Class AWS::EC2::NetworkACL::Entry
In: lib/aws/ec2/network_acl/entry.rb
Parent: Object

Represents a single entry (rule) for an EC2 network ACL.

Methods

allow?   delete   deny?   egress?   ingress?   new   replace  

Attributes

action  [R]  @return [:allow,:deny] Whether to allow or deny the traffic that
  matches the rule.
cidr_block  [R]  @return [String] The network range to allow or deny, in CIDR notation.
egress  [R]  @return [Boolean] Indicate the rule is an egress rule (rule is
  applied to traffic leaving the subnet).
icmp_code  [R]  @return [nil,Integer] A value of -1 means all codes for the given
 ICMP type.  Returns nil unless the protocol is ICMP.
icmp_type  [R]  @return [nil,Integer] A value of -1 means all codes for the given
 ICMP type.  Returns nil unless the protocol is ICMP.
ingress  [R]  @return [Boolean] Indicate the rule is an ingress rule (rule is
  applied to traffic entering the subnet).
network_acl  [R]  @return [NetworkACL]
port_range  [R]  @return [nil,Range<Integer>] For the TCP or UDP protocols, the range
  of ports the rule applies to.
protocol  [R]  @return [Integer] Returns the protocol number. A value of -1
  means all protocols.  See
  http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xml
  for a list of protocol numbers to names.
rule_number  [R]  @return [Integer]

Public Class methods

Public Instance methods

@return [Boolean] Returns true if traffic matching this rule

  is allowed.

Deletes the current network ACL entry. @return [nil]

@return [Boolean] Returns true if traffic matching this rule

  is denied.

@return [Boolean] Returns true if the rule is applied to traffic

  leaving the subnet.

@return [Boolean] Returns true if the rule is applied to traffic

  entering the subnet.

Replaces the current network ACL entry with the options passed.

@param [Hash] options

@option options [required,:allow,:deny] :rule_action Whether to

  allow or deny traffic that matches the rule.

@option options [required,Integer] :protocol IP protocol the rule

  applies to. You can use -1 to mean all protocols. You can see a
  list of #   supported protocol numbers here:
  http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xml

@option options [required,String] :cidr_block The CIDR range to

  allow or deny, in CIDR notation (e.g., 172.16.0.0/24).

@option options [Boolean] :egress (false)

  Whether this rule applies to egress traffic from the subnet (true)
  or ingress traffic to the subnet (false).

@option options [Range<Integer>] :port_range A numeric range

  of ports. Required if specifying TCP (6) or UDP (17) for the
  :protocol.

@option options [Integer] :icmp_code For the ICMP protocol, the

  ICMP code. You can use -1 to specify all ICMP codes for the given
  ICMP type.

@option options [Integer] :icmp_type For the ICMP protocol,

  the ICMP type. You can use -1 to specify all ICMP types.

@return [nil]

[Validate]