Amazon Network Firewall · Schema

RulesSource

The stateless or stateful rules definitions for use in a single rule group. Each rule group requires a single RulesSource. You can use an instance of this for either stateless rules or stateful rules.

FirewallIntrusion DetectionNetwork SecurityVPC

Properties

Name Type Description
RulesString object
RulesSourceList object
StatefulRules object
StatelessRulesAndCustomActions object
View JSON Schema on GitHub

JSON Schema

openapi-rules-source-schema.json Raw ↑ 
{
  "$schema": "https://json-schema.org/draft/2020-12/schema",
  "$id": "https://raw.githubusercontent.com/api-evangelist/amazon-network-firewall/refs/heads/main/json-schema/openapi-rules-source-schema.json",
  "title": "RulesSource",
  "description": "The stateless or stateful rules definitions for use in a single rule group. Each rule group requires a single <code>RulesSource</code>. You can use an instance of this for either stateless rules or stateful rules. ",
  "type": "object",
  "properties": {
    "RulesString": {
      "allOf": [
        {
          "$ref": "#/components/schemas/RulesString"
        },
        {
          "description": "<p>Stateful inspection criteria, provided in Suricata compatible intrusion prevention system (IPS) rules. Suricata is an open-source network IPS that includes a standard rule-based language for network traffic inspection.</p> <p>These rules contain the inspection criteria and the action to take for traffic that matches the criteria, so this type of rule group doesn't have a separate action setting.</p>"
        }
      ]
    },
    "RulesSourceList": {
      "allOf": [
        {
          "$ref": "#/components/schemas/RulesSourceList"
        },
        {
          "description": "Stateful inspection criteria for a domain list rule group. "
        }
      ]
    },
    "StatefulRules": {
      "allOf": [
        {
          "$ref": "#/components/schemas/StatefulRules"
        },
        {
          "description": "An array of individual stateful rules inspection criteria to be used together in a stateful rule group. Use this option to specify simple Suricata rules with protocol, source and destination, ports, direction, and rule options. For information about the Suricata <code>Rules</code> format, see <a href=\"https://suricata.readthedocs.iorules/intro.html#\">Rules Format</a>. "
        }
      ]
    },
    "StatelessRulesAndCustomActions": {
      "allOf": [
        {
          "$ref": "#/components/schemas/StatelessRulesAndCustomActions"
        },
        {
          "description": "Stateless inspection criteria to be used in a stateless rule group. "
        }
      ]
    }
  }
}