Enables AWS Shield Advanced for a specific AWS resource. The resource can be an Amazon CloudFront distribution, Elastic Load Balancing load balancer, AWS Global Accelerator accelerator, Elastic IP Address, or an Amazon Route 53 hosted zone.
shield_create_protection(Name, ResourceArn)[required] Friendly name for the Protection you are creating.
[required] The ARN (Amazon Resource Name) of the resource to be protected.
The ARN should be in one of the following formats:
For an Application Load Balancer:
arn:aws:elasticloadbalancing:<i>region</i>:<i>account-id</i>:loadbalancer/app/<i>load-balancer-name</i>/<i>load-balancer-id</i>
For an Elastic Load Balancer (Classic Load Balancer):
arn:aws:elasticloadbalancing:<i>region</i>:<i>account-id</i>:loadbalancer/<i>load-balancer-name</i>
For an AWS CloudFront distribution:
arn:aws:cloudfront::<i>account-id</i>:distribution/<i>distribution-id</i>
For an AWS Global Accelerator accelerator:
arn:aws:globalaccelerator::<i>account-id</i>:accelerator/<i>accelerator-id</i>
For Amazon Route 53:
arn:aws:route53:::hostedzone/<i>hosted-zone-id</i>
For an Elastic IP address:
arn:aws:ec2:<i>region</i>:<i>account-id</i>:eip-allocation/<i>allocation-id</i>
svc$create_protection( Name = "string", ResourceArn = "string" )
You can add protection to only a single resource with each CreateProtection request. If you want to add protection to multiple resources at once, use the AWS WAF console. For more information see Getting Started with AWS Shield Advanced and Add AWS Shield Advanced Protection to more AWS Resources.