NetworkAcl / Attribute / entries

entries#

EC2.NetworkAcl.entries#
  • (list) –

    One or more entries (rules) in the network ACL.

    • (dict) –

      Describes an entry in a network ACL.

      • CidrBlock (string) –

        The IPv4 network range to allow or deny, in CIDR notation.

      • Egress (boolean) –

        Indicates whether the rule is an egress rule (applied to traffic leaving the subnet).

      • IcmpTypeCode (dict) –

        ICMP protocol: The ICMP type and code.

        • Code (integer) –

          The ICMP code. A value of -1 means all codes for the specified ICMP type.

        • Type (integer) –

          The ICMP type. A value of -1 means all types.

      • Ipv6CidrBlock (string) –

        The IPv6 network range to allow or deny, in CIDR notation.

      • PortRange (dict) –

        TCP or UDP protocols: The range of ports the rule applies to.

        • From (integer) –

          The first port in the range.

        • To (integer) –

          The last port in the range.

      • Protocol (string) –

        The protocol number. A value of “-1” means all protocols.

      • RuleAction (string) –

        Indicates whether to allow or deny the traffic that matches the rule.

      • RuleNumber (integer) –

        The rule number for the entry. ACL entries are processed in ascending order by rule number.