latest--aws-ec2-networkaclentry

Type	object
Schema URL	https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--aws-ec2-networkaclentry.json
Parent schema	serverless-framework-configuration

Type: object

Resource Type definition for AWS::EC2::NetworkAclEntry. Source:- https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-ec2.git

Properties

NetworkAclId string | Aws_CF_FunctionString required

The ID of the network ACL

RuleAction string | Aws_CF_FunctionString required

Indicates whether to allow or deny the traffic that matches the rule

RuleNumber integer required

Rule number to assign to the entry, such as 100. ACL entries are processed in ascending order by rule number. Entries can't use the same rule number unless one is an egress rule and the other is an ingress rule

Protocol integer required

The protocol number. A value of "-1" means all protocols. If you specify "-1" or a protocol number other than "6" (TCP), "17" (UDP), or "1" (ICMP), traffic on all ports is allowed, regardless of any ports or ICMP types or codes that you specify. If you specify protocol "58" (ICMPv6) and specify an IPv4 CIDR block, traffic for all ICMP types and codes allowed, regardless of any that you specify. If you specify protocol "58" (ICMPv6) and specify an IPv6 CIDR block, you must specify an ICMP type and code

PortRange object

2 nested properties

From integer

To integer

CidrBlock string | Aws_CF_FunctionString

The IPv4 CIDR range to allow or deny, in CIDR notation (for example, 172.16.0.0/24). Requirement is conditional: You must specify the CidrBlock or Ipv6CidrBlock property

Egress boolean

Indicates whether this is an egress rule (rule is applied to traffic leaving the subnet)

Ipv6CidrBlock string | Aws_CF_FunctionString

The IPv6 network range to allow or deny, in CIDR notation (for example 2001:db8:1234:1a00::/64)

Icmp object