title | platform |
---|---|
About the aws_ec2_carrier_gateways Resource |
aws |
Use the aws_ec2_carrier_gateways
InSpec audit resource to test properties of the plural resource of AWS EC2 carrier gateway.
The AWS::EC2::CarrierGateway resource creates a carrier gateway.
Ensure that the carrier gateway exists.
describe aws_ec2_carrier_gateways do
it { should exist }
end
See the AWS documentation on AWS EC2 Carrier Gateway for additional information.
Property | Description | Field |
---|---|---|
carrier_gateway_ids | The ID of the carrier gateway. | carrier_gateway_id |
vpc_ids | The ID of the VPC (Virtual Private Cloud) associated with the carrier gateway. | vpc_id |
states | The state of the carrier gateway. | state |
owner_ids | The Amazon Web Services account ID of the owner of the carrier gateway. | owner_id |
tags | The tags assigned to the carrier gateway. | tags |
describe aws_ec2_carrier_gateways do
its('carrier_gateway_ids') { should include 'GATEWAY_ID' }
end
describe aws_ec2_carrier_gateways do
its('states') { should include 'available' }
end
This InSpec audit resource has the following special matchers. For a full list of available matchers, please visit our Universal Matchers page.
The controls will pass if the describe
method returns at least one result.
Use should
to test that the entity exists.
describe aws_ec2_carrier_gateways do
it { should exist }
end
Use should_not
to test the entity does not exist.
describe aws_ec2_carrier_gateways do
it { should_not exist }
end
Your Principal will need the EC2:Client:DescribeCarrierGatewaysResult
action with Effect
set to Allow
.