aws-cdk-lib.aws_elasticloadbalancingv2.DesyncMitigationMode

enum DesyncMitigationMode

LanguageType name
.NETAmazon.CDK.AWS.ElasticLoadBalancingV2.DesyncMitigationMode
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awselasticloadbalancingv2#DesyncMitigationMode
Javasoftware.amazon.awscdk.services.elasticloadbalancingv2.DesyncMitigationMode
Pythonaws_cdk.aws_elasticloadbalancingv2.DesyncMitigationMode
TypeScript (source)aws-cdk-lib » aws_elasticloadbalancingv2 » DesyncMitigationMode

How the load balancer handles requests that might pose a security risk to your application.

See also: https://docs.aws.amazon.com/elasticloadbalancing/latest/application/application-load-balancers.html#desync-mitigation-mode

Example

declare const vpc: ec2.Vpc;

const lb = new elbv2.ApplicationLoadBalancer(this, 'LB', {
  vpc,
  internetFacing: true,

  // Whether HTTP/2 is enabled
  http2Enabled: false,

  // The idle timeout value, in seconds
  idleTimeout: Duration.seconds(1000),

  // Whether HTTP headers with header fields thatare not valid
  // are removed by the load balancer (true), or routed to targets
  dropInvalidHeaderFields: true,

  // How the load balancer handles requests that might
  // pose a security risk to your application
  desyncMitigationMode: elbv2.DesyncMitigationMode.DEFENSIVE,
});

Members

NameDescription
MONITORAllows all traffic.
DEFENSIVEProvides durable mitigation against HTTP desync while maintaining the availability of your application.
STRICTESTReceives only requests that comply with RFC 7230.

MONITOR

Allows all traffic.


DEFENSIVE

Provides durable mitigation against HTTP desync while maintaining the availability of your application.


STRICTEST

Receives only requests that comply with RFC 7230.