Docs
PackagesTry AWS Native preview for resources not in the classic version.
AWS Classic v6.42.0 published on Wednesday, Jun 26, 2024 by Pulumi
aws.route53.ResolverFirewallConfig
Explore with Pulumi AI
Try AWS Native preview for resources not in the classic version.
AWS Classic v6.42.0 published on Wednesday, Jun 26, 2024 by Pulumi
Provides a Route 53 Resolver DNS Firewall config resource.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const example = new aws.ec2.Vpc("example", {
cidrBlock: "10.0.0.0/16",
enableDnsSupport: true,
enableDnsHostnames: true,
});
const exampleResolverFirewallConfig = new aws.route53.ResolverFirewallConfig("example", {
resourceId: example.id,
firewallFailOpen: "ENABLED",
});
import pulumi
import pulumi_aws as aws
example = aws.ec2.Vpc("example",
cidr_block="10.0.0.0/16",
enable_dns_support=True,
enable_dns_hostnames=True)
example_resolver_firewall_config = aws.route53.ResolverFirewallConfig("example",
resource_id=example.id,
firewall_fail_open="ENABLED")
package main
import (
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/ec2"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/route53"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := ec2.NewVpc(ctx, "example", &ec2.VpcArgs{
CidrBlock: pulumi.String("10.0.0.0/16"),
EnableDnsSupport: pulumi.Bool(true),
EnableDnsHostnames: pulumi.Bool(true),
})
if err != nil {
return err
}
_, err = route53.NewResolverFirewallConfig(ctx, "example", &route53.ResolverFirewallConfigArgs{
ResourceId: example.ID(),
FirewallFailOpen: pulumi.String("ENABLED"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
var example = new Aws.Ec2.Vpc("example", new()
{
CidrBlock = "10.0.0.0/16",
EnableDnsSupport = true,
EnableDnsHostnames = true,
});
var exampleResolverFirewallConfig = new Aws.Route53.ResolverFirewallConfig("example", new()
{
ResourceId = example.Id,
FirewallFailOpen = "ENABLED",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.ec2.Vpc;
import com.pulumi.aws.ec2.VpcArgs;
import com.pulumi.aws.route53.ResolverFirewallConfig;
import com.pulumi.aws.route53.ResolverFirewallConfigArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new Vpc("example", VpcArgs.builder()
.cidrBlock("10.0.0.0/16")
.enableDnsSupport(true)
.enableDnsHostnames(true)
.build());
var exampleResolverFirewallConfig = new ResolverFirewallConfig("exampleResolverFirewallConfig", ResolverFirewallConfigArgs.builder()
.resourceId(example.id())
.firewallFailOpen("ENABLED")
.build());
}
}
resources:
example:
type: aws:ec2:Vpc
properties:
cidrBlock: 10.0.0.0/16
enableDnsSupport: true
enableDnsHostnames: true
exampleResolverFirewallConfig:
type: aws:route53:ResolverFirewallConfig
name: example
properties:
resourceId: ${example.id}
firewallFailOpen: ENABLED
Create ResolverFirewallConfig Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new ResolverFirewallConfig(name: string, args: ResolverFirewallConfigArgs, opts?: CustomResourceOptions);@overload
def ResolverFirewallConfig(resource_name: str,
args: ResolverFirewallConfigArgs,
opts: Optional[ResourceOptions] = None)
@overload
def ResolverFirewallConfig(resource_name: str,
opts: Optional[ResourceOptions] = None,
resource_id: Optional[str] = None,
firewall_fail_open: Optional[str] = None)func NewResolverFirewallConfig(ctx *Context, name string, args ResolverFirewallConfigArgs, opts ...ResourceOption) (*ResolverFirewallConfig, error)public ResolverFirewallConfig(string name, ResolverFirewallConfigArgs args, CustomResourceOptions? opts = null)
public ResolverFirewallConfig(String name, ResolverFirewallConfigArgs args)
public ResolverFirewallConfig(String name, ResolverFirewallConfigArgs args, CustomResourceOptions options)
type: aws:route53:ResolverFirewallConfig
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ResolverFirewallConfigArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ResolverFirewallConfigArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ResolverFirewallConfigArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ResolverFirewallConfigArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ResolverFirewallConfigArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var resolverFirewallConfigResource = new Aws.Route53.ResolverFirewallConfig("resolverFirewallConfigResource", new()
{
ResourceId = "string",
FirewallFailOpen = "string",
});
example, err := route53.NewResolverFirewallConfig(ctx, "resolverFirewallConfigResource", &route53.ResolverFirewallConfigArgs{
ResourceId: pulumi.String("string"),
FirewallFailOpen: pulumi.String("string"),
})
var resolverFirewallConfigResource = new ResolverFirewallConfig("resolverFirewallConfigResource", ResolverFirewallConfigArgs.builder()
.resourceId("string")
.firewallFailOpen("string")
.build());
resolver_firewall_config_resource = aws.route53.ResolverFirewallConfig("resolverFirewallConfigResource",
resource_id="string",
firewall_fail_open="string")
const resolverFirewallConfigResource = new aws.route53.ResolverFirewallConfig("resolverFirewallConfigResource", {
resourceId: "string",
firewallFailOpen: "string",
});
type: aws:route53:ResolverFirewallConfig
properties:
firewallFailOpen: string
resourceId: string
ResolverFirewallConfig Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The ResolverFirewallConfig resource accepts the following input properties:
- Resource
Id string - The ID of the VPC that the configuration is for.
- Firewall
Fail stringOpen - Determines how Route 53 Resolver handles queries during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply. By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall blocks queries that it is unable to evaluate properly. If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them. Valid values:
ENABLED,DISABLED.
- Resource
Id string - The ID of the VPC that the configuration is for.
- Firewall
Fail stringOpen - Determines how Route 53 Resolver handles queries during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply. By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall blocks queries that it is unable to evaluate properly. If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them. Valid values:
ENABLED,DISABLED.
- resource
Id String - The ID of the VPC that the configuration is for.
- firewall
Fail StringOpen - Determines how Route 53 Resolver handles queries during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply. By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall blocks queries that it is unable to evaluate properly. If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them. Valid values:
ENABLED,DISABLED.
- resource
Id string - The ID of the VPC that the configuration is for.
- firewall
Fail stringOpen - Determines how Route 53 Resolver handles queries during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply. By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall blocks queries that it is unable to evaluate properly. If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them. Valid values:
ENABLED,DISABLED.
- resource_
id str - The ID of the VPC that the configuration is for.
- firewall_
fail_ stropen - Determines how Route 53 Resolver handles queries during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply. By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall blocks queries that it is unable to evaluate properly. If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them. Valid values:
ENABLED,DISABLED.
- resource
Id String - The ID of the VPC that the configuration is for.
- firewall
Fail StringOpen - Determines how Route 53 Resolver handles queries during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply. By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall blocks queries that it is unable to evaluate properly. If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them. Valid values:
ENABLED,DISABLED.
Outputs
All input properties are implicitly available as output properties. Additionally, the ResolverFirewallConfig resource produces the following output properties:
Look up Existing ResolverFirewallConfig Resource
Get an existing ResolverFirewallConfig resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: ResolverFirewallConfigState, opts?: CustomResourceOptions): ResolverFirewallConfig@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
firewall_fail_open: Optional[str] = None,
owner_id: Optional[str] = None,
resource_id: Optional[str] = None) -> ResolverFirewallConfigfunc GetResolverFirewallConfig(ctx *Context, name string, id IDInput, state *ResolverFirewallConfigState, opts ...ResourceOption) (*ResolverFirewallConfig, error)public static ResolverFirewallConfig Get(string name, Input<string> id, ResolverFirewallConfigState? state, CustomResourceOptions? opts = null)public static ResolverFirewallConfig get(String name, Output<String> id, ResolverFirewallConfigState state, CustomResourceOptions options)Resource lookup is not supported in YAML- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Firewall
Fail stringOpen - Determines how Route 53 Resolver handles queries during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply. By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall blocks queries that it is unable to evaluate properly. If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them. Valid values:
ENABLED,DISABLED. - Owner
Id string - The AWS account ID of the owner of the VPC that this firewall configuration applies to.
- Resource
Id string - The ID of the VPC that the configuration is for.
- Firewall
Fail stringOpen - Determines how Route 53 Resolver handles queries during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply. By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall blocks queries that it is unable to evaluate properly. If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them. Valid values:
ENABLED,DISABLED. - Owner
Id string - The AWS account ID of the owner of the VPC that this firewall configuration applies to.
- Resource
Id string - The ID of the VPC that the configuration is for.
- firewall
Fail StringOpen - Determines how Route 53 Resolver handles queries during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply. By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall blocks queries that it is unable to evaluate properly. If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them. Valid values:
ENABLED,DISABLED. - owner
Id String - The AWS account ID of the owner of the VPC that this firewall configuration applies to.
- resource
Id String - The ID of the VPC that the configuration is for.
- firewall
Fail stringOpen - Determines how Route 53 Resolver handles queries during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply. By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall blocks queries that it is unable to evaluate properly. If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them. Valid values:
ENABLED,DISABLED. - owner
Id string - The AWS account ID of the owner of the VPC that this firewall configuration applies to.
- resource
Id string - The ID of the VPC that the configuration is for.
- firewall_
fail_ stropen - Determines how Route 53 Resolver handles queries during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply. By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall blocks queries that it is unable to evaluate properly. If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them. Valid values:
ENABLED,DISABLED. - owner_
id str - The AWS account ID of the owner of the VPC that this firewall configuration applies to.
- resource_
id str - The ID of the VPC that the configuration is for.
- firewall
Fail StringOpen - Determines how Route 53 Resolver handles queries during failures, for example when all traffic that is sent to DNS Firewall fails to receive a reply. By default, fail open is disabled, which means the failure mode is closed. This approach favors security over availability. DNS Firewall blocks queries that it is unable to evaluate properly. If you enable this option, the failure mode is open. This approach favors availability over security. DNS Firewall allows queries to proceed if it is unable to properly evaluate them. Valid values:
ENABLED,DISABLED. - owner
Id String - The AWS account ID of the owner of the VPC that this firewall configuration applies to.
- resource
Id String - The ID of the VPC that the configuration is for.
Import
Using pulumi import, import Route 53 Resolver DNS Firewall configs using the Route 53 Resolver DNS Firewall config ID. For example:
$ pulumi import aws:route53/resolverFirewallConfig:ResolverFirewallConfig example rdsc-be1866ecc1683e95
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- AWS Classic pulumi/pulumi-aws
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
awsTerraform Provider.
Try AWS Native preview for resources not in the classic version.
AWS Classic v6.42.0 published on Wednesday, Jun 26, 2024 by Pulumi