Package software.amazon.awscdk.cfnpropertymixins.services.networkfirewall

Class CfnTLSInspectionConfigurationPropsMixin

java.lang.Object

software.amazon.jsii.JsiiObject

software.amazon.awscdk.Mixin

software.amazon.awscdk.cfnpropertymixins.services.networkfirewall.CfnTLSInspectionConfigurationPropsMixin

All Implemented Interfaces:

software.amazon.jsii.JsiiSerializable, software.constructs.IMixin

@Generated(value="jsii-pacmak/1.127.0 (build 2117ad5)",
           date="2026-03-11T13:20:01.839Z")
@Stability(Stable)
public class CfnTLSInspectionConfigurationPropsMixin
extends Mixin
implements software.constructs.IMixin

The object that defines a TLS inspection configuration.

AWS Network Firewall uses a TLS inspection configuration to decrypt traffic. Network Firewall re-encrypts the traffic before sending it to its destination.

To use a TLS inspection configuration, you add it to a new Network Firewall firewall policy, then you apply the firewall policy to a firewall. Network Firewall acts as a proxy service to decrypt and inspect the traffic traveling through your firewalls. You can reference a TLS inspection configuration from more than one firewall policy, and you can use a firewall policy in more than one firewall. For more information about using TLS inspection configurations, see Inspecting SSL/TLS traffic with TLS inspection configurations in the AWS Network Firewall Developer Guide .

Example:

 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 import software.amazon.awscdk.cfnpropertymixins.services.networkfirewall.*;
 import software.amazon.awscdk.*;
 IMergeStrategy mergeStrategy;
 CfnTLSInspectionConfigurationPropsMixin cfnTLSInspectionConfigurationPropsMixin = CfnTLSInspectionConfigurationPropsMixin.Builder.create(CfnTLSInspectionConfigurationMixinProps.builder()
         .description("description")
         .tags(List.of(CfnTag.builder()
                 .key("key")
                 .value("value")
                 .build()))
         .tlsInspectionConfiguration(TLSInspectionConfigurationProperty.builder()
                 .serverCertificateConfigurations(List.of(ServerCertificateConfigurationProperty.builder()
                         .certificateAuthorityArn("certificateAuthorityArn")
                         .checkCertificateRevocationStatus(CheckCertificateRevocationStatusProperty.builder()
                                 .revokedStatusAction("revokedStatusAction")
                                 .unknownStatusAction("unknownStatusAction")
                                 .build())
                         .scopes(List.of(ServerCertificateScopeProperty.builder()
                                 .destinationPorts(List.of(PortRangeProperty.builder()
                                         .fromPort(123)
                                         .toPort(123)
                                         .build()))
                                 .destinations(List.of(AddressProperty.builder()
                                         .addressDefinition("addressDefinition")
                                         .build()))
                                 .protocols(List.of(123))
                                 .sourcePorts(List.of(PortRangeProperty.builder()
                                         .fromPort(123)
                                         .toPort(123)
                                         .build()))
                                 .sources(List.of(AddressProperty.builder()
                                         .addressDefinition("addressDefinition")
                                         .build()))
                                 .build()))
                         .serverCertificates(List.of(ServerCertificateProperty.builder()
                                 .resourceArn("resourceArn")
                                 .build()))
                         .build()))
                 .build())
         .tlsInspectionConfigurationName("tlsInspectionConfigurationName")
         .build())
 .strategy(mergeStrategy)
 .build();
 

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-tlsinspectionconfiguration.html

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static interface	CfnTLSInspectionConfigurationPropsMixin.AddressProperty	A single IP address specification.
static final class	CfnTLSInspectionConfigurationPropsMixin.Builder	A fluent builder for CfnTLSInspectionConfigurationPropsMixin.
static interface	CfnTLSInspectionConfigurationPropsMixin.CheckCertificateRevocationStatusProperty	When enabled, Network Firewall checks if the server certificate presented by the server in the SSL/TLS connection has a revoked or unkown status.
static interface	CfnTLSInspectionConfigurationPropsMixin.PortRangeProperty	A single port range specification.
static interface	CfnTLSInspectionConfigurationPropsMixin.ServerCertificateConfigurationProperty	Configures the Certificate Manager certificates and scope that Network Firewall uses to decrypt and re-encrypt traffic using a TLSInspectionConfiguration .
static interface	CfnTLSInspectionConfigurationPropsMixin.ServerCertificateProperty	Any Certificate Manager (ACM) Secure Sockets Layer/Transport Layer Security (SSL/TLS) server certificate that's associated with a ServerCertificateConfiguration .
static interface	CfnTLSInspectionConfigurationPropsMixin.ServerCertificateScopeProperty	Settings that define the Secure Sockets Layer/Transport Layer Security (SSL/TLS) traffic that Network Firewall should decrypt for inspection by the stateful rule engine.
static interface	CfnTLSInspectionConfigurationPropsMixin.TLSInspectionConfigurationProperty	The object that defines a TLS inspection configuration.

Nested classes/interfaces inherited from class software.amazon.jsii.JsiiObject

software.amazon.jsii.JsiiObject.InitializationMode

Nested classes/interfaces inherited from interface software.constructs.IMixin

software.constructs.IMixin.Jsii$Default, software.constructs.IMixin.Jsii$Proxy

Field Summary

Fields

Modifier and Type	Field	Description
protected static final List<String>	CFN_PROPERTY_KEYS

Constructor Summary

Constructors

Modifier	Constructor	Description
	CfnTLSInspectionConfigurationPropsMixin(CfnTLSInspectionConfigurationMixinProps props)	Create a mixin to apply properties to AWS::NetworkFirewall::TLSInspectionConfiguration.
	CfnTLSInspectionConfigurationPropsMixin(CfnTLSInspectionConfigurationMixinProps props, CfnPropertyMixinOptions options)	Create a mixin to apply properties to AWS::NetworkFirewall::TLSInspectionConfiguration.
protected	CfnTLSInspectionConfigurationPropsMixin(software.amazon.jsii.JsiiObject.InitializationMode initializationMode)
protected	CfnTLSInspectionConfigurationPropsMixin(software.amazon.jsii.JsiiObjectRef objRef)

Method Summary

Modifier and Type	Method	Description
void	applyTo(software.constructs.IConstruct construct)	Apply the mixin properties to the construct.
protected CfnTLSInspectionConfigurationMixinProps	getProps()
protected IMergeStrategy	getStrategy()
Boolean	supports(software.constructs.IConstruct construct)	Check if this mixin supports the given construct.

Methods inherited from class software.amazon.awscdk.Mixin

isMixin

Methods inherited from class software.amazon.jsii.JsiiObject

jsiiAsyncCall, jsiiAsyncCall, jsiiCall, jsiiCall, jsiiGet, jsiiGet, jsiiSet, jsiiStaticCall, jsiiStaticCall, jsiiStaticGet, jsiiStaticGet, jsiiStaticSet, jsiiStaticSet

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface software.amazon.jsii.JsiiSerializable

$jsii$toJson

Field Details

CFN_PROPERTY_KEYS

@Stability(Stable)
protected static final List<String> CFN_PROPERTY_KEYS

Constructor Details

CfnTLSInspectionConfigurationPropsMixin

protected CfnTLSInspectionConfigurationPropsMixin(software.amazon.jsii.JsiiObjectRef objRef)

CfnTLSInspectionConfigurationPropsMixin

protected CfnTLSInspectionConfigurationPropsMixin(software.amazon.jsii.JsiiObject.InitializationMode initializationMode)

CfnTLSInspectionConfigurationPropsMixin

@Stability(Stable)
public CfnTLSInspectionConfigurationPropsMixin(@NotNull
 CfnTLSInspectionConfigurationMixinProps props,
 @Nullable
 CfnPropertyMixinOptions options)

Create a mixin to apply properties to AWS::NetworkFirewall::TLSInspectionConfiguration.

Parameters:

props - L1 properties to apply. This parameter is required.

options - Mixin options.

CfnTLSInspectionConfigurationPropsMixin

@Stability(Stable)
public CfnTLSInspectionConfigurationPropsMixin(@NotNull
 CfnTLSInspectionConfigurationMixinProps props)

Create a mixin to apply properties to AWS::NetworkFirewall::TLSInspectionConfiguration.

Parameters:

props - L1 properties to apply. This parameter is required.

Method Details

applyTo

@Stability(Stable)
public void applyTo(@NotNull
 software.constructs.IConstruct construct)

Apply the mixin properties to the construct.

Specified by:

applyTo in interface software.constructs.IMixin

Specified by:

applyTo in class Mixin

Parameters:

construct - This parameter is required.

supports

@Stability(Stable)
@NotNull
public Boolean supports(@NotNull
 software.constructs.IConstruct construct)

Check if this mixin supports the given construct.

Specified by:

supports in interface software.constructs.IMixin

Overrides:

supports in class Mixin

Parameters:

construct - This parameter is required.

getProps

@Stability(Stable)
@NotNull
protected CfnTLSInspectionConfigurationMixinProps getProps()

getStrategy

@Stability(Stable)
@NotNull
protected IMergeStrategy getStrategy()