v1.0 for Steampipe, Powerpipe, Flowpipe, 116 plugins, and 44 mods →
Steampipe logo 
Hub
Plugins
turbot/aws
Overview
504Tables
Versions
PowerpipeMods
GitHub
steampipe plugin install aws

Table: aws_shield_subscription - Query AWS Shield Advanced Subscription using SQL

AWS Shield Advanced is a DDoS protection service from AWS. For a monthly fee, Shield Advanced will protect your AWS resources against Distributed Denial of Service (DDoS) attacks.

Table Usage Guide

The aws_shield_subscription table in Steampipe allows you to query the current status of the AWS Shield Advanced Subscription of your account. This table provides you with insights into the start and end date of your subscription, the subscription limits or the status of the proactive engagement of the Shield Response Team. For more information about the individual fields, please refer to the AWS Shield Advanced API documentation.

Examples

Basic info

select
  subscription_state,
  start_time,
  end_time,
  auto_renew,
  proactive_engagement_status
from
  aws_shield_subscription;
select
  subscription_state,
  start_time,
  end_time,
  auto_renew,
  proactive_engagement_status
from
  aws_shield_subscription;

Check if the subscription is active and proactive engagement is enabled

select
  subscription_state,
  proactive_engagement_status
from
  aws_shield_subscription
where
  state = 'ACTIVE'
  and proactive_engagement_status = 'ENABLED';
select
  subscription_state,
  proactive_engagement_status
from
  aws_shield_subscription
where
  state = 'ACTIVE'
  and proactive_engagement_status = 'ENABLED';

Schema for aws_shield_subscription

NameTypeOperatorsDescription
_ctxjsonbSteampipe context in JSON form.
account_idtext=, !=, ~~, ~~*, !~~, !~~*The AWS Account ID in which the resource is located.
akasjsonbArray of globally unique identifier strings (also known as) for the resource.
arntextThe ARN (Amazon Resource Name) of the subscription.
auto_renewtextIf ENABLED, the subscription will be automatically renewed at the end of the existing subscription period.
end_timetimestamp with time zoneThe date and time your subscription will end.
limitsjsonbSpecifies how many protections of a given type you can create.
partitiontextThe AWS partition in which the resource is located (aws, aws-cn, or aws-us-gov).
proactive_engagement_statustextStatus of the proactive engagement of the Shield Response Team (SRT). Indicates if the Shield Response Team (SRT) will use the Shield emergency contact data to notify them about DDoS attacks.
regiontextThe AWS Region in which the resource is located.
sp_connection_nametext=, !=, ~~, ~~*, !~~, !~~*Steampipe connection name.
sp_ctxjsonbSteampipe context in JSON form.
start_timetimestamp with time zoneThe start time of the subscription.
subscription_limitsjsonbThe configured limits for your subscription.
subscription_statetextThe current state the subscription.
time_commitment_in_secondsbigintThe length, in seconds, of the Shield Advanced subscription for the account.
titletextTitle of the resource.

Export

This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:

/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- aws

You can pass the configuration to the command with the --config argument:

steampipe_export_aws --config '<your_config>' aws_shield_subscription