Class: Aws::NetworkFirewall::Types::CreateTLSInspectionConfigurationRequest

Inherits:

Struct

• Object
• Struct
• Aws::NetworkFirewall::Types::CreateTLSInspectionConfigurationRequest

Includes:

Structure

Defined in:

lib/aws-sdk-networkfirewall/types.rb

Overview

See Also:

• AWS API Documentation

Constant Summary

SENSITIVE =

[]

Instance Attribute Summary

• #description ⇒ String

  A description of the TLS inspection configuration.

• #encryption_configuration ⇒ Types::EncryptionConfiguration

  A complex type that contains optional Amazon Web Services Key Management Service (KMS) encryption settings for your Network Firewall resources.

• #tags ⇒ Array<Types::Tag>

  The key:value pairs to associate with the resource.

• #tls_inspection_configuration ⇒ Types::TLSInspectionConfiguration

  The object that defines a TLS inspection configuration.

• #tls_inspection_configuration_name ⇒ String

  The descriptive name of the TLS inspection configuration.

Instance Attribute Details

#description ⇒ String

A description of the TLS inspection configuration.

Returns:

• (String)

# File 'lib/aws-sdk-networkfirewall/types.rb', line 1672

class CreateTLSInspectionConfigurationRequest < Struct.new(
  :tls_inspection_configuration_name,
  :tls_inspection_configuration,
  :description,
  :tags,
  :encryption_configuration)
  SENSITIVE = []
  include Aws::Structure
end

#encryption_configuration ⇒ Types::EncryptionConfiguration

A complex type that contains optional Amazon Web Services Key Management Service (KMS) encryption settings for your Network Firewall resources. Your data is encrypted by default with an Amazon Web Services owned key that Amazon Web Services owns and manages for you. You can use either the Amazon Web Services owned key, or provide your own customer managed key. To learn more about KMS encryption of your Network Firewall resources, see [Encryption at rest with Amazon Web Services Key Managment Service] in the *Network Firewall Developer Guide*.

[1]: docs.aws.amazon.com/kms/latest/developerguide/kms-encryption-at-rest.html

Returns:

• (Types::EncryptionConfiguration)

# File 'lib/aws-sdk-networkfirewall/types.rb', line 1672

class CreateTLSInspectionConfigurationRequest < Struct.new(
  :tls_inspection_configuration_name,
  :tls_inspection_configuration,
  :description,
  :tags,
  :encryption_configuration)
  SENSITIVE = []
  include Aws::Structure
end

#tags ⇒ Array<Types::Tag>

The key:value pairs to associate with the resource.

Returns:

• (Array<Types::Tag>)

# File 'lib/aws-sdk-networkfirewall/types.rb', line 1672

class CreateTLSInspectionConfigurationRequest < Struct.new(
  :tls_inspection_configuration_name,
  :tls_inspection_configuration,
  :description,
  :tags,
  :encryption_configuration)
  SENSITIVE = []
  include Aws::Structure
end

#tls_inspection_configuration ⇒ Types::TLSInspectionConfiguration

The object that defines a TLS inspection configuration. This, along with TLSInspectionConfigurationResponse, define the TLS inspection configuration. You can retrieve all objects for a TLS inspection configuration by calling DescribeTLSInspectionConfiguration.

Network Firewall uses a TLS inspection configuration to decrypt traffic. Network Firewall re-encrypts the traffic before sending it to its destination.

To use a TLS inspection configuration, you add it to a new Network Firewall firewall policy, then you apply the firewall policy to a firewall. Network Firewall acts as a proxy service to decrypt and inspect the traffic traveling through your firewalls. You can reference a TLS inspection configuration from more than one firewall policy, and you can use a firewall policy in more than one firewall. For more information about using TLS inspection configurations, see

Inspecting SSL/TLS traffic with TLS inspection configurations][1

in the *Network Firewall Developer Guide*.

[1]: docs.aws.amazon.com/network-firewall/latest/developerguide/tls-inspection.html

Returns:

• (Types::TLSInspectionConfiguration)

# File 'lib/aws-sdk-networkfirewall/types.rb', line 1672

class CreateTLSInspectionConfigurationRequest < Struct.new(
  :tls_inspection_configuration_name,
  :tls_inspection_configuration,
  :description,
  :tags,
  :encryption_configuration)
  SENSITIVE = []
  include Aws::Structure
end

#tls_inspection_configuration_name ⇒ String

The descriptive name of the TLS inspection configuration. You can’t change the name of a TLS inspection configuration after you create it.

Returns:

• (String)

# File 'lib/aws-sdk-networkfirewall/types.rb', line 1672

class CreateTLSInspectionConfigurationRequest < Struct.new(
  :tls_inspection_configuration_name,
  :tls_inspection_configuration,
  :description,
  :tags,
  :encryption_configuration)
  SENSITIVE = []
  include Aws::Structure
end