2016-10-27 13:54:36 +02:00
|
|
|
---
|
|
|
|
layout: "aws"
|
|
|
|
page_title: "AWS: waf_rule"
|
|
|
|
sidebar_current: "docs-aws-resource-waf-rule"
|
|
|
|
description: |-
|
|
|
|
Provides a AWS WAF rule resource.
|
|
|
|
---
|
|
|
|
|
2016-11-01 20:42:56 +01:00
|
|
|
# aws\_waf\_rule
|
|
|
|
|
|
|
|
Provides a WAF Rule Resource
|
|
|
|
|
2016-10-27 13:54:36 +02:00
|
|
|
## Example Usage
|
|
|
|
|
|
|
|
```
|
|
|
|
resource "aws_waf_ipset" "ipset" {
|
|
|
|
name = "tfIPSet"
|
2017-02-18 23:48:50 +01:00
|
|
|
|
2016-10-27 13:54:36 +02:00
|
|
|
ip_set_descriptors {
|
2017-02-18 23:48:50 +01:00
|
|
|
type = "IPV4"
|
2016-10-27 13:54:36 +02:00
|
|
|
value = "192.0.7.0/24"
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
resource "aws_waf_rule" "wafrule" {
|
2017-02-18 23:48:50 +01:00
|
|
|
depends_on = ["aws_waf_ipset.ipset"]
|
|
|
|
name = "tfWAFRule"
|
2016-10-27 13:54:36 +02:00
|
|
|
metric_name = "tfWAFRule"
|
2017-02-18 23:48:50 +01:00
|
|
|
|
2016-10-27 13:54:36 +02:00
|
|
|
predicates {
|
|
|
|
data_id = "${aws_waf_ipset.ipset.id}"
|
|
|
|
negated = false
|
2017-02-18 23:48:50 +01:00
|
|
|
type = "IPMatch"
|
2016-10-27 13:54:36 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
```
|
|
|
|
|
|
|
|
## Argument Reference
|
|
|
|
|
|
|
|
The following arguments are supported:
|
|
|
|
|
|
|
|
* `metric_name` - (Required) The name or description for the Amazon CloudWatch metric of this rule.
|
|
|
|
* `name` - (Required) The name or description of the rule.
|
|
|
|
* `predicates` - (Optional) The ByteMatchSet, IPSet, SizeConstraintSet, SqlInjectionMatchSet, or XssMatchSet objects to include in a rule.
|
|
|
|
|
|
|
|
## Remarks
|
|
|
|
|
|
|
|
## Attributes Reference
|
|
|
|
|
|
|
|
The following attributes are exported:
|
|
|
|
|
|
|
|
* `id` - The ID of the WAF rule.
|