awsroute53resolver

package
v1.141.0-devpreview Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Jan 27, 2022 License: Apache-2.0 Imports: 8 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func CfnFirewallDomainList_CFN_RESOURCE_TYPE_NAME

func CfnFirewallDomainList_CFN_RESOURCE_TYPE_NAME() *string

func CfnFirewallDomainList_IsCfnElement

func CfnFirewallDomainList_IsCfnElement(x interface{}) *bool

Returns `true` if a construct is a stack element (i.e. part of the synthesized cloudformation template).

Uses duck-typing instead of `instanceof` to allow stack elements from different versions of this library to be included in the same stack.

Returns: The construct as a stack element or undefined if it is not a stack element. Experimental.

func CfnFirewallDomainList_IsCfnResource

func CfnFirewallDomainList_IsCfnResource(construct constructs.IConstruct) *bool

Check whether the given construct is a CfnResource. Experimental.

func CfnFirewallDomainList_IsConstruct

func CfnFirewallDomainList_IsConstruct(x interface{}) *bool

Return whether the given object is a Construct. Experimental.

func CfnFirewallRuleGroupAssociation_CFN_RESOURCE_TYPE_NAME

func CfnFirewallRuleGroupAssociation_CFN_RESOURCE_TYPE_NAME() *string

func CfnFirewallRuleGroupAssociation_IsCfnElement

func CfnFirewallRuleGroupAssociation_IsCfnElement(x interface{}) *bool

Returns `true` if a construct is a stack element (i.e. part of the synthesized cloudformation template).

Uses duck-typing instead of `instanceof` to allow stack elements from different versions of this library to be included in the same stack.

Returns: The construct as a stack element or undefined if it is not a stack element. Experimental.

func CfnFirewallRuleGroupAssociation_IsCfnResource

func CfnFirewallRuleGroupAssociation_IsCfnResource(construct constructs.IConstruct) *bool

Check whether the given construct is a CfnResource. Experimental.

func CfnFirewallRuleGroupAssociation_IsConstruct

func CfnFirewallRuleGroupAssociation_IsConstruct(x interface{}) *bool

Return whether the given object is a Construct. Experimental.

func CfnFirewallRuleGroup_CFN_RESOURCE_TYPE_NAME

func CfnFirewallRuleGroup_CFN_RESOURCE_TYPE_NAME() *string

func CfnFirewallRuleGroup_IsCfnElement

func CfnFirewallRuleGroup_IsCfnElement(x interface{}) *bool

Returns `true` if a construct is a stack element (i.e. part of the synthesized cloudformation template).

Uses duck-typing instead of `instanceof` to allow stack elements from different versions of this library to be included in the same stack.

Returns: The construct as a stack element or undefined if it is not a stack element. Experimental.

func CfnFirewallRuleGroup_IsCfnResource

func CfnFirewallRuleGroup_IsCfnResource(construct constructs.IConstruct) *bool

Check whether the given construct is a CfnResource. Experimental.

func CfnFirewallRuleGroup_IsConstruct

func CfnFirewallRuleGroup_IsConstruct(x interface{}) *bool

Return whether the given object is a Construct. Experimental.

func CfnResolverConfig_CFN_RESOURCE_TYPE_NAME

func CfnResolverConfig_CFN_RESOURCE_TYPE_NAME() *string

func CfnResolverConfig_IsCfnElement

func CfnResolverConfig_IsCfnElement(x interface{}) *bool

Returns `true` if a construct is a stack element (i.e. part of the synthesized cloudformation template).

Uses duck-typing instead of `instanceof` to allow stack elements from different versions of this library to be included in the same stack.

Returns: The construct as a stack element or undefined if it is not a stack element. Experimental.

func CfnResolverConfig_IsCfnResource

func CfnResolverConfig_IsCfnResource(construct constructs.IConstruct) *bool

Check whether the given construct is a CfnResource. Experimental.

func CfnResolverConfig_IsConstruct

func CfnResolverConfig_IsConstruct(x interface{}) *bool

Return whether the given object is a Construct. Experimental.

func CfnResolverDNSSECConfig_CFN_RESOURCE_TYPE_NAME

func CfnResolverDNSSECConfig_CFN_RESOURCE_TYPE_NAME() *string

func CfnResolverDNSSECConfig_IsCfnElement

func CfnResolverDNSSECConfig_IsCfnElement(x interface{}) *bool

Returns `true` if a construct is a stack element (i.e. part of the synthesized cloudformation template).

Uses duck-typing instead of `instanceof` to allow stack elements from different versions of this library to be included in the same stack.

Returns: The construct as a stack element or undefined if it is not a stack element. Experimental.

func CfnResolverDNSSECConfig_IsCfnResource

func CfnResolverDNSSECConfig_IsCfnResource(construct constructs.IConstruct) *bool

Check whether the given construct is a CfnResource. Experimental.

func CfnResolverDNSSECConfig_IsConstruct

func CfnResolverDNSSECConfig_IsConstruct(x interface{}) *bool

Return whether the given object is a Construct. Experimental.

func CfnResolverEndpoint_CFN_RESOURCE_TYPE_NAME

func CfnResolverEndpoint_CFN_RESOURCE_TYPE_NAME() *string

func CfnResolverEndpoint_IsCfnElement

func CfnResolverEndpoint_IsCfnElement(x interface{}) *bool

Returns `true` if a construct is a stack element (i.e. part of the synthesized cloudformation template).

Uses duck-typing instead of `instanceof` to allow stack elements from different versions of this library to be included in the same stack.

Returns: The construct as a stack element or undefined if it is not a stack element. Experimental.

func CfnResolverEndpoint_IsCfnResource

func CfnResolverEndpoint_IsCfnResource(construct constructs.IConstruct) *bool

Check whether the given construct is a CfnResource. Experimental.

func CfnResolverEndpoint_IsConstruct

func CfnResolverEndpoint_IsConstruct(x interface{}) *bool

Return whether the given object is a Construct. Experimental.

func CfnResolverQueryLoggingConfigAssociation_CFN_RESOURCE_TYPE_NAME

func CfnResolverQueryLoggingConfigAssociation_CFN_RESOURCE_TYPE_NAME() *string

func CfnResolverQueryLoggingConfigAssociation_IsCfnElement

func CfnResolverQueryLoggingConfigAssociation_IsCfnElement(x interface{}) *bool

Returns `true` if a construct is a stack element (i.e. part of the synthesized cloudformation template).

Uses duck-typing instead of `instanceof` to allow stack elements from different versions of this library to be included in the same stack.

Returns: The construct as a stack element or undefined if it is not a stack element. Experimental.

func CfnResolverQueryLoggingConfigAssociation_IsCfnResource

func CfnResolverQueryLoggingConfigAssociation_IsCfnResource(construct constructs.IConstruct) *bool

Check whether the given construct is a CfnResource. Experimental.

func CfnResolverQueryLoggingConfigAssociation_IsConstruct

func CfnResolverQueryLoggingConfigAssociation_IsConstruct(x interface{}) *bool

Return whether the given object is a Construct. Experimental.

func CfnResolverQueryLoggingConfig_CFN_RESOURCE_TYPE_NAME

func CfnResolverQueryLoggingConfig_CFN_RESOURCE_TYPE_NAME() *string

func CfnResolverQueryLoggingConfig_IsCfnElement

func CfnResolverQueryLoggingConfig_IsCfnElement(x interface{}) *bool

Returns `true` if a construct is a stack element (i.e. part of the synthesized cloudformation template).

Uses duck-typing instead of `instanceof` to allow stack elements from different versions of this library to be included in the same stack.

Returns: The construct as a stack element or undefined if it is not a stack element. Experimental.

func CfnResolverQueryLoggingConfig_IsCfnResource

func CfnResolverQueryLoggingConfig_IsCfnResource(construct constructs.IConstruct) *bool

Check whether the given construct is a CfnResource. Experimental.

func CfnResolverQueryLoggingConfig_IsConstruct

func CfnResolverQueryLoggingConfig_IsConstruct(x interface{}) *bool

Return whether the given object is a Construct. Experimental.

func CfnResolverRuleAssociation_CFN_RESOURCE_TYPE_NAME

func CfnResolverRuleAssociation_CFN_RESOURCE_TYPE_NAME() *string

func CfnResolverRuleAssociation_IsCfnElement

func CfnResolverRuleAssociation_IsCfnElement(x interface{}) *bool

Returns `true` if a construct is a stack element (i.e. part of the synthesized cloudformation template).

Uses duck-typing instead of `instanceof` to allow stack elements from different versions of this library to be included in the same stack.

Returns: The construct as a stack element or undefined if it is not a stack element. Experimental.

func CfnResolverRuleAssociation_IsCfnResource

func CfnResolverRuleAssociation_IsCfnResource(construct constructs.IConstruct) *bool

Check whether the given construct is a CfnResource. Experimental.

func CfnResolverRuleAssociation_IsConstruct

func CfnResolverRuleAssociation_IsConstruct(x interface{}) *bool

Return whether the given object is a Construct. Experimental.

func CfnResolverRule_CFN_RESOURCE_TYPE_NAME

func CfnResolverRule_CFN_RESOURCE_TYPE_NAME() *string

func CfnResolverRule_IsCfnElement

func CfnResolverRule_IsCfnElement(x interface{}) *bool

Returns `true` if a construct is a stack element (i.e. part of the synthesized cloudformation template).

Uses duck-typing instead of `instanceof` to allow stack elements from different versions of this library to be included in the same stack.

Returns: The construct as a stack element or undefined if it is not a stack element. Experimental.

func CfnResolverRule_IsCfnResource

func CfnResolverRule_IsCfnResource(construct constructs.IConstruct) *bool

Check whether the given construct is a CfnResource. Experimental.

func CfnResolverRule_IsConstruct

func CfnResolverRule_IsConstruct(x interface{}) *bool

Return whether the given object is a Construct. Experimental.

func FirewallDomainList_IsConstruct

func FirewallDomainList_IsConstruct(x interface{}) *bool

Return whether the given object is a Construct. Experimental.

func FirewallDomainList_IsResource

func FirewallDomainList_IsResource(construct awscdk.IConstruct) *bool

Check whether the given construct is a Resource. Experimental.

func FirewallRuleGroupAssociation_IsConstruct

func FirewallRuleGroupAssociation_IsConstruct(x interface{}) *bool

Return whether the given object is a Construct. Experimental.

func FirewallRuleGroupAssociation_IsResource

func FirewallRuleGroupAssociation_IsResource(construct awscdk.IConstruct) *bool

Check whether the given construct is a Resource. Experimental.

func FirewallRuleGroup_IsConstruct

func FirewallRuleGroup_IsConstruct(x interface{}) *bool

Return whether the given object is a Construct. Experimental.

func FirewallRuleGroup_IsResource

func FirewallRuleGroup_IsResource(construct awscdk.IConstruct) *bool

Check whether the given construct is a Resource. Experimental.

func NewCfnFirewallDomainList_Override

func NewCfnFirewallDomainList_Override(c CfnFirewallDomainList, scope awscdk.Construct, id *string, props *CfnFirewallDomainListProps)

Create a new `AWS::Route53Resolver::FirewallDomainList`.

func NewCfnFirewallRuleGroupAssociation_Override

func NewCfnFirewallRuleGroupAssociation_Override(c CfnFirewallRuleGroupAssociation, scope awscdk.Construct, id *string, props *CfnFirewallRuleGroupAssociationProps)

Create a new `AWS::Route53Resolver::FirewallRuleGroupAssociation`.

func NewCfnFirewallRuleGroup_Override

func NewCfnFirewallRuleGroup_Override(c CfnFirewallRuleGroup, scope awscdk.Construct, id *string, props *CfnFirewallRuleGroupProps)

Create a new `AWS::Route53Resolver::FirewallRuleGroup`.

func NewCfnResolverConfig_Override

func NewCfnResolverConfig_Override(c CfnResolverConfig, scope awscdk.Construct, id *string, props *CfnResolverConfigProps)

Create a new `AWS::Route53Resolver::ResolverConfig`.

func NewCfnResolverDNSSECConfig_Override

func NewCfnResolverDNSSECConfig_Override(c CfnResolverDNSSECConfig, scope awscdk.Construct, id *string, props *CfnResolverDNSSECConfigProps)

Create a new `AWS::Route53Resolver::ResolverDNSSECConfig`.

func NewCfnResolverEndpoint_Override

func NewCfnResolverEndpoint_Override(c CfnResolverEndpoint, scope awscdk.Construct, id *string, props *CfnResolverEndpointProps)

Create a new `AWS::Route53Resolver::ResolverEndpoint`.

func NewCfnResolverQueryLoggingConfigAssociation_Override

func NewCfnResolverQueryLoggingConfigAssociation_Override(c CfnResolverQueryLoggingConfigAssociation, scope awscdk.Construct, id *string, props *CfnResolverQueryLoggingConfigAssociationProps)

Create a new `AWS::Route53Resolver::ResolverQueryLoggingConfigAssociation`.

func NewCfnResolverQueryLoggingConfig_Override

func NewCfnResolverQueryLoggingConfig_Override(c CfnResolverQueryLoggingConfig, scope awscdk.Construct, id *string, props *CfnResolverQueryLoggingConfigProps)

Create a new `AWS::Route53Resolver::ResolverQueryLoggingConfig`.

func NewCfnResolverRuleAssociation_Override

func NewCfnResolverRuleAssociation_Override(c CfnResolverRuleAssociation, scope awscdk.Construct, id *string, props *CfnResolverRuleAssociationProps)

Create a new `AWS::Route53Resolver::ResolverRuleAssociation`.

func NewCfnResolverRule_Override

func NewCfnResolverRule_Override(c CfnResolverRule, scope awscdk.Construct, id *string, props *CfnResolverRuleProps)

Create a new `AWS::Route53Resolver::ResolverRule`.

func NewDnsBlockResponse_Override

func NewDnsBlockResponse_Override(d DnsBlockResponse)

Experimental.

func NewFirewallDomainList_Override

func NewFirewallDomainList_Override(f FirewallDomainList, scope constructs.Construct, id *string, props *FirewallDomainListProps)

Experimental.

func NewFirewallDomains_Override

func NewFirewallDomains_Override(f FirewallDomains)

Experimental.

func NewFirewallRuleAction_Override

func NewFirewallRuleAction_Override(f FirewallRuleAction)

Experimental.

func NewFirewallRuleGroupAssociation_Override

func NewFirewallRuleGroupAssociation_Override(f FirewallRuleGroupAssociation, scope constructs.Construct, id *string, props *FirewallRuleGroupAssociationProps)

Experimental.

func NewFirewallRuleGroup_Override

func NewFirewallRuleGroup_Override(f FirewallRuleGroup, scope constructs.Construct, id *string, props *FirewallRuleGroupProps)

Experimental.

Types

type CfnFirewallDomainList

type CfnFirewallDomainList interface {
	awscdk.CfnResource
	awscdk.IInspectable
	AttrArn() *string
	AttrCreationTime() *string
	AttrCreatorRequestId() *string
	AttrDomainCount() *float64
	AttrId() *string
	AttrManagedOwnerName() *string
	AttrModificationTime() *string
	AttrStatus() *string
	AttrStatusMessage() *string
	CfnOptions() awscdk.ICfnResourceOptions
	CfnProperties() *map[string]interface{}
	CfnResourceType() *string
	CreationStack() *[]*string
	DomainFileUrl() *string
	SetDomainFileUrl(val *string)
	Domains() *[]*string
	SetDomains(val *[]*string)
	LogicalId() *string
	Name() *string
	SetName(val *string)
	Node() awscdk.ConstructNode
	Ref() *string
	Stack() awscdk.Stack
	Tags() awscdk.TagManager
	UpdatedProperites() *map[string]interface{}
	AddDeletionOverride(path *string)
	AddDependsOn(target awscdk.CfnResource)
	AddMetadata(key *string, value interface{})
	AddOverride(path *string, value interface{})
	AddPropertyDeletionOverride(propertyPath *string)
	AddPropertyOverride(propertyPath *string, value interface{})
	ApplyRemovalPolicy(policy awscdk.RemovalPolicy, options *awscdk.RemovalPolicyOptions)
	GetAtt(attributeName *string) awscdk.Reference
	GetMetadata(key *string) interface{}
	Inspect(inspector awscdk.TreeInspector)
	OnPrepare()
	OnSynthesize(session constructs.ISynthesisSession)
	OnValidate() *[]*string
	OverrideLogicalId(newLogicalId *string)
	Prepare()
	RenderProperties(props *map[string]interface{}) *map[string]interface{}
	ShouldSynthesize() *bool
	Synthesize(session awscdk.ISynthesisSession)
	ToString() *string
	Validate() *[]*string
	ValidateProperties(_properties interface{})
}

A CloudFormation `AWS::Route53Resolver::FirewallDomainList`.

High-level information about a list of firewall domains for use in a [AWS::Route53Resolver::FirewallRule](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-route53resolver-firewallrulegroup-rule.html) . This is returned by [GetFirewallDomainList](https://docs.aws.amazon.com/Route53/latest/APIReference/API_route53resolver_GetFirewallDomainList.html) .

To retrieve the domains that are defined for this domain list, call [ListFirewallDomains](https://docs.aws.amazon.com/Route53/latest/APIReference/API_route53resolver_ListFirewallDomains.html) .

TODO: EXAMPLE

func NewCfnFirewallDomainList

func NewCfnFirewallDomainList(scope awscdk.Construct, id *string, props *CfnFirewallDomainListProps) CfnFirewallDomainList

Create a new `AWS::Route53Resolver::FirewallDomainList`.

type CfnFirewallDomainListProps

type CfnFirewallDomainListProps struct {
	// The fully qualified URL or URI of the file stored in Amazon Simple Storage Service (Amazon S3) that contains the list of domains to import.
	//
	// The file must be in an S3 bucket that's in the same Region as your DNS Firewall. The file must be a text file and must contain a single domain per line.
	DomainFileUrl *string `json:"domainFileUrl" yaml:"domainFileUrl"`
	// A list of the domain lists that you have defined.
	Domains *[]*string `json:"domains" yaml:"domains"`
	// The name of the domain list.
	Name *string `json:"name" yaml:"name"`
	// A list of the tag keys and values that you want to associate with the domain list.
	Tags *[]*awscdk.CfnTag `json:"tags" yaml:"tags"`
}

Properties for defining a `CfnFirewallDomainList`.

TODO: EXAMPLE

type CfnFirewallRuleGroup

type CfnFirewallRuleGroup interface {
	awscdk.CfnResource
	awscdk.IInspectable
	AttrArn() *string
	AttrCreationTime() *string
	AttrCreatorRequestId() *string
	AttrId() *string
	AttrModificationTime() *string
	AttrOwnerId() *string
	AttrRuleCount() *float64
	AttrShareStatus() *string
	AttrStatus() *string
	AttrStatusMessage() *string
	CfnOptions() awscdk.ICfnResourceOptions
	CfnProperties() *map[string]interface{}
	CfnResourceType() *string
	CreationStack() *[]*string
	FirewallRules() interface{}
	SetFirewallRules(val interface{})
	LogicalId() *string
	Name() *string
	SetName(val *string)
	Node() awscdk.ConstructNode
	Ref() *string
	Stack() awscdk.Stack
	Tags() awscdk.TagManager
	UpdatedProperites() *map[string]interface{}
	AddDeletionOverride(path *string)
	AddDependsOn(target awscdk.CfnResource)
	AddMetadata(key *string, value interface{})
	AddOverride(path *string, value interface{})
	AddPropertyDeletionOverride(propertyPath *string)
	AddPropertyOverride(propertyPath *string, value interface{})
	ApplyRemovalPolicy(policy awscdk.RemovalPolicy, options *awscdk.RemovalPolicyOptions)
	GetAtt(attributeName *string) awscdk.Reference
	GetMetadata(key *string) interface{}
	Inspect(inspector awscdk.TreeInspector)
	OnPrepare()
	OnSynthesize(session constructs.ISynthesisSession)
	OnValidate() *[]*string
	OverrideLogicalId(newLogicalId *string)
	Prepare()
	RenderProperties(props *map[string]interface{}) *map[string]interface{}
	ShouldSynthesize() *bool
	Synthesize(session awscdk.ISynthesisSession)
	ToString() *string
	Validate() *[]*string
	ValidateProperties(_properties interface{})
}

A CloudFormation `AWS::Route53Resolver::FirewallRuleGroup`.

High-level information for a firewall rule group. A firewall rule group is a collection of rules that DNS Firewall uses to filter DNS network traffic for a VPC. To retrieve the rules for the rule group, call [ListFirewallRules](https://docs.aws.amazon.com/Route53/latest/APIReference/API_route53resolver_ListFirewallRules.html) .

TODO: EXAMPLE

func NewCfnFirewallRuleGroup

func NewCfnFirewallRuleGroup(scope awscdk.Construct, id *string, props *CfnFirewallRuleGroupProps) CfnFirewallRuleGroup

Create a new `AWS::Route53Resolver::FirewallRuleGroup`.

type CfnFirewallRuleGroupAssociation

type CfnFirewallRuleGroupAssociation interface {
	awscdk.CfnResource
	awscdk.IInspectable
	AttrArn() *string
	AttrCreationTime() *string
	AttrCreatorRequestId() *string
	AttrId() *string
	AttrManagedOwnerName() *string
	AttrModificationTime() *string
	AttrStatus() *string
	AttrStatusMessage() *string
	CfnOptions() awscdk.ICfnResourceOptions
	CfnProperties() *map[string]interface{}
	CfnResourceType() *string
	CreationStack() *[]*string
	FirewallRuleGroupId() *string
	SetFirewallRuleGroupId(val *string)
	LogicalId() *string
	MutationProtection() *string
	SetMutationProtection(val *string)
	Name() *string
	SetName(val *string)
	Node() awscdk.ConstructNode
	Priority() *float64
	SetPriority(val *float64)
	Ref() *string
	Stack() awscdk.Stack
	Tags() awscdk.TagManager
	UpdatedProperites() *map[string]interface{}
	VpcId() *string
	SetVpcId(val *string)
	AddDeletionOverride(path *string)
	AddDependsOn(target awscdk.CfnResource)
	AddMetadata(key *string, value interface{})
	AddOverride(path *string, value interface{})
	AddPropertyDeletionOverride(propertyPath *string)
	AddPropertyOverride(propertyPath *string, value interface{})
	ApplyRemovalPolicy(policy awscdk.RemovalPolicy, options *awscdk.RemovalPolicyOptions)
	GetAtt(attributeName *string) awscdk.Reference
	GetMetadata(key *string) interface{}
	Inspect(inspector awscdk.TreeInspector)
	OnPrepare()
	OnSynthesize(session constructs.ISynthesisSession)
	OnValidate() *[]*string
	OverrideLogicalId(newLogicalId *string)
	Prepare()
	RenderProperties(props *map[string]interface{}) *map[string]interface{}
	ShouldSynthesize() *bool
	Synthesize(session awscdk.ISynthesisSession)
	ToString() *string
	Validate() *[]*string
	ValidateProperties(_properties interface{})
}

A CloudFormation `AWS::Route53Resolver::FirewallRuleGroupAssociation`.

An association between a firewall rule group and a VPC, which enables DNS filtering for the VPC.

TODO: EXAMPLE

func NewCfnFirewallRuleGroupAssociation

func NewCfnFirewallRuleGroupAssociation(scope awscdk.Construct, id *string, props *CfnFirewallRuleGroupAssociationProps) CfnFirewallRuleGroupAssociation

Create a new `AWS::Route53Resolver::FirewallRuleGroupAssociation`.

type CfnFirewallRuleGroupAssociationProps

type CfnFirewallRuleGroupAssociationProps struct {
	// The unique identifier of the firewall rule group.
	FirewallRuleGroupId *string `json:"firewallRuleGroupId" yaml:"firewallRuleGroupId"`
	// The setting that determines the processing order of the rule group among the rule groups that are associated with a single VPC.
	//
	// DNS Firewall filters VPC traffic starting from rule group with the lowest numeric priority setting.
	//
	// You must specify a unique priority for each rule group that you associate with a single VPC. To make it easier to insert rule groups later, leave space between the numbers, for example, use 101, 200, and so on. You can change the priority setting for a rule group association after you create it.
	//
	// The allowed values for `Priority` are between 100 and 9900.
	Priority *float64 `json:"priority" yaml:"priority"`
	// The unique identifier of the VPC that is associated with the rule group.
	VpcId *string `json:"vpcId" yaml:"vpcId"`
	// If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections.
	MutationProtection *string `json:"mutationProtection" yaml:"mutationProtection"`
	// The name of the association.
	Name *string `json:"name" yaml:"name"`
	// A list of the tag keys and values that you want to associate with the rule group.
	Tags *[]*awscdk.CfnTag `json:"tags" yaml:"tags"`
}

Properties for defining a `CfnFirewallRuleGroupAssociation`.

TODO: EXAMPLE

type CfnFirewallRuleGroupProps

type CfnFirewallRuleGroupProps struct {
	// A list of the rules that you have defined.
	FirewallRules interface{} `json:"firewallRules" yaml:"firewallRules"`
	// The name of the rule group.
	Name *string `json:"name" yaml:"name"`
	// A list of the tag keys and values that you want to associate with the rule group.
	Tags *[]*awscdk.CfnTag `json:"tags" yaml:"tags"`
}

Properties for defining a `CfnFirewallRuleGroup`.

TODO: EXAMPLE

type CfnFirewallRuleGroup_FirewallRuleProperty

type CfnFirewallRuleGroup_FirewallRuleProperty struct {
	// The action that DNS Firewall should take on a DNS query when it matches one of the domains in the rule's domain list:  - `ALLOW` - Permit the request to go through.
	//
	// - `ALERT` - Permit the request to go through but send an alert to the logs.
	// - `BLOCK` - Disallow the request. If this is specified,then `BlockResponse` must also be specified.
	//
	// if `BlockResponse` is `OVERRIDE` , then all of the following `OVERRIDE` attributes must be specified:
	//
	// - `BlockOverrideDnsType`
	// - `BlockOverrideDomain`
	// - `BlockOverrideTtl`
	Action *string `json:"action" yaml:"action"`
	// The ID of the domain list that's used in the rule.
	FirewallDomainListId *string `json:"firewallDomainListId" yaml:"firewallDomainListId"`
	// The priority of the rule in the rule group.
	//
	// This value must be unique within the rule group. DNS Firewall processes the rules in a rule group by order of priority, starting from the lowest setting.
	Priority *float64 `json:"priority" yaml:"priority"`
	// The DNS record's type.
	//
	// This determines the format of the record value that you provided in `BlockOverrideDomain` . Used for the rule action `BLOCK` with a `BlockResponse` setting of `OVERRIDE` .
	BlockOverrideDnsType *string `json:"blockOverrideDnsType" yaml:"blockOverrideDnsType"`
	// The custom DNS record to send back in response to the query.
	//
	// Used for the rule action `BLOCK` with a `BlockResponse` setting of `OVERRIDE` .
	BlockOverrideDomain *string `json:"blockOverrideDomain" yaml:"blockOverrideDomain"`
	// The recommended amount of time, in seconds, for the DNS resolver or web browser to cache the provided override record.
	//
	// Used for the rule action `BLOCK` with a `BlockResponse` setting of `OVERRIDE` .
	BlockOverrideTtl *float64 `json:"blockOverrideTtl" yaml:"blockOverrideTtl"`
	// The way that you want DNS Firewall to block the request. Used for the rule action setting `BLOCK` .
	//
	// - `NODATA` - Respond indicating that the query was successful, but no response is available for it.
	// - `NXDOMAIN` - Respond indicating that the domain name that's in the query doesn't exist.
	// - `OVERRIDE` - Provide a custom override in the response. This option requires custom handling details in the rule's `BlockOverride*` settings.
	BlockResponse *string `json:"blockResponse" yaml:"blockResponse"`
}

A single firewall rule in a rule group.

TODO: EXAMPLE

type CfnResolverConfig

type CfnResolverConfig interface {
	awscdk.CfnResource
	awscdk.IInspectable
	AttrAutodefinedReverse() *string
	AttrId() *string
	AttrOwnerId() *string
	AutodefinedReverseFlag() *string
	SetAutodefinedReverseFlag(val *string)
	CfnOptions() awscdk.ICfnResourceOptions
	CfnProperties() *map[string]interface{}
	CfnResourceType() *string
	CreationStack() *[]*string
	LogicalId() *string
	Node() awscdk.ConstructNode
	Ref() *string
	ResourceId() *string
	SetResourceId(val *string)
	Stack() awscdk.Stack
	UpdatedProperites() *map[string]interface{}
	AddDeletionOverride(path *string)
	AddDependsOn(target awscdk.CfnResource)
	AddMetadata(key *string, value interface{})
	AddOverride(path *string, value interface{})
	AddPropertyDeletionOverride(propertyPath *string)
	AddPropertyOverride(propertyPath *string, value interface{})
	ApplyRemovalPolicy(policy awscdk.RemovalPolicy, options *awscdk.RemovalPolicyOptions)
	GetAtt(attributeName *string) awscdk.Reference
	GetMetadata(key *string) interface{}
	Inspect(inspector awscdk.TreeInspector)
	OnPrepare()
	OnSynthesize(session constructs.ISynthesisSession)
	OnValidate() *[]*string
	OverrideLogicalId(newLogicalId *string)
	Prepare()
	RenderProperties(props *map[string]interface{}) *map[string]interface{}
	ShouldSynthesize() *bool
	Synthesize(session awscdk.ISynthesisSession)
	ToString() *string
	Validate() *[]*string
	ValidateProperties(_properties interface{})
}

A CloudFormation `AWS::Route53Resolver::ResolverConfig`.

A complex type that contains information about a Resolver configuration for a VPC.

TODO: EXAMPLE

func NewCfnResolverConfig

func NewCfnResolverConfig(scope awscdk.Construct, id *string, props *CfnResolverConfigProps) CfnResolverConfig

Create a new `AWS::Route53Resolver::ResolverConfig`.

type CfnResolverConfigProps

type CfnResolverConfigProps struct {
	// Represents the desired status of `AutodefinedReverse` .
	//
	// The only supported value on creation is `DISABLE` . Deletion of this resource will return `AutodefinedReverse` to its default value of `ENABLED` .
	AutodefinedReverseFlag *string `json:"autodefinedReverseFlag" yaml:"autodefinedReverseFlag"`
	// The ID of the Amazon Virtual Private Cloud VPC that you're configuring Resolver for.
	ResourceId *string `json:"resourceId" yaml:"resourceId"`
}

Properties for defining a `CfnResolverConfig`.

TODO: EXAMPLE

type CfnResolverDNSSECConfig

type CfnResolverDNSSECConfig interface {
	awscdk.CfnResource
	awscdk.IInspectable
	AttrId() *string
	AttrOwnerId() *string
	AttrValidationStatus() *string
	CfnOptions() awscdk.ICfnResourceOptions
	CfnProperties() *map[string]interface{}
	CfnResourceType() *string
	CreationStack() *[]*string
	LogicalId() *string
	Node() awscdk.ConstructNode
	Ref() *string
	ResourceId() *string
	SetResourceId(val *string)
	Stack() awscdk.Stack
	UpdatedProperites() *map[string]interface{}
	AddDeletionOverride(path *string)
	AddDependsOn(target awscdk.CfnResource)
	AddMetadata(key *string, value interface{})
	AddOverride(path *string, value interface{})
	AddPropertyDeletionOverride(propertyPath *string)
	AddPropertyOverride(propertyPath *string, value interface{})
	ApplyRemovalPolicy(policy awscdk.RemovalPolicy, options *awscdk.RemovalPolicyOptions)
	GetAtt(attributeName *string) awscdk.Reference
	GetMetadata(key *string) interface{}
	Inspect(inspector awscdk.TreeInspector)
	OnPrepare()
	OnSynthesize(session constructs.ISynthesisSession)
	OnValidate() *[]*string
	OverrideLogicalId(newLogicalId *string)
	Prepare()
	RenderProperties(props *map[string]interface{}) *map[string]interface{}
	ShouldSynthesize() *bool
	Synthesize(session awscdk.ISynthesisSession)
	ToString() *string
	Validate() *[]*string
	ValidateProperties(_properties interface{})
}

A CloudFormation `AWS::Route53Resolver::ResolverDNSSECConfig`.

The `AWS::Route53Resolver::ResolverDNSSECConfig` resource is a complex type that contains information about a configuration for DNSSEC validation.

TODO: EXAMPLE

func NewCfnResolverDNSSECConfig

func NewCfnResolverDNSSECConfig(scope awscdk.Construct, id *string, props *CfnResolverDNSSECConfigProps) CfnResolverDNSSECConfig

Create a new `AWS::Route53Resolver::ResolverDNSSECConfig`.

type CfnResolverDNSSECConfigProps

type CfnResolverDNSSECConfigProps struct {
	// The ID of the virtual private cloud (VPC) that you're configuring the DNSSEC validation status for.
	ResourceId *string `json:"resourceId" yaml:"resourceId"`
}

Properties for defining a `CfnResolverDNSSECConfig`.

TODO: EXAMPLE

type CfnResolverEndpoint

type CfnResolverEndpoint interface {
	awscdk.CfnResource
	awscdk.IInspectable
	AttrArn() *string
	AttrDirection() *string
	AttrHostVpcId() *string
	AttrIpAddressCount() *string
	AttrName() *string
	AttrResolverEndpointId() *string
	CfnOptions() awscdk.ICfnResourceOptions
	CfnProperties() *map[string]interface{}
	CfnResourceType() *string
	CreationStack() *[]*string
	Direction() *string
	SetDirection(val *string)
	IpAddresses() interface{}
	SetIpAddresses(val interface{})
	LogicalId() *string
	Name() *string
	SetName(val *string)
	Node() awscdk.ConstructNode
	Ref() *string
	SecurityGroupIds() *[]*string
	SetSecurityGroupIds(val *[]*string)
	Stack() awscdk.Stack
	Tags() awscdk.TagManager
	UpdatedProperites() *map[string]interface{}
	AddDeletionOverride(path *string)
	AddDependsOn(target awscdk.CfnResource)
	AddMetadata(key *string, value interface{})
	AddOverride(path *string, value interface{})
	AddPropertyDeletionOverride(propertyPath *string)
	AddPropertyOverride(propertyPath *string, value interface{})
	ApplyRemovalPolicy(policy awscdk.RemovalPolicy, options *awscdk.RemovalPolicyOptions)
	GetAtt(attributeName *string) awscdk.Reference
	GetMetadata(key *string) interface{}
	Inspect(inspector awscdk.TreeInspector)
	OnPrepare()
	OnSynthesize(session constructs.ISynthesisSession)
	OnValidate() *[]*string
	OverrideLogicalId(newLogicalId *string)
	Prepare()
	RenderProperties(props *map[string]interface{}) *map[string]interface{}
	ShouldSynthesize() *bool
	Synthesize(session awscdk.ISynthesisSession)
	ToString() *string
	Validate() *[]*string
	ValidateProperties(_properties interface{})
}

A CloudFormation `AWS::Route53Resolver::ResolverEndpoint`.

Creates a Resolver endpoint. There are two types of Resolver endpoints, inbound and outbound:

- An *inbound Resolver endpoint* forwards DNS queries to the DNS service for a VPC from your network. - An *outbound Resolver endpoint* forwards DNS queries from the DNS service for a VPC to your network.

TODO: EXAMPLE

func NewCfnResolverEndpoint

func NewCfnResolverEndpoint(scope awscdk.Construct, id *string, props *CfnResolverEndpointProps) CfnResolverEndpoint

Create a new `AWS::Route53Resolver::ResolverEndpoint`.

type CfnResolverEndpointProps

type CfnResolverEndpointProps struct {
	// Indicates whether the Resolver endpoint allows inbound or outbound DNS queries:.
	//
	// - `INBOUND` : allows DNS queries to your VPC from your network
	// - `OUTBOUND` : allows DNS queries from your VPC to your network
	Direction *string `json:"direction" yaml:"direction"`
	// The subnets and IP addresses in your VPC that DNS queries originate from (for outbound endpoints) or that you forward DNS queries to (for inbound endpoints).
	//
	// The subnet ID uniquely identifies a VPC.
	IpAddresses interface{} `json:"ipAddresses" yaml:"ipAddresses"`
	// The ID of one or more security groups that control access to this VPC.
	//
	// The security group must include one or more inbound rules (for inbound endpoints) or outbound rules (for outbound endpoints). Inbound and outbound rules must allow TCP and UDP access. For inbound access, open port 53. For outbound access, open the port that you're using for DNS queries on your network.
	SecurityGroupIds *[]*string `json:"securityGroupIds" yaml:"securityGroupIds"`
	// A friendly name that lets you easily find a configuration in the Resolver dashboard in the Route 53 console.
	Name *string `json:"name" yaml:"name"`
	// Route 53 Resolver doesn't support updating tags through CloudFormation.
	Tags *[]*awscdk.CfnTag `json:"tags" yaml:"tags"`
}

Properties for defining a `CfnResolverEndpoint`.

TODO: EXAMPLE

type CfnResolverEndpoint_IpAddressRequestProperty

type CfnResolverEndpoint_IpAddressRequestProperty struct {
	// The ID of the subnet that contains the IP address.
	SubnetId *string `json:"subnetId" yaml:"subnetId"`
	// The IP address that you want to use for DNS queries.
	Ip *string `json:"ip" yaml:"ip"`
}

In a [CreateResolverEndpoint](https://docs.aws.amazon.com/Route53/latest/APIReference/API_route53resolver_CreateResolverEndpoint.html) request, the IP address that DNS queries originate from (for outbound endpoints) or that you forward DNS queries to (for inbound endpoints). `IpAddressRequest` also includes the ID of the subnet that contains the IP address.

TODO: EXAMPLE

type CfnResolverQueryLoggingConfig

type CfnResolverQueryLoggingConfig interface {
	awscdk.CfnResource
	awscdk.IInspectable
	AttrArn() *string
	AttrAssociationCount() *float64
	AttrCreationTime() *string
	AttrCreatorRequestId() *string
	AttrId() *string
	AttrOwnerId() *string
	AttrShareStatus() *string
	AttrStatus() *string
	CfnOptions() awscdk.ICfnResourceOptions
	CfnProperties() *map[string]interface{}
	CfnResourceType() *string
	CreationStack() *[]*string
	DestinationArn() *string
	SetDestinationArn(val *string)
	LogicalId() *string
	Name() *string
	SetName(val *string)
	Node() awscdk.ConstructNode
	Ref() *string
	Stack() awscdk.Stack
	UpdatedProperites() *map[string]interface{}
	AddDeletionOverride(path *string)
	AddDependsOn(target awscdk.CfnResource)
	AddMetadata(key *string, value interface{})
	AddOverride(path *string, value interface{})
	AddPropertyDeletionOverride(propertyPath *string)
	AddPropertyOverride(propertyPath *string, value interface{})
	ApplyRemovalPolicy(policy awscdk.RemovalPolicy, options *awscdk.RemovalPolicyOptions)
	GetAtt(attributeName *string) awscdk.Reference
	GetMetadata(key *string) interface{}
	Inspect(inspector awscdk.TreeInspector)
	OnPrepare()
	OnSynthesize(session constructs.ISynthesisSession)
	OnValidate() *[]*string
	OverrideLogicalId(newLogicalId *string)
	Prepare()
	RenderProperties(props *map[string]interface{}) *map[string]interface{}
	ShouldSynthesize() *bool
	Synthesize(session awscdk.ISynthesisSession)
	ToString() *string
	Validate() *[]*string
	ValidateProperties(_properties interface{})
}

A CloudFormation `AWS::Route53Resolver::ResolverQueryLoggingConfig`.

The AWS::Route53Resolver::ResolverQueryLoggingConfig resource is a complex type that contains settings for one query logging configuration.

TODO: EXAMPLE

func NewCfnResolverQueryLoggingConfig

func NewCfnResolverQueryLoggingConfig(scope awscdk.Construct, id *string, props *CfnResolverQueryLoggingConfigProps) CfnResolverQueryLoggingConfig

Create a new `AWS::Route53Resolver::ResolverQueryLoggingConfig`.

type CfnResolverQueryLoggingConfigAssociation

type CfnResolverQueryLoggingConfigAssociation interface {
	awscdk.CfnResource
	awscdk.IInspectable
	AttrCreationTime() *string
	AttrError() *string
	AttrErrorMessage() *string
	AttrId() *string
	AttrStatus() *string
	CfnOptions() awscdk.ICfnResourceOptions
	CfnProperties() *map[string]interface{}
	CfnResourceType() *string
	CreationStack() *[]*string
	LogicalId() *string
	Node() awscdk.ConstructNode
	Ref() *string
	ResolverQueryLogConfigId() *string
	SetResolverQueryLogConfigId(val *string)
	ResourceId() *string
	SetResourceId(val *string)
	Stack() awscdk.Stack
	UpdatedProperites() *map[string]interface{}
	AddDeletionOverride(path *string)
	AddDependsOn(target awscdk.CfnResource)
	AddMetadata(key *string, value interface{})
	AddOverride(path *string, value interface{})
	AddPropertyDeletionOverride(propertyPath *string)
	AddPropertyOverride(propertyPath *string, value interface{})
	ApplyRemovalPolicy(policy awscdk.RemovalPolicy, options *awscdk.RemovalPolicyOptions)
	GetAtt(attributeName *string) awscdk.Reference
	GetMetadata(key *string) interface{}
	Inspect(inspector awscdk.TreeInspector)
	OnPrepare()
	OnSynthesize(session constructs.ISynthesisSession)
	OnValidate() *[]*string
	OverrideLogicalId(newLogicalId *string)
	Prepare()
	RenderProperties(props *map[string]interface{}) *map[string]interface{}
	ShouldSynthesize() *bool
	Synthesize(session awscdk.ISynthesisSession)
	ToString() *string
	Validate() *[]*string
	ValidateProperties(_properties interface{})
}

A CloudFormation `AWS::Route53Resolver::ResolverQueryLoggingConfigAssociation`.

The AWS::Route53Resolver::ResolverQueryLoggingConfigAssociation resource is a configuration for DNS query logging. After you create a query logging configuration, Amazon Route 53 begins to publish log data to an Amazon CloudWatch Logs log group.

TODO: EXAMPLE

func NewCfnResolverQueryLoggingConfigAssociation

func NewCfnResolverQueryLoggingConfigAssociation(scope awscdk.Construct, id *string, props *CfnResolverQueryLoggingConfigAssociationProps) CfnResolverQueryLoggingConfigAssociation

Create a new `AWS::Route53Resolver::ResolverQueryLoggingConfigAssociation`.

type CfnResolverQueryLoggingConfigAssociationProps

type CfnResolverQueryLoggingConfigAssociationProps struct {
	// The ID of the query logging configuration that a VPC is associated with.
	ResolverQueryLogConfigId *string `json:"resolverQueryLogConfigId" yaml:"resolverQueryLogConfigId"`
	// The ID of the Amazon VPC that is associated with the query logging configuration.
	ResourceId *string `json:"resourceId" yaml:"resourceId"`
}

Properties for defining a `CfnResolverQueryLoggingConfigAssociation`.

TODO: EXAMPLE

type CfnResolverQueryLoggingConfigProps

type CfnResolverQueryLoggingConfigProps struct {
	// The ARN of the resource that you want Resolver to send query logs: an Amazon S3 bucket, a CloudWatch Logs log group, or a Kinesis Data Firehose delivery stream.
	DestinationArn *string `json:"destinationArn" yaml:"destinationArn"`
	// The name of the query logging configuration.
	Name *string `json:"name" yaml:"name"`
}

Properties for defining a `CfnResolverQueryLoggingConfig`.

TODO: EXAMPLE

type CfnResolverRule

type CfnResolverRule interface {
	awscdk.CfnResource
	awscdk.IInspectable
	AttrArn() *string
	AttrDomainName() *string
	AttrName() *string
	AttrResolverEndpointId() *string
	AttrResolverRuleId() *string
	AttrTargetIps() awscdk.IResolvable
	CfnOptions() awscdk.ICfnResourceOptions
	CfnProperties() *map[string]interface{}
	CfnResourceType() *string
	CreationStack() *[]*string
	DomainName() *string
	SetDomainName(val *string)
	LogicalId() *string
	Name() *string
	SetName(val *string)
	Node() awscdk.ConstructNode
	Ref() *string
	ResolverEndpointId() *string
	SetResolverEndpointId(val *string)
	RuleType() *string
	SetRuleType(val *string)
	Stack() awscdk.Stack
	Tags() awscdk.TagManager
	TargetIps() interface{}
	SetTargetIps(val interface{})
	UpdatedProperites() *map[string]interface{}
	AddDeletionOverride(path *string)
	AddDependsOn(target awscdk.CfnResource)
	AddMetadata(key *string, value interface{})
	AddOverride(path *string, value interface{})
	AddPropertyDeletionOverride(propertyPath *string)
	AddPropertyOverride(propertyPath *string, value interface{})
	ApplyRemovalPolicy(policy awscdk.RemovalPolicy, options *awscdk.RemovalPolicyOptions)
	GetAtt(attributeName *string) awscdk.Reference
	GetMetadata(key *string) interface{}
	Inspect(inspector awscdk.TreeInspector)
	OnPrepare()
	OnSynthesize(session constructs.ISynthesisSession)
	OnValidate() *[]*string
	OverrideLogicalId(newLogicalId *string)
	Prepare()
	RenderProperties(props *map[string]interface{}) *map[string]interface{}
	ShouldSynthesize() *bool
	Synthesize(session awscdk.ISynthesisSession)
	ToString() *string
	Validate() *[]*string
	ValidateProperties(_properties interface{})
}

A CloudFormation `AWS::Route53Resolver::ResolverRule`.

For DNS queries that originate in your VPCs, specifies which Resolver endpoint the queries pass through, one domain name that you want to forward to your network, and the IP addresses of the DNS resolvers in your network.

TODO: EXAMPLE

func NewCfnResolverRule

func NewCfnResolverRule(scope awscdk.Construct, id *string, props *CfnResolverRuleProps) CfnResolverRule

Create a new `AWS::Route53Resolver::ResolverRule`.

type CfnResolverRuleAssociation

type CfnResolverRuleAssociation interface {
	awscdk.CfnResource
	awscdk.IInspectable
	AttrName() *string
	AttrResolverRuleAssociationId() *string
	AttrResolverRuleId() *string
	AttrVpcId() *string
	CfnOptions() awscdk.ICfnResourceOptions
	CfnProperties() *map[string]interface{}
	CfnResourceType() *string
	CreationStack() *[]*string
	LogicalId() *string
	Name() *string
	SetName(val *string)
	Node() awscdk.ConstructNode
	Ref() *string
	ResolverRuleId() *string
	SetResolverRuleId(val *string)
	Stack() awscdk.Stack
	UpdatedProperites() *map[string]interface{}
	VpcId() *string
	SetVpcId(val *string)
	AddDeletionOverride(path *string)
	AddDependsOn(target awscdk.CfnResource)
	AddMetadata(key *string, value interface{})
	AddOverride(path *string, value interface{})
	AddPropertyDeletionOverride(propertyPath *string)
	AddPropertyOverride(propertyPath *string, value interface{})
	ApplyRemovalPolicy(policy awscdk.RemovalPolicy, options *awscdk.RemovalPolicyOptions)
	GetAtt(attributeName *string) awscdk.Reference
	GetMetadata(key *string) interface{}
	Inspect(inspector awscdk.TreeInspector)
	OnPrepare()
	OnSynthesize(session constructs.ISynthesisSession)
	OnValidate() *[]*string
	OverrideLogicalId(newLogicalId *string)
	Prepare()
	RenderProperties(props *map[string]interface{}) *map[string]interface{}
	ShouldSynthesize() *bool
	Synthesize(session awscdk.ISynthesisSession)
	ToString() *string
	Validate() *[]*string
	ValidateProperties(_properties interface{})
}

A CloudFormation `AWS::Route53Resolver::ResolverRuleAssociation`.

In the response to an [AssociateResolverRule](https://docs.aws.amazon.com/Route53/latest/APIReference/API_route53resolver_AssociateResolverRule.html) , [DisassociateResolverRule](https://docs.aws.amazon.com/Route53/latest/APIReference/API_route53resolver_DisassociateResolverRule.html) , or [ListResolverRuleAssociations](https://docs.aws.amazon.com/Route53/latest/APIReference/API_route53resolver_ListResolverRuleAssociations.html) request, provides information about an association between a resolver rule and a VPC. The association determines which DNS queries that originate in the VPC are forwarded to your network.

TODO: EXAMPLE

func NewCfnResolverRuleAssociation

func NewCfnResolverRuleAssociation(scope awscdk.Construct, id *string, props *CfnResolverRuleAssociationProps) CfnResolverRuleAssociation

Create a new `AWS::Route53Resolver::ResolverRuleAssociation`.

type CfnResolverRuleAssociationProps

type CfnResolverRuleAssociationProps struct {
	// The ID of the Resolver rule that you associated with the VPC that is specified by `VPCId` .
	ResolverRuleId *string `json:"resolverRuleId" yaml:"resolverRuleId"`
	// The ID of the VPC that you associated the Resolver rule with.
	VpcId *string `json:"vpcId" yaml:"vpcId"`
	// The name of an association between a Resolver rule and a VPC.
	Name *string `json:"name" yaml:"name"`
}

Properties for defining a `CfnResolverRuleAssociation`.

TODO: EXAMPLE

type CfnResolverRuleProps

type CfnResolverRuleProps struct {
	// DNS queries for this domain name are forwarded to the IP addresses that are specified in `TargetIps` .
	//
	// If a query matches multiple Resolver rules (example.com and www.example.com), the query is routed using the Resolver rule that contains the most specific domain name (www.example.com).
	DomainName *string `json:"domainName" yaml:"domainName"`
	// When you want to forward DNS queries for specified domain name to resolvers on your network, specify `FORWARD` .
	//
	// When you have a forwarding rule to forward DNS queries for a domain to your network and you want Resolver to process queries for a subdomain of that domain, specify `SYSTEM` .
	//
	// For example, to forward DNS queries for example.com to resolvers on your network, you create a rule and specify `FORWARD` for `RuleType` . To then have Resolver process queries for apex.example.com, you create a rule and specify `SYSTEM` for `RuleType` .
	//
	// Currently, only Resolver can create rules that have a value of `RECURSIVE` for `RuleType` .
	RuleType *string `json:"ruleType" yaml:"ruleType"`
	// The name for the Resolver rule, which you specified when you created the Resolver rule.
	Name *string `json:"name" yaml:"name"`
	// The ID of the endpoint that the rule is associated with.
	ResolverEndpointId *string `json:"resolverEndpointId" yaml:"resolverEndpointId"`
	// Route 53 Resolver doesn't support updating tags through CloudFormation.
	Tags *[]*awscdk.CfnTag `json:"tags" yaml:"tags"`
	// An array that contains the IP addresses and ports that an outbound endpoint forwards DNS queries to.
	//
	// Typically, these are the IP addresses of DNS resolvers on your network. Specify IPv4 addresses. IPv6 is not supported.
	TargetIps interface{} `json:"targetIps" yaml:"targetIps"`
}

Properties for defining a `CfnResolverRule`.

TODO: EXAMPLE

type CfnResolverRule_TargetAddressProperty

type CfnResolverRule_TargetAddressProperty struct {
	// One IP address that you want to forward DNS queries to.
	//
	// You can specify only IPv4 addresses.
	Ip *string `json:"ip" yaml:"ip"`
	// The port at `Ip` that you want to forward DNS queries to.
	Port *string `json:"port" yaml:"port"`
}

In a [CreateResolverRule](https://docs.aws.amazon.com/Route53/latest/APIReference/API_route53resolver_CreateResolverRule.html) request, an array of the IPs that you want to forward DNS queries to.

TODO: EXAMPLE

type DnsBlockResponse

type DnsBlockResponse interface {
	BlockOverrideDnsType() *string
	BlockOverrideDomain() *string
	BlockOverrideTtl() awscdk.Duration
	BlockResponse() *string
}

The way that you want DNS Firewall to block the request.

TODO: EXAMPLE

Experimental.

func DnsBlockResponse_NoData

func DnsBlockResponse_NoData() DnsBlockResponse

Respond indicating that the query was successful, but no response is available for it. Experimental.

func DnsBlockResponse_NxDomain

func DnsBlockResponse_NxDomain() DnsBlockResponse

Respond indicating that the domain name that's in the query doesn't exist. Experimental.

func DnsBlockResponse_Override

func DnsBlockResponse_Override(domain *string, ttl awscdk.Duration) DnsBlockResponse

Provides a custom override response to the query. Experimental.

type DomainsConfig

type DomainsConfig struct {
	// The fully qualified URL or URI of the file stored in Amazon S3 that contains the list of domains to import.
	//
	// The file must be a text file and must contain
	// a single domain per line. The content type of the S3 object must be `plain/text`.
	// Experimental.
	DomainFileUrl *string `json:"domainFileUrl" yaml:"domainFileUrl"`
	// A list of domains.
	// Experimental.
	Domains *[]*string `json:"domains" yaml:"domains"`
}

Domains configuration.

TODO: EXAMPLE

Experimental.

type FirewallDomainList

type FirewallDomainList interface {
	awscdk.Resource
	IFirewallDomainList
	Env() *awscdk.ResourceEnvironment
	FirewallDomainListArn() *string
	FirewallDomainListCreationTime() *string
	FirewallDomainListCreatorRequestId() *string
	FirewallDomainListDomainCount() *float64
	FirewallDomainListId() *string
	FirewallDomainListManagedOwnerName() *string
	FirewallDomainListModificationTime() *string
	FirewallDomainListStatus() *string
	FirewallDomainListStatusMessage() *string
	Node() awscdk.ConstructNode
	PhysicalName() *string
	Stack() awscdk.Stack
	ApplyRemovalPolicy(policy awscdk.RemovalPolicy)
	GeneratePhysicalName() *string
	GetResourceArnAttribute(arnAttr *string, arnComponents *awscdk.ArnComponents) *string
	GetResourceNameAttribute(nameAttr *string) *string
	OnPrepare()
	OnSynthesize(session constructs.ISynthesisSession)
	OnValidate() *[]*string
	Prepare()
	Synthesize(session awscdk.ISynthesisSession)
	ToString() *string
	Validate() *[]*string
}

A Firewall Domain List.

TODO: EXAMPLE

Experimental.

func NewFirewallDomainList

func NewFirewallDomainList(scope constructs.Construct, id *string, props *FirewallDomainListProps) FirewallDomainList

Experimental.

type FirewallDomainListProps

type FirewallDomainListProps struct {
	// A list of domains.
	// Experimental.
	Domains FirewallDomains `json:"domains" yaml:"domains"`
	// A name for the domain list.
	// Experimental.
	Name *string `json:"name" yaml:"name"`
}

Properties for a Firewall Domain List.

TODO: EXAMPLE

Experimental.

type FirewallDomains

type FirewallDomains interface {
	Bind(scope constructs.Construct) *DomainsConfig
}

A list of domains.

TODO: EXAMPLE

Experimental.

func FirewallDomains_FromAsset

func FirewallDomains_FromAsset(assetPath *string) FirewallDomains

Firewall domains created from a local disk path to a text file.

The file must be a text file (`.txt` extension) and must contain a single domain per line. It will be uploaded to S3. Experimental.

func FirewallDomains_FromList

func FirewallDomains_FromList(list *[]*string) FirewallDomains

Firewall domains created from a list of domains. Experimental.

func FirewallDomains_FromS3

func FirewallDomains_FromS3(bucket awss3.IBucket, key *string) FirewallDomains

Firewall domains created from a file stored in Amazon S3.

The file must be a text file and must contain a single domain per line. The content type of the S3 object must be `plain/text`. Experimental.

func FirewallDomains_FromS3Url

func FirewallDomains_FromS3Url(url *string) FirewallDomains

Firewall domains created from the URL of a file stored in Amazon S3.

The file must be a text file and must contain a single domain per line. The content type of the S3 object must be `plain/text`. Experimental.

type FirewallRule

type FirewallRule struct {
	// The action for this rule.
	// Experimental.
	Action FirewallRuleAction `json:"action" yaml:"action"`
	// The domain list for this rule.
	// Experimental.
	FirewallDomainList IFirewallDomainList `json:"firewallDomainList" yaml:"firewallDomainList"`
	// The priority of the rule in the rule group.
	//
	// This value must be unique within
	// the rule group.
	// Experimental.
	Priority *float64 `json:"priority" yaml:"priority"`
}

A Firewall Rule.

TODO: EXAMPLE

Experimental.

type FirewallRuleAction

type FirewallRuleAction interface {
	Action() *string
	BlockResponse() DnsBlockResponse
}

A Firewall Rule.

TODO: EXAMPLE

Experimental.

func FirewallRuleAction_Alert

func FirewallRuleAction_Alert() FirewallRuleAction

Permit the request to go through but send an alert to the logs. Experimental.

func FirewallRuleAction_Allow

func FirewallRuleAction_Allow() FirewallRuleAction

Permit the request to go through. Experimental.

func FirewallRuleAction_Block

func FirewallRuleAction_Block(response DnsBlockResponse) FirewallRuleAction

Disallow the request. Experimental.

type FirewallRuleGroup

type FirewallRuleGroup interface {
	awscdk.Resource
	IFirewallRuleGroup
	Env() *awscdk.ResourceEnvironment
	FirewallRuleGroupArn() *string
	FirewallRuleGroupCreationTime() *string
	FirewallRuleGroupCreatorRequestId() *string
	FirewallRuleGroupId() *string
	FirewallRuleGroupModificationTime() *string
	FirewallRuleGroupOwnerId() *string
	FirewallRuleGroupRuleCount() *float64
	FirewallRuleGroupShareStatus() *string
	FirewallRuleGroupStatus() *string
	FirewallRuleGroupStatusMessage() *string
	Node() awscdk.ConstructNode
	PhysicalName() *string
	Stack() awscdk.Stack
	AddRule(rule *FirewallRule) FirewallRuleGroup
	ApplyRemovalPolicy(policy awscdk.RemovalPolicy)
	Associate(id *string, props *FirewallRuleGroupAssociationOptions) FirewallRuleGroupAssociation
	GeneratePhysicalName() *string
	GetResourceArnAttribute(arnAttr *string, arnComponents *awscdk.ArnComponents) *string
	GetResourceNameAttribute(nameAttr *string) *string
	OnPrepare()
	OnSynthesize(session constructs.ISynthesisSession)
	OnValidate() *[]*string
	Prepare()
	Synthesize(session awscdk.ISynthesisSession)
	ToString() *string
	Validate() *[]*string
}

A Firewall Rule Group.

TODO: EXAMPLE

Experimental.

func NewFirewallRuleGroup

func NewFirewallRuleGroup(scope constructs.Construct, id *string, props *FirewallRuleGroupProps) FirewallRuleGroup

Experimental.

type FirewallRuleGroupAssociation

type FirewallRuleGroupAssociation interface {
	awscdk.Resource
	Env() *awscdk.ResourceEnvironment
	FirewallRuleGroupAssociationArn() *string
	FirewallRuleGroupAssociationCreationTime() *string
	FirewallRuleGroupAssociationCreatorRequestId() *string
	FirewallRuleGroupAssociationId() *string
	FirewallRuleGroupAssociationManagedOwnerName() *string
	FirewallRuleGroupAssociationModificationTime() *string
	FirewallRuleGroupAssociationStatus() *string
	FirewallRuleGroupAssociationStatusMessage() *string
	Node() awscdk.ConstructNode
	PhysicalName() *string
	Stack() awscdk.Stack
	ApplyRemovalPolicy(policy awscdk.RemovalPolicy)
	GeneratePhysicalName() *string
	GetResourceArnAttribute(arnAttr *string, arnComponents *awscdk.ArnComponents) *string
	GetResourceNameAttribute(nameAttr *string) *string
	OnPrepare()
	OnSynthesize(session constructs.ISynthesisSession)
	OnValidate() *[]*string
	Prepare()
	Synthesize(session awscdk.ISynthesisSession)
	ToString() *string
	Validate() *[]*string
}

A Firewall Rule Group Association.

TODO: EXAMPLE

Experimental.

func NewFirewallRuleGroupAssociation

func NewFirewallRuleGroupAssociation(scope constructs.Construct, id *string, props *FirewallRuleGroupAssociationProps) FirewallRuleGroupAssociation

Experimental.

type FirewallRuleGroupAssociationOptions

type FirewallRuleGroupAssociationOptions struct {
	// The setting that determines the processing order of the rule group among the rule groups that are associated with a single VPC.
	//
	// DNS Firewall filters VPC
	// traffic starting from rule group with the lowest numeric priority setting.
	//
	// This value must be greater than 100 and less than 9,000
	// Experimental.
	Priority *float64 `json:"priority" yaml:"priority"`
	// The VPC that to associate with the rule group.
	// Experimental.
	Vpc awsec2.IVpc `json:"vpc" yaml:"vpc"`
	// If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections.
	// Experimental.
	MutationProtection *bool `json:"mutationProtection" yaml:"mutationProtection"`
	// The name of the association.
	// Experimental.
	Name *string `json:"name" yaml:"name"`
}

Options for a Firewall Rule Group Association.

TODO: EXAMPLE

Experimental.

type FirewallRuleGroupAssociationProps

type FirewallRuleGroupAssociationProps struct {
	// The setting that determines the processing order of the rule group among the rule groups that are associated with a single VPC.
	//
	// DNS Firewall filters VPC
	// traffic starting from rule group with the lowest numeric priority setting.
	//
	// This value must be greater than 100 and less than 9,000
	// Experimental.
	Priority *float64 `json:"priority" yaml:"priority"`
	// The VPC that to associate with the rule group.
	// Experimental.
	Vpc awsec2.IVpc `json:"vpc" yaml:"vpc"`
	// If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections.
	// Experimental.
	MutationProtection *bool `json:"mutationProtection" yaml:"mutationProtection"`
	// The name of the association.
	// Experimental.
	Name *string `json:"name" yaml:"name"`
	// The firewall rule group which must be associated.
	// Experimental.
	FirewallRuleGroup IFirewallRuleGroup `json:"firewallRuleGroup" yaml:"firewallRuleGroup"`
}

Properties for a Firewall Rule Group Association.

TODO: EXAMPLE

Experimental.

type FirewallRuleGroupProps

type FirewallRuleGroupProps struct {
	// The name of the rule group.
	// Experimental.
	Name *string `json:"name" yaml:"name"`
	// A list of rules for this group.
	// Experimental.
	Rules *[]*FirewallRule `json:"rules" yaml:"rules"`
}

Properties for a Firewall Rule Group.

TODO: EXAMPLE

Experimental.

type IFirewallDomainList

type IFirewallDomainList interface {
	awscdk.IResource
	// The ID of the domain list.
	// Experimental.
	FirewallDomainListId() *string
}

A Firewall Domain List. Experimental.

func FirewallDomainList_FromFirewallDomainListId

func FirewallDomainList_FromFirewallDomainListId(scope constructs.Construct, id *string, firewallDomainListId *string) IFirewallDomainList

Import an existing Firewall Rule Group. Experimental.

type IFirewallRuleGroup

type IFirewallRuleGroup interface {
	awscdk.IResource
	// The ID of the rule group.
	// Experimental.
	FirewallRuleGroupId() *string
}

A Firewall Rule Group. Experimental.

func FirewallRuleGroup_FromFirewallRuleGroupId

func FirewallRuleGroup_FromFirewallRuleGroupId(scope constructs.Construct, id *string, firewallRuleGroupId *string) IFirewallRuleGroup

Import an existing Firewall Rule Group. Experimental.

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL