github-actions[bot]
commented
10 months ago Community Note
Voting for Prioritization
- Please vote on this issue by adding a 👍 reaction to the original post to help the community and maintainers prioritize this request.
- Please see our prioritization guide for information on how we prioritize.
- Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request.
Volunteering to Work on This Issue
- If you are interested in working on this issue, please leave a comment.
- If this would be your first contribution, please review the contribution guide.
Description
In AWS we can enable SNS notifications for DDoS activity on protected resources. https://docs.aws.amazon.com/waf/latest/developerguide/get-started-fms-shield-cloudwatch.html and Scenario 1 in https://aws.amazon.com/blogs/security/set-up-centralized-monitoring-for-ddos-events-and-auto-remediate-noncompliant-resources/
This is currently only possible through the Console, API, CloudFormation and Boto3. API - https://docs.aws.amazon.com/fms/2018-01-01/APIReference/API_PutNotificationChannel.html Boto3 - https://boto3.amazonaws.com/v1/documentation/api/1.12.28/reference/services/fms.html#FMS.Client.put_notification_channel CF- https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-fms-notificationchannel.html
Please add this feature to the aws provider as well! Thanks in advance!
Affected Resource(s) and/or Data Source(s)
Potential Terraform Configuration
No response
References
No response
Would you like to implement a fix?
None