View a markdown version of this page

AWS::EC2::ClientVpnEndpoint ClientRouteEnforcementOptions - AWS CloudFormation

This is the new CloudFormation Template Reference Guide. Please update your bookmarks and links. For help getting started with CloudFormation, see the AWS CloudFormation User Guide.

AWS::EC2::ClientVpnEndpoint ClientRouteEnforcementOptions

Client Route Enforcement is a feature of Client VPN that helps enforce administrator defined routes on devices connected through the VPN. This feature helps improve your security posture by ensuring that network traffic originating from a connected client is not inadvertently sent outside the VPN tunnel.

Client Route Enforcement works by monitoring the route table of a connected device for routing policy changes to the VPN connection. If the feature detects any VPN routing policy modifications, it will automatically force an update to the route table, reverting it back to the expected route configurations.

Syntax

To declare this entity in your CloudFormation template, use the following syntax:

JSON

{ "Enforced" : Boolean }

YAML

Enforced: Boolean

Properties

Enforced

Enable or disable Client Route Enforcement. The state can either be true (enabled) or false (disabled). The default is false.

Valid values: true | false

Default value: false

Required: No

Type: Boolean

Update requires: No interruption

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Did this page help you? - Yes

Thanks for letting us know we're doing a good job!

If you've got a moment, please tell us what we did right so we can do more of it.

Did this page help you? - No

Thanks for letting us know this page needs work. We're sorry we let you down.

If you've got a moment, please tell us how we can make the documentation better.

AltStyle によって変換されたページ (->オリジナル) /