Struct aws_sdk_networkfirewall::model::RulesSourceList
source · [−]#[non_exhaustive]pub struct RulesSourceList {
pub targets: Option<Vec<String>>,
pub target_types: Option<Vec<TargetType>>,
pub generated_rules_type: Option<GeneratedRulesType>,
}
Expand description
Stateful inspection criteria for a domain list rule group.
For HTTPS traffic, domain filtering is SNI-based. It uses the server name indicator extension of the TLS handshake.
By default, Network Firewall domain list inspection only includes traffic coming from the VPC where you deploy the firewall. To inspect traffic from IP addresses outside of the deployment VPC, you set the HOME_NET
rule variable to include the CIDR range of the deployment VPC plus the other CIDR ranges. For more information, see RuleVariables
in this guide and Stateful domain list rule groups in Network Firewall in the Network Firewall Developer Guide.
Fields (Non-exhaustive)
This struct is marked as non-exhaustive
Struct { .. }
syntax; cannot be matched against without a wildcard ..
; and struct update syntax will not work.targets: Option<Vec<String>>
The domains that you want to inspect for in your traffic flows. Valid domain specifications are the following:
-
Explicit names. For example,
abc.example.com
matches only the domainabc.example.com
. -
Names that use a domain wildcard, which you indicate with an initial '
.
'. For example,.example.com
matchesexample.com
and matches all subdomains ofexample.com
, such asabc.example.com
andwww.example.com
.
target_types: Option<Vec<TargetType>>
The protocols you want to inspect. Specify TLS_SNI
for HTTPS
. Specify HTTP_HOST
for HTTP
. You can specify either or both.
generated_rules_type: Option<GeneratedRulesType>
Whether you want to allow or deny access to the domains in your target list.
Implementations
sourceimpl RulesSourceList
impl RulesSourceList
sourcepub fn targets(&self) -> Option<&[String]>
pub fn targets(&self) -> Option<&[String]>
The domains that you want to inspect for in your traffic flows. Valid domain specifications are the following:
-
Explicit names. For example,
abc.example.com
matches only the domainabc.example.com
. -
Names that use a domain wildcard, which you indicate with an initial '
.
'. For example,.example.com
matchesexample.com
and matches all subdomains ofexample.com
, such asabc.example.com
andwww.example.com
.
sourcepub fn target_types(&self) -> Option<&[TargetType]>
pub fn target_types(&self) -> Option<&[TargetType]>
The protocols you want to inspect. Specify TLS_SNI
for HTTPS
. Specify HTTP_HOST
for HTTP
. You can specify either or both.
sourcepub fn generated_rules_type(&self) -> Option<&GeneratedRulesType>
pub fn generated_rules_type(&self) -> Option<&GeneratedRulesType>
Whether you want to allow or deny access to the domains in your target list.
sourceimpl RulesSourceList
impl RulesSourceList
sourcepub fn builder() -> Builder
pub fn builder() -> Builder
Creates a new builder-style object to manufacture RulesSourceList
Trait Implementations
sourceimpl Clone for RulesSourceList
impl Clone for RulesSourceList
sourcefn clone(&self) -> RulesSourceList
fn clone(&self) -> RulesSourceList
Returns a copy of the value. Read more
1.0.0 · sourcefn clone_from(&mut self, source: &Self)
fn clone_from(&mut self, source: &Self)
Performs copy-assignment from source
. Read more
sourceimpl Debug for RulesSourceList
impl Debug for RulesSourceList
sourceimpl PartialEq<RulesSourceList> for RulesSourceList
impl PartialEq<RulesSourceList> for RulesSourceList
sourcefn eq(&self, other: &RulesSourceList) -> bool
fn eq(&self, other: &RulesSourceList) -> bool
This method tests for self
and other
values to be equal, and is used
by ==
. Read more
sourcefn ne(&self, other: &RulesSourceList) -> bool
fn ne(&self, other: &RulesSourceList) -> bool
This method tests for !=
.
impl StructuralPartialEq for RulesSourceList
Auto Trait Implementations
impl RefUnwindSafe for RulesSourceList
impl Send for RulesSourceList
impl Sync for RulesSourceList
impl Unpin for RulesSourceList
impl UnwindSafe for RulesSourceList
Blanket Implementations
sourceimpl<T> BorrowMut<T> for T where
T: ?Sized,
impl<T> BorrowMut<T> for T where
T: ?Sized,
const: unstable · sourcefn borrow_mut(&mut self) -> &mut T
fn borrow_mut(&mut self) -> &mut T
Mutably borrows from an owned value. Read more
sourceimpl<T> Instrument for T
impl<T> Instrument for T
sourcefn instrument(self, span: Span) -> Instrumented<Self>
fn instrument(self, span: Span) -> Instrumented<Self>
sourcefn in_current_span(self) -> Instrumented<Self>
fn in_current_span(self) -> Instrumented<Self>
sourceimpl<T> ToOwned for T where
T: Clone,
impl<T> ToOwned for T where
T: Clone,
type Owned = T
type Owned = T
The resulting type after obtaining ownership.
sourcefn clone_into(&self, target: &mut T)
fn clone_into(&self, target: &mut T)
toowned_clone_into
)Uses borrowed data to replace owned data, usually by cloning. Read more
sourceimpl<T> WithSubscriber for T
impl<T> WithSubscriber for T
sourcefn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self> where
S: Into<Dispatch>,
fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self> where
S: Into<Dispatch>,
Attaches the provided Subscriber
to this type, returning a
WithDispatch
wrapper. Read more
sourcefn with_current_subscriber(self) -> WithDispatch<Self>
fn with_current_subscriber(self) -> WithDispatch<Self>
Attaches the current default Subscriber
to this type, returning a
WithDispatch
wrapper. Read more