AWS::EC2::SubnetNetworkAclAssociation

Associates a subnet with a network ACL. For more information, see ReplaceNetworkAclAssociation in the Amazon Elastic Compute Cloud API Reference.

When AWS::EC2::SubnetNetworkAclAssociation resources are created during create or update operations, AWS CloudFormation adopts existing resources that share the same key properties (the properties that contribute to uniquely identify the resource). However, if the operation fails and rolls back, AWS CloudFormation deletes the previously out-of-band resources. You can protect against this behavior by using Retain deletion policies. For more information, see DeletionPolicy Attribute.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

{
  "Type" : "AWS::EC2::SubnetNetworkAclAssociation",
  "Properties" : {
      "NetworkAclId" : String,
      "SubnetId" : String
    }
}

Type: AWS::EC2::SubnetNetworkAclAssociation
Properties: 
  NetworkAclId: String
  SubnetId: String

Properties

Return Values

Ref

When you pass the logical ID of this resource to the intrinsic Ref function, Ref returns the ID of the subnet network ACL association.

For more information about using the Ref function, see Ref.

Fn::GetAtt

Examples

Subnet Network ACL Association

The following example associates subnet mySubnet with the myNetworkAcl network ACL.

"mySubnetNetworkAclAssociation" : {
   "Type" : "AWS::EC2::SubnetNetworkAclAssociation",
   "Properties" : {
      "SubnetId" : { "Ref" : "mySubnet" },
      "NetworkAclId" : { "Ref" : "myNetworkAcl" }
   }
}

   mySubnetNetworkAclAssociation:
     Type: AWS::EC2::SubnetNetworkAclAssociation
     Properties:
       SubnetId:
         Ref: mySubnet
       NetworkAclId:
         Ref: myNetworkAcl