turbot/alicloud

steampipe plugin install alicloudsteampipe plugin install alicloud

Table: alicloud_vpc_ssl_vpn_server

A Secure Socket Layer Virtual Private Network (SSL VPN) lets remote users access Web applications, client-server apps, and internal network utilities and directories without the need for specialized client software. SSL VPN provide safe communication for all types of device traffic across public networks and private networks.

Examples

Basic info

select
name,
ssl_vpn_server_id,
cipher,
max_connections,
port,
proto
from
alicloud_vpc_ssl_vpn_server;

Get the SSL VPN servers that do not compress the transmitted data

select
name,
ssl_vpn_server_id,
is_compressed
from
alicloud_vpc_ssl_vpn_server
where
not is_compressed;

List of all SSL VPN servers that do not use AES-256-CBC encryption

select
name,
ssl_vpn_server_id,
cipher
from
alicloud_vpc_ssl_vpn_server
where
cipher <> 'AES-256-CBC';

List of all SSL VPN servers for which Two-factor Authentication is not enabled

select
name,
ssl_vpn_server_id,
enable_multi_factor_auth
from
alicloud_vpc_ssl_vpn_server
where
not enable_multi_factor_auth;

View SSL VPN server IP information

select
name,
ssl_vpn_server_id,
internet_ip,
client_ip_pool,
local_subnet
from
alicloud_vpc_ssl_vpn_server;

List of Client Certs for each SSL VPN server

select
s.name,
s.ssl_vpn_server_id,
c.name,
c.ssl_vpn_client_cert_id
from
alicloud_vpc_ssl_vpn_server as s
left join alicloud_vpc_ssl_vpn_client_cert as c
on s.ssl_vpn_server_id = c.ssl_vpn_server_id

Count of Client Certs for each SSL VPN server

select
s.name,
count(c.ssl_vpn_client_cert_id)
from
alicloud_vpc_ssl_vpn_server as s
left join alicloud_vpc_ssl_vpn_client_cert as c
on s.ssl_vpn_server_id = c.ssl_vpn_server_id
group by
s.name;

.inspect alicloud_vpc_ssl_vpn_server

SSL Server refers to the SSL-VPN server within the VPC. It authenticates clients and manages configurations.

NameTypeDescription
account_idtextThe Alicloud Account ID in which the resource is located.
akasjsonbArray of globally unique identifier strings (also known as) for the resource.
ciphertextThe encryption algorithm.
client_ip_poolcidrThe client IP address pool.
connectionsbigintThe total number of current connections.
create_timetimestamp without time zoneThe time when the SSL-VPN server was created.
enable_multi_factor_authbooleanIndicates whether the multi factor authenticaton is enabled.
internet_ipinetThe public IP address.
is_compressedbooleanIndicates whether the transmitted data is compressed.
local_subnettextThe CIDR block of the client.
max_connectionsbigintThe maximum number of connections.
nametextThe name of the SSL-VPN server.
portbigintThe port used by the SSL-VPN server.
prototextThe protocol used by the SSL-VPN server.
regiontextThe Alicloud region in which the resource is located.
ssl_vpn_server_idtextThe ID of the SSL-VPN server.
titletextTitle of the resource.
vpn_gateway_idtextThe ID of the VPN gateway.