Package software.amazon.awssdk.services.networkfirewall.model

Interface CheckCertificateRevocationStatusActions.Builder

    • Method Detail

      • revokedStatusAction

        CheckCertificateRevocationStatusActions.Builder revokedStatusAction​(String revokedStatusAction)

        Configures how Network Firewall processes traffic when it determines that the certificate presented by the server in the SSL/TLS connection has a revoked status.

        • PASS - Allow the connection to continue, and pass subsequent packets to the stateful engine for inspection.

        • DROP - Network Firewall closes the connection and drops subsequent packets for that connection.

        • REJECT - Network Firewall sends a TCP reject packet back to your client. The service closes the connection and drops subsequent packets for that connection. REJECT is available only for TCP traffic.

        Parameters:
        revokedStatusAction - Configures how Network Firewall processes traffic when it determines that the certificate presented by the server in the SSL/TLS connection has a revoked status.

        • PASS - Allow the connection to continue, and pass subsequent packets to the stateful engine for inspection.

        • DROP - Network Firewall closes the connection and drops subsequent packets for that connection.

        • REJECT - Network Firewall sends a TCP reject packet back to your client. The service closes the connection and drops subsequent packets for that connection. REJECT is available only for TCP traffic.

        Returns:
        Returns a reference to this object so that method calls can be chained together.
        See Also:
        RevocationCheckAction, RevocationCheckAction

      • revokedStatusAction

        CheckCertificateRevocationStatusActions.Builder revokedStatusAction​(RevocationCheckAction revokedStatusAction)

        Configures how Network Firewall processes traffic when it determines that the certificate presented by the server in the SSL/TLS connection has a revoked status.

        • PASS - Allow the connection to continue, and pass subsequent packets to the stateful engine for inspection.

        • DROP - Network Firewall closes the connection and drops subsequent packets for that connection.

        • REJECT - Network Firewall sends a TCP reject packet back to your client. The service closes the connection and drops subsequent packets for that connection. REJECT is available only for TCP traffic.

        Parameters:
        revokedStatusAction - Configures how Network Firewall processes traffic when it determines that the certificate presented by the server in the SSL/TLS connection has a revoked status.

        • PASS - Allow the connection to continue, and pass subsequent packets to the stateful engine for inspection.

        • DROP - Network Firewall closes the connection and drops subsequent packets for that connection.

        • REJECT - Network Firewall sends a TCP reject packet back to your client. The service closes the connection and drops subsequent packets for that connection. REJECT is available only for TCP traffic.

        Returns:
        Returns a reference to this object so that method calls can be chained together.
        See Also:
        RevocationCheckAction, RevocationCheckAction

      • unknownStatusAction

        CheckCertificateRevocationStatusActions.Builder unknownStatusAction​(String unknownStatusAction)

        Configures how Network Firewall processes traffic when it determines that the certificate presented by the server in the SSL/TLS connection has an unknown status, or a status that cannot be determined for any other reason, including when the service is unable to connect to the OCSP and CRL endpoints for the certificate.

        • PASS - Allow the connection to continue, and pass subsequent packets to the stateful engine for inspection.

        • DROP - Network Firewall closes the connection and drops subsequent packets for that connection.

        • REJECT - Network Firewall sends a TCP reject packet back to your client. The service closes the connection and drops subsequent packets for that connection. REJECT is available only for TCP traffic.

        Parameters:
        unknownStatusAction - Configures how Network Firewall processes traffic when it determines that the certificate presented by the server in the SSL/TLS connection has an unknown status, or a status that cannot be determined for any other reason, including when the service is unable to connect to the OCSP and CRL endpoints for the certificate.

        • PASS - Allow the connection to continue, and pass subsequent packets to the stateful engine for inspection.

        • DROP - Network Firewall closes the connection and drops subsequent packets for that connection.

        • REJECT - Network Firewall sends a TCP reject packet back to your client. The service closes the connection and drops subsequent packets for that connection. REJECT is available only for TCP traffic.

        Returns:
        Returns a reference to this object so that method calls can be chained together.
        See Also:
        RevocationCheckAction, RevocationCheckAction

      • unknownStatusAction

        CheckCertificateRevocationStatusActions.Builder unknownStatusAction​(RevocationCheckAction unknownStatusAction)

        Configures how Network Firewall processes traffic when it determines that the certificate presented by the server in the SSL/TLS connection has an unknown status, or a status that cannot be determined for any other reason, including when the service is unable to connect to the OCSP and CRL endpoints for the certificate.

        • PASS - Allow the connection to continue, and pass subsequent packets to the stateful engine for inspection.

        • DROP - Network Firewall closes the connection and drops subsequent packets for that connection.

        • REJECT - Network Firewall sends a TCP reject packet back to your client. The service closes the connection and drops subsequent packets for that connection. REJECT is available only for TCP traffic.

        Parameters:
        unknownStatusAction - Configures how Network Firewall processes traffic when it determines that the certificate presented by the server in the SSL/TLS connection has an unknown status, or a status that cannot be determined for any other reason, including when the service is unable to connect to the OCSP and CRL endpoints for the certificate.

        • PASS - Allow the connection to continue, and pass subsequent packets to the stateful engine for inspection.

        • DROP - Network Firewall closes the connection and drops subsequent packets for that connection.

        • REJECT - Network Firewall sends a TCP reject packet back to your client. The service closes the connection and drops subsequent packets for that connection. REJECT is available only for TCP traffic.

        Returns:
        Returns a reference to this object so that method calls can be chained together.
        See Also:
        RevocationCheckAction, RevocationCheckAction