aws-sdk-elasticloadbalancingv2 1.50.0 → 1.55.0

data/lib/aws-sdk-elasticloadbalancingv2/client_api.rb

@@ -119,6 +119,7 @@ module Aws::ElasticLoadBalancingV2
     FixedResponseActionMessage = Shapes::StringShape.new(name: 'FixedResponseActionMessage')
     FixedResponseActionStatusCode = Shapes::StringShape.new(name: 'FixedResponseActionStatusCode')
     ForwardActionConfig = Shapes::StructureShape.new(name: 'ForwardActionConfig')
+    GrpcCode = Shapes::StringShape.new(name: 'GrpcCode')
     HealthCheckEnabled = Shapes::BooleanShape.new(name: 'HealthCheckEnabled')
     HealthCheckIntervalSeconds = Shapes::IntegerShape.new(name: 'HealthCheckIntervalSeconds')
     HealthCheckPort = Shapes::StringShape.new(name: 'HealthCheckPort')
@@ -188,6 +189,7 @@ module Aws::ElasticLoadBalancingV2
     PriorityInUseException = Shapes::StructureShape.new(name: 'PriorityInUseException')
     PrivateIPv4Address = Shapes::StringShape.new(name: 'PrivateIPv4Address')
     ProtocolEnum = Shapes::StringShape.new(name: 'ProtocolEnum')
+    ProtocolVersion = Shapes::StringShape.new(name: 'ProtocolVersion')
     QueryStringConditionConfig = Shapes::StructureShape.new(name: 'QueryStringConditionConfig')
     QueryStringKeyValuePair = Shapes::StructureShape.new(name: 'QueryStringKeyValuePair')
     QueryStringKeyValuePairList = Shapes::ListShape.new(name: 'QueryStringKeyValuePairList')
@@ -377,12 +379,13 @@ module Aws::ElasticLoadBalancingV2
     Ciphers.member = Shapes::ShapeRef.new(shape: Cipher)
 
     CreateListenerInput.add_member(:load_balancer_arn, Shapes::ShapeRef.new(shape: LoadBalancerArn, required: true, location_name: "LoadBalancerArn"))
-    CreateListenerInput.add_member(:protocol, Shapes::ShapeRef.new(shape: ProtocolEnum, required: true, location_name: "Protocol"))
-    CreateListenerInput.add_member(:port, Shapes::ShapeRef.new(shape: Port, required: true, location_name: "Port"))
+    CreateListenerInput.add_member(:protocol, Shapes::ShapeRef.new(shape: ProtocolEnum, location_name: "Protocol"))
+    CreateListenerInput.add_member(:port, Shapes::ShapeRef.new(shape: Port, location_name: "Port"))
     CreateListenerInput.add_member(:ssl_policy, Shapes::ShapeRef.new(shape: SslPolicyName, location_name: "SslPolicy"))
     CreateListenerInput.add_member(:certificates, Shapes::ShapeRef.new(shape: CertificateList, location_name: "Certificates"))
     CreateListenerInput.add_member(:default_actions, Shapes::ShapeRef.new(shape: Actions, required: true, location_name: "DefaultActions"))
     CreateListenerInput.add_member(:alpn_policy, Shapes::ShapeRef.new(shape: AlpnPolicyName, location_name: "AlpnPolicy"))
+    CreateListenerInput.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "Tags"))
     CreateListenerInput.struct_class = Types::CreateListenerInput
 
     CreateListenerOutput.add_member(:listeners, Shapes::ShapeRef.new(shape: Listeners, location_name: "Listeners"))
@@ -406,6 +409,7 @@ module Aws::ElasticLoadBalancingV2
     CreateRuleInput.add_member(:conditions, Shapes::ShapeRef.new(shape: RuleConditionList, required: true, location_name: "Conditions"))
     CreateRuleInput.add_member(:priority, Shapes::ShapeRef.new(shape: RulePriority, required: true, location_name: "Priority"))
     CreateRuleInput.add_member(:actions, Shapes::ShapeRef.new(shape: Actions, required: true, location_name: "Actions"))
+    CreateRuleInput.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "Tags"))
     CreateRuleInput.struct_class = Types::CreateRuleInput
 
     CreateRuleOutput.add_member(:rules, Shapes::ShapeRef.new(shape: Rules, location_name: "Rules"))
@@ -413,6 +417,7 @@ module Aws::ElasticLoadBalancingV2
 
     CreateTargetGroupInput.add_member(:name, Shapes::ShapeRef.new(shape: TargetGroupName, required: true, location_name: "Name"))
     CreateTargetGroupInput.add_member(:protocol, Shapes::ShapeRef.new(shape: ProtocolEnum, location_name: "Protocol"))
+    CreateTargetGroupInput.add_member(:protocol_version, Shapes::ShapeRef.new(shape: ProtocolVersion, location_name: "ProtocolVersion"))
     CreateTargetGroupInput.add_member(:port, Shapes::ShapeRef.new(shape: Port, location_name: "Port"))
     CreateTargetGroupInput.add_member(:vpc_id, Shapes::ShapeRef.new(shape: VpcId, location_name: "VpcId"))
     CreateTargetGroupInput.add_member(:health_check_protocol, Shapes::ShapeRef.new(shape: ProtocolEnum, location_name: "HealthCheckProtocol"))
@@ -425,6 +430,7 @@ module Aws::ElasticLoadBalancingV2
     CreateTargetGroupInput.add_member(:unhealthy_threshold_count, Shapes::ShapeRef.new(shape: HealthCheckThresholdCount, location_name: "UnhealthyThresholdCount"))
     CreateTargetGroupInput.add_member(:matcher, Shapes::ShapeRef.new(shape: Matcher, location_name: "Matcher"))
     CreateTargetGroupInput.add_member(:target_type, Shapes::ShapeRef.new(shape: TargetTypeEnum, location_name: "TargetType"))
+    CreateTargetGroupInput.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "Tags"))
     CreateTargetGroupInput.struct_class = Types::CreateTargetGroupInput
 
     CreateTargetGroupOutput.add_member(:target_groups, Shapes::ShapeRef.new(shape: TargetGroups, location_name: "TargetGroups"))
@@ -655,7 +661,8 @@ module Aws::ElasticLoadBalancingV2
 
     LoadBalancers.member = Shapes::ShapeRef.new(shape: LoadBalancer)
 
-    Matcher.add_member(:http_code, Shapes::ShapeRef.new(shape: HttpCode, required: true, location_name: "HttpCode"))
+    Matcher.add_member(:http_code, Shapes::ShapeRef.new(shape: HttpCode, location_name: "HttpCode"))
+    Matcher.add_member(:grpc_code, Shapes::ShapeRef.new(shape: GrpcCode, location_name: "GrpcCode"))
     Matcher.struct_class = Types::Matcher
 
     ModifyListenerInput.add_member(:listener_arn, Shapes::ShapeRef.new(shape: ListenerArn, required: true, location_name: "ListenerArn"))
@@ -878,6 +885,7 @@ module Aws::ElasticLoadBalancingV2
     TargetGroup.add_member(:matcher, Shapes::ShapeRef.new(shape: Matcher, location_name: "Matcher"))
     TargetGroup.add_member(:load_balancer_arns, Shapes::ShapeRef.new(shape: LoadBalancerArns, location_name: "LoadBalancerArns"))
     TargetGroup.add_member(:target_type, Shapes::ShapeRef.new(shape: TargetTypeEnum, location_name: "TargetType"))
+    TargetGroup.add_member(:protocol_version, Shapes::ShapeRef.new(shape: ProtocolVersion, location_name: "ProtocolVersion"))
     TargetGroup.struct_class = Types::TargetGroup
 
     TargetGroupArns.member = Shapes::ShapeRef.new(shape: TargetGroupArn)
@@ -1004,6 +1012,7 @@ module Aws::ElasticLoadBalancingV2
         o.errors << Shapes::ShapeRef.new(shape: InvalidLoadBalancerActionException)
         o.errors << Shapes::ShapeRef.new(shape: TooManyUniqueTargetGroupsPerLoadBalancerException)
         o.errors << Shapes::ShapeRef.new(shape: ALPNPolicyNotSupportedException)
+        o.errors << Shapes::ShapeRef.new(shape: TooManyTagsException)
       end)
 
       api.add_operation(:create_load_balancer, Seahorse::Model::Operation.new.tap do |o|
@@ -1047,6 +1056,7 @@ module Aws::ElasticLoadBalancingV2
         o.errors << Shapes::ShapeRef.new(shape: TooManyActionsException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidLoadBalancerActionException)
         o.errors << Shapes::ShapeRef.new(shape: TooManyUniqueTargetGroupsPerLoadBalancerException)
+        o.errors << Shapes::ShapeRef.new(shape: TooManyTagsException)
       end)
 
       api.add_operation(:create_target_group, Seahorse::Model::Operation.new.tap do |o|
@@ -1058,6 +1068,7 @@ module Aws::ElasticLoadBalancingV2
         o.errors << Shapes::ShapeRef.new(shape: DuplicateTargetGroupNameException)
         o.errors << Shapes::ShapeRef.new(shape: TooManyTargetGroupsException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidConfigurationRequestException)
+        o.errors << Shapes::ShapeRef.new(shape: TooManyTagsException)
       end)
 
       api.add_operation(:delete_listener, Seahorse::Model::Operation.new.tap do |o|

data/lib/aws-sdk-elasticloadbalancingv2/types.rb

@@ -527,8 +527,8 @@ module Aws::ElasticLoadBalancingV2
     #
     #       {
     #         load_balancer_arn: "LoadBalancerArn", # required
-    #         protocol: "HTTP", # required, accepts HTTP, HTTPS, TCP, TLS, UDP, TCP_UDP
-    #         port: 1, # required
+    #         protocol: "HTTP", # accepts HTTP, HTTPS, TCP, TLS, UDP, TCP_UDP, GENEVE
+    #         port: 1,
     #         ssl_policy: "SslPolicyName",
     #         certificates: [
     #           {
@@ -597,6 +597,12 @@ module Aws::ElasticLoadBalancingV2
     #           },
     #         ],
     #         alpn_policy: ["AlpnPolicyValue"],
+    #         tags: [
+    #           {
+    #             key: "TagKey", # required
+    #             value: "TagValue",
+    #           },
+    #         ],
     #       }
     #
     # @!attribute [rw] load_balancer_arn
@@ -607,38 +613,21 @@ module Aws::ElasticLoadBalancingV2
     #   The protocol for connections from clients to the load balancer. For
     #   Application Load Balancers, the supported protocols are HTTP and
     #   HTTPS. For Network Load Balancers, the supported protocols are TCP,
-    #   TLS, UDP, and TCP\_UDP.
+    #   TLS, UDP, and TCP\_UDP. You cannot specify a protocol for a Gateway
+    #   Load Balancer.
     #   @return [String]
     #
     # @!attribute [rw] port
-    #   The port on which the load balancer is listening.
+    #   The port on which the load balancer is listening. You cannot specify
+    #   a port for a Gateway Load Balancer.
     #   @return [Integer]
     #
     # @!attribute [rw] ssl_policy
     #   \[HTTPS and TLS listeners\] The security policy that defines which
-    #   protocols and ciphers are supported. The following are the possible
-    #   values:
-    #
-    #   * `ELBSecurityPolicy-2016-08`
-    #
-    #   * `ELBSecurityPolicy-TLS-1-0-2015-04`
-    #
-    #   * `ELBSecurityPolicy-TLS-1-1-2017-01`
-    #
-    #   * `ELBSecurityPolicy-TLS-1-2-2017-01`
-    #
-    #   * `ELBSecurityPolicy-TLS-1-2-Ext-2018-06`
-    #
-    #   * `ELBSecurityPolicy-FS-2018-06`
-    #
-    #   * `ELBSecurityPolicy-FS-1-1-2019-08`
-    #
-    #   * `ELBSecurityPolicy-FS-1-2-2019-08`
-    #
-    #   * `ELBSecurityPolicy-FS-1-2-Res-2019-08`
+    #   protocols and ciphers are supported.
     #
-    #   For more information, see [Security Policies][1] in the *Application
-    #   Load Balancers Guide* and [Security Policies][2] in the *Network
+    #   For more information, see [Security policies][1] in the *Application
+    #   Load Balancers Guide* and [Security policies][2] in the *Network
     #   Load Balancers Guide*.
     #
     #
@@ -651,34 +640,10 @@ module Aws::ElasticLoadBalancingV2
     #   \[HTTPS and TLS listeners\] The default certificate for the
     #   listener. You must provide exactly one certificate. Set
     #   `CertificateArn` to the certificate ARN but do not set `IsDefault`.
-    #
-    #   To create a certificate list for the listener, use
-    #   AddListenerCertificates.
     #   @return [Array<Types::Certificate>]
     #
     # @!attribute [rw] default_actions
-    #   The actions for the default rule. The rule must include one forward
-    #   action or one or more fixed-response actions.
-    #
-    #   If the action type is `forward`, you specify one or more target
-    #   groups. The protocol of the target group must be HTTP or HTTPS for
-    #   an Application Load Balancer. The protocol of the target group must
-    #   be TCP, TLS, UDP, or TCP\_UDP for a Network Load Balancer.
-    #
-    #   \[HTTPS listeners\] If the action type is `authenticate-oidc`, you
-    #   authenticate users through an identity provider that is OpenID
-    #   Connect (OIDC) compliant.
-    #
-    #   \[HTTPS listeners\] If the action type is `authenticate-cognito`,
-    #   you authenticate users through the user pools supported by Amazon
-    #   Cognito.
-    #
-    #   \[Application Load Balancer\] If the action type is `redirect`, you
-    #   redirect specified client requests from one URL to another.
-    #
-    #   \[Application Load Balancer\] If the action type is
-    #   `fixed-response`, you drop specified client requests and return a
-    #   custom HTTP response.
+    #   The actions for the default rule.
     #   @return [Array<Types::Action>]
     #
     # @!attribute [rw] alpn_policy
@@ -696,7 +661,7 @@ module Aws::ElasticLoadBalancingV2
     #
     #   * `None`
     #
-    #   For more information, see [ALPN Policies][1] in the *Network Load
+    #   For more information, see [ALPN policies][1] in the *Network Load
     #   Balancers Guide*.
     #
     #
@@ -704,6 +669,10 @@ module Aws::ElasticLoadBalancingV2
     #   [1]: https://docs.aws.amazon.com/elasticloadbalancing/latest/network/create-tls-listener.html#alpn-policies
     #   @return [Array<String>]
     #
+    # @!attribute [rw] tags
+    #   The tags to assign to the listener.
+    #   @return [Array<Types::Tag>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/CreateListenerInput AWS API Documentation
     #
     class CreateListenerInput < Struct.new(
@@ -713,7 +682,8 @@ module Aws::ElasticLoadBalancingV2
       :ssl_policy,
       :certificates,
       :default_actions,
-      :alpn_policy)
+      :alpn_policy,
+      :tags)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -751,7 +721,7 @@ module Aws::ElasticLoadBalancingV2
     #             value: "TagValue",
     #           },
     #         ],
-    #         type: "application", # accepts application, network
+    #         type: "application", # accepts application, network, gateway
     #         ip_address_type: "ipv4", # accepts ipv4, dualstack
     #         customer_owned_ipv_4_pool: "CustomerOwnedIpv4Pool",
     #       }
@@ -781,6 +751,9 @@ module Aws::ElasticLoadBalancingV2
     #
     #   \[Network Load Balancers\] You can specify subnets from one or more
     #   Availability Zones.
+    #
+    #   \[Gateway Load Balancers\] You can specify subnets from one or more
+    #   Availability Zones.
     #   @return [Array<String>]
     #
     # @!attribute [rw] subnet_mappings
@@ -803,6 +776,10 @@ module Aws::ElasticLoadBalancingV2
     #   subnet if you need static IP addresses for your internet-facing load
     #   balancer. For internal load balancers, you can specify one private
     #   IP address per subnet from the IPv4 range of the subnet.
+    #
+    #   \[Gateway Load Balancers\] You can specify subnets from one or more
+    #   Availability Zones. You cannot specify Elastic IP addresses for your
+    #   subnets.
     #   @return [Array<Types::SubnetMapping>]
     #
     # @!attribute [rw] security_groups
@@ -824,10 +801,12 @@ module Aws::ElasticLoadBalancingV2
     #   access to the VPC for the load balancer.
     #
     #   The default is an Internet-facing load balancer.
+    #
+    #   You cannot specify a scheme for a Gateway Load Balancer.
     #   @return [String]
     #
     # @!attribute [rw] tags
-    #   One or more tags to assign to the load balancer.
+    #   The tags to assign to the load balancer.
     #   @return [Array<Types::Tag>]
     #
     # @!attribute [rw] type
@@ -970,6 +949,12 @@ module Aws::ElasticLoadBalancingV2
     #             },
     #           },
     #         ],
+    #         tags: [
+    #           {
+    #             key: "TagKey", # required
+    #             value: "TagValue",
+    #           },
+    #         ],
     #       }
     #
     # @!attribute [rw] listener_arn
@@ -977,11 +962,7 @@ module Aws::ElasticLoadBalancingV2
     #   @return [String]
     #
     # @!attribute [rw] conditions
-    #   The conditions. Each rule can optionally include up to one of each
-    #   of the following conditions: `http-request-method`, `host-header`,
-    #   `path-pattern`, and `source-ip`. Each rule can also optionally
-    #   include one or more of each of the following conditions:
-    #   `http-header` and `query-string`.
+    #   The conditions.
     #   @return [Array<Types::RuleCondition>]
     #
     # @!attribute [rw] priority
@@ -990,38 +971,21 @@ module Aws::ElasticLoadBalancingV2
     #   @return [Integer]
     #
     # @!attribute [rw] actions
-    #   The actions. Each rule must include exactly one of the following
-    #   types of actions: `forward`, `fixed-response`, or `redirect`, and it
-    #   must be the last action to be performed.
-    #
-    #   If the action type is `forward`, you specify one or more target
-    #   groups. The protocol of the target group must be HTTP or HTTPS for
-    #   an Application Load Balancer. The protocol of the target group must
-    #   be TCP, TLS, UDP, or TCP\_UDP for a Network Load Balancer.
-    #
-    #   \[HTTPS listeners\] If the action type is `authenticate-oidc`, you
-    #   authenticate users through an identity provider that is OpenID
-    #   Connect (OIDC) compliant.
-    #
-    #   \[HTTPS listeners\] If the action type is `authenticate-cognito`,
-    #   you authenticate users through the user pools supported by Amazon
-    #   Cognito.
-    #
-    #   \[Application Load Balancer\] If the action type is `redirect`, you
-    #   redirect specified client requests from one URL to another.
-    #
-    #   \[Application Load Balancer\] If the action type is
-    #   `fixed-response`, you drop specified client requests and return a
-    #   custom HTTP response.
+    #   The actions.
     #   @return [Array<Types::Action>]
     #
+    # @!attribute [rw] tags
+    #   The tags to assign to the rule.
+    #   @return [Array<Types::Tag>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/CreateRuleInput AWS API Documentation
     #
     class CreateRuleInput < Struct.new(
       :listener_arn,
       :conditions,
       :priority,
-      :actions)
+      :actions,
+      :tags)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -1043,10 +1007,11 @@ module Aws::ElasticLoadBalancingV2
     #
     #       {
     #         name: "TargetGroupName", # required
-    #         protocol: "HTTP", # accepts HTTP, HTTPS, TCP, TLS, UDP, TCP_UDP
+    #         protocol: "HTTP", # accepts HTTP, HTTPS, TCP, TLS, UDP, TCP_UDP, GENEVE
+    #         protocol_version: "ProtocolVersion",
     #         port: 1,
     #         vpc_id: "VpcId",
-    #         health_check_protocol: "HTTP", # accepts HTTP, HTTPS, TCP, TLS, UDP, TCP_UDP
+    #         health_check_protocol: "HTTP", # accepts HTTP, HTTPS, TCP, TLS, UDP, TCP_UDP, GENEVE
     #         health_check_port: "HealthCheckPort",
     #         health_check_enabled: false,
     #         health_check_path: "Path",
@@ -1055,9 +1020,16 @@ module Aws::ElasticLoadBalancingV2
     #         healthy_threshold_count: 1,
     #         unhealthy_threshold_count: 1,
     #         matcher: {
-    #           http_code: "HttpCode", # required
+    #           http_code: "HttpCode",
+    #           grpc_code: "GrpcCode",
     #         },
     #         target_type: "instance", # accepts instance, ip, lambda
+    #         tags: [
+    #           {
+    #             key: "TagKey", # required
+    #             value: "TagValue",
+    #           },
+    #         ],
     #       }
     #
     # @!attribute [rw] name
@@ -1072,15 +1044,24 @@ module Aws::ElasticLoadBalancingV2
     #   The protocol to use for routing traffic to the targets. For
     #   Application Load Balancers, the supported protocols are HTTP and
     #   HTTPS. For Network Load Balancers, the supported protocols are TCP,
-    #   TLS, UDP, or TCP\_UDP. A TCP\_UDP listener must be associated with a
+    #   TLS, UDP, or TCP\_UDP. For Gateway Load Balancers, the supported
+    #   protocol is GENEVE. A TCP\_UDP listener must be associated with a
     #   TCP\_UDP target group. If the target is a Lambda function, this
     #   parameter does not apply.
     #   @return [String]
     #
+    # @!attribute [rw] protocol_version
+    #   \[HTTP/HTTPS protocol\] The protocol version. Specify `GRPC` to send
+    #   requests to targets using gRPC. Specify `HTTP2` to send requests to
+    #   targets using HTTP/2. The default is `HTTP1`, which sends requests
+    #   to targets using HTTP/1.1.
+    #   @return [String]
+    #
     # @!attribute [rw] port
     #   The port on which the targets receive traffic. This port is used
     #   unless you specify a port override when registering the target. If
-    #   the target is a Lambda function, this parameter does not apply.
+    #   the target is a Lambda function, this parameter does not apply. If
+    #   the protocol is GENEVE, the supported port is 6081.
     #   @return [Integer]
     #
     # @!attribute [rw] vpc_id
@@ -1092,16 +1073,18 @@ module Aws::ElasticLoadBalancingV2
     # @!attribute [rw] health_check_protocol
     #   The protocol the load balancer uses when performing health checks on
     #   targets. For Application Load Balancers, the default is HTTP. For
-    #   Network Load Balancers, the default is TCP. The TCP protocol is
-    #   supported for health checks only if the protocol of the target group
-    #   is TCP, TLS, UDP, or TCP\_UDP. The TLS, UDP, and TCP\_UDP protocols
-    #   are not supported for health checks.
+    #   Network Load Balancers and Gateway Load Balancers, the default is
+    #   TCP. The TCP protocol is not supported for health checks if the
+    #   protocol of the target group is HTTP or HTTPS. The GENEVE, TLS, UDP,
+    #   and TCP\_UDP protocols are not supported for health checks.
     #   @return [String]
     #
     # @!attribute [rw] health_check_port
     #   The port the load balancer uses when performing health checks on
-    #   targets. The default is `traffic-port`, which is the port on which
-    #   each target receives traffic from the load balancer.
+    #   targets. If the protocol is HTTP, HTTPS, TCP, TLS, UDP, or TCP\_UDP,
+    #   the default is `traffic-port`, which is the port on which each
+    #   target receives traffic from the load balancer. If the protocol is
+    #   GENEVE, the default is port 80.
     #   @return [String]
     #
     # @!attribute [rw] health_check_enabled
@@ -1112,47 +1095,55 @@ module Aws::ElasticLoadBalancingV2
     #   @return [Boolean]
     #
     # @!attribute [rw] health_check_path
-    #   \[HTTP/HTTPS health checks\] The ping path that is the destination
-    #   on the targets for health checks. The default is /.
+    #   \[HTTP/HTTPS health checks\] The destination for health checks on
+    #   the targets.
+    #
+    #   \[HTTP1 or HTTP2 protocol version\] The ping path. The default is /.
+    #
+    #   \[GRPC protocol version\] The path of a custom health check method
+    #   with the format /package.service/method. The default is
+    #   /AWS.ALB/healthcheck.
     #   @return [String]
     #
     # @!attribute [rw] health_check_interval_seconds
     #   The approximate amount of time, in seconds, between health checks of
-    #   an individual target. For HTTP and HTTPS health checks, the range is
-    #   5–300 seconds. For TCP health checks, the supported values are 10
-    #   and 30 seconds. If the target type is `instance` or `ip`, the
-    #   default is 30 seconds. If the target type is `lambda`, the default
+    #   an individual target. For TCP health checks, the supported values
+    #   are 10 and 30 seconds. If the target type is `instance` or `ip`, the
+    #   default is 30 seconds. If the target group protocol is GENEVE, the
+    #   default is 10 seconds. If the target type is `lambda`, the default
     #   is 35 seconds.
     #   @return [Integer]
     #
     # @!attribute [rw] health_check_timeout_seconds
     #   The amount of time, in seconds, during which no response from a
     #   target means a failed health check. For target groups with a
-    #   protocol of HTTP or HTTPS, the default is 5 seconds. For target
-    #   groups with a protocol of TCP or TLS, this value must be 6 seconds
-    #   for HTTP health checks and 10 seconds for TCP and HTTPS health
-    #   checks. If the target type is `lambda`, the default is 30 seconds.
+    #   protocol of HTTP, HTTPS, or GENEVE, the default is 5 seconds. For
+    #   target groups with a protocol of TCP or TLS, this value must be 6
+    #   seconds for HTTP health checks and 10 seconds for TCP and HTTPS
+    #   health checks. If the target type is `lambda`, the default is 30
+    #   seconds.
     #   @return [Integer]
     #
     # @!attribute [rw] healthy_threshold_count
     #   The number of consecutive health checks successes required before
     #   considering an unhealthy target healthy. For target groups with a
     #   protocol of HTTP or HTTPS, the default is 5. For target groups with
-    #   a protocol of TCP or TLS, the default is 3. If the target type is
-    #   `lambda`, the default is 5.
+    #   a protocol of TCP, TLS, or GENEVE, the default is 3. If the target
+    #   type is `lambda`, the default is 5.
     #   @return [Integer]
     #
     # @!attribute [rw] unhealthy_threshold_count
     #   The number of consecutive health check failures required before
-    #   considering a target unhealthy. For target groups with a protocol of
-    #   HTTP or HTTPS, the default is 2. For target groups with a protocol
-    #   of TCP or TLS, this value must be the same as the healthy threshold
-    #   count. If the target type is `lambda`, the default is 2.
+    #   considering a target unhealthy. If the target group protocol is HTTP
+    #   or HTTPS, the default is 2. If the target group protocol is TCP or
+    #   TLS, this value must be the same as the healthy threshold count. If
+    #   the target group protocol is GENEVE, the default is 3. If the target
+    #   type is `lambda`, the default is 2.
     #   @return [Integer]
     #
     # @!attribute [rw] matcher
-    #   \[HTTP/HTTPS health checks\] The HTTP codes to use when checking for
-    #   a successful response from a target.
+    #   \[HTTP/HTTPS health checks\] The HTTP or gRPC codes to use when
+    #   checking for a successful response from a target.
     #   @return [Types::Matcher]
     #
     # @!attribute [rw] target_type
@@ -1160,23 +1151,28 @@ module Aws::ElasticLoadBalancingV2
     #   with this target group. You can't specify targets for a target
     #   group using more than one target type.
     #
-    #   * `instance` - Targets are specified by instance ID. This is the
-    #     default value.
+    #   * `instance` - Register targets by instance ID. This is the default
+    #     value.
     #
-    #   * `ip` - Targets are specified by IP address. You can specify IP
+    #   * `ip` - Register targets by IP address. You can specify IP
     #     addresses from the subnets of the virtual private cloud (VPC) for
     #     the target group, the RFC 1918 range (10.0.0.0/8, 172.16.0.0/12,
     #     and 192.168.0.0/16), and the RFC 6598 range (100.64.0.0/10). You
     #     can't specify publicly routable IP addresses.
     #
-    #   * `lambda` - The target groups contains a single Lambda function.
+    #   * `lambda` - Register a single Lambda function as a target.
     #   @return [String]
     #
+    # @!attribute [rw] tags
+    #   The tags to assign to the target group.
+    #   @return [Array<Types::Tag>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/CreateTargetGroupInput AWS API Documentation
     #
     class CreateTargetGroupInput < Struct.new(
       :name,
       :protocol,
+      :protocol_version,
       :port,
       :vpc_id,
       :health_check_protocol,
@@ -1188,7 +1184,8 @@ module Aws::ElasticLoadBalancingV2
       :healthy_threshold_count,
       :unhealthy_threshold_count,
       :matcher,
-      :target_type)
+      :target_type,
+      :tags)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -2110,6 +2107,16 @@ module Aws::ElasticLoadBalancingV2
     #
     #   * application-load-balancers
     #
+    #   * condition-values-per-alb-rule
+    #
+    #   * condition-wildcards-per-alb-rule
+    #
+    #   * gateway-load-balancers
+    #
+    #   * gateway-load-balancers-per-vpc
+    #
+    #   * geneve-target-groups
+    #
     #   * listeners-per-application-load-balancer
     #
     #   * listeners-per-network-load-balancer
@@ -2128,6 +2135,8 @@ module Aws::ElasticLoadBalancingV2
     #
     #   * targets-per-application-load-balancer
     #
+    #   * targets-per-availability-zone-per-gateway-load-balancer
+    #
     #   * targets-per-availability-zone-per-network-load-balancer
     #
     #   * targets-per-network-load-balancer
@@ -2330,6 +2339,14 @@ module Aws::ElasticLoadBalancingV2
     # @!attribute [rw] key
     #   The name of the attribute.
     #
+    #   The following attribute is supported by all load balancers:
+    #
+    #   * `deletion_protection.enabled` - Indicates whether deletion
+    #     protection is enabled. The value is `true` or `false`. The default
+    #     is `false`.
+    #
+    #   ^
+    #
     #   The following attributes are supported by both Application Load
     #   Balancers and Network Load Balancers:
     #
@@ -2345,10 +2362,6 @@ module Aws::ElasticLoadBalancingV2
     #   * `access_logs.s3.prefix` - The prefix for the location in the S3
     #     bucket for the access logs.
     #
-    #   * `deletion_protection.enabled` - Indicates whether deletion
-    #     protection is enabled. The value is `true` or `false`. The default
-    #     is `false`.
-    #
     #   The following attributes are supported by only Application Load
     #   Balancers:
     #
@@ -2371,8 +2384,8 @@ module Aws::ElasticLoadBalancingV2
     #     Balancing requires that message header names contain only
     #     alphanumeric characters and hyphens.
     #
-    #   The following attributes are supported by only Network Load
-    #   Balancers:
+    #   The following attribute is supported by Network Load Balancers and
+    #   Gateway Load Balancers:
     #
     #   * `load_balancing.cross_zone.enabled` - Indicates whether cross-zone
     #     load balancing is enabled. The value is `true` or `false`. The
@@ -2422,31 +2435,39 @@ module Aws::ElasticLoadBalancingV2
       include Aws::Structure
     end
 
-    # Information to use when checking for a successful response from a
-    # target.
+    # The codes to use when checking for a successful response from a
+    # target. If the protocol version is gRPC, these are gRPC codes.
+    # Otherwise, these are HTTP codes.
     #
     # @note When making an API call, you may pass Matcher
     #   data as a hash:
     #
     #       {
-    #         http_code: "HttpCode", # required
+    #         http_code: "HttpCode",
+    #         grpc_code: "GrpcCode",
     #       }
     #
     # @!attribute [rw] http_code
-    #   The HTTP codes.
-    #
     #   For Application Load Balancers, you can specify values between 200
     #   and 499, and the default value is 200. You can specify multiple
     #   values (for example, "200,202") or a range of values (for example,
     #   "200-299").
     #
-    #   For Network Load Balancers, this is 200–399.
+    #   For Network Load Balancers and Gateway Load Balancers, this must be
+    #   "200–399".
+    #   @return [String]
+    #
+    # @!attribute [rw] grpc_code
+    #   You can specify values between 0 and 99. You can specify multiple
+    #   values (for example, "0,1") or a range of values (for example,
+    #   "0-5"). The default value is 12.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/Matcher AWS API Documentation
     #
     class Matcher < Struct.new(
-      :http_code)
+      :http_code,
+      :grpc_code)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -2457,7 +2478,7 @@ module Aws::ElasticLoadBalancingV2
     #       {
     #         listener_arn: "ListenerArn", # required
     #         port: 1,
-    #         protocol: "HTTP", # accepts HTTP, HTTPS, TCP, TLS, UDP, TCP_UDP
+    #         protocol: "HTTP", # accepts HTTP, HTTPS, TCP, TLS, UDP, TCP_UDP, GENEVE
     #         ssl_policy: "SslPolicyName",
     #         certificates: [
     #           {
@@ -2533,42 +2554,25 @@ module Aws::ElasticLoadBalancingV2
     #   @return [String]
     #
     # @!attribute [rw] port
-    #   The port for connections from clients to the load balancer.
+    #   The port for connections from clients to the load balancer. You
+    #   cannot specify a port for a Gateway Load Balancer.
     #   @return [Integer]
     #
     # @!attribute [rw] protocol
     #   The protocol for connections from clients to the load balancer.
     #   Application Load Balancers support the HTTP and HTTPS protocols.
     #   Network Load Balancers support the TCP, TLS, UDP, and TCP\_UDP
-    #   protocols.
+    #   protocols. You cannot specify a protocol for a Gateway Load
+    #   Balancer.
     #   @return [String]
     #
     # @!attribute [rw] ssl_policy
     #   \[HTTPS and TLS listeners\] The security policy that defines which
-    #   protocols and ciphers are supported. The following are the possible
-    #   values:
-    #
-    #   * `ELBSecurityPolicy-2016-08`
-    #
-    #   * `ELBSecurityPolicy-TLS-1-0-2015-04`
-    #
-    #   * `ELBSecurityPolicy-TLS-1-1-2017-01`
-    #
-    #   * `ELBSecurityPolicy-TLS-1-2-2017-01`
-    #
-    #   * `ELBSecurityPolicy-TLS-1-2-Ext-2018-06`
-    #
-    #   * `ELBSecurityPolicy-FS-2018-06`
-    #
-    #   * `ELBSecurityPolicy-FS-1-1-2019-08`
-    #
-    #   * `ELBSecurityPolicy-FS-1-2-2019-08`
-    #
-    #   * `ELBSecurityPolicy-FS-1-2-Res-2019-08`
+    #   protocols and ciphers are supported.
     #
-    #   For more information, see [Security Policies][1] in the *Application
-    #   Load Balancers Guide* and [Security Policies][2] in the *Network
-    #   Load Balancers Guide*.
+    #   For more information, see [Security policies][1] in the *Application
+    #   Load Balancers Guide* or [Security policies][2] in the *Network Load
+    #   Balancers Guide*.
     #
     #
     #
@@ -2580,33 +2584,10 @@ module Aws::ElasticLoadBalancingV2
     #   \[HTTPS and TLS listeners\] The default certificate for the
     #   listener. You must provide exactly one certificate. Set
     #   `CertificateArn` to the certificate ARN but do not set `IsDefault`.
-    #
-    #   To create a certificate list, use AddListenerCertificates.
     #   @return [Array<Types::Certificate>]
     #
     # @!attribute [rw] default_actions
-    #   The actions for the default rule. The rule must include one forward
-    #   action or one or more fixed-response actions.
-    #
-    #   If the action type is `forward`, you specify one or more target
-    #   groups. The protocol of the target group must be HTTP or HTTPS for
-    #   an Application Load Balancer. The protocol of the target group must
-    #   be TCP, TLS, UDP, or TCP\_UDP for a Network Load Balancer.
-    #
-    #   \[HTTPS listeners\] If the action type is `authenticate-oidc`, you
-    #   authenticate users through an identity provider that is OpenID
-    #   Connect (OIDC) compliant.
-    #
-    #   \[HTTPS listeners\] If the action type is `authenticate-cognito`,
-    #   you authenticate users through the user pools supported by Amazon
-    #   Cognito.
-    #
-    #   \[Application Load Balancer\] If the action type is `redirect`, you
-    #   redirect specified client requests from one URL to another.
-    #
-    #   \[Application Load Balancer\] If the action type is
-    #   `fixed-response`, you drop specified client requests and return a
-    #   custom HTTP response.
+    #   The actions for the default rule.
     #   @return [Array<Types::Action>]
     #
     # @!attribute [rw] alpn_policy
@@ -2624,7 +2605,7 @@ module Aws::ElasticLoadBalancingV2
     #
     #   * `None`
     #
-    #   For more information, see [ALPN Policies][1] in the *Network Load
+    #   For more information, see [ALPN policies][1] in the *Network Load
     #   Balancers Guide*.
     #
     #
@@ -2802,36 +2783,11 @@ module Aws::ElasticLoadBalancingV2
     #   @return [String]
     #
     # @!attribute [rw] conditions
-    #   The conditions. Each rule can include zero or one of the following
-    #   conditions: `http-request-method`, `host-header`, `path-pattern`,
-    #   and `source-ip`, and zero or more of the following conditions:
-    #   `http-header` and `query-string`.
+    #   The conditions.
     #   @return [Array<Types::RuleCondition>]
     #
     # @!attribute [rw] actions
-    #   The actions. Each rule must include exactly one of the following
-    #   types of actions: `forward`, `fixed-response`, or `redirect`, and it
-    #   must be the last action to be performed.
-    #
-    #   If the action type is `forward`, you specify one or more target
-    #   groups. The protocol of the target group must be HTTP or HTTPS for
-    #   an Application Load Balancer. The protocol of the target group must
-    #   be TCP, TLS, UDP, or TCP\_UDP for a Network Load Balancer.
-    #
-    #   \[HTTPS listeners\] If the action type is `authenticate-oidc`, you
-    #   authenticate users through an identity provider that is OpenID
-    #   Connect (OIDC) compliant.
-    #
-    #   \[HTTPS listeners\] If the action type is `authenticate-cognito`,
-    #   you authenticate users through the user pools supported by Amazon
-    #   Cognito.
-    #
-    #   \[Application Load Balancer\] If the action type is `redirect`, you
-    #   redirect specified client requests from one URL to another.
-    #
-    #   \[Application Load Balancer\] If the action type is
-    #   `fixed-response`, you drop specified client requests and return a
-    #   custom HTTP response.
+    #   The actions.
     #   @return [Array<Types::Action>]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/ModifyRuleInput AWS API Documentation
@@ -2903,7 +2859,7 @@ module Aws::ElasticLoadBalancingV2
     #
     #       {
     #         target_group_arn: "TargetGroupArn", # required
-    #         health_check_protocol: "HTTP", # accepts HTTP, HTTPS, TCP, TLS, UDP, TCP_UDP
+    #         health_check_protocol: "HTTP", # accepts HTTP, HTTPS, TCP, TLS, UDP, TCP_UDP, GENEVE
     #         health_check_port: "HealthCheckPort",
     #         health_check_path: "Path",
     #         health_check_enabled: false,
@@ -2912,7 +2868,8 @@ module Aws::ElasticLoadBalancingV2
     #         healthy_threshold_count: 1,
     #         unhealthy_threshold_count: 1,
     #         matcher: {
-    #           http_code: "HttpCode", # required
+    #           http_code: "HttpCode",
+    #           grpc_code: "GrpcCode",
     #         },
     #       }
     #
@@ -2923,8 +2880,9 @@ module Aws::ElasticLoadBalancingV2
     # @!attribute [rw] health_check_protocol
     #   The protocol the load balancer uses when performing health checks on
     #   targets. The TCP protocol is supported for health checks only if the
-    #   protocol of the target group is TCP, TLS, UDP, or TCP\_UDP. The TLS,
-    #   UDP, and TCP\_UDP protocols are not supported for health checks.
+    #   protocol of the target group is TCP, TLS, UDP, or TCP\_UDP. The
+    #   GENEVE, TLS, UDP, and TCP\_UDP protocols are not supported for
+    #   health checks.
     #
     #   With Network Load Balancers, you can't modify this setting.
     #   @return [String]
@@ -2935,8 +2893,14 @@ module Aws::ElasticLoadBalancingV2
     #   @return [String]
     #
     # @!attribute [rw] health_check_path
-    #   \[HTTP/HTTPS health checks\] The ping path that is the destination
-    #   for the health check request.
+    #   \[HTTP/HTTPS health checks\] The destination for health checks on
+    #   the targets.
+    #
+    #   \[HTTP1 or HTTP2 protocol version\] The ping path. The default is /.
+    #
+    #   \[GRPC protocol version\] The path of a custom health check method
+    #   with the format /package.service/method. The default is
+    #   /AWS.ALB/healthcheck.
     #   @return [String]
     #
     # @!attribute [rw] health_check_enabled
@@ -2945,9 +2909,8 @@ module Aws::ElasticLoadBalancingV2
     #
     # @!attribute [rw] health_check_interval_seconds
     #   The approximate amount of time, in seconds, between health checks of
-    #   an individual target. For Application Load Balancers, the range is 5
-    #   to 300 seconds. For Network Load Balancers, the supported values are
-    #   10 or 30 seconds.
+    #   an individual target. For TCP health checks, the supported values
+    #   are 10 or 30 seconds.
     #
     #   With Network Load Balancers, you can't modify this setting.
     #   @return [Integer]
@@ -2966,16 +2929,14 @@ module Aws::ElasticLoadBalancingV2
     #
     # @!attribute [rw] unhealthy_threshold_count
     #   The number of consecutive health check failures required before
-    #   considering the target unhealthy. For Network Load Balancers, this
-    #   value must be the same as the healthy threshold count.
+    #   considering the target unhealthy. For target groups with a protocol
+    #   of TCP or TLS, this value must be the same as the healthy threshold
+    #   count.
     #   @return [Integer]
     #
     # @!attribute [rw] matcher
-    #   \[HTTP/HTTPS health checks\] The HTTP codes to use when checking for
-    #   a successful response from a target. The possible values are from
-    #   200 to 499. You can specify multiple values (for example,
-    #   "200,202") or a range of values (for example, "200-299"). The
-    #   default is 200.
+    #   \[HTTP/HTTPS health checks\] The HTTP or gRPC codes to use when
+    #   checking for a successful response from a target.
     #
     #   With Network Load Balancers, you can't modify this setting.
     #   @return [Types::Matcher]
@@ -3219,10 +3180,6 @@ module Aws::ElasticLoadBalancingV2
     #
     # @!attribute [rw] targets
     #   The targets.
-    #
-    #   To register a target by instance ID, specify the instance ID. To
-    #   register a target by IP address, specify the IP address. To register
-    #   a Lambda function, specify the ARN of the Lambda function.
     #   @return [Array<Types::TargetDescription>]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/RegisterTargetsInput AWS API Documentation
@@ -3540,8 +3497,7 @@ module Aws::ElasticLoadBalancingV2
     # @!attribute [rw] ip_address_type
     #   The IP address type. The possible values are `ipv4` (for IPv4
     #   addresses) and `dualstack` (for IPv4 and IPv6 addresses). Internal
-    #   load balancers must use `ipv4`. Network Load Balancers must use
-    #   `ipv4`.
+    #   load balancers must use `ipv4`.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/SetIpAddressTypeInput AWS API Documentation
@@ -3865,8 +3821,9 @@ module Aws::ElasticLoadBalancingV2
     #   @return [String]
     #
     # @!attribute [rw] port
-    #   The port on which the target is listening. Not used if the target is
-    #   a Lambda function.
+    #   The port on which the target is listening. If the target group
+    #   protocol is GENEVE, the supported port is 6081. Not used if the
+    #   target is a Lambda function.
     #   @return [Integer]
     #
     # @!attribute [rw] availability_zone
@@ -3925,7 +3882,8 @@ module Aws::ElasticLoadBalancingV2
     #   @return [String]
     #
     # @!attribute [rw] health_check_protocol
-    #   The protocol to use to connect with the target.
+    #   The protocol to use to connect with the target. The GENEVE, TLS,
+    #   UDP, and TCP\_UDP protocols are not supported for health checks.
     #   @return [String]
     #
     # @!attribute [rw] health_check_port
@@ -3957,12 +3915,12 @@ module Aws::ElasticLoadBalancingV2
     #   @return [Integer]
     #
     # @!attribute [rw] health_check_path
-    #   The destination for the health check request.
+    #   The destination for health checks on the targets.
     #   @return [String]
     #
     # @!attribute [rw] matcher
-    #   The HTTP codes to use when checking for a successful response from a
-    #   target.
+    #   The HTTP or gRPC codes to use when checking for a successful
+    #   response from a target.
     #   @return [Types::Matcher]
     #
     # @!attribute [rw] load_balancer_arns
@@ -3972,9 +3930,14 @@ module Aws::ElasticLoadBalancingV2
     #
     # @!attribute [rw] target_type
     #   The type of target that you must specify when registering targets
-    #   with this target group. The possible values are `instance` (targets
-    #   are specified by instance ID) or `ip` (targets are specified by IP
-    #   address).
+    #   with this target group. The possible values are `instance` (register
+    #   targets by instance ID), `ip` (register targets by IP address), or
+    #   `lambda` (register a single Lambda function as a target).
+    #   @return [String]
+    #
+    # @!attribute [rw] protocol_version
+    #   \[HTTP/HTTPS protocol\] The protocol version. The possible values
+    #   are `GRPC`, `HTTP1`, and `HTTP2`.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/TargetGroup AWS API Documentation
@@ -3995,7 +3958,8 @@ module Aws::ElasticLoadBalancingV2
       :health_check_path,
       :matcher,
       :load_balancer_arns,
-      :target_type)
+      :target_type,
+      :protocol_version)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -4020,8 +3984,7 @@ module Aws::ElasticLoadBalancingV2
     # @!attribute [rw] key
     #   The name of the attribute.
     #
-    #   The following attributes are supported by both Application Load
-    #   Balancers and Network Load Balancers:
+    #   The following attribute is supported by all load balancers:
     #
     #   * `deregistration_delay.timeout_seconds` - The amount of time, in
     #     seconds, for Elastic Load Balancing to wait before changing the
@@ -4029,6 +3992,11 @@ module Aws::ElasticLoadBalancingV2
     #     range is 0-3600 seconds. The default value is 300 seconds. If the
     #     target is a Lambda function, this attribute is not supported.
     #
+    #   ^
+    #
+    #   The following attributes are supported by both Application Load
+    #   Balancers and Network Load Balancers:
+    #
     #   * `stickiness.enabled` - Indicates whether sticky sessions are
     #     enabled. The value is `true` or `false`. The default is `false`.
     #
@@ -4181,10 +4149,11 @@ module Aws::ElasticLoadBalancingV2
     #   the following values:
     #
     #   * `Target.ResponseCodeMismatch` - The health checks did not return
-    #     an expected HTTP code. Applies only to Application Load Balancers.
+    #     an expected HTTP code. Applies only to Application Load Balancers
+    #     and Gateway Load Balancers.
     #
     #   * `Target.Timeout` - The health check requests timed out. Applies
-    #     only to Application Load Balancers.
+    #     only to Application Load Balancers and Gateway Load Balancers.
     #
     #   * `Target.FailedHealthChecks` - The load balancer received an error
     #     while establishing a connection to the target or the target