My Saved Presets
You must be logged in to view saved presets

Loading Library ...

Block Packets to Specific Destination

This template blocks packets destined for a specific IP and port using a stateful rule group in AWS Network Firewall.

example

aws_networkfirewall_rule_group

encryption_configuration


rule_group
reference_sets
ip_set_reference


rule_variables
ip_sets

ip_set

definition

port_sets

port_set

definition

rules_source
rules_source_list

target_types

targets


stateful_rule
header




rule_option

settings

stateless_rules_and_custom_actions
custom_action
action_definition
publish_metric_action
dimension


stateless_rule
rule_definition

actions

match_attributes
destination

destination_port

protocols

source

source_port
tcp_flag

flags

masks

stateful_rule_options

depends_on


lifecycle

ignore_changes

replace_triggered_by

precondition


postcondition



Terraform Template

resource "aws_networkfirewall_rule_group" "example" {
  capacity = 100
  name = "example"

  rule_group {

    rules_source {

      stateful_rule {
        action = "DROP"

        header {
          destination = "124.1.1.24/32"
          destination_port = "53"
          direction = "ANY"
          protocol = "TCP"
          source = "1.2.3.4/32"
          source_port = "53"
        }

        rule_option {
          keyword = "sid"
          settings = ["1"]
        }
      }
    }
  }

  tags = {
    Tag1 = "Value1"
    Tag2 = "Value2"
  }
  type = "STATEFUL"
}

© 2024 asecurecloud. All rights reserved.