NetworkAcl / Attribute / entries

entries

EC2.NetworkAcl.entries

• (list) –

  The entries (rules) in the network ACL.

  • (dict) –

    Describes an entry in a network ACL.

    • CidrBlock (string) –

      The IPv4 network range to allow or deny, in CIDR notation.

    • Egress (boolean) –

      Indicates whether the rule is an egress rule (applied to traffic leaving the subnet).

    • IcmpTypeCode (dict) –

      ICMP protocol: The ICMP type and code.

      • Code (integer) –

        The ICMP code. A value of -1 means all codes for the specified ICMP type.

      • Type (integer) –

        The ICMP type. A value of -1 means all types.

    • Ipv6CidrBlock (string) –

      The IPv6 network range to allow or deny, in CIDR notation.

    • PortRange (dict) –

      TCP or UDP protocols: The range of ports the rule applies to.

      • From (integer) –

        The first port in the range.

      • To (integer) –

        The last port in the range.

    • Protocol (string) –

      The protocol number. A value of “-1” means all protocols.

    • RuleAction (string) –

      Indicates whether to allow or deny the traffic that matches the rule.

    • RuleNumber (integer) –

      The rule number for the entry. ACL entries are processed in ascending order by rule number.