+ NetworkFirewallPolicyModifiedViolation?: NetworkFirewallPolicyModifiedViolation | undefined;
3838
3838
  /**
3839
3839
  * <p>Violation detail for the subnet for which internet traffic hasn't been inspected.</p>
3840
3840
  * @public
3841
3841
  */
3842
- NetworkFirewallInternetTrafficNotInspectedViolation?: NetworkFirewallInternetTrafficNotInspectedViolation;
3842
+ NetworkFirewallInternetTrafficNotInspectedViolation?: NetworkFirewallInternetTrafficNotInspectedViolation | undefined;
3843
3843
  /**
3844
3844
  * <p>The route configuration is invalid.</p>
3845
3845
  * @public
3846
3846
  */
3847
- NetworkFirewallInvalidRouteConfigurationViolation?: NetworkFirewallInvalidRouteConfigurationViolation;
3847
+ NetworkFirewallInvalidRouteConfigurationViolation?: NetworkFirewallInvalidRouteConfigurationViolation | undefined;
3848
3848
  /**
3849
3849
  * <p>Violation detail for an internet gateway route with an inactive state in the customer subnet route table or Network Firewall subnet route table.</p>
3850
3850
  * @public
3851
3851
  */
3852
- NetworkFirewallBlackHoleRouteDetectedViolation?: NetworkFirewallBlackHoleRouteDetectedViolation;
3852
+ NetworkFirewallBlackHoleRouteDetectedViolation?: NetworkFirewallBlackHoleRouteDetectedViolation | undefined;
3853
3853
  /**
3854
3854
  * <p>There's an unexpected firewall route.</p>
3855
3855
  * @public
3856
3856
  */
3857
- NetworkFirewallUnexpectedFirewallRoutesViolation?: NetworkFirewallUnexpectedFirewallRoutesViolation;
3857
+ NetworkFirewallUnexpectedFirewallRoutesViolation?: NetworkFirewallUnexpectedFirewallRoutesViolation | undefined;
3858
3858
  /**
3859
3859
  * <p>There's an unexpected gateway route.</p>
3860
3860
  * @public
3861
3861
  */
3862
- NetworkFirewallUnexpectedGatewayRoutesViolation?: NetworkFirewallUnexpectedGatewayRoutesViolation;
3862
+ NetworkFirewallUnexpectedGatewayRoutesViolation?: NetworkFirewallUnexpectedGatewayRoutesViolation | undefined;
3863
3863
  /**
3864
3864
  * <p>Expected routes are missing from Network Firewall.</p>
3865
3865
  * @public
3866
3866
  */
3867
- NetworkFirewallMissingExpectedRoutesViolation?: NetworkFirewallMissingExpectedRoutesViolation;
3867
+ NetworkFirewallMissingExpectedRoutesViolation?: NetworkFirewallMissingExpectedRoutesViolation | undefined;
3868
3868
  /**
3869
3869
  * <p>Violation detail for a DNS Firewall policy that indicates that a rule group that Firewall Manager
3870
3870
  * tried to associate with a VPC has the same priority as a rule group that's already associated. </p>
3871
3871
  * @public
3872
3872
  */
3873
- DnsRuleGroupPriorityConflictViolation?: DnsRuleGroupPriorityConflictViolation;
3873
+ DnsRuleGroupPriorityConflictViolation?: DnsRuleGroupPriorityConflictViolation | undefined;
3874
3874
  /**
3875
3875
  * <p>Violation detail for a DNS Firewall policy that indicates that a rule group that Firewall Manager
3876
3876
  * tried to associate with a VPC is already associated with the VPC and can't be associated again. </p>
3877
3877
  * @public
3878
3878
  */
3879
- DnsDuplicateRuleGroupViolation?: DnsDuplicateRuleGroupViolation;
3879
+ DnsDuplicateRuleGroupViolation?: DnsDuplicateRuleGroupViolation | undefined;
3880
3880
  /**
3881
3881
  * <p>Violation detail for a DNS Firewall policy that indicates that the VPC reached the limit for associated DNS Firewall rule groups. Firewall Manager tried to associate another rule group with the VPC and failed. </p>
3882
3882
  * @public
3883
3883
  */
3884
- DnsRuleGroupLimitExceededViolation?: DnsRuleGroupLimitExceededViolation;
3884
+ DnsRuleGroupLimitExceededViolation?: DnsRuleGroupLimitExceededViolation | undefined;
3885
3885
  /**
3886
3886
  * <p>Contains details about the firewall subnet that violates the policy scope.</p>
3887
3887
  * @public
3888
3888
  */
3889
- FirewallSubnetIsOutOfScopeViolation?: FirewallSubnetIsOutOfScopeViolation;
3889
+ FirewallSubnetIsOutOfScopeViolation?: FirewallSubnetIsOutOfScopeViolation | undefined;
3890
3890
  /**
3891
3891
  * <p>Contains details about the route endpoint that violates the policy scope.</p>
3892
3892
  * @public
3893
3893
  */
3894
- RouteHasOutOfScopeEndpointViolation?: RouteHasOutOfScopeEndpointViolation;
3894
+ RouteHasOutOfScopeEndpointViolation?: RouteHasOutOfScopeEndpointViolation | undefined;
3895
3895
  /**
3896
3896
  * <p>The violation details for a third-party firewall that's been deleted.</p>
3897
3897
  * @public
3898
3898
  */
3899
- ThirdPartyFirewallMissingFirewallViolation?: ThirdPartyFirewallMissingFirewallViolation;
3899
+ ThirdPartyFirewallMissingFirewallViolation?: ThirdPartyFirewallMissingFirewallViolation | undefined;
3900
3900
  /**
3901
3901
  * <p>The violation details for a third-party firewall's subnet that's been deleted.</p>
3902
3902
  * @public
3903
3903
  */
3904
- ThirdPartyFirewallMissingSubnetViolation?: ThirdPartyFirewallMissingSubnetViolation;
3904
+ ThirdPartyFirewallMissingSubnetViolation?: ThirdPartyFirewallMissingSubnetViolation | undefined;
3905
3905
  /**
3906
3906
  * <p>The violation details for a third-party firewall that has the Firewall Manager managed route table that was associated with the third-party firewall has been deleted.</p>
3907
3907
  * @public
3908
3908
  */
3909
- ThirdPartyFirewallMissingExpectedRouteTableViolation?: ThirdPartyFirewallMissingExpectedRouteTableViolation;
3909
+ ThirdPartyFirewallMissingExpectedRouteTableViolation?: ThirdPartyFirewallMissingExpectedRouteTableViolation | undefined;
3910
3910
  /**
3911
3911
  * <p>The violation details for a third-party firewall's VPC endpoint subnet that was deleted.</p>
3912
3912
  * @public
3913
3913
  */
3914
- FirewallSubnetMissingVPCEndpointViolation?: FirewallSubnetMissingVPCEndpointViolation;
3914
+ FirewallSubnetMissingVPCEndpointViolation?: FirewallSubnetMissingVPCEndpointViolation | undefined;
3915
3915
  /**
3916
3916
  * <p>Violation detail for the entries in a network ACL resource.</p>
3917
3917
  * @public
3918
3918
  */
3919
- InvalidNetworkAclEntriesViolation?: InvalidNetworkAclEntriesViolation;
3919
+ InvalidNetworkAclEntriesViolation?: InvalidNetworkAclEntriesViolation | undefined;
3920
3920
  /**
3921
3921
  * <p>A list of possible remediation action lists. Each individual possible remediation action is a list of individual remediation actions.</p>
3922
3922
  * @public
3923
3923
  */
3924
- PossibleRemediationActions?: PossibleRemediationActions;
3924
+ PossibleRemediationActions?: PossibleRemediationActions | undefined;
3925
3925
  /**
3926
3926
  * <p>The violation details for a web ACL whose configuration is incompatible with the Firewall Manager policy. </p>
3927
3927
  * @public
3928
3928
  */
3929
- WebACLHasIncompatibleConfigurationViolation?: WebACLHasIncompatibleConfigurationViolation;
3929
+ WebACLHasIncompatibleConfigurationViolation?: WebACLHasIncompatibleConfigurationViolation | undefined;
3930
3930
  /**
3931
3931
  * <p>The violation details for a web ACL that's associated with at least one resource that's out of scope of the Firewall Manager policy. </p>
3932
3932
  * @public
3933
3933
  */
3934
- WebACLHasOutOfScopeResourcesViolation?: WebACLHasOutOfScopeResourcesViolation;
3934
+ WebACLHasOutOfScopeResourcesViolation?: WebACLHasOutOfScopeResourcesViolation | undefined;
3935
3935
  }
3936
3936
  /**
3937
3937
  * <p>Violations for a resource based on the specified Firewall Manager policy and Amazon Web Services account.</p>
@@ -3967,12 +3967,12 @@ export interface ViolationDetail {
3967
3967
  * <p>The <code>ResourceTag</code> objects associated with the resource.</p>
3968
3968
  * @public
3969
3969
  */
3970
- ResourceTags?: Tag[];
3970
+ ResourceTags?: Tag[] | undefined;
3971
3971
  /**
3972
3972
  * <p>Brief description for the requested resource.</p>
3973
3973
  * @public
3974
3974
  */
3975
- ResourceDescription?: string;
3975
+ ResourceDescription?: string | undefined;
3976
3976
  }
3977
3977
  /**
3978
3978
  * @public
@@ -3982,7 +3982,7 @@ export interface GetViolationDetailsResponse {
3982
3982
  * <p>Violation detail for a resource.</p>
3983
3983
  * @public
3984
3984
  */
3985
- ViolationDetail?: ViolationDetail;
3985
+ ViolationDetail?: ViolationDetail | undefined;
3986
3986
  }
3987
3987
  /**
3988
3988
  * @public
@@ -3994,14 +3994,14 @@ export interface ListAdminAccountsForOrganizationRequest {
3994
3994
  * value in the response. To retrieve the next batch of objects, use the token returned from the prior request in your next request.</p>
3995
3995
  * @public
3996
3996
  */
3997
- NextToken?: string;
3997
+ NextToken?: string | undefined;
3998
3998
  /**
3999
3999
  * <p>The maximum number of objects that you want Firewall Manager to return for this request. If more
4000
4000
  * objects are available, in the response, Firewall Manager provides a
4001
4001
  * <code>NextToken</code> value that you can use in a subsequent call to get the next batch of objects.</p>
4002
4002
  * @public
4003
4003
  */
4004
- MaxResults?: number;
4004
+ MaxResults?: number | undefined;
4005
4005
  }
4006
4006
  /**
4007
4007
  * @public
@@ -4011,14 +4011,14 @@ export interface ListAdminAccountsForOrganizationResponse {
4011
4011
  * <p>A list of Firewall Manager administrator accounts within the organization that were onboarded as administrators by <a>AssociateAdminAccount</a> or <a>PutAdminAccount</a>.</p>
4012
4012
  * @public
4013
4013
  */
4014
- AdminAccounts?: AdminAccountSummary[];
4014
+ AdminAccounts?: AdminAccountSummary[] | undefined;
4015
4015
  /**
4016
4016
  * <p>When you request a list of objects with a <code>MaxResults</code> setting, if the number of objects that are still available
4017
4017
  * for retrieval exceeds the maximum you requested, Firewall Manager returns a <code>NextToken</code>
4018
4018
  * value in the response. To retrieve the next batch of objects, use the token returned from the prior request in your next request.</p>
4019
4019
  * @public
4020
4020
  */
4021
- NextToken?: string;
4021
+ NextToken?: string | undefined;
4022
4022
  }
4023
4023
  /**
4024
4024
  * @public
@@ -4030,14 +4030,14 @@ export interface ListAdminsManagingAccountRequest {
4030
4030
  * value in the response. To retrieve the next batch of objects, use the token returned from the prior request in your next request.</p>
4031
4031
  * @public
4032
4032
  */
4033
- NextToken?: string;
4033
+ NextToken?: string | undefined;
4034
4034
  /**
4035
4035
  * <p>The maximum number of objects that you want Firewall Manager to return for this request. If more
4036
4036
  * objects are available, in the response, Firewall Manager provides a
4037
4037
  * <code>NextToken</code> value that you can use in a subsequent call to get the next batch of objects.</p>
4038
4038
  * @public
4039
4039
  */
4040
- MaxResults?: number;
4040
+ MaxResults?: number | undefined;
4041
4041
  }
4042
4042
  /**
4043
4043
  * @public
@@ -4047,14 +4047,14 @@ export interface ListAdminsManagingAccountResponse {
4047
4047
  * <p>The list of accounts who manage member accounts within their <a>AdminScope</a>.</p>
4048
4048
  * @public
4049
4049
  */
4050
- AdminAccounts?: string[];
4050
+ AdminAccounts?: string[] | undefined;
4051
4051
  /**
4052
4052
  * <p>When you request a list of objects with a <code>MaxResults</code> setting, if the number of objects that are still available
4053
4053
  * for retrieval exceeds the maximum you requested, Firewall Manager returns a <code>NextToken</code>
4054
4054
  * value in the response. To retrieve the next batch of objects, use the token returned from the prior request in your next request.</p>
4055
4055
  * @public
4056
4056
  */
4057
- NextToken?: string;
4057
+ NextToken?: string | undefined;
4058
4058
  }
4059
4059
  /**
4060
4060
  * @public
@@ -4064,14 +4064,14 @@ export interface ListAppsListsRequest {
4064
4064
  * <p>Specifies whether the lists to retrieve are default lists owned by Firewall Manager.</p>
4065
4065
  * @public
4066
4066
  */
4067
- DefaultLists?: boolean;
4067
+ DefaultLists?: boolean | undefined;
4068
4068
  /**
4069
4069
  * <p>If you specify a value for <code>MaxResults</code> in your list request, and you have more objects than the maximum,
4070
4070
  * Firewall Manager returns this token in the response. For all but the first request, you provide the token returned by the prior request
4071
4071
  * in the request parameters, to retrieve the next batch of objects.</p>
4072
4072
  * @public
4073
4073
  */
4074
- NextToken?: string;
4074
+ NextToken?: string | undefined;
4075
4075
  /**
4076
4076
  * <p>The maximum number of objects that you want Firewall Manager to return for this request. If more
4077
4077
  * objects are available, in the response, Firewall Manager provides a
@@ -4089,13 +4089,13 @@ export interface ListAppsListsResponse {
4089
4089
  * <p>An array of <code>AppsListDataSummary</code> objects.</p>
4090
4090
  * @public
4091
4091
  */
4092
- AppsLists?: AppsListDataSummary[];
4092
+ AppsLists?: AppsListDataSummary[] | undefined;
4093
4093
  /**
4094
4094
  * <p>If you specify a value for <code>MaxResults</code> in your list request, and you have more objects than the maximum,
4095
4095
  * Firewall Manager returns this token in the response. You can use this token in subsequent requests to retrieve the next batch of objects.</p>
4096
4096
  * @public
4097
4097
  */
4098
- NextToken?: string;
4098
+ NextToken?: string | undefined;
4099
4099
  }
4100
4100
  /**
4101
4101
  * @public
@@ -4116,7 +4116,7 @@ export interface ListComplianceStatusRequest {
4116
4116
  * <code>PolicyComplianceStatus</code> objects.</p>
4117
4117
  * @public
4118
4118
  */
4119
- NextToken?: string;
4119
+ NextToken?: string | undefined;
4120
4120
  /**
4121
4121
  * <p>Specifies the number of <code>PolicyComplianceStatus</code> objects that you want
4122
4122
  * Firewall Manager to return for this request. If you have more
@@ -4125,7 +4125,7 @@ export interface ListComplianceStatusRequest {
4125
4125
  * use to get another batch of <code>PolicyComplianceStatus</code> objects.</p>
4126
4126
  * @public
4127
4127
  */
4128
- MaxResults?: number;
4128
+ MaxResults?: number | undefined;
4129
4129
  }
4130
4130
  /**
4131
4131
  * @public
@@ -4150,7 +4150,7 @@ export interface EvaluationResult {
4150
4150
  * <p>Describes an Amazon Web Services account's compliance with the Firewall Manager policy.</p>
4151
4151
  * @public
4152
4152
  */
4153
- ComplianceStatus?: PolicyComplianceStatusType;
4153
+ ComplianceStatus?: PolicyComplianceStatusType | undefined;
4154
4154
  /**
4155
4155
  * <p>The number of resources that are noncompliant with the specified policy. For WAF and
4156
4156
  * Shield Advanced policies, a resource is considered noncompliant if it is not associated with
@@ -4158,13 +4158,13 @@ export interface EvaluationResult {
4158
4158
  * comply with the rules of the policy and remediation is disabled or not possible.</p>
4159
4159
  * @public
4160
4160
  */
4161
- ViolatorCount?: number;
4161
+ ViolatorCount?: number | undefined;
4162
4162
  /**
4163
4163
  * <p>Indicates that over 100 resources are noncompliant with the Firewall Manager
4164
4164
  * policy.</p>
4165
4165
  * @public
4166
4166
  */
4167
- EvaluationLimitExceeded?: boolean;
4167
+ EvaluationLimitExceeded?: boolean | undefined;
4168
4168
  }
4169
4169
  /**
4170
4170
  * <p>Indicates whether the account is compliant with the specified policy. An account is
@@ -4178,38 +4178,38 @@ export interface PolicyComplianceStatus {
4178
4178
  * <p>The Amazon Web Services account that created the Firewall Manager policy.</p>
4179
4179
  * @public
4180
4180
  */
4181
- PolicyOwner?: string;
4181
+ PolicyOwner?: string | undefined;
4182
4182
  /**
4183
4183
  * <p>The ID of the Firewall Manager policy.</p>
4184
4184
  * @public
4185
4185
  */
4186
- PolicyId?: string;
4186
+ PolicyId?: string | undefined;
4187
4187
  /**
4188
4188
  * <p>The name of the Firewall Manager policy.</p>
4189
4189
  * @public
4190
4190
  */
4191
- PolicyName?: string;
4191
+ PolicyName?: string | undefined;
4192
4192
  /**
4193
4193
  * <p>The member account ID.</p>
4194
4194
  * @public
4195
4195
  */
4196
- MemberAccount?: string;
4196
+ MemberAccount?: string | undefined;
4197
4197
  /**
4198
4198
  * <p>An array of <code>EvaluationResult</code> objects.</p>
4199
4199
  * @public
4200
4200
  */
4201
- EvaluationResults?: EvaluationResult[];
4201
+ EvaluationResults?: EvaluationResult[] | undefined;
4202
4202
  /**
4203
4203
  * <p>Timestamp of the last update to the <code>EvaluationResult</code> objects.</p>
4204
4204
  * @public
4205
4205
  */
4206
- LastUpdated?: Date;
4206
+ LastUpdated?: Date | undefined;
4207
4207
  /**
4208
4208
  * <p>Details about problems with dependent services, such as WAF or Config,
4209
4209
  * and the error message received that indicates the problem with the service.</p>
4210
4210
  * @public
4211
4211
  */
4212
- IssueInfoMap?: Partial<Record<DependentServiceName, string>>;
4212
+ IssueInfoMap?: Partial<Record<DependentServiceName, string>> | undefined;
4213
4213
  }
4214
4214
  /**
4215
4215
  * @public
@@ -4219,7 +4219,7 @@ export interface ListComplianceStatusResponse {
4219
4219
  * <p>An array of <code>PolicyComplianceStatus</code> objects.</p>
4220
4220
  * @public
4221
4221
  */
4222
- PolicyComplianceStatusList?: PolicyComplianceStatus[];
4222
+ PolicyComplianceStatusList?: PolicyComplianceStatus[] | undefined;
4223
4223
  /**
4224
4224
  * <p>If you have more <code>PolicyComplianceStatus</code> objects than the number that you
4225
4225
  * specified for <code>MaxResults</code> in the request, the response includes a
@@ -4229,7 +4229,7 @@ export interface ListComplianceStatusResponse {
4229
4229
  * next request.</p>
4230
4230
  * @public
4231
4231
  */
4232
- NextToken?: string;
4232
+ NextToken?: string | undefined;
4233
4233
  }
4234
4234
  /**
4235
4235
  * @public
@@ -4251,14 +4251,14 @@ export interface ListDiscoveredResourcesRequest {
4251
4251
  * <code>NextToken</code> value that you can use in a subsequent call to get the next batch of objects.</p>
4252
4252
  * @public
4253
4253
  */
4254
- MaxResults?: number;
4254
+ MaxResults?: number | undefined;
4255
4255
  /**
4256
4256
  * <p>When you request a list of objects with a <code>MaxResults</code> setting, if the number of objects that are still available
4257
4257
  * for retrieval exceeds the maximum you requested, Firewall Manager returns a <code>NextToken</code>
4258
4258
  * value in the response. To retrieve the next batch of objects, use the token returned from the prior request in your next request.</p>
4259
4259
  * @public
4260
4260
  */
4261
- NextToken?: string;
4261
+ NextToken?: string | undefined;
4262
4262
  }
4263
4263
  /**
4264
4264
  * <p>A resource in the organization that's available to be associated with a Firewall Manager resource set.</p>
@@ -4269,22 +4269,22 @@ export interface DiscoveredResource {
4269
4269
  * <p>The universal resource identifier (URI) of the discovered resource.</p>
4270
4270
  * @public
4271
4271
  */
4272
- URI?: string;
4272
+ URI?: string | undefined;
4273
4273
  /**
4274
4274
  * <p>The Amazon Web Services account ID associated with the discovered resource.</p>
4275
4275
  * @public
4276
4276
  */
4277
- AccountId?: string;
4277
+ AccountId?: string | undefined;
4278
4278
  /**
4279
4279
  * <p>The type of the discovered resource.</p>
4280
4280
  * @public
4281
4281
  */
4282
- Type?: string;
4282
+ Type?: string | undefined;
4283
4283
  /**
4284
4284
  * <p>The name of the discovered resource.</p>
4285
4285
  * @public
4286
4286
  */
4287
- Name?: string;
4287
+ Name?: string | undefined;
4288
4288
  }
4289
4289
  /**
4290
4290
  * @public
@@ -4294,14 +4294,14 @@ export interface ListDiscoveredResourcesResponse {
4294
4294
  * <p>Details of the resources that were discovered.</p>
4295
4295
  * @public
4296
4296
  */
4297
- Items?: DiscoveredResource[];
4297
+ Items?: DiscoveredResource[] | undefined;
4298
4298
  /**
4299
4299
  * <p>When you request a list of objects with a <code>MaxResults</code> setting, if the number of objects that are still available
4300
4300
  * for retrieval exceeds the maximum you requested, Firewall Manager returns a <code>NextToken</code>
4301
4301
  * value in the response. To retrieve the next batch of objects, use the token returned from the prior request in your next request.</p>
4302
4302
  * @public
4303
4303
  */
4304
- NextToken?: string;
4304
+ NextToken?: string | undefined;
4305
4305
  }
4306
4306
  /**
4307
4307
  * @public
@@ -4316,7 +4316,7 @@ export interface ListMemberAccountsRequest {
4316
4316
  * batch of member account IDs.</p>
4317
4317
  * @public
4318
4318
  */
4319
- NextToken?: string;
4319
+ NextToken?: string | undefined;
4320
4320
  /**
4321
4321
  * <p>Specifies the number of member account IDs that you want Firewall Manager to return
4322
4322
  * for this request. If you have more IDs than the number that you specify for
@@ -4324,7 +4324,7 @@ export interface ListMemberAccountsRequest {
4324
4324
  * use to get another batch of member account IDs.</p>
4325
4325
  * @public
4326
4326
  */
4327
- MaxResults?: number;
4327
+ MaxResults?: number | undefined;
4328
4328
  }
4329
4329
  /**
4330
4330
  * @public
@@ -4334,7 +4334,7 @@ export interface ListMemberAccountsResponse {
4334
4334
  * <p>An array of account IDs.</p>
4335
4335
  * @public
4336
4336
  */
4337
- MemberAccounts?: string[];
4337
+ MemberAccounts?: string[] | undefined;
4338
4338
  /**
4339
4339
  * <p>If you have more member account IDs than the number that you specified for
4340
4340
  * <code>MaxResults</code> in the request, the response includes a <code>NextToken</code>
@@ -4343,7 +4343,7 @@ export interface ListMemberAccountsResponse {
4343
4343
  * next request.</p>
4344
4344
  * @public
4345
4345
  */
4346
- NextToken?: string;
4346
+ NextToken?: string | undefined;
4347
4347
  }
4348
4348
  /**
4349
4349
  * @public
@@ -4359,7 +4359,7 @@ export interface ListPoliciesRequest {
4359
4359
  * <code>PolicySummary</code> objects.</p>
4360
4360
  * @public
4361
4361
  */
4362
- NextToken?: string;
4362
+ NextToken?: string | undefined;
4363
4363
  /**
4364
4364
  * <p>Specifies the number of <code>PolicySummary</code> objects that you want Firewall Manager to return for this request. If you have more <code>PolicySummary</code> objects than
4365
4365
  * the number that you specify for <code>MaxResults</code>, the response includes a
@@ -4367,7 +4367,7 @@ export interface ListPoliciesRequest {
4367
4367
  * <code>PolicySummary</code> objects.</p>
4368
4368
  * @public
4369
4369
  */
4370
- MaxResults?: number;
4370
+ MaxResults?: number | undefined;
4371
4371
  }
4372
4372
  /**
4373
4373
  * <p>Details of the Firewall Manager policy. </p>
@@ -4378,35 +4378,35 @@ export interface PolicySummary {
4378
4378
  * <p>The Amazon Resource Name (ARN) of the specified policy.</p>
4379
4379
  * @public
4380
4380
  */
4381
- PolicyArn?: string;
4381
+ PolicyArn?: string | undefined;
4382
4382
  /**
4383
4383
  * <p>The ID of the specified policy.</p>
4384
4384
  * @public
4385
4385
  */
4386
- PolicyId?: string;
4386
+ PolicyId?: string | undefined;
4387
4387
  /**
4388
4388
  * <p>The name of the specified policy.</p>
4389
4389
  * @public
4390
4390
  */
4391
- PolicyName?: string;
4391
+ PolicyName?: string | undefined;
4392
4392
  /**
4393
4393
  * <p>The type of resource protected by or in scope of the policy. This is in the format shown
4394
4394
  * in the <a href="https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-template-resource-type-ref.html">Amazon Web Services Resource Types Reference</a>. </p>
4395
4395
  * @public
4396
4396
  */
4397
- ResourceType?: string;
4397
+ ResourceType?: string | undefined;
4398
4398
  /**
4399
4399
  * <p>The service that the policy is using to protect the resources. This specifies the type of
4400
4400
  * policy that is created, either an WAF policy, a Shield Advanced policy, or a security
4401
4401
  * group policy.</p>
4402
4402
  * @public
4403
4403
  */
4404
- SecurityServiceType?: SecurityServiceType;
4404
+ SecurityServiceType?: SecurityServiceType | undefined;
4405
4405
  /**
4406
4406
  * <p>Indicates if the policy should be automatically applied to new resources.</p>
4407
4407
  * @public
4408
4408
  */
4409
- RemediationEnabled?: boolean;
4409
+ RemediationEnabled?: boolean | undefined;
4410
4410
  /**
4411
4411
  * <p>Indicates whether Firewall Manager should automatically remove protections from resources that leave the policy scope and clean up resources
4412
4412
  * that Firewall Manager is managing for accounts when those accounts leave policy scope. For example, Firewall Manager will disassociate a Firewall Manager managed web ACL
@@ -4415,7 +4415,7 @@ export interface PolicySummary {
4415
4415
  * <p>This option is not available for Shield Advanced or WAF Classic policies.</p>
4416
4416
  * @public
4417
4417
  */
4418
- DeleteUnusedFMManagedResources?: boolean;
4418
+ DeleteUnusedFMManagedResources?: boolean | undefined;
4419
4419
  /**
4420
4420
  * <p>Indicates whether the policy is in or out of an admin's policy or Region scope.</p>
4421
4421
  * <ul>
@@ -4430,7 +4430,7 @@ export interface PolicySummary {
4430
4430
  * </ul>
4431
4431
  * @public
4432
4432
  */
4433
- PolicyStatus?: CustomerPolicyStatus;
4433
+ PolicyStatus?: CustomerPolicyStatus | undefined;
4434
4434
  }
4435
4435
  /**
4436
4436
  * @public
@@ -4440,7 +4440,7 @@ export interface ListPoliciesResponse {
4440
4440
  * <p>An array of <code>PolicySummary</code> objects.</p>
4441
4441
  * @public
4442
4442
  */
4443
- PolicyList?: PolicySummary[];
4443
+ PolicyList?: PolicySummary[] | undefined;
4444
4444
  /**
4445
4445
  * <p>If you have more <code>PolicySummary</code> objects than the number that you specified for
4446
4446
  * <code>MaxResults</code> in the request, the response includes a <code>NextToken</code>
@@ -4449,7 +4449,7 @@ export interface ListPoliciesResponse {
4449
4449
  * response in the <code>NextToken</code> value in the next request.</p>
4450
4450
  * @public
4451
4451
  */
4452
- NextToken?: string;
4452
+ NextToken?: string | undefined;
4453
4453
  }
4454
4454
  /**
4455
4455
  * @public
@@ -4459,14 +4459,14 @@ export interface ListProtocolsListsRequest {
4459
4459
  * <p>Specifies whether the lists to retrieve are default lists owned by Firewall Manager.</p>
4460
4460
  * @public
4461
4461
  */
4462
- DefaultLists?: boolean;
4462
+ DefaultLists?: boolean | undefined;
4463
4463
  /**
4464
4464
  * <p>If you specify a value for <code>MaxResults</code> in your list request, and you have more objects than the maximum,
4465
4465
  * Firewall Manager returns this token in the response. For all but the first request, you provide the token returned by the prior request
4466
4466
  * in the request parameters, to retrieve the next batch of objects.</p>
4467
4467
  * @public
4468
4468
  */
4469
- NextToken?: string;
4469
+ NextToken?: string | undefined;
4470
4470
  /**
4471
4471
  * <p>The maximum number of objects that you want Firewall Manager to return for this request. If more
4472
4472
  * objects are available, in the response, Firewall Manager provides a
@@ -4485,22 +4485,22 @@ export interface ProtocolsListDataSummary {
4485
4485
  * <p>The Amazon Resource Name (ARN) of the specified protocols list.</p>
4486
4486
  * @public
4487
4487
  */
4488
- ListArn?: string;
4488
+ ListArn?: string | undefined;
4489
4489
  /**
4490
4490
  * <p>The ID of the specified protocols list.</p>
4491
4491
  * @public
4492
4492
  */
4493
- ListId?: string;
4493
+ ListId?: string | undefined;
4494
4494
  /**
4495
4495
  * <p>The name of the specified protocols list.</p>
4496
4496
  * @public
4497
4497
  */
4498
- ListName?: string;
4498
+ ListName?: string | undefined;
4499
4499
  /**
4500
4500
  * <p>An array of protocols in the Firewall Manager protocols list.</p>
4501
4501
  * @public
4502
4502
  */
4503
- ProtocolsList?: string[];
4503
+ ProtocolsList?: string[] | undefined;
4504
4504
  }
4505
4505
  /**
4506
4506
  * @public
@@ -4510,13 +4510,13 @@ export interface ListProtocolsListsResponse {
4510
4510
  * <p>An array of <code>ProtocolsListDataSummary</code> objects.</p>
4511
4511
  * @public
4512
4512
  */
4513
- ProtocolsLists?: ProtocolsListDataSummary[];
4513
+ ProtocolsLists?: ProtocolsListDataSummary[] | undefined;
4514
4514
  /**
4515
4515
  * <p>If you specify a value for <code>MaxResults</code> in your list request, and you have more objects than the maximum,
4516
4516
  * Firewall Manager returns this token in the response. You can use this token in subsequent requests to retrieve the next batch of objects.</p>
4517
4517
  * @public
4518
4518
  */
4519
- NextToken?: string;
4519
+ NextToken?: string | undefined;
4520
4520
  }
4521
4521
  /**
4522
4522
  * @public
@@ -4533,14 +4533,14 @@ export interface ListResourceSetResourcesRequest {
4533
4533
  * <code>NextToken</code> value that you can use in a subsequent call to get the next batch of objects.</p>
4534
4534
  * @public
4535
4535
  */
4536
- MaxResults?: number;
4536
+ MaxResults?: number | undefined;
4537
4537
  /**
4538
4538
  * <p>When you request a list of objects with a <code>MaxResults</code> setting, if the number of objects that are still available
4539
4539
  * for retrieval exceeds the maximum you requested, Firewall Manager returns a <code>NextToken</code>
4540
4540
  * value in the response. To retrieve the next batch of objects, use the token returned from the prior request in your next request.</p>
4541
4541
  * @public
4542
4542
  */
4543
- NextToken?: string;
4543
+ NextToken?: string | undefined;
4544
4544
  }
4545
4545
  /**
4546
4546
  * <p>Details of a resource that is associated to an Firewall Manager resource set.</p>
@@ -4556,7 +4556,7 @@ export interface Resource {
4556
4556
  * <p>The Amazon Web Services account ID that the associated resource belongs to.</p>
4557
4557
  * @public
4558
4558
  */
4559
- AccountId?: string;
4559
+ AccountId?: string | undefined;
4560
4560
  }
4561
4561
  /**
4562
4562
  * @public
@@ -4573,7 +4573,7 @@ export interface ListResourceSetResourcesResponse {
4573
4573
  * value in the response. To retrieve the next batch of objects, use the token returned from the prior request in your next request.</p>
4574
4574
  * @public
4575
4575
  */
4576
- NextToken?: string;
4576
+ NextToken?: string | undefined;
4577
4577
  }
4578
4578
  /**
4579
4579
  * @public
@@ -4585,14 +4585,14 @@ export interface ListResourceSetsRequest {
4585
4585
  * value in the response. To retrieve the next batch of objects, use the token returned from the prior request in your next request.</p>
4586
4586
  * @public
4587
4587
  */
4588
- NextToken?: string;
4588
+ NextToken?: string | undefined;
4589
4589
  /**
4590
4590
  * <p>The maximum number of objects that you want Firewall Manager to return for this request. If more
4591
4591
  * objects are available, in the response, Firewall Manager provides a
4592
4592
  * <code>NextToken</code> value that you can use in a subsequent call to get the next batch of objects.</p>
4593
4593
  * @public
4594
4594
  */
4595
- MaxResults?: number;
4595
+ MaxResults?: number | undefined;
4596
4596
  }
4597
4597
  /**
4598
4598
  * <p>Summarizes the resource sets used in a policy.</p>
@@ -4603,22 +4603,22 @@ export interface ResourceSetSummary {
4603
4603
  * <p>A unique identifier for the resource set. This ID is returned in the responses to create and list commands. You provide it to operations like update and delete.</p>
4604
4604
  * @public
4605
4605
  */
4606
- Id?: string;
4606
+ Id?: string | undefined;
4607
4607
  /**
4608
4608
  * <p>The descriptive name of the resource set. You can't change the name of a resource set after you create it.</p>
4609
4609
  * @public
4610
4610
  */
4611
- Name?: string;
4611
+ Name?: string | undefined;
4612
4612
  /**
4613
4613
  * <p>A description of the resource set.</p>
4614
4614
  * @public
4615
4615
  */
4616
- Description?: string;
4616
+ Description?: string | undefined;
4617
4617
  /**
4618
4618
  * <p>The last time that the resource set was changed.</p>
4619
4619
  * @public
4620
4620
  */
4621
- LastUpdateTime?: Date;
4621
+ LastUpdateTime?: Date | undefined;
4622
4622
  /**
4623
4623
  * <p>Indicates whether the resource set is in or out of an admin's Region scope.</p>
4624
4624
  * <ul>
@@ -4633,7 +4633,7 @@ export interface ResourceSetSummary {
4633
4633
  * </ul>
4634
4634
  * @public
4635
4635
  */
4636
- ResourceSetStatus?: ResourceSetStatus;
4636
+ ResourceSetStatus?: ResourceSetStatus | undefined;
4637
4637
  }
4638
4638
  /**
4639
4639
  * @public
@@ -4643,14 +4643,14 @@ export interface ListResourceSetsResponse {
4643
4643
  * <p>An array of <code>ResourceSetSummary</code> objects.</p>
4644
4644
  * @public
4645
4645
  */
4646
- ResourceSets?: ResourceSetSummary[];
4646
+ ResourceSets?: ResourceSetSummary[] | undefined;
4647
4647
  /**
4648
4648
  * <p>When you request a list of objects with a <code>MaxResults</code> setting, if the number of objects that are still available
4649
4649
  * for retrieval exceeds the maximum you requested, Firewall Manager returns a <code>NextToken</code>
4650
4650
  * value in the response. To retrieve the next batch of objects, use the token returned from the prior request in your next request.</p>
4651
4651
  * @public
4652
4652
  */
4653
- NextToken?: string;
4653
+ NextToken?: string | undefined;
4654
4654
  }
4655
4655
  /**
4656
4656
  * @public
@@ -4670,7 +4670,7 @@ export interface ListTagsForResourceResponse {
4670
4670
  * <p>The tags associated with the resource.</p>
4671
4671
  * @public
4672
4672
  */
4673
- TagList?: Tag[];
4673
+ TagList?: Tag[] | undefined;
4674
4674
  }
4675
4675
  /**
4676
4676
  * @public
@@ -4691,7 +4691,7 @@ export interface ListThirdPartyFirewallFirewallPoliciesRequest {
4691
4691
  * </p>
4692
4692
  * @public
4693
4693
  */
4694
- NextToken?: string;
4694
+ NextToken?: string | undefined;
4695
4695
  /**
4696
4696
  * <p>The maximum number of third-party firewall policies that you want Firewall Manager to return. If
4697
4697
  * the specified third-party firewall vendor is associated with more than <code>MaxResults</code> firewall policies, the response includes a
@@ -4710,12 +4710,12 @@ export interface ThirdPartyFirewallFirewallPolicy {
4710
4710
  * <p>The ID of the specified firewall policy.</p>
4711
4711
  * @public
4712
4712
  */
4713
- FirewallPolicyId?: string;
4713
+ FirewallPolicyId?: string | undefined;
4714
4714
  /**
4715
4715
  * <p>The name of the specified firewall policy.</p>
4716
4716
  * @public
4717
4717
  */
4718
- FirewallPolicyName?: string;
4718
+ FirewallPolicyName?: string | undefined;
4719
4719
  }
4720
4720
  /**
4721
4721
  * @public
@@ -4726,12 +4726,12 @@ export interface ListThirdPartyFirewallFirewallPoliciesResponse {
4726
4726
  * third-party firewall vendor is associated with. Each <code>ThirdPartyFirewallFirewallPolicies</code> element contains the firewall policy name and ID.</p>
4727
4727
  * @public
4728
4728
  */
4729
- ThirdPartyFirewallFirewallPolicies?: ThirdPartyFirewallFirewallPolicy[];
4729
+ ThirdPartyFirewallFirewallPolicies?: ThirdPartyFirewallFirewallPolicy[] | undefined;
4730
4730
  /**
4731
4731
  * <p>The value that you will use for <code>NextToken</code> in the next <code>ListThirdPartyFirewallFirewallPolicies</code> request.</p>
4732
4732
  * @public
4733
4733
  */
4734
- NextToken?: string;
4734
+ NextToken?: string | undefined;
4735
4735
  }
4736
4736
  /**
4737
4737
  * @public
@@ -4747,7 +4747,7 @@ export interface PutAdminAccountRequest {
4747
4747
  * <p>Configures the resources that the specified Firewall Manager administrator can manage. As a best practice, set the administrative scope according to the principles of least privilege. Only grant the administrator the specific resources or permissions that they need to perform the duties of their role.</p>
4748
4748
  * @public
4749
4749
  */
4750
- AdminScope?: AdminScope;
4750
+ AdminScope?: AdminScope | undefined;
4751
4751
  }
4752
4752
  /**
4753
4753
  * @public
@@ -4762,7 +4762,7 @@ export interface PutAppsListRequest {
4762
4762
  * <p>The tags associated with the resource.</p>
4763
4763
  * @public
4764
4764
  */
4765
- TagList?: Tag[];
4765
+ TagList?: Tag[] | undefined;
4766
4766
  }
4767
4767
  /**
4768
4768
  * @public
@@ -4772,12 +4772,12 @@ export interface PutAppsListResponse {
4772
4772
  * <p>The details of the Firewall Manager applications list.</p>
4773
4773
  * @public
4774
4774
  */
4775
- AppsList?: AppsListData;
4775
+ AppsList?: AppsListData | undefined;
4776
4776
  /**
4777
4777
  * <p>The Amazon Resource Name (ARN) of the applications list.</p>
4778
4778
  * @public
4779
4779
  */
4780
- AppsListArn?: string;
4780
+ AppsListArn?: string | undefined;
4781
4781
  }
4782
4782
  /**
4783
4783
  * @public
@@ -4809,7 +4809,7 @@ export interface PutPolicyRequest {
4809
4809
  * <p>The tags to add to the Amazon Web Services resource.</p>
4810
4810
  * @public
4811
4811
  */
4812
- TagList?: Tag[];
4812
+ TagList?: Tag[] | undefined;
4813
4813
  }
4814
4814
  /**
4815
4815
  * @public
@@ -4819,12 +4819,12 @@ export interface PutPolicyResponse {
4819
4819
  * <p>The details of the Firewall Manager policy.</p>
4820
4820
  * @public
4821
4821
  */
4822
- Policy?: Policy;
4822
+ Policy?: Policy | undefined;
4823
4823
  /**
4824
4824
  * <p>The Amazon Resource Name (ARN) of the policy.</p>
4825
4825
  * @public
4826
4826
  */
4827
- PolicyArn?: string;
4827
+ PolicyArn?: string | undefined;
4828
4828
  }
4829
4829
  /**
4830
4830
  * @public
@@ -4839,7 +4839,7 @@ export interface PutProtocolsListRequest {
4839
4839
  * <p>The tags associated with the resource.</p>
4840
4840
  * @public
4841
4841
  */
4842
- TagList?: Tag[];
4842
+ TagList?: Tag[] | undefined;
4843
4843
  }
4844
4844
  /**
4845
4845
  * @public
@@ -4849,12 +4849,12 @@ export interface PutProtocolsListResponse {
4849
4849
  * <p>The details of the Firewall Manager protocols list.</p>
4850
4850
  * @public
4851
4851
  */
4852
- ProtocolsList?: ProtocolsListData;
4852
+ ProtocolsList?: ProtocolsListData | undefined;
4853
4853
  /**
4854
4854
  * <p>The Amazon Resource Name (ARN) of the protocols list.</p>
4855
4855
  * @public
4856
4856
  */
4857
- ProtocolsListArn?: string;
4857
+ ProtocolsListArn?: string | undefined;
4858
4858
  }
4859
4859
  /**
4860
4860
  * @public
@@ -4873,7 +4873,7 @@ export interface PutResourceSetRequest {
4873
4873
  * resource.</p>
4874
4874
  * @public
4875
4875
  */
4876
- TagList?: Tag[];
4876
+ TagList?: Tag[] | undefined;
4877
4877
  }
4878
4878
  /**
4879
4879
  * @public