AWS elasticbeanstalk documentation change
Summary
Updated load balancer configuration options to support TLS for Network Load Balancers
Security assessment
The change adds TLS protocol support and extends SSL certificate/security policy options to Network Load Balancers. This documents security-related configuration capabilities (encryption and certificate management) but doesn't indicate any security vulnerability being fixed.
Diff
diff --git a/elasticbeanstalk/latest/dg/command-options-general.md b/elasticbeanstalk/latest/dg/command-options-general.md index b3bff4a18..cc408e870 100644 --- a//elasticbeanstalk/latest/dg/command-options-general.md +++ b//elasticbeanstalk/latest/dg/command-options-general.md @@ -738 +738 @@ ListenerEnabled | Set to `false` to disable the listener. You can use this opti -Protocol | The protocol of traffic to process. | With application load balancer: `HTTP` With network load balancer: `TCP` | With application load balancer: `HTTP`, `HTTPS` With network load balancer: `TCP` +Protocol | The protocol of traffic to process. | With application load balancer: `HTTP` With network load balancer: `TCP` | With application load balancer: `HTTP`, `HTTPS` With network load balancer: `TCP`, `TLS` @@ -740,2 +740,2 @@ Rules | A list of rules to apply to the listener This option is only applicable -SSLCertificateArns | The Amazon Resource Name (ARN) of the SSL certificate to bind to the listener. This option is only applicable to environments with an Application Load Balancer. | None | The ARN of a certificate stored in IAM or ACM. -SSLPolicy | Specify a security policy to apply to the listener. This option is only applicable to environments with an Application Load Balancer. | None (ELB default) | The name of a load balancer security policy. +SSLCertificateArns | The Amazon Resource Name (ARN) of the SSL certificate to bind to the listener. This option is only applicable to environments with an Application Load Balancer or Network Load Balancer. | None | The ARN of a certificate stored in IAM or ACM. +SSLPolicy | Specify a security policy to apply to the listener. This option is only applicable to environments with an Application Load Balancer or Network Load Balancer. | None (ELB default) | The name of a load balancer security policy. @@ -755 +755 @@ ListenerEnabled | Set to `false` to disable the listener. You can use this opti -Protocol | The protocol of traffic to process. | With application load balancer: `HTTP` With network load balancer: `TCP` | With application load balancer: `HTTP`, `HTTPS` With network load balancer: `TCP` +Protocol | The protocol of traffic to process. | With application load balancer: `HTTP` With network load balancer: `TCP` | With application load balancer: `HTTP`, `HTTPS` With network load balancer: `TCP`, `TLS` @@ -757,2 +757,2 @@ Rules | List of rules to apply to the listener This option is applicable only t -SSLCertificateArns | The Amazon Resource Name (ARN) of the SSL certificate to bind to the listener. This option is only applicable to environments with an Application Load Balancer. | None | The ARN of a certificate stored in IAM or ACM. -SSLPolicy | Specify a security policy to apply to the listener. This option is only applicable to environments with an Application Load Balancer. | None (ELB default) | The name of a load balancer security policy. +SSLCertificateArns | The Amazon Resource Name (ARN) of the SSL certificate to bind to the listener. This option is only applicable to environments with an Application Load Balancer or Network Load Balancer. | None | The ARN of a certificate stored in IAM or ACM. +SSLPolicy | Specify a security policy to apply to the listener. This option is only applicable to environments with an Application Load Balancer or Network Load Balancer. | None (ELB default) | The name of a load balancer security policy.