AWS::EC2::CustomerGateway
Specifies a customer gateway.
Syntax
To declare this entity in your AWS CloudFormation template, use the following syntax:
JSON
{ "Type" : "AWS::EC2::CustomerGateway", "Properties" : { "BgpAsn" :
Integer
, "BgpAsnExtended" :Number
, "CertificateArn" :String
, "DeviceName" :String
, "IpAddress" :String
, "Tags" :[ Tag, ... ]
, "Type" :String
} }
YAML
Type: AWS::EC2::CustomerGateway Properties: BgpAsn:
Integer
BgpAsnExtended:Number
CertificateArn:String
DeviceName:String
IpAddress:String
Tags:- Tag
Type:String
Properties
BgpAsn
-
For customer gateway devices that support BGP, specify the device's ASN. You must specify either
BgpAsn
orBgpAsnExtended
when creating the customer gateway. If the ASN is larger than2,147,483,647
, you must useBgpAsnExtended
.Default: 65000
Valid values:
1
to2,147,483,647
Required: No
Type: Integer
Update requires: Replacement
BgpAsnExtended
-
For customer gateway devices that support BGP, specify the device's ASN. You must specify either
BgpAsn
orBgpAsnExtended
when creating the customer gateway. If the ASN is larger than2,147,483,647
, you must useBgpAsnExtended
.Valid values:
2,147,483,648
to4,294,967,295
Required: No
Type: Number
Minimum:
2147483648
Maximum:
4294967294
Update requires: Replacement
CertificateArn
-
The Amazon Resource Name (ARN) for the customer gateway certificate.
Required: No
Type: String
Pattern:
^arn:(aws[a-zA-Z-]*)?:acm:[a-z]{2}((-gov)|(-iso([a-z]{1})?))?-[a-z]+-\d{1}:\d{12}:certificate\/[a-zA-Z0-9-_]+$
Update requires: Replacement
DeviceName
-
The name of customer gateway device.
Required: No
Type: String
Update requires: Replacement
IpAddress
-
IPv4 address for the customer gateway device's outside interface. The address must be static. If
OutsideIpAddressType
in your VPN connection options is set toPrivateIpv4
, you can use an RFC6598 or RFC1918 private IPv4 address. IfOutsideIpAddressType
is set toPublicIpv4
, you can use a public IPv4 address.Required: Yes
Type: String
Update requires: Replacement
-
One or more tags for the customer gateway.
Required: No
Type: Array of Tag
Update requires: No interruption
Type
-
The type of VPN connection that this customer gateway supports (
ipsec.1
).Required: Yes
Type: String
Allowed values:
ipsec.1
Update requires: Replacement
Return values
Ref
When you pass the logical ID of this resource to the intrinsic Ref
function, Ref
returns the ID of the customer gateway.
For more information about using the Ref
function, see Ref
.
Fn::GetAtt
The Fn::GetAtt
intrinsic function returns a value for a specified attribute of this type. The following are the available attributes and sample return values.
For more information about using the Fn::GetAtt
intrinsic function, see Fn::GetAtt
.
CustomerGatewayId
-
The ID of the customer gateway.
Examples
Create a customer gateway
The following example creates a customer gateway.
YAML
myCustomerGateway: Type: AWS::EC2::CustomerGateway Properties: Type: ipsec.1 BgpAsn: 65534 IpAddress: 12.1.2.3
JSON
{ "myCustomerGateway" : { "Type" : "AWS::EC2::CustomerGateway", "Properties" : { "Type" : "ipsec.1", "BgpAsn" : "65534", "IpAddress" : "12.1.2.3" } } }
See also
-
CreateCustomerGateway in the Amazon EC2 API Reference