NLBInternalDeletionProtection

Enable AWS deletion protection on the internal NLBInternal. Same semantics as NLBDeletionProtection but scoped to the internal NLB.

| Default value | No | | Allowed values | Yes, No |

Use Cases

• Production Racks where internal-service traffic would be disrupted if the internal NLB were deleted
• Racks where internal Services are consumed by other AWS accounts or peered VPCs and an accidental delete would require DNS-level coordination to recover
• Shared Racks with multiple operators who have rack params set permission

Additional Information

$ convox rack params set NLBInternalDeletionProtection=Yes

Interlocks

• convox rack params set NLBInternal=No while NLBInternalDeletionProtection=Yes — rejected pre-flight with:

  cannot disable NLBInternal while NLBInternalDeletionProtection=Yes;
  unset protection first, wait for the update to complete, then toggle
  NLBInternal off
  

• convox rack uninstall while either NLBDeletionProtection=Yes or NLBInternalDeletionProtection=Yes is enabled — rejected pre-flight. The uninstall interlock is global across both schemes.

See NLBDeletionProtection for the rationale.

See Also

• NLBInternal
• NLBDeletionProtection
• rack uninstall
• Network Load Balancing