/AWS1/CL_NWF=>CREATETLSINSPECTIONCONF()
¶
About CreateTLSInspectionConfiguration¶
Creates an Network Firewall TLS inspection configuration. A TLS inspection configuration contains Certificate Manager certificate associations between and the scope configurations that Network Firewall uses to decrypt and re-encrypt traffic traveling through your firewall.
After you create a TLS inspection configuration, you can associate it with a new firewall policy.
To update the settings for a TLS inspection configuration, use UpdateTLSInspectionConfiguration.
To manage a TLS inspection configuration's tags, use the standard Amazon Web Services resource tagging operations, ListTagsForResource, TagResource, and UntagResource.
To retrieve information about TLS inspection configurations, use ListTLSInspectionConfigurations and DescribeTLSInspectionConfiguration.
For more information about TLS inspection configurations, see Inspecting SSL/TLS traffic with TLS inspection configurations in the Network Firewall Developer Guide.
Method Signature¶
IMPORTING¶
Required arguments:¶
IV_TLSINSPECTIONCONFNAME
TYPE /AWS1/NWFRESOURCENAME
/AWS1/NWFRESOURCENAME
¶
The descriptive name of the TLS inspection configuration. You can't change the name of a TLS inspection configuration after you create it.
IO_TLSINSPECTIONCONF
TYPE REF TO /AWS1/CL_NWFTLSINSPECTIONCONF
/AWS1/CL_NWFTLSINSPECTIONCONF
¶
The object that defines a TLS inspection configuration. This, along with TLSInspectionConfigurationResponse, define the TLS inspection configuration. You can retrieve all objects for a TLS inspection configuration by calling DescribeTLSInspectionConfiguration.
Network Firewall uses a TLS inspection configuration to decrypt traffic. Network Firewall re-encrypts the traffic before sending it to its destination.
To use a TLS inspection configuration, you add it to a new Network Firewall firewall policy, then you apply the firewall policy to a firewall. Network Firewall acts as a proxy service to decrypt and inspect the traffic traveling through your firewalls. You can reference a TLS inspection configuration from more than one firewall policy, and you can use a firewall policy in more than one firewall. For more information about using TLS inspection configurations, see Inspecting SSL/TLS traffic with TLS inspection configurations in the Network Firewall Developer Guide.
Optional arguments:¶
IV_DESCRIPTION
TYPE /AWS1/NWFDESCRIPTION
/AWS1/NWFDESCRIPTION
¶
A description of the TLS inspection configuration.
IT_TAGS
TYPE /AWS1/CL_NWFTAG=>TT_TAGLIST
TT_TAGLIST
¶
The key:value pairs to associate with the resource.
IO_ENCRYPTIONCONFIGURATION
TYPE REF TO /AWS1/CL_NWFENCRYPTIONCONF
/AWS1/CL_NWFENCRYPTIONCONF
¶
EncryptionConfiguration