Struct aws_sdk_route53resolver::types::FirewallConfig
source · #[non_exhaustive]pub struct FirewallConfig {
pub id: Option<String>,
pub resource_id: Option<String>,
pub owner_id: Option<String>,
pub firewall_fail_open: Option<FirewallFailOpenStatus>,
}
Expand description
Configuration of the firewall behavior provided by DNS Firewall for a single VPC from Amazon Virtual Private Cloud (Amazon VPC).
Fields (Non-exhaustive)§
This struct is marked as non-exhaustive
Struct { .. }
syntax; cannot be matched against without a wildcard ..
; and struct update syntax will not work.id: Option<String>
The ID of the firewall configuration.
resource_id: Option<String>
The ID of the VPC that this firewall configuration applies to.
owner_id: Option<String>
The Amazon Web Services account ID of the owner of the VPC that this firewall configuration applies to.
firewall_fail_open: Option<FirewallFailOpenStatus>
Determines how DNS Firewall operates during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply.
-
By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall returns a failure error when it is unable to properly evaluate a query.
-
If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them.
This behavior is only enforced for VPCs that have at least one DNS Firewall rule group association.
Implementations§
source§impl FirewallConfig
impl FirewallConfig
sourcepub fn resource_id(&self) -> Option<&str>
pub fn resource_id(&self) -> Option<&str>
The ID of the VPC that this firewall configuration applies to.
sourcepub fn owner_id(&self) -> Option<&str>
pub fn owner_id(&self) -> Option<&str>
The Amazon Web Services account ID of the owner of the VPC that this firewall configuration applies to.
sourcepub fn firewall_fail_open(&self) -> Option<&FirewallFailOpenStatus>
pub fn firewall_fail_open(&self) -> Option<&FirewallFailOpenStatus>
Determines how DNS Firewall operates during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply.
-
By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall returns a failure error when it is unable to properly evaluate a query.
-
If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them.
This behavior is only enforced for VPCs that have at least one DNS Firewall rule group association.
source§impl FirewallConfig
impl FirewallConfig
sourcepub fn builder() -> FirewallConfigBuilder
pub fn builder() -> FirewallConfigBuilder
Creates a new builder-style object to manufacture FirewallConfig
.
Trait Implementations§
source§impl Clone for FirewallConfig
impl Clone for FirewallConfig
source§fn clone(&self) -> FirewallConfig
fn clone(&self) -> FirewallConfig
1.0.0 · source§fn clone_from(&mut self, source: &Self)
fn clone_from(&mut self, source: &Self)
source
. Read moresource§impl Debug for FirewallConfig
impl Debug for FirewallConfig
source§impl PartialEq for FirewallConfig
impl PartialEq for FirewallConfig
source§fn eq(&self, other: &FirewallConfig) -> bool
fn eq(&self, other: &FirewallConfig) -> bool
self
and other
values to be equal, and is used
by ==
.