alb-desync-mode-check

Checks if an Application Load Balancer (ALB) is configured with a user defined desync mitigation mode. The rule is NON_COMPLIANT if ALB desync mitigation mode does not match with the user defined desync mitigation mode.

Identifier: ALB_DESYNC_MODE_CHECK

Resource Types: AWS::ElasticLoadBalancingV2::LoadBalancer

Trigger type: Configuration changes

AWS Region: All supported AWS regions except Asia Pacific (Thailand), Asia Pacific (Malaysia), Mexico (Central), Asia Pacific (Taipei), Canada West (Calgary) Region

Parameters:

desyncMode
Type: CSV: Comma-separated list, in which customers can choose max 2 values among - 'defensive', 'strictest', and 'monitor'.

AWS CloudFormation template

To create AWS Config managed rules with AWS CloudFormation templates, see Creating AWS Config Managed Rules With AWS CloudFormation Templates.

Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

active-mq-supported-version

alb-http-drop-invalid-header-enabled