Amazon Network Firewall · Schema
StatelessRule
A single stateless rule. This is used in StatelessRulesAndCustomActions.
FirewallIntrusion DetectionNetwork SecurityVPC
Properties
| Name | Type | Description |
|---|---|---|
| RuleDefinition | object | |
| Priority | object |
JSON Schema
{
"$schema": "https://json-schema.org/draft/2020-12/schema",
"$id": "https://raw.githubusercontent.com/api-evangelist/amazon-network-firewall/refs/heads/main/json-schema/openapi-stateless-rule-schema.json",
"title": "StatelessRule",
"description": "A single stateless rule. This is used in <a>StatelessRulesAndCustomActions</a>.",
"type": "object",
"properties": {
"RuleDefinition": {
"allOf": [
{
"$ref": "#/components/schemas/RuleDefinition"
},
{
"description": "Defines the stateless 5-tuple packet inspection criteria and the action to take on a packet that matches the criteria. "
}
]
},
"Priority": {
"allOf": [
{
"$ref": "#/components/schemas/Priority"
},
{
"description": "<p>Indicates the order in which to run this rule relative to all of the rules that are defined for a stateless rule group. Network Firewall evaluates the rules in a rule group starting with the lowest priority setting. You must ensure that the priority settings are unique for the rule group. </p> <p>Each stateless rule group uses exactly one <code>StatelessRulesAndCustomActions</code> object, and each <code>StatelessRulesAndCustomActions</code> contains exactly one <code>StatelessRules</code> object. To ensure unique priority settings for your rule groups, set unique priorities for the stateless rules that you define inside any single <code>StatelessRules</code> object.</p> <p>You can change the priority settings of your rules at any time. To make it easier to insert rules later, number them so there's a wide range in between, for example use 100, 200, and so on. </p>"
}
]
}
},
"required": [
"RuleDefinition",
"Priority"
]
}