Class | AWS::EC2::NetworkACL::Entry |
In: |
lib/aws/ec2/network_acl/entry.rb
|
Parent: | Object |
Represents a single entry (rule) for an EC2 network ACL.
action | [R] |
@return [:allow,:deny] Whether to allow or deny the traffic that
matches the rule. |
cidr_block | [R] | @return [String] The network range to allow or deny, in CIDR notation. |
egress | [R] |
@return [Boolean] Indicate the rule is an egress rule (rule is
applied to traffic leaving the subnet). |
icmp_code | [R] |
@return [nil,Integer] A value of -1 means all codes for the given
ICMP type. Returns nil unless the protocol is ICMP. |
icmp_type | [R] |
@return [nil,Integer] A value of -1 means all codes for the given
ICMP type. Returns nil unless the protocol is ICMP. |
ingress | [R] |
@return [Boolean] Indicate the rule is an ingress rule (rule is
applied to traffic entering the subnet). |
network_acl | [R] | @return [NetworkACL] |
port_range | [R] |
@return [nil,Range<Integer>] For the TCP or UDP protocols, the range
of ports the rule applies to. |
protocol | [R] |
@return [Integer] Returns the protocol number. A value of -1
means all protocols. See http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xml for a list of protocol numbers to names. |
rule_number | [R] | @return [Integer] |
Replaces the current network ACL entry with the options passed.
@param [Hash] options
@option options [required,:allow,:deny] :rule_action Whether to
allow or deny traffic that matches the rule.
@option options [required,Integer] :protocol IP protocol the rule
applies to. You can use -1 to mean all protocols. You can see a list of # supported protocol numbers here: http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xml
@option options [required,String] :cidr_block The CIDR range to
allow or deny, in CIDR notation (e.g., 172.16.0.0/24).
@option options [Boolean] :egress (false)
Whether this rule applies to egress traffic from the subnet (true) or ingress traffic to the subnet (false).
@option options [Range<Integer>] :port_range A numeric range
of ports. Required if specifying TCP (6) or UDP (17) for the :protocol.
@option options [Integer] :icmp_code For the ICMP protocol, the
ICMP code. You can use -1 to specify all ICMP codes for the given ICMP type.
@option options [Integer] :icmp_type For the ICMP protocol,
the ICMP type. You can use -1 to specify all ICMP types.
@return [nil]