Class ClientVpnEndpointOptions.Jsii$Proxy
java.lang.Object
software.amazon.jsii.JsiiObject
software.amazon.awscdk.services.ec2.ClientVpnEndpointOptions.Jsii$Proxy
- All Implemented Interfaces:
ClientVpnEndpointOptions,software.amazon.jsii.JsiiSerializable
- Enclosing interface:
ClientVpnEndpointOptions
@Stability(Stable)
@Internal
public static final class ClientVpnEndpointOptions.Jsii$Proxy
extends software.amazon.jsii.JsiiObject
implements ClientVpnEndpointOptions
An implementation for
ClientVpnEndpointOptions-
Nested Class Summary
Nested classes/interfaces inherited from class software.amazon.jsii.JsiiObject
software.amazon.jsii.JsiiObject.InitializationModeNested classes/interfaces inherited from interface software.amazon.awscdk.services.ec2.ClientVpnEndpointOptions
ClientVpnEndpointOptions.Builder, ClientVpnEndpointOptions.Jsii$Proxy -
Constructor Summary
ConstructorsModifierConstructorDescriptionprotectedConstructor that initializes the object based on literal property values passed by theClientVpnEndpointOptions.Builder.protectedJsii$Proxy(software.amazon.jsii.JsiiObjectRef objRef) Constructor that initializes the object based on values retrieved from the JsiiObject. -
Method Summary
Modifier and TypeMethodDescriptioncom.fasterxml.jackson.databind.JsonNodefinal booleanfinal BooleanWhether to authorize all users to the VPC CIDR.final StringgetCidr()The IPv4 address range, in CIDR notation, from which to assign client IP addresses.final StringThe ARN of the client certificate for mutual authentication.The AWS Lambda function used for connection authorization.final StringCustomizable text that will be displayed in a banner on AWS provided clients when a VPN session is established.Options for Client Route Enforcement.final StringA brief description of the Client VPN endpoint.final BooleanIndicates whether the client VPN session is disconnected after the maximumsessionTimeoutis reached.Information about the DNS servers to be used for DNS resolution.final BooleanWhether to enable connections logging.final ILogGroupA CloudWatch Logs log group for connection logging.final ILogStreamA CloudWatch Logs log stream for connection logging.final VpnPortgetPort()The port number to assign to the Client VPN endpoint for TCP and UDP traffic.final List<ISecurityGroup> The security groups to apply to the target network.final BooleanSpecify whether to enable the self-service portal for the Client VPN endpoint.final StringThe ARN of the server certificate.final ClientVpnSessionTimeoutThe maximum VPN session duration time.final BooleanIndicates whether split-tunnel is enabled on the AWS Client VPN endpoint.final TransportProtocolThe transport protocol to be used by the VPN session.The type of user-based authentication to use.final SubnetSelectionSubnets to associate to the client VPN endpoint.final inthashCode()Methods inherited from class software.amazon.jsii.JsiiObject
jsiiAsyncCall, jsiiAsyncCall, jsiiCall, jsiiCall, jsiiGet, jsiiGet, jsiiSet, jsiiStaticCall, jsiiStaticCall, jsiiStaticGet, jsiiStaticGet, jsiiStaticSet, jsiiStaticSet
-
Constructor Details
-
Jsii$Proxy
protected Jsii$Proxy(software.amazon.jsii.JsiiObjectRef objRef) Constructor that initializes the object based on values retrieved from the JsiiObject.- Parameters:
objRef- Reference to the JSII managed object.
-
Jsii$Proxy
Constructor that initializes the object based on literal property values passed by theClientVpnEndpointOptions.Builder.
-
-
Method Details
-
getCidr
Description copied from interface:ClientVpnEndpointOptionsThe IPv4 address range, in CIDR notation, from which to assign client IP addresses.The address range cannot overlap with the local CIDR of the VPC in which the associated subnet is located, or the routes that you add manually.
Changing the address range will replace the Client VPN endpoint.
The CIDR block should be /22 or greater.
- Specified by:
getCidrin interfaceClientVpnEndpointOptions
-
getServerCertificateArn
Description copied from interface:ClientVpnEndpointOptionsThe ARN of the server certificate.- Specified by:
getServerCertificateArnin interfaceClientVpnEndpointOptions
-
getAuthorizeAllUsersToVpcCidr
Description copied from interface:ClientVpnEndpointOptionsWhether to authorize all users to the VPC CIDR.This automatically creates an authorization rule. Set this to
falseand useaddAuthorizationRule()to create your own rules instead.Default: true
- Specified by:
getAuthorizeAllUsersToVpcCidrin interfaceClientVpnEndpointOptions
-
getClientCertificateArn
Description copied from interface:ClientVpnEndpointOptionsThe ARN of the client certificate for mutual authentication.The certificate must be signed by a certificate authority (CA) and it must be provisioned in AWS Certificate Manager (ACM).
Default: - use user-based authentication
- Specified by:
getClientCertificateArnin interfaceClientVpnEndpointOptions
-
getClientConnectionHandler
Description copied from interface:ClientVpnEndpointOptionsThe AWS Lambda function used for connection authorization.The name of the Lambda function must begin with the
AWSClientVPN-prefixDefault: - no connection handler
- Specified by:
getClientConnectionHandlerin interfaceClientVpnEndpointOptions
-
getClientLoginBanner
Description copied from interface:ClientVpnEndpointOptionsCustomizable text that will be displayed in a banner on AWS provided clients when a VPN session is established.UTF-8 encoded characters only. Maximum of 1400 characters.
Default: - no banner is presented to the client
- Specified by:
getClientLoginBannerin interfaceClientVpnEndpointOptions
-
getClientRouteEnforcementOptions
Description copied from interface:ClientVpnEndpointOptionsOptions for Client Route Enforcement.Client Route Enforcement is a feature of Client VPN that helps enforce administrator defined routes on devices connected through the VPN. This feature helps improve your security posture by ensuring that network traffic originating from a connected client is not inadvertently sent outside the VPN tunnel.
Default: undefined - AWS Client VPN default setting is disable client route enforcement
- Specified by:
getClientRouteEnforcementOptionsin interfaceClientVpnEndpointOptions- See Also:
-
getDescription
Description copied from interface:ClientVpnEndpointOptionsA brief description of the Client VPN endpoint.Default: - no description
- Specified by:
getDescriptionin interfaceClientVpnEndpointOptions
-
getDisconnectOnSessionTimeout
Description copied from interface:ClientVpnEndpointOptionsIndicates whether the client VPN session is disconnected after the maximumsessionTimeoutis reached.If
true, users are prompted to reconnect client VPN. Iffalse, client VPN attempts to reconnect automatically.Default: undefined - AWS Client VPN default is true
- Specified by:
getDisconnectOnSessionTimeoutin interfaceClientVpnEndpointOptions- See Also:
-
getDnsServers
Description copied from interface:ClientVpnEndpointOptionsInformation about the DNS servers to be used for DNS resolution.A Client VPN endpoint can have up to two DNS servers.
Default: - use the DNS address configured on the device
- Specified by:
getDnsServersin interfaceClientVpnEndpointOptions
-
getLogging
Description copied from interface:ClientVpnEndpointOptionsWhether to enable connections logging.Default: true
- Specified by:
getLoggingin interfaceClientVpnEndpointOptions
-
getLogGroup
Description copied from interface:ClientVpnEndpointOptionsA CloudWatch Logs log group for connection logging.Default: - a new group is created
- Specified by:
getLogGroupin interfaceClientVpnEndpointOptions
-
getLogStream
Description copied from interface:ClientVpnEndpointOptionsA CloudWatch Logs log stream for connection logging.Default: - a new stream is created
- Specified by:
getLogStreamin interfaceClientVpnEndpointOptions
-
getPort
Description copied from interface:ClientVpnEndpointOptionsThe port number to assign to the Client VPN endpoint for TCP and UDP traffic.Default: VpnPort.HTTPS
- Specified by:
getPortin interfaceClientVpnEndpointOptions
-
getSecurityGroups
Description copied from interface:ClientVpnEndpointOptionsThe security groups to apply to the target network.Default: - a new security group is created
- Specified by:
getSecurityGroupsin interfaceClientVpnEndpointOptions
-
getSelfServicePortal
Description copied from interface:ClientVpnEndpointOptionsSpecify whether to enable the self-service portal for the Client VPN endpoint.Default: true
- Specified by:
getSelfServicePortalin interfaceClientVpnEndpointOptions
-
getSessionTimeout
Description copied from interface:ClientVpnEndpointOptionsThe maximum VPN session duration time.Default: ClientVpnSessionTimeout.TWENTY_FOUR_HOURS
- Specified by:
getSessionTimeoutin interfaceClientVpnEndpointOptions
-
getSplitTunnel
Description copied from interface:ClientVpnEndpointOptionsIndicates whether split-tunnel is enabled on the AWS Client VPN endpoint.Default: false
- Specified by:
getSplitTunnelin interfaceClientVpnEndpointOptions- See Also:
-
getTransportProtocol
Description copied from interface:ClientVpnEndpointOptionsThe transport protocol to be used by the VPN session.Default: TransportProtocol.UDP
- Specified by:
getTransportProtocolin interfaceClientVpnEndpointOptions
-
getUserBasedAuthentication
Description copied from interface:ClientVpnEndpointOptionsThe type of user-based authentication to use.Default: - use mutual authentication
- Specified by:
getUserBasedAuthenticationin interfaceClientVpnEndpointOptions- See Also:
-
getVpcSubnets
Description copied from interface:ClientVpnEndpointOptionsSubnets to associate to the client VPN endpoint.Default: - the VPC default strategy
- Specified by:
getVpcSubnetsin interfaceClientVpnEndpointOptions
-
$jsii$toJson
@Internal public com.fasterxml.jackson.databind.JsonNode $jsii$toJson()- Specified by:
$jsii$toJsonin interfacesoftware.amazon.jsii.JsiiSerializable
-
equals
-
hashCode
public final int hashCode()
-