npm - @aws-sdk/client-network-firewall - Versions diffs - 3.301.0 → 3.303.0 - Mend

@aws-sdk/client-network-firewall 3.301.0 → 3.303.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (54) hide show

package/dist-types/NetworkFirewall.d.ts CHANGED Viewed

@@ -4,21 +4,25 @@ import { AssociateSubnetsCommandInput, AssociateSubnetsCommandOutput } from "./c
 import { CreateFirewallCommandInput, CreateFirewallCommandOutput } from "./commands/CreateFirewallCommand";
 import { CreateFirewallPolicyCommandInput, CreateFirewallPolicyCommandOutput } from "./commands/CreateFirewallPolicyCommand";
 import { CreateRuleGroupCommandInput, CreateRuleGroupCommandOutput } from "./commands/CreateRuleGroupCommand";
+import { CreateTLSInspectionConfigurationCommandInput, CreateTLSInspectionConfigurationCommandOutput } from "./commands/CreateTLSInspectionConfigurationCommand";
 import { DeleteFirewallCommandInput, DeleteFirewallCommandOutput } from "./commands/DeleteFirewallCommand";
 import { DeleteFirewallPolicyCommandInput, DeleteFirewallPolicyCommandOutput } from "./commands/DeleteFirewallPolicyCommand";
 import { DeleteResourcePolicyCommandInput, DeleteResourcePolicyCommandOutput } from "./commands/DeleteResourcePolicyCommand";
 import { DeleteRuleGroupCommandInput, DeleteRuleGroupCommandOutput } from "./commands/DeleteRuleGroupCommand";
+import { DeleteTLSInspectionConfigurationCommandInput, DeleteTLSInspectionConfigurationCommandOutput } from "./commands/DeleteTLSInspectionConfigurationCommand";
 import { DescribeFirewallCommandInput, DescribeFirewallCommandOutput } from "./commands/DescribeFirewallCommand";
 import { DescribeFirewallPolicyCommandInput, DescribeFirewallPolicyCommandOutput } from "./commands/DescribeFirewallPolicyCommand";
 import { DescribeLoggingConfigurationCommandInput, DescribeLoggingConfigurationCommandOutput } from "./commands/DescribeLoggingConfigurationCommand";
 import { DescribeResourcePolicyCommandInput, DescribeResourcePolicyCommandOutput } from "./commands/DescribeResourcePolicyCommand";
 import { DescribeRuleGroupCommandInput, DescribeRuleGroupCommandOutput } from "./commands/DescribeRuleGroupCommand";
 import { DescribeRuleGroupMetadataCommandInput, DescribeRuleGroupMetadataCommandOutput } from "./commands/DescribeRuleGroupMetadataCommand";
+import { DescribeTLSInspectionConfigurationCommandInput, DescribeTLSInspectionConfigurationCommandOutput } from "./commands/DescribeTLSInspectionConfigurationCommand";
 import { DisassociateSubnetsCommandInput, DisassociateSubnetsCommandOutput } from "./commands/DisassociateSubnetsCommand";
 import { ListFirewallPoliciesCommandInput, ListFirewallPoliciesCommandOutput } from "./commands/ListFirewallPoliciesCommand";
 import { ListFirewallsCommandInput, ListFirewallsCommandOutput } from "./commands/ListFirewallsCommand";
 import { ListRuleGroupsCommandInput, ListRuleGroupsCommandOutput } from "./commands/ListRuleGroupsCommand";
 import { ListTagsForResourceCommandInput, ListTagsForResourceCommandOutput } from "./commands/ListTagsForResourceCommand";
+import { ListTLSInspectionConfigurationsCommandInput, ListTLSInspectionConfigurationsCommandOutput } from "./commands/ListTLSInspectionConfigurationsCommand";
 import { PutResourcePolicyCommandInput, PutResourcePolicyCommandOutput } from "./commands/PutResourcePolicyCommand";
 import { TagResourceCommandInput, TagResourceCommandOutput } from "./commands/TagResourceCommand";
 import { UntagResourceCommandInput, UntagResourceCommandOutput } from "./commands/UntagResourceCommand";
@@ -30,6 +34,7 @@ import { UpdateFirewallPolicyCommandInput, UpdateFirewallPolicyCommandOutput } f
 import { UpdateLoggingConfigurationCommandInput, UpdateLoggingConfigurationCommandOutput } from "./commands/UpdateLoggingConfigurationCommand";
 import { UpdateRuleGroupCommandInput, UpdateRuleGroupCommandOutput } from "./commands/UpdateRuleGroupCommand";
 import { UpdateSubnetChangeProtectionCommandInput, UpdateSubnetChangeProtectionCommandOutput } from "./commands/UpdateSubnetChangeProtectionCommand";
+import { UpdateTLSInspectionConfigurationCommandInput, UpdateTLSInspectionConfigurationCommandOutput } from "./commands/UpdateTLSInspectionConfigurationCommand";
 import { NetworkFirewallClient } from "./NetworkFirewallClient";
 /**
  * @public
@@ -169,6 +174,21 @@ export declare class NetworkFirewall extends NetworkFirewallClient {
     createRuleGroup(args: CreateRuleGroupCommandInput, options?: __HttpHandlerOptions): Promise<CreateRuleGroupCommandOutput>;
     createRuleGroup(args: CreateRuleGroupCommandInput, cb: (err: any, data?: CreateRuleGroupCommandOutput) => void): void;
     createRuleGroup(args: CreateRuleGroupCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateRuleGroupCommandOutput) => void): void;
+    /**
+     * @public
+     * <p>Creates an Network Firewall TLS inspection configuration. A TLS inspection configuration contains the Certificate Manager certificate references that Network Firewall uses to decrypt and re-encrypt inbound traffic.</p>
+     *          <p>After you create a TLS inspection configuration, you associate it with a firewall policy.</p>
+     *          <p>To update the settings for a TLS inspection configuration, use <a>UpdateTLSInspectionConfiguration</a>.</p>
+     *          <p>To manage a TLS inspection configuration's tags, use the standard Amazon Web Services resource tagging operations, <a>ListTagsForResource</a>, <a>TagResource</a>, and <a>UntagResource</a>.</p>
+     *          <p>To retrieve information about TLS inspection configurations, use <a>ListTLSInspectionConfigurations</a> and <a>DescribeTLSInspectionConfiguration</a>.</p>
+     *          <p>
+     *               For more information about TLS inspection configurations, see <a href="https://docs.aws.amazon.com/network-firewall/latest/developerguide/tls-inspection.html">Decrypting SSL/TLS traffic with TLS
+     * inspection configurations</a> in the <i>Network Firewall Developer Guide</i>.
+     *             </p>
+     */
+    createTLSInspectionConfiguration(args: CreateTLSInspectionConfigurationCommandInput, options?: __HttpHandlerOptions): Promise<CreateTLSInspectionConfigurationCommandOutput>;
+    createTLSInspectionConfiguration(args: CreateTLSInspectionConfigurationCommandInput, cb: (err: any, data?: CreateTLSInspectionConfigurationCommandOutput) => void): void;
+    createTLSInspectionConfiguration(args: CreateTLSInspectionConfigurationCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateTLSInspectionConfigurationCommandOutput) => void): void;
     /**
      * @public
      * <p>Deletes the specified <a>Firewall</a> and its <a>FirewallStatus</a>.
@@ -207,6 +227,13 @@ export declare class NetworkFirewall extends NetworkFirewallClient {
     deleteRuleGroup(args: DeleteRuleGroupCommandInput, options?: __HttpHandlerOptions): Promise<DeleteRuleGroupCommandOutput>;
     deleteRuleGroup(args: DeleteRuleGroupCommandInput, cb: (err: any, data?: DeleteRuleGroupCommandOutput) => void): void;
     deleteRuleGroup(args: DeleteRuleGroupCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteRuleGroupCommandOutput) => void): void;
+    /**
+     * @public
+     * <p>Deletes the specified <a>TLSInspectionConfiguration</a>.</p>
+     */
+    deleteTLSInspectionConfiguration(args: DeleteTLSInspectionConfigurationCommandInput, options?: __HttpHandlerOptions): Promise<DeleteTLSInspectionConfigurationCommandOutput>;
+    deleteTLSInspectionConfiguration(args: DeleteTLSInspectionConfigurationCommandInput, cb: (err: any, data?: DeleteTLSInspectionConfigurationCommandOutput) => void): void;
+    deleteTLSInspectionConfiguration(args: DeleteTLSInspectionConfigurationCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteTLSInspectionConfigurationCommandOutput) => void): void;
     /**
      * @public
      * <p>Returns the data objects for the specified firewall. </p>
@@ -252,6 +279,13 @@ export declare class NetworkFirewall extends NetworkFirewallClient {
     describeRuleGroupMetadata(args: DescribeRuleGroupMetadataCommandInput, options?: __HttpHandlerOptions): Promise<DescribeRuleGroupMetadataCommandOutput>;
     describeRuleGroupMetadata(args: DescribeRuleGroupMetadataCommandInput, cb: (err: any, data?: DescribeRuleGroupMetadataCommandOutput) => void): void;
     describeRuleGroupMetadata(args: DescribeRuleGroupMetadataCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DescribeRuleGroupMetadataCommandOutput) => void): void;
+    /**
+     * @public
+     * <p>Returns the data objects for the specified TLS inspection configuration.</p>
+     */
+    describeTLSInspectionConfiguration(args: DescribeTLSInspectionConfigurationCommandInput, options?: __HttpHandlerOptions): Promise<DescribeTLSInspectionConfigurationCommandOutput>;
+    describeTLSInspectionConfiguration(args: DescribeTLSInspectionConfigurationCommandInput, cb: (err: any, data?: DescribeTLSInspectionConfigurationCommandOutput) => void): void;
+    describeTLSInspectionConfiguration(args: DescribeTLSInspectionConfigurationCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DescribeTLSInspectionConfigurationCommandOutput) => void): void;
     /**
      * @public
      * <p>Removes the specified subnet associations from the firewall. This removes the
@@ -303,6 +337,13 @@ export declare class NetworkFirewall extends NetworkFirewallClient {
     listTagsForResource(args: ListTagsForResourceCommandInput, options?: __HttpHandlerOptions): Promise<ListTagsForResourceCommandOutput>;
     listTagsForResource(args: ListTagsForResourceCommandInput, cb: (err: any, data?: ListTagsForResourceCommandOutput) => void): void;
     listTagsForResource(args: ListTagsForResourceCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListTagsForResourceCommandOutput) => void): void;
+    /**
+     * @public
+     * <p>Retrieves the metadata for the TLS inspection configurations that you have defined. Depending on your setting for max results and the number of TLS inspection configurations, a single call might not return the full list.</p>
+     */
+    listTLSInspectionConfigurations(args: ListTLSInspectionConfigurationsCommandInput, options?: __HttpHandlerOptions): Promise<ListTLSInspectionConfigurationsCommandOutput>;
+    listTLSInspectionConfigurations(args: ListTLSInspectionConfigurationsCommandInput, cb: (err: any, data?: ListTLSInspectionConfigurationsCommandOutput) => void): void;
+    listTLSInspectionConfigurations(args: ListTLSInspectionConfigurationsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListTLSInspectionConfigurationsCommandOutput) => void): void;
     /**
      * @public
      * <p>Creates or updates an IAM policy for your rule group or firewall policy. Use this to share rule groups and firewall policies between accounts. This operation works in conjunction with the Amazon Web Services Resource Access Manager (RAM) service
@@ -441,4 +482,16 @@ export declare class NetworkFirewall extends NetworkFirewallClient {
     updateSubnetChangeProtection(args: UpdateSubnetChangeProtectionCommandInput, options?: __HttpHandlerOptions): Promise<UpdateSubnetChangeProtectionCommandOutput>;
     updateSubnetChangeProtection(args: UpdateSubnetChangeProtectionCommandInput, cb: (err: any, data?: UpdateSubnetChangeProtectionCommandOutput) => void): void;
     updateSubnetChangeProtection(args: UpdateSubnetChangeProtectionCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateSubnetChangeProtectionCommandOutput) => void): void;
+    /**
+     * @public
+     * <p>Updates the TLS inspection configuration settings for the specified TLS inspection configuration. You use a TLS inspection configuration by
+     *         reference in one or more firewall policies. When you modify a TLS inspection configuration, you modify all
+     *         firewall policies that use the TLS inspection configuration. </p>
+     *          <p>To update a TLS inspection configuration, first call <a>DescribeTLSInspectionConfiguration</a> to retrieve the
+     *         current <a>TLSInspectionConfiguration</a> object, update the object as needed, and then provide
+     *         the updated object to this call. </p>
+     */
+    updateTLSInspectionConfiguration(args: UpdateTLSInspectionConfigurationCommandInput, options?: __HttpHandlerOptions): Promise<UpdateTLSInspectionConfigurationCommandOutput>;
+    updateTLSInspectionConfiguration(args: UpdateTLSInspectionConfigurationCommandInput, cb: (err: any, data?: UpdateTLSInspectionConfigurationCommandOutput) => void): void;
+    updateTLSInspectionConfiguration(args: UpdateTLSInspectionConfigurationCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateTLSInspectionConfigurationCommandOutput) => void): void;
 }

package/dist-types/NetworkFirewallClient.d.ts CHANGED Viewed

@@ -12,21 +12,25 @@ import { AssociateSubnetsCommandInput, AssociateSubnetsCommandOutput } from "./c
 import { CreateFirewallCommandInput, CreateFirewallCommandOutput } from "./commands/CreateFirewallCommand";
 import { CreateFirewallPolicyCommandInput, CreateFirewallPolicyCommandOutput } from "./commands/CreateFirewallPolicyCommand";
 import { CreateRuleGroupCommandInput, CreateRuleGroupCommandOutput } from "./commands/CreateRuleGroupCommand";
+import { CreateTLSInspectionConfigurationCommandInput, CreateTLSInspectionConfigurationCommandOutput } from "./commands/CreateTLSInspectionConfigurationCommand";
 import { DeleteFirewallCommandInput, DeleteFirewallCommandOutput } from "./commands/DeleteFirewallCommand";
 import { DeleteFirewallPolicyCommandInput, DeleteFirewallPolicyCommandOutput } from "./commands/DeleteFirewallPolicyCommand";
 import { DeleteResourcePolicyCommandInput, DeleteResourcePolicyCommandOutput } from "./commands/DeleteResourcePolicyCommand";
 import { DeleteRuleGroupCommandInput, DeleteRuleGroupCommandOutput } from "./commands/DeleteRuleGroupCommand";
+import { DeleteTLSInspectionConfigurationCommandInput, DeleteTLSInspectionConfigurationCommandOutput } from "./commands/DeleteTLSInspectionConfigurationCommand";
 import { DescribeFirewallCommandInput, DescribeFirewallCommandOutput } from "./commands/DescribeFirewallCommand";
 import { DescribeFirewallPolicyCommandInput, DescribeFirewallPolicyCommandOutput } from "./commands/DescribeFirewallPolicyCommand";
 import { DescribeLoggingConfigurationCommandInput, DescribeLoggingConfigurationCommandOutput } from "./commands/DescribeLoggingConfigurationCommand";
 import { DescribeResourcePolicyCommandInput, DescribeResourcePolicyCommandOutput } from "./commands/DescribeResourcePolicyCommand";
 import { DescribeRuleGroupCommandInput, DescribeRuleGroupCommandOutput } from "./commands/DescribeRuleGroupCommand";
 import { DescribeRuleGroupMetadataCommandInput, DescribeRuleGroupMetadataCommandOutput } from "./commands/DescribeRuleGroupMetadataCommand";
+import { DescribeTLSInspectionConfigurationCommandInput, DescribeTLSInspectionConfigurationCommandOutput } from "./commands/DescribeTLSInspectionConfigurationCommand";
 import { DisassociateSubnetsCommandInput, DisassociateSubnetsCommandOutput } from "./commands/DisassociateSubnetsCommand";
 import { ListFirewallPoliciesCommandInput, ListFirewallPoliciesCommandOutput } from "./commands/ListFirewallPoliciesCommand";
 import { ListFirewallsCommandInput, ListFirewallsCommandOutput } from "./commands/ListFirewallsCommand";
 import { ListRuleGroupsCommandInput, ListRuleGroupsCommandOutput } from "./commands/ListRuleGroupsCommand";
 import { ListTagsForResourceCommandInput, ListTagsForResourceCommandOutput } from "./commands/ListTagsForResourceCommand";
+import { ListTLSInspectionConfigurationsCommandInput, ListTLSInspectionConfigurationsCommandOutput } from "./commands/ListTLSInspectionConfigurationsCommand";
 import { PutResourcePolicyCommandInput, PutResourcePolicyCommandOutput } from "./commands/PutResourcePolicyCommand";
 import { TagResourceCommandInput, TagResourceCommandOutput } from "./commands/TagResourceCommand";
 import { UntagResourceCommandInput, UntagResourceCommandOutput } from "./commands/UntagResourceCommand";
@@ -38,15 +42,16 @@ import { UpdateFirewallPolicyCommandInput, UpdateFirewallPolicyCommandOutput } f
 import { UpdateLoggingConfigurationCommandInput, UpdateLoggingConfigurationCommandOutput } from "./commands/UpdateLoggingConfigurationCommand";
 import { UpdateRuleGroupCommandInput, UpdateRuleGroupCommandOutput } from "./commands/UpdateRuleGroupCommand";
 import { UpdateSubnetChangeProtectionCommandInput, UpdateSubnetChangeProtectionCommandOutput } from "./commands/UpdateSubnetChangeProtectionCommand";
+import { UpdateTLSInspectionConfigurationCommandInput, UpdateTLSInspectionConfigurationCommandOutput } from "./commands/UpdateTLSInspectionConfigurationCommand";
 import { ClientInputEndpointParameters, ClientResolvedEndpointParameters, EndpointParameters } from "./endpoint/EndpointParameters";
 /**
  * @public
  */
-export type ServiceInputTypes = AssociateFirewallPolicyCommandInput | AssociateSubnetsCommandInput | CreateFirewallCommandInput | CreateFirewallPolicyCommandInput | CreateRuleGroupCommandInput | DeleteFirewallCommandInput | DeleteFirewallPolicyCommandInput | DeleteResourcePolicyCommandInput | DeleteRuleGroupCommandInput | DescribeFirewallCommandInput | DescribeFirewallPolicyCommandInput | DescribeLoggingConfigurationCommandInput | DescribeResourcePolicyCommandInput | DescribeRuleGroupCommandInput | DescribeRuleGroupMetadataCommandInput | DisassociateSubnetsCommandInput | ListFirewallPoliciesCommandInput | ListFirewallsCommandInput | ListRuleGroupsCommandInput | ListTagsForResourceCommandInput | PutResourcePolicyCommandInput | TagResourceCommandInput | UntagResourceCommandInput | UpdateFirewallDeleteProtectionCommandInput | UpdateFirewallDescriptionCommandInput | UpdateFirewallEncryptionConfigurationCommandInput | UpdateFirewallPolicyChangeProtectionCommandInput | UpdateFirewallPolicyCommandInput | UpdateLoggingConfigurationCommandInput | UpdateRuleGroupCommandInput | UpdateSubnetChangeProtectionCommandInput;
+export type ServiceInputTypes = AssociateFirewallPolicyCommandInput | AssociateSubnetsCommandInput | CreateFirewallCommandInput | CreateFirewallPolicyCommandInput | CreateRuleGroupCommandInput | CreateTLSInspectionConfigurationCommandInput | DeleteFirewallCommandInput | DeleteFirewallPolicyCommandInput | DeleteResourcePolicyCommandInput | DeleteRuleGroupCommandInput | DeleteTLSInspectionConfigurationCommandInput | DescribeFirewallCommandInput | DescribeFirewallPolicyCommandInput | DescribeLoggingConfigurationCommandInput | DescribeResourcePolicyCommandInput | DescribeRuleGroupCommandInput | DescribeRuleGroupMetadataCommandInput | DescribeTLSInspectionConfigurationCommandInput | DisassociateSubnetsCommandInput | ListFirewallPoliciesCommandInput | ListFirewallsCommandInput | ListRuleGroupsCommandInput | ListTLSInspectionConfigurationsCommandInput | ListTagsForResourceCommandInput | PutResourcePolicyCommandInput | TagResourceCommandInput | UntagResourceCommandInput | UpdateFirewallDeleteProtectionCommandInput | UpdateFirewallDescriptionCommandInput | UpdateFirewallEncryptionConfigurationCommandInput | UpdateFirewallPolicyChangeProtectionCommandInput | UpdateFirewallPolicyCommandInput | UpdateLoggingConfigurationCommandInput | UpdateRuleGroupCommandInput | UpdateSubnetChangeProtectionCommandInput | UpdateTLSInspectionConfigurationCommandInput;
 /**
  * @public
  */
-export type ServiceOutputTypes = AssociateFirewallPolicyCommandOutput | AssociateSubnetsCommandOutput | CreateFirewallCommandOutput | CreateFirewallPolicyCommandOutput | CreateRuleGroupCommandOutput | DeleteFirewallCommandOutput | DeleteFirewallPolicyCommandOutput | DeleteResourcePolicyCommandOutput | DeleteRuleGroupCommandOutput | DescribeFirewallCommandOutput | DescribeFirewallPolicyCommandOutput | DescribeLoggingConfigurationCommandOutput | DescribeResourcePolicyCommandOutput | DescribeRuleGroupCommandOutput | DescribeRuleGroupMetadataCommandOutput | DisassociateSubnetsCommandOutput | ListFirewallPoliciesCommandOutput | ListFirewallsCommandOutput | ListRuleGroupsCommandOutput | ListTagsForResourceCommandOutput | PutResourcePolicyCommandOutput | TagResourceCommandOutput | UntagResourceCommandOutput | UpdateFirewallDeleteProtectionCommandOutput | UpdateFirewallDescriptionCommandOutput | UpdateFirewallEncryptionConfigurationCommandOutput | UpdateFirewallPolicyChangeProtectionCommandOutput | UpdateFirewallPolicyCommandOutput | UpdateLoggingConfigurationCommandOutput | UpdateRuleGroupCommandOutput | UpdateSubnetChangeProtectionCommandOutput;
+export type ServiceOutputTypes = AssociateFirewallPolicyCommandOutput | AssociateSubnetsCommandOutput | CreateFirewallCommandOutput | CreateFirewallPolicyCommandOutput | CreateRuleGroupCommandOutput | CreateTLSInspectionConfigurationCommandOutput | DeleteFirewallCommandOutput | DeleteFirewallPolicyCommandOutput | DeleteResourcePolicyCommandOutput | DeleteRuleGroupCommandOutput | DeleteTLSInspectionConfigurationCommandOutput | DescribeFirewallCommandOutput | DescribeFirewallPolicyCommandOutput | DescribeLoggingConfigurationCommandOutput | DescribeResourcePolicyCommandOutput | DescribeRuleGroupCommandOutput | DescribeRuleGroupMetadataCommandOutput | DescribeTLSInspectionConfigurationCommandOutput | DisassociateSubnetsCommandOutput | ListFirewallPoliciesCommandOutput | ListFirewallsCommandOutput | ListRuleGroupsCommandOutput | ListTLSInspectionConfigurationsCommandOutput | ListTagsForResourceCommandOutput | PutResourcePolicyCommandOutput | TagResourceCommandOutput | UntagResourceCommandOutput | UpdateFirewallDeleteProtectionCommandOutput | UpdateFirewallDescriptionCommandOutput | UpdateFirewallEncryptionConfigurationCommandOutput | UpdateFirewallPolicyChangeProtectionCommandOutput | UpdateFirewallPolicyCommandOutput | UpdateLoggingConfigurationCommandOutput | UpdateRuleGroupCommandOutput | UpdateSubnetChangeProtectionCommandOutput | UpdateTLSInspectionConfigurationCommandOutput;
 /**
  * @public
  */

package/dist-types/commands/CreateFirewallPolicyCommand.d.ts CHANGED Viewed

@@ -74,6 +74,7 @@ export interface CreateFirewallPolicyCommandOutput extends CreateFirewallPolicyR
  *       RuleOrder: "DEFAULT_ACTION_ORDER" || "STRICT_ORDER",
  *       StreamExceptionPolicy: "DROP" || "CONTINUE",
  *     },
+ *     TLSInspectionConfigurationArn: "STRING_VALUE",
  *   },
  *   Description: "STRING_VALUE",
  *   Tags: [ // TagList

package/dist-types/commands/CreateTLSInspectionConfigurationCommand.d.ts ADDED Viewed

@@ -0,0 +1,145 @@
+import { EndpointParameterInstructions } from "@aws-sdk/middleware-endpoint";
+import { Command as $Command } from "@aws-sdk/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
+import { CreateTLSInspectionConfigurationRequest, CreateTLSInspectionConfigurationResponse } from "../models/models_0";
+import { NetworkFirewallClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../NetworkFirewallClient";
+/**
+ * @public
+ *
+ * The input for {@link CreateTLSInspectionConfigurationCommand}.
+ */
+export interface CreateTLSInspectionConfigurationCommandInput extends CreateTLSInspectionConfigurationRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link CreateTLSInspectionConfigurationCommand}.
+ */
+export interface CreateTLSInspectionConfigurationCommandOutput extends CreateTLSInspectionConfigurationResponse, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>Creates an Network Firewall TLS inspection configuration. A TLS inspection configuration contains the Certificate Manager certificate references that Network Firewall uses to decrypt and re-encrypt inbound traffic.</p>
+ *          <p>After you create a TLS inspection configuration, you associate it with a firewall policy.</p>
+ *          <p>To update the settings for a TLS inspection configuration, use <a>UpdateTLSInspectionConfiguration</a>.</p>
+ *          <p>To manage a TLS inspection configuration's tags, use the standard Amazon Web Services resource tagging operations, <a>ListTagsForResource</a>, <a>TagResource</a>, and <a>UntagResource</a>.</p>
+ *          <p>To retrieve information about TLS inspection configurations, use <a>ListTLSInspectionConfigurations</a> and <a>DescribeTLSInspectionConfiguration</a>.</p>
+ *          <p>
+ *               For more information about TLS inspection configurations, see <a href="https://docs.aws.amazon.com/network-firewall/latest/developerguide/tls-inspection.html">Decrypting SSL/TLS traffic with TLS
+ * inspection configurations</a> in the <i>Network Firewall Developer Guide</i>.
+ *             </p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { NetworkFirewallClient, CreateTLSInspectionConfigurationCommand } from "@aws-sdk/client-network-firewall"; // ES Modules import
+ * // const { NetworkFirewallClient, CreateTLSInspectionConfigurationCommand } = require("@aws-sdk/client-network-firewall"); // CommonJS import
+ * const client = new NetworkFirewallClient(config);
+ * const input = { // CreateTLSInspectionConfigurationRequest
+ *   TLSInspectionConfigurationName: "STRING_VALUE", // required
+ *   TLSInspectionConfiguration: { // TLSInspectionConfiguration
+ *     ServerCertificateConfigurations: [ // ServerCertificateConfigurations
+ *       { // ServerCertificateConfiguration
+ *         ServerCertificates: [ // ServerCertificates
+ *           { // ServerCertificate
+ *             ResourceArn: "STRING_VALUE",
+ *           },
+ *         ],
+ *         Scopes: [ // ServerCertificateScopes
+ *           { // ServerCertificateScope
+ *             Sources: [ // Addresses
+ *               { // Address
+ *                 AddressDefinition: "STRING_VALUE", // required
+ *               },
+ *             ],
+ *             Destinations: [
+ *               {
+ *                 AddressDefinition: "STRING_VALUE", // required
+ *               },
+ *             ],
+ *             SourcePorts: [ // PortRanges
+ *               { // PortRange
+ *                 FromPort: Number("int"), // required
+ *                 ToPort: Number("int"), // required
+ *               },
+ *             ],
+ *             DestinationPorts: [
+ *               {
+ *                 FromPort: Number("int"), // required
+ *                 ToPort: Number("int"), // required
+ *               },
+ *             ],
+ *             Protocols: [ // ProtocolNumbers
+ *               Number("int"),
+ *             ],
+ *           },
+ *         ],
+ *       },
+ *     ],
+ *   },
+ *   Description: "STRING_VALUE",
+ *   Tags: [ // TagList
+ *     { // Tag
+ *       Key: "STRING_VALUE", // required
+ *       Value: "STRING_VALUE", // required
+ *     },
+ *   ],
+ *   EncryptionConfiguration: { // EncryptionConfiguration
+ *     KeyId: "STRING_VALUE",
+ *     Type: "CUSTOMER_KMS" || "AWS_OWNED_KMS_KEY", // required
+ *   },
+ * };
+ * const command = new CreateTLSInspectionConfigurationCommand(input);
+ * const response = await client.send(command);
+ * ```
+ *
+ * @param CreateTLSInspectionConfigurationCommandInput - {@link CreateTLSInspectionConfigurationCommandInput}
+ * @returns {@link CreateTLSInspectionConfigurationCommandOutput}
+ * @see {@link CreateTLSInspectionConfigurationCommandInput} for command's `input` shape.
+ * @see {@link CreateTLSInspectionConfigurationCommandOutput} for command's `response` shape.
+ * @see {@link NetworkFirewallClientResolvedConfig | config} for NetworkFirewallClient's `config` shape.
+ *
+ * @throws {@link InternalServerError} (server fault)
+ *  <p>Your request is valid, but Network Firewall couldn’t perform the operation because of a
+ *          system problem. Retry your request. </p>
+ *
+ * @throws {@link InvalidRequestException} (client fault)
+ *  <p>The operation failed because of a problem with your request. Examples include: </p>
+ *          <ul>
+ *             <li>
+ *                <p>You specified an unsupported parameter name or value.</p>
+ *             </li>
+ *             <li>
+ *                <p>You tried to update a property with a value that isn't among the available
+ *                types.</p>
+ *             </li>
+ *             <li>
+ *                <p>Your request references an ARN that is malformed, or corresponds to a resource
+ *                that isn't valid in the context of the request.</p>
+ *             </li>
+ *          </ul>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>Unable to process the request due to throttling limitations.</p>
+ *
+ *
+ */
+export declare class CreateTLSInspectionConfigurationCommand extends $Command<CreateTLSInspectionConfigurationCommandInput, CreateTLSInspectionConfigurationCommandOutput, NetworkFirewallClientResolvedConfig> {
+    readonly input: CreateTLSInspectionConfigurationCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: CreateTLSInspectionConfigurationCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: NetworkFirewallClientResolvedConfig, options?: __HttpHandlerOptions): Handler<CreateTLSInspectionConfigurationCommandInput, CreateTLSInspectionConfigurationCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/DeleteTLSInspectionConfigurationCommand.d.ts ADDED Viewed

@@ -0,0 +1,94 @@
+import { EndpointParameterInstructions } from "@aws-sdk/middleware-endpoint";
+import { Command as $Command } from "@aws-sdk/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
+import { DeleteTLSInspectionConfigurationRequest, DeleteTLSInspectionConfigurationResponse } from "../models/models_0";
+import { NetworkFirewallClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../NetworkFirewallClient";
+/**
+ * @public
+ *
+ * The input for {@link DeleteTLSInspectionConfigurationCommand}.
+ */
+export interface DeleteTLSInspectionConfigurationCommandInput extends DeleteTLSInspectionConfigurationRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link DeleteTLSInspectionConfigurationCommand}.
+ */
+export interface DeleteTLSInspectionConfigurationCommandOutput extends DeleteTLSInspectionConfigurationResponse, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>Deletes the specified <a>TLSInspectionConfiguration</a>.</p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { NetworkFirewallClient, DeleteTLSInspectionConfigurationCommand } from "@aws-sdk/client-network-firewall"; // ES Modules import
+ * // const { NetworkFirewallClient, DeleteTLSInspectionConfigurationCommand } = require("@aws-sdk/client-network-firewall"); // CommonJS import
+ * const client = new NetworkFirewallClient(config);
+ * const input = { // DeleteTLSInspectionConfigurationRequest
+ *   TLSInspectionConfigurationArn: "STRING_VALUE",
+ *   TLSInspectionConfigurationName: "STRING_VALUE",
+ * };
+ * const command = new DeleteTLSInspectionConfigurationCommand(input);
+ * const response = await client.send(command);
+ * ```
+ *
+ * @param DeleteTLSInspectionConfigurationCommandInput - {@link DeleteTLSInspectionConfigurationCommandInput}
+ * @returns {@link DeleteTLSInspectionConfigurationCommandOutput}
+ * @see {@link DeleteTLSInspectionConfigurationCommandInput} for command's `input` shape.
+ * @see {@link DeleteTLSInspectionConfigurationCommandOutput} for command's `response` shape.
+ * @see {@link NetworkFirewallClientResolvedConfig | config} for NetworkFirewallClient's `config` shape.
+ *
+ * @throws {@link InternalServerError} (server fault)
+ *  <p>Your request is valid, but Network Firewall couldn’t perform the operation because of a
+ *          system problem. Retry your request. </p>
+ *
+ * @throws {@link InvalidOperationException} (client fault)
+ *  <p>The operation failed because it's not valid. For example, you might have tried to delete
+ *          a rule group or firewall policy that's in use.</p>
+ *
+ * @throws {@link InvalidRequestException} (client fault)
+ *  <p>The operation failed because of a problem with your request. Examples include: </p>
+ *          <ul>
+ *             <li>
+ *                <p>You specified an unsupported parameter name or value.</p>
+ *             </li>
+ *             <li>
+ *                <p>You tried to update a property with a value that isn't among the available
+ *                types.</p>
+ *             </li>
+ *             <li>
+ *                <p>Your request references an ARN that is malformed, or corresponds to a resource
+ *                that isn't valid in the context of the request.</p>
+ *             </li>
+ *          </ul>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>Unable to locate a resource using the parameters that you provided.</p>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>Unable to process the request due to throttling limitations.</p>
+ *
+ *
+ */
+export declare class DeleteTLSInspectionConfigurationCommand extends $Command<DeleteTLSInspectionConfigurationCommandInput, DeleteTLSInspectionConfigurationCommandOutput, NetworkFirewallClientResolvedConfig> {
+    readonly input: DeleteTLSInspectionConfigurationCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: DeleteTLSInspectionConfigurationCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: NetworkFirewallClientResolvedConfig, options?: __HttpHandlerOptions): Handler<DeleteTLSInspectionConfigurationCommandInput, DeleteTLSInspectionConfigurationCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/DescribeTLSInspectionConfigurationCommand.d.ts ADDED Viewed

@@ -0,0 +1,90 @@
+import { EndpointParameterInstructions } from "@aws-sdk/middleware-endpoint";
+import { Command as $Command } from "@aws-sdk/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
+import { DescribeTLSInspectionConfigurationRequest, DescribeTLSInspectionConfigurationResponse } from "../models/models_0";
+import { NetworkFirewallClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../NetworkFirewallClient";
+/**
+ * @public
+ *
+ * The input for {@link DescribeTLSInspectionConfigurationCommand}.
+ */
+export interface DescribeTLSInspectionConfigurationCommandInput extends DescribeTLSInspectionConfigurationRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link DescribeTLSInspectionConfigurationCommand}.
+ */
+export interface DescribeTLSInspectionConfigurationCommandOutput extends DescribeTLSInspectionConfigurationResponse, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>Returns the data objects for the specified TLS inspection configuration.</p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { NetworkFirewallClient, DescribeTLSInspectionConfigurationCommand } from "@aws-sdk/client-network-firewall"; // ES Modules import
+ * // const { NetworkFirewallClient, DescribeTLSInspectionConfigurationCommand } = require("@aws-sdk/client-network-firewall"); // CommonJS import
+ * const client = new NetworkFirewallClient(config);
+ * const input = { // DescribeTLSInspectionConfigurationRequest
+ *   TLSInspectionConfigurationArn: "STRING_VALUE",
+ *   TLSInspectionConfigurationName: "STRING_VALUE",
+ * };
+ * const command = new DescribeTLSInspectionConfigurationCommand(input);
+ * const response = await client.send(command);
+ * ```
+ *
+ * @param DescribeTLSInspectionConfigurationCommandInput - {@link DescribeTLSInspectionConfigurationCommandInput}
+ * @returns {@link DescribeTLSInspectionConfigurationCommandOutput}
+ * @see {@link DescribeTLSInspectionConfigurationCommandInput} for command's `input` shape.
+ * @see {@link DescribeTLSInspectionConfigurationCommandOutput} for command's `response` shape.
+ * @see {@link NetworkFirewallClientResolvedConfig | config} for NetworkFirewallClient's `config` shape.
+ *
+ * @throws {@link InternalServerError} (server fault)
+ *  <p>Your request is valid, but Network Firewall couldn’t perform the operation because of a
+ *          system problem. Retry your request. </p>
+ *
+ * @throws {@link InvalidRequestException} (client fault)
+ *  <p>The operation failed because of a problem with your request. Examples include: </p>
+ *          <ul>
+ *             <li>
+ *                <p>You specified an unsupported parameter name or value.</p>
+ *             </li>
+ *             <li>
+ *                <p>You tried to update a property with a value that isn't among the available
+ *                types.</p>
+ *             </li>
+ *             <li>
+ *                <p>Your request references an ARN that is malformed, or corresponds to a resource
+ *                that isn't valid in the context of the request.</p>
+ *             </li>
+ *          </ul>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>Unable to locate a resource using the parameters that you provided.</p>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>Unable to process the request due to throttling limitations.</p>
+ *
+ *
+ */
+export declare class DescribeTLSInspectionConfigurationCommand extends $Command<DescribeTLSInspectionConfigurationCommandInput, DescribeTLSInspectionConfigurationCommandOutput, NetworkFirewallClientResolvedConfig> {
+    readonly input: DescribeTLSInspectionConfigurationCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: DescribeTLSInspectionConfigurationCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: NetworkFirewallClientResolvedConfig, options?: __HttpHandlerOptions): Handler<DescribeTLSInspectionConfigurationCommandInput, DescribeTLSInspectionConfigurationCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/ListTLSInspectionConfigurationsCommand.d.ts ADDED Viewed

@@ -0,0 +1,87 @@
+import { EndpointParameterInstructions } from "@aws-sdk/middleware-endpoint";
+import { Command as $Command } from "@aws-sdk/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
+import { ListTLSInspectionConfigurationsRequest, ListTLSInspectionConfigurationsResponse } from "../models/models_0";
+import { NetworkFirewallClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../NetworkFirewallClient";
+/**
+ * @public
+ *
+ * The input for {@link ListTLSInspectionConfigurationsCommand}.
+ */
+export interface ListTLSInspectionConfigurationsCommandInput extends ListTLSInspectionConfigurationsRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link ListTLSInspectionConfigurationsCommand}.
+ */
+export interface ListTLSInspectionConfigurationsCommandOutput extends ListTLSInspectionConfigurationsResponse, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>Retrieves the metadata for the TLS inspection configurations that you have defined. Depending on your setting for max results and the number of TLS inspection configurations, a single call might not return the full list.</p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { NetworkFirewallClient, ListTLSInspectionConfigurationsCommand } from "@aws-sdk/client-network-firewall"; // ES Modules import
+ * // const { NetworkFirewallClient, ListTLSInspectionConfigurationsCommand } = require("@aws-sdk/client-network-firewall"); // CommonJS import
+ * const client = new NetworkFirewallClient(config);
+ * const input = { // ListTLSInspectionConfigurationsRequest
+ *   NextToken: "STRING_VALUE",
+ *   MaxResults: Number("int"),
+ * };
+ * const command = new ListTLSInspectionConfigurationsCommand(input);
+ * const response = await client.send(command);
+ * ```
+ *
+ * @param ListTLSInspectionConfigurationsCommandInput - {@link ListTLSInspectionConfigurationsCommandInput}
+ * @returns {@link ListTLSInspectionConfigurationsCommandOutput}
+ * @see {@link ListTLSInspectionConfigurationsCommandInput} for command's `input` shape.
+ * @see {@link ListTLSInspectionConfigurationsCommandOutput} for command's `response` shape.
+ * @see {@link NetworkFirewallClientResolvedConfig | config} for NetworkFirewallClient's `config` shape.
+ *
+ * @throws {@link InternalServerError} (server fault)
+ *  <p>Your request is valid, but Network Firewall couldn’t perform the operation because of a
+ *          system problem. Retry your request. </p>
+ *
+ * @throws {@link InvalidRequestException} (client fault)
+ *  <p>The operation failed because of a problem with your request. Examples include: </p>
+ *          <ul>
+ *             <li>
+ *                <p>You specified an unsupported parameter name or value.</p>
+ *             </li>
+ *             <li>
+ *                <p>You tried to update a property with a value that isn't among the available
+ *                types.</p>
+ *             </li>
+ *             <li>
+ *                <p>Your request references an ARN that is malformed, or corresponds to a resource
+ *                that isn't valid in the context of the request.</p>
+ *             </li>
+ *          </ul>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>Unable to process the request due to throttling limitations.</p>
+ *
+ *
+ */
+export declare class ListTLSInspectionConfigurationsCommand extends $Command<ListTLSInspectionConfigurationsCommandInput, ListTLSInspectionConfigurationsCommandOutput, NetworkFirewallClientResolvedConfig> {
+    readonly input: ListTLSInspectionConfigurationsCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: ListTLSInspectionConfigurationsCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: NetworkFirewallClientResolvedConfig, options?: __HttpHandlerOptions): Handler<ListTLSInspectionConfigurationsCommandInput, ListTLSInspectionConfigurationsCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/UpdateFirewallPolicyCommand.d.ts CHANGED Viewed

@@ -73,6 +73,7 @@ export interface UpdateFirewallPolicyCommandOutput extends UpdateFirewallPolicyR
  *       RuleOrder: "DEFAULT_ACTION_ORDER" || "STRICT_ORDER",
  *       StreamExceptionPolicy: "DROP" || "CONTINUE",
  *     },
+ *     TLSInspectionConfigurationArn: "STRING_VALUE",
  *   },
  *   Description: "STRING_VALUE",
  *   DryRun: true || false,