aws-sdk-ec2 1.370.0 → 1.372.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -576,21 +576,56 @@ module Aws::EC2
576
576
  include Aws::Structure
577
577
  end
578
578
 
579
- # Describes an additional detail for a path analysis.
579
+ # Describes an additional detail for a path analysis. For more
580
+ # information, see [Reachability Analyzer additional detail codes][1].
581
+ #
582
+ #
583
+ #
584
+ # [1]: https://docs.aws.amazon.com/vpc/latest/reachability/additional-detail-codes.html
580
585
  #
581
586
  # @!attribute [rw] additional_detail_type
582
- # The information type.
587
+ # The additional detail code.
583
588
  # @return [String]
584
589
  #
585
590
  # @!attribute [rw] component
586
591
  # The path component.
587
592
  # @return [Types::AnalysisComponent]
588
593
  #
594
+ # @!attribute [rw] vpc_endpoint_service
595
+ # The VPC endpoint service.
596
+ # @return [Types::AnalysisComponent]
597
+ #
598
+ # @!attribute [rw] rule_options
599
+ # The rule options.
600
+ # @return [Array<Types::RuleOption>]
601
+ #
602
+ # @!attribute [rw] rule_group_type_pairs
603
+ # The rule group type.
604
+ # @return [Array<Types::RuleGroupTypePair>]
605
+ #
606
+ # @!attribute [rw] rule_group_rule_options_pairs
607
+ # The rule options.
608
+ # @return [Array<Types::RuleGroupRuleOptionsPair>]
609
+ #
610
+ # @!attribute [rw] service_name
611
+ # The name of the VPC endpoint service.
612
+ # @return [String]
613
+ #
614
+ # @!attribute [rw] load_balancers
615
+ # The load balancers.
616
+ # @return [Array<Types::AnalysisComponent>]
617
+ #
589
618
  # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/AdditionalDetail AWS API Documentation
590
619
  #
591
620
  class AdditionalDetail < Struct.new(
592
621
  :additional_detail_type,
593
- :component)
622
+ :component,
623
+ :vpc_endpoint_service,
624
+ :rule_options,
625
+ :rule_group_type_pairs,
626
+ :rule_group_rule_options_pairs,
627
+ :service_name,
628
+ :load_balancers)
594
629
  SENSITIVE = []
595
630
  include Aws::Structure
596
631
  end
@@ -1389,6 +1424,18 @@ module Aws::EC2
1389
1424
  # * blackhole
1390
1425
  # @return [String]
1391
1426
  #
1427
+ # @!attribute [rw] carrier_gateway_id
1428
+ # The ID of a carrier gateway.
1429
+ # @return [String]
1430
+ #
1431
+ # @!attribute [rw] core_network_arn
1432
+ # The Amazon Resource Name (ARN) of a core network.
1433
+ # @return [String]
1434
+ #
1435
+ # @!attribute [rw] local_gateway_id
1436
+ # The ID of a local gateway.
1437
+ # @return [String]
1438
+ #
1392
1439
  # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/AnalysisRouteTableRoute AWS API Documentation
1393
1440
  #
1394
1441
  class AnalysisRouteTableRoute < Struct.new(
@@ -1402,7 +1449,10 @@ module Aws::EC2
1402
1449
  :origin,
1403
1450
  :transit_gateway_id,
1404
1451
  :vpc_peering_connection_id,
1405
- :state)
1452
+ :state,
1453
+ :carrier_gateway_id,
1454
+ :core_network_arn,
1455
+ :local_gateway_id)
1406
1456
  SENSITIVE = []
1407
1457
  include Aws::Structure
1408
1458
  end
@@ -9013,22 +9063,21 @@ module Aws::EC2
9013
9063
  end
9014
9064
 
9015
9065
  # @!attribute [rw] source_ip
9016
- # The IP address of the Amazon Web Services resource that is the
9017
- # source of the path.
9066
+ # The IP address of the source.
9018
9067
  # @return [String]
9019
9068
  #
9020
9069
  # @!attribute [rw] destination_ip
9021
- # The IP address of the Amazon Web Services resource that is the
9022
- # destination of the path.
9070
+ # The IP address of the destination.
9023
9071
  # @return [String]
9024
9072
  #
9025
9073
  # @!attribute [rw] source
9026
- # The Amazon Web Services resource that is the source of the path.
9074
+ # The ID or ARN of the source. If the resource is in another account,
9075
+ # you must specify an ARN.
9027
9076
  # @return [String]
9028
9077
  #
9029
9078
  # @!attribute [rw] destination
9030
- # The Amazon Web Services resource that is the destination of the
9031
- # path.
9079
+ # The ID or ARN of the destination. If the resource is in another
9080
+ # account, you must specify an ARN.
9032
9081
  # @return [String]
9033
9082
  #
9034
9083
  # @!attribute [rw] protocol
@@ -9063,6 +9112,18 @@ module Aws::EC2
9063
9112
  # [1]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/Run_Instance_Idempotency.html
9064
9113
  # @return [String]
9065
9114
  #
9115
+ # @!attribute [rw] filter_at_source
9116
+ # Scopes the analysis to network paths that match specific filters at
9117
+ # the source. If you specify this parameter, you can't specify the
9118
+ # parameters for the source IP address or the destination port.
9119
+ # @return [Types::PathRequestFilter]
9120
+ #
9121
+ # @!attribute [rw] filter_at_destination
9122
+ # Scopes the analysis to network paths that match specific filters at
9123
+ # the destination. If you specify this parameter, you can't specify
9124
+ # the parameter for the destination IP address.
9125
+ # @return [Types::PathRequestFilter]
9126
+ #
9066
9127
  # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/CreateNetworkInsightsPathRequest AWS API Documentation
9067
9128
  #
9068
9129
  class CreateNetworkInsightsPathRequest < Struct.new(
@@ -9074,7 +9135,9 @@ module Aws::EC2
9074
9135
  :destination_port,
9075
9136
  :tag_specifications,
9076
9137
  :dry_run,
9077
- :client_token)
9138
+ :client_token,
9139
+ :filter_at_source,
9140
+ :filter_at_destination)
9078
9141
  SENSITIVE = []
9079
9142
  include Aws::Structure
9080
9143
  end
@@ -9750,7 +9813,7 @@ module Aws::EC2
9750
9813
  end
9751
9814
 
9752
9815
  # @!attribute [rw] description
9753
- # A description for the security group. This is informational only.
9816
+ # A description for the security group.
9754
9817
  #
9755
9818
  # Constraints: Up to 255 characters in length
9756
9819
  #
@@ -21241,7 +21304,29 @@ module Aws::EC2
21241
21304
  #
21242
21305
  # * destination - The ID of the resource.
21243
21306
  #
21244
- # * destination-port - The destination port.
21307
+ # * filter-at-source.source-address - The source IPv4 address at the
21308
+ # source.
21309
+ #
21310
+ # * filter-at-source.source-port-range - The source port range at the
21311
+ # source.
21312
+ #
21313
+ # * filter-at-source.destination-address - The destination IPv4
21314
+ # address at the source.
21315
+ #
21316
+ # * filter-at-source.destination-port-range - The destination port
21317
+ # range at the source.
21318
+ #
21319
+ # * filter-at-destination.source-address - The source IPv4 address at
21320
+ # the destination.
21321
+ #
21322
+ # * filter-at-destination.source-port-range - The source port range at
21323
+ # the destination.
21324
+ #
21325
+ # * filter-at-destination.destination-address - The destination IPv4
21326
+ # address at the destination.
21327
+ #
21328
+ # * filter-at-destination.destination-port-range - The destination
21329
+ # port range at the destination.
21245
21330
  #
21246
21331
  # * protocol - The protocol.
21247
21332
  #
@@ -28244,7 +28329,7 @@ module Aws::EC2
28244
28329
  :bytes,
28245
28330
  :format,
28246
28331
  :import_manifest_url)
28247
- SENSITIVE = []
28332
+ SENSITIVE = [:import_manifest_url]
28248
28333
  include Aws::Structure
28249
28334
  end
28250
28335
 
@@ -30007,6 +30092,14 @@ module Aws::EC2
30007
30092
  # The Region for the component.
30008
30093
  # @return [String]
30009
30094
  #
30095
+ # @!attribute [rw] firewall_stateless_rule
30096
+ # The Network Firewall stateless rule.
30097
+ # @return [Types::FirewallStatelessRule]
30098
+ #
30099
+ # @!attribute [rw] firewall_stateful_rule
30100
+ # The Network Firewall stateful rule.
30101
+ # @return [Types::FirewallStatefulRule]
30102
+ #
30010
30103
  # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/Explanation AWS API Documentation
30011
30104
  #
30012
30105
  class Explanation < Struct.new(
@@ -30060,7 +30153,9 @@ module Aws::EC2
30060
30153
  :transit_gateway_route_table_route,
30061
30154
  :transit_gateway_attachment,
30062
30155
  :component_account,
30063
- :component_region)
30156
+ :component_region,
30157
+ :firewall_stateless_rule,
30158
+ :firewall_stateful_rule)
30064
30159
  SENSITIVE = []
30065
30160
  include Aws::Structure
30066
30161
  end
@@ -30731,6 +30826,125 @@ module Aws::EC2
30731
30826
  include Aws::Structure
30732
30827
  end
30733
30828
 
30829
+ # Describes a port range.
30830
+ #
30831
+ # @!attribute [rw] from_port
30832
+ # The first port in the range.
30833
+ # @return [Integer]
30834
+ #
30835
+ # @!attribute [rw] to_port
30836
+ # The last port in the range.
30837
+ # @return [Integer]
30838
+ #
30839
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/FilterPortRange AWS API Documentation
30840
+ #
30841
+ class FilterPortRange < Struct.new(
30842
+ :from_port,
30843
+ :to_port)
30844
+ SENSITIVE = []
30845
+ include Aws::Structure
30846
+ end
30847
+
30848
+ # Describes a stateful rule.
30849
+ #
30850
+ # @!attribute [rw] rule_group_arn
30851
+ # The ARN of the stateful rule group.
30852
+ # @return [String]
30853
+ #
30854
+ # @!attribute [rw] sources
30855
+ # The source IP addresses, in CIDR notation.
30856
+ # @return [Array<String>]
30857
+ #
30858
+ # @!attribute [rw] destinations
30859
+ # The destination IP addresses, in CIDR notation.
30860
+ # @return [Array<String>]
30861
+ #
30862
+ # @!attribute [rw] source_ports
30863
+ # The source ports.
30864
+ # @return [Array<Types::PortRange>]
30865
+ #
30866
+ # @!attribute [rw] destination_ports
30867
+ # The destination ports.
30868
+ # @return [Array<Types::PortRange>]
30869
+ #
30870
+ # @!attribute [rw] protocol
30871
+ # The protocol.
30872
+ # @return [String]
30873
+ #
30874
+ # @!attribute [rw] rule_action
30875
+ # The rule action. The possible values are `pass`, `drop`, and
30876
+ # `alert`.
30877
+ # @return [String]
30878
+ #
30879
+ # @!attribute [rw] direction
30880
+ # The direction. The possible values are `FORWARD` and `ANY`.
30881
+ # @return [String]
30882
+ #
30883
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/FirewallStatefulRule AWS API Documentation
30884
+ #
30885
+ class FirewallStatefulRule < Struct.new(
30886
+ :rule_group_arn,
30887
+ :sources,
30888
+ :destinations,
30889
+ :source_ports,
30890
+ :destination_ports,
30891
+ :protocol,
30892
+ :rule_action,
30893
+ :direction)
30894
+ SENSITIVE = []
30895
+ include Aws::Structure
30896
+ end
30897
+
30898
+ # Describes a stateless rule.
30899
+ #
30900
+ # @!attribute [rw] rule_group_arn
30901
+ # The ARN of the stateless rule group.
30902
+ # @return [String]
30903
+ #
30904
+ # @!attribute [rw] sources
30905
+ # The source IP addresses, in CIDR notation.
30906
+ # @return [Array<String>]
30907
+ #
30908
+ # @!attribute [rw] destinations
30909
+ # The destination IP addresses, in CIDR notation.
30910
+ # @return [Array<String>]
30911
+ #
30912
+ # @!attribute [rw] source_ports
30913
+ # The source ports.
30914
+ # @return [Array<Types::PortRange>]
30915
+ #
30916
+ # @!attribute [rw] destination_ports
30917
+ # The destination ports.
30918
+ # @return [Array<Types::PortRange>]
30919
+ #
30920
+ # @!attribute [rw] protocols
30921
+ # The protocols.
30922
+ # @return [Array<Integer>]
30923
+ #
30924
+ # @!attribute [rw] rule_action
30925
+ # The rule action. The possible values are `pass`, `drop`, and
30926
+ # `forward_to_site`.
30927
+ # @return [String]
30928
+ #
30929
+ # @!attribute [rw] priority
30930
+ # The rule priority.
30931
+ # @return [Integer]
30932
+ #
30933
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/FirewallStatelessRule AWS API Documentation
30934
+ #
30935
+ class FirewallStatelessRule < Struct.new(
30936
+ :rule_group_arn,
30937
+ :sources,
30938
+ :destinations,
30939
+ :source_ports,
30940
+ :destination_ports,
30941
+ :protocols,
30942
+ :rule_action,
30943
+ :priority)
30944
+ SENSITIVE = []
30945
+ include Aws::Structure
30946
+ end
30947
+
30734
30948
  # Information about a Capacity Reservation in a Capacity Reservation
30735
30949
  # Fleet.
30736
30950
  #
@@ -34087,6 +34301,68 @@ module Aws::EC2
34087
34301
  include Aws::Structure
34088
34302
  end
34089
34303
 
34304
+ # @!attribute [rw] vpn_connection_id
34305
+ # The ID of the Site-to-Site VPN connection.
34306
+ # @return [String]
34307
+ #
34308
+ # @!attribute [rw] vpn_tunnel_outside_ip_address
34309
+ # The external IP address of the VPN tunnel.
34310
+ # @return [String]
34311
+ #
34312
+ # @!attribute [rw] dry_run
34313
+ # Checks whether you have the required permissions for the action,
34314
+ # without actually making the request, and provides an error response.
34315
+ # If you have the required permissions, the error response is
34316
+ # `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
34317
+ # @return [Boolean]
34318
+ #
34319
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/GetVpnTunnelReplacementStatusRequest AWS API Documentation
34320
+ #
34321
+ class GetVpnTunnelReplacementStatusRequest < Struct.new(
34322
+ :vpn_connection_id,
34323
+ :vpn_tunnel_outside_ip_address,
34324
+ :dry_run)
34325
+ SENSITIVE = []
34326
+ include Aws::Structure
34327
+ end
34328
+
34329
+ # @!attribute [rw] vpn_connection_id
34330
+ # The ID of the Site-to-Site VPN connection.
34331
+ # @return [String]
34332
+ #
34333
+ # @!attribute [rw] transit_gateway_id
34334
+ # The ID of the transit gateway associated with the VPN connection.
34335
+ # @return [String]
34336
+ #
34337
+ # @!attribute [rw] customer_gateway_id
34338
+ # The ID of the customer gateway.
34339
+ # @return [String]
34340
+ #
34341
+ # @!attribute [rw] vpn_gateway_id
34342
+ # The ID of the virtual private gateway.
34343
+ # @return [String]
34344
+ #
34345
+ # @!attribute [rw] vpn_tunnel_outside_ip_address
34346
+ # The external IP address of the VPN tunnel.
34347
+ # @return [String]
34348
+ #
34349
+ # @!attribute [rw] maintenance_details
34350
+ # Get details of pending tunnel endpoint maintenance.
34351
+ # @return [Types::MaintenanceDetails]
34352
+ #
34353
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/GetVpnTunnelReplacementStatusResult AWS API Documentation
34354
+ #
34355
+ class GetVpnTunnelReplacementStatusResult < Struct.new(
34356
+ :vpn_connection_id,
34357
+ :transit_gateway_id,
34358
+ :customer_gateway_id,
34359
+ :vpn_gateway_id,
34360
+ :vpn_tunnel_outside_ip_address,
34361
+ :maintenance_details)
34362
+ SENSITIVE = []
34363
+ include Aws::Structure
34364
+ end
34365
+
34090
34366
  # Describes the GPU accelerators for the instance type.
34091
34367
  #
34092
34368
  # @!attribute [rw] name
@@ -42876,6 +43152,31 @@ module Aws::EC2
42876
43152
  include Aws::Structure
42877
43153
  end
42878
43154
 
43155
+ # Details for Site-to-Site VPN tunnel endpoint maintenance events.
43156
+ #
43157
+ # @!attribute [rw] pending_maintenance
43158
+ # Verify existence of a pending maintenance.
43159
+ # @return [String]
43160
+ #
43161
+ # @!attribute [rw] maintenance_auto_applied_after
43162
+ # The timestamp after which Amazon Web Services will automatically
43163
+ # apply maintenance.
43164
+ # @return [Time]
43165
+ #
43166
+ # @!attribute [rw] last_maintenance_applied
43167
+ # Timestamp of last applied maintenance.
43168
+ # @return [Time]
43169
+ #
43170
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/MaintenanceDetails AWS API Documentation
43171
+ #
43172
+ class MaintenanceDetails < Struct.new(
43173
+ :pending_maintenance,
43174
+ :maintenance_auto_applied_after,
43175
+ :last_maintenance_applied)
43176
+ SENSITIVE = []
43177
+ include Aws::Structure
43178
+ end
43179
+
42879
43180
  # Describes a managed prefix list.
42880
43181
  #
42881
43182
  # @!attribute [rw] prefix_list_id
@@ -47086,13 +47387,20 @@ module Aws::EC2
47086
47387
  # `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
47087
47388
  # @return [Boolean]
47088
47389
  #
47390
+ # @!attribute [rw] skip_tunnel_replacement
47391
+ # Choose whether or not to trigger immediate tunnel replacement.
47392
+ #
47393
+ # Valid values: `True` \| `False`
47394
+ # @return [Boolean]
47395
+ #
47089
47396
  # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyVpnTunnelOptionsRequest AWS API Documentation
47090
47397
  #
47091
47398
  class ModifyVpnTunnelOptionsRequest < Struct.new(
47092
47399
  :vpn_connection_id,
47093
47400
  :vpn_tunnel_outside_ip_address,
47094
47401
  :tunnel_options,
47095
- :dry_run)
47402
+ :dry_run,
47403
+ :skip_tunnel_replacement)
47096
47404
  SENSITIVE = []
47097
47405
  include Aws::Structure
47098
47406
  end
@@ -47281,6 +47589,10 @@ module Aws::EC2
47281
47589
  # Options for logging VPN tunnel activity.
47282
47590
  # @return [Types::VpnTunnelLogOptionsSpecification]
47283
47591
  #
47592
+ # @!attribute [rw] enable_tunnel_lifecycle_control
47593
+ # Turn on or off tunnel endpoint lifecycle control feature.
47594
+ # @return [Boolean]
47595
+ #
47284
47596
  # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyVpnTunnelOptionsSpecification AWS API Documentation
47285
47597
  #
47286
47598
  class ModifyVpnTunnelOptionsSpecification < Struct.new(
@@ -47302,7 +47614,8 @@ module Aws::EC2
47302
47614
  :phase_2_dh_group_numbers,
47303
47615
  :ike_versions,
47304
47616
  :startup_action,
47305
- :log_options)
47617
+ :log_options,
47618
+ :enable_tunnel_lifecycle_control)
47306
47619
  SENSITIVE = []
47307
47620
  include Aws::Structure
47308
47621
  end
@@ -48069,8 +48382,8 @@ module Aws::EC2
48069
48382
  # @return [Array<String>]
48070
48383
  #
48071
48384
  # @!attribute [rw] filter_in_arns
48072
- # The Amazon Resource Names (ARN) of the Amazon Web Services resources
48073
- # that the path must traverse.
48385
+ # The Amazon Resource Names (ARN) of the resources that the path must
48386
+ # traverse.
48074
48387
  # @return [Array<String>]
48075
48388
  #
48076
48389
  # @!attribute [rw] start_date
@@ -48160,12 +48473,11 @@ module Aws::EC2
48160
48473
  # @return [Time]
48161
48474
  #
48162
48475
  # @!attribute [rw] source
48163
- # The Amazon Web Services resource that is the source of the path.
48476
+ # The ID of the source.
48164
48477
  # @return [String]
48165
48478
  #
48166
48479
  # @!attribute [rw] destination
48167
- # The Amazon Web Services resource that is the destination of the
48168
- # path.
48480
+ # The ID of the destination.
48169
48481
  # @return [String]
48170
48482
  #
48171
48483
  # @!attribute [rw] source_arn
@@ -48177,13 +48489,11 @@ module Aws::EC2
48177
48489
  # @return [String]
48178
48490
  #
48179
48491
  # @!attribute [rw] source_ip
48180
- # The IP address of the Amazon Web Services resource that is the
48181
- # source of the path.
48492
+ # The IP address of the source.
48182
48493
  # @return [String]
48183
48494
  #
48184
48495
  # @!attribute [rw] destination_ip
48185
- # The IP address of the Amazon Web Services resource that is the
48186
- # destination of the path.
48496
+ # The IP address of the destination.
48187
48497
  # @return [String]
48188
48498
  #
48189
48499
  # @!attribute [rw] protocol
@@ -48198,6 +48508,16 @@ module Aws::EC2
48198
48508
  # The tags associated with the path.
48199
48509
  # @return [Array<Types::Tag>]
48200
48510
  #
48511
+ # @!attribute [rw] filter_at_source
48512
+ # Scopes the analysis to network paths that match specific filters at
48513
+ # the source.
48514
+ # @return [Types::PathFilter]
48515
+ #
48516
+ # @!attribute [rw] filter_at_destination
48517
+ # Scopes the analysis to network paths that match specific filters at
48518
+ # the destination.
48519
+ # @return [Types::PathFilter]
48520
+ #
48201
48521
  # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/NetworkInsightsPath AWS API Documentation
48202
48522
  #
48203
48523
  class NetworkInsightsPath < Struct.new(
@@ -48212,7 +48532,9 @@ module Aws::EC2
48212
48532
  :destination_ip,
48213
48533
  :protocol,
48214
48534
  :destination_port,
48215
- :tags)
48535
+ :tags,
48536
+ :filter_at_source,
48537
+ :filter_at_destination)
48216
48538
  SENSITIVE = []
48217
48539
  include Aws::Structure
48218
48540
  end
@@ -48985,6 +49307,18 @@ module Aws::EC2
48985
49307
  # The load balancer listener.
48986
49308
  # @return [Types::AnalysisComponent]
48987
49309
  #
49310
+ # @!attribute [rw] firewall_stateless_rule
49311
+ # The Network Firewall stateless rule.
49312
+ # @return [Types::FirewallStatelessRule]
49313
+ #
49314
+ # @!attribute [rw] firewall_stateful_rule
49315
+ # The Network Firewall stateful rule.
49316
+ # @return [Types::FirewallStatefulRule]
49317
+ #
49318
+ # @!attribute [rw] service_name
49319
+ # The name of the VPC endpoint service.
49320
+ # @return [String]
49321
+ #
48988
49322
  # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/PathComponent AWS API Documentation
48989
49323
  #
48990
49324
  class PathComponent < Struct.new(
@@ -49004,7 +49338,70 @@ module Aws::EC2
49004
49338
  :transit_gateway,
49005
49339
  :transit_gateway_route_table_route,
49006
49340
  :explanations,
49007
- :elastic_load_balancer_listener)
49341
+ :elastic_load_balancer_listener,
49342
+ :firewall_stateless_rule,
49343
+ :firewall_stateful_rule,
49344
+ :service_name)
49345
+ SENSITIVE = []
49346
+ include Aws::Structure
49347
+ end
49348
+
49349
+ # Describes a set of filters for a path analysis. Use path filters to
49350
+ # scope the analysis when there can be multiple resulting paths.
49351
+ #
49352
+ # @!attribute [rw] source_address
49353
+ # The source IPv4 address.
49354
+ # @return [String]
49355
+ #
49356
+ # @!attribute [rw] source_port_range
49357
+ # The source port range.
49358
+ # @return [Types::FilterPortRange]
49359
+ #
49360
+ # @!attribute [rw] destination_address
49361
+ # The destination IPv4 address.
49362
+ # @return [String]
49363
+ #
49364
+ # @!attribute [rw] destination_port_range
49365
+ # The destination port range.
49366
+ # @return [Types::FilterPortRange]
49367
+ #
49368
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/PathFilter AWS API Documentation
49369
+ #
49370
+ class PathFilter < Struct.new(
49371
+ :source_address,
49372
+ :source_port_range,
49373
+ :destination_address,
49374
+ :destination_port_range)
49375
+ SENSITIVE = []
49376
+ include Aws::Structure
49377
+ end
49378
+
49379
+ # Describes a set of filters for a path analysis. Use path filters to
49380
+ # scope the analysis when there can be multiple resulting paths.
49381
+ #
49382
+ # @!attribute [rw] source_address
49383
+ # The source IPv4 address.
49384
+ # @return [String]
49385
+ #
49386
+ # @!attribute [rw] source_port_range
49387
+ # The source port range.
49388
+ # @return [Types::RequestFilterPortRange]
49389
+ #
49390
+ # @!attribute [rw] destination_address
49391
+ # The destination IPv4 address.
49392
+ # @return [String]
49393
+ #
49394
+ # @!attribute [rw] destination_port_range
49395
+ # The destination port range.
49396
+ # @return [Types::RequestFilterPortRange]
49397
+ #
49398
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/PathRequestFilter AWS API Documentation
49399
+ #
49400
+ class PathRequestFilter < Struct.new(
49401
+ :source_address,
49402
+ :source_port_range,
49403
+ :destination_address,
49404
+ :destination_port_range)
49008
49405
  SENSITIVE = []
49009
49406
  include Aws::Structure
49010
49407
  end
@@ -51813,6 +52210,48 @@ module Aws::EC2
51813
52210
  include Aws::Structure
51814
52211
  end
51815
52212
 
52213
+ # @!attribute [rw] vpn_connection_id
52214
+ # The ID of the Site-to-Site VPN connection.
52215
+ # @return [String]
52216
+ #
52217
+ # @!attribute [rw] vpn_tunnel_outside_ip_address
52218
+ # The external IP address of the VPN tunnel.
52219
+ # @return [String]
52220
+ #
52221
+ # @!attribute [rw] apply_pending_maintenance
52222
+ # Trigger pending tunnel endpoint maintenance.
52223
+ # @return [Boolean]
52224
+ #
52225
+ # @!attribute [rw] dry_run
52226
+ # Checks whether you have the required permissions for the action,
52227
+ # without actually making the request, and provides an error response.
52228
+ # If you have the required permissions, the error response is
52229
+ # `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
52230
+ # @return [Boolean]
52231
+ #
52232
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ReplaceVpnTunnelRequest AWS API Documentation
52233
+ #
52234
+ class ReplaceVpnTunnelRequest < Struct.new(
52235
+ :vpn_connection_id,
52236
+ :vpn_tunnel_outside_ip_address,
52237
+ :apply_pending_maintenance,
52238
+ :dry_run)
52239
+ SENSITIVE = []
52240
+ include Aws::Structure
52241
+ end
52242
+
52243
+ # @!attribute [rw] return
52244
+ # Confirmation of replace tunnel operation.
52245
+ # @return [Boolean]
52246
+ #
52247
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ReplaceVpnTunnelResult AWS API Documentation
52248
+ #
52249
+ class ReplaceVpnTunnelResult < Struct.new(
52250
+ :return)
52251
+ SENSITIVE = []
52252
+ include Aws::Structure
52253
+ end
52254
+
51816
52255
  # @!attribute [rw] description
51817
52256
  # Descriptive text about the health state of your instance.
51818
52257
  # @return [String]
@@ -51883,6 +52322,25 @@ module Aws::EC2
51883
52322
  include Aws::Structure
51884
52323
  end
51885
52324
 
52325
+ # Describes a port range.
52326
+ #
52327
+ # @!attribute [rw] from_port
52328
+ # The first port in the range.
52329
+ # @return [Integer]
52330
+ #
52331
+ # @!attribute [rw] to_port
52332
+ # The last port in the range.
52333
+ # @return [Integer]
52334
+ #
52335
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/RequestFilterPortRange AWS API Documentation
52336
+ #
52337
+ class RequestFilterPortRange < Struct.new(
52338
+ :from_port,
52339
+ :to_port)
52340
+ SENSITIVE = []
52341
+ include Aws::Structure
52342
+ end
52343
+
51886
52344
  # A tag on an IPAM resource.
51887
52345
  #
51888
52346
  # @!attribute [rw] key
@@ -54328,6 +54786,64 @@ module Aws::EC2
54328
54786
  include Aws::Structure
54329
54787
  end
54330
54788
 
54789
+ # Describes the rule options for a stateful rule group.
54790
+ #
54791
+ # @!attribute [rw] rule_group_arn
54792
+ # The ARN of the rule group.
54793
+ # @return [String]
54794
+ #
54795
+ # @!attribute [rw] rule_options
54796
+ # The rule options.
54797
+ # @return [Array<Types::RuleOption>]
54798
+ #
54799
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/RuleGroupRuleOptionsPair AWS API Documentation
54800
+ #
54801
+ class RuleGroupRuleOptionsPair < Struct.new(
54802
+ :rule_group_arn,
54803
+ :rule_options)
54804
+ SENSITIVE = []
54805
+ include Aws::Structure
54806
+ end
54807
+
54808
+ # Describes the type of a stateful rule group.
54809
+ #
54810
+ # @!attribute [rw] rule_group_arn
54811
+ # The ARN of the rule group.
54812
+ # @return [String]
54813
+ #
54814
+ # @!attribute [rw] rule_group_type
54815
+ # The rule group type. The possible values are `Domain List` and
54816
+ # `Suricata`.
54817
+ # @return [String]
54818
+ #
54819
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/RuleGroupTypePair AWS API Documentation
54820
+ #
54821
+ class RuleGroupTypePair < Struct.new(
54822
+ :rule_group_arn,
54823
+ :rule_group_type)
54824
+ SENSITIVE = []
54825
+ include Aws::Structure
54826
+ end
54827
+
54828
+ # Describes additional settings for a stateful rule.
54829
+ #
54830
+ # @!attribute [rw] keyword
54831
+ # The Suricata keyword.
54832
+ # @return [String]
54833
+ #
54834
+ # @!attribute [rw] settings
54835
+ # The settings for the keyword.
54836
+ # @return [Array<String>]
54837
+ #
54838
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/RuleOption AWS API Documentation
54839
+ #
54840
+ class RuleOption < Struct.new(
54841
+ :keyword,
54842
+ :settings)
54843
+ SENSITIVE = []
54844
+ include Aws::Structure
54845
+ end
54846
+
54331
54847
  # Describes the monitoring of an instance.
54332
54848
  #
54333
54849
  # @!attribute [rw] enabled
@@ -61297,6 +61813,10 @@ module Aws::EC2
61297
61813
  # Options for logging VPN tunnel activity.
61298
61814
  # @return [Types::VpnTunnelLogOptions]
61299
61815
  #
61816
+ # @!attribute [rw] enable_tunnel_lifecycle_control
61817
+ # Status of tunnel endpoint lifecycle control feature.
61818
+ # @return [Boolean]
61819
+ #
61300
61820
  # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/TunnelOption AWS API Documentation
61301
61821
  #
61302
61822
  class TunnelOption < Struct.new(
@@ -61319,7 +61839,8 @@ module Aws::EC2
61319
61839
  :phase_2_dh_group_numbers,
61320
61840
  :ike_versions,
61321
61841
  :startup_action,
61322
- :log_options)
61842
+ :log_options,
61843
+ :enable_tunnel_lifecycle_control)
61323
61844
  SENSITIVE = []
61324
61845
  include Aws::Structure
61325
61846
  end
@@ -64046,6 +64567,10 @@ module Aws::EC2
64046
64567
  # Options for logging VPN tunnel activity.
64047
64568
  # @return [Types::VpnTunnelLogOptionsSpecification]
64048
64569
  #
64570
+ # @!attribute [rw] enable_tunnel_lifecycle_control
64571
+ # Turn on or off tunnel endpoint lifecycle control feature.
64572
+ # @return [Boolean]
64573
+ #
64049
64574
  # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/VpnTunnelOptionsSpecification AWS API Documentation
64050
64575
  #
64051
64576
  class VpnTunnelOptionsSpecification < Struct.new(
@@ -64067,7 +64592,8 @@ module Aws::EC2
64067
64592
  :phase_2_dh_group_numbers,
64068
64593
  :ike_versions,
64069
64594
  :startup_action,
64070
- :log_options)
64595
+ :log_options,
64596
+ :enable_tunnel_lifecycle_control)
64071
64597
  SENSITIVE = []
64072
64598
  include Aws::Structure
64073
64599
  end