Class Ec2FirewallInstanceConfig

CustomizationsConfig / Ec2FirewallConfig / Ec2FirewallInstanceConfig

EC2 firewall instance configuration. Use to define an array of standalone firewall instances

Example

- name: accelerator-firewall
  launchTemplate:
    name: firewall-lt
    blockDeviceMappings:
      - deviceName: /dev/xvda
        ebs:
          deleteOnTermination: true
          encrypted: true
          volumeSize: 20
    enforceImdsv2: true
    iamInstanceProfile: firewall-profile
    imageId: ami-123xyz
    instanceType: c6i.xlarge
    networkInterfaces:
      - deleteOnTermination: true
        description: Primary interface
        deviceIndex: 0
        groups:
          - firewall-data-sg
        subnetId: firewall-data-subnet-a
      - deleteOnTermination: true
        description: Management interface
        deviceIndex: 1
        groups:
          - firewall-mgmt-sg
        subnetId: firewall-mgmt-subnet-a
    userData: path/to/userdata.txt
  vpc: Network-Inspection
  tags: []

Hierarchy

  • Ec2FirewallInstanceConfig

Implements

Constructors

constructor

Properties

detailedMonitoring launchTemplate name tags terminationProtection vpc

Constructors

constructor

Properties

Readonly detailedMonitoring

detailedMonitoring: undefined | boolean = undefined

Specify true to enable detailed monitoring. Otherwise, basic monitoring is enabled.

Readonly launchTemplate

launchTemplate: LaunchTemplateConfig = ...

The launch template for the firewall instance

Readonly name

name: string = ''

The friendly name of the firewall instance

Readonly tags

tags: undefined | Tag[] = undefined

An optional array of tags

Readonly terminationProtection

terminationProtection: undefined | boolean = undefined

If you set this parameter to true , you can't terminate the instance using the Amazon EC2 console, CLI, or API. To change this attribute after launch, use ModifyInstanceAttribute . Alternatively, if you set InstanceInitiatedShutdownBehavior to terminate , you can terminate the instance by running the shutdown command from the instance.

Readonly vpc

vpc: string = ''

The friendly name of the VPC to deploy the firewall instance to

Remarks

This VPC must contain the subnet(s) defined for the network interfaces under the launchTemplate property

Settings

Member Visibility

Theme

Generated using TypeDoc