Welcome to Pulumi Registry, your window into the cloud. Read the announcement.

AWS Classic

v4.30.0 published on Tuesday, Nov 30, 2021 by Pulumi

ResolverFirewallRuleGroupAssociation

Provides a Route 53 Resolver DNS Firewall rule group association resource.

Example Usage

using Pulumi;
using Aws = Pulumi.Aws;

class MyStack : Stack
{
    public MyStack()
    {
        var exampleResolverFirewallRuleGroup = new Aws.Route53.ResolverFirewallRuleGroup("exampleResolverFirewallRuleGroup", new Aws.Route53.ResolverFirewallRuleGroupArgs
        {
        });
        var exampleResolverFirewallRuleGroupAssociation = new Aws.Route53.ResolverFirewallRuleGroupAssociation("exampleResolverFirewallRuleGroupAssociation", new Aws.Route53.ResolverFirewallRuleGroupAssociationArgs
        {
            FirewallRuleGroupId = exampleResolverFirewallRuleGroup.Id,
            Priority = 100,
            VpcId = aws_vpc.Example.Id,
        });
    }

}
package main

import (
	"github.com/pulumi/pulumi-aws/sdk/v4/go/aws/route53"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		exampleResolverFirewallRuleGroup, err := route53.NewResolverFirewallRuleGroup(ctx, "exampleResolverFirewallRuleGroup", nil)
		if err != nil {
			return err
		}
		_, err = route53.NewResolverFirewallRuleGroupAssociation(ctx, "exampleResolverFirewallRuleGroupAssociation", &route53.ResolverFirewallRuleGroupAssociationArgs{
			FirewallRuleGroupId: exampleResolverFirewallRuleGroup.ID(),
			Priority:            pulumi.Int(100),
			VpcId:               pulumi.Any(aws_vpc.Example.Id),
		})
		if err != nil {
			return err
		}
		return nil
	})
}
import pulumi
import pulumi_aws as aws

example_resolver_firewall_rule_group = aws.route53.ResolverFirewallRuleGroup("exampleResolverFirewallRuleGroup")
example_resolver_firewall_rule_group_association = aws.route53.ResolverFirewallRuleGroupAssociation("exampleResolverFirewallRuleGroupAssociation",
    firewall_rule_group_id=example_resolver_firewall_rule_group.id,
    priority=100,
    vpc_id=aws_vpc["example"]["id"])
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";

const exampleResolverFirewallRuleGroup = new aws.route53.ResolverFirewallRuleGroup("exampleResolverFirewallRuleGroup", {});
const exampleResolverFirewallRuleGroupAssociation = new aws.route53.ResolverFirewallRuleGroupAssociation("exampleResolverFirewallRuleGroupAssociation", {
    firewallRuleGroupId: exampleResolverFirewallRuleGroup.id,
    priority: 100,
    vpcId: aws_vpc.example.id,
});

Create a ResolverFirewallRuleGroupAssociation Resource

new ResolverFirewallRuleGroupAssociation(name: string, args: ResolverFirewallRuleGroupAssociationArgs, opts?: CustomResourceOptions);
@overload
def ResolverFirewallRuleGroupAssociation(resource_name: str,
                                         opts: Optional[ResourceOptions] = None,
                                         firewall_rule_group_id: Optional[str] = None,
                                         mutation_protection: Optional[str] = None,
                                         name: Optional[str] = None,
                                         priority: Optional[int] = None,
                                         tags: Optional[Mapping[str, str]] = None,
                                         vpc_id: Optional[str] = None)
@overload
def ResolverFirewallRuleGroupAssociation(resource_name: str,
                                         args: ResolverFirewallRuleGroupAssociationArgs,
                                         opts: Optional[ResourceOptions] = None)
func NewResolverFirewallRuleGroupAssociation(ctx *Context, name string, args ResolverFirewallRuleGroupAssociationArgs, opts ...ResourceOption) (*ResolverFirewallRuleGroupAssociation, error)
public ResolverFirewallRuleGroupAssociation(string name, ResolverFirewallRuleGroupAssociationArgs args, CustomResourceOptions? opts = null)
name string
The unique name of the resource.
args ResolverFirewallRuleGroupAssociationArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name str
The unique name of the resource.
args ResolverFirewallRuleGroupAssociationArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name string
The unique name of the resource.
args ResolverFirewallRuleGroupAssociationArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name string
The unique name of the resource.
args ResolverFirewallRuleGroupAssociationArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.

ResolverFirewallRuleGroupAssociation Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The ResolverFirewallRuleGroupAssociation resource accepts the following input properties:

FirewallRuleGroupId string
The unique identifier of the firewall rule group.
Priority int
The setting that determines the processing order of the rule group among the rule groups that you associate with the specified VPC. DNS Firewall filters VPC traffic starting from the rule group with the lowest numeric priority setting.
VpcId string
The unique identifier of the VPC that you want to associate with the rule group.
MutationProtection string
If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections. Valid values: ENABLED, DISABLED.
Name string
A name that lets you identify the rule group association, to manage and use it.
Tags Dictionary<string, string>
Key-value map of resource tags. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
FirewallRuleGroupId string
The unique identifier of the firewall rule group.
Priority int
The setting that determines the processing order of the rule group among the rule groups that you associate with the specified VPC. DNS Firewall filters VPC traffic starting from the rule group with the lowest numeric priority setting.
VpcId string
The unique identifier of the VPC that you want to associate with the rule group.
MutationProtection string
If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections. Valid values: ENABLED, DISABLED.
Name string
A name that lets you identify the rule group association, to manage and use it.
Tags map[string]string
Key-value map of resource tags. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
firewallRuleGroupId string
The unique identifier of the firewall rule group.
priority number
The setting that determines the processing order of the rule group among the rule groups that you associate with the specified VPC. DNS Firewall filters VPC traffic starting from the rule group with the lowest numeric priority setting.
vpcId string
The unique identifier of the VPC that you want to associate with the rule group.
mutationProtection string
If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections. Valid values: ENABLED, DISABLED.
name string
A name that lets you identify the rule group association, to manage and use it.
tags {[key: string]: string}
Key-value map of resource tags. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
firewall_rule_group_id str
The unique identifier of the firewall rule group.
priority int
The setting that determines the processing order of the rule group among the rule groups that you associate with the specified VPC. DNS Firewall filters VPC traffic starting from the rule group with the lowest numeric priority setting.
vpc_id str
The unique identifier of the VPC that you want to associate with the rule group.
mutation_protection str
If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections. Valid values: ENABLED, DISABLED.
name str
A name that lets you identify the rule group association, to manage and use it.
tags Mapping[str, str]
Key-value map of resource tags. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

Outputs

All input properties are implicitly available as output properties. Additionally, the ResolverFirewallRuleGroupAssociation resource produces the following output properties:

Arn string
The ARN (Amazon Resource Name) of the firewall rule group association.
Id string
The provider-assigned unique ID for this managed resource.
TagsAll Dictionary<string, string>
A map of tags assigned to the resource, including those inherited from the provider .
Arn string
The ARN (Amazon Resource Name) of the firewall rule group association.
Id string
The provider-assigned unique ID for this managed resource.
TagsAll map[string]string
A map of tags assigned to the resource, including those inherited from the provider .
arn string
The ARN (Amazon Resource Name) of the firewall rule group association.
id string
The provider-assigned unique ID for this managed resource.
tagsAll {[key: string]: string}
A map of tags assigned to the resource, including those inherited from the provider .
arn str
The ARN (Amazon Resource Name) of the firewall rule group association.
id str
The provider-assigned unique ID for this managed resource.
tags_all Mapping[str, str]
A map of tags assigned to the resource, including those inherited from the provider .

Look up an Existing ResolverFirewallRuleGroupAssociation Resource

Get an existing ResolverFirewallRuleGroupAssociation resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: ResolverFirewallRuleGroupAssociationState, opts?: CustomResourceOptions): ResolverFirewallRuleGroupAssociation
@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        arn: Optional[str] = None,
        firewall_rule_group_id: Optional[str] = None,
        mutation_protection: Optional[str] = None,
        name: Optional[str] = None,
        priority: Optional[int] = None,
        tags: Optional[Mapping[str, str]] = None,
        tags_all: Optional[Mapping[str, str]] = None,
        vpc_id: Optional[str] = None) -> ResolverFirewallRuleGroupAssociation
func GetResolverFirewallRuleGroupAssociation(ctx *Context, name string, id IDInput, state *ResolverFirewallRuleGroupAssociationState, opts ...ResourceOption) (*ResolverFirewallRuleGroupAssociation, error)
public static ResolverFirewallRuleGroupAssociation Get(string name, Input<string> id, ResolverFirewallRuleGroupAssociationState? state, CustomResourceOptions? opts = null)
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
resource_name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.

The following state arguments are supported:

Arn string
The ARN (Amazon Resource Name) of the firewall rule group association.
FirewallRuleGroupId string
The unique identifier of the firewall rule group.
MutationProtection string
If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections. Valid values: ENABLED, DISABLED.
Name string
A name that lets you identify the rule group association, to manage and use it.
Priority int
The setting that determines the processing order of the rule group among the rule groups that you associate with the specified VPC. DNS Firewall filters VPC traffic starting from the rule group with the lowest numeric priority setting.
Tags Dictionary<string, string>
Key-value map of resource tags. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
TagsAll Dictionary<string, string>
A map of tags assigned to the resource, including those inherited from the provider .
VpcId string
The unique identifier of the VPC that you want to associate with the rule group.
Arn string
The ARN (Amazon Resource Name) of the firewall rule group association.
FirewallRuleGroupId string
The unique identifier of the firewall rule group.
MutationProtection string
If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections. Valid values: ENABLED, DISABLED.
Name string
A name that lets you identify the rule group association, to manage and use it.
Priority int
The setting that determines the processing order of the rule group among the rule groups that you associate with the specified VPC. DNS Firewall filters VPC traffic starting from the rule group with the lowest numeric priority setting.
Tags map[string]string
Key-value map of resource tags. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
TagsAll map[string]string
A map of tags assigned to the resource, including those inherited from the provider .
VpcId string
The unique identifier of the VPC that you want to associate with the rule group.
arn string
The ARN (Amazon Resource Name) of the firewall rule group association.
firewallRuleGroupId string
The unique identifier of the firewall rule group.
mutationProtection string
If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections. Valid values: ENABLED, DISABLED.
name string
A name that lets you identify the rule group association, to manage and use it.
priority number
The setting that determines the processing order of the rule group among the rule groups that you associate with the specified VPC. DNS Firewall filters VPC traffic starting from the rule group with the lowest numeric priority setting.
tags {[key: string]: string}
Key-value map of resource tags. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
tagsAll {[key: string]: string}
A map of tags assigned to the resource, including those inherited from the provider .
vpcId string
The unique identifier of the VPC that you want to associate with the rule group.
arn str
The ARN (Amazon Resource Name) of the firewall rule group association.
firewall_rule_group_id str
The unique identifier of the firewall rule group.
mutation_protection str
If enabled, this setting disallows modification or removal of the association, to help prevent against accidentally altering DNS firewall protections. Valid values: ENABLED, DISABLED.
name str
A name that lets you identify the rule group association, to manage and use it.
priority int
The setting that determines the processing order of the rule group among the rule groups that you associate with the specified VPC. DNS Firewall filters VPC traffic starting from the rule group with the lowest numeric priority setting.
tags Mapping[str, str]
Key-value map of resource tags. .If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.
tags_all Mapping[str, str]
A map of tags assigned to the resource, including those inherited from the provider .
vpc_id str
The unique identifier of the VPC that you want to associate with the rule group.

Import

Route 53 Resolver DNS Firewall rule group associations can be imported using the Route 53 Resolver DNS Firewall rule group association ID, e.g.,

 $ pulumi import aws:route53/resolverFirewallRuleGroupAssociation:ResolverFirewallRuleGroupAssociation example rslvr-frgassoc-0123456789abcdef

Package Details

Repository
https://github.com/pulumi/pulumi-aws
License
Apache-2.0
Notes
This Pulumi package is based on the aws Terraform Provider.