Readonly
accountThe logical name of the account to deploy the Customer Gateway to. This value should match the name of the account recorded in the accounts-config.yaml file.
Readonly
asnDefine the ASN used for the Customer Gateway
CAUTION: Changing this property value after initial deployment causes the VPN to be recreated. Please be aware that any downstream dependencies may cause this property update to fail.
The private ASN range is 64512 to 65534. The default is 65000.
Readonly
ipDefines the IP address of the Customer Gateway
CAUTION: Changing this property value after initial deployment causes the VPN to be recreated. Please be aware that any downstream dependencies may cause this property update to fail.
To define a customer gateway that references an external appliance (i.e. on-premise or otherwise external to the accelerator), use a public-facing IPv4 address (i.e. 1.2.3.4).
This property supports ACCEL_LOOKUP
replacement variables to target the public IP address of a network interface attached to an
Ec2FirewallInstanceConfig defined in customizations-config.yaml
. The target network interface MUST be configured with the associateElasticIp
property set to true
.
NOTE: This lookup value is not supported for firewalls defined in Ec2FirewallAutoScalingGroupConfig.
Supported replacement:
customizations-config.yaml
${ACCEL_LOOKUP::EC2:ENI_<ENI_INDEX>:<FIREWALL_INSTANCE_NAME>}
, where <ENI_INDEX>
is the device index of the network interface
as defined in the firewall launch template and <FIREWALL_INSTANCE_NAME>
is the name of the firewall instance.0
.${ACCEL_LOOKUP::EC2:ENI_0:accelerator-firewall}
- translates to the primary public IP address of the primary network interface of a firewall named accelerator-firewall
.Readonly
nameThe name of the CGW.
The value of this property will be utilized as the logical id for this resource. Any references to this object should specify this value.
CAUTION: Changing this property value after initial deployment causes the VPN to be recreated. Please be aware that any downstream dependencies may cause this property update to fail.
Readonly
regionThe AWS region to provision the customer gateway in
Readonly
tagsDefine tags for the Customer Gateway
Readonly
vpnGenerated using TypeDoc
NetworkConfig / CustomerGatewayConfig
Customer Gateway (CGW) Configuration. Use this configuration to define Customer Gateways and site-to-site VPN connections. A customer gateway device is a physical or software appliance that you own or manage in your on-premises network (on your side of a Site-to-Site VPN connection). A VPN connection refers to the connection between your VPC and your own on-premises network.
Example