[AWS::EC2::VPNConnection] - [Enhancement] - Modifying settings within VpnTunnelOptionsSpecification such as LogOptions or DPDTimeoutAction should be possible with replacement
#2263
Labels
enhancement
New feature or request
Comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Name of the resource
AWS::EC2::VPNConnection
Resource name
AWS::EC2::VPNConnection VpnTunnelOptionsSpecification
Description
A user can go into the AWS Console, pick out any Site-to-Site VPN connection and make changes to the tunnels without having the entire VPN connection re-created. This is absolutely vital when manipulating a VPN connection for troubleshooting, enabling logging or making changes to accommodate changes for the Customer Gateway that is creating the connection.
For now, I can not enable logging for all of my VPN connections using CloudFormation, as it would replace the connection, and I would need to engage with each of my customers to update the tunnel address and PSK that they are connecting to.
Going through each VPN Connection one-by-one and manually enabling CloudWatch logging on each is a cumbersome process, that should be automated through CloudFormation.
Other Details
No response
The text was updated successfully, but these errors were encountered: