RubyGems - aws-sdk-ec2 - Versions diffs - 1.514.0 → 1.517.0 - Mend

aws-sdk-ec2 1.514.0 → 1.517.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (13) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +15 -0
data/VERSION +1 -1
data/lib/aws-sdk-ec2/client.rb +259 -149
data/lib/aws-sdk-ec2/client_api.rb +16 -1
data/lib/aws-sdk-ec2/instance.rb +36 -8
data/lib/aws-sdk-ec2/types.rb +252 -45
data/lib/aws-sdk-ec2.rb +1 -1
data/sig/classic_address.rbs +1 -1
data/sig/client.rbs +10 -2
data/sig/types.rbs +17 -1
data/sig/vpc_address.rbs +1 -1
metadata +2 -2

data/lib/aws-sdk-ec2/client.rb CHANGED Viewed

@@ -2425,15 +2425,14 @@ module Aws::EC2
     # Associates a route server with a VPC to enable dynamic route updates.
     #
     # A route server association is the connection established between a
-    # route server and a VPC. This is a fundamental configuration step that
-    # enables the route server to work with appliances in your VPC.
+    # route server and a VPC.
     #
     # For more information see [Dynamic routing in your VPC with VPC Route
     # Server][1] in the *Amazon VPC User Guide*.
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html
+    # [1]: https://docs.aws.amazon.com/vpc/latest/userguide/dynamic-routing-route-server.html
     #
     # @option params [required, String] :route_server_id
     #   The unique identifier for the route server to be associated.
@@ -6091,11 +6090,24 @@ module Aws::EC2
     #   on Amazon Web Services provided clients when a VPN session is
     #   established.
     #
+    # @option params [Types::ClientRouteEnforcementOptions] :client_route_enforcement_options
+    #   Client route enforcement is a feature of the Client VPN service that
+    #   helps enforce administrator defined routes on devices connected
+    #   through the VPN. T his feature helps improve your security posture by
+    #   ensuring that network traffic originating from a connected client is
+    #   not inadvertently sent outside the VPN tunnel.
+    #
+    #   Client route enforcement works by monitoring the route table of a
+    #   connected device for routing policy changes to the VPN connection. If
+    #   the feature detects any VPN routing policy modifications, it will
+    #   automatically force an update to the route table, reverting it back to
+    #   the expected route configurations.
+    #
     # @option params [Boolean] :disconnect_on_session_timeout
     #   Indicates whether the client VPN session is disconnected after the
     #   maximum timeout specified in `SessionTimeoutHours` is reached. If
     #   `true`, users are prompted to reconnect client VPN. If `false`, client
-    #   VPN attempts to reconnect automatically. The default value is `false`.
+    #   VPN attempts to reconnect automatically. The default value is `true`.
     #
     # @return [Types::CreateClientVpnEndpointResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -6158,6 +6170,9 @@ module Aws::EC2
     #       enabled: false,
     #       banner_text: "String",
     #     },
+    #     client_route_enforcement_options: {
+    #       enforced: false,
+    #     },
     #     disconnect_on_session_timeout: false,
     #   })
     #
@@ -7150,7 +7165,7 @@ module Aws::EC2
     #                 },
     #               },
     #             },
-    #             image_id: "String",
+    #             image_id: "ImageId",
     #           },
     #         ],
     #       },
@@ -8273,6 +8288,23 @@ module Aws::EC2
     #   Enable this option to use your own GUA ranges as private IPv6
     #   addresses. This option is disabled by default.
     #
+    # @option params [String] :metered_account
+    #   A metered account is an Amazon Web Services account that is charged
+    #   for active IP addresses managed in IPAM. For more information, see
+    #   [Enable cost distribution][1] in the *Amazon VPC IPAM User Guide*.
+    #
+    #   Possible values:
+    #
+    #   * `ipam-owner` (default): The Amazon Web Services account which owns
+    #     the IPAM is charged for all active IP addresses managed in IPAM.
+    #
+    #   * `resource-owner`: The Amazon Web Services account that owns the IP
+    #     address is charged for the active IP address.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/vpc/latest/ipam/ipam-enable-cost-distro.html
+    #
     # @return [Types::CreateIpamResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::CreateIpamResult#ipam #ipam} => Types::Ipam
@@ -8301,6 +8333,7 @@ module Aws::EC2
     #     client_token: "String",
     #     tier: "free", # accepts free, advanced
     #     enable_private_gua: false,
+    #     metered_account: "ipam-owner", # accepts ipam-owner, resource-owner
     #   })
     #
     # @example Response structure
@@ -8325,6 +8358,7 @@ module Aws::EC2
     #   resp.ipam.state_message #=> String
     #   resp.ipam.tier #=> String, one of "free", "advanced"
     #   resp.ipam.enable_private_gua #=> Boolean
+    #   resp.ipam.metered_account #=> String, one of "ipam-owner", "resource-owner"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/CreateIpam AWS API Documentation
     #
@@ -12120,15 +12154,15 @@ module Aws::EC2
     # Amazon VPC Route Server simplifies routing for traffic between
     # workloads that are deployed within a VPC and its internet gateways.
     # With this feature, VPC Route Server dynamically updates VPC and
-    # gateway route tables with your preferred IPv4 or IPv6 routes to
-    # achieve routing fault tolerance for those workloads. This enables you
-    # to automatically reroute traffic within a VPC, which increases the
+    # internet gateway route tables with your preferred IPv4 or IPv6 routes
+    # to achieve routing fault tolerance for those workloads. This enables
+    # you to automatically reroute traffic within a VPC, which increases the
     # manageability of VPC routing and interoperability with third-party
     # workloads.
     #
     # Route server supports the follow route table types:
     #
-    # * VPC route tables
+    # * VPC route tables not associated with subnets
     #
     # * Subnet route tables
     #
@@ -12144,7 +12178,7 @@ module Aws::EC2
     #
     #
     # [1]: https://docs.aws.amazon.com/vpc/latest/tgw/tgw-connect.html
-    # [2]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html
+    # [2]: https://docs.aws.amazon.com/vpc/latest/userguide/dynamic-routing-route-server.html
     #
     # @option params [required, Integer] :amazon_side_asn
     #   The private Autonomous System Number (ASN) for the Amazon side of the
@@ -12241,9 +12275,16 @@ module Aws::EC2
     # Creates a new endpoint for a route server in a specified subnet.
     #
     # A route server endpoint is an Amazon Web Services-managed component
-    # inside a subnet that facilitates BGP (Border Gateway Protocol)
-    # connections between your route server and your BGP peers. Create two
-    # endpoints per subnet for redundancy.
+    # inside a subnet that facilitates [BGP (Border Gateway Protocol)][1]
+    # connections between your route server and your BGP peers.
+    #
+    # For more information see [Dynamic routing in your VPC with VPC Route
+    # Server][2] in the *Amazon VPC User Guide*.
+    #
+    #
+    #
+    # [1]: https://en.wikipedia.org/wiki/Border_Gateway_Protocol
+    # [2]: https://docs.aws.amazon.com/vpc/latest/userguide/dynamic-routing-route-server.html
     #
     # @option params [required, String] :route_server_id
     #   The ID of the route server for which to create an endpoint.
@@ -12316,9 +12357,10 @@ module Aws::EC2
     # Creates a new BGP peer for a specified route server endpoint.
     #
-    # A route server peer is a network appliance or function deployed in
-    # Amazon Web Services, such as firewall appliances and other network
-    # security functions, that meet these requirements:
+    # A route server peer is a session between a route server endpoint and
+    # the device deployed in Amazon Web Services (such as a firewall
+    # appliance or other network security function running on an EC2
+    # instance). The device must meet these requirements:
     #
     # * Have an elastic network interface in the VPC
     #
@@ -12326,11 +12368,18 @@ module Aws::EC2
     #
     # * Can initiate BGP sessions
     #
+    # For more information see [Dynamic routing in your VPC with VPC Route
+    # Server][1] in the *Amazon VPC User Guide*.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/vpc/latest/userguide/dynamic-routing-route-server.html
+    #
     # @option params [required, String] :route_server_endpoint_id
     #   The ID of the route server endpoint for which to create a peer.
     #
     # @option params [required, String] :peer_address
-    #   The IPv4 address of the peer.
+    #   The IPv4 address of the peer device.
     #
     # @option params [required, Types::RouteServerBgpOptionsRequest] :bgp_options
     #   The BGP options for the peer, including ASN (Autonomous System Number)
@@ -16086,8 +16135,6 @@ module Aws::EC2
     #   attributes to `true`: `enableDnsHostnames` and `enableDnsSupport`. Use
     #   ModifyVpcAttribute to set the VPC attributes.
     #
-    #   Default: `true`
-    #
     # @option params [Array<Types::TagSpecification>] :tag_specifications
     #   The tags to associate with the endpoint.
     #
@@ -17598,6 +17645,7 @@ module Aws::EC2
     #   resp.ipam.state_message #=> String
     #   resp.ipam.tier #=> String, one of "free", "advanced"
     #   resp.ipam.enable_private_gua #=> Boolean
+    #   resp.ipam.metered_account #=> String, one of "ipam-owner", "resource-owner"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DeleteIpam AWS API Documentation
     #
@@ -18885,15 +18933,15 @@ module Aws::EC2
     # Amazon VPC Route Server simplifies routing for traffic between
     # workloads that are deployed within a VPC and its internet gateways.
     # With this feature, VPC Route Server dynamically updates VPC and
-    # gateway route tables with your preferred IPv4 or IPv6 routes to
-    # achieve routing fault tolerance for those workloads. This enables you
-    # to automatically reroute traffic within a VPC, which increases the
+    # internet gateway route tables with your preferred IPv4 or IPv6 routes
+    # to achieve routing fault tolerance for those workloads. This enables
+    # you to automatically reroute traffic within a VPC, which increases the
     # manageability of VPC routing and interoperability with third-party
     # workloads.
     #
     # Route server supports the follow route table types:
     #
-    # * VPC route tables
+    # * VPC route tables not associated with subnets
     #
     # * Subnet route tables
     #
@@ -18909,7 +18957,7 @@ module Aws::EC2
     #
     #
     # [1]: https://docs.aws.amazon.com/vpc/latest/tgw/tgw-connect.html
-    # [2]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html
+    # [2]: https://docs.aws.amazon.com/vpc/latest/userguide/dynamic-routing-route-server.html
     #
     # @option params [required, String] :route_server_id
     #   The ID of the route server to delete.
@@ -18956,9 +19004,12 @@ module Aws::EC2
     # Deletes the specified route server endpoint.
     #
     # A route server endpoint is an Amazon Web Services-managed component
-    # inside a subnet that facilitates BGP (Border Gateway Protocol)
-    # connections between your route server and your BGP peers. Create two
-    # endpoints per subnet for redundancy.
+    # inside a subnet that facilitates [BGP (Border Gateway Protocol)][1]
+    # connections between your route server and your BGP peers.
+    #
+    #
+    #
+    # [1]: https://en.wikipedia.org/wiki/Border_Gateway_Protocol
     #
     # @option params [required, String] :route_server_endpoint_id
     #   The ID of the route server endpoint to delete.
@@ -19005,9 +19056,10 @@ module Aws::EC2
     # Deletes the specified BGP peer from a route server.
     #
-    # A route server peer is a network appliance or function deployed in
-    # Amazon Web Services, such as firewall appliances and other network
-    # security functions, that meet these requirements:
+    # A route server peer is a session between a route server endpoint and
+    # the device deployed in Amazon Web Services (such as a firewall
+    # appliance or other network security function running on an EC2
+    # instance). The device must meet these requirements:
     #
     # * Have an elastic network interface in the VPC
     #
@@ -21021,27 +21073,35 @@ module Aws::EC2
       req.send_request(options)
     end
-    # Deregisters the specified AMI. After you deregister an AMI, it can't
-    # be used to launch new instances.
+    # Deregisters the specified AMI. A deregistered AMI can't be used to
+    # launch new instances.
     #
-    # If you deregister an AMI that matches a Recycle Bin retention rule,
-    # the AMI is retained in the Recycle Bin for the specified retention
-    # period. For more information, see [Recycle Bin][1] in the *Amazon EC2
-    # User Guide*.
+    # If a deregistered EBS-backed AMI matches a Recycle Bin retention rule,
+    # it moves to the Recycle Bin for the specified retention period. It can
+    # be restored before its retention period expires, after which it is
+    # permanently deleted. If the deregistered AMI doesn't match a
+    # retention rule, it is permanently deleted immediately. For more
+    # information, see [Recycle Bin][1] in the *Amazon EBS User Guide*.
+    #
+    # Deregistering an AMI does not delete the following:
+    #
+    # * Instances already launched from the AMI. You'll continue to incur
+    #   usage costs for the instances until you terminate them.
+    #
+    # * For EBS-backed AMIs: The snapshots that were created of the root and
+    #   data volumes of the instance during AMI creation. You'll continue
+    #   to incur snapshot storage costs.
     #
-    # When you deregister an AMI, it doesn't affect any instances that
-    # you've already launched from the AMI. You'll continue to incur usage
-    # costs for those instances until you terminate them.
+    # * For instance store-backed AMIs: The files uploaded to Amazon S3
+    #   during AMI creation. You'll continue to incur S3 storage costs.
     #
-    # When you deregister an Amazon EBS-backed AMI, it doesn't affect the
-    # snapshot that was created for the root volume of the instance during
-    # the AMI creation process. When you deregister an instance store-backed
-    # AMI, it doesn't affect the files that you uploaded to Amazon S3 when
-    # you created the AMI.
+    # For more information, see [Deregister an Amazon EC2 AMI][2] in the
+    # *Amazon EC2 User Guide*.
     #
     #
     #
     # [1]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/recycle-bin.html
+    # [2]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/deregister-ami.html
     #
     # @option params [required, String] :image_id
     #   The ID of the AMI.
@@ -21552,7 +21612,7 @@ module Aws::EC2
     #   resp.addresses[0].customer_owned_ip #=> String
     #   resp.addresses[0].customer_owned_ipv_4_pool #=> String
     #   resp.addresses[0].carrier_ip #=> String
-    #   resp.addresses[0].service_managed #=> String, one of "alb", "nlb"
+    #   resp.addresses[0].service_managed #=> String, one of "alb", "nlb", "rnat"
     #   resp.addresses[0].instance_id #=> String
     #   resp.addresses[0].public_ip #=> String
     #
@@ -22237,13 +22297,7 @@ module Aws::EC2
     # Blocks, you purchase a specific instance type for a period of time.
     #
     # To search for an available Capacity Block offering, you specify a
-    # reservation duration and instance count. You must select one of the
-    # following options.
-    #
-    # * For reservation durations<b> 1-day increments up 14 days and 7-day
-    #   increments up to 182 days total</b>
-    #
-    # * For instance count<b> 1, 2, 4, 8, 16, 32, or 64 instances</b>
+    # reservation duration and instance count.
     #
     # @option params [Boolean] :dry_run
     #   Checks whether you have the required permissions for the action,
@@ -22256,7 +22310,9 @@ module Aws::EC2
     #   capacity.
     #
     # @option params [Integer] :instance_count
-    #   The number of instances for which to reserve capacity.
+    #   The number of instances for which to reserve capacity. Each Capacity
+    #   Block can have up to 64 instances, and you can have up to 256
+    #   instances across Capacity Blocks.
     #
     # @option params [Time,DateTime,Date,Integer,String] :start_date_range
     #   The earliest start date for the Capacity Block offering.
@@ -22265,7 +22321,9 @@ module Aws::EC2
     #   The latest end date for the Capacity Block offering.
     #
     # @option params [required, Integer] :capacity_duration_hours
-    #   The number of hours for which to reserve Capacity Block.
+    #   The reservation duration for the Capacity Block, in hours. You must
+    #   specify the duration in 1-day increments up 14 days, and in 7-day
+    #   increments up to 182 days.
     #
     # @option params [String] :next_token
     #   The token to use to retrieve the next page of results.
@@ -23129,6 +23187,7 @@ module Aws::EC2
     #   resp.client_vpn_endpoints[0].session_timeout_hours #=> Integer
     #   resp.client_vpn_endpoints[0].client_login_banner_options.enabled #=> Boolean
     #   resp.client_vpn_endpoints[0].client_login_banner_options.banner_text #=> String
+    #   resp.client_vpn_endpoints[0].client_route_enforcement_options.enforced #=> Boolean
     #   resp.client_vpn_endpoints[0].disconnect_on_session_timeout #=> Boolean
     #   resp.next_token #=> String
     #
@@ -27375,6 +27434,9 @@ module Aws::EC2
     #     latest generation instance type of an instance family (`true` \|
     #     `false`).
     #
+    #   * `dedicated-hosts-supported` - Indicates whether the instance type
+    #     supports Dedicated Hosts. (`true` \| `false`)
+    #
     #   * `ebs-info.ebs-optimized-info.baseline-bandwidth-in-mbps` - The
     #     baseline bandwidth performance for an EBS-optimized instance type,
     #     in Mbps.
@@ -29126,6 +29188,7 @@ module Aws::EC2
     #   resp.ipams[0].state_message #=> String
     #   resp.ipams[0].tier #=> String, one of "free", "advanced"
     #   resp.ipams[0].enable_private_gua #=> Boolean
+    #   resp.ipams[0].metered_account #=> String, one of "ipam-owner", "resource-owner"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DescribeIpams AWS API Documentation
     #
@@ -33821,16 +33884,16 @@ module Aws::EC2
     # Describes one or more route server endpoints.
     #
     # A route server endpoint is an Amazon Web Services-managed component
-    # inside a subnet that facilitates BGP (Border Gateway Protocol)
-    # connections between your route server and your BGP peers. Create two
-    # endpoints per subnet for redundancy.
+    # inside a subnet that facilitates [BGP (Border Gateway Protocol)][1]
+    # connections between your route server and your BGP peers.
     #
     # For more information see [Dynamic routing in your VPC with VPC Route
-    # Server][1] in the *Amazon VPC User Guide*.
+    # Server][2] in the *Amazon VPC User Guide*.
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html
+    # [1]: https://en.wikipedia.org/wiki/Border_Gateway_Protocol
+    # [2]: https://docs.aws.amazon.com/vpc/latest/userguide/dynamic-routing-route-server.html
     #
     # @option params [Array<String>] :route_server_endpoint_ids
     #   The IDs of the route server endpoints to describe.
@@ -33899,9 +33962,10 @@ module Aws::EC2
     # Describes one or more route server peers.
     #
-    # A route server peer is a network appliance or function deployed in
-    # Amazon Web Services, such as firewall appliances and other network
-    # security functions, that meet these requirements:
+    # A route server peer is a session between a route server endpoint and
+    # the device deployed in Amazon Web Services (such as a firewall
+    # appliance or other network security function running on an EC2
+    # instance). The device must meet these requirements:
     #
     # * Have an elastic network interface in the VPC
     #
@@ -33914,7 +33978,7 @@ module Aws::EC2
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html
+    # [1]: https://docs.aws.amazon.com/vpc/latest/userguide/dynamic-routing-route-server.html
     #
     # @option params [Array<String>] :route_server_peer_ids
     #   The IDs of the route server peers to describe.
@@ -33992,15 +34056,15 @@ module Aws::EC2
     # Amazon VPC Route Server simplifies routing for traffic between
     # workloads that are deployed within a VPC and its internet gateways.
     # With this feature, VPC Route Server dynamically updates VPC and
-    # gateway route tables with your preferred IPv4 or IPv6 routes to
-    # achieve routing fault tolerance for those workloads. This enables you
-    # to automatically reroute traffic within a VPC, which increases the
+    # internet gateway route tables with your preferred IPv4 or IPv6 routes
+    # to achieve routing fault tolerance for those workloads. This enables
+    # you to automatically reroute traffic within a VPC, which increases the
     # manageability of VPC routing and interoperability with third-party
     # workloads.
     #
     # Route server supports the follow route table types:
     #
-    # * VPC route tables
+    # * VPC route tables not associated with subnets
     #
     # * Subnet route tables
     #
@@ -34016,7 +34080,7 @@ module Aws::EC2
     #
     #
     # [1]: https://docs.aws.amazon.com/vpc/latest/tgw/tgw-connect.html
-    # [2]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html
+    # [2]: https://docs.aws.amazon.com/vpc/latest/userguide/dynamic-routing-route-server.html
     #
     # @option params [Array<String>] :route_server_ids
     #   The IDs of the route servers to describe.
@@ -40268,7 +40332,8 @@ module Aws::EC2
     end
     # Describes the principals (service consumers) that are permitted to
-    # discover your VPC endpoint service.
+    # discover your VPC endpoint service. Principal ARNs with path
+    # components aren't supported.
     #
     # @option params [Boolean] :dry_run
     #   Checks whether you have the required permissions for the action,
@@ -42153,15 +42218,15 @@ module Aws::EC2
     # Amazon VPC Route Server simplifies routing for traffic between
     # workloads that are deployed within a VPC and its internet gateways.
     # With this feature, VPC Route Server dynamically updates VPC and
-    # gateway route tables with your preferred IPv4 or IPv6 routes to
-    # achieve routing fault tolerance for those workloads. This enables you
-    # to automatically reroute traffic within a VPC, which increases the
+    # internet gateway route tables with your preferred IPv4 or IPv6 routes
+    # to achieve routing fault tolerance for those workloads. This enables
+    # you to automatically reroute traffic within a VPC, which increases the
     # manageability of VPC routing and interoperability with third-party
     # workloads.
     #
     # Route server supports the follow route table types:
     #
-    # * VPC route tables
+    # * VPC route tables not associated with subnets
     #
     # * Subnet route tables
     #
@@ -42177,7 +42242,7 @@ module Aws::EC2
     #
     #
     # [1]: https://docs.aws.amazon.com/vpc/latest/tgw/tgw-connect.html
-    # [2]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html
+    # [2]: https://docs.aws.amazon.com/vpc/latest/userguide/dynamic-routing-route-server.html
     #
     # @option params [required, String] :route_server_id
     #   The ID of the route server for which to disable propagation.
@@ -42976,15 +43041,14 @@ module Aws::EC2
     # Disassociates a route server from a VPC.
     #
     # A route server association is the connection established between a
-    # route server and a VPC. This is a fundamental configuration step that
-    # enables the route server to work with appliances in your VPC.
+    # route server and a VPC.
     #
     # For more information see [Dynamic routing in your VPC with VPC Route
     # Server][1] in the *Amazon VPC User Guide*.
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html
+    # [1]: https://docs.aws.amazon.com/vpc/latest/userguide/dynamic-routing-route-server.html
     #
     # @option params [required, String] :route_server_id
     #   The ID of the route server to disassociate.
@@ -44083,7 +44147,7 @@ module Aws::EC2
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html
+    # [1]: https://docs.aws.amazon.com/vpc/latest/userguide/dynamic-routing-route-server.html
     #
     # @option params [required, String] :route_server_id
     #   The ID of the route server for which to enable propagation.
@@ -47599,15 +47663,14 @@ module Aws::EC2
     # server.
     #
     # A route server association is the connection established between a
-    # route server and a VPC. This is a fundamental configuration step that
-    # enables the route server to work with appliances in your VPC.
+    # route server and a VPC.
     #
     # For more information see [Dynamic routing in your VPC with VPC Route
     # Server][1] in the *Amazon VPC User Guide*.
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html
+    # [1]: https://docs.aws.amazon.com/vpc/latest/userguide/dynamic-routing-route-server.html
     #
     # @option params [required, String] :route_server_id
     #   The ID of the route server for which to get association information.
@@ -47655,15 +47718,15 @@ module Aws::EC2
     # Amazon VPC Route Server simplifies routing for traffic between
     # workloads that are deployed within a VPC and its internet gateways.
     # With this feature, VPC Route Server dynamically updates VPC and
-    # gateway route tables with your preferred IPv4 or IPv6 routes to
-    # achieve routing fault tolerance for those workloads. This enables you
-    # to automatically reroute traffic within a VPC, which increases the
+    # internet gateway route tables with your preferred IPv4 or IPv6 routes
+    # to achieve routing fault tolerance for those workloads. This enables
+    # you to automatically reroute traffic within a VPC, which increases the
     # manageability of VPC routing and interoperability with third-party
     # workloads.
     #
     # Route server supports the follow route table types:
     #
-    # * VPC route tables
+    # * VPC route tables not associated with subnets
     #
     # * Subnet route tables
     #
@@ -47729,15 +47792,15 @@ module Aws::EC2
     # Amazon VPC Route Server simplifies routing for traffic between
     # workloads that are deployed within a VPC and its internet gateways.
     # With this feature, VPC Route Server dynamically updates VPC and
-    # gateway route tables with your preferred IPv4 or IPv6 routes to
-    # achieve routing fault tolerance for those workloads. This enables you
-    # to automatically reroute traffic within a VPC, which increases the
+    # internet gateway route tables with your preferred IPv4 or IPv6 routes
+    # to achieve routing fault tolerance for those workloads. This enables
+    # you to automatically reroute traffic within a VPC, which increases the
     # manageability of VPC routing and interoperability with third-party
     # workloads.
     #
     # Route server supports the follow route table types:
     #
-    # * VPC route tables
+    # * VPC route tables not associated with subnets
     #
     # * Subnet route tables
     #
@@ -50454,11 +50517,24 @@ module Aws::EC2
     #   on Amazon Web Services provided clients when a VPN session is
     #   established.
     #
+    # @option params [Types::ClientRouteEnforcementOptions] :client_route_enforcement_options
+    #   Client route enforcement is a feature of the Client VPN service that
+    #   helps enforce administrator defined routes on devices connected
+    #   through the VPN. T his feature helps improve your security posture by
+    #   ensuring that network traffic originating from a connected client is
+    #   not inadvertently sent outside the VPN tunnel.
+    #
+    #   Client route enforcement works by monitoring the route table of a
+    #   connected device for routing policy changes to the VPN connection. If
+    #   the feature detects any VPN routing policy modifications, it will
+    #   automatically force an update to the route table, reverting it back to
+    #   the expected route configurations.
+    #
     # @option params [Boolean] :disconnect_on_session_timeout
     #   Indicates whether the client VPN session is disconnected after the
     #   maximum timeout specified in `sessionTimeoutHours` is reached. If
     #   `true`, users are prompted to reconnect client VPN. If `false`, client
-    #   VPN attempts to reconnect automatically. The default value is `false`.
+    #   VPN attempts to reconnect automatically. The default value is `true`.
     #
     # @return [Types::ModifyClientVpnEndpointResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -50494,6 +50570,9 @@ module Aws::EC2
     #       enabled: false,
     #       banner_text: "String",
     #     },
+    #     client_route_enforcement_options: {
+    #       enforced: false,
+    #     },
     #     disconnect_on_session_timeout: false,
     #   })
     #
@@ -50820,7 +50899,7 @@ module Aws::EC2
     #                 },
     #               },
     #             },
-    #             image_id: "String",
+    #             image_id: "ImageId",
     #           },
     #         ],
     #       },
@@ -51391,6 +51470,14 @@ module Aws::EC2
     # @option params [String] :attribute
     #   The name of the attribute to modify.
     #
+    #   <note markdown="1"> When changing the instance type: If the original instance type is
+    #   configured for configurable bandwidth, and the desired instance type
+    #   doesn't support configurable bandwidth, first set the existing
+    #   bandwidth configuration to `default` using the
+    #   ModifyInstanceNetworkPerformanceOptions operation.
+    #
+    #    </note>
+    #
     #   You can modify the following attributes only: `disableApiTermination`
     #   \| `instanceType` \| `kernel` \| `ramdisk` \|
     #   `instanceInitiatedShutdownBehavior` \| `blockDeviceMapping` \|
@@ -52375,6 +52462,23 @@ module Aws::EC2
     #   Enable this option to use your own GUA ranges as private IPv6
     #   addresses. This option is disabled by default.
     #
+    # @option params [String] :metered_account
+    #   A metered account is an Amazon Web Services account that is charged
+    #   for active IP addresses managed in IPAM. For more information, see
+    #   [Enable cost distribution][1] in the *Amazon VPC IPAM User Guide*.
+    #
+    #   Possible values:
+    #
+    #   * `ipam-owner` (default): The Amazon Web Services account which owns
+    #     the IPAM is charged for all active IP addresses managed in IPAM.
+    #
+    #   * `resource-owner`: The Amazon Web Services account that owns the IP
+    #     address is charged for the active IP address.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/vpc/latest/ipam/ipam-enable-cost-distro.html
+    #
     # @return [Types::ModifyIpamResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ModifyIpamResult#ipam #ipam} => Types::Ipam
@@ -52397,6 +52501,7 @@ module Aws::EC2
     #     ],
     #     tier: "free", # accepts free, advanced
     #     enable_private_gua: false,
+    #     metered_account: "ipam-owner", # accepts ipam-owner, resource-owner
     #   })
     #
     # @example Response structure
@@ -52421,6 +52526,7 @@ module Aws::EC2
     #   resp.ipam.state_message #=> String
     #   resp.ipam.tier #=> String, one of "free", "advanced"
     #   resp.ipam.enable_private_gua #=> Boolean
+    #   resp.ipam.metered_account #=> String, one of "ipam-owner", "resource-owner"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyIpam AWS API Documentation
     #
@@ -53359,15 +53465,15 @@ module Aws::EC2
     # Amazon VPC Route Server simplifies routing for traffic between
     # workloads that are deployed within a VPC and its internet gateways.
     # With this feature, VPC Route Server dynamically updates VPC and
-    # gateway route tables with your preferred IPv4 or IPv6 routes to
-    # achieve routing fault tolerance for those workloads. This enables you
-    # to automatically reroute traffic within a VPC, which increases the
+    # internet gateway route tables with your preferred IPv4 or IPv6 routes
+    # to achieve routing fault tolerance for those workloads. This enables
+    # you to automatically reroute traffic within a VPC, which increases the
     # manageability of VPC routing and interoperability with third-party
     # workloads.
     #
     # Route server supports the follow route table types:
     #
-    # * VPC route tables
+    # * VPC route tables not associated with subnets
     #
     # * Subnet route tables
     #
@@ -53383,7 +53489,7 @@ module Aws::EC2
     #
     #
     # [1]: https://docs.aws.amazon.com/vpc/latest/tgw/tgw-connect.html
-    # [2]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html
+    # [2]: https://docs.aws.amazon.com/vpc/latest/userguide/dynamic-routing-route-server.html
     #
     # @option params [required, String] :route_server_id
     #   The ID of the route server to modify.
@@ -55887,6 +55993,7 @@ module Aws::EC2
     # Modifies the permissions for your VPC endpoint service. You can add or
     # remove permissions for service consumers (Amazon Web Services
     # accounts, users, and IAM roles) to connect to your endpoint service.
+    # Principal ARNs with path components aren't supported.
     #
     # If you grant permissions to all principals, the service is public. Any
     # users who know the name of a public service can send a request to
@@ -63815,45 +63922,38 @@ module Aws::EC2
     # Stops an Amazon EBS-backed instance. For more information, see [Stop
     # and start Amazon EC2 instances][1] in the *Amazon EC2 User Guide*.
     #
-    # You can use the Stop action to hibernate an instance if the instance
-    # is [enabled for hibernation][2] and it meets the [hibernation
-    # prerequisites][3]. For more information, see [Hibernate your Amazon
-    # EC2 instance][4] in the *Amazon EC2 User Guide*.
+    # When you stop an instance, we shut it down. You can restart your
+    # instance at any time.
     #
-    # We don't charge usage for a stopped instance, or data transfer fees;
-    # however, your root partition Amazon EBS volume remains and continues
-    # to persist your data, and you are charged for Amazon EBS volume usage.
-    # Every time you start your instance, Amazon EC2 charges a one-minute
-    # minimum for instance usage, and thereafter charges per second for
-    # instance usage.
-    #
-    # You can't stop or hibernate instance store-backed instances. You
-    # can't use the Stop action to hibernate Spot Instances, but you can
-    # specify that Amazon EC2 should hibernate Spot Instances when they are
-    # interrupted. For more information, see [Hibernating interrupted Spot
-    # Instances][5] in the *Amazon EC2 User Guide*.
-    #
-    # When you stop or hibernate an instance, we shut it down. You can
-    # restart your instance at any time. Before stopping or hibernating an
-    # instance, make sure it is in a state from which it can be restarted.
-    # Stopping an instance does not preserve data stored in RAM, but
-    # hibernating an instance does preserve data stored in RAM. If an
-    # instance cannot hibernate successfully, a normal shutdown occurs.
-    #
-    # Stopping and hibernating an instance is different to rebooting or
-    # terminating it. For example, when you stop or hibernate an instance,
-    # the root device and any other devices attached to the instance
-    # persist. When you terminate an instance, the root device and any other
-    # devices attached during the instance launch are automatically deleted.
-    # For more information about the differences between rebooting,
-    # stopping, hibernating, and terminating instances, see [Instance
-    # lifecycle][6] in the *Amazon EC2 User Guide*.
-    #
-    # When you stop an instance, we attempt to shut it down forcibly after a
-    # short while. If your instance appears stuck in the stopping state
-    # after a period of time, there may be an issue with the underlying host
-    # computer. For more information, see [Troubleshoot stopping your
-    # instance][7] in the *Amazon EC2 User Guide*.
+    # You can use the Stop operation together with the Hibernate parameter
+    # to hibernate an instance if the instance is [enabled for
+    # hibernation][2] and meets the [hibernation prerequisites][3]. Stopping
+    # an instance doesn't preserve data stored in RAM, while hibernation
+    # does. If hibernation fails, a normal shutdown occurs. For more
+    # information, see [Hibernate your Amazon EC2 instance][4] in the
+    # *Amazon EC2 User Guide*.
+    #
+    # If your instance appears stuck in the `stopping` state, there might be
+    # an issue with the underlying host computer. You can use the Stop
+    # operation together with the Force parameter to force stop your
+    # instance. For more information, see [Troubleshoot Amazon EC2 instance
+    # stop issues][5] in the *Amazon EC2 User Guide*.
+    #
+    # Stopping and hibernating an instance differs from rebooting or
+    # terminating it. For example, a stopped or hibernated instance retains
+    # its root volume and any data volumes, unlike terminated instances
+    # where these volumes are automatically deleted. For more information
+    # about the differences between stopping, hibernating, rebooting, and
+    # terminating instances, see [Amazon EC2 instance state changes][6] in
+    # the *Amazon EC2 User Guide*.
+    #
+    # We don't charge for instance usage or data transfer fees when an
+    # instance is stopped. However, the root volume and any data volumes
+    # remain and continue to persist your data, and you're charged for
+    # volume usage. Every time you start your instance, Amazon EC2 charges a
+    # one-minute minimum for instance usage, followed by per-second billing.
+    #
+    # You can't stop or hibernate instance store-backed instances.
     #
     #
     #
@@ -63861,9 +63961,8 @@ module Aws::EC2
     # [2]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/enabling-hibernation.html
     # [3]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/hibernating-prerequisites.html
     # [4]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Hibernate.html
-    # [5]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-interruptions.html#hibernate-spot-instances
+    # [5]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/TroubleshootingInstancesStopping.html
     # [6]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-lifecycle.html
-    # [7]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/TroubleshootingInstancesStopping.html
     #
     # @option params [required, Array<String>] :instance_ids
     #   The IDs of the instances.
@@ -63887,13 +63986,23 @@ module Aws::EC2
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #
     # @option params [Boolean] :force
-    #   Forces the instances to stop. The instances do not have an opportunity
-    #   to flush file system caches or file system metadata. If you use this
-    #   option, you must perform file system check and repair procedures. This
-    #   option is not recommended for Windows instances.
+    #   Forces the instance to stop. The instance will first attempt a
+    #   graceful shutdown, which includes flushing file system caches and
+    #   metadata. If the graceful shutdown fails to complete within the
+    #   timeout period, the instance shuts down forcibly without flushing the
+    #   file system caches and metadata.
+    #
+    #   After using this option, you must perform file system check and repair
+    #   procedures. This option is not recommended for Windows instances. For
+    #   more information, see [Troubleshoot Amazon EC2 instance stop
+    #   issues][1] in the *Amazon EC2 User Guide*.
     #
     #   Default: `false`
     #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/TroubleshootingInstancesStopping.html
+    #
     # @return [Types::StopInstancesResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::StopInstancesResult#stopping_instances #stopping_instances} => Array&lt;Types::InstanceStateChange&gt;
@@ -64009,8 +64118,8 @@ module Aws::EC2
       req.send_request(options)
     end
-    # Shuts down the specified instances. This operation is idempotent; if
-    # you terminate an instance more than once, each call succeeds.
+    # Shuts down the specified instances. This operation is [idempotent][1];
+    # if you terminate an instance more than once, each call succeeds.
     #
     # If you specify multiple instances and the request fails (for example,
     # because of a single incorrect instance ID), none of the instances are
@@ -64057,21 +64166,22 @@ module Aws::EC2
     #
     # You can stop, start, and terminate EBS-backed instances. You can only
     # terminate instance store-backed instances. What happens to an instance
-    # differs if you stop it or terminate it. For example, when you stop an
+    # differs if you stop or terminate it. For example, when you stop an
     # instance, the root device and any other devices attached to the
     # instance persist. When you terminate an instance, any attached EBS
     # volumes with the `DeleteOnTermination` block device mapping parameter
     # set to `true` are automatically deleted. For more information about
     # the differences between stopping and terminating instances, see
-    # [Instance lifecycle][1] in the *Amazon EC2 User Guide*.
+    # [Amazon EC2 instance state changes][2] in the *Amazon EC2 User Guide*.
     #
-    # For more information about troubleshooting, see [Troubleshooting
-    # terminating your instance][2] in the *Amazon EC2 User Guide*.
+    # For information about troubleshooting, see [Troubleshooting
+    # terminating your instance][3] in the *Amazon EC2 User Guide*.
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-lifecycle.html
-    # [2]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/TroubleshootingInstancesShuttingDown.html
+    # [1]: https://docs.aws.amazon.com/ec2/latest/devguide/ec2-api-idempotency.html
+    # [2]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-lifecycle.html
+    # [3]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/TroubleshootingInstancesShuttingDown.html
     #
     # @option params [required, Array<String>] :instance_ids
     #   The IDs of the instances.
@@ -64703,7 +64813,7 @@ module Aws::EC2
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-ec2'
-      context[:gem_version] = '1.514.0'
+      context[:gem_version] = '1.517.0'
       Seahorse::Client::Request.new(handlers, context)
     end