Options
All
  • Public
  • Public/Protected
  • All
English
  • English
  • Français
Menu
Warning
The configuration file schema documentation is a work in progress. Please use this draft document with caution. The deeper you browse into the hierarchy, the less accurate the definitions are likely to be.

Accelerator supports deploying 3rd party firewalls. Define the parameters for the Firewall EC2 instances in this section

Hierarchy

  • FirewallEC2Config

Index

Properties

Properties

Optional apply-tags

apply-tags: {}
Title: Apply Tags
Description: Enables customers to apply customer specified tags to the deployed Firewalls (only tested with autoscale).

Type declaration

  • [k: string]: string

block-device-mappings

block-device-mappings: string[]
Title: Block Device Mappings
Description: undefined

Optional bootstrap

bootstrap: string
Title: Bootstrap
Description: undefined

Optional config

config: string
Title: Config
Description: Provide the path in the central s3 bucket for the firewall configuration

Optional deploy

deploy: boolean
Title: Deploy
Description: undefined

Optional enforce-imdsv2

enforce-imdsv2: boolean
Title: Enforce IMDSv2 on the EC instances launched for firewalls
Description: If set to true, IMDSv2 will be mandatory on the firewall instances. Default : false

fw-cgw-asn

fw-cgw-asn: number
Title: Firewall CGW BGP ASN
Description: Customer supplied BGP ASN value .

fw-cgw-name

fw-cgw-name: string
Title: Firewall CGW Name
Description: Friendly name to call the CGW.

fw-cgw-routing

fw-cgw-routing: string
Title: Firewall CGW Routing Type
Description: Dynamic or Static

fw-instance-role

fw-instance-role: string
Title: Fw Instance Role
Description: Instance role assumed by the firewall

image-id

image-id: string
Title: Image Id
Description: AMI image ID

instance-sizes

instance-sizes: string
Title: Instance Sizes
Description: EC2 instance type

Optional license

license: string[]
Title: License
Description: Provide the path in the central s3 bucket for the firewall license

name

name: string
Title: Name
Description: Firewall name referenced in the internet facing ELB configuration

ports

ports: FirewallPortConfig[]
Title: Ports
Description: Define the firewall port characteristics in this section

region

region: string
Title: Region
Description: Region to deploy the firewall

security-group

security-group: string
Title: Security Group
Description: Security group associated to the firewall EC2 instance

Optional tgw-attach

tgw-attach: boolean | TransitGatewayAttachConfig1
Title: Transit Gateway Attachment
Description: Perimeter firewalls can attach to the centralized TGW through tunnels

Optional type

type: "EC2"
Title: Type
Description: 3rd party firewall type

Optional user-data

user-data: string
Title: User Data
Description: undefined

vpc

vpc: string
Title: VPC
Description: The VPC name to deploy the firewall instances into.