Struct aws_sdk_networkfirewall::model::MatchAttributes
source · [−]#[non_exhaustive]pub struct MatchAttributes {
pub sources: Option<Vec<Address>>,
pub destinations: Option<Vec<Address>>,
pub source_ports: Option<Vec<PortRange>>,
pub destination_ports: Option<Vec<PortRange>>,
pub protocols: Option<Vec<i32>>,
pub tcp_flags: Option<Vec<TcpFlagField>>,
}Expand description
Criteria for Network Firewall to use to inspect an individual packet in stateless rule inspection. Each match attributes set can include one or more items such as IP address, CIDR range, port number, protocol, and TCP flags.
Fields (Non-exhaustive)
This struct is marked as non-exhaustive
Struct { .. } syntax; cannot be matched against without a wildcard ..; and struct update syntax will not work.sources: Option<Vec<Address>>The source IP addresses and address ranges to inspect for, in CIDR notation. If not specified, this matches with any source address.
destinations: Option<Vec<Address>>The destination IP addresses and address ranges to inspect for, in CIDR notation. If not specified, this matches with any destination address.
source_ports: Option<Vec<PortRange>>The source ports to inspect for. If not specified, this matches with any source port. This setting is only used for protocols 6 (TCP) and 17 (UDP).
You can specify individual ports, for example 1994 and you can specify port ranges, for example 1990:1994.
destination_ports: Option<Vec<PortRange>>The destination ports to inspect for. If not specified, this matches with any destination port. This setting is only used for protocols 6 (TCP) and 17 (UDP).
You can specify individual ports, for example 1994 and you can specify port ranges, for example 1990:1994.
protocols: Option<Vec<i32>>The protocols to inspect for, specified using each protocol's assigned internet protocol number (IANA). If not specified, this matches with any protocol.
tcp_flags: Option<Vec<TcpFlagField>>The TCP flags and masks to inspect for. If not specified, this matches with any settings. This setting is only used for protocol 6 (TCP).
Implementations
The source IP addresses and address ranges to inspect for, in CIDR notation. If not specified, this matches with any source address.
The destination IP addresses and address ranges to inspect for, in CIDR notation. If not specified, this matches with any destination address.
The source ports to inspect for. If not specified, this matches with any source port. This setting is only used for protocols 6 (TCP) and 17 (UDP).
You can specify individual ports, for example 1994 and you can specify port ranges, for example 1990:1994.
The destination ports to inspect for. If not specified, this matches with any destination port. This setting is only used for protocols 6 (TCP) and 17 (UDP).
You can specify individual ports, for example 1994 and you can specify port ranges, for example 1990:1994.
The protocols to inspect for, specified using each protocol's assigned internet protocol number (IANA). If not specified, this matches with any protocol.
Creates a new builder-style object to manufacture MatchAttributes
Trait Implementations
This method tests for self and other values to be equal, and is used
by ==. Read more
This method tests for !=.
Auto Trait Implementations
impl RefUnwindSafe for MatchAttributes
impl Send for MatchAttributes
impl Sync for MatchAttributes
impl Unpin for MatchAttributes
impl UnwindSafe for MatchAttributes
Blanket Implementations
Mutably borrows from an owned value. Read more
Attaches the provided Subscriber to this type, returning a
WithDispatch wrapper. Read more
Attaches the current default Subscriber to this type, returning a
WithDispatch wrapper. Read more