AWS::EC2::NetworkInsightsAccessScope
Describes a Network Access Scope. A Network Access Scope defines outbound (egress) and inbound (ingress) traffic patterns, including sources, destinations, paths, and traffic types.
Network Access Analyzer identifies unintended network access to your resources on AWS. When you start an analysis on a Network Access Scope, Network Access Analyzer produces findings. For more information, see the Network Access Analyzer User Guide.
Syntax
To declare this entity in your AWS CloudFormation template, use the following syntax:
JSON
{ "Type" : "AWS::EC2::NetworkInsightsAccessScope", "Properties" : { "ExcludePaths" :
[ AccessScopePathRequest, ... ]
, "MatchPaths" :[ AccessScopePathRequest, ... ]
, "Tags" :[ Tag, ... ]
} }
YAML
Type: AWS::EC2::NetworkInsightsAccessScope Properties: ExcludePaths:
- AccessScopePathRequest
MatchPaths:- AccessScopePathRequest
Tags:- Tag
Properties
ExcludePaths
-
The paths to exclude.
Required: No
Type: List of AccessScopePathRequest
Update requires: Replacement
MatchPaths
-
The paths to match.
Required: No
Type: List of AccessScopePathRequest
Update requires: Replacement
Tags
-
The tags.
Required: No
Type: List of Tag
Update requires: No interruption
Return values
Ref
When you pass the logical ID of this resource to the intrinsic Ref
function, Ref
returns the ID of the network insights scope.
For more information about using the Ref
function, see Ref.
Fn::GetAtt
The Fn::GetAtt
intrinsic function returns a value for a specified attribute of this type. The following are the available attributes and sample return values.
For more information about using the Fn::GetAtt
intrinsic function, see Fn::GetAtt.