Struct aws_sdk_route53resolver::model::FirewallConfig

#[non_exhaustive]
pub struct FirewallConfig {
    pub id: Option<String>,
    pub resource_id: Option<String>,
    pub owner_id: Option<String>,
    pub firewall_fail_open: Option<FirewallFailOpenStatus>,
}

Configuration of the firewall behavior provided by DNS Firewall for a single VPC from Amazon Virtual Private Cloud (Amazon VPC).

Fields (Non-exhaustive)

Non-exhaustive structs could have additional fields added in future. Therefore, non-exhaustive structs cannot be constructed in external crates using the traditional Struct { .. } syntax; cannot be matched against without a wildcard ..; and struct update syntax will not work.

id: Option<String>

The ID of the firewall configuration.

resource_id: Option<String>

The ID of the VPC that this firewall configuration applies to.

owner_id: Option<String>

The Amazon Web Services account ID of the owner of the VPC that this firewall configuration applies to.

firewall_fail_open: Option<FirewallFailOpenStatus>

Determines how DNS Firewall operates during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply.

• By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall returns a failure error when it is unable to properly evaluate a query.

• If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them.

This behavior is only enforced for VPCs that have at least one DNS Firewall rule group association.

Implementations

impl FirewallConfig

pub fn id(&self) -> Option<&str>

The ID of the firewall configuration.

pub fn resource_id(&self) -> Option<&str>

The ID of the VPC that this firewall configuration applies to.

pub fn owner_id(&self) -> Option<&str>

The Amazon Web Services account ID of the owner of the VPC that this firewall configuration applies to.

pub fn firewall_fail_open(&self) -> Option<&FirewallFailOpenStatus>

Determines how DNS Firewall operates during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply.

• By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall returns a failure error when it is unable to properly evaluate a query.

• If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them.

This behavior is only enforced for VPCs that have at least one DNS Firewall rule group association.

impl FirewallConfig

pub fn builder() -> Builder

Creates a new builder-style object to manufacture FirewallConfig

Trait Implementations

impl Clone for FirewallConfig

fn clone(&self) -> FirewallConfig

Returns a copy of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Debug for FirewallConfig

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl PartialEq<FirewallConfig> for FirewallConfig

fn eq(&self, other: &FirewallConfig) -> bool

This method tests for self and other values to be equal, and is used by ==.

fn ne(&self, other: &FirewallConfig) -> bool

This method tests for !=.

impl StructuralPartialEq for FirewallConfig