interface ClientRouteEnforcementOptionsProperty
| Language | Type name |
|---|---|
 .NET | Amazon.CDK.AWS.EC2.CfnClientVpnEndpoint.ClientRouteEnforcementOptionsProperty |
 Go | github.com/aws/aws-cdk-go/awscdk/v2/awsec2#CfnClientVpnEndpoint_ClientRouteEnforcementOptionsProperty |
 Java | software.amazon.awscdk.services.ec2.CfnClientVpnEndpoint.ClientRouteEnforcementOptionsProperty |
 Python | aws_cdk.aws_ec2.CfnClientVpnEndpoint.ClientRouteEnforcementOptionsProperty |
 TypeScript | aws-cdk-lib » aws_ec2 » CfnClientVpnEndpoint » ClientRouteEnforcementOptionsProperty |
Client Route Enforcement is a feature of Client VPN that helps enforce administrator defined routes on devices connected through the VPN.
This feature helps improve your security posture by ensuring that network traffic originating from a connected client is not inadvertently sent outside the VPN tunnel.
Client Route Enforcement works by monitoring the route table of a connected device for routing policy changes to the VPN connection. If the feature detects any VPN routing policy modifications, it will automatically force an update to the route table, reverting it back to the expected route configurations.
Example
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_ec2 as ec2 } from 'aws-cdk-lib';
const clientRouteEnforcementOptionsProperty: ec2.CfnClientVpnEndpoint.ClientRouteEnforcementOptionsProperty = {
enforced: false,
};
Properties
| Name | Type | Description |
|---|---|---|
| enforced? | boolean | IResolvable | Enable or disable Client Route Enforcement. |
enforced?
Type:
boolean | IResolvable
(optional)
Enable or disable Client Route Enforcement.
The state can either be true (enabled) or false (disabled). The default is false .
Valid values: true | false
Default value: false