(aws-elasticloadbalancingv2): Prevent using `denyAllIgwTraffic` for load balancers that do not use dual stack addressing

[moelasmar]

Describe the feature

Setting denyAllIgwTraffic flag for Load balancers with IPV4 addressing is not allowed, and cause this deployment error Load balancer attribute key 'ipv6.deny_all_igw_traffic' is not supported on load balancers with IP address type 'ipv4'.

Sample usecase:

new elbv2.NetworkLoadBalancer(stack, 'NLB', {
  vpc,
  crossZoneEnabled: true,
  deletionProtection: false,
  denyAllIgwTraffic: true,
  clientRoutingPolicy: elbv2.ClientRoutingPolicy.PARTIAL_AVAILABILITY_ZONE_AFFINITY,
});

Also, there are some integration test cases that could not be deployed because of this issue.

Use Case

It is better to figure out this issue during synthesize time instead of deployment time.

Proposed Solution

Prevent customers form setting denyAllIgwTraffic flag is the Load balancers do not use dual stack addressing.

Other Information

No response

Acknowledgements

• I may be able to implement this feature request
• This feature might incur a breaking change

CDK version used

v2.142.0

Environment details (OS name and version, etc.)

macos

[github-actions]

⚠️COMMENT VISIBILITY WARNING⚠️

Comments on closed issues are hard for our team to see.
If you need more assistance, please either tag a team member or open a new issue that references this one.
If you wish to keep having a conversation with other community members under this issue feel free to do so.