Interface NetworkFirewallClient
- All Superinterfaces:
AutoCloseable
,AwsClient
,SdkAutoCloseable
,SdkClient
builder()
method.
This is the API Reference for Network Firewall. This guide is for developers who need detailed information about the Network Firewall API actions, data types, and errors.
-
The REST API requires you to handle connection details, such as calculating signatures, handling request retries, and error handling. For general information about using the Amazon Web Services REST APIs, see Amazon Web Services APIs.
To access Network Firewall using the REST API endpoint:
https://network-firewall.<region>.amazonaws.com
-
Alternatively, you can use one of the Amazon Web Services SDKs to access an API that's tailored to the programming language or platform that you're using. For more information, see Amazon Web Services SDKs.
-
For descriptions of Network Firewall features, including and step-by-step instructions on how to use them through the Network Firewall console, see the Network Firewall Developer Guide.
Network Firewall is a stateful, managed, network firewall and intrusion detection and prevention service for Amazon Virtual Private Cloud (Amazon VPC). With Network Firewall, you can filter traffic at the perimeter of your VPC. This includes filtering traffic going to and coming from an internet gateway, NAT gateway, or over VPN or Direct Connect. Network Firewall uses rules that are compatible with Suricata, a free, open source network analysis and threat detection engine. Network Firewall supports Suricata version 6.0.9. For information about Suricata, see the Suricata website.
You can use Network Firewall to monitor and protect your VPC traffic in a number of ways. The following are just a few examples:
-
Allow domains or IP addresses for known Amazon Web Services service endpoints, such as Amazon S3, and block all other forms of traffic.
-
Use custom lists of known bad domains to limit the types of domain names that your applications can access.
-
Perform deep packet inspection on traffic entering or leaving your VPC.
-
Use stateful protocol detection to filter protocols like HTTPS, regardless of the port used.
To enable Network Firewall for your VPCs, you perform steps in both Amazon VPC and in Network Firewall. For information about using Amazon VPC, see Amazon VPC User Guide.
To start using Network Firewall, do the following:
-
(Optional) If you don't already have a VPC that you want to protect, create it in Amazon VPC.
-
In Amazon VPC, in each Availability Zone where you want to have a firewall endpoint, create a subnet for the sole use of Network Firewall.
-
In Network Firewall, create stateless and stateful rule groups, to define the components of the network traffic filtering behavior that you want your firewall to have.
-
In Network Firewall, create a firewall policy that uses your rule groups and specifies additional default traffic filtering behavior.
-
In Network Firewall, create a firewall and specify your new firewall policy and VPC subnets. Network Firewall creates a firewall endpoint in each subnet that you specify, with the behavior that's defined in the firewall policy.
-
In Amazon VPC, use ingress routing enhancements to route traffic through the new firewall endpoints.
-
Field Summary
Modifier and TypeFieldDescriptionstatic final String
Value for looking up the service's metadata from theServiceMetadataProvider
.static final String
-
Method Summary
Modifier and TypeMethodDescriptiondefault AssociateFirewallPolicyResponse
associateFirewallPolicy
(Consumer<AssociateFirewallPolicyRequest.Builder> associateFirewallPolicyRequest) Associates a FirewallPolicy to a Firewall.default AssociateFirewallPolicyResponse
associateFirewallPolicy
(AssociateFirewallPolicyRequest associateFirewallPolicyRequest) Associates a FirewallPolicy to a Firewall.default AssociateSubnetsResponse
associateSubnets
(Consumer<AssociateSubnetsRequest.Builder> associateSubnetsRequest) Associates the specified subnets in the Amazon VPC to the firewall.default AssociateSubnetsResponse
associateSubnets
(AssociateSubnetsRequest associateSubnetsRequest) Associates the specified subnets in the Amazon VPC to the firewall.static NetworkFirewallClientBuilder
builder()
Create a builder that can be used to configure and create aNetworkFirewallClient
.static NetworkFirewallClient
create()
Create aNetworkFirewallClient
with the region loaded from theDefaultAwsRegionProviderChain
and credentials loaded from theDefaultCredentialsProvider
.default CreateFirewallResponse
createFirewall
(Consumer<CreateFirewallRequest.Builder> createFirewallRequest) Creates an Network Firewall Firewall and accompanying FirewallStatus for a VPC.default CreateFirewallResponse
createFirewall
(CreateFirewallRequest createFirewallRequest) Creates an Network Firewall Firewall and accompanying FirewallStatus for a VPC.default CreateFirewallPolicyResponse
createFirewallPolicy
(Consumer<CreateFirewallPolicyRequest.Builder> createFirewallPolicyRequest) Creates the firewall policy for the firewall according to the specifications.default CreateFirewallPolicyResponse
createFirewallPolicy
(CreateFirewallPolicyRequest createFirewallPolicyRequest) Creates the firewall policy for the firewall according to the specifications.default CreateRuleGroupResponse
createRuleGroup
(Consumer<CreateRuleGroupRequest.Builder> createRuleGroupRequest) Creates the specified stateless or stateful rule group, which includes the rules for network traffic inspection, a capacity setting, and tags.default CreateRuleGroupResponse
createRuleGroup
(CreateRuleGroupRequest createRuleGroupRequest) Creates the specified stateless or stateful rule group, which includes the rules for network traffic inspection, a capacity setting, and tags.createTLSInspectionConfiguration
(Consumer<CreateTlsInspectionConfigurationRequest.Builder> createTlsInspectionConfigurationRequest) Creates an Network Firewall TLS inspection configuration.createTLSInspectionConfiguration
(CreateTlsInspectionConfigurationRequest createTlsInspectionConfigurationRequest) Creates an Network Firewall TLS inspection configuration.default DeleteFirewallResponse
deleteFirewall
(Consumer<DeleteFirewallRequest.Builder> deleteFirewallRequest) Deletes the specified Firewall and its FirewallStatus.default DeleteFirewallResponse
deleteFirewall
(DeleteFirewallRequest deleteFirewallRequest) Deletes the specified Firewall and its FirewallStatus.default DeleteFirewallPolicyResponse
deleteFirewallPolicy
(Consumer<DeleteFirewallPolicyRequest.Builder> deleteFirewallPolicyRequest) Deletes the specified FirewallPolicy.default DeleteFirewallPolicyResponse
deleteFirewallPolicy
(DeleteFirewallPolicyRequest deleteFirewallPolicyRequest) Deletes the specified FirewallPolicy.default DeleteResourcePolicyResponse
deleteResourcePolicy
(Consumer<DeleteResourcePolicyRequest.Builder> deleteResourcePolicyRequest) Deletes a resource policy that you created in a PutResourcePolicy request.default DeleteResourcePolicyResponse
deleteResourcePolicy
(DeleteResourcePolicyRequest deleteResourcePolicyRequest) Deletes a resource policy that you created in a PutResourcePolicy request.default DeleteRuleGroupResponse
deleteRuleGroup
(Consumer<DeleteRuleGroupRequest.Builder> deleteRuleGroupRequest) Deletes the specified RuleGroup.default DeleteRuleGroupResponse
deleteRuleGroup
(DeleteRuleGroupRequest deleteRuleGroupRequest) Deletes the specified RuleGroup.deleteTLSInspectionConfiguration
(Consumer<DeleteTlsInspectionConfigurationRequest.Builder> deleteTlsInspectionConfigurationRequest) Deletes the specified TLSInspectionConfiguration.deleteTLSInspectionConfiguration
(DeleteTlsInspectionConfigurationRequest deleteTlsInspectionConfigurationRequest) Deletes the specified TLSInspectionConfiguration.default DescribeFirewallResponse
describeFirewall
(Consumer<DescribeFirewallRequest.Builder> describeFirewallRequest) Returns the data objects for the specified firewall.default DescribeFirewallResponse
describeFirewall
(DescribeFirewallRequest describeFirewallRequest) Returns the data objects for the specified firewall.default DescribeFirewallPolicyResponse
describeFirewallPolicy
(Consumer<DescribeFirewallPolicyRequest.Builder> describeFirewallPolicyRequest) Returns the data objects for the specified firewall policy.default DescribeFirewallPolicyResponse
describeFirewallPolicy
(DescribeFirewallPolicyRequest describeFirewallPolicyRequest) Returns the data objects for the specified firewall policy.describeLoggingConfiguration
(Consumer<DescribeLoggingConfigurationRequest.Builder> describeLoggingConfigurationRequest) Returns the logging configuration for the specified firewall.describeLoggingConfiguration
(DescribeLoggingConfigurationRequest describeLoggingConfigurationRequest) Returns the logging configuration for the specified firewall.default DescribeResourcePolicyResponse
describeResourcePolicy
(Consumer<DescribeResourcePolicyRequest.Builder> describeResourcePolicyRequest) Retrieves a resource policy that you created in a PutResourcePolicy request.default DescribeResourcePolicyResponse
describeResourcePolicy
(DescribeResourcePolicyRequest describeResourcePolicyRequest) Retrieves a resource policy that you created in a PutResourcePolicy request.default DescribeRuleGroupResponse
describeRuleGroup
(Consumer<DescribeRuleGroupRequest.Builder> describeRuleGroupRequest) Returns the data objects for the specified rule group.default DescribeRuleGroupResponse
describeRuleGroup
(DescribeRuleGroupRequest describeRuleGroupRequest) Returns the data objects for the specified rule group.describeRuleGroupMetadata
(Consumer<DescribeRuleGroupMetadataRequest.Builder> describeRuleGroupMetadataRequest) High-level information about a rule group, returned by operations like create and describe.describeRuleGroupMetadata
(DescribeRuleGroupMetadataRequest describeRuleGroupMetadataRequest) High-level information about a rule group, returned by operations like create and describe.describeTLSInspectionConfiguration
(Consumer<DescribeTlsInspectionConfigurationRequest.Builder> describeTlsInspectionConfigurationRequest) Returns the data objects for the specified TLS inspection configuration.describeTLSInspectionConfiguration
(DescribeTlsInspectionConfigurationRequest describeTlsInspectionConfigurationRequest) Returns the data objects for the specified TLS inspection configuration.default DisassociateSubnetsResponse
disassociateSubnets
(Consumer<DisassociateSubnetsRequest.Builder> disassociateSubnetsRequest) Removes the specified subnet associations from the firewall.default DisassociateSubnetsResponse
disassociateSubnets
(DisassociateSubnetsRequest disassociateSubnetsRequest) Removes the specified subnet associations from the firewall.default ListFirewallPoliciesResponse
listFirewallPolicies
(Consumer<ListFirewallPoliciesRequest.Builder> listFirewallPoliciesRequest) Retrieves the metadata for the firewall policies that you have defined.default ListFirewallPoliciesResponse
listFirewallPolicies
(ListFirewallPoliciesRequest listFirewallPoliciesRequest) Retrieves the metadata for the firewall policies that you have defined.default ListFirewallPoliciesIterable
listFirewallPoliciesPaginator
(Consumer<ListFirewallPoliciesRequest.Builder> listFirewallPoliciesRequest) This is a variant oflistFirewallPolicies(software.amazon.awssdk.services.networkfirewall.model.ListFirewallPoliciesRequest)
operation.default ListFirewallPoliciesIterable
listFirewallPoliciesPaginator
(ListFirewallPoliciesRequest listFirewallPoliciesRequest) This is a variant oflistFirewallPolicies(software.amazon.awssdk.services.networkfirewall.model.ListFirewallPoliciesRequest)
operation.default ListFirewallsResponse
listFirewalls
(Consumer<ListFirewallsRequest.Builder> listFirewallsRequest) Retrieves the metadata for the firewalls that you have defined.default ListFirewallsResponse
listFirewalls
(ListFirewallsRequest listFirewallsRequest) Retrieves the metadata for the firewalls that you have defined.default ListFirewallsIterable
listFirewallsPaginator
(Consumer<ListFirewallsRequest.Builder> listFirewallsRequest) This is a variant oflistFirewalls(software.amazon.awssdk.services.networkfirewall.model.ListFirewallsRequest)
operation.default ListFirewallsIterable
listFirewallsPaginator
(ListFirewallsRequest listFirewallsRequest) This is a variant oflistFirewalls(software.amazon.awssdk.services.networkfirewall.model.ListFirewallsRequest)
operation.default ListRuleGroupsResponse
listRuleGroups
(Consumer<ListRuleGroupsRequest.Builder> listRuleGroupsRequest) Retrieves the metadata for the rule groups that you have defined.default ListRuleGroupsResponse
listRuleGroups
(ListRuleGroupsRequest listRuleGroupsRequest) Retrieves the metadata for the rule groups that you have defined.default ListRuleGroupsIterable
listRuleGroupsPaginator
(Consumer<ListRuleGroupsRequest.Builder> listRuleGroupsRequest) This is a variant oflistRuleGroups(software.amazon.awssdk.services.networkfirewall.model.ListRuleGroupsRequest)
operation.default ListRuleGroupsIterable
listRuleGroupsPaginator
(ListRuleGroupsRequest listRuleGroupsRequest) This is a variant oflistRuleGroups(software.amazon.awssdk.services.networkfirewall.model.ListRuleGroupsRequest)
operation.default ListTagsForResourceResponse
listTagsForResource
(Consumer<ListTagsForResourceRequest.Builder> listTagsForResourceRequest) Retrieves the tags associated with the specified resource.default ListTagsForResourceResponse
listTagsForResource
(ListTagsForResourceRequest listTagsForResourceRequest) Retrieves the tags associated with the specified resource.default ListTagsForResourceIterable
listTagsForResourcePaginator
(Consumer<ListTagsForResourceRequest.Builder> listTagsForResourceRequest) This is a variant oflistTagsForResource(software.amazon.awssdk.services.networkfirewall.model.ListTagsForResourceRequest)
operation.default ListTagsForResourceIterable
listTagsForResourcePaginator
(ListTagsForResourceRequest listTagsForResourceRequest) This is a variant oflistTagsForResource(software.amazon.awssdk.services.networkfirewall.model.ListTagsForResourceRequest)
operation.listTLSInspectionConfigurations
(Consumer<ListTlsInspectionConfigurationsRequest.Builder> listTlsInspectionConfigurationsRequest) Retrieves the metadata for the TLS inspection configurations that you have defined.listTLSInspectionConfigurations
(ListTlsInspectionConfigurationsRequest listTlsInspectionConfigurationsRequest) Retrieves the metadata for the TLS inspection configurations that you have defined.listTLSInspectionConfigurationsPaginator
(Consumer<ListTlsInspectionConfigurationsRequest.Builder> listTlsInspectionConfigurationsRequest) This is a variant oflistTLSInspectionConfigurations(software.amazon.awssdk.services.networkfirewall.model.ListTlsInspectionConfigurationsRequest)
operation.listTLSInspectionConfigurationsPaginator
(ListTlsInspectionConfigurationsRequest listTlsInspectionConfigurationsRequest) This is a variant oflistTLSInspectionConfigurations(software.amazon.awssdk.services.networkfirewall.model.ListTlsInspectionConfigurationsRequest)
operation.default PutResourcePolicyResponse
putResourcePolicy
(Consumer<PutResourcePolicyRequest.Builder> putResourcePolicyRequest) Creates or updates an IAM policy for your rule group or firewall policy.default PutResourcePolicyResponse
putResourcePolicy
(PutResourcePolicyRequest putResourcePolicyRequest) Creates or updates an IAM policy for your rule group or firewall policy.The SDK service client configuration exposes client settings to the user, e.g., ClientOverrideConfigurationstatic ServiceMetadata
default TagResourceResponse
tagResource
(Consumer<TagResourceRequest.Builder> tagResourceRequest) Adds the specified tags to the specified resource.default TagResourceResponse
tagResource
(TagResourceRequest tagResourceRequest) Adds the specified tags to the specified resource.default UntagResourceResponse
untagResource
(Consumer<UntagResourceRequest.Builder> untagResourceRequest) Removes the tags with the specified keys from the specified resource.default UntagResourceResponse
untagResource
(UntagResourceRequest untagResourceRequest) Removes the tags with the specified keys from the specified resource.updateFirewallDeleteProtection
(Consumer<UpdateFirewallDeleteProtectionRequest.Builder> updateFirewallDeleteProtectionRequest) Modifies the flag,DeleteProtection
, which indicates whether it is possible to delete the firewall.updateFirewallDeleteProtection
(UpdateFirewallDeleteProtectionRequest updateFirewallDeleteProtectionRequest) Modifies the flag,DeleteProtection
, which indicates whether it is possible to delete the firewall.updateFirewallDescription
(Consumer<UpdateFirewallDescriptionRequest.Builder> updateFirewallDescriptionRequest) Modifies the description for the specified firewall.updateFirewallDescription
(UpdateFirewallDescriptionRequest updateFirewallDescriptionRequest) Modifies the description for the specified firewall.updateFirewallEncryptionConfiguration
(Consumer<UpdateFirewallEncryptionConfigurationRequest.Builder> updateFirewallEncryptionConfigurationRequest) A complex type that contains settings for encryption of your firewall resources.updateFirewallEncryptionConfiguration
(UpdateFirewallEncryptionConfigurationRequest updateFirewallEncryptionConfigurationRequest) A complex type that contains settings for encryption of your firewall resources.default UpdateFirewallPolicyResponse
updateFirewallPolicy
(Consumer<UpdateFirewallPolicyRequest.Builder> updateFirewallPolicyRequest) Updates the properties of the specified firewall policy.default UpdateFirewallPolicyResponse
updateFirewallPolicy
(UpdateFirewallPolicyRequest updateFirewallPolicyRequest) Updates the properties of the specified firewall policy.updateFirewallPolicyChangeProtection
(Consumer<UpdateFirewallPolicyChangeProtectionRequest.Builder> updateFirewallPolicyChangeProtectionRequest) Modifies the flag,ChangeProtection
, which indicates whether it is possible to change the firewall.updateFirewallPolicyChangeProtection
(UpdateFirewallPolicyChangeProtectionRequest updateFirewallPolicyChangeProtectionRequest) Modifies the flag,ChangeProtection
, which indicates whether it is possible to change the firewall.updateLoggingConfiguration
(Consumer<UpdateLoggingConfigurationRequest.Builder> updateLoggingConfigurationRequest) Sets the logging configuration for the specified firewall.updateLoggingConfiguration
(UpdateLoggingConfigurationRequest updateLoggingConfigurationRequest) Sets the logging configuration for the specified firewall.default UpdateRuleGroupResponse
updateRuleGroup
(Consumer<UpdateRuleGroupRequest.Builder> updateRuleGroupRequest) Updates the rule settings for the specified rule group.default UpdateRuleGroupResponse
updateRuleGroup
(UpdateRuleGroupRequest updateRuleGroupRequest) Updates the rule settings for the specified rule group.updateSubnetChangeProtection
(Consumer<UpdateSubnetChangeProtectionRequest.Builder> updateSubnetChangeProtectionRequest) updateSubnetChangeProtection
(UpdateSubnetChangeProtectionRequest updateSubnetChangeProtectionRequest) updateTLSInspectionConfiguration
(Consumer<UpdateTlsInspectionConfigurationRequest.Builder> updateTlsInspectionConfigurationRequest) Updates the TLS inspection configuration settings for the specified TLS inspection configuration.updateTLSInspectionConfiguration
(UpdateTlsInspectionConfigurationRequest updateTlsInspectionConfigurationRequest) Updates the TLS inspection configuration settings for the specified TLS inspection configuration.Methods inherited from interface software.amazon.awssdk.utils.SdkAutoCloseable
close
Methods inherited from interface software.amazon.awssdk.core.SdkClient
serviceName
-
Field Details
-
SERVICE_NAME
- See Also:
-
SERVICE_METADATA_ID
Value for looking up the service's metadata from theServiceMetadataProvider
.- See Also:
-
-
Method Details
-
associateFirewallPolicy
default AssociateFirewallPolicyResponse associateFirewallPolicy(AssociateFirewallPolicyRequest associateFirewallPolicyRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, InvalidOperationException, AwsServiceException, SdkClientException, NetworkFirewallException Associates a FirewallPolicy to a Firewall.
A firewall policy defines how to monitor and manage your VPC network traffic, using a collection of inspection rule groups and other settings. Each firewall requires one firewall policy association, and you can use the same firewall policy for multiple firewalls.
- Parameters:
associateFirewallPolicyRequest
-- Returns:
- Result of the AssociateFirewallPolicy operation returned by the service.
- See Also:
-
associateFirewallPolicy
default AssociateFirewallPolicyResponse associateFirewallPolicy(Consumer<AssociateFirewallPolicyRequest.Builder> associateFirewallPolicyRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, InvalidOperationException, AwsServiceException, SdkClientException, NetworkFirewallException Associates a FirewallPolicy to a Firewall.
A firewall policy defines how to monitor and manage your VPC network traffic, using a collection of inspection rule groups and other settings. Each firewall requires one firewall policy association, and you can use the same firewall policy for multiple firewalls.
This is a convenience which creates an instance of the
AssociateFirewallPolicyRequest.Builder
avoiding the need to create one manually viaAssociateFirewallPolicyRequest.builder()
- Parameters:
associateFirewallPolicyRequest
- AConsumer
that will call methods onAssociateFirewallPolicyRequest.Builder
to create a request.- Returns:
- Result of the AssociateFirewallPolicy operation returned by the service.
- See Also:
-
associateSubnets
default AssociateSubnetsResponse associateSubnets(AssociateSubnetsRequest associateSubnetsRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, InvalidOperationException, InsufficientCapacityException, AwsServiceException, SdkClientException, NetworkFirewallException Associates the specified subnets in the Amazon VPC to the firewall. You can specify one subnet for each of the Availability Zones that the VPC spans.
This request creates an Network Firewall firewall endpoint in each of the subnets. To enable the firewall's protections, you must also modify the VPC's route tables for each subnet's Availability Zone, to redirect the traffic that's coming into and going out of the zone through the firewall endpoint.
- Parameters:
associateSubnetsRequest
-- Returns:
- Result of the AssociateSubnets operation returned by the service.
- See Also:
-
associateSubnets
default AssociateSubnetsResponse associateSubnets(Consumer<AssociateSubnetsRequest.Builder> associateSubnetsRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, InvalidOperationException, InsufficientCapacityException, AwsServiceException, SdkClientException, NetworkFirewallException Associates the specified subnets in the Amazon VPC to the firewall. You can specify one subnet for each of the Availability Zones that the VPC spans.
This request creates an Network Firewall firewall endpoint in each of the subnets. To enable the firewall's protections, you must also modify the VPC's route tables for each subnet's Availability Zone, to redirect the traffic that's coming into and going out of the zone through the firewall endpoint.
This is a convenience which creates an instance of the
AssociateSubnetsRequest.Builder
avoiding the need to create one manually viaAssociateSubnetsRequest.builder()
- Parameters:
associateSubnetsRequest
- AConsumer
that will call methods onAssociateSubnetsRequest.Builder
to create a request.- Returns:
- Result of the AssociateSubnets operation returned by the service.
- See Also:
-
createFirewall
default CreateFirewallResponse createFirewall(CreateFirewallRequest createFirewallRequest) throws InvalidRequestException, LimitExceededException, InternalServerErrorException, ThrottlingException, InsufficientCapacityException, InvalidOperationException, AwsServiceException, SdkClientException, NetworkFirewallException Creates an Network Firewall Firewall and accompanying FirewallStatus for a VPC.
The firewall defines the configuration settings for an Network Firewall firewall. The settings that you can define at creation include the firewall policy, the subnets in your VPC to use for the firewall endpoints, and any tags that are attached to the firewall Amazon Web Services resource.
After you create a firewall, you can provide additional settings, like the logging configuration.
To update the settings for a firewall, you use the operations that apply to the settings themselves, for example UpdateLoggingConfiguration, AssociateSubnets, and UpdateFirewallDeleteProtection.
To manage a firewall's tags, use the standard Amazon Web Services resource tagging operations, ListTagsForResource, TagResource, and UntagResource.
To retrieve information about firewalls, use ListFirewalls and DescribeFirewall.
- Parameters:
createFirewallRequest
-- Returns:
- Result of the CreateFirewall operation returned by the service.
- See Also:
-
createFirewall
default CreateFirewallResponse createFirewall(Consumer<CreateFirewallRequest.Builder> createFirewallRequest) throws InvalidRequestException, LimitExceededException, InternalServerErrorException, ThrottlingException, InsufficientCapacityException, InvalidOperationException, AwsServiceException, SdkClientException, NetworkFirewallException Creates an Network Firewall Firewall and accompanying FirewallStatus for a VPC.
The firewall defines the configuration settings for an Network Firewall firewall. The settings that you can define at creation include the firewall policy, the subnets in your VPC to use for the firewall endpoints, and any tags that are attached to the firewall Amazon Web Services resource.
After you create a firewall, you can provide additional settings, like the logging configuration.
To update the settings for a firewall, you use the operations that apply to the settings themselves, for example UpdateLoggingConfiguration, AssociateSubnets, and UpdateFirewallDeleteProtection.
To manage a firewall's tags, use the standard Amazon Web Services resource tagging operations, ListTagsForResource, TagResource, and UntagResource.
To retrieve information about firewalls, use ListFirewalls and DescribeFirewall.
This is a convenience which creates an instance of the
CreateFirewallRequest.Builder
avoiding the need to create one manually viaCreateFirewallRequest.builder()
- Parameters:
createFirewallRequest
- AConsumer
that will call methods onCreateFirewallRequest.Builder
to create a request.- Returns:
- Result of the CreateFirewall operation returned by the service.
- See Also:
-
createFirewallPolicy
default CreateFirewallPolicyResponse createFirewallPolicy(CreateFirewallPolicyRequest createFirewallPolicyRequest) throws LimitExceededException, InvalidRequestException, ThrottlingException, InternalServerErrorException, InsufficientCapacityException, AwsServiceException, SdkClientException, NetworkFirewallException Creates the firewall policy for the firewall according to the specifications.
An Network Firewall firewall policy defines the behavior of a firewall, in a collection of stateless and stateful rule groups and other settings. You can use one firewall policy for multiple firewalls.
- Parameters:
createFirewallPolicyRequest
-- Returns:
- Result of the CreateFirewallPolicy operation returned by the service.
- See Also:
-
createFirewallPolicy
default CreateFirewallPolicyResponse createFirewallPolicy(Consumer<CreateFirewallPolicyRequest.Builder> createFirewallPolicyRequest) throws LimitExceededException, InvalidRequestException, ThrottlingException, InternalServerErrorException, InsufficientCapacityException, AwsServiceException, SdkClientException, NetworkFirewallException Creates the firewall policy for the firewall according to the specifications.
An Network Firewall firewall policy defines the behavior of a firewall, in a collection of stateless and stateful rule groups and other settings. You can use one firewall policy for multiple firewalls.
This is a convenience which creates an instance of the
CreateFirewallPolicyRequest.Builder
avoiding the need to create one manually viaCreateFirewallPolicyRequest.builder()
- Parameters:
createFirewallPolicyRequest
- AConsumer
that will call methods onCreateFirewallPolicyRequest.Builder
to create a request.- Returns:
- Result of the CreateFirewallPolicy operation returned by the service.
- See Also:
-
createRuleGroup
default CreateRuleGroupResponse createRuleGroup(CreateRuleGroupRequest createRuleGroupRequest) throws LimitExceededException, InvalidRequestException, ThrottlingException, InternalServerErrorException, InsufficientCapacityException, AwsServiceException, SdkClientException, NetworkFirewallException Creates the specified stateless or stateful rule group, which includes the rules for network traffic inspection, a capacity setting, and tags.
You provide your rule group specification in your request using either
RuleGroup
orRules
.- Parameters:
createRuleGroupRequest
-- Returns:
- Result of the CreateRuleGroup operation returned by the service.
- See Also:
-
createRuleGroup
default CreateRuleGroupResponse createRuleGroup(Consumer<CreateRuleGroupRequest.Builder> createRuleGroupRequest) throws LimitExceededException, InvalidRequestException, ThrottlingException, InternalServerErrorException, InsufficientCapacityException, AwsServiceException, SdkClientException, NetworkFirewallException Creates the specified stateless or stateful rule group, which includes the rules for network traffic inspection, a capacity setting, and tags.
You provide your rule group specification in your request using either
RuleGroup
orRules
.
This is a convenience which creates an instance of the
CreateRuleGroupRequest.Builder
avoiding the need to create one manually viaCreateRuleGroupRequest.builder()
- Parameters:
createRuleGroupRequest
- AConsumer
that will call methods onCreateRuleGroupRequest.Builder
to create a request.- Returns:
- Result of the CreateRuleGroup operation returned by the service.
- See Also:
-
createTLSInspectionConfiguration
default CreateTlsInspectionConfigurationResponse createTLSInspectionConfiguration(CreateTlsInspectionConfigurationRequest createTlsInspectionConfigurationRequest) throws InvalidRequestException, ThrottlingException, InternalServerErrorException, LimitExceededException, InsufficientCapacityException, AwsServiceException, SdkClientException, NetworkFirewallException Creates an Network Firewall TLS inspection configuration. A TLS inspection configuration contains Certificate Manager certificate associations between and the scope configurations that Network Firewall uses to decrypt and re-encrypt traffic traveling through your firewall.
After you create a TLS inspection configuration, you can associate it with a new firewall policy.
To update the settings for a TLS inspection configuration, use UpdateTLSInspectionConfiguration.
To manage a TLS inspection configuration's tags, use the standard Amazon Web Services resource tagging operations, ListTagsForResource, TagResource, and UntagResource.
To retrieve information about TLS inspection configurations, use ListTLSInspectionConfigurations and DescribeTLSInspectionConfiguration.
For more information about TLS inspection configurations, see Inspecting SSL/TLS traffic with TLS inspection configurations in the Network Firewall Developer Guide.
- Parameters:
createTlsInspectionConfigurationRequest
-- Returns:
- Result of the CreateTLSInspectionConfiguration operation returned by the service.
- See Also:
-
createTLSInspectionConfiguration
default CreateTlsInspectionConfigurationResponse createTLSInspectionConfiguration(Consumer<CreateTlsInspectionConfigurationRequest.Builder> createTlsInspectionConfigurationRequest) throws InvalidRequestException, ThrottlingException, InternalServerErrorException, LimitExceededException, InsufficientCapacityException, AwsServiceException, SdkClientException, NetworkFirewallException Creates an Network Firewall TLS inspection configuration. A TLS inspection configuration contains Certificate Manager certificate associations between and the scope configurations that Network Firewall uses to decrypt and re-encrypt traffic traveling through your firewall.
After you create a TLS inspection configuration, you can associate it with a new firewall policy.
To update the settings for a TLS inspection configuration, use UpdateTLSInspectionConfiguration.
To manage a TLS inspection configuration's tags, use the standard Amazon Web Services resource tagging operations, ListTagsForResource, TagResource, and UntagResource.
To retrieve information about TLS inspection configurations, use ListTLSInspectionConfigurations and DescribeTLSInspectionConfiguration.
For more information about TLS inspection configurations, see Inspecting SSL/TLS traffic with TLS inspection configurations in the Network Firewall Developer Guide.
This is a convenience which creates an instance of the
CreateTlsInspectionConfigurationRequest.Builder
avoiding the need to create one manually viaCreateTlsInspectionConfigurationRequest.builder()
- Parameters:
createTlsInspectionConfigurationRequest
- AConsumer
that will call methods onCreateTlsInspectionConfigurationRequest.Builder
to create a request.- Returns:
- Result of the CreateTLSInspectionConfiguration operation returned by the service.
- See Also:
-
deleteFirewall
default DeleteFirewallResponse deleteFirewall(DeleteFirewallRequest deleteFirewallRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, UnsupportedOperationException, InvalidOperationException, AwsServiceException, SdkClientException, NetworkFirewallException Deletes the specified Firewall and its FirewallStatus. This operation requires the firewall's
DeleteProtection
flag to beFALSE
. You can't revert this operation.You can check whether a firewall is in use by reviewing the route tables for the Availability Zones where you have firewall subnet mappings. Retrieve the subnet mappings by calling DescribeFirewall. You define and update the route tables through Amazon VPC. As needed, update the route tables for the zones to remove the firewall endpoints. When the route tables no longer use the firewall endpoints, you can remove the firewall safely.
To delete a firewall, remove the delete protection if you need to using UpdateFirewallDeleteProtection, then delete the firewall by calling DeleteFirewall.
- Parameters:
deleteFirewallRequest
-- Returns:
- Result of the DeleteFirewall operation returned by the service.
- See Also:
-
deleteFirewall
default DeleteFirewallResponse deleteFirewall(Consumer<DeleteFirewallRequest.Builder> deleteFirewallRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, UnsupportedOperationException, InvalidOperationException, AwsServiceException, SdkClientException, NetworkFirewallException Deletes the specified Firewall and its FirewallStatus. This operation requires the firewall's
DeleteProtection
flag to beFALSE
. You can't revert this operation.You can check whether a firewall is in use by reviewing the route tables for the Availability Zones where you have firewall subnet mappings. Retrieve the subnet mappings by calling DescribeFirewall. You define and update the route tables through Amazon VPC. As needed, update the route tables for the zones to remove the firewall endpoints. When the route tables no longer use the firewall endpoints, you can remove the firewall safely.
To delete a firewall, remove the delete protection if you need to using UpdateFirewallDeleteProtection, then delete the firewall by calling DeleteFirewall.
This is a convenience which creates an instance of the
DeleteFirewallRequest.Builder
avoiding the need to create one manually viaDeleteFirewallRequest.builder()
- Parameters:
deleteFirewallRequest
- AConsumer
that will call methods onDeleteFirewallRequest.Builder
to create a request.- Returns:
- Result of the DeleteFirewall operation returned by the service.
- See Also:
-
deleteFirewallPolicy
default DeleteFirewallPolicyResponse deleteFirewallPolicy(DeleteFirewallPolicyRequest deleteFirewallPolicyRequest) throws InvalidRequestException, ResourceNotFoundException, ThrottlingException, InternalServerErrorException, UnsupportedOperationException, InvalidOperationException, AwsServiceException, SdkClientException, NetworkFirewallException Deletes the specified FirewallPolicy.
- Parameters:
deleteFirewallPolicyRequest
-- Returns:
- Result of the DeleteFirewallPolicy operation returned by the service.
- See Also:
-
deleteFirewallPolicy
default DeleteFirewallPolicyResponse deleteFirewallPolicy(Consumer<DeleteFirewallPolicyRequest.Builder> deleteFirewallPolicyRequest) throws InvalidRequestException, ResourceNotFoundException, ThrottlingException, InternalServerErrorException, UnsupportedOperationException, InvalidOperationException, AwsServiceException, SdkClientException, NetworkFirewallException Deletes the specified FirewallPolicy.
This is a convenience which creates an instance of the
DeleteFirewallPolicyRequest.Builder
avoiding the need to create one manually viaDeleteFirewallPolicyRequest.builder()
- Parameters:
deleteFirewallPolicyRequest
- AConsumer
that will call methods onDeleteFirewallPolicyRequest.Builder
to create a request.- Returns:
- Result of the DeleteFirewallPolicy operation returned by the service.
- See Also:
-
deleteResourcePolicy
default DeleteResourcePolicyResponse deleteResourcePolicy(DeleteResourcePolicyRequest deleteResourcePolicyRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidResourcePolicyException, AwsServiceException, SdkClientException, NetworkFirewallException Deletes a resource policy that you created in a PutResourcePolicy request.
- Parameters:
deleteResourcePolicyRequest
-- Returns:
- Result of the DeleteResourcePolicy operation returned by the service.
- See Also:
-
deleteResourcePolicy
default DeleteResourcePolicyResponse deleteResourcePolicy(Consumer<DeleteResourcePolicyRequest.Builder> deleteResourcePolicyRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidResourcePolicyException, AwsServiceException, SdkClientException, NetworkFirewallException Deletes a resource policy that you created in a PutResourcePolicy request.
This is a convenience which creates an instance of the
DeleteResourcePolicyRequest.Builder
avoiding the need to create one manually viaDeleteResourcePolicyRequest.builder()
- Parameters:
deleteResourcePolicyRequest
- AConsumer
that will call methods onDeleteResourcePolicyRequest.Builder
to create a request.- Returns:
- Result of the DeleteResourcePolicy operation returned by the service.
- See Also:
-
deleteRuleGroup
default DeleteRuleGroupResponse deleteRuleGroup(DeleteRuleGroupRequest deleteRuleGroupRequest) throws InvalidRequestException, ResourceNotFoundException, ThrottlingException, InternalServerErrorException, UnsupportedOperationException, InvalidOperationException, AwsServiceException, SdkClientException, NetworkFirewallException Deletes the specified RuleGroup.
- Parameters:
deleteRuleGroupRequest
-- Returns:
- Result of the DeleteRuleGroup operation returned by the service.
- See Also:
-
deleteRuleGroup
default DeleteRuleGroupResponse deleteRuleGroup(Consumer<DeleteRuleGroupRequest.Builder> deleteRuleGroupRequest) throws InvalidRequestException, ResourceNotFoundException, ThrottlingException, InternalServerErrorException, UnsupportedOperationException, InvalidOperationException, AwsServiceException, SdkClientException, NetworkFirewallException Deletes the specified RuleGroup.
This is a convenience which creates an instance of the
DeleteRuleGroupRequest.Builder
avoiding the need to create one manually viaDeleteRuleGroupRequest.builder()
- Parameters:
deleteRuleGroupRequest
- AConsumer
that will call methods onDeleteRuleGroupRequest.Builder
to create a request.- Returns:
- Result of the DeleteRuleGroup operation returned by the service.
- See Also:
-
deleteTLSInspectionConfiguration
default DeleteTlsInspectionConfigurationResponse deleteTLSInspectionConfiguration(DeleteTlsInspectionConfigurationRequest deleteTlsInspectionConfigurationRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidOperationException, AwsServiceException, SdkClientException, NetworkFirewallException Deletes the specified TLSInspectionConfiguration.
- Parameters:
deleteTlsInspectionConfigurationRequest
-- Returns:
- Result of the DeleteTLSInspectionConfiguration operation returned by the service.
- See Also:
-
deleteTLSInspectionConfiguration
default DeleteTlsInspectionConfigurationResponse deleteTLSInspectionConfiguration(Consumer<DeleteTlsInspectionConfigurationRequest.Builder> deleteTlsInspectionConfigurationRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidOperationException, AwsServiceException, SdkClientException, NetworkFirewallException Deletes the specified TLSInspectionConfiguration.
This is a convenience which creates an instance of the
DeleteTlsInspectionConfigurationRequest.Builder
avoiding the need to create one manually viaDeleteTlsInspectionConfigurationRequest.builder()
- Parameters:
deleteTlsInspectionConfigurationRequest
- AConsumer
that will call methods onDeleteTlsInspectionConfigurationRequest.Builder
to create a request.- Returns:
- Result of the DeleteTLSInspectionConfiguration operation returned by the service.
- See Also:
-
describeFirewall
default DescribeFirewallResponse describeFirewall(DescribeFirewallRequest describeFirewallRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, AwsServiceException, SdkClientException, NetworkFirewallException Returns the data objects for the specified firewall.
- Parameters:
describeFirewallRequest
-- Returns:
- Result of the DescribeFirewall operation returned by the service.
- See Also:
-
describeFirewall
default DescribeFirewallResponse describeFirewall(Consumer<DescribeFirewallRequest.Builder> describeFirewallRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, AwsServiceException, SdkClientException, NetworkFirewallException Returns the data objects for the specified firewall.
This is a convenience which creates an instance of the
DescribeFirewallRequest.Builder
avoiding the need to create one manually viaDescribeFirewallRequest.builder()
- Parameters:
describeFirewallRequest
- AConsumer
that will call methods onDescribeFirewallRequest.Builder
to create a request.- Returns:
- Result of the DescribeFirewall operation returned by the service.
- See Also:
-
describeFirewallPolicy
default DescribeFirewallPolicyResponse describeFirewallPolicy(DescribeFirewallPolicyRequest describeFirewallPolicyRequest) throws InvalidRequestException, ResourceNotFoundException, ThrottlingException, InternalServerErrorException, AwsServiceException, SdkClientException, NetworkFirewallException Returns the data objects for the specified firewall policy.
- Parameters:
describeFirewallPolicyRequest
-- Returns:
- Result of the DescribeFirewallPolicy operation returned by the service.
- See Also:
-
describeFirewallPolicy
default DescribeFirewallPolicyResponse describeFirewallPolicy(Consumer<DescribeFirewallPolicyRequest.Builder> describeFirewallPolicyRequest) throws InvalidRequestException, ResourceNotFoundException, ThrottlingException, InternalServerErrorException, AwsServiceException, SdkClientException, NetworkFirewallException Returns the data objects for the specified firewall policy.
This is a convenience which creates an instance of the
DescribeFirewallPolicyRequest.Builder
avoiding the need to create one manually viaDescribeFirewallPolicyRequest.builder()
- Parameters:
describeFirewallPolicyRequest
- AConsumer
that will call methods onDescribeFirewallPolicyRequest.Builder
to create a request.- Returns:
- Result of the DescribeFirewallPolicy operation returned by the service.
- See Also:
-
describeLoggingConfiguration
default DescribeLoggingConfigurationResponse describeLoggingConfiguration(DescribeLoggingConfigurationRequest describeLoggingConfigurationRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, AwsServiceException, SdkClientException, NetworkFirewallException Returns the logging configuration for the specified firewall.
- Parameters:
describeLoggingConfigurationRequest
-- Returns:
- Result of the DescribeLoggingConfiguration operation returned by the service.
- See Also:
-
describeLoggingConfiguration
default DescribeLoggingConfigurationResponse describeLoggingConfiguration(Consumer<DescribeLoggingConfigurationRequest.Builder> describeLoggingConfigurationRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, AwsServiceException, SdkClientException, NetworkFirewallException Returns the logging configuration for the specified firewall.
This is a convenience which creates an instance of the
DescribeLoggingConfigurationRequest.Builder
avoiding the need to create one manually viaDescribeLoggingConfigurationRequest.builder()
- Parameters:
describeLoggingConfigurationRequest
- AConsumer
that will call methods onDescribeLoggingConfigurationRequest.Builder
to create a request.- Returns:
- Result of the DescribeLoggingConfiguration operation returned by the service.
- See Also:
-
describeResourcePolicy
default DescribeResourcePolicyResponse describeResourcePolicy(DescribeResourcePolicyRequest describeResourcePolicyRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, AwsServiceException, SdkClientException, NetworkFirewallException Retrieves a resource policy that you created in a PutResourcePolicy request.
- Parameters:
describeResourcePolicyRequest
-- Returns:
- Result of the DescribeResourcePolicy operation returned by the service.
- See Also:
-
describeResourcePolicy
default DescribeResourcePolicyResponse describeResourcePolicy(Consumer<DescribeResourcePolicyRequest.Builder> describeResourcePolicyRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, AwsServiceException, SdkClientException, NetworkFirewallException Retrieves a resource policy that you created in a PutResourcePolicy request.
This is a convenience which creates an instance of the
DescribeResourcePolicyRequest.Builder
avoiding the need to create one manually viaDescribeResourcePolicyRequest.builder()
- Parameters:
describeResourcePolicyRequest
- AConsumer
that will call methods onDescribeResourcePolicyRequest.Builder
to create a request.- Returns:
- Result of the DescribeResourcePolicy operation returned by the service.
- See Also:
-
describeRuleGroup
default DescribeRuleGroupResponse describeRuleGroup(DescribeRuleGroupRequest describeRuleGroupRequest) throws InvalidRequestException, ResourceNotFoundException, ThrottlingException, InternalServerErrorException, AwsServiceException, SdkClientException, NetworkFirewallException Returns the data objects for the specified rule group.
- Parameters:
describeRuleGroupRequest
-- Returns:
- Result of the DescribeRuleGroup operation returned by the service.
- See Also:
-
describeRuleGroup
default DescribeRuleGroupResponse describeRuleGroup(Consumer<DescribeRuleGroupRequest.Builder> describeRuleGroupRequest) throws InvalidRequestException, ResourceNotFoundException, ThrottlingException, InternalServerErrorException, AwsServiceException, SdkClientException, NetworkFirewallException Returns the data objects for the specified rule group.
This is a convenience which creates an instance of the
DescribeRuleGroupRequest.Builder
avoiding the need to create one manually viaDescribeRuleGroupRequest.builder()
- Parameters:
describeRuleGroupRequest
- AConsumer
that will call methods onDescribeRuleGroupRequest.Builder
to create a request.- Returns:
- Result of the DescribeRuleGroup operation returned by the service.
- See Also:
-
describeRuleGroupMetadata
default DescribeRuleGroupMetadataResponse describeRuleGroupMetadata(DescribeRuleGroupMetadataRequest describeRuleGroupMetadataRequest) throws InvalidRequestException, ResourceNotFoundException, ThrottlingException, InternalServerErrorException, AwsServiceException, SdkClientException, NetworkFirewallException High-level information about a rule group, returned by operations like create and describe. You can use the information provided in the metadata to retrieve and manage a rule group. You can retrieve all objects for a rule group by calling DescribeRuleGroup.
- Parameters:
describeRuleGroupMetadataRequest
-- Returns:
- Result of the DescribeRuleGroupMetadata operation returned by the service.
- See Also:
-
describeRuleGroupMetadata
default DescribeRuleGroupMetadataResponse describeRuleGroupMetadata(Consumer<DescribeRuleGroupMetadataRequest.Builder> describeRuleGroupMetadataRequest) throws InvalidRequestException, ResourceNotFoundException, ThrottlingException, InternalServerErrorException, AwsServiceException, SdkClientException, NetworkFirewallException High-level information about a rule group, returned by operations like create and describe. You can use the information provided in the metadata to retrieve and manage a rule group. You can retrieve all objects for a rule group by calling DescribeRuleGroup.
This is a convenience which creates an instance of the
DescribeRuleGroupMetadataRequest.Builder
avoiding the need to create one manually viaDescribeRuleGroupMetadataRequest.builder()
- Parameters:
describeRuleGroupMetadataRequest
- AConsumer
that will call methods onDescribeRuleGroupMetadataRequest.Builder
to create a request.- Returns:
- Result of the DescribeRuleGroupMetadata operation returned by the service.
- See Also:
-
describeTLSInspectionConfiguration
default DescribeTlsInspectionConfigurationResponse describeTLSInspectionConfiguration(DescribeTlsInspectionConfigurationRequest describeTlsInspectionConfigurationRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, AwsServiceException, SdkClientException, NetworkFirewallException Returns the data objects for the specified TLS inspection configuration.
- Parameters:
describeTlsInspectionConfigurationRequest
-- Returns:
- Result of the DescribeTLSInspectionConfiguration operation returned by the service.
- See Also:
-
describeTLSInspectionConfiguration
default DescribeTlsInspectionConfigurationResponse describeTLSInspectionConfiguration(Consumer<DescribeTlsInspectionConfigurationRequest.Builder> describeTlsInspectionConfigurationRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, AwsServiceException, SdkClientException, NetworkFirewallException Returns the data objects for the specified TLS inspection configuration.
This is a convenience which creates an instance of the
DescribeTlsInspectionConfigurationRequest.Builder
avoiding the need to create one manually viaDescribeTlsInspectionConfigurationRequest.builder()
- Parameters:
describeTlsInspectionConfigurationRequest
- AConsumer
that will call methods onDescribeTlsInspectionConfigurationRequest.Builder
to create a request.- Returns:
- Result of the DescribeTLSInspectionConfiguration operation returned by the service.
- See Also:
-
disassociateSubnets
default DisassociateSubnetsResponse disassociateSubnets(DisassociateSubnetsRequest disassociateSubnetsRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, InvalidOperationException, AwsServiceException, SdkClientException, NetworkFirewallException Removes the specified subnet associations from the firewall. This removes the firewall endpoints from the subnets and removes any network filtering protections that the endpoints were providing.
- Parameters:
disassociateSubnetsRequest
-- Returns:
- Result of the DisassociateSubnets operation returned by the service.
- See Also:
-
disassociateSubnets
default DisassociateSubnetsResponse disassociateSubnets(Consumer<DisassociateSubnetsRequest.Builder> disassociateSubnetsRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, InvalidOperationException, AwsServiceException, SdkClientException, NetworkFirewallException Removes the specified subnet associations from the firewall. This removes the firewall endpoints from the subnets and removes any network filtering protections that the endpoints were providing.
This is a convenience which creates an instance of the
DisassociateSubnetsRequest.Builder
avoiding the need to create one manually viaDisassociateSubnetsRequest.builder()
- Parameters:
disassociateSubnetsRequest
- AConsumer
that will call methods onDisassociateSubnetsRequest.Builder
to create a request.- Returns:
- Result of the DisassociateSubnets operation returned by the service.
- See Also:
-
listFirewallPolicies
default ListFirewallPoliciesResponse listFirewallPolicies(ListFirewallPoliciesRequest listFirewallPoliciesRequest) throws InvalidRequestException, ThrottlingException, InternalServerErrorException, AwsServiceException, SdkClientException, NetworkFirewallException Retrieves the metadata for the firewall policies that you have defined. Depending on your setting for max results and the number of firewall policies, a single call might not return the full list.
- Parameters:
listFirewallPoliciesRequest
-- Returns:
- Result of the ListFirewallPolicies operation returned by the service.
- See Also:
-
listFirewallPolicies
default ListFirewallPoliciesResponse listFirewallPolicies(Consumer<ListFirewallPoliciesRequest.Builder> listFirewallPoliciesRequest) throws InvalidRequestException, ThrottlingException, InternalServerErrorException, AwsServiceException, SdkClientException, NetworkFirewallException Retrieves the metadata for the firewall policies that you have defined. Depending on your setting for max results and the number of firewall policies, a single call might not return the full list.
This is a convenience which creates an instance of the
ListFirewallPoliciesRequest.Builder
avoiding the need to create one manually viaListFirewallPoliciesRequest.builder()
- Parameters:
listFirewallPoliciesRequest
- AConsumer
that will call methods onListFirewallPoliciesRequest.Builder
to create a request.- Returns:
- Result of the ListFirewallPolicies operation returned by the service.
- See Also:
-
listFirewallPoliciesPaginator
default ListFirewallPoliciesIterable listFirewallPoliciesPaginator(ListFirewallPoliciesRequest listFirewallPoliciesRequest) throws InvalidRequestException, ThrottlingException, InternalServerErrorException, AwsServiceException, SdkClientException, NetworkFirewallException This is a variant of
listFirewallPolicies(software.amazon.awssdk.services.networkfirewall.model.ListFirewallPoliciesRequest)
operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.
The following are few ways to iterate through the response pages:
1) Using a Streamsoftware.amazon.awssdk.services.networkfirewall.paginators.ListFirewallPoliciesIterable responses = client.listFirewallPoliciesPaginator(request); responses.stream().forEach(....);
{ @code software.amazon.awssdk.services.networkfirewall.paginators.ListFirewallPoliciesIterable responses = client .listFirewallPoliciesPaginator(request); for (software.amazon.awssdk.services.networkfirewall.model.ListFirewallPoliciesResponse response : responses) { // do something; } }
3) Use iterator directlysoftware.amazon.awssdk.services.networkfirewall.paginators.ListFirewallPoliciesIterable responses = client.listFirewallPoliciesPaginator(request); responses.iterator().forEachRemaining(....);
Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.
Note: If you prefer to have control on service calls, use the
listFirewallPolicies(software.amazon.awssdk.services.networkfirewall.model.ListFirewallPoliciesRequest)
operation.- Parameters:
listFirewallPoliciesRequest
-- Returns:
- A custom iterable that can be used to iterate through all the response pages.
- See Also:
-
listFirewallPoliciesPaginator
default ListFirewallPoliciesIterable listFirewallPoliciesPaginator(Consumer<ListFirewallPoliciesRequest.Builder> listFirewallPoliciesRequest) throws InvalidRequestException, ThrottlingException, InternalServerErrorException, AwsServiceException, SdkClientException, NetworkFirewallException This is a variant of
listFirewallPolicies(software.amazon.awssdk.services.networkfirewall.model.ListFirewallPoliciesRequest)
operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.
The following are few ways to iterate through the response pages:
1) Using a Streamsoftware.amazon.awssdk.services.networkfirewall.paginators.ListFirewallPoliciesIterable responses = client.listFirewallPoliciesPaginator(request); responses.stream().forEach(....);
{ @code software.amazon.awssdk.services.networkfirewall.paginators.ListFirewallPoliciesIterable responses = client .listFirewallPoliciesPaginator(request); for (software.amazon.awssdk.services.networkfirewall.model.ListFirewallPoliciesResponse response : responses) { // do something; } }
3) Use iterator directlysoftware.amazon.awssdk.services.networkfirewall.paginators.ListFirewallPoliciesIterable responses = client.listFirewallPoliciesPaginator(request); responses.iterator().forEachRemaining(....);
Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.
Note: If you prefer to have control on service calls, use the
listFirewallPolicies(software.amazon.awssdk.services.networkfirewall.model.ListFirewallPoliciesRequest)
operation.
This is a convenience which creates an instance of the
ListFirewallPoliciesRequest.Builder
avoiding the need to create one manually viaListFirewallPoliciesRequest.builder()
- Parameters:
listFirewallPoliciesRequest
- AConsumer
that will call methods onListFirewallPoliciesRequest.Builder
to create a request.- Returns:
- A custom iterable that can be used to iterate through all the response pages.
- See Also:
-
listFirewalls
default ListFirewallsResponse listFirewalls(ListFirewallsRequest listFirewallsRequest) throws InvalidRequestException, InternalServerErrorException, ThrottlingException, AwsServiceException, SdkClientException, NetworkFirewallException Retrieves the metadata for the firewalls that you have defined. If you provide VPC identifiers in your request, this returns only the firewalls for those VPCs.
Depending on your setting for max results and the number of firewalls, a single call might not return the full list.
- Parameters:
listFirewallsRequest
-- Returns:
- Result of the ListFirewalls operation returned by the service.
- See Also:
-
listFirewalls
default ListFirewallsResponse listFirewalls(Consumer<ListFirewallsRequest.Builder> listFirewallsRequest) throws InvalidRequestException, InternalServerErrorException, ThrottlingException, AwsServiceException, SdkClientException, NetworkFirewallException Retrieves the metadata for the firewalls that you have defined. If you provide VPC identifiers in your request, this returns only the firewalls for those VPCs.
Depending on your setting for max results and the number of firewalls, a single call might not return the full list.
This is a convenience which creates an instance of the
ListFirewallsRequest.Builder
avoiding the need to create one manually viaListFirewallsRequest.builder()
- Parameters:
listFirewallsRequest
- AConsumer
that will call methods onListFirewallsRequest.Builder
to create a request.- Returns:
- Result of the ListFirewalls operation returned by the service.
- See Also:
-
listFirewallsPaginator
default ListFirewallsIterable listFirewallsPaginator(ListFirewallsRequest listFirewallsRequest) throws InvalidRequestException, InternalServerErrorException, ThrottlingException, AwsServiceException, SdkClientException, NetworkFirewallException This is a variant of
listFirewalls(software.amazon.awssdk.services.networkfirewall.model.ListFirewallsRequest)
operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.
The following are few ways to iterate through the response pages:
1) Using a Streamsoftware.amazon.awssdk.services.networkfirewall.paginators.ListFirewallsIterable responses = client.listFirewallsPaginator(request); responses.stream().forEach(....);
{ @code software.amazon.awssdk.services.networkfirewall.paginators.ListFirewallsIterable responses = client .listFirewallsPaginator(request); for (software.amazon.awssdk.services.networkfirewall.model.ListFirewallsResponse response : responses) { // do something; } }
3) Use iterator directlysoftware.amazon.awssdk.services.networkfirewall.paginators.ListFirewallsIterable responses = client.listFirewallsPaginator(request); responses.iterator().forEachRemaining(....);
Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.
Note: If you prefer to have control on service calls, use the
listFirewalls(software.amazon.awssdk.services.networkfirewall.model.ListFirewallsRequest)
operation.- Parameters:
listFirewallsRequest
-- Returns:
- A custom iterable that can be used to iterate through all the response pages.
- See Also:
-
listFirewallsPaginator
default ListFirewallsIterable listFirewallsPaginator(Consumer<ListFirewallsRequest.Builder> listFirewallsRequest) throws InvalidRequestException, InternalServerErrorException, ThrottlingException, AwsServiceException, SdkClientException, NetworkFirewallException This is a variant of
listFirewalls(software.amazon.awssdk.services.networkfirewall.model.ListFirewallsRequest)
operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.
The following are few ways to iterate through the response pages:
1) Using a Streamsoftware.amazon.awssdk.services.networkfirewall.paginators.ListFirewallsIterable responses = client.listFirewallsPaginator(request); responses.stream().forEach(....);
{ @code software.amazon.awssdk.services.networkfirewall.paginators.ListFirewallsIterable responses = client .listFirewallsPaginator(request); for (software.amazon.awssdk.services.networkfirewall.model.ListFirewallsResponse response : responses) { // do something; } }
3) Use iterator directlysoftware.amazon.awssdk.services.networkfirewall.paginators.ListFirewallsIterable responses = client.listFirewallsPaginator(request); responses.iterator().forEachRemaining(....);
Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.
Note: If you prefer to have control on service calls, use the
listFirewalls(software.amazon.awssdk.services.networkfirewall.model.ListFirewallsRequest)
operation.
This is a convenience which creates an instance of the
ListFirewallsRequest.Builder
avoiding the need to create one manually viaListFirewallsRequest.builder()
- Parameters:
listFirewallsRequest
- AConsumer
that will call methods onListFirewallsRequest.Builder
to create a request.- Returns:
- A custom iterable that can be used to iterate through all the response pages.
- See Also:
-
listRuleGroups
default ListRuleGroupsResponse listRuleGroups(ListRuleGroupsRequest listRuleGroupsRequest) throws InvalidRequestException, ThrottlingException, InternalServerErrorException, AwsServiceException, SdkClientException, NetworkFirewallException Retrieves the metadata for the rule groups that you have defined. Depending on your setting for max results and the number of rule groups, a single call might not return the full list.
- Parameters:
listRuleGroupsRequest
-- Returns:
- Result of the ListRuleGroups operation returned by the service.
- See Also:
-
listRuleGroups
default ListRuleGroupsResponse listRuleGroups(Consumer<ListRuleGroupsRequest.Builder> listRuleGroupsRequest) throws InvalidRequestException, ThrottlingException, InternalServerErrorException, AwsServiceException, SdkClientException, NetworkFirewallException Retrieves the metadata for the rule groups that you have defined. Depending on your setting for max results and the number of rule groups, a single call might not return the full list.
This is a convenience which creates an instance of the
ListRuleGroupsRequest.Builder
avoiding the need to create one manually viaListRuleGroupsRequest.builder()
- Parameters:
listRuleGroupsRequest
- AConsumer
that will call methods onListRuleGroupsRequest.Builder
to create a request.- Returns:
- Result of the ListRuleGroups operation returned by the service.
- See Also:
-
listRuleGroupsPaginator
default ListRuleGroupsIterable listRuleGroupsPaginator(ListRuleGroupsRequest listRuleGroupsRequest) throws InvalidRequestException, ThrottlingException, InternalServerErrorException, AwsServiceException, SdkClientException, NetworkFirewallException This is a variant of
listRuleGroups(software.amazon.awssdk.services.networkfirewall.model.ListRuleGroupsRequest)
operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.
The following are few ways to iterate through the response pages:
1) Using a Streamsoftware.amazon.awssdk.services.networkfirewall.paginators.ListRuleGroupsIterable responses = client.listRuleGroupsPaginator(request); responses.stream().forEach(....);
{ @code software.amazon.awssdk.services.networkfirewall.paginators.ListRuleGroupsIterable responses = client .listRuleGroupsPaginator(request); for (software.amazon.awssdk.services.networkfirewall.model.ListRuleGroupsResponse response : responses) { // do something; } }
3) Use iterator directlysoftware.amazon.awssdk.services.networkfirewall.paginators.ListRuleGroupsIterable responses = client.listRuleGroupsPaginator(request); responses.iterator().forEachRemaining(....);
Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.
Note: If you prefer to have control on service calls, use the
listRuleGroups(software.amazon.awssdk.services.networkfirewall.model.ListRuleGroupsRequest)
operation.- Parameters:
listRuleGroupsRequest
-- Returns:
- A custom iterable that can be used to iterate through all the response pages.
- See Also:
-
listRuleGroupsPaginator
default ListRuleGroupsIterable listRuleGroupsPaginator(Consumer<ListRuleGroupsRequest.Builder> listRuleGroupsRequest) throws InvalidRequestException, ThrottlingException, InternalServerErrorException, AwsServiceException, SdkClientException, NetworkFirewallException This is a variant of
listRuleGroups(software.amazon.awssdk.services.networkfirewall.model.ListRuleGroupsRequest)
operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.
The following are few ways to iterate through the response pages:
1) Using a Streamsoftware.amazon.awssdk.services.networkfirewall.paginators.ListRuleGroupsIterable responses = client.listRuleGroupsPaginator(request); responses.stream().forEach(....);
{ @code software.amazon.awssdk.services.networkfirewall.paginators.ListRuleGroupsIterable responses = client .listRuleGroupsPaginator(request); for (software.amazon.awssdk.services.networkfirewall.model.ListRuleGroupsResponse response : responses) { // do something; } }
3) Use iterator directlysoftware.amazon.awssdk.services.networkfirewall.paginators.ListRuleGroupsIterable responses = client.listRuleGroupsPaginator(request); responses.iterator().forEachRemaining(....);
Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.
Note: If you prefer to have control on service calls, use the
listRuleGroups(software.amazon.awssdk.services.networkfirewall.model.ListRuleGroupsRequest)
operation.
This is a convenience which creates an instance of the
ListRuleGroupsRequest.Builder
avoiding the need to create one manually viaListRuleGroupsRequest.builder()
- Parameters:
listRuleGroupsRequest
- AConsumer
that will call methods onListRuleGroupsRequest.Builder
to create a request.- Returns:
- A custom iterable that can be used to iterate through all the response pages.
- See Also:
-
listTLSInspectionConfigurations
default ListTlsInspectionConfigurationsResponse listTLSInspectionConfigurations(ListTlsInspectionConfigurationsRequest listTlsInspectionConfigurationsRequest) throws InvalidRequestException, InternalServerErrorException, ThrottlingException, AwsServiceException, SdkClientException, NetworkFirewallException Retrieves the metadata for the TLS inspection configurations that you have defined. Depending on your setting for max results and the number of TLS inspection configurations, a single call might not return the full list.
- Parameters:
listTlsInspectionConfigurationsRequest
-- Returns:
- Result of the ListTLSInspectionConfigurations operation returned by the service.
- See Also:
-
listTLSInspectionConfigurations
default ListTlsInspectionConfigurationsResponse listTLSInspectionConfigurations(Consumer<ListTlsInspectionConfigurationsRequest.Builder> listTlsInspectionConfigurationsRequest) throws InvalidRequestException, InternalServerErrorException, ThrottlingException, AwsServiceException, SdkClientException, NetworkFirewallException Retrieves the metadata for the TLS inspection configurations that you have defined. Depending on your setting for max results and the number of TLS inspection configurations, a single call might not return the full list.
This is a convenience which creates an instance of the
ListTlsInspectionConfigurationsRequest.Builder
avoiding the need to create one manually viaListTlsInspectionConfigurationsRequest.builder()
- Parameters:
listTlsInspectionConfigurationsRequest
- AConsumer
that will call methods onListTlsInspectionConfigurationsRequest.Builder
to create a request.- Returns:
- Result of the ListTLSInspectionConfigurations operation returned by the service.
- See Also:
-
listTLSInspectionConfigurationsPaginator
default ListTLSInspectionConfigurationsIterable listTLSInspectionConfigurationsPaginator(ListTlsInspectionConfigurationsRequest listTlsInspectionConfigurationsRequest) throws InvalidRequestException, InternalServerErrorException, ThrottlingException, AwsServiceException, SdkClientException, NetworkFirewallException This is a variant of
listTLSInspectionConfigurations(software.amazon.awssdk.services.networkfirewall.model.ListTlsInspectionConfigurationsRequest)
operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.
The following are few ways to iterate through the response pages:
1) Using a Streamsoftware.amazon.awssdk.services.networkfirewall.paginators.ListTLSInspectionConfigurationsIterable responses = client.listTLSInspectionConfigurationsPaginator(request); responses.stream().forEach(....);
{ @code software.amazon.awssdk.services.networkfirewall.paginators.ListTLSInspectionConfigurationsIterable responses = client .listTLSInspectionConfigurationsPaginator(request); for (software.amazon.awssdk.services.networkfirewall.model.ListTlsInspectionConfigurationsResponse response : responses) { // do something; } }
3) Use iterator directlysoftware.amazon.awssdk.services.networkfirewall.paginators.ListTLSInspectionConfigurationsIterable responses = client.listTLSInspectionConfigurationsPaginator(request); responses.iterator().forEachRemaining(....);
Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.
Note: If you prefer to have control on service calls, use the
listTLSInspectionConfigurations(software.amazon.awssdk.services.networkfirewall.model.ListTlsInspectionConfigurationsRequest)
operation.- Parameters:
listTlsInspectionConfigurationsRequest
-- Returns:
- A custom iterable that can be used to iterate through all the response pages.
- See Also:
-
listTLSInspectionConfigurationsPaginator
default ListTLSInspectionConfigurationsIterable listTLSInspectionConfigurationsPaginator(Consumer<ListTlsInspectionConfigurationsRequest.Builder> listTlsInspectionConfigurationsRequest) throws InvalidRequestException, InternalServerErrorException, ThrottlingException, AwsServiceException, SdkClientException, NetworkFirewallException This is a variant of
listTLSInspectionConfigurations(software.amazon.awssdk.services.networkfirewall.model.ListTlsInspectionConfigurationsRequest)
operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.
The following are few ways to iterate through the response pages:
1) Using a Streamsoftware.amazon.awssdk.services.networkfirewall.paginators.ListTLSInspectionConfigurationsIterable responses = client.listTLSInspectionConfigurationsPaginator(request); responses.stream().forEach(....);
{ @code software.amazon.awssdk.services.networkfirewall.paginators.ListTLSInspectionConfigurationsIterable responses = client .listTLSInspectionConfigurationsPaginator(request); for (software.amazon.awssdk.services.networkfirewall.model.ListTlsInspectionConfigurationsResponse response : responses) { // do something; } }
3) Use iterator directlysoftware.amazon.awssdk.services.networkfirewall.paginators.ListTLSInspectionConfigurationsIterable responses = client.listTLSInspectionConfigurationsPaginator(request); responses.iterator().forEachRemaining(....);
Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.
Note: If you prefer to have control on service calls, use the
listTLSInspectionConfigurations(software.amazon.awssdk.services.networkfirewall.model.ListTlsInspectionConfigurationsRequest)
operation.
This is a convenience which creates an instance of the
ListTlsInspectionConfigurationsRequest.Builder
avoiding the need to create one manually viaListTlsInspectionConfigurationsRequest.builder()
- Parameters:
listTlsInspectionConfigurationsRequest
- AConsumer
that will call methods onListTlsInspectionConfigurationsRequest.Builder
to create a request.- Returns:
- A custom iterable that can be used to iterate through all the response pages.
- See Also:
-
listTagsForResource
default ListTagsForResourceResponse listTagsForResource(ListTagsForResourceRequest listTagsForResourceRequest) throws ThrottlingException, InternalServerErrorException, ResourceNotFoundException, InvalidRequestException, AwsServiceException, SdkClientException, NetworkFirewallException Retrieves the tags associated with the specified resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing. For example, you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.
You can tag the Amazon Web Services resources that you manage through Network Firewall: firewalls, firewall policies, and rule groups.
- Parameters:
listTagsForResourceRequest
-- Returns:
- Result of the ListTagsForResource operation returned by the service.
- See Also:
-
listTagsForResource
default ListTagsForResourceResponse listTagsForResource(Consumer<ListTagsForResourceRequest.Builder> listTagsForResourceRequest) throws ThrottlingException, InternalServerErrorException, ResourceNotFoundException, InvalidRequestException, AwsServiceException, SdkClientException, NetworkFirewallException Retrieves the tags associated with the specified resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing. For example, you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.
You can tag the Amazon Web Services resources that you manage through Network Firewall: firewalls, firewall policies, and rule groups.
This is a convenience which creates an instance of the
ListTagsForResourceRequest.Builder
avoiding the need to create one manually viaListTagsForResourceRequest.builder()
- Parameters:
listTagsForResourceRequest
- AConsumer
that will call methods onListTagsForResourceRequest.Builder
to create a request.- Returns:
- Result of the ListTagsForResource operation returned by the service.
- See Also:
-
listTagsForResourcePaginator
default ListTagsForResourceIterable listTagsForResourcePaginator(ListTagsForResourceRequest listTagsForResourceRequest) throws ThrottlingException, InternalServerErrorException, ResourceNotFoundException, InvalidRequestException, AwsServiceException, SdkClientException, NetworkFirewallException This is a variant of
listTagsForResource(software.amazon.awssdk.services.networkfirewall.model.ListTagsForResourceRequest)
operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.
The following are few ways to iterate through the response pages:
1) Using a Streamsoftware.amazon.awssdk.services.networkfirewall.paginators.ListTagsForResourceIterable responses = client.listTagsForResourcePaginator(request); responses.stream().forEach(....);
{ @code software.amazon.awssdk.services.networkfirewall.paginators.ListTagsForResourceIterable responses = client .listTagsForResourcePaginator(request); for (software.amazon.awssdk.services.networkfirewall.model.ListTagsForResourceResponse response : responses) { // do something; } }
3) Use iterator directlysoftware.amazon.awssdk.services.networkfirewall.paginators.ListTagsForResourceIterable responses = client.listTagsForResourcePaginator(request); responses.iterator().forEachRemaining(....);
Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.
Note: If you prefer to have control on service calls, use the
listTagsForResource(software.amazon.awssdk.services.networkfirewall.model.ListTagsForResourceRequest)
operation.- Parameters:
listTagsForResourceRequest
-- Returns:
- A custom iterable that can be used to iterate through all the response pages.
- See Also:
-
listTagsForResourcePaginator
default ListTagsForResourceIterable listTagsForResourcePaginator(Consumer<ListTagsForResourceRequest.Builder> listTagsForResourceRequest) throws ThrottlingException, InternalServerErrorException, ResourceNotFoundException, InvalidRequestException, AwsServiceException, SdkClientException, NetworkFirewallException This is a variant of
listTagsForResource(software.amazon.awssdk.services.networkfirewall.model.ListTagsForResourceRequest)
operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.
The following are few ways to iterate through the response pages:
1) Using a Streamsoftware.amazon.awssdk.services.networkfirewall.paginators.ListTagsForResourceIterable responses = client.listTagsForResourcePaginator(request); responses.stream().forEach(....);
{ @code software.amazon.awssdk.services.networkfirewall.paginators.ListTagsForResourceIterable responses = client .listTagsForResourcePaginator(request); for (software.amazon.awssdk.services.networkfirewall.model.ListTagsForResourceResponse response : responses) { // do something; } }
3) Use iterator directlysoftware.amazon.awssdk.services.networkfirewall.paginators.ListTagsForResourceIterable responses = client.listTagsForResourcePaginator(request); responses.iterator().forEachRemaining(....);
Please notice that the configuration of MaxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.
Note: If you prefer to have control on service calls, use the
listTagsForResource(software.amazon.awssdk.services.networkfirewall.model.ListTagsForResourceRequest)
operation.
This is a convenience which creates an instance of the
ListTagsForResourceRequest.Builder
avoiding the need to create one manually viaListTagsForResourceRequest.builder()
- Parameters:
listTagsForResourceRequest
- AConsumer
that will call methods onListTagsForResourceRequest.Builder
to create a request.- Returns:
- A custom iterable that can be used to iterate through all the response pages.
- See Also:
-
putResourcePolicy
default PutResourcePolicyResponse putResourcePolicy(PutResourcePolicyRequest putResourcePolicyRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidResourcePolicyException, AwsServiceException, SdkClientException, NetworkFirewallException Creates or updates an IAM policy for your rule group or firewall policy. Use this to share rule groups and firewall policies between accounts. This operation works in conjunction with the Amazon Web Services Resource Access Manager (RAM) service to manage resource sharing for Network Firewall.
Use this operation to create or update a resource policy for your rule group or firewall policy. In the policy, you specify the accounts that you want to share the resource with and the operations that you want the accounts to be able to perform.
When you add an account in the resource policy, you then run the following Resource Access Manager (RAM) operations to access and accept the shared rule group or firewall policy.
-
GetResourceShareInvitations - Returns the Amazon Resource Names (ARNs) of the resource share invitations.
-
AcceptResourceShareInvitation - Accepts the share invitation for a specified resource share.
For additional information about resource sharing using RAM, see Resource Access Manager User Guide.
- Parameters:
putResourcePolicyRequest
-- Returns:
- Result of the PutResourcePolicy operation returned by the service.
- See Also:
-
-
putResourcePolicy
default PutResourcePolicyResponse putResourcePolicy(Consumer<PutResourcePolicyRequest.Builder> putResourcePolicyRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidResourcePolicyException, AwsServiceException, SdkClientException, NetworkFirewallException Creates or updates an IAM policy for your rule group or firewall policy. Use this to share rule groups and firewall policies between accounts. This operation works in conjunction with the Amazon Web Services Resource Access Manager (RAM) service to manage resource sharing for Network Firewall.
Use this operation to create or update a resource policy for your rule group or firewall policy. In the policy, you specify the accounts that you want to share the resource with and the operations that you want the accounts to be able to perform.
When you add an account in the resource policy, you then run the following Resource Access Manager (RAM) operations to access and accept the shared rule group or firewall policy.
-
GetResourceShareInvitations - Returns the Amazon Resource Names (ARNs) of the resource share invitations.
-
AcceptResourceShareInvitation - Accepts the share invitation for a specified resource share.
For additional information about resource sharing using RAM, see Resource Access Manager User Guide.
This is a convenience which creates an instance of the
PutResourcePolicyRequest.Builder
avoiding the need to create one manually viaPutResourcePolicyRequest.builder()
- Parameters:
putResourcePolicyRequest
- AConsumer
that will call methods onPutResourcePolicyRequest.Builder
to create a request.- Returns:
- Result of the PutResourcePolicy operation returned by the service.
- See Also:
-
-
tagResource
default TagResourceResponse tagResource(TagResourceRequest tagResourceRequest) throws ThrottlingException, InternalServerErrorException, ResourceNotFoundException, InvalidRequestException, AwsServiceException, SdkClientException, NetworkFirewallException Adds the specified tags to the specified resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing. For example, you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.
You can tag the Amazon Web Services resources that you manage through Network Firewall: firewalls, firewall policies, and rule groups.
- Parameters:
tagResourceRequest
-- Returns:
- Result of the TagResource operation returned by the service.
- See Also:
-
tagResource
default TagResourceResponse tagResource(Consumer<TagResourceRequest.Builder> tagResourceRequest) throws ThrottlingException, InternalServerErrorException, ResourceNotFoundException, InvalidRequestException, AwsServiceException, SdkClientException, NetworkFirewallException Adds the specified tags to the specified resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing. For example, you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.
You can tag the Amazon Web Services resources that you manage through Network Firewall: firewalls, firewall policies, and rule groups.
This is a convenience which creates an instance of the
TagResourceRequest.Builder
avoiding the need to create one manually viaTagResourceRequest.builder()
- Parameters:
tagResourceRequest
- AConsumer
that will call methods onTagResourceRequest.Builder
to create a request.- Returns:
- Result of the TagResource operation returned by the service.
- See Also:
-
untagResource
default UntagResourceResponse untagResource(UntagResourceRequest untagResourceRequest) throws ThrottlingException, InternalServerErrorException, ResourceNotFoundException, InvalidRequestException, AwsServiceException, SdkClientException, NetworkFirewallException Removes the tags with the specified keys from the specified resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing. For example, you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.
You can manage tags for the Amazon Web Services resources that you manage through Network Firewall: firewalls, firewall policies, and rule groups.
- Parameters:
untagResourceRequest
-- Returns:
- Result of the UntagResource operation returned by the service.
- See Also:
-
untagResource
default UntagResourceResponse untagResource(Consumer<UntagResourceRequest.Builder> untagResourceRequest) throws ThrottlingException, InternalServerErrorException, ResourceNotFoundException, InvalidRequestException, AwsServiceException, SdkClientException, NetworkFirewallException Removes the tags with the specified keys from the specified resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing. For example, you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.
You can manage tags for the Amazon Web Services resources that you manage through Network Firewall: firewalls, firewall policies, and rule groups.
This is a convenience which creates an instance of the
UntagResourceRequest.Builder
avoiding the need to create one manually viaUntagResourceRequest.builder()
- Parameters:
untagResourceRequest
- AConsumer
that will call methods onUntagResourceRequest.Builder
to create a request.- Returns:
- Result of the UntagResource operation returned by the service.
- See Also:
-
updateFirewallDeleteProtection
default UpdateFirewallDeleteProtectionResponse updateFirewallDeleteProtection(UpdateFirewallDeleteProtectionRequest updateFirewallDeleteProtectionRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, ResourceOwnerCheckException, AwsServiceException, SdkClientException, NetworkFirewallException Modifies the flag,
DeleteProtection
, which indicates whether it is possible to delete the firewall. If the flag is set toTRUE
, the firewall is protected against deletion. This setting helps protect against accidentally deleting a firewall that's in use.- Parameters:
updateFirewallDeleteProtectionRequest
-- Returns:
- Result of the UpdateFirewallDeleteProtection operation returned by the service.
- See Also:
-
updateFirewallDeleteProtection
default UpdateFirewallDeleteProtectionResponse updateFirewallDeleteProtection(Consumer<UpdateFirewallDeleteProtectionRequest.Builder> updateFirewallDeleteProtectionRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, ResourceOwnerCheckException, AwsServiceException, SdkClientException, NetworkFirewallException Modifies the flag,
DeleteProtection
, which indicates whether it is possible to delete the firewall. If the flag is set toTRUE
, the firewall is protected against deletion. This setting helps protect against accidentally deleting a firewall that's in use.
This is a convenience which creates an instance of the
UpdateFirewallDeleteProtectionRequest.Builder
avoiding the need to create one manually viaUpdateFirewallDeleteProtectionRequest.builder()
- Parameters:
updateFirewallDeleteProtectionRequest
- AConsumer
that will call methods onUpdateFirewallDeleteProtectionRequest.Builder
to create a request.- Returns:
- Result of the UpdateFirewallDeleteProtection operation returned by the service.
- See Also:
-
updateFirewallDescription
default UpdateFirewallDescriptionResponse updateFirewallDescription(UpdateFirewallDescriptionRequest updateFirewallDescriptionRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, AwsServiceException, SdkClientException, NetworkFirewallException Modifies the description for the specified firewall. Use the description to help you identify the firewall when you're working with it.
- Parameters:
updateFirewallDescriptionRequest
-- Returns:
- Result of the UpdateFirewallDescription operation returned by the service.
- See Also:
-
updateFirewallDescription
default UpdateFirewallDescriptionResponse updateFirewallDescription(Consumer<UpdateFirewallDescriptionRequest.Builder> updateFirewallDescriptionRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, AwsServiceException, SdkClientException, NetworkFirewallException Modifies the description for the specified firewall. Use the description to help you identify the firewall when you're working with it.
This is a convenience which creates an instance of the
UpdateFirewallDescriptionRequest.Builder
avoiding the need to create one manually viaUpdateFirewallDescriptionRequest.builder()
- Parameters:
updateFirewallDescriptionRequest
- AConsumer
that will call methods onUpdateFirewallDescriptionRequest.Builder
to create a request.- Returns:
- Result of the UpdateFirewallDescription operation returned by the service.
- See Also:
-
updateFirewallEncryptionConfiguration
default UpdateFirewallEncryptionConfigurationResponse updateFirewallEncryptionConfiguration(UpdateFirewallEncryptionConfigurationRequest updateFirewallEncryptionConfigurationRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, ResourceOwnerCheckException, AwsServiceException, SdkClientException, NetworkFirewallException A complex type that contains settings for encryption of your firewall resources.
- Parameters:
updateFirewallEncryptionConfigurationRequest
-- Returns:
- Result of the UpdateFirewallEncryptionConfiguration operation returned by the service.
- See Also:
-
updateFirewallEncryptionConfiguration
default UpdateFirewallEncryptionConfigurationResponse updateFirewallEncryptionConfiguration(Consumer<UpdateFirewallEncryptionConfigurationRequest.Builder> updateFirewallEncryptionConfigurationRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, ResourceOwnerCheckException, AwsServiceException, SdkClientException, NetworkFirewallException A complex type that contains settings for encryption of your firewall resources.
This is a convenience which creates an instance of the
UpdateFirewallEncryptionConfigurationRequest.Builder
avoiding the need to create one manually viaUpdateFirewallEncryptionConfigurationRequest.builder()
- Parameters:
updateFirewallEncryptionConfigurationRequest
- AConsumer
that will call methods onUpdateFirewallEncryptionConfigurationRequest.Builder
to create a request.- Returns:
- Result of the UpdateFirewallEncryptionConfiguration operation returned by the service.
- See Also:
-
updateFirewallPolicy
default UpdateFirewallPolicyResponse updateFirewallPolicy(UpdateFirewallPolicyRequest updateFirewallPolicyRequest) throws InvalidRequestException, ResourceNotFoundException, ThrottlingException, InternalServerErrorException, InvalidTokenException, AwsServiceException, SdkClientException, NetworkFirewallException Updates the properties of the specified firewall policy.
- Parameters:
updateFirewallPolicyRequest
-- Returns:
- Result of the UpdateFirewallPolicy operation returned by the service.
- See Also:
-
updateFirewallPolicy
default UpdateFirewallPolicyResponse updateFirewallPolicy(Consumer<UpdateFirewallPolicyRequest.Builder> updateFirewallPolicyRequest) throws InvalidRequestException, ResourceNotFoundException, ThrottlingException, InternalServerErrorException, InvalidTokenException, AwsServiceException, SdkClientException, NetworkFirewallException Updates the properties of the specified firewall policy.
This is a convenience which creates an instance of the
UpdateFirewallPolicyRequest.Builder
avoiding the need to create one manually viaUpdateFirewallPolicyRequest.builder()
- Parameters:
updateFirewallPolicyRequest
- AConsumer
that will call methods onUpdateFirewallPolicyRequest.Builder
to create a request.- Returns:
- Result of the UpdateFirewallPolicy operation returned by the service.
- See Also:
-
updateFirewallPolicyChangeProtection
default UpdateFirewallPolicyChangeProtectionResponse updateFirewallPolicyChangeProtection(UpdateFirewallPolicyChangeProtectionRequest updateFirewallPolicyChangeProtectionRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, ResourceOwnerCheckException, AwsServiceException, SdkClientException, NetworkFirewallException Modifies the flag,
ChangeProtection
, which indicates whether it is possible to change the firewall. If the flag is set toTRUE
, the firewall is protected from changes. This setting helps protect against accidentally changing a firewall that's in use.- Parameters:
updateFirewallPolicyChangeProtectionRequest
-- Returns:
- Result of the UpdateFirewallPolicyChangeProtection operation returned by the service.
- See Also:
-
updateFirewallPolicyChangeProtection
default UpdateFirewallPolicyChangeProtectionResponse updateFirewallPolicyChangeProtection(Consumer<UpdateFirewallPolicyChangeProtectionRequest.Builder> updateFirewallPolicyChangeProtectionRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, ResourceOwnerCheckException, AwsServiceException, SdkClientException, NetworkFirewallException Modifies the flag,
ChangeProtection
, which indicates whether it is possible to change the firewall. If the flag is set toTRUE
, the firewall is protected from changes. This setting helps protect against accidentally changing a firewall that's in use.
This is a convenience which creates an instance of the
UpdateFirewallPolicyChangeProtectionRequest.Builder
avoiding the need to create one manually viaUpdateFirewallPolicyChangeProtectionRequest.builder()
- Parameters:
updateFirewallPolicyChangeProtectionRequest
- AConsumer
that will call methods onUpdateFirewallPolicyChangeProtectionRequest.Builder
to create a request.- Returns:
- Result of the UpdateFirewallPolicyChangeProtection operation returned by the service.
- See Also:
-
updateLoggingConfiguration
default UpdateLoggingConfigurationResponse updateLoggingConfiguration(UpdateLoggingConfigurationRequest updateLoggingConfigurationRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, LogDestinationPermissionException, AwsServiceException, SdkClientException, NetworkFirewallException Sets the logging configuration for the specified firewall.
To change the logging configuration, retrieve the LoggingConfiguration by calling DescribeLoggingConfiguration, then change it and provide the modified object to this update call. You must change the logging configuration one LogDestinationConfig at a time inside the retrieved LoggingConfiguration object.
You can perform only one of the following actions in any call to
UpdateLoggingConfiguration
:-
Create a new log destination object by adding a single
LogDestinationConfig
array element toLogDestinationConfigs
. -
Delete a log destination object by removing a single
LogDestinationConfig
array element fromLogDestinationConfigs
. -
Change the
LogDestination
setting in a singleLogDestinationConfig
array element.
You can't change the
LogDestinationType
orLogType
in aLogDestinationConfig
. To change these settings, delete the existingLogDestinationConfig
object and create a new one, using two separate calls to this update operation.- Parameters:
updateLoggingConfigurationRequest
-- Returns:
- Result of the UpdateLoggingConfiguration operation returned by the service.
- See Also:
-
-
updateLoggingConfiguration
default UpdateLoggingConfigurationResponse updateLoggingConfiguration(Consumer<UpdateLoggingConfigurationRequest.Builder> updateLoggingConfigurationRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, LogDestinationPermissionException, AwsServiceException, SdkClientException, NetworkFirewallException Sets the logging configuration for the specified firewall.
To change the logging configuration, retrieve the LoggingConfiguration by calling DescribeLoggingConfiguration, then change it and provide the modified object to this update call. You must change the logging configuration one LogDestinationConfig at a time inside the retrieved LoggingConfiguration object.
You can perform only one of the following actions in any call to
UpdateLoggingConfiguration
:-
Create a new log destination object by adding a single
LogDestinationConfig
array element toLogDestinationConfigs
. -
Delete a log destination object by removing a single
LogDestinationConfig
array element fromLogDestinationConfigs
. -
Change the
LogDestination
setting in a singleLogDestinationConfig
array element.
You can't change the
LogDestinationType
orLogType
in aLogDestinationConfig
. To change these settings, delete the existingLogDestinationConfig
object and create a new one, using two separate calls to this update operation.
This is a convenience which creates an instance of the
UpdateLoggingConfigurationRequest.Builder
avoiding the need to create one manually viaUpdateLoggingConfigurationRequest.builder()
- Parameters:
updateLoggingConfigurationRequest
- AConsumer
that will call methods onUpdateLoggingConfigurationRequest.Builder
to create a request.- Returns:
- Result of the UpdateLoggingConfiguration operation returned by the service.
- See Also:
-
-
updateRuleGroup
default UpdateRuleGroupResponse updateRuleGroup(UpdateRuleGroupRequest updateRuleGroupRequest) throws ResourceNotFoundException, InvalidRequestException, ThrottlingException, InternalServerErrorException, InvalidTokenException, AwsServiceException, SdkClientException, NetworkFirewallException Updates the rule settings for the specified rule group. You use a rule group by reference in one or more firewall policies. When you modify a rule group, you modify all firewall policies that use the rule group.
To update a rule group, first call DescribeRuleGroup to retrieve the current RuleGroup object, update the object as needed, and then provide the updated object to this call.
- Parameters:
updateRuleGroupRequest
-- Returns:
- Result of the UpdateRuleGroup operation returned by the service.
- See Also:
-
updateRuleGroup
default UpdateRuleGroupResponse updateRuleGroup(Consumer<UpdateRuleGroupRequest.Builder> updateRuleGroupRequest) throws ResourceNotFoundException, InvalidRequestException, ThrottlingException, InternalServerErrorException, InvalidTokenException, AwsServiceException, SdkClientException, NetworkFirewallException Updates the rule settings for the specified rule group. You use a rule group by reference in one or more firewall policies. When you modify a rule group, you modify all firewall policies that use the rule group.
To update a rule group, first call DescribeRuleGroup to retrieve the current RuleGroup object, update the object as needed, and then provide the updated object to this call.
This is a convenience which creates an instance of the
UpdateRuleGroupRequest.Builder
avoiding the need to create one manually viaUpdateRuleGroupRequest.builder()
- Parameters:
updateRuleGroupRequest
- AConsumer
that will call methods onUpdateRuleGroupRequest.Builder
to create a request.- Returns:
- Result of the UpdateRuleGroup operation returned by the service.
- See Also:
-
updateSubnetChangeProtection
default UpdateSubnetChangeProtectionResponse updateSubnetChangeProtection(UpdateSubnetChangeProtectionRequest updateSubnetChangeProtectionRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, ResourceOwnerCheckException, AwsServiceException, SdkClientException, NetworkFirewallException - Parameters:
updateSubnetChangeProtectionRequest
-- Returns:
- Result of the UpdateSubnetChangeProtection operation returned by the service.
- See Also:
-
updateSubnetChangeProtection
default UpdateSubnetChangeProtectionResponse updateSubnetChangeProtection(Consumer<UpdateSubnetChangeProtectionRequest.Builder> updateSubnetChangeProtectionRequest) throws InvalidRequestException, InternalServerErrorException, ResourceNotFoundException, ThrottlingException, InvalidTokenException, ResourceOwnerCheckException, AwsServiceException, SdkClientException, NetworkFirewallException
This is a convenience which creates an instance of the
UpdateSubnetChangeProtectionRequest.Builder
avoiding the need to create one manually viaUpdateSubnetChangeProtectionRequest.builder()
- Parameters:
updateSubnetChangeProtectionRequest
- AConsumer
that will call methods onUpdateSubnetChangeProtectionRequest.Builder
to create a request.- Returns:
- Result of the UpdateSubnetChangeProtection operation returned by the service.
- See Also:
-
updateTLSInspectionConfiguration
default UpdateTlsInspectionConfigurationResponse updateTLSInspectionConfiguration(UpdateTlsInspectionConfigurationRequest updateTlsInspectionConfigurationRequest) throws InvalidRequestException, ResourceNotFoundException, ThrottlingException, InternalServerErrorException, InvalidTokenException, AwsServiceException, SdkClientException, NetworkFirewallException Updates the TLS inspection configuration settings for the specified TLS inspection configuration. You use a TLS inspection configuration by referencing it in one or more firewall policies. When you modify a TLS inspection configuration, you modify all firewall policies that use the TLS inspection configuration.
To update a TLS inspection configuration, first call DescribeTLSInspectionConfiguration to retrieve the current TLSInspectionConfiguration object, update the object as needed, and then provide the updated object to this call.
- Parameters:
updateTlsInspectionConfigurationRequest
-- Returns:
- Result of the UpdateTLSInspectionConfiguration operation returned by the service.
- See Also:
-
updateTLSInspectionConfiguration
default UpdateTlsInspectionConfigurationResponse updateTLSInspectionConfiguration(Consumer<UpdateTlsInspectionConfigurationRequest.Builder> updateTlsInspectionConfigurationRequest) throws InvalidRequestException, ResourceNotFoundException, ThrottlingException, InternalServerErrorException, InvalidTokenException, AwsServiceException, SdkClientException, NetworkFirewallException Updates the TLS inspection configuration settings for the specified TLS inspection configuration. You use a TLS inspection configuration by referencing it in one or more firewall policies. When you modify a TLS inspection configuration, you modify all firewall policies that use the TLS inspection configuration.
To update a TLS inspection configuration, first call DescribeTLSInspectionConfiguration to retrieve the current TLSInspectionConfiguration object, update the object as needed, and then provide the updated object to this call.
This is a convenience which creates an instance of the
UpdateTlsInspectionConfigurationRequest.Builder
avoiding the need to create one manually viaUpdateTlsInspectionConfigurationRequest.builder()
- Parameters:
updateTlsInspectionConfigurationRequest
- AConsumer
that will call methods onUpdateTlsInspectionConfigurationRequest.Builder
to create a request.- Returns:
- Result of the UpdateTLSInspectionConfiguration operation returned by the service.
- See Also:
-
create
Create aNetworkFirewallClient
with the region loaded from theDefaultAwsRegionProviderChain
and credentials loaded from theDefaultCredentialsProvider
. -
builder
Create a builder that can be used to configure and create aNetworkFirewallClient
. -
serviceMetadata
-
serviceClientConfiguration
Description copied from interface:SdkClient
The SDK service client configuration exposes client settings to the user, e.g., ClientOverrideConfiguration- Specified by:
serviceClientConfiguration
in interfaceAwsClient
- Specified by:
serviceClientConfiguration
in interfaceSdkClient
- Returns:
- SdkServiceClientConfiguration
-