Class SecurityGroupProps
Inheritance
Implements
Namespace: Amazon.CDK.AWS.EC2
Assembly: Amazon.CDK.Lib.dll
Syntax (csharp)
public class SecurityGroupProps : Object, ISecurityGroupPropsSyntax (vb)
Public Class SecurityGroupProps
Inherits Object
Implements ISecurityGroupPropsRemarks
ExampleMetadata: infused
Examples
Vpc vpc;
var mySecurityGroup = new SecurityGroup(this, "SecurityGroup", new SecurityGroupProps { Vpc = vpc });
new AutoScalingGroup(this, "ASG", new AutoScalingGroupProps {
Vpc = vpc,
InstanceType = InstanceType.Of(InstanceClass.BURSTABLE2, InstanceSize.MICRO),
MachineImage = MachineImage.LatestAmazonLinux2(),
SecurityGroup = mySecurityGroup
});Synopsis
Constructors
| SecurityGroupProps() |
Properties
| AllowAllIpv6Outbound | Whether to allow all outbound ipv6 traffic by default. |
| AllowAllOutbound | Whether to allow all outbound traffic by default. |
| Description | A description of the security group. |
| DisableInlineRules | Whether to disable inline ingress and egress rule optimization. |
| SecurityGroupName | The name of the security group. |
| Vpc | The VPC in which to create the security group. |
Constructors
SecurityGroupProps()
public SecurityGroupProps()Properties
AllowAllIpv6Outbound
Whether to allow all outbound ipv6 traffic by default.
public Nullable<bool> AllowAllIpv6Outbound { get; set; }Property Value
System.Nullable<System.Boolean>
Remarks
If this is set to true, there will only be a single egress rule which allows all outbound ipv6 traffic. If this is set to false, no outbound traffic will be allowed by default and all egress ipv6 traffic must be explicitly authorized.
To allow all ipv4 traffic use allowAllOutbound
Default: false
AllowAllOutbound
Whether to allow all outbound traffic by default.
public Nullable<bool> AllowAllOutbound { get; set; }Property Value
System.Nullable<System.Boolean>
Remarks
If this is set to true, there will only be a single egress rule which allows all outbound traffic. If this is set to false, no outbound traffic will be allowed by default and all egress traffic must be explicitly authorized.
To allow all ipv6 traffic use allowAllIpv6Outbound
Default: true
Description
A description of the security group.
public string Description { get; set; }Property Value
System.String
Remarks
Default: The default name will be the construct's CDK path.
DisableInlineRules
Whether to disable inline ingress and egress rule optimization.
public Nullable<bool> DisableInlineRules { get; set; }Property Value
System.Nullable<System.Boolean>
Remarks
If this is set to true, ingress and egress rules will not be declared under the SecurityGroup in cloudformation, but will be separate elements.
Inlining rules is an optimization for producing smaller stack templates. Sometimes this is not desirable, for example when security group access is managed via tags.
The default value can be overriden globally by setting the context variable '@aws-cdk/aws-ec2.securityGroupDisableInlineRules'.
Default: false
SecurityGroupName
The name of the security group.
public string SecurityGroupName { get; set; }Property Value
System.String
Remarks
For valid values, see the GroupName parameter of the CreateSecurityGroup action in the Amazon EC2 API Reference.
It is not recommended to use an explicit group name.
Default: If you don't specify a GroupName, AWS CloudFormation generates a unique physical ID and uses that ID for the group name.