class CfnTLSInspectionConfigurationPropsMixin
| Language | Type name |
|---|---|
 .NET | Amazon.CDK.Mixins.Preview.AWS.NetworkFirewall.Mixins.CfnTLSInspectionConfigurationPropsMixin |
 Go | github.com/aws/aws-cdk-go/awscdkmixinspreview/v2/awsnetworkfirewall/mixins#CfnTLSInspectionConfigurationPropsMixin |
 Java | software.amazon.awscdk.mixins.preview.services.networkfirewall.mixins.CfnTLSInspectionConfigurationPropsMixin |
 Python | aws_cdk.mixins_preview.aws_networkfirewall.mixins.CfnTLSInspectionConfigurationPropsMixin |
 TypeScript | @aws-cdk/mixins-preview » aws_networkfirewall » mixins » CfnTLSInspectionConfigurationPropsMixin |
Implements
IMixin
Extends
Mixin
The object that defines a TLS inspection configuration.
AWS Network Firewall uses a TLS inspection configuration to decrypt traffic. Network Firewall re-encrypts the traffic before sending it to its destination.
To use a TLS inspection configuration, you add it to a new Network Firewall firewall policy, then you apply the firewall policy to a firewall. Network Firewall acts as a proxy service to decrypt and inspect the traffic traveling through your firewalls. You can reference a TLS inspection configuration from more than one firewall policy, and you can use a firewall policy in more than one firewall. For more information about using TLS inspection configurations, see Inspecting SSL/TLS traffic with TLS inspection configurations in the AWS Network Firewall Developer Guide .
Example
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { mixins } from '@aws-cdk/mixins-preview';
import { mixins as networkfirewall_mixins } from '@aws-cdk/mixins-preview/aws-networkfirewall';
const cfnTLSInspectionConfigurationPropsMixin = new networkfirewall_mixins.CfnTLSInspectionConfigurationPropsMixin({
description: 'description',
tags: [{
key: 'key',
value: 'value',
}],
tlsInspectionConfiguration: {
serverCertificateConfigurations: [{
certificateAuthorityArn: 'certificateAuthorityArn',
checkCertificateRevocationStatus: {
revokedStatusAction: 'revokedStatusAction',
unknownStatusAction: 'unknownStatusAction',
},
scopes: [{
destinationPorts: [{
fromPort: 123,
toPort: 123,
}],
destinations: [{
addressDefinition: 'addressDefinition',
}],
protocols: [123],
sourcePorts: [{
fromPort: 123,
toPort: 123,
}],
sources: [{
addressDefinition: 'addressDefinition',
}],
}],
serverCertificates: [{
resourceArn: 'resourceArn',
}],
}],
},
tlsInspectionConfigurationName: 'tlsInspectionConfigurationName',
}, /* all optional props */ {
strategy: mixins.PropertyMergeStrategy.OVERRIDE,
});
Initializer
new CfnTLSInspectionConfigurationPropsMixin(props: CfnTLSInspectionConfigurationMixinProps, options?: CfnPropertyMixinOptions)
Parameters
- props
Cfn— L1 properties to apply.TLSInspection Configuration Mixin Props - options
Cfn— Mixin options.Property Mixin Options
Create a mixin to apply properties to AWS::NetworkFirewall::TLSInspectionConfiguration.
Properties
| Name | Type | Description |
|---|---|---|
| props | Cfn | |
| strategy | Property | |
| static CFN_PROPERTY_KEYS | string[] |
props
Type:
Cfn
strategy
Type:
Property
static CFN_PROPERTY_KEYS
Type:
string[]
Methods
| Name | Description |
|---|---|
| apply | Apply the mixin properties to the construct. |
| supports(construct) | Check if this mixin supports the given construct. |
applyTo(construct)
public applyTo(construct: IConstruct): IConstruct
Parameters
- construct
IConstruct
Returns
Apply the mixin properties to the construct.
supports(construct)
public supports(construct: IConstruct): boolean
Parameters
- construct
IConstruct
Returns
boolean
Check if this mixin supports the given construct.