Docs Home
We recommend new projects start with resources from the AWS provider.
aws-native.shield.getProtection
Explore with Pulumi AI
We recommend new projects start with resources from the AWS provider.
Enables AWS Shield Advanced for a specific AWS resource. The resource can be an Amazon CloudFront distribution, Amazon Route 53 hosted zone, AWS Global Accelerator standard accelerator, Elastic IP Address, Application Load Balancer, or a Classic Load Balancer. You can protect Amazon EC2 instances and Network Load Balancers by association with protected Amazon EC2 Elastic IP addresses.
Using getProtection
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getProtection(args: GetProtectionArgs, opts?: InvokeOptions): Promise<GetProtectionResult>
function getProtectionOutput(args: GetProtectionOutputArgs, opts?: InvokeOptions): Output<GetProtectionResult>def get_protection(protection_arn: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetProtectionResult
def get_protection_output(protection_arn: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetProtectionResult]func LookupProtection(ctx *Context, args *LookupProtectionArgs, opts ...InvokeOption) (*LookupProtectionResult, error)
func LookupProtectionOutput(ctx *Context, args *LookupProtectionOutputArgs, opts ...InvokeOption) LookupProtectionResultOutput> Note: This function is named LookupProtection in the Go SDK.
public static class GetProtection
{
public static Task<GetProtectionResult> InvokeAsync(GetProtectionArgs args, InvokeOptions? opts = null)
public static Output<GetProtectionResult> Invoke(GetProtectionInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetProtectionResult> getProtection(GetProtectionArgs args, InvokeOptions options)
public static Output<GetProtectionResult> getProtection(GetProtectionArgs args, InvokeOptions options)
fn::invoke:
function: aws-native:shield:getProtection
arguments:
# arguments dictionaryThe following arguments are supported:
- Protection
Arn This property is required. string - The ARN (Amazon Resource Name) of the protection.
- Protection
Arn This property is required. string - The ARN (Amazon Resource Name) of the protection.
- protection
Arn This property is required. String - The ARN (Amazon Resource Name) of the protection.
- protection
Arn This property is required. string - The ARN (Amazon Resource Name) of the protection.
- protection_
arn This property is required. str - The ARN (Amazon Resource Name) of the protection.
- protection
Arn This property is required. String - The ARN (Amazon Resource Name) of the protection.
getProtection Result
The following output properties are available:
- Application
Layer Pulumi.Automatic Response Configuration Aws Native. Shield. Outputs. Protection Application Layer Automatic Response Configuration The automatic application layer DDoS mitigation settings for the protection. This configuration determines whether Shield Advanced automatically manages rules in the web ACL in order to respond to application layer events that Shield Advanced determines to be DDoS attacks.
If you use AWS CloudFormation to manage the web ACLs that you use with Shield Advanced automatic mitigation, see the additional guidance about web ACL management in the
AWS::WAFv2::WebACLresource description.- Health
Check List<string>Arns - The Amazon Resource Names (ARNs) of the health check to associate with the protection.
- Protection
Arn string - The ARN (Amazon Resource Name) of the protection.
- Protection
Id string - The unique identifier (ID) of the protection.
-
List<Pulumi.
Aws Native. Outputs. Tag> - One or more tag key-value pairs for the Protection object.
- Application
Layer ProtectionAutomatic Response Configuration Application Layer Automatic Response Configuration The automatic application layer DDoS mitigation settings for the protection. This configuration determines whether Shield Advanced automatically manages rules in the web ACL in order to respond to application layer events that Shield Advanced determines to be DDoS attacks.
If you use AWS CloudFormation to manage the web ACLs that you use with Shield Advanced automatic mitigation, see the additional guidance about web ACL management in the
AWS::WAFv2::WebACLresource description.- Health
Check []stringArns - The Amazon Resource Names (ARNs) of the health check to associate with the protection.
- Protection
Arn string - The ARN (Amazon Resource Name) of the protection.
- Protection
Id string - The unique identifier (ID) of the protection.
- Tag
- One or more tag key-value pairs for the Protection object.
- application
Layer ProtectionAutomatic Response Configuration Application Layer Automatic Response Configuration The automatic application layer DDoS mitigation settings for the protection. This configuration determines whether Shield Advanced automatically manages rules in the web ACL in order to respond to application layer events that Shield Advanced determines to be DDoS attacks.
If you use AWS CloudFormation to manage the web ACLs that you use with Shield Advanced automatic mitigation, see the additional guidance about web ACL management in the
AWS::WAFv2::WebACLresource description.- health
Check List<String>Arns - The Amazon Resource Names (ARNs) of the health check to associate with the protection.
- protection
Arn String - The ARN (Amazon Resource Name) of the protection.
- protection
Id String - The unique identifier (ID) of the protection.
- List<Tag>
- One or more tag key-value pairs for the Protection object.
- application
Layer ProtectionAutomatic Response Configuration Application Layer Automatic Response Configuration The automatic application layer DDoS mitigation settings for the protection. This configuration determines whether Shield Advanced automatically manages rules in the web ACL in order to respond to application layer events that Shield Advanced determines to be DDoS attacks.
If you use AWS CloudFormation to manage the web ACLs that you use with Shield Advanced automatic mitigation, see the additional guidance about web ACL management in the
AWS::WAFv2::WebACLresource description.- health
Check string[]Arns - The Amazon Resource Names (ARNs) of the health check to associate with the protection.
- protection
Arn string - The ARN (Amazon Resource Name) of the protection.
- protection
Id string - The unique identifier (ID) of the protection.
- Tag[]
- One or more tag key-value pairs for the Protection object.
- application_
layer_ Protectionautomatic_ response_ configuration Application Layer Automatic Response Configuration The automatic application layer DDoS mitigation settings for the protection. This configuration determines whether Shield Advanced automatically manages rules in the web ACL in order to respond to application layer events that Shield Advanced determines to be DDoS attacks.
If you use AWS CloudFormation to manage the web ACLs that you use with Shield Advanced automatic mitigation, see the additional guidance about web ACL management in the
AWS::WAFv2::WebACLresource description.- health_
check_ Sequence[str]arns - The Amazon Resource Names (ARNs) of the health check to associate with the protection.
- protection_
arn str - The ARN (Amazon Resource Name) of the protection.
- protection_
id str - The unique identifier (ID) of the protection.
- Sequence[root_Tag]
- One or more tag key-value pairs for the Protection object.
- application
Layer Property MapAutomatic Response Configuration The automatic application layer DDoS mitigation settings for the protection. This configuration determines whether Shield Advanced automatically manages rules in the web ACL in order to respond to application layer events that Shield Advanced determines to be DDoS attacks.
If you use AWS CloudFormation to manage the web ACLs that you use with Shield Advanced automatic mitigation, see the additional guidance about web ACL management in the
AWS::WAFv2::WebACLresource description.- health
Check List<String>Arns - The Amazon Resource Names (ARNs) of the health check to associate with the protection.
- protection
Arn String - The ARN (Amazon Resource Name) of the protection.
- protection
Id String - The unique identifier (ID) of the protection.
- List<Property Map>
- One or more tag key-value pairs for the Protection object.
Supporting Types
ProtectionApplicationLayerAutomaticResponseConfiguration
- Action
This property is required. Pulumi.Aws | Pulumi.Native. Shield. Inputs. Protection Application Layer Automatic Response Configuration Action0Properties Aws Native. Shield. Inputs. Protection Application Layer Automatic Response Configuration Action1Properties - Specifies the action setting that Shield Advanced should use in the AWS WAF rules that it creates on behalf of the protected resource in response to DDoS attacks. You specify this as part of the configuration for the automatic application layer DDoS mitigation feature, when you enable or update automatic mitigation. Shield Advanced creates the AWS WAF rules in a Shield Advanced-managed rule group, inside the web ACL that you have associated with the resource.
- Status
This property is required. Pulumi.Aws Native. Shield. Protection Application Layer Automatic Response Configuration Status - Indicates whether automatic application layer DDoS mitigation is enabled for the protection.
- Action
This property is required. ProtectionApplication | ProtectionLayer Automatic Response Configuration Action0Properties Application Layer Automatic Response Configuration Action1Properties - Specifies the action setting that Shield Advanced should use in the AWS WAF rules that it creates on behalf of the protected resource in response to DDoS attacks. You specify this as part of the configuration for the automatic application layer DDoS mitigation feature, when you enable or update automatic mitigation. Shield Advanced creates the AWS WAF rules in a Shield Advanced-managed rule group, inside the web ACL that you have associated with the resource.
- Status
This property is required. ProtectionApplication Layer Automatic Response Configuration Status - Indicates whether automatic application layer DDoS mitigation is enabled for the protection.
- action
This property is required. ProtectionApplication | ProtectionLayer Automatic Response Configuration Action0Properties Application Layer Automatic Response Configuration Action1Properties - Specifies the action setting that Shield Advanced should use in the AWS WAF rules that it creates on behalf of the protected resource in response to DDoS attacks. You specify this as part of the configuration for the automatic application layer DDoS mitigation feature, when you enable or update automatic mitigation. Shield Advanced creates the AWS WAF rules in a Shield Advanced-managed rule group, inside the web ACL that you have associated with the resource.
- status
This property is required. ProtectionApplication Layer Automatic Response Configuration Status - Indicates whether automatic application layer DDoS mitigation is enabled for the protection.
- action
This property is required. ProtectionApplication | ProtectionLayer Automatic Response Configuration Action0Properties Application Layer Automatic Response Configuration Action1Properties - Specifies the action setting that Shield Advanced should use in the AWS WAF rules that it creates on behalf of the protected resource in response to DDoS attacks. You specify this as part of the configuration for the automatic application layer DDoS mitigation feature, when you enable or update automatic mitigation. Shield Advanced creates the AWS WAF rules in a Shield Advanced-managed rule group, inside the web ACL that you have associated with the resource.
- status
This property is required. ProtectionApplication Layer Automatic Response Configuration Status - Indicates whether automatic application layer DDoS mitigation is enabled for the protection.
- action
This property is required. ProtectionApplication | ProtectionLayer Automatic Response Configuration Action0Properties Application Layer Automatic Response Configuration Action1Properties - Specifies the action setting that Shield Advanced should use in the AWS WAF rules that it creates on behalf of the protected resource in response to DDoS attacks. You specify this as part of the configuration for the automatic application layer DDoS mitigation feature, when you enable or update automatic mitigation. Shield Advanced creates the AWS WAF rules in a Shield Advanced-managed rule group, inside the web ACL that you have associated with the resource.
- status
This property is required. ProtectionApplication Layer Automatic Response Configuration Status - Indicates whether automatic application layer DDoS mitigation is enabled for the protection.
- action
This property is required. Property Map | Property Map - Specifies the action setting that Shield Advanced should use in the AWS WAF rules that it creates on behalf of the protected resource in response to DDoS attacks. You specify this as part of the configuration for the automatic application layer DDoS mitigation feature, when you enable or update automatic mitigation. Shield Advanced creates the AWS WAF rules in a Shield Advanced-managed rule group, inside the web ACL that you have associated with the resource.
- status
This property is required. "ENABLED" | "DISABLED" - Indicates whether automatic application layer DDoS mitigation is enabled for the protection.
ProtectionApplicationLayerAutomaticResponseConfigurationAction0Properties
- Count object
- Specifies that Shield Advanced should configure its AWS WAF rules with the AWS WAF
Countaction. You must specify exactly one action, eitherBlockorCount.
- Count interface{}
- Specifies that Shield Advanced should configure its AWS WAF rules with the AWS WAF
Countaction. You must specify exactly one action, eitherBlockorCount.
- count Object
- Specifies that Shield Advanced should configure its AWS WAF rules with the AWS WAF
Countaction. You must specify exactly one action, eitherBlockorCount.
- count any
- Specifies that Shield Advanced should configure its AWS WAF rules with the AWS WAF
Countaction. You must specify exactly one action, eitherBlockorCount.
- count Any
- Specifies that Shield Advanced should configure its AWS WAF rules with the AWS WAF
Countaction. You must specify exactly one action, eitherBlockorCount.
- count Any
- Specifies that Shield Advanced should configure its AWS WAF rules with the AWS WAF
Countaction. You must specify exactly one action, eitherBlockorCount.
ProtectionApplicationLayerAutomaticResponseConfigurationAction1Properties
- Block object
- Specifies that Shield Advanced should configure its AWS WAF rules with the AWS WAF
Blockaction. You must specify exactly one action, eitherBlockorCount.
- Block interface{}
- Specifies that Shield Advanced should configure its AWS WAF rules with the AWS WAF
Blockaction. You must specify exactly one action, eitherBlockorCount.
- block Object
- Specifies that Shield Advanced should configure its AWS WAF rules with the AWS WAF
Blockaction. You must specify exactly one action, eitherBlockorCount.
- block any
- Specifies that Shield Advanced should configure its AWS WAF rules with the AWS WAF
Blockaction. You must specify exactly one action, eitherBlockorCount.
- block Any
- Specifies that Shield Advanced should configure its AWS WAF rules with the AWS WAF
Blockaction. You must specify exactly one action, eitherBlockorCount.
- block Any
- Specifies that Shield Advanced should configure its AWS WAF rules with the AWS WAF
Blockaction. You must specify exactly one action, eitherBlockorCount.
ProtectionApplicationLayerAutomaticResponseConfigurationStatus
Tag
Package Details
- Repository
- AWS Native pulumi/pulumi-aws-native
- License
- Apache-2.0
We recommend new projects start with resources from the AWS provider.