libZSservicesZSamazonka-securityhubZSamazonka-securityhub
Copyright(c) 2013-2021 Brendan Hay
LicenseMozilla Public License, v. 2.0.
MaintainerBrendan Hay <brendan.g.hay+amazonka@gmail.com>
Stabilityauto-generated
Portabilitynon-portable (GHC extensions)
Safe HaskellNone

Amazonka.SecurityHub.Types.AwsEc2NetworkAclEntry

Description

 
Synopsis

Documentation

data AwsEc2NetworkAclEntry Source #

A rule for the network ACL. Each rule allows or denies access based on the IP address, traffic direction, port, and protocol.

See: newAwsEc2NetworkAclEntry smart constructor.

Constructors

AwsEc2NetworkAclEntry' 

Fields

Instances

Instances details
Eq AwsEc2NetworkAclEntry Source # 
Instance details

Defined in Amazonka.SecurityHub.Types.AwsEc2NetworkAclEntry

Read AwsEc2NetworkAclEntry Source # 
Instance details

Defined in Amazonka.SecurityHub.Types.AwsEc2NetworkAclEntry

Show AwsEc2NetworkAclEntry Source # 
Instance details

Defined in Amazonka.SecurityHub.Types.AwsEc2NetworkAclEntry

Generic AwsEc2NetworkAclEntry Source # 
Instance details

Defined in Amazonka.SecurityHub.Types.AwsEc2NetworkAclEntry

Associated Types

type Rep AwsEc2NetworkAclEntry :: Type -> Type #

NFData AwsEc2NetworkAclEntry Source # 
Instance details

Defined in Amazonka.SecurityHub.Types.AwsEc2NetworkAclEntry

Methods

rnf :: AwsEc2NetworkAclEntry -> () #

Hashable AwsEc2NetworkAclEntry Source # 
Instance details

Defined in Amazonka.SecurityHub.Types.AwsEc2NetworkAclEntry

ToJSON AwsEc2NetworkAclEntry Source # 
Instance details

Defined in Amazonka.SecurityHub.Types.AwsEc2NetworkAclEntry

FromJSON AwsEc2NetworkAclEntry Source # 
Instance details

Defined in Amazonka.SecurityHub.Types.AwsEc2NetworkAclEntry

type Rep AwsEc2NetworkAclEntry Source # 
Instance details

Defined in Amazonka.SecurityHub.Types.AwsEc2NetworkAclEntry

type Rep AwsEc2NetworkAclEntry = D1 ('MetaData "AwsEc2NetworkAclEntry" "Amazonka.SecurityHub.Types.AwsEc2NetworkAclEntry" "libZSservicesZSamazonka-securityhubZSamazonka-securityhub" 'False) (C1 ('MetaCons "AwsEc2NetworkAclEntry'" 'PrefixI 'True) (((S1 ('MetaSel ('Just "ipv6CidrBlock") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :*: S1 ('MetaSel ('Just "icmpTypeCode") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe IcmpTypeCode))) :*: (S1 ('MetaSel ('Just "ruleNumber") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Int)) :*: S1 ('MetaSel ('Just "ruleAction") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)))) :*: ((S1 ('MetaSel ('Just "protocol") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :*: S1 ('MetaSel ('Just "portRange") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe PortRangeFromTo))) :*: (S1 ('MetaSel ('Just "cidrBlock") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :*: S1 ('MetaSel ('Just "egress") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Bool))))))

newAwsEc2NetworkAclEntry :: AwsEc2NetworkAclEntry Source #

Create a value of AwsEc2NetworkAclEntry with all optional fields omitted.

Use generic-lens or optics to modify other optional fields.

The following record fields are available, with the corresponding lenses provided for backwards compatibility:

$sel:ipv6CidrBlock:AwsEc2NetworkAclEntry', awsEc2NetworkAclEntry_ipv6CidrBlock - The IPV6 network range for which to deny or allow access.

$sel:icmpTypeCode:AwsEc2NetworkAclEntry', awsEc2NetworkAclEntry_icmpTypeCode - The Internet Control Message Protocol (ICMP) type and code for which to deny or allow access.

$sel:ruleNumber:AwsEc2NetworkAclEntry', awsEc2NetworkAclEntry_ruleNumber - The rule number. The rules are processed in order by their number.

$sel:ruleAction:AwsEc2NetworkAclEntry', awsEc2NetworkAclEntry_ruleAction - Whether the rule is used to allow access or deny access.

$sel:protocol:AwsEc2NetworkAclEntry', awsEc2NetworkAclEntry_protocol - The protocol that the rule applies to. To deny or allow access to all protocols, use the value -1.

$sel:portRange:AwsEc2NetworkAclEntry', awsEc2NetworkAclEntry_portRange - For TCP or UDP protocols, the range of ports that the rule applies to.

$sel:cidrBlock:AwsEc2NetworkAclEntry', awsEc2NetworkAclEntry_cidrBlock - The IPV4 network range for which to deny or allow access.

$sel:egress:AwsEc2NetworkAclEntry', awsEc2NetworkAclEntry_egress - Whether the rule is an egress rule. An egress rule is a rule that applies to traffic that leaves the subnet.

awsEc2NetworkAclEntry_ipv6CidrBlock :: Lens' AwsEc2NetworkAclEntry (Maybe Text) Source #

The IPV6 network range for which to deny or allow access.

awsEc2NetworkAclEntry_icmpTypeCode :: Lens' AwsEc2NetworkAclEntry (Maybe IcmpTypeCode) Source #

The Internet Control Message Protocol (ICMP) type and code for which to deny or allow access.

awsEc2NetworkAclEntry_ruleNumber :: Lens' AwsEc2NetworkAclEntry (Maybe Int) Source #

The rule number. The rules are processed in order by their number.

awsEc2NetworkAclEntry_ruleAction :: Lens' AwsEc2NetworkAclEntry (Maybe Text) Source #

Whether the rule is used to allow access or deny access.

awsEc2NetworkAclEntry_protocol :: Lens' AwsEc2NetworkAclEntry (Maybe Text) Source #

The protocol that the rule applies to. To deny or allow access to all protocols, use the value -1.

awsEc2NetworkAclEntry_portRange :: Lens' AwsEc2NetworkAclEntry (Maybe PortRangeFromTo) Source #

For TCP or UDP protocols, the range of ports that the rule applies to.

awsEc2NetworkAclEntry_cidrBlock :: Lens' AwsEc2NetworkAclEntry (Maybe Text) Source #

The IPV4 network range for which to deny or allow access.

awsEc2NetworkAclEntry_egress :: Lens' AwsEc2NetworkAclEntry (Maybe Bool) Source #

Whether the rule is an egress rule. An egress rule is a rule that applies to traffic that leaves the subnet.