aws-sdk-ec2 1.514.0 → 1.517.0

data/lib/aws-sdk-ec2/types.rb

@@ -6092,6 +6092,54 @@ module Aws::EC2
       include Aws::Structure
     end
 
+    # Client Route Enforcement is a feature of Client VPN that helps enforce
+    # administrator defined routes on devices connected through the VPN.
+    # This feature helps improve your security posture by ensuring that
+    # network traffic originating from a connected client is not
+    # inadvertently sent outside the VPN tunnel.
+    #
+    # Client Route Enforcement works by monitoring the route table of a
+    # connected device for routing policy changes to the VPN connection. If
+    # the feature detects any VPN routing policy modifications, it will
+    # automatically force an update to the route table, reverting it back to
+    # the expected route configurations.
+    #
+    # @!attribute [rw] enforced
+    #   Enable or disable Client Route Enforcement. The state can either be
+    #   `true` (enabled) or `false` (disabled). The default is `false`.
+    #
+    #   Valid values: `true | false`
+    #
+    #   Default value: `false`
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ClientRouteEnforcementOptions AWS API Documentation
+    #
+    class ClientRouteEnforcementOptions < Struct.new(
+      :enforced)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # The current status of Client Route Enforcement.
+    #
+    # @!attribute [rw] enforced
+    #   Status of the client route enforcement feature, indicating whether
+    #   Client Route Enforcement is `true` (enabled) or `false` (disabled).
+    #
+    #   Valid values: `true | false`
+    #
+    #   Default value: `false`
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ClientRouteEnforcementResponseOptions AWS API Documentation
+    #
+    class ClientRouteEnforcementResponseOptions < Struct.new(
+      :enforced)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Describes the authentication methods used by a Client VPN endpoint.
     # For more information, see [Authentication][1] in the *Client VPN
     # Administrator Guide*.
@@ -6404,11 +6452,25 @@ module Aws::EC2
     #   is established.
     #   @return [Types::ClientLoginBannerResponseOptions]
     #
+    # @!attribute [rw] client_route_enforcement_options
+    #   Client route enforcement is a feature of the Client VPN service that
+    #   helps enforce administrator defined routes on devices connected
+    #   through the VPN. T his feature helps improve your security posture
+    #   by ensuring that network traffic originating from a connected client
+    #   is not inadvertently sent outside the VPN tunnel.
+    #
+    #   Client route enforcement works by monitoring the route table of a
+    #   connected device for routing policy changes to the VPN connection.
+    #   If the feature detects any VPN routing policy modifications, it will
+    #   automatically force an update to the route table, reverting it back
+    #   to the expected route configurations.
+    #   @return [Types::ClientRouteEnforcementResponseOptions]
+    #
     # @!attribute [rw] disconnect_on_session_timeout
     #   Indicates whether the client VPN session is disconnected after the
     #   maximum `sessionTimeoutHours` is reached. If `true`, users are
     #   prompted to reconnect client VPN. If `false`, client VPN attempts to
-    #   reconnect automatically. The default value is `false`.
+    #   reconnect automatically. The default value is `true`.
     #   @return [Boolean]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ClientVpnEndpoint AWS API Documentation
@@ -6437,6 +6499,7 @@ module Aws::EC2
       :client_connect_options,
       :session_timeout_hours,
       :client_login_banner_options,
+      :client_route_enforcement_options,
       :disconnect_on_session_timeout)
       SENSITIVE = []
       include Aws::Structure
@@ -8253,12 +8316,26 @@ module Aws::EC2
     #   is established.
     #   @return [Types::ClientLoginBannerOptions]
     #
+    # @!attribute [rw] client_route_enforcement_options
+    #   Client route enforcement is a feature of the Client VPN service that
+    #   helps enforce administrator defined routes on devices connected
+    #   through the VPN. T his feature helps improve your security posture
+    #   by ensuring that network traffic originating from a connected client
+    #   is not inadvertently sent outside the VPN tunnel.
+    #
+    #   Client route enforcement works by monitoring the route table of a
+    #   connected device for routing policy changes to the VPN connection.
+    #   If the feature detects any VPN routing policy modifications, it will
+    #   automatically force an update to the route table, reverting it back
+    #   to the expected route configurations.
+    #   @return [Types::ClientRouteEnforcementOptions]
+    #
     # @!attribute [rw] disconnect_on_session_timeout
     #   Indicates whether the client VPN session is disconnected after the
     #   maximum timeout specified in `SessionTimeoutHours` is reached. If
     #   `true`, users are prompted to reconnect client VPN. If `false`,
     #   client VPN attempts to reconnect automatically. The default value is
-    #   `false`.
+    #   `true`.
     #   @return [Boolean]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/CreateClientVpnEndpointRequest AWS API Documentation
@@ -8282,6 +8359,7 @@ module Aws::EC2
       :client_connect_options,
       :session_timeout_hours,
       :client_login_banner_options,
+      :client_route_enforcement_options,
       :disconnect_on_session_timeout)
       SENSITIVE = []
       include Aws::Structure
@@ -9831,6 +9909,24 @@ module Aws::EC2
     #   addresses. This option is disabled by default.
     #   @return [Boolean]
     #
+    # @!attribute [rw] metered_account
+    #   A metered account is an Amazon Web Services account that is charged
+    #   for active IP addresses managed in IPAM. For more information, see
+    #   [Enable cost distribution][1] in the *Amazon VPC IPAM User Guide*.
+    #
+    #   Possible values:
+    #
+    #   * `ipam-owner` (default): The Amazon Web Services account which owns
+    #     the IPAM is charged for all active IP addresses managed in IPAM.
+    #
+    #   * `resource-owner`: The Amazon Web Services account that owns the IP
+    #     address is charged for the active IP address.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/vpc/latest/ipam/ipam-enable-cost-distro.html
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/CreateIpamRequest AWS API Documentation
     #
     class CreateIpamRequest < Struct.new(
@@ -9840,7 +9936,8 @@ module Aws::EC2
       :tag_specifications,
       :client_token,
       :tier,
-      :enable_private_gua)
+      :enable_private_gua,
+      :metered_account)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -11594,7 +11691,7 @@ module Aws::EC2
     #   @return [String]
     #
     # @!attribute [rw] peer_address
-    #   The IPv4 address of the peer.
+    #   The IPv4 address of the peer device.
     #   @return [String]
     #
     # @!attribute [rw] bgp_options
@@ -14353,8 +14450,6 @@ module Aws::EC2
     #   To use a private hosted zone, you must set the following VPC
     #   attributes to `true`: `enableDnsHostnames` and `enableDnsSupport`.
     #   Use ModifyVpcAttribute to set the VPC attributes.
-    #
-    #   Default: `true`
     #   @return [Boolean]
     #
     # @!attribute [rw] tag_specifications
@@ -18810,7 +18905,9 @@ module Aws::EC2
     #   @return [String]
     #
     # @!attribute [rw] instance_count
-    #   The number of instances for which to reserve capacity.
+    #   The number of instances for which to reserve capacity. Each Capacity
+    #   Block can have up to 64 instances, and you can have up to 256
+    #   instances across Capacity Blocks.
     #   @return [Integer]
     #
     # @!attribute [rw] start_date_range
@@ -18822,7 +18919,9 @@ module Aws::EC2
     #   @return [Time]
     #
     # @!attribute [rw] capacity_duration_hours
-    #   The number of hours for which to reserve Capacity Block.
+    #   The reservation duration for the Capacity Block, in hours. You must
+    #   specify the duration in 1-day increments up 14 days, and in 7-day
+    #   increments up to 182 days.
     #   @return [Integer]
     #
     # @!attribute [rw] next_token
@@ -22451,6 +22550,9 @@ module Aws::EC2
     #     latest generation instance type of an instance family (`true` \|
     #     `false`).
     #
+    #   * `dedicated-hosts-supported` - Indicates whether the instance type
+    #     supports Dedicated Hosts. (`true` \| `false`)
+    #
     #   * `ebs-info.ebs-optimized-info.baseline-bandwidth-in-mbps` - The
     #     baseline bandwidth performance for an EBS-optimized instance type,
     #     in Mbps.
@@ -36506,11 +36608,11 @@ module Aws::EC2
     #   Amazon EBS encryption. For more information, see [Supported instance
     #   types][2].
     #
-    #   This parameter is not returned by .
+    #   This parameter is not returned by [DescribeImageAttribute][3].
     #
-    #   For and , whether you can include this parameter, and the allowed
-    #   values differ depending on the type of block device mapping you are
-    #   creating.
+    #   For [CreateImage][4] and [RegisterImage][5], whether you can include
+    #   this parameter, and the allowed values differ depending on the type
+    #   of block device mapping you are creating.
     #
     #   * If you are creating a block device mapping for a **new (empty)
     #     volume**, you can include this parameter, and specify either
@@ -36538,6 +36640,9 @@ module Aws::EC2
     #
     #   [1]: https://docs.aws.amazon.com/ebs/latest/userguide/ebs-encryption.html
     #   [2]: https://docs.aws.amazon.com/ebs/latest/userguide/ebs-encryption-requirements.html#ebs-encryption_supported_instances
+    #   [3]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DescribeImageAttribute
+    #   [4]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateImage
+    #   [5]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RegisterImage
     #   @return [Boolean]
     #
     # @!attribute [rw] delete_on_termination
@@ -45123,6 +45228,9 @@ module Aws::EC2
     #
     #   * For instance types with GPU accelerators, specify `gpu`.
     #
+    #   * For instance types with Inference accelerators, specify
+    #     `inference`.
+    #
     #   Default: Any accelerator type
     #   @return [Array<String>]
     #
@@ -45606,6 +45714,9 @@ module Aws::EC2
     #
     #   * For instance types with GPU accelerators, specify `gpu`.
     #
+    #   * For instance types with Inference accelerators, specify
+    #     `inference`.
+    #
     #   Default: Any accelerator type
     #   @return [Array<String>]
     #
@@ -46677,6 +46788,24 @@ module Aws::EC2
     #   addresses. This option is disabled by default.
     #   @return [Boolean]
     #
+    # @!attribute [rw] metered_account
+    #   A metered account is an Amazon Web Services account that is charged
+    #   for active IP addresses managed in IPAM. For more information, see
+    #   [Enable cost distribution][1] in the *Amazon VPC IPAM User Guide*.
+    #
+    #   Possible values:
+    #
+    #   * `ipam-owner` (default): The Amazon Web Services account which owns
+    #     the IPAM is charged for all active IP addresses managed in IPAM.
+    #
+    #   * `resource-owner`: The Amazon Web Services account that owns the IP
+    #     address is charged for the active IP address.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/vpc/latest/ipam/ipam-enable-cost-distro.html
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/Ipam AWS API Documentation
     #
     class Ipam < Struct.new(
@@ -46696,7 +46825,8 @@ module Aws::EC2
       :resource_discovery_association_count,
       :state_message,
       :tier,
-      :enable_private_gua)
+      :enable_private_gua,
+      :metered_account)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -49658,11 +49788,13 @@ module Aws::EC2
     #   @return [String]
     #
     # @!attribute [rw] device_index
-    #   The device index for the network interface attachment. Each network
-    #   interface requires a device index. If you create a launch template
-    #   that includes secondary network interfaces but not a primary network
-    #   interface, then you must add a primary network interface as a launch
-    #   parameter when you launch an instance from the template.
+    #   The device index for the network interface attachment. The primary
+    #   network interface has a device index of 0. Each network interface is
+    #   of type `interface`, you must specify a device index. If you create
+    #   a launch template that includes secondary network interfaces but not
+    #   a primary network interface, then you must add a primary network
+    #   interface as a launch parameter when you launch an instance from the
+    #   template.
     #   @return [Integer]
     #
     # @!attribute [rw] groups
@@ -51880,12 +52012,26 @@ module Aws::EC2
     #   is established.
     #   @return [Types::ClientLoginBannerOptions]
     #
+    # @!attribute [rw] client_route_enforcement_options
+    #   Client route enforcement is a feature of the Client VPN service that
+    #   helps enforce administrator defined routes on devices connected
+    #   through the VPN. T his feature helps improve your security posture
+    #   by ensuring that network traffic originating from a connected client
+    #   is not inadvertently sent outside the VPN tunnel.
+    #
+    #   Client route enforcement works by monitoring the route table of a
+    #   connected device for routing policy changes to the VPN connection.
+    #   If the feature detects any VPN routing policy modifications, it will
+    #   automatically force an update to the route table, reverting it back
+    #   to the expected route configurations.
+    #   @return [Types::ClientRouteEnforcementOptions]
+    #
     # @!attribute [rw] disconnect_on_session_timeout
     #   Indicates whether the client VPN session is disconnected after the
     #   maximum timeout specified in `sessionTimeoutHours` is reached. If
     #   `true`, users are prompted to reconnect client VPN. If `false`,
     #   client VPN attempts to reconnect automatically. The default value is
-    #   `false`.
+    #   `true`.
     #   @return [Boolean]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyClientVpnEndpointRequest AWS API Documentation
@@ -51905,6 +52051,7 @@ module Aws::EC2
       :client_connect_options,
       :session_timeout_hours,
       :client_login_banner_options,
+      :client_route_enforcement_options,
       :disconnect_on_session_timeout)
       SENSITIVE = []
       include Aws::Structure
@@ -52435,6 +52582,14 @@ module Aws::EC2
     # @!attribute [rw] attribute
     #   The name of the attribute to modify.
     #
+    #   <note markdown="1"> When changing the instance type: If the original instance type is
+    #   configured for configurable bandwidth, and the desired instance type
+    #   doesn't support configurable bandwidth, first set the existing
+    #   bandwidth configuration to `default` using the
+    #   ModifyInstanceNetworkPerformanceOptions operation.
+    #
+    #    </note>
+    #
     #   You can modify the following attributes only:
     #   `disableApiTermination` \| `instanceType` \| `kernel` \| `ramdisk`
     #   \| `instanceInitiatedShutdownBehavior` \| `blockDeviceMapping` \|
@@ -53346,6 +53501,24 @@ module Aws::EC2
     #   addresses. This option is disabled by default.
     #   @return [Boolean]
     #
+    # @!attribute [rw] metered_account
+    #   A metered account is an Amazon Web Services account that is charged
+    #   for active IP addresses managed in IPAM. For more information, see
+    #   [Enable cost distribution][1] in the *Amazon VPC IPAM User Guide*.
+    #
+    #   Possible values:
+    #
+    #   * `ipam-owner` (default): The Amazon Web Services account which owns
+    #     the IPAM is charged for all active IP addresses managed in IPAM.
+    #
+    #   * `resource-owner`: The Amazon Web Services account that owns the IP
+    #     address is charged for the active IP address.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/vpc/latest/ipam/ipam-enable-cost-distro.html
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyIpamRequest AWS API Documentation
     #
     class ModifyIpamRequest < Struct.new(
@@ -53355,7 +53528,8 @@ module Aws::EC2
       :add_operating_regions,
       :remove_operating_regions,
       :tier,
-      :enable_private_gua)
+      :enable_private_gua,
+      :metered_account)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -58901,12 +59075,19 @@ module Aws::EC2
     #   unsupported instance families.
     #
     #   If you specify an unsupported instance family as a value for
-    #   baseline performance, the API returns an empty response for and an
-    #   exception for , , , and .
+    #   baseline performance, the API returns an empty response for
+    #   [GetInstanceTypesFromInstanceRequirements][2] and an exception for
+    #   [CreateFleet][3], [RequestSpotFleet][4], [ModifyFleet][5], and
+    #   [ModifySpotFleetRequest][6].
     #
     #
     #
     #   [1]: https://docs.aws.amazon.com/ec2/latest/instancetypes/instance-type-names.html
+    #   [2]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetInstanceTypesFromInstanceRequirements
+    #   [3]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateFleet
+    #   [4]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RequestSpotFleet
+    #   [5]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ModifyFleet
+    #   [6]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ModifySpotFleetRequest
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/PerformanceFactorReference AWS API Documentation
@@ -58964,12 +59145,19 @@ module Aws::EC2
     #   unsupported instance families.
     #
     #   If you specify an unsupported instance family as a value for
-    #   baseline performance, the API returns an empty response for and an
-    #   exception for , , , and .
+    #   baseline performance, the API returns an empty response for
+    #   [GetInstanceTypesFromInstanceRequirements][2] and an exception for
+    #   [CreateFleet][3], [RequestSpotFleet][4], [ModifyFleet][5], and
+    #   [ModifySpotFleetRequest][6].
     #
     #
     #
     #   [1]: https://docs.aws.amazon.com/ec2/latest/instancetypes/instance-type-names.html
+    #   [2]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetInstanceTypesFromInstanceRequirements
+    #   [3]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateFleet
+    #   [4]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RequestSpotFleet
+    #   [5]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ModifyFleet
+    #   [6]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ModifySpotFleetRequest
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/PerformanceFactorReferenceRequest AWS API Documentation
@@ -64537,15 +64725,15 @@ module Aws::EC2
     # Amazon VPC Route Server simplifies routing for traffic between
     # workloads that are deployed within a VPC and its internet gateways.
     # With this feature, VPC Route Server dynamically updates VPC and
-    # gateway route tables with your preferred IPv4 or IPv6 routes to
-    # achieve routing fault tolerance for those workloads. This enables you
-    # to automatically reroute traffic within a VPC, which increases the
+    # internet gateway route tables with your preferred IPv4 or IPv6 routes
+    # to achieve routing fault tolerance for those workloads. This enables
+    # you to automatically reroute traffic within a VPC, which increases the
     # manageability of VPC routing and interoperability with third-party
     # workloads.
     #
     # Route server supports the follow route table types:
     #
-    # * VPC route tables
+    # * VPC route tables not associated with subnets
     #
     # * Subnet route tables
     #
@@ -64626,8 +64814,7 @@ module Aws::EC2
     # Describes the association between a route server and a VPC.
     #
     # A route server association is the connection established between a
-    # route server and a VPC. This is a fundamental configuration step that
-    # enables the route server to work with appliances in your VPC.
+    # route server and a VPC.
     #
     # @!attribute [rw] route_server_id
     #   The ID of the associated route server.
@@ -64761,9 +64948,12 @@ module Aws::EC2
     # Describes a route server endpoint and its properties.
     #
     # A route server endpoint is an Amazon Web Services-managed component
-    # inside a subnet that facilitates BGP (Border Gateway Protocol)
-    # connections between your route server and your BGP peers. Create two
-    # endpoints per subnet for redundancy.
+    # inside a subnet that facilitates [BGP (Border Gateway Protocol)][1]
+    # connections between your route server and your BGP peers.
+    #
+    #
+    #
+    # [1]: https://en.wikipedia.org/wiki/Border_Gateway_Protocol
     #
     # @!attribute [rw] route_server_id
     #   The ID of the route server associated with this endpoint.
@@ -64819,9 +65009,10 @@ module Aws::EC2
 
     # Describes a BGP peer configuration for a route server endpoint.
     #
-    # A route server peer is a network appliance or function deployed in
-    # Amazon Web Services, such as firewall appliances and other network
-    # security functions, that meet these requirements:
+    # A route server peer is a session between a route server endpoint and
+    # the device deployed in Amazon Web Services (such as a firewall
+    # appliance or other network security function running on an EC2
+    # instance). The device must meet these requirements:
     #
     # * Have an elastic network interface in the VPC
     #
@@ -64868,7 +65059,7 @@ module Aws::EC2
     #   @return [String]
     #
     # @!attribute [rw] peer_address
-    #   The IPv4 address of the peer.
+    #   The IPv4 address of the peer device.
     #   @return [String]
     #
     # @!attribute [rw] bgp_options
@@ -64969,8 +65160,8 @@ module Aws::EC2
     #   The [Forwarding Information Base (FIB)][2] serves as a forwarding
     #   table for what route server has determined are the best-path routes
     #   in the RIB after evaluating all available routing information and
-    #   policies. The FIB routes that are installed on the route tables. The
-    #   FIB is recomputed whenever there are changes to the RIB.
+    #   policies. The FIB routes are installed on the route tables. The FIB
+    #   is recomputed whenever there are changes to the RIB.
     #
     #
     #
@@ -69684,12 +69875,22 @@ module Aws::EC2
     #   @return [Boolean]
     #
     # @!attribute [rw] force
-    #   Forces the instances to stop. The instances do not have an
-    #   opportunity to flush file system caches or file system metadata. If
-    #   you use this option, you must perform file system check and repair
-    #   procedures. This option is not recommended for Windows instances.
+    #   Forces the instance to stop. The instance will first attempt a
+    #   graceful shutdown, which includes flushing file system caches and
+    #   metadata. If the graceful shutdown fails to complete within the
+    #   timeout period, the instance shuts down forcibly without flushing
+    #   the file system caches and metadata.
+    #
+    #   After using this option, you must perform file system check and
+    #   repair procedures. This option is not recommended for Windows
+    #   instances. For more information, see [Troubleshoot Amazon EC2
+    #   instance stop issues][1] in the *Amazon EC2 User Guide*.
     #
     #   Default: `false`
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/TroubleshootingInstancesStopping.html
     #   @return [Boolean]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/StopInstancesRequest AWS API Documentation
@@ -71692,7 +71893,10 @@ module Aws::EC2
     #
     # @!attribute [rw] default_route_table_association
     #   Indicates whether resource attachments are automatically associated
-    #   with the default association route table.
+    #   with the default association route table. Enabled by default. If
+    #   `defaultRouteTableAssociation` is set to `enable`, Amazon Web
+    #   Services Transit Gateway will create the default transit gateway
+    #   route table.
     #   @return [String]
     #
     # @!attribute [rw] association_default_route_table_id
@@ -71701,7 +71905,10 @@ module Aws::EC2
     #
     # @!attribute [rw] default_route_table_propagation
     #   Indicates whether resource attachments automatically propagate
-    #   routes to the default propagation route table.
+    #   routes to the default propagation route table. Enabled by default.
+    #   If `defaultRouteTablePropagation` is set to `enable`, Amazon Web
+    #   Services Transit Gateway will create the default transit gateway
+    #   route table.
     #   @return [String]
     #
     # @!attribute [rw] propagation_default_route_table_id

data/lib/aws-sdk-ec2.rb

@@ -78,7 +78,7 @@ module Aws::EC2
   autoload :VpcPeeringConnection, 'aws-sdk-ec2/vpc_peering_connection'
   autoload :VpcAddress, 'aws-sdk-ec2/vpc_address'
 
-  GEM_VERSION = '1.514.0'
+  GEM_VERSION = '1.517.0'
 
 end
 

data/sig/classic_address.rbs

@@ -54,7 +54,7 @@ module Aws
       def carrier_ip: () -> ::String
 
       # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/EC2/ClassicAddress.html#service_managed-instance_method
-      def service_managed: () -> ("alb" | "nlb")
+      def service_managed: () -> ("alb" | "nlb" | "rnat")
 
       # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/EC2/ClassicAddress.html#instance_id-instance_method
       def instance_id: () -> ::String

data/sig/client.rbs

@@ -1273,6 +1273,9 @@ module Aws
                                           enabled: bool?,
                                           banner_text: ::String?
                                         },
+                                        ?client_route_enforcement_options: {
+                                          enforced: bool?
+                                        },
                                         ?disconnect_on_session_timeout: bool
                                       ) -> _CreateClientVpnEndpointResponseSuccess
                                     | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateClientVpnEndpointResponseSuccess
@@ -1848,7 +1851,8 @@ module Aws
                          ],
                          ?client_token: ::String,
                          ?tier: ("free" | "advanced"),
-                         ?enable_private_gua: bool
+                         ?enable_private_gua: bool,
+                         ?metered_account: ("ipam-owner" | "resource-owner")
                        ) -> _CreateIpamResponseSuccess
                      | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateIpamResponseSuccess
 
@@ -10594,6 +10598,9 @@ module Aws
                                           enabled: bool?,
                                           banner_text: ::String?
                                         },
+                                        ?client_route_enforcement_options: {
+                                          enforced: bool?
+                                        },
                                         ?disconnect_on_session_timeout: bool
                                       ) -> _ModifyClientVpnEndpointResponseSuccess
                                     | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ModifyClientVpnEndpointResponseSuccess
@@ -11072,7 +11079,8 @@ module Aws
                            },
                          ],
                          ?tier: ("free" | "advanced"),
-                         ?enable_private_gua: bool
+                         ?enable_private_gua: bool,
+                         ?metered_account: ("ipam-owner" | "resource-owner")
                        ) -> _ModifyIpamResponseSuccess
                      | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ModifyIpamResponseSuccess