class Aws::FMS::Types::ResourceViolation
Violation detail based on resource type.
@!attribute [rw] aws_vpc_security_group_violation
Violation detail for security groups. @return [Types::AwsVPCSecurityGroupViolation]
@!attribute [rw] aws_ec2_network_interface_violation
Violation detail for a network interface. @return [Types::AwsEc2NetworkInterfaceViolation]
@!attribute [rw] aws_ec2_instance_violation
Violation detail for an EC2 instance. @return [Types::AwsEc2InstanceViolation]
@!attribute [rw] network_firewall_missing_firewall_violation
Violation detail for an Network Firewall policy that indicates that a subnet has no Firewall Manager managed firewall in its VPC. @return [Types::NetworkFirewallMissingFirewallViolation]
@!attribute [rw] network_firewall_missing_subnet_violation
Violation detail for an Network Firewall policy that indicates that an Availability Zone is missing the expected Firewall Manager managed subnet. @return [Types::NetworkFirewallMissingSubnetViolation]
@!attribute [rw] network_firewall_missing_expected_rt_violation
Violation detail for an Network Firewall policy that indicates that a subnet is not associated with the expected Firewall Manager managed route table. @return [Types::NetworkFirewallMissingExpectedRTViolation]
@!attribute [rw] network_firewall_policy_modified_violation
Violation detail for an Network Firewall policy that indicates that a firewall policy in an individual account has been modified in a way that makes it noncompliant. For example, the individual account owner might have deleted a rule group, changed the priority of a stateless rule group, or changed a policy default action. @return [Types::NetworkFirewallPolicyModifiedViolation]
@!attribute [rw] network_firewall_internet_traffic_not_inspected_violation
Violation detail for the subnet for which internet traffic hasn't been inspected. @return [Types::NetworkFirewallInternetTrafficNotInspectedViolation]
@!attribute [rw] network_firewall_invalid_route_configuration_violation
The route configuration is invalid. @return [Types::NetworkFirewallInvalidRouteConfigurationViolation]
@!attribute [rw] network_firewall_black_hole_route_detected_violation
Violation detail for an internet gateway route with an inactive state in the customer subnet route table or Network Firewall subnet route table. @return [Types::NetworkFirewallBlackHoleRouteDetectedViolation]
@!attribute [rw] network_firewall_unexpected_firewall_routes_violation
There's an unexpected firewall route. @return [Types::NetworkFirewallUnexpectedFirewallRoutesViolation]
@!attribute [rw] network_firewall_unexpected_gateway_routes_violation
There's an unexpected gateway route. @return [Types::NetworkFirewallUnexpectedGatewayRoutesViolation]
@!attribute [rw] network_firewall_missing_expected_routes_violation
Expected routes are missing from Network Firewall. @return [Types::NetworkFirewallMissingExpectedRoutesViolation]
@!attribute [rw] dns_rule_group_priority_conflict_violation
Violation detail for a DNS Firewall policy that indicates that a rule group that Firewall Manager tried to associate with a VPC has the same priority as a rule group that's already associated. @return [Types::DnsRuleGroupPriorityConflictViolation]
@!attribute [rw] dns_duplicate_rule_group_violation
Violation detail for a DNS Firewall policy that indicates that a rule group that Firewall Manager tried to associate with a VPC is already associated with the VPC and can't be associated again. @return [Types::DnsDuplicateRuleGroupViolation]
@!attribute [rw] dns_rule_group_limit_exceeded_violation
Violation detail for a DNS Firewall policy that indicates that the VPC reached the limit for associated DNS Firewall rule groups. Firewall Manager tried to associate another rule group with the VPC and failed. @return [Types::DnsRuleGroupLimitExceededViolation]
@!attribute [rw] possible_remediation_actions
A list of possible remediation action lists. Each individual possible remediation action is a list of individual remediation actions. @return [Types::PossibleRemediationActions]
@see docs.aws.amazon.com/goto/WebAPI/fms-2018-01-01/ResourceViolation AWS API Documentation
Constants
- SENSITIVE