CreateSecurityRuleDetails¶

class oci.network_firewall.models.CreateSecurityRuleDetails(**kwargs)¶

Bases: object

Reqeust for creating Security Rule used in the firewall policy rules. Security Rules determine whether to block or allow a session based on traffic attributes, such as the source and destination IP address, protocol/port, and the HTTP(S) target URL.

Attributes

`ACTION_ALLOW`	A constant which can be used with the action property of a CreateSecurityRuleDetails.
`ACTION_DROP`	A constant which can be used with the action property of a CreateSecurityRuleDetails.
`ACTION_INSPECT`	A constant which can be used with the action property of a CreateSecurityRuleDetails.
`ACTION_REJECT`	A constant which can be used with the action property of a CreateSecurityRuleDetails.
`INSPECTION_INTRUSION_DETECTION`	A constant which can be used with the inspection property of a CreateSecurityRuleDetails.
`INSPECTION_INTRUSION_PREVENTION`	A constant which can be used with the inspection property of a CreateSecurityRuleDetails.
`action`	[Required] Gets the action of this CreateSecurityRuleDetails.
`condition`	[Required] Gets the condition of this CreateSecurityRuleDetails.
`inspection`	Gets the inspection of this CreateSecurityRuleDetails.
`name`	[Required] Gets the name of this CreateSecurityRuleDetails.
`position`	Gets the position of this CreateSecurityRuleDetails.

Methods

__init__(**kwargs) Initializes a new CreateSecurityRuleDetails object with values from keyword arguments.

ACTION_ALLOW = 'ALLOW'¶: A constant which can be used with the action property of a CreateSecurityRuleDetails. This constant has a value of “ALLOW”

ACTION_DROP = 'DROP'¶: A constant which can be used with the action property of a CreateSecurityRuleDetails. This constant has a value of “DROP”

ACTION_INSPECT = 'INSPECT'¶: A constant which can be used with the action property of a CreateSecurityRuleDetails. This constant has a value of “INSPECT”

ACTION_REJECT = 'REJECT'¶: A constant which can be used with the action property of a CreateSecurityRuleDetails. This constant has a value of “REJECT”

INSPECTION_INTRUSION_DETECTION = 'INTRUSION_DETECTION'¶: A constant which can be used with the inspection property of a CreateSecurityRuleDetails. This constant has a value of “INTRUSION_DETECTION”

INSPECTION_INTRUSION_PREVENTION = 'INTRUSION_PREVENTION'¶: A constant which can be used with the inspection property of a CreateSecurityRuleDetails. This constant has a value of “INTRUSION_PREVENTION”

__init__(**kwargs)¶

Initializes a new CreateSecurityRuleDetails object with values from keyword arguments. The following keyword arguments are supported (corresponding to the getters/setters of this class):

Parameters:

name (str) – The value to assign to the name property of this CreateSecurityRuleDetails.
condition (oci.network_firewall.models.SecurityRuleMatchCriteria) – The value to assign to the condition property of this CreateSecurityRuleDetails.
action (str) – The value to assign to the action property of this CreateSecurityRuleDetails. Allowed values for this property are: “ALLOW”, “DROP”, “REJECT”, “INSPECT”
inspection (str) – The value to assign to the inspection property of this CreateSecurityRuleDetails. Allowed values for this property are: “INTRUSION_DETECTION”, “INTRUSION_PREVENTION”
position (oci.network_firewall.models.RulePosition) – The value to assign to the position property of this CreateSecurityRuleDetails.

action¶

[Required] Gets the action of this CreateSecurityRuleDetails. Types of Action on the Traffic flow.

ALLOW - Allows the traffic.

DROP - Silently drops the traffic, e.g. without sending a TCP reset.

REJECT - Rejects the traffic, sending a TCP reset to client and/or server as applicable.

INSPECT - Inspects traffic for vulnerability as specified in inspection, which may result in rejection.

Allowed values for this property are: “ALLOW”, “DROP”, “REJECT”, “INSPECT”

Returns:	The action of this CreateSecurityRuleDetails.
Return type:	str

condition¶

[Required] Gets the condition of this CreateSecurityRuleDetails.

Returns:	The condition of this CreateSecurityRuleDetails.
Return type:	oci.network_firewall.models.SecurityRuleMatchCriteria

inspection¶

Gets the inspection of this CreateSecurityRuleDetails. Type of inspection to affect the Traffic flow. This is only applicable if action is INSPECT.

INTRUSION_DETECTION - Intrusion Detection.

INTRUSION_PREVENTION - Intrusion Detection and Prevention. Traffic classified as potentially malicious will be rejected as described in type.

Allowed values for this property are: “INTRUSION_DETECTION”, “INTRUSION_PREVENTION”

Returns:	The inspection of this CreateSecurityRuleDetails.
Return type:	str

name¶

[Required] Gets the name of this CreateSecurityRuleDetails. Name for the Security rule, must be unique within the policy.

Returns:	The name of this CreateSecurityRuleDetails.
Return type:	str

position¶

Gets the position of this CreateSecurityRuleDetails.

Returns:	The position of this CreateSecurityRuleDetails.
Return type:	oci.network_firewall.models.RulePosition