0.0.4 • Published 2 years ago

firewall-construct v0.0.4

Weekly downloads
-
License
Apache-2.0
Repository
github
Last release
2 years ago

AWS Network Firewall Accelerator

This CDK app takes a few optional parameters and creates a VPC with AWS Network Firewall. This includes the proper Edge Route Table routes and the proper VPC Endpoint of the GWLB. It also includes a default set of stateless rules to only allow 80/tcp, 443/tcp, 123/udp, and 53/ip out. Also has a default set of white listed domains - mainly for common software updates.

Architecture Diagram

Supported Parameters:

  cidr?: string
  maxAzs?: number
  firewallsubnetname?: string
  publicsubnetname?: string
  privatesubnetname?: string
  firewallmask?: number
  publicmask?: number
  privatemask?: number
  domainlist?: string[]

Example for deploying

#!/usr/bin/env node
import 'source-map-support/register';
import * as cdk from '@aws-cdk/core';
import { FirewallStack, FWVPCProps } from '../lib/firewall-stack';

const app = new cdk.App();
new FirewallStack(app, 'FirewallStack', {}, {cidr: '192.168.0.0/24', privatesubnetname: 'tgw-attach'});

Blog: https://medium.com/@matthewvenne/cdk-once-more-unto-the-breach-f2673cf219a6

awsaws-cdkawscdkcdkfirewallnetwork-automationnetwork-security
@aws-cdk/aws-ec2@aws-cdk/aws-iam@aws-cdk/aws-lambda@aws-cdk/aws-logs@aws-cdk/aws-networkfirewall@aws-cdk/core
@everything-registry/sub-chunk-1672@zalastax/nolb-firew
0.0.4

2 years ago

0.0.3

2 years ago

0.0.2

2 years ago

0.0.1

2 years ago

0.0.0

2 years ago