class Aws::FMS::Types::ResourceViolation

Violation detail based on resource type.

@!attribute [rw] aws_vpc_security_group_violation

Violation detail for security groups.
@return [Types::AwsVPCSecurityGroupViolation]

@!attribute [rw] aws_ec2_network_interface_violation

Violation detail for a network interface.
@return [Types::AwsEc2NetworkInterfaceViolation]

@!attribute [rw] aws_ec2_instance_violation

Violation detail for an EC2 instance.
@return [Types::AwsEc2InstanceViolation]

@!attribute [rw] network_firewall_missing_firewall_violation

Violation detail for an Network Firewall policy that indicates that
a subnet has no Firewall Manager managed firewall in its VPC.
@return [Types::NetworkFirewallMissingFirewallViolation]

@!attribute [rw] network_firewall_missing_subnet_violation

Violation detail for an Network Firewall policy that indicates that
an Availability Zone is missing the expected Firewall Manager
managed subnet.
@return [Types::NetworkFirewallMissingSubnetViolation]

@!attribute [rw] network_firewall_missing_expected_rt_violation

Violation detail for an Network Firewall policy that indicates that
a subnet is not associated with the expected Firewall Manager
managed route table.
@return [Types::NetworkFirewallMissingExpectedRTViolation]

@!attribute [rw] network_firewall_policy_modified_violation

Violation detail for an Network Firewall policy that indicates that
a firewall policy in an individual account has been modified in a
way that makes it noncompliant. For example, the individual account
owner might have deleted a rule group, changed the priority of a
stateless rule group, or changed a policy default action.
@return [Types::NetworkFirewallPolicyModifiedViolation]

@!attribute [rw] network_firewall_internet_traffic_not_inspected_violation

Violation detail for the subnet for which internet traffic hasn't
been inspected.
@return [Types::NetworkFirewallInternetTrafficNotInspectedViolation]

@!attribute [rw] network_firewall_invalid_route_configuration_violation

The route configuration is invalid.
@return [Types::NetworkFirewallInvalidRouteConfigurationViolation]

@!attribute [rw] network_firewall_black_hole_route_detected_violation

Violation detail for an internet gateway route with an inactive
state in the customer subnet route table or Network Firewall subnet
route table.
@return [Types::NetworkFirewallBlackHoleRouteDetectedViolation]

@!attribute [rw] network_firewall_unexpected_firewall_routes_violation

There's an unexpected firewall route.
@return [Types::NetworkFirewallUnexpectedFirewallRoutesViolation]

@!attribute [rw] network_firewall_unexpected_gateway_routes_violation

There's an unexpected gateway route.
@return [Types::NetworkFirewallUnexpectedGatewayRoutesViolation]

@!attribute [rw] network_firewall_missing_expected_routes_violation

Expected routes are missing from Network Firewall.
@return [Types::NetworkFirewallMissingExpectedRoutesViolation]

@!attribute [rw] dns_rule_group_priority_conflict_violation

Violation detail for a DNS Firewall policy that indicates that a
rule group that Firewall Manager tried to associate with a VPC has
the same priority as a rule group that's already associated.
@return [Types::DnsRuleGroupPriorityConflictViolation]

@!attribute [rw] dns_duplicate_rule_group_violation

Violation detail for a DNS Firewall policy that indicates that a
rule group that Firewall Manager tried to associate with a VPC is
already associated with the VPC and can't be associated again.
@return [Types::DnsDuplicateRuleGroupViolation]

@!attribute [rw] dns_rule_group_limit_exceeded_violation

Violation detail for a DNS Firewall policy that indicates that the
VPC reached the limit for associated DNS Firewall rule groups.
Firewall Manager tried to associate another rule group with the VPC
and failed.
@return [Types::DnsRuleGroupLimitExceededViolation]

@!attribute [rw] possible_remediation_actions

A list of possible remediation action lists. Each individual
possible remediation action is a list of individual remediation
actions.
@return [Types::PossibleRemediationActions]

@see docs.aws.amazon.com/goto/WebAPI/fms-2018-01-01/ResourceViolation AWS API Documentation

Constants

SENSITIVE