npm - @aws-sdk/client-ec2 - Versions diffs - 3.695.0 → 3.697.0 - Mend

@aws-sdk/client-ec2 3.695.0 → 3.697.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (162) hide show

package/dist-types/models/models_7.d.ts CHANGED Viewed

@@ -1,10 +1,511 @@
-import { AddedPrincipal, AddressAttribute, AddressAttributeName, ByoipCidr, CapacityReservationInstancePlatform, ClientVpnAuthorizationRuleStatus, CurrencyCodeValues, IamInstanceProfileAssociation, IamInstanceProfileSpecification, IpPermission, NatGatewayAddress, PortRange, RouteTableAssociationState, TagSpecification, TransitGatewayAttachmentResourceType, TransitGatewayMulticastDomainAssociations, TransitGatewayPeeringAttachment, TransitGatewayVpcAttachment, UnsuccessfulItem, VerifiedAccessTrustProvider } from "./models_0";
-import { _InstanceType, AmdSevSnpSpecification, BlockDeviceMapping, CapacityReservation, CreditSpecificationRequest, ElasticGpuSpecification, HostnameType, IcmpTypeCode, InstanceInterruptionBehavior, InstanceIpv6Address, LocalGatewayRoute, ManagedPrefixList, MarketType, OperatorRequest, Placement, RuleAction, ShutdownBehavior, SpotInstanceType, VolumeType } from "./models_1";
-import { DnsOptionsSpecification, IKEVersionsRequestListValue, IpAddressType, PayerResponsibility, Phase1DHGroupNumbersRequestListValue, Phase1EncryptionAlgorithmsRequestListValue, Phase1IntegrityAlgorithmsRequestListValue, Phase2DHGroupNumbersRequestListValue, Phase2EncryptionAlgorithmsRequestListValue, Phase2IntegrityAlgorithmsRequestListValue, SnapshotState, SSEType, SubnetConfiguration, TransitGatewayRoute, VerifiedAccessSseSpecificationRequest, VpnConnection, VpnTunnelLogOptionsSpecification } from "./models_2";
+import { AddedPrincipal, AddressAttribute, AddressAttributeName, ApplianceModeSupportValue, ByoipCidr, CapacityReservationInstancePlatform, ClientVpnAuthorizationRuleStatus, CurrencyCodeValues, DnsSupportValue, IamInstanceProfileAssociation, IamInstanceProfileSpecification, IpPermission, Ipv6SupportValue, NatGatewayAddress, PortRange, RouteTableAssociationState, SecurityGroupReferencingSupportValue, TagSpecification, TransitGatewayAttachmentResourceType, TransitGatewayMulticastDomainAssociations, TransitGatewayPeeringAttachment, TransitGatewayVpcAttachment, UnsuccessfulItem, VerifiedAccessInstance, VerifiedAccessSseSpecificationResponse, VerifiedAccessTrustProvider } from "./models_0";
+import { _InstanceType, AmdSevSnpSpecification, BlockDeviceMapping, CapacityReservation, CreditSpecificationRequest, ElasticGpuSpecification, HostnameType, InstanceInterruptionBehavior, InstanceIpv6Address, LocalGatewayRoute, ManagedPrefixList, MarketType, OperatorRequest, Placement, ShutdownBehavior, SpotInstanceType, VolumeType } from "./models_1";
+import { DnsOptionsSpecification, IcmpTypeCode, IKEVersionsRequestListValue, InternetGatewayExclusionMode, IpAddressType, PayerResponsibility, Phase1DHGroupNumbersRequestListValue, Phase1EncryptionAlgorithmsRequestListValue, Phase1IntegrityAlgorithmsRequestListValue, Phase2DHGroupNumbersRequestListValue, Phase2EncryptionAlgorithmsRequestListValue, Phase2IntegrityAlgorithmsRequestListValue, RuleAction, SnapshotState, SSEType, SubnetConfiguration, TransitGatewayPrefixListReference, TransitGatewayRoute, VerifiedAccessEndpoint, VerifiedAccessEndpointProtocol, VerifiedAccessGroup, VerifiedAccessSseSpecificationRequest, VpcBlockPublicAccessExclusion, VpnConnection, VpnTunnelLogOptionsSpecification } from "./models_2";
 import { Byoasn, ClientVpnConnectionStatus, Filter, InstanceTagNotificationAttribute, IpamPoolCidr } from "./models_3";
-import { ArchitectureValues, AttributeBooleanValue, BootModeValues, HttpTokensState, ImdsSupportValues, InstanceAttributeName, InstanceAutoRecoveryState, InstanceMetadataEndpointState, InstanceMetadataProtocolState, InstanceMetadataTagsState, InstanceState, Monitoring, NetworkInsightsAccessScopeAnalysis, NetworkInsightsAnalysis, PublicIpv4PoolRange, ScheduledInstance, SnapshotAttributeName, TpmSupportValues } from "./models_4";
-import { InstanceNetworkInterfaceSpecification, RunInstancesMonitoringEnabled, SpotFleetRequestConfigData, SpotInstanceRequest, SpotPlacement, VolumeModification } from "./models_5";
+import { ArchitectureValues, AttributeBooleanValue, BootModeValues, HttpTokensState, ImdsSupportValues, InstanceAttributeName, InstanceAutoRecoveryState, InstanceMetadataEndpointState, InstanceMetadataProtocolState, InstanceMetadataTagsState, InstanceState, Monitoring, NetworkInsightsAccessScopeAnalysis, NetworkInsightsAnalysis, PublicIpv4PoolRange, ScheduledInstance, TpmSupportValues } from "./models_4";
+import { InstanceNetworkInterfaceSpecification, InternetGatewayBlockMode, RunInstancesMonitoringEnabled, SnapshotAttributeName, SpotFleetRequestConfigData, SpotInstanceRequest, SpotPlacement, VerifiedAccessInstanceLoggingConfiguration, VolumeModification, VpcBlockPublicAccessOptions } from "./models_5";
 import { CapacityReservationSpecification, Purchase } from "./models_6";
+/**
+ * @public
+ */
+export interface ModifyTransitGatewayPrefixListReferenceResult {
+    /**
+     * <p>Information about the prefix list reference.</p>
+     * @public
+     */
+    TransitGatewayPrefixListReference?: TransitGatewayPrefixListReference | undefined;
+}
+/**
+ * <p>Describes the options for a VPC attachment.</p>
+ * @public
+ */
+export interface ModifyTransitGatewayVpcAttachmentRequestOptions {
+    /**
+     * <p>Enable or disable DNS support. The default is <code>enable</code>.</p>
+     * @public
+     */
+    DnsSupport?: DnsSupportValue | undefined;
+    /**
+     * <p>Enables you to reference a security group across VPCs attached to a transit gateway to simplify security group management.
+     *
+     * </p>
+     *          <p>This option is disabled by default.</p>
+     *          <p>For more information about security group referencing, see  <a href="https://docs.aws.amazon.com/vpc/latest/tgw/tgw-vpc-attachments.html#vpc-attachment-security">Security group referencing</a> in the <i>Amazon Web Services Transit Gateways Guide</i>.</p>
+     * @public
+     */
+    SecurityGroupReferencingSupport?: SecurityGroupReferencingSupportValue | undefined;
+    /**
+     * <p>Enable or disable IPv6 support. The default is <code>enable</code>.</p>
+     * @public
+     */
+    Ipv6Support?: Ipv6SupportValue | undefined;
+    /**
+     * <p>Enable or disable support for appliance mode. If enabled, a traffic flow between a source and destination uses the same Availability Zone for the VPC attachment for the lifetime of that flow. The default is <code>disable</code>.</p>
+     * @public
+     */
+    ApplianceModeSupport?: ApplianceModeSupportValue | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyTransitGatewayVpcAttachmentRequest {
+    /**
+     * <p>The ID of the attachment.</p>
+     * @public
+     */
+    TransitGatewayAttachmentId: string | undefined;
+    /**
+     * <p>The IDs of one or more subnets to add. You can specify at most one subnet per Availability Zone.</p>
+     * @public
+     */
+    AddSubnetIds?: string[] | undefined;
+    /**
+     * <p>The IDs of one or more subnets to remove.</p>
+     * @public
+     */
+    RemoveSubnetIds?: string[] | undefined;
+    /**
+     * <p>The new VPC attachment options.</p>
+     * @public
+     */
+    Options?: ModifyTransitGatewayVpcAttachmentRequestOptions | undefined;
+    /**
+     * <p>Checks whether you have the required permissions for the action, without actually making the request,
+     *    and provides an error response. If you have the required permissions, the error response is <code>DryRunOperation</code>.
+     *    Otherwise, it is <code>UnauthorizedOperation</code>.</p>
+     * @public
+     */
+    DryRun?: boolean | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyTransitGatewayVpcAttachmentResult {
+    /**
+     * <p>Information about the modified attachment.</p>
+     * @public
+     */
+    TransitGatewayVpcAttachment?: TransitGatewayVpcAttachment | undefined;
+}
+/**
+ * <p>Describes a load balancer when creating an Amazon Web Services Verified Access endpoint using the
+ *             <code>load-balancer</code> type.</p>
+ * @public
+ */
+export interface ModifyVerifiedAccessEndpointLoadBalancerOptions {
+    /**
+     * <p>The IDs of the subnets.</p>
+     * @public
+     */
+    SubnetIds?: string[] | undefined;
+    /**
+     * <p>The IP protocol.</p>
+     * @public
+     */
+    Protocol?: VerifiedAccessEndpointProtocol | undefined;
+    /**
+     * <p>The IP port number.</p>
+     * @public
+     */
+    Port?: number | undefined;
+}
+/**
+ * <p>Describes the options when modifying a Verified Access endpoint with the
+ *             <code>network-interface</code> type.</p>
+ * @public
+ */
+export interface ModifyVerifiedAccessEndpointEniOptions {
+    /**
+     * <p>The IP protocol.</p>
+     * @public
+     */
+    Protocol?: VerifiedAccessEndpointProtocol | undefined;
+    /**
+     * <p>The IP port number.</p>
+     * @public
+     */
+    Port?: number | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyVerifiedAccessEndpointRequest {
+    /**
+     * <p>The ID of the Verified Access endpoint.</p>
+     * @public
+     */
+    VerifiedAccessEndpointId: string | undefined;
+    /**
+     * <p>The ID of the Verified Access group.</p>
+     * @public
+     */
+    VerifiedAccessGroupId?: string | undefined;
+    /**
+     * <p>The load balancer details if creating the Verified Access endpoint as
+     *          <code>load-balancer</code>type.</p>
+     * @public
+     */
+    LoadBalancerOptions?: ModifyVerifiedAccessEndpointLoadBalancerOptions | undefined;
+    /**
+     * <p>The network interface options.</p>
+     * @public
+     */
+    NetworkInterfaceOptions?: ModifyVerifiedAccessEndpointEniOptions | undefined;
+    /**
+     * <p>A description for the Verified Access endpoint.</p>
+     * @public
+     */
+    Description?: string | undefined;
+    /**
+     * <p>A unique, case-sensitive token that you provide to ensure idempotency of your
+     *             modification request. For more information, see <a href="https://docs.aws.amazon.com/ec2/latest/devguide/ec2-api-idempotency.html">Ensuring idempotency</a>.</p>
+     * @public
+     */
+    ClientToken?: string | undefined;
+    /**
+     * <p>Checks whether you have the required permissions for the action, without actually making the request,
+     *    and provides an error response. If you have the required permissions, the error response is <code>DryRunOperation</code>.
+     *    Otherwise, it is <code>UnauthorizedOperation</code>.</p>
+     * @public
+     */
+    DryRun?: boolean | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyVerifiedAccessEndpointResult {
+    /**
+     * <p>Details about the Verified Access endpoint.</p>
+     * @public
+     */
+    VerifiedAccessEndpoint?: VerifiedAccessEndpoint | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyVerifiedAccessEndpointPolicyRequest {
+    /**
+     * <p>The ID of the Verified Access endpoint.</p>
+     * @public
+     */
+    VerifiedAccessEndpointId: string | undefined;
+    /**
+     * <p>The status of the Verified Access policy.</p>
+     * @public
+     */
+    PolicyEnabled?: boolean | undefined;
+    /**
+     * <p>The Verified Access policy document.</p>
+     * @public
+     */
+    PolicyDocument?: string | undefined;
+    /**
+     * <p>A unique, case-sensitive token that you provide to ensure idempotency of your
+     *             modification request. For more information, see <a href="https://docs.aws.amazon.com/ec2/latest/devguide/ec2-api-idempotency.html">Ensuring idempotency</a>.</p>
+     * @public
+     */
+    ClientToken?: string | undefined;
+    /**
+     * <p>Checks whether you have the required permissions for the action, without actually making the request,
+     *    and provides an error response. If you have the required permissions, the error response is <code>DryRunOperation</code>.
+     *    Otherwise, it is <code>UnauthorizedOperation</code>.</p>
+     * @public
+     */
+    DryRun?: boolean | undefined;
+    /**
+     * <p>The options for server side encryption.</p>
+     * @public
+     */
+    SseSpecification?: VerifiedAccessSseSpecificationRequest | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyVerifiedAccessEndpointPolicyResult {
+    /**
+     * <p>The status of the Verified Access policy.</p>
+     * @public
+     */
+    PolicyEnabled?: boolean | undefined;
+    /**
+     * <p>The Verified Access policy document.</p>
+     * @public
+     */
+    PolicyDocument?: string | undefined;
+    /**
+     * <p>The options in use for server side encryption.</p>
+     * @public
+     */
+    SseSpecification?: VerifiedAccessSseSpecificationResponse | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyVerifiedAccessGroupRequest {
+    /**
+     * <p>The ID of the Verified Access group.</p>
+     * @public
+     */
+    VerifiedAccessGroupId: string | undefined;
+    /**
+     * <p>The ID of the Verified Access instance.</p>
+     * @public
+     */
+    VerifiedAccessInstanceId?: string | undefined;
+    /**
+     * <p>A description for the Verified Access group.</p>
+     * @public
+     */
+    Description?: string | undefined;
+    /**
+     * <p>A unique, case-sensitive token that you provide to ensure idempotency of your
+     *             modification request. For more information, see <a href="https://docs.aws.amazon.com/ec2/latest/devguide/ec2-api-idempotency.html">Ensuring idempotency</a>.</p>
+     * @public
+     */
+    ClientToken?: string | undefined;
+    /**
+     * <p>Checks whether you have the required permissions for the action, without actually making the request,
+     *    and provides an error response. If you have the required permissions, the error response is <code>DryRunOperation</code>.
+     *    Otherwise, it is <code>UnauthorizedOperation</code>.</p>
+     * @public
+     */
+    DryRun?: boolean | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyVerifiedAccessGroupResult {
+    /**
+     * <p>Details about the Verified Access group.</p>
+     * @public
+     */
+    VerifiedAccessGroup?: VerifiedAccessGroup | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyVerifiedAccessGroupPolicyRequest {
+    /**
+     * <p>The ID of the Verified Access group.</p>
+     * @public
+     */
+    VerifiedAccessGroupId: string | undefined;
+    /**
+     * <p>The status of the Verified Access policy.</p>
+     * @public
+     */
+    PolicyEnabled?: boolean | undefined;
+    /**
+     * <p>The Verified Access policy document.</p>
+     * @public
+     */
+    PolicyDocument?: string | undefined;
+    /**
+     * <p>A unique, case-sensitive token that you provide to ensure idempotency of your
+     *             modification request. For more information, see <a href="https://docs.aws.amazon.com/ec2/latest/devguide/ec2-api-idempotency.html">Ensuring idempotency</a>.</p>
+     * @public
+     */
+    ClientToken?: string | undefined;
+    /**
+     * <p>Checks whether you have the required permissions for the action, without actually making the request,
+     *    and provides an error response. If you have the required permissions, the error response is <code>DryRunOperation</code>.
+     *    Otherwise, it is <code>UnauthorizedOperation</code>.</p>
+     * @public
+     */
+    DryRun?: boolean | undefined;
+    /**
+     * <p>The options for server side encryption.</p>
+     * @public
+     */
+    SseSpecification?: VerifiedAccessSseSpecificationRequest | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyVerifiedAccessGroupPolicyResult {
+    /**
+     * <p>The status of the Verified Access policy.</p>
+     * @public
+     */
+    PolicyEnabled?: boolean | undefined;
+    /**
+     * <p>The Verified Access policy document.</p>
+     * @public
+     */
+    PolicyDocument?: string | undefined;
+    /**
+     * <p>The options in use for server side encryption.</p>
+     * @public
+     */
+    SseSpecification?: VerifiedAccessSseSpecificationResponse | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyVerifiedAccessInstanceRequest {
+    /**
+     * <p>The ID of the Verified Access instance.</p>
+     * @public
+     */
+    VerifiedAccessInstanceId: string | undefined;
+    /**
+     * <p>A description for the Verified Access instance.</p>
+     * @public
+     */
+    Description?: string | undefined;
+    /**
+     * <p>Checks whether you have the required permissions for the action, without actually making the request,
+     *    and provides an error response. If you have the required permissions, the error response is <code>DryRunOperation</code>.
+     *    Otherwise, it is <code>UnauthorizedOperation</code>.</p>
+     * @public
+     */
+    DryRun?: boolean | undefined;
+    /**
+     * <p>A unique, case-sensitive token that you provide to ensure idempotency of your
+     *             modification request. For more information, see <a href="https://docs.aws.amazon.com/ec2/latest/devguide/ec2-api-idempotency.html">Ensuring idempotency</a>.</p>
+     * @public
+     */
+    ClientToken?: string | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyVerifiedAccessInstanceResult {
+    /**
+     * <p>Details about the Verified Access instance.</p>
+     * @public
+     */
+    VerifiedAccessInstance?: VerifiedAccessInstance | undefined;
+}
+/**
+ * <p>Options for CloudWatch Logs as a logging destination.</p>
+ * @public
+ */
+export interface VerifiedAccessLogCloudWatchLogsDestinationOptions {
+    /**
+     * <p>Indicates whether logging is enabled.</p>
+     * @public
+     */
+    Enabled: boolean | undefined;
+    /**
+     * <p>The ID of the CloudWatch Logs log group.</p>
+     * @public
+     */
+    LogGroup?: string | undefined;
+}
+/**
+ * <p>Describes Amazon Kinesis Data Firehose logging options.</p>
+ * @public
+ */
+export interface VerifiedAccessLogKinesisDataFirehoseDestinationOptions {
+    /**
+     * <p>Indicates whether logging is enabled.</p>
+     * @public
+     */
+    Enabled: boolean | undefined;
+    /**
+     * <p>The ID of the delivery stream.</p>
+     * @public
+     */
+    DeliveryStream?: string | undefined;
+}
+/**
+ * <p>Options for Amazon S3 as a logging destination.</p>
+ * @public
+ */
+export interface VerifiedAccessLogS3DestinationOptions {
+    /**
+     * <p>Indicates whether logging is enabled.</p>
+     * @public
+     */
+    Enabled: boolean | undefined;
+    /**
+     * <p>The bucket name.</p>
+     * @public
+     */
+    BucketName?: string | undefined;
+    /**
+     * <p>The bucket prefix.</p>
+     * @public
+     */
+    Prefix?: string | undefined;
+    /**
+     * <p>The ID of the Amazon Web Services account that owns the Amazon S3 bucket.</p>
+     * @public
+     */
+    BucketOwner?: string | undefined;
+}
+/**
+ * <p>Options for Verified Access logs.</p>
+ * @public
+ */
+export interface VerifiedAccessLogOptions {
+    /**
+     * <p>Sends Verified Access logs to Amazon S3.</p>
+     * @public
+     */
+    S3?: VerifiedAccessLogS3DestinationOptions | undefined;
+    /**
+     * <p>Sends Verified Access logs to CloudWatch Logs.</p>
+     * @public
+     */
+    CloudWatchLogs?: VerifiedAccessLogCloudWatchLogsDestinationOptions | undefined;
+    /**
+     * <p>Sends Verified Access logs to Kinesis.</p>
+     * @public
+     */
+    KinesisDataFirehose?: VerifiedAccessLogKinesisDataFirehoseDestinationOptions | undefined;
+    /**
+     * <p>The logging version.</p>
+     *          <p>Valid values: <code>ocsf-0.1</code> | <code>ocsf-1.0.0-rc.2</code>
+     *          </p>
+     * @public
+     */
+    LogVersion?: string | undefined;
+    /**
+     * <p>Indicates whether to include trust data sent by trust providers in the logs.</p>
+     * @public
+     */
+    IncludeTrustContext?: boolean | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyVerifiedAccessInstanceLoggingConfigurationRequest {
+    /**
+     * <p>The ID of the Verified Access instance.</p>
+     * @public
+     */
+    VerifiedAccessInstanceId: string | undefined;
+    /**
+     * <p>The configuration options for Verified Access instances.</p>
+     * @public
+     */
+    AccessLogs: VerifiedAccessLogOptions | undefined;
+    /**
+     * <p>Checks whether you have the required permissions for the action, without actually making the request,
+     *    and provides an error response. If you have the required permissions, the error response is <code>DryRunOperation</code>.
+     *    Otherwise, it is <code>UnauthorizedOperation</code>.</p>
+     * @public
+     */
+    DryRun?: boolean | undefined;
+    /**
+     * <p>A unique, case-sensitive token that you provide to ensure idempotency of your
+     *             modification request. For more information, see <a href="https://docs.aws.amazon.com/ec2/latest/devguide/ec2-api-idempotency.html">Ensuring idempotency</a>.</p>
+     * @public
+     */
+    ClientToken?: string | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyVerifiedAccessInstanceLoggingConfigurationResult {
+    /**
+     * <p>The logging configuration for the Verified Access instance.</p>
+     * @public
+     */
+    LoggingConfiguration?: VerifiedAccessInstanceLoggingConfiguration | undefined;
+}
 /**
  * <p>Modifies the configuration of the specified device-based Amazon Web Services Verified Access trust provider.</p>
  * @public
@@ -271,6 +772,89 @@ export interface ModifyVpcAttributeRequest {
      */
     EnableNetworkAddressUsageMetrics?: AttributeBooleanValue | undefined;
 }
+/**
+ * @public
+ */
+export interface ModifyVpcBlockPublicAccessExclusionRequest {
+    /**
+     * <p>Checks whether you have the required permissions for the action, without actually making the request,
+     *    and provides an error response. If you have the required permissions, the error response is <code>DryRunOperation</code>.
+     *    Otherwise, it is <code>UnauthorizedOperation</code>.</p>
+     * @public
+     */
+    DryRun?: boolean | undefined;
+    /**
+     * <p>The ID of an exclusion.</p>
+     * @public
+     */
+    ExclusionId: string | undefined;
+    /**
+     * <p>The exclusion mode for internet gateway traffic.</p>
+     *          <ul>
+     *             <li>
+     *                <p>
+     *                   <code>bidirectional-access-allowed</code>: Allow all internet traffic to and from the excluded VPCs and subnets.</p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>egress-access-allowed</code>: Allow outbound internet traffic from the excluded VPCs and subnets. Block inbound internet traffic to the excluded VPCs and subnets. Only applies when VPC Block Public Access is set to Bidirectional.</p>
+     *             </li>
+     *          </ul>
+     * @public
+     */
+    InternetGatewayExclusionMode: InternetGatewayExclusionMode | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyVpcBlockPublicAccessExclusionResult {
+    /**
+     * <p>Details related to the exclusion.</p>
+     * @public
+     */
+    VpcBlockPublicAccessExclusion?: VpcBlockPublicAccessExclusion | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyVpcBlockPublicAccessOptionsRequest {
+    /**
+     * <p>Checks whether you have the required permissions for the action, without actually making the request,
+     *    and provides an error response. If you have the required permissions, the error response is <code>DryRunOperation</code>.
+     *    Otherwise, it is <code>UnauthorizedOperation</code>.</p>
+     * @public
+     */
+    DryRun?: boolean | undefined;
+    /**
+     * <p>The mode of VPC BPA.</p>
+     *          <ul>
+     *             <li>
+     *                <p>
+     *                   <code>bidirectional-access-allowed</code>: VPC BPA is not enabled and traffic is allowed to and from internet gateways and egress-only internet gateways in this Region.</p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>bidirectional-access-blocked</code>: Block all traffic to and from internet gateways and egress-only internet gateways in this Region (except for excluded VPCs and subnets).</p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>ingress-access-blocked</code>: Block all internet traffic to the VPCs in this Region (except for VPCs or subnets which are excluded). Only traffic to and from NAT gateways and egress-only internet gateways is allowed because these gateways only allow outbound connections to be established.</p>
+     *             </li>
+     *          </ul>
+     * @public
+     */
+    InternetGatewayBlockMode: InternetGatewayBlockMode | undefined;
+}
+/**
+ * @public
+ */
+export interface ModifyVpcBlockPublicAccessOptionsResult {
+    /**
+     * <p>Details related to the VPC Block Public Access (BPA) options.</p>
+     * @public
+     */
+    VpcBlockPublicAccessOptions?: VpcBlockPublicAccessOptions | undefined;
+}
 /**
  * @public
  */
@@ -1788,26 +2372,29 @@ export interface RebootInstancesRequest {
 export interface RegisterImageRequest {
     /**
      * <p>The full path to your AMI manifest in Amazon S3 storage. The specified bucket must have the
-     *    		<code>aws-exec-read</code> canned access control list (ACL) to ensure that it can be accessed
-     *    		by Amazon EC2. For more information, see <a href="https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html#canned-acl">Canned ACLs</a> in the
-     *    		<i>Amazon S3 Service Developer Guide</i>.</p>
+     *         <code>aws-exec-read</code> canned access control list (ACL) to ensure that it can be
+     *       accessed by Amazon EC2. For more information, see <a href="https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html#canned-acl">Canned ACLs</a> in the
+     *         <i>Amazon S3 Service Developer Guide</i>.</p>
      * @public
      */
     ImageLocation?: string | undefined;
     /**
-     * <p>The billing product codes. Your account must be authorized to specify billing product codes.</p>
+     * <p>The billing product codes. Your account must be authorized to specify billing product
+     *       codes.</p>
      *          <p>If your account is not authorized to specify billing product codes, you can publish AMIs
      *       that include billable software and list them on the Amazon Web Services Marketplace. You must first register as a seller
      *       on the Amazon Web Services Marketplace. For more information, see <a href="https://docs.aws.amazon.com/marketplace/latest/userguide/user-guide-for-sellers.html">Getting started as a
-     *         seller</a> and <a href="https://docs.aws.amazon.com/marketplace/latest/userguide/ami-products.html">AMI-based
-     *         products</a> in the <i>Amazon Web Services Marketplace Seller Guide</i>.</p>
+     *         seller</a> and <a href="https://docs.aws.amazon.com/marketplace/latest/userguide/ami-products.html">AMI-based products</a> in the
+     *         <i>Amazon Web Services Marketplace Seller Guide</i>.</p>
      * @public
      */
     BillingProducts?: string[] | undefined;
     /**
-     * <p>The boot mode of the AMI. A value of <code>uefi-preferred</code> indicates that the AMI supports both UEFI and Legacy BIOS.</p>
+     * <p>The boot mode of the AMI. A value of <code>uefi-preferred</code> indicates that the AMI
+     *       supports both UEFI and Legacy BIOS.</p>
      *          <note>
-     *             <p>The operating system contained in the AMI must be configured to support the specified boot mode.</p>
+     *             <p>The operating system contained in the AMI must be configured to support the specified
+     *         boot mode.</p>
      *          </note>
      *          <p>For more information, see <a href="https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ami-boot.html">Boot modes</a> in the
      *         <i>Amazon EC2 User Guide</i>.</p>
@@ -1834,10 +2421,10 @@ export interface RegisterImageRequest {
      *       launched from this AMI will have <code>HttpTokens</code> automatically set to
      *         <code>required</code> so that, by default, the instance requires that IMDSv2 is used when
      *       requesting instance metadata. In addition, <code>HttpPutResponseHopLimit</code> is set to
-     *         <code>2</code>. For more information, see <a href="https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-IMDS-new-instances.html#configure-IMDS-new-instances-ami-configuration">Configure
-     *         the AMI</a> in the <i>Amazon EC2 User Guide</i>.</p>
+     *         <code>2</code>. For more information, see <a href="https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-IMDS-new-instances.html#configure-IMDS-new-instances-ami-configuration">Configure the AMI</a> in the <i>Amazon EC2 User Guide</i>.</p>
      *          <note>
-     *             <p>If you set the value to <code>v2.0</code>, make sure that your AMI software can support IMDSv2.</p>
+     *             <p>If you set the value to <code>v2.0</code>, make sure that your AMI software can support
+     *         IMDSv2.</p>
      *          </note>
      * @public
      */
@@ -1859,7 +2446,9 @@ export interface RegisterImageRequest {
     DryRun?: boolean | undefined;
     /**
      * <p>A name for your AMI.</p>
-     *          <p>Constraints: 3-128 alphanumeric characters, parentheses (()), square brackets ([]), spaces ( ), periods (.), slashes (/), dashes (-), single quotes ('), at-signs (@), or underscores(_)</p>
+     *          <p>Constraints: 3-128 alphanumeric characters, parentheses (()), square brackets ([]), spaces
+     *       ( ), periods (.), slashes (/), dashes (-), single quotes ('), at-signs (@), or
+     *       underscores(_)</p>
      * @public
      */
     Name: string | undefined;
@@ -1870,8 +2459,8 @@ export interface RegisterImageRequest {
     Description?: string | undefined;
     /**
      * <p>The architecture of the AMI.</p>
-     *          <p>Default: For Amazon EBS-backed AMIs, <code>i386</code>.
-     *         For instance store-backed AMIs, the architecture specified in the manifest file.</p>
+     *          <p>Default: For Amazon EBS-backed AMIs, <code>i386</code>. For instance store-backed AMIs, the
+     *       architecture specified in the manifest file.</p>
      * @public
      */
     Architecture?: ArchitectureValues | undefined;
@@ -1892,10 +2481,11 @@ export interface RegisterImageRequest {
     RootDeviceName?: string | undefined;
     /**
      * <p>The block device mapping entries.</p>
-     *          <p>If you specify an Amazon EBS volume using the ID of an Amazon EBS snapshot, you can't specify the encryption state of the volume.</p>
-     *          <p>If you create an AMI on an Outpost, then all backing snapshots must be on the same
-     *       Outpost or in the Region of that Outpost. AMIs on an Outpost that include local snapshots can
-     *       be used to launch instances on the same Outpost only. For more information, <a href="https://docs.aws.amazon.com/ebs/latest/userguide/snapshots-outposts.html#ami">Amazon EBS local
+     *          <p>If you specify an Amazon EBS volume using the ID of an Amazon EBS snapshot, you can't specify the
+     *       encryption state of the volume.</p>
+     *          <p>If you create an AMI on an Outpost, then all backing snapshots must be on the same Outpost
+     *       or in the Region of that Outpost. AMIs on an Outpost that include local snapshots can be used
+     *       to launch instances on the same Outpost only. For more information, <a href="https://docs.aws.amazon.com/ebs/latest/userguide/snapshots-outposts.html#ami">Amazon EBS local
      *         snapshots on Outposts</a> in the <i>Amazon EBS User Guide</i>.</p>
      * @public
      */
@@ -1908,15 +2498,19 @@ export interface RegisterImageRequest {
      */
     VirtualizationType?: string | undefined;
     /**
-     * <p>Set to <code>simple</code> to enable enhanced networking with the Intel 82599 Virtual Function interface for the AMI and any instances that you launch from the AMI.</p>
+     * <p>Set to <code>simple</code> to enable enhanced networking with the Intel 82599 Virtual
+     *       Function interface for the AMI and any instances that you launch from the AMI.</p>
      *          <p>There is no way to disable <code>sriovNetSupport</code> at this time.</p>
-     *          <p>This option is supported only for HVM AMIs. Specifying this option with a PV AMI can make instances launched from the AMI unreachable.</p>
+     *          <p>This option is supported only for HVM AMIs. Specifying this option with a PV AMI can make
+     *       instances launched from the AMI unreachable.</p>
      * @public
      */
     SriovNetSupport?: string | undefined;
     /**
-     * <p>Set to <code>true</code> to enable enhanced networking with ENA for the AMI and any instances that you launch from the AMI.</p>
-     *          <p>This option is supported only for HVM AMIs. Specifying this option with a PV AMI can make instances launched from the AMI unreachable.</p>
+     * <p>Set to <code>true</code> to enable enhanced networking with ENA for the AMI and any
+     *       instances that you launch from the AMI.</p>
+     *          <p>This option is supported only for HVM AMIs. Specifying this option with a PV AMI can make
+     *       instances launched from the AMI unreachable.</p>
      * @public
      */
     EnaSupport?: boolean | undefined;
@@ -3180,7 +3774,8 @@ export type ResetImageAttributeName = (typeof ResetImageAttributeName)[keyof typ
  */
 export interface ResetImageAttributeRequest {
     /**
-     * <p>The attribute to reset (currently you can only reset the launch permission attribute).</p>
+     * <p>The attribute to reset (currently you can only reset the launch permission
+     *       attribute).</p>
      * @public
      */
     Attribute: ResetImageAttributeName | undefined;
@@ -4318,7 +4913,7 @@ export interface RunInstancesRequest {
      * <p>Information about the Capacity Reservation targeting option. If you do not specify this parameter, the
      *             instance's Capacity Reservation preference defaults to <code>open</code>, which enables
      *             it to run in any open Capacity Reservation that has matching attributes (instance type,
-     *             platform, Availability Zone).</p>
+     *             platform, Availability Zone, and tenancy).</p>
      * @public
      */
     CapacityReservationSpecification?: CapacityReservationSpecification | undefined;