@aws-sdk/client-network-firewall 3.679.0 → 3.683.0

package/README.md

@@ -32,9 +32,7 @@ Guide</a>.</p>
 prevention service for Amazon Virtual Private Cloud (Amazon VPC). With Network Firewall, you can filter traffic at the
 perimeter of your VPC. This includes filtering traffic going to and coming from an internet
 gateway, NAT gateway, or over VPN or Direct Connect. Network Firewall uses rules that are compatible
-with Suricata, a free, open source network analysis and threat detection engine.
-Network Firewall supports Suricata version 6.0.9. For information about Suricata,
-see the <a href="https://suricata.io/">Suricata website</a>.</p>
+with Suricata, a free, open source network analysis and threat detection engine. </p>
 <p>You can use Network Firewall to monitor and protect your VPC traffic in a number of ways.
 The following are just a few examples: </p>
 <ul>
@@ -87,7 +85,7 @@ endpoints.</p>
 
 ## Installing
 
-To install the this package, simply type add or install @aws-sdk/client-network-firewall
+To install this package, simply type add or install @aws-sdk/client-network-firewall
 using your favorite package manager:
 
 - `npm install @aws-sdk/client-network-firewall`

package/dist-types/NetworkFirewall.d.ts

@@ -298,9 +298,7 @@ export interface NetworkFirewall {
  *          prevention service for Amazon Virtual Private Cloud (Amazon VPC). With Network Firewall, you can filter traffic at the
  *          perimeter of your VPC. This includes filtering traffic going to and coming from an internet
  *          gateway, NAT gateway, or over VPN or Direct Connect. Network Firewall uses rules that are compatible
- *       with Suricata, a free, open source network analysis and threat detection engine.
- *       Network Firewall supports Suricata version 6.0.9. For information about Suricata,
- *           see the <a href="https://suricata.io/">Suricata website</a>.</p>
+ *       with Suricata, a free, open source network analysis and threat detection engine. </p>
  *          <p>You can use Network Firewall to monitor and protect your VPC traffic in a number of ways.
  *          The following are just a few examples: </p>
  *          <ul>

package/dist-types/NetworkFirewallClient.d.ts

@@ -213,9 +213,7 @@ export interface NetworkFirewallClientResolvedConfig extends NetworkFirewallClie
  *          prevention service for Amazon Virtual Private Cloud (Amazon VPC). With Network Firewall, you can filter traffic at the
  *          perimeter of your VPC. This includes filtering traffic going to and coming from an internet
  *          gateway, NAT gateway, or over VPN or Direct Connect. Network Firewall uses rules that are compatible
- *       with Suricata, a free, open source network analysis and threat detection engine.
- *       Network Firewall supports Suricata version 6.0.9. For information about Suricata,
- *           see the <a href="https://suricata.io/">Suricata website</a>.</p>
+ *       with Suricata, a free, open source network analysis and threat detection engine. </p>
  *          <p>You can use Network Firewall to monitor and protect your VPC traffic in a number of ways.
  *          The following are just a few examples: </p>
  *          <ul>

package/dist-types/commands/CreateFirewallPolicyCommand.d.ts

@@ -81,6 +81,9 @@ declare const CreateFirewallPolicyCommand_base: {
  *     StatefulEngineOptions: { // StatefulEngineOptions
  *       RuleOrder: "DEFAULT_ACTION_ORDER" || "STRICT_ORDER",
  *       StreamExceptionPolicy: "DROP" || "CONTINUE" || "REJECT",
+ *       FlowTimeouts: { // FlowTimeouts
+ *         TcpIdleTimeoutSeconds: Number("int"),
+ *       },
  *     },
  *     TLSInspectionConfigurationArn: "STRING_VALUE",
  *     PolicyVariables: { // PolicyVariables

package/dist-types/commands/DescribeFirewallPolicyCommand.d.ts

@@ -105,6 +105,9 @@ declare const DescribeFirewallPolicyCommand_base: {
  * //     StatefulEngineOptions: { // StatefulEngineOptions
  * //       RuleOrder: "DEFAULT_ACTION_ORDER" || "STRICT_ORDER",
  * //       StreamExceptionPolicy: "DROP" || "CONTINUE" || "REJECT",
+ * //       FlowTimeouts: { // FlowTimeouts
+ * //         TcpIdleTimeoutSeconds: Number("int"),
+ * //       },
  * //     },
  * //     TLSInspectionConfigurationArn: "STRING_VALUE",
  * //     PolicyVariables: { // PolicyVariables

package/dist-types/commands/UpdateFirewallPolicyCommand.d.ts

@@ -80,6 +80,9 @@ declare const UpdateFirewallPolicyCommand_base: {
  *     StatefulEngineOptions: { // StatefulEngineOptions
  *       RuleOrder: "DEFAULT_ACTION_ORDER" || "STRICT_ORDER",
  *       StreamExceptionPolicy: "DROP" || "CONTINUE" || "REJECT",
+ *       FlowTimeouts: { // FlowTimeouts
+ *         TcpIdleTimeoutSeconds: Number("int"),
+ *       },
  *     },
  *     TLSInspectionConfigurationArn: "STRING_VALUE",
  *     PolicyVariables: { // PolicyVariables

package/dist-types/index.d.ts

@@ -25,9 +25,7 @@
  *          prevention service for Amazon Virtual Private Cloud (Amazon VPC). With Network Firewall, you can filter traffic at the
  *          perimeter of your VPC. This includes filtering traffic going to and coming from an internet
  *          gateway, NAT gateway, or over VPN or Direct Connect. Network Firewall uses rules that are compatible
- *       with Suricata, a free, open source network analysis and threat detection engine.
- *       Network Firewall supports Suricata version 6.0.9. For information about Suricata,
- *           see the <a href="https://suricata.io/">Suricata website</a>.</p>
+ *       with Suricata, a free, open source network analysis and threat detection engine. </p>
  *          <p>You can use Network Firewall to monitor and protect your VPC traffic in a number of ways.
  *          The following are just a few examples: </p>
  *          <ul>

package/dist-types/models/models_0.d.ts

@@ -944,6 +944,24 @@ export interface PolicyVariables {
      */
     RuleVariables?: Record<string, IPSet>;
 }
+/**
+ * <p>Describes the amount of time that can pass without any traffic sent through the firewall before the firewall determines that the connection is idle and Network Firewall removes the flow entry from its flow table.
+ *           Existing connections and flows are not impacted when you update this value. Only new connections after you update this value are impacted.
+ *      </p>
+ * @public
+ */
+export interface FlowTimeouts {
+    /**
+     * <p>The number of seconds that can pass without any TCP traffic sent through the firewall before the firewall determines that the connection is idle.
+     *         After the idle timeout passes, data packets are dropped, however, the next TCP SYN packet is considered a new flow and is processed by the firewall.
+     *         Clients or targets can use TCP keepalive packets to reset the idle timeout.
+     *          </p>
+     *          <p>You can define the <code>TcpIdleTimeoutSeconds</code> value to be between 60 and 6000 seconds. If no value is provided, it defaults to 350 seconds.
+     *       </p>
+     * @public
+     */
+    TcpIdleTimeoutSeconds?: number;
+}
 /**
  * @public
  * @enum
@@ -1002,6 +1020,12 @@ export interface StatefulEngineOptions {
      * @public
      */
     StreamExceptionPolicy?: StreamExceptionPolicy;
+    /**
+     * <p>Configures the amount of time that can pass without any traffic sent through the firewall before the firewall determines that the connection is idle.
+     *         </p>
+     * @public
+     */
+    FlowTimeouts?: FlowTimeouts;
 }
 /**
  * @public

package/dist-types/ts3.4/models/models_0.d.ts

@@ -250,6 +250,9 @@ export interface IPSet {
 export interface PolicyVariables {
   RuleVariables?: Record<string, IPSet>;
 }
+export interface FlowTimeouts {
+  TcpIdleTimeoutSeconds?: number;
+}
 export declare const RuleOrder: {
   readonly DEFAULT_ACTION_ORDER: "DEFAULT_ACTION_ORDER";
   readonly STRICT_ORDER: "STRICT_ORDER";
@@ -265,6 +268,7 @@ export type StreamExceptionPolicy =
 export interface StatefulEngineOptions {
   RuleOrder?: RuleOrder;
   StreamExceptionPolicy?: StreamExceptionPolicy;
+  FlowTimeouts?: FlowTimeouts;
 }
 export declare const OverrideAction: {
   readonly DROP_TO_ALERT: "DROP_TO_ALERT";

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-network-firewall",
   "description": "AWS SDK for JavaScript Network Firewall Client for Node.js, Browser and React Native",
-  "version": "3.679.0",
+  "version": "3.683.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-network-firewall",
@@ -20,19 +20,19 @@
   "dependencies": {
     "@aws-crypto/sha256-browser": "5.2.0",
     "@aws-crypto/sha256-js": "5.2.0",
-    "@aws-sdk/client-sso-oidc": "3.679.0",
-    "@aws-sdk/client-sts": "3.679.0",
+    "@aws-sdk/client-sso-oidc": "3.682.0",
+    "@aws-sdk/client-sts": "3.682.0",
     "@aws-sdk/core": "3.679.0",
-    "@aws-sdk/credential-provider-node": "3.679.0",
+    "@aws-sdk/credential-provider-node": "3.682.0",
     "@aws-sdk/middleware-host-header": "3.679.0",
     "@aws-sdk/middleware-logger": "3.679.0",
     "@aws-sdk/middleware-recursion-detection": "3.679.0",
-    "@aws-sdk/middleware-user-agent": "3.679.0",
+    "@aws-sdk/middleware-user-agent": "3.682.0",
     "@aws-sdk/region-config-resolver": "3.679.0",
     "@aws-sdk/types": "3.679.0",
     "@aws-sdk/util-endpoints": "3.679.0",
     "@aws-sdk/util-user-agent-browser": "3.679.0",
-    "@aws-sdk/util-user-agent-node": "3.679.0",
+    "@aws-sdk/util-user-agent-node": "3.682.0",
     "@smithy/config-resolver": "^3.0.9",
     "@smithy/core": "^2.4.8",
     "@smithy/fetch-http-handler": "^3.2.9",