@finnairoyj/cdk-constructs-lib
    Preparing search index...

    Interface EC2BastionHostProps

    interface EC2BastionHostProps {
        commonNotificationsTopic?: ITopic;
        customInitScript?: string;
        ec2AutoscalingRole?: IRole;
        enableScheduledShutdown?: boolean;
        installPackages?: string[];
        instanceClass?: InstanceClass;
        instanceName?: string;
        instanceSize?: InstanceSize;
        kmsKeysReadAccess?: IKey[];
        shutdownSchedule?: Schedule;
        sshHostConfigs?: Record<string, HostConfig>;
        startupSchedule?: Schedule;
        useHbiImage?: boolean;
        vpc?: IVpc;
        vpcSubnets?: SubnetSelection;
    }
    Index

    Properties

    commonNotificationsTopic? customInitScript? ec2AutoscalingRole? enableScheduledShutdown? installPackages? instanceClass? instanceName? instanceSize? kmsKeysReadAccess? shutdownSchedule? sshHostConfigs? startupSchedule? useHbiImage? vpc? vpcSubnets?

    Properties

    commonNotificationsTopic?: ITopic

    Topic for common EC2 instance notifications. If not defined, notifications will be disabled.

    customInitScript?: string

    Custom init script.

    Path to executable custom bash script that will be executed during bastion start-up, and when bastion is running, via cfn-hup upon changes to the script (requires deployment).

    - no custom init script
    ec2AutoscalingRole?: IRole

    Shared EC2 autoscaling role. If not defined a new ServiceLinkedRole for autoscaling will be created.

    enableScheduledShutdown?: boolean

    Enable scheduled shutdown for the bastion host

    true
    installPackages?: string[]

    List of DNF / YUM packages to be installed

    [] No additional packages are installed
    instanceClass?: InstanceClass

    Instance class to use to launch the bastion host

    InstanceClass.T3
    instanceName?: string

    Name of the bastion instance. Will be converted to kebab-case

    bastion-host
    instanceSize?: InstanceSize

    Instance size to use to launch the bastion host

    InstanceSize.NANO
    kmsKeysReadAccess?: IKey[]

    List of keys to which bastion will be granted read access

    shutdownSchedule?: Schedule

    Shutdown schedule. Bastion will be automatically shut down on the schedule Scaling actions use UTC time

    NOTE: Be sure to use the correct type: aws-cdk-lib/aws-autoscaling/Schedule

    Schedule Scale down every day at 17:00 UTC
    sshHostConfigs?: Record<string, HostConfig>

    Details of other EC2 instances that will have SSH access from bastion configured by default. SecurityGroup -level access needs to be configured separately.

    startupSchedule?: Schedule

    Startup schedule. Bastion will be automatically started on the schedule Scaling actions use UTC time

    If defined, scheduled shutdown is also enabled.

    NOTE: Be sure to use the correct type: aws-cdk-lib/aws-autoscaling/Schedule

    Schedule No automatic startup shedule
    useHbiImage?: boolean

    Use the Finnair HBI image as the base image for the bastion. If set to false, will use the latest AmazonLinux 2023 image, this is not recommended

    HBI images not fully supported yet! TODO: Check KMS permissions required to use the HBI images with autoscaling

    false
    vpc?: IVpc

    VPC ID for the bastion host

    IVpc Default LandingZone-managed VPC
    vpcSubnets?: SubnetSelection

    Subnets for the bastion host

    SubnetSelection of LZ-managed VPC private subnets

    Settings

    Member Visibility

    On This Page

    Properties