class Aws::SecurityHub::Types::AwsEc2NetworkAclEntry
A rule for the network ACL. Each rule allows or denies access based on the IP address, traffic direction, port, and protocol.
@note When making an API call, you may pass AwsEc2NetworkAclEntry
data as a hash: { cidr_block: "NonEmptyString", egress: false, icmp_type_code: { code: 1, type: 1, }, ipv_6_cidr_block: "NonEmptyString", port_range: { from: 1, to: 1, }, protocol: "NonEmptyString", rule_action: "NonEmptyString", rule_number: 1, }
@!attribute [rw] cidr_block
The IPV4 network range for which to deny or allow access. @return [String]
@!attribute [rw] egress
Whether the rule is an egress rule. An egress rule is a rule that applies to traffic that leaves the subnet. @return [Boolean]
@!attribute [rw] icmp_type_code
The Internet Control Message Protocol (ICMP) type and code for which to deny or allow access. @return [Types::IcmpTypeCode]
@!attribute [rw] ipv_6_cidr_block
The IPV6 network range for which to deny or allow access. @return [String]
@!attribute [rw] port_range
For TCP or UDP protocols, the range of ports that the rule applies to. @return [Types::PortRangeFromTo]
@!attribute [rw] protocol
The protocol that the rule applies to. To deny or allow access to all protocols, use the value -1. @return [String]
@!attribute [rw] rule_action
Whether the rule is used to allow access or deny access. @return [String]
@!attribute [rw] rule_number
The rule number. The rules are processed in order by their number. @return [Integer]
@see docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsEc2NetworkAclEntry AWS API Documentation
Constants
- SENSITIVE