DesyncMitigationMode

class aws_cdk.aws_elasticloadbalancingv2.DesyncMitigationMode(value)

Bases: Enum

How the load balancer handles requests that might pose a security risk to your application.

See:

https://docs.aws.amazon.com/elasticloadbalancing/latest/application/application-load-balancers.html#desync-mitigation-mode

ExampleMetadata:

infused

Example:

# Example automatically generated from non-compiling source. May contain errors.
lb = elbv2.ApplicationLoadBalancer(self, "LB",
    vpc=vpc,
    internet_facing=True,

    # Whether HTTP/2 is enabled
    http2_enabled=False,

    # The idle timeout value, in seconds
    idle_timeout=cdk.Duration.seconds(1000),

    # Whether HTTP headers with header fields thatare not valid
    # are removed by the load balancer (true), or routed to targets
    drop_invalid_header_fields=True,

    # How the load balancer handles requests that might
    # pose a security risk to your application
    desync_mitigation_mode=elbv2.DesyncMitigationMode.DEFENSIVE
)

Attributes

DEFENSIVE

Provides durable mitigation against HTTP desync while maintaining the availability of your application.

MONITOR

Allows all traffic.

STRICTEST

Receives only requests that comply with RFC 7230.