Provides an WAF Regional Rule Resource for use with Application Load Balancer.
resource "aws_wafregional_ipset" "ipset" { name = "tfIPSet" ip_set_descriptor { type = "IPV4" value = "192.0.7.0/24" } } resource "aws_wafregional_rule" "wafrule" { name = "tfWAFRule" metric_name = "tfWAFRule" predicate { type = "IPMatch" data_id = "${aws_wafregional_ipset.ipset.id}" negated = false } }
The following arguments are supported:
name
- (Required) The name or description of the rule. metric_name
- (Required) The name or description for the Amazon CloudWatch metric of this rule. predicate
- (Optional) The objects to include in a rule. predicate
See the WAF Documentation for more information.
type
- (Required) The type of predicate in a rule. Valid values: ByteMatch
, GeoMatch
, IPMatch
, RegexMatch
, SizeConstraint
, SqlInjectionMatch
, or XssMatch
data_id
- (Required) The unique identifier of a predicate, such as the ID of a ByteMatchSet
or IPSet
. negated
- (Required) Whether to use the settings or the negated settings that you specified in the objects. In addition to all arguments above, the following attributes are exported:
id
- The ID of the WAF Regional Rule.
© 2018 HashiCorpLicensed under the MPL 2.0 License.
https://www.terraform.io/docs/providers/aws/r/wafregional_rule.html