AWS::NetworkFirewall::RuleGroupNetworkFirewall RuleGroup
Resource type definition for AWS::NetworkFirewall::RuleGroup
Properties
7 configurable properties. 3 required. Click a row to see details.
Filter:
| Property | Type | Flags |
|---|---|---|
Capacity | integer | RequiredCreate-only |
RuleGroupName | string | RequiredCreate-only |
Type | string | RequiredCreate-only |
Description | string | |
RuleGroup | RuleGroup | |
SummaryConfiguration | object | |
Tags | Array<Tag> |
Return Values
Values returned after the resource is created. Access these with Fn::GetAtt.
| Attribute | Type | Description |
|---|---|---|
RuleGroupArn | string | - |
RuleGroupId | string | - |
Sample CloudFormation Template
A minimal template with required properties and common optional ones.
template.yaml
AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::NetworkFirewall::RuleGroup
Resources:
MyResource:
Type: AWS::NetworkFirewall::RuleGroup
Properties:
Type: "STATELESS"
Capacity: 1
RuleGroupName: "my-rulegroupname"
Tags:
- Key: Environment
Value: Production
Description: !Ref "AWS::StackName"Required IAM Permissions
Permissions CloudFormation needs in your IAM role to manage this resource.
create
network-firewall:CreateRuleGroupnetwork-firewall:DescribeRuleGroupnetwork-firewall:TagResourcenetwork-firewall:ListRuleGroupsiam:CreateServiceLinkedRoleec2:GetManagedPrefixListEntriesec2:DescribeManagedPrefixListsread
network-firewall:DescribeRuleGroupnetwork-firewall:ListTagsForResourcesupdate
network-firewall:UpdateRuleGroupnetwork-firewall:DescribeRuleGroupnetwork-firewall:TagResourcenetwork-firewall:UntagResourceiam:CreateServiceLinkedRoleec2:GetManagedPrefixListEntriesec2:DescribeManagedPrefixListsdelete
network-firewall:DeleteRuleGroupnetwork-firewall:DescribeRuleGroupnetwork-firewall:UntagResourcelist
network-firewall:ListRuleGroupsLearn AWS the Practical Way
Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.
Subscribe to NewsletterQuick Facts
ServiceNetworkFirewall
Properties9
Required3
TaggingSupported
Primary ID
RuleGroupArnSupported Operations
CreateReadUpdateDeleteList
Immutable After Creation
These properties cannot be changed after the resource is created. Updating them triggers a replacement.
RuleGroupNameCapacityType