InstanceProps
Properties for defining a Instance.
See https://www.alibabacloud.com/help/ros/developer-reference/aliyun-sas-instance
Initializer
import { InstanceProps } from '@alicloud/ros-cdk-sas'
const instanceProps: InstanceProps = { ... }
Properties
| Name | Type | Description |
|---|---|---|
period |
number | @alicloud/ros-cdk-core.IResolvable |
Property period: The subscription period of the firewallIf PeriodUnit is month, the valid range is 1, 3, 6 If periodUnit is year, the valid range is 1, 2, 3. |
periodUnit |
string | @alicloud/ros-cdk-core.IResolvable |
Property periodUnit: The unit of the subscription duration. |
antiRansomware |
number | @alicloud/ros-cdk-core.IResolvable |
Property antiRansomware: Security Center provides a comprehensive anti-ransomware solution to protect your business. |
autoPay |
boolean | @alicloud/ros-cdk-core.IResolvable |
Property autoPay: Whether to auto pay the bill.Default: True. |
autoRenew |
boolean | @alicloud/ros-cdk-core.IResolvable |
Property autoRenew: Whether to auto renew the prepay instance.Default: False. |
cloudHoneypot |
boolean | @alicloud/ros-cdk-core.IResolvable |
Property cloudHoneypot: The cloud honeypot feature can capture attacks in a timely and efficient manner. |
configurationAssessment |
boolean | @alicloud/ros-cdk-core.IResolvable |
Property configurationAssessment: The configuration assessment feature detects configuration errors and security risks on cloud services from the following dimensions: identity and permission management, security risks in Alibaba Cloud services, and compliance risks.This ensures the security of the running environment of your cloud services. |
containerImageScan |
number | @alicloud/ros-cdk-core.IResolvable |
Property containerImageScan: Security Center provides the container image scan feature to protect containers. |
edition |
string | @alicloud/ros-cdk-core.IResolvable |
Property edition: The version of Security center. |
logAnalysis |
number | @alicloud/ros-cdk-core.IResolvable |
Property logAnalysis: In response to the requirements of the network security law, which requires logs to be stored for at least 180 days, we recommend that you configure a 40GB log storage each server. |
maliciousFileDetectionSdk |
boolean | @alicloud/ros-cdk-core.IResolvable |
Property maliciousFileDetectionSdk: The configuration assessment feature detects configuration errors and security risks on cloud services from the following dimensions: identity and permission management, security risks in Alibaba Cloud services, and compliance risks. |
protectedServers |
number | @alicloud/ros-cdk-core.IResolvable |
Property protectedServers: Authorization is the same as the number of servers you have. |
quotaForApplicationProtection |
number | @alicloud/ros-cdk-core.IResolvable |
Property quotaForApplicationProtection: The application protection feature can detect attacks on applications and provide self-protection during application runtime. |
quotaForCloudHoneypot |
number | @alicloud/ros-cdk-core.IResolvable |
Property quotaForCloudHoneypot:. |
quotaForConfigurationAssessment |
number | @alicloud/ros-cdk-core.IResolvable |
Property quotaForConfigurationAssessment:. |
quotaForMaliciousFileDetectionSdk |
number | @alicloud/ros-cdk-core.IResolvable |
Property quotaForMaliciousFileDetectionSdk:. |
quotaForVulnerabilityFixing |
number | @alicloud/ros-cdk-core.IResolvable |
Property quotaForVulnerabilityFixing: Specify the quota for vulnerability fixing based on the number of vulnerabilities that you want to fix each month. |
quotaForWebTamperProofing |
number | @alicloud/ros-cdk-core.IResolvable |
Property quotaForWebTamperProofing:. |
threatAnalysis |
boolean | @alicloud/ros-cdk-core.IResolvable |
Property threatAnalysis: The threat analysis feature allows you to handle alerts that are generated for assets in the cloud within different accounts and assets of multiple cloud services in a centralized manner. |
threatAnalysisLogStorageCapacity |
number | @alicloud/ros-cdk-core.IResolvable |
Property threatAnalysisLogStorageCapacity:. |
vCore |
number | @alicloud/ros-cdk-core.IResolvable |
Property vCore: This parameter indicates the number of server vCPUs. |
vulnerabilityFixing |
boolean | @alicloud/ros-cdk-core.IResolvable |
Property vulnerabilityFixing: The vulnerability fixing feature allows you to fix system vulnerabilities with a few clicks. |
webTamperProtection |
boolean | @alicloud/ros-cdk-core.IResolvable |
Property webTamperProtection: To ensure that the website information of important systems is not maliciously tampered with, there are bad content such as hanging horses, black chains, illegal implantation of terrorist threats, pornography, etc. |
periodRequired
public readonly period: number | IResolvable;
- Type: number | @alicloud/ros-cdk-core.IResolvable
Property period: The subscription period of the firewallIf PeriodUnit is month, the valid range is 1, 3, 6 If periodUnit is year, the valid range is 1, 2, 3.
periodUnitRequired
public readonly periodUnit: string | IResolvable;
- Type: string | @alicloud/ros-cdk-core.IResolvable
Property periodUnit: The unit of the subscription duration.
Valid values: Month Year
antiRansomwareOptional
public readonly antiRansomware: number | IResolvable;
- Type: number | @alicloud/ros-cdk-core.IResolvable
Property antiRansomware: Security Center provides a comprehensive anti-ransomware solution to protect your business.
We recommend that you configure a data protection capacity of 50GB for each server.
autoPayOptional
public readonly autoPay: boolean | IResolvable;
- Type: boolean | @alicloud/ros-cdk-core.IResolvable
Property autoPay: Whether to auto pay the bill.Default: True.
autoRenewOptional
public readonly autoRenew: boolean | IResolvable;
- Type: boolean | @alicloud/ros-cdk-core.IResolvable
Property autoRenew: Whether to auto renew the prepay instance.Default: False.
cloudHoneypotOptional
public readonly cloudHoneypot: boolean | IResolvable;
- Type: boolean | @alicloud/ros-cdk-core.IResolvable
Property cloudHoneypot: The cloud honeypot feature can capture attacks in a timely and efficient manner.
You can use the feature to protect your core assets and detect attacks in attack and defense scenarios.
configurationAssessmentOptional
public readonly configurationAssessment: boolean | IResolvable;
- Type: boolean | @alicloud/ros-cdk-core.IResolvable
Property configurationAssessment: The configuration assessment feature detects configuration errors and security risks on cloud services from the following dimensions: identity and permission management, security risks in Alibaba Cloud services, and compliance risks.This ensures the security of the running environment of your cloud services.
containerImageScanOptional
public readonly containerImageScan: number | IResolvable;
- Type: number | @alicloud/ros-cdk-core.IResolvable
Property containerImageScan: Security Center provides the container image scan feature to protect containers.
Security Center can detect CVEs, application vulnerabilities, viruses, and malicious samples and allows you to handle the detected risks. You can configure this parameter based on the number of images or digests. For example, if the number of images or digests that are updated in the previous day is 10, you can set this parameter to 300 for a monthly subscription or to 3650 for a yearly subscription. This is more cost-effective.
editionOptional
public readonly edition: string | IResolvable;
- Type: string | @alicloud/ros-cdk-core.IResolvable
Property edition: The version of Security center.
logAnalysisOptional
public readonly logAnalysis: number | IResolvable;
- Type: number | @alicloud/ros-cdk-core.IResolvable
Property logAnalysis: In response to the requirements of the network security law, which requires logs to be stored for at least 180 days, we recommend that you configure a 40GB log storage each server.
Log analysis supports multi-dimensional security logs of cloud assets, out-of-the-box reports, and powerful SQL syntax analysis, so as to monitor business status, troubleshoot attacks, security operations such as traceability and positioning are easier.
maliciousFileDetectionSdkOptional
public readonly maliciousFileDetectionSdk: boolean | IResolvable;
- Type: boolean | @alicloud/ros-cdk-core.IResolvable
Property maliciousFileDetectionSdk: The configuration assessment feature detects configuration errors and security risks on cloud services from the following dimensions: identity and permission management, security risks in Alibaba Cloud services, and compliance risks.
This ensures the security of the running environment of your cloud services.
protectedServersOptional
public readonly protectedServers: number | IResolvable;
- Type: number | @alicloud/ros-cdk-core.IResolvable
Property protectedServers: Authorization is the same as the number of servers you have.
quotaForApplicationProtectionOptional
public readonly quotaForApplicationProtection: number | IResolvable;
- Type: number | @alicloud/ros-cdk-core.IResolvable
Property quotaForApplicationProtection: The application protection feature can detect attacks on applications and provide self-protection during application runtime.
The feature supports simple and convenient O&M and can effectively defend against zero-day and OWASP Top vulnerabilities. The feature is a value-added feature. You are charged based on the number of assets on which the RASP agent is installed. You must configure protection policies after you purchase the feature.
quotaForCloudHoneypotOptional
public readonly quotaForCloudHoneypot: number | IResolvable;
- Type: number | @alicloud/ros-cdk-core.IResolvable
Property quotaForCloudHoneypot:.
quotaForConfigurationAssessmentOptional
public readonly quotaForConfigurationAssessment: number | IResolvable;
- Type: number | @alicloud/ros-cdk-core.IResolvable
Property quotaForConfigurationAssessment:.
quotaForMaliciousFileDetectionSdkOptional
public readonly quotaForMaliciousFileDetectionSdk: number | IResolvable;
- Type: number | @alicloud/ros-cdk-core.IResolvable
Property quotaForMaliciousFileDetectionSdk:.
quotaForVulnerabilityFixingOptional
public readonly quotaForVulnerabilityFixing: number | IResolvable;
- Type: number | @alicloud/ros-cdk-core.IResolvable
Property quotaForVulnerabilityFixing: Specify the quota for vulnerability fixing based on the number of vulnerabilities that you want to fix each month.
The quota is equal to the total number of vulnerabilities that you want to fix on all servers regardless of the vulnerability names. For example, if you use Security Center to fix the same vulnerability on 10 servers, the quota is deducted by 10.
quotaForWebTamperProofingOptional
public readonly quotaForWebTamperProofing: number | IResolvable;
- Type: number | @alicloud/ros-cdk-core.IResolvable
Property quotaForWebTamperProofing:.
threatAnalysisOptional
public readonly threatAnalysis: boolean | IResolvable;
- Type: boolean | @alicloud/ros-cdk-core.IResolvable
Property threatAnalysis: The threat analysis feature allows you to handle alerts that are generated for assets in the cloud within different accounts and assets of multiple cloud services in a centralized manner.
The feature also allows you to handle risks with a few clicks. The feature provides automatic orchestration and response capabilities.
threatAnalysisLogStorageCapacityOptional
public readonly threatAnalysisLogStorageCapacity: number | IResolvable;
- Type: number | @alicloud/ros-cdk-core.IResolvable
Property threatAnalysisLogStorageCapacity:.
vCoreOptional
public readonly vCore: number | IResolvable;
- Type: number | @alicloud/ros-cdk-core.IResolvable
Property vCore: This parameter indicates the number of server vCPUs.
vulnerabilityFixingOptional
public readonly vulnerabilityFixing: boolean | IResolvable;
- Type: boolean | @alicloud/ros-cdk-core.IResolvable
Property vulnerabilityFixing: The vulnerability fixing feature allows you to fix system vulnerabilities with a few clicks.
This improves O&M efficiency. You can separately purchase the vulnerability fixing feature. You are charged based on the number of times that you perform vulnerability fixing.
webTamperProtectionOptional
public readonly webTamperProtection: boolean | IResolvable;
- Type: boolean | @alicloud/ros-cdk-core.IResolvable
Property webTamperProtection: To ensure that the website information of important systems is not maliciously tampered with, there are bad content such as hanging horses, black chains, illegal implantation of terrorist threats, pornography, etc.