Firewall
data class FirewallPolicyStatefulEngineOptions(val flowTimeouts: FirewallPolicyStatefulEngineOptionsFlowTimeoutsProperties? = null, val ruleOrder: FirewallPolicyRuleOrder? = null, val streamExceptionPolicy: FirewallPolicyStreamExceptionPolicy? = null)
Constructors
Link copied to clipboard
constructor(flowTimeouts: FirewallPolicyStatefulEngineOptionsFlowTimeoutsProperties? = null, ruleOrder: FirewallPolicyRuleOrder? = null, streamExceptionPolicy: FirewallPolicyStreamExceptionPolicy? = null)
Properties
Link copied to clipboard
Configures the amount of time that can pass without any traffic sent through the firewall before the firewall determines that the connection is idle.
Link copied to clipboard
Indicates how to manage the order of stateful rule evaluation for the policy. DEFAULT_ACTION_ORDER is the default behavior. Stateful rules are provided to the rule engine as Suricata compatible strings, and Suricata evaluates them based on certain settings. For more information, see Evaluation order for stateful rules in the AWS Network Firewall Developer Guide .
Link copied to clipboard
Configures how Network Firewall processes traffic when a network connection breaks midstream. Network connections can break due to disruptions in external networks or within the firewall itself.