Struct aws_sdk_fms::model::ResourceViolation
source · [−]#[non_exhaustive]pub struct ResourceViolation {Show 17 fields
pub aws_vpc_security_group_violation: Option<AwsVpcSecurityGroupViolation>,
pub aws_ec2_network_interface_violation: Option<AwsEc2NetworkInterfaceViolation>,
pub aws_ec2_instance_violation: Option<AwsEc2InstanceViolation>,
pub network_firewall_missing_firewall_violation: Option<NetworkFirewallMissingFirewallViolation>,
pub network_firewall_missing_subnet_violation: Option<NetworkFirewallMissingSubnetViolation>,
pub network_firewall_missing_expected_rt_violation: Option<NetworkFirewallMissingExpectedRtViolation>,
pub network_firewall_policy_modified_violation: Option<NetworkFirewallPolicyModifiedViolation>,
pub network_firewall_internet_traffic_not_inspected_violation: Option<NetworkFirewallInternetTrafficNotInspectedViolation>,
pub network_firewall_invalid_route_configuration_violation: Option<NetworkFirewallInvalidRouteConfigurationViolation>,
pub network_firewall_black_hole_route_detected_violation: Option<NetworkFirewallBlackHoleRouteDetectedViolation>,
pub network_firewall_unexpected_firewall_routes_violation: Option<NetworkFirewallUnexpectedFirewallRoutesViolation>,
pub network_firewall_unexpected_gateway_routes_violation: Option<NetworkFirewallUnexpectedGatewayRoutesViolation>,
pub network_firewall_missing_expected_routes_violation: Option<NetworkFirewallMissingExpectedRoutesViolation>,
pub dns_rule_group_priority_conflict_violation: Option<DnsRuleGroupPriorityConflictViolation>,
pub dns_duplicate_rule_group_violation: Option<DnsDuplicateRuleGroupViolation>,
pub dns_rule_group_limit_exceeded_violation: Option<DnsRuleGroupLimitExceededViolation>,
pub possible_remediation_actions: Option<PossibleRemediationActions>,
}
Expand description
Violation detail based on resource type.
Fields (Non-exhaustive)
This struct is marked as non-exhaustive
Struct { .. }
syntax; cannot be matched against without a wildcard ..
; and struct update syntax will not work.aws_vpc_security_group_violation: Option<AwsVpcSecurityGroupViolation>
Violation detail for security groups.
aws_ec2_network_interface_violation: Option<AwsEc2NetworkInterfaceViolation>
Violation detail for a network interface.
aws_ec2_instance_violation: Option<AwsEc2InstanceViolation>
Violation detail for an EC2 instance.
network_firewall_missing_firewall_violation: Option<NetworkFirewallMissingFirewallViolation>
Violation detail for an Network Firewall policy that indicates that a subnet has no Firewall Manager managed firewall in its VPC.
network_firewall_missing_subnet_violation: Option<NetworkFirewallMissingSubnetViolation>
Violation detail for an Network Firewall policy that indicates that an Availability Zone is missing the expected Firewall Manager managed subnet.
network_firewall_missing_expected_rt_violation: Option<NetworkFirewallMissingExpectedRtViolation>
Violation detail for an Network Firewall policy that indicates that a subnet is not associated with the expected Firewall Manager managed route table.
network_firewall_policy_modified_violation: Option<NetworkFirewallPolicyModifiedViolation>
Violation detail for an Network Firewall policy that indicates that a firewall policy in an individual account has been modified in a way that makes it noncompliant. For example, the individual account owner might have deleted a rule group, changed the priority of a stateless rule group, or changed a policy default action.
network_firewall_internet_traffic_not_inspected_violation: Option<NetworkFirewallInternetTrafficNotInspectedViolation>
Violation detail for the subnet for which internet traffic hasn't been inspected.
network_firewall_invalid_route_configuration_violation: Option<NetworkFirewallInvalidRouteConfigurationViolation>
The route configuration is invalid.
network_firewall_black_hole_route_detected_violation: Option<NetworkFirewallBlackHoleRouteDetectedViolation>
Violation detail for an internet gateway route with an inactive state in the customer subnet route table or Network Firewall subnet route table.
network_firewall_unexpected_firewall_routes_violation: Option<NetworkFirewallUnexpectedFirewallRoutesViolation>
There's an unexpected firewall route.
network_firewall_unexpected_gateway_routes_violation: Option<NetworkFirewallUnexpectedGatewayRoutesViolation>
There's an unexpected gateway route.
network_firewall_missing_expected_routes_violation: Option<NetworkFirewallMissingExpectedRoutesViolation>
Expected routes are missing from Network Firewall.
dns_rule_group_priority_conflict_violation: Option<DnsRuleGroupPriorityConflictViolation>
Violation detail for a DNS Firewall policy that indicates that a rule group that Firewall Manager tried to associate with a VPC has the same priority as a rule group that's already associated.
dns_duplicate_rule_group_violation: Option<DnsDuplicateRuleGroupViolation>
Violation detail for a DNS Firewall policy that indicates that a rule group that Firewall Manager tried to associate with a VPC is already associated with the VPC and can't be associated again.
dns_rule_group_limit_exceeded_violation: Option<DnsRuleGroupLimitExceededViolation>
Violation detail for a DNS Firewall policy that indicates that the VPC reached the limit for associated DNS Firewall rule groups. Firewall Manager tried to associate another rule group with the VPC and failed.
possible_remediation_actions: Option<PossibleRemediationActions>
A list of possible remediation action lists. Each individual possible remediation action is a list of individual remediation actions.
Implementations
Violation detail for security groups.
pub fn aws_ec2_network_interface_violation(
&self
) -> Option<&AwsEc2NetworkInterfaceViolation>
pub fn aws_ec2_network_interface_violation(
&self
) -> Option<&AwsEc2NetworkInterfaceViolation>
Violation detail for a network interface.
Violation detail for an EC2 instance.
Violation detail for an Network Firewall policy that indicates that a subnet has no Firewall Manager managed firewall in its VPC.
Violation detail for an Network Firewall policy that indicates that an Availability Zone is missing the expected Firewall Manager managed subnet.
Violation detail for an Network Firewall policy that indicates that a subnet is not associated with the expected Firewall Manager managed route table.
Violation detail for an Network Firewall policy that indicates that a firewall policy in an individual account has been modified in a way that makes it noncompliant. For example, the individual account owner might have deleted a rule group, changed the priority of a stateless rule group, or changed a policy default action.
Violation detail for the subnet for which internet traffic hasn't been inspected.
The route configuration is invalid.
Violation detail for an internet gateway route with an inactive state in the customer subnet route table or Network Firewall subnet route table.
There's an unexpected firewall route.
There's an unexpected gateway route.
Expected routes are missing from Network Firewall.
Violation detail for a DNS Firewall policy that indicates that a rule group that Firewall Manager tried to associate with a VPC has the same priority as a rule group that's already associated.
Violation detail for a DNS Firewall policy that indicates that a rule group that Firewall Manager tried to associate with a VPC is already associated with the VPC and can't be associated again.
pub fn dns_rule_group_limit_exceeded_violation(
&self
) -> Option<&DnsRuleGroupLimitExceededViolation>
pub fn dns_rule_group_limit_exceeded_violation(
&self
) -> Option<&DnsRuleGroupLimitExceededViolation>
Violation detail for a DNS Firewall policy that indicates that the VPC reached the limit for associated DNS Firewall rule groups. Firewall Manager tried to associate another rule group with the VPC and failed.
A list of possible remediation action lists. Each individual possible remediation action is a list of individual remediation actions.
Creates a new builder-style object to manufacture ResourceViolation
Trait Implementations
This method tests for self
and other
values to be equal, and is used
by ==
. Read more
This method tests for !=
.
Auto Trait Implementations
impl RefUnwindSafe for ResourceViolation
impl Send for ResourceViolation
impl Sync for ResourceViolation
impl Unpin for ResourceViolation
impl UnwindSafe for ResourceViolation
Blanket Implementations
Mutably borrows from an owned value. Read more
Attaches the provided Subscriber
to this type, returning a
WithDispatch
wrapper. Read more
Attaches the current default Subscriber
to this type, returning a
WithDispatch
wrapper. Read more