Overview

A Config rule that checks whether an Application Load Balancer, Amazon CloudFront distributions, Elastic Load Balancer or Elastic IP has AWS Shield protection. This rule also checks if they have web ACL associated for Application Load Balancer and Amazon CloudFront distributions.

Configuration Templates

Items
1
Size
1.0 KB
Missing Parameters
AWSTemplateFormatVersion: '2010-09-09'
Description: ''
Resources:
  ConfigRule:
    Type: 'AWS::Config::ConfigRule'
    Properties:
      ConfigRuleName: fms-shield-resource-policy-check
      Description: >-
        A Config rule that checks whether an Application Load Balancer, Amazon
        CloudFront distributions, Elastic Load Balancer or Elastic IP has AWS
        Shield protection. This rule also checks if they have web ACL associated
        for Application Load Balancer and Amaz...
      Scope:
        ComplianceResourceTypes:
          - 'AWS::CloudFront::Distribution'
          - 'AWS::ElasticLoadBalancingV2::LoadBalancer'
          - 'AWS::WAFRegional::WebACL'
          - 'AWS::EC2::EIP'
          - 'AWS::ElasticLoadBalancing::LoadBalancer'
          - 'AWS::ShieldRegional::Protection'
          - 'AWS::Shield::Protection'
      Source:
        Owner: AWS
        SourceIdentifier: FMS_SHIELD_RESOURCE_POLICY_CHECK
Parameters: {}
Metadata: {}
Conditions: {}

Actions



Rule Parameters

 
* Required field

Sources and Documentation

Configuration Source: AWS Documentation

Additional Documentation: