Module Values.ResourceViolationSource

Violation detail based on resource type.

Sourcetype nonrec t = {
  1. awsVPCSecurityGroupViolation : AwsVPCSecurityGroupViolation.t option;
    (*

    Violation detail for security groups.

    *)
  2. awsEc2NetworkInterfaceViolation : AwsEc2NetworkInterfaceViolation.t option;
    (*

    Violation detail for a network interface.

    *)
  3. awsEc2InstanceViolation : AwsEc2InstanceViolation.t option;
    (*

    Violation detail for an EC2 instance.

    *)
  4. networkFirewallMissingFirewallViolation : NetworkFirewallMissingFirewallViolation.t option;
    (*

    Violation detail for an Network Firewall policy that indicates that a subnet has no Firewall Manager managed firewall in its VPC.

    *)
  5. networkFirewallMissingSubnetViolation : NetworkFirewallMissingSubnetViolation.t option;
    (*

    Violation detail for an Network Firewall policy that indicates that an Availability Zone is missing the expected Firewall Manager managed subnet.

    *)
  6. networkFirewallMissingExpectedRTViolation : NetworkFirewallMissingExpectedRTViolation.t option;
    (*

    Violation detail for an Network Firewall policy that indicates that a subnet is not associated with the expected Firewall Manager managed route table.

    *)
  7. networkFirewallPolicyModifiedViolation : NetworkFirewallPolicyModifiedViolation.t option;
    (*

    Violation detail for an Network Firewall policy that indicates that a firewall policy in an individual account has been modified in a way that makes it noncompliant. For example, the individual account owner might have deleted a rule group, changed the priority of a stateless rule group, or changed a policy default action.

    *)
  8. networkFirewallInternetTrafficNotInspectedViolation : NetworkFirewallInternetTrafficNotInspectedViolation.t option;
    (*

    Violation detail for the subnet for which internet traffic hasn't been inspected.

    *)
  9. networkFirewallInvalidRouteConfigurationViolation : NetworkFirewallInvalidRouteConfigurationViolation.t option;
    (*

    The route configuration is invalid.

    *)
  10. networkFirewallBlackHoleRouteDetectedViolation : NetworkFirewallBlackHoleRouteDetectedViolation.t option;
  11. networkFirewallUnexpectedFirewallRoutesViolation : NetworkFirewallUnexpectedFirewallRoutesViolation.t option;
    (*

    There's an unexpected firewall route.

    *)
  12. networkFirewallUnexpectedGatewayRoutesViolation : NetworkFirewallUnexpectedGatewayRoutesViolation.t option;
    (*

    There's an unexpected gateway route.

    *)
  13. networkFirewallMissingExpectedRoutesViolation : NetworkFirewallMissingExpectedRoutesViolation.t option;
    (*

    Expected routes are missing from Network Firewall.

    *)
  14. dnsRuleGroupPriorityConflictViolation : DnsRuleGroupPriorityConflictViolation.t option;
    (*

    Violation detail for a DNS Firewall policy that indicates that a rule group that Firewall Manager tried to associate with a VPC has the same priority as a rule group that's already associated.

    *)
  15. dnsDuplicateRuleGroupViolation : DnsDuplicateRuleGroupViolation.t option;
    (*

    Violation detail for a DNS Firewall policy that indicates that a rule group that Firewall Manager tried to associate with a VPC is already associated with the VPC and can't be associated again.

    *)
  16. dnsRuleGroupLimitExceededViolation : DnsRuleGroupLimitExceededViolation.t option;
    (*

    Violation detail for a DNS Firewall policy that indicates that the VPC reached the limit for associated DNS Firewall rule groups. Firewall Manager tried to associate another rule group with the VPC and failed.

    *)
  17. firewallSubnetIsOutOfScopeViolation : FirewallSubnetIsOutOfScopeViolation.t option;
    (*

    Contains details about the firewall subnet that violates the policy scope.

    *)
  18. routeHasOutOfScopeEndpointViolation : RouteHasOutOfScopeEndpointViolation.t option;
    (*

    Contains details about the route endpoint that violates the policy scope.

    *)
  19. thirdPartyFirewallMissingFirewallViolation : ThirdPartyFirewallMissingFirewallViolation.t option;
    (*

    The violation details for a third-party firewall that's been deleted.

    *)
  20. thirdPartyFirewallMissingSubnetViolation : ThirdPartyFirewallMissingSubnetViolation.t option;
    (*

    The violation details for a third-party firewall's subnet that's been deleted.

    *)
  21. thirdPartyFirewallMissingExpectedRouteTableViolation : ThirdPartyFirewallMissingExpectedRouteTableViolation.t option;
    (*

    The violation details for a third-party firewall that has the Firewall Manager managed route table that was associated with the third-party firewall has been deleted.

    *)
  22. firewallSubnetMissingVPCEndpointViolation : FirewallSubnetMissingVPCEndpointViolation.t option;
    (*

    The violation details for a third-party firewall's VPC endpoint subnet that was deleted.

    *)
  23. invalidNetworkAclEntriesViolation : InvalidNetworkAclEntriesViolation.t option;
    (*

    Violation detail for the entries in a network ACL resource.

    *)
  24. possibleRemediationActions : PossibleRemediationActions.t option;
    (*

    A list of possible remediation action lists. Each individual possible remediation action is a list of individual remediation actions.

    *)
  25. webACLHasIncompatibleConfigurationViolation : WebACLHasIncompatibleConfigurationViolation.t option;
    (*

    The violation details for a web ACL whose configuration is incompatible with the Firewall Manager policy.

    *)
  26. webACLHasOutOfScopeResourcesViolation : WebACLHasOutOfScopeResourcesViolation.t option;
    (*

    The violation details for a web ACL that's associated with at least one resource that's out of scope of the Firewall Manager policy.

    *)
}
Sourceval make : ?awsVPCSecurityGroupViolation:??? -> ?awsEc2NetworkInterfaceViolation:??? -> ?awsEc2InstanceViolation:??? -> ?networkFirewallMissingFirewallViolation:??? -> ?networkFirewallMissingSubnetViolation:??? -> ?networkFirewallMissingExpectedRTViolation:??? -> ?networkFirewallPolicyModifiedViolation:??? -> ?networkFirewallInternetTrafficNotInspectedViolation:??? -> ?networkFirewallInvalidRouteConfigurationViolation:??? -> ?networkFirewallBlackHoleRouteDetectedViolation:??? -> ?networkFirewallUnexpectedFirewallRoutesViolation:??? -> ?networkFirewallUnexpectedGatewayRoutesViolation:??? -> ?networkFirewallMissingExpectedRoutesViolation:??? -> ?dnsRuleGroupPriorityConflictViolation:??? -> ?dnsDuplicateRuleGroupViolation:??? -> ?dnsRuleGroupLimitExceededViolation:??? -> ?firewallSubnetIsOutOfScopeViolation:??? -> ?routeHasOutOfScopeEndpointViolation:??? -> ?thirdPartyFirewallMissingFirewallViolation:??? -> ?thirdPartyFirewallMissingSubnetViolation:??? -> ?thirdPartyFirewallMissingExpectedRouteTableViolation:??? -> ?firewallSubnetMissingVPCEndpointViolation:??? -> ?invalidNetworkAclEntriesViolation:??? -> ?possibleRemediationActions:??? -> ?webACLHasIncompatibleConfigurationViolation:??? -> ?webACLHasOutOfScopeResourcesViolation:??? -> unit -> t
Sourceval to_value : t -> [> `Structure of (string * [> `Structure of (string * [> `Boolean of Boolean.t | `Integer of DnsRuleGroupPriority.t | `List of [> `Integer of DnsRuleGroupPriority.t | `String of ResourceId.t | `Structure of (string * [> `Boolean of Boolean.t | `Enum of string | `List of [> `Enum of string | `String of TargetViolationReason.t | `Structure of (string * [> `Enum of string | `Integer of IntegerObjectMinimum0.t | `Structure of (string * [> `Boolean of BooleanObject.t | `Enum of string | `String of LengthBoundedString.t | `Structure of (string * [> `Boolean of Boolean.t | `Integer of IntegerObject.t | `List of [> `Structure of (string * [> `Enum of string | `Integer of IntegerObjectMinimum0.t | `Structure of (string * [> `Boolean of BooleanObject.t | `Enum of string | `String of LengthBoundedString.t | `Structure of (string * [> `Integer of IntegerObject.t ]) list ]) list ]) list ] list | `String of LengthBoundedString.t | `Structure of (string * [> `String of ResourceId.t ]) list ]) list ]) list ]) list ] list | `String of ReferenceRule.t | `Structure of (string * [> `Enum of string | `Integer of IntegerObjectMinimum0.t | `Long of IPPortNumber.t | `String of CIDR.t | `Structure of (string * [> `Boolean of BooleanObject.t | `Enum of string | `String of LengthBoundedString.t | `Structure of (string * [> `Integer of IntegerObject.t ]) list ]) list ]) list ]) list ] list | `String of ViolationTarget.t | `Structure of (string * [> `Enum of string | `List of [> `String of NetworkFirewallAction.t | `Structure of (string * [> `Integer of StatelessRuleGroupPriority.t | `String of NetworkFirewallResourceName.t | `Structure of (string * [> `Enum of string ]) list ]) list ] list | `String of LengthBoundedString.t | `Structure of (string * [> `Enum of string ]) list ]) list ]) list ]) list ]
Sourceval to_query : t -> Awso.Client.Query.t
Sourceval of_xml : Awso.Xml.t -> t
Sourceval of_string : string -> t
Sourceval of_json : Yojson.Safe.t -> t
Sourceval to_json : t -> Yojson.Safe.t