npm - @aws-sdk/client-route53resolver - Versions diffs - 3.565.0 → 3.566.0 - Mend

@aws-sdk/client-route53resolver 3.565.0 → 3.566.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (58) hide show

package/dist-cjs/index.js CHANGED Viewed

@@ -51,6 +51,7 @@ __export(src_exports, {
   DisassociateResolverRuleCommand: () => DisassociateResolverRuleCommand,
   FirewallDomainImportOperation: () => FirewallDomainImportOperation,
   FirewallDomainListStatus: () => FirewallDomainListStatus,
+  FirewallDomainRedirectionAction: () => FirewallDomainRedirectionAction,
   FirewallDomainUpdateOperation: () => FirewallDomainUpdateOperation,
   FirewallFailOpenStatus: () => FirewallFailOpenStatus,
   FirewallRuleGroupAssociationStatus: () => FirewallRuleGroupAssociationStatus,
@@ -609,6 +610,10 @@ var FirewallDomainListStatus = {
   IMPORTING: "IMPORTING",
   UPDATING: "UPDATING"
 };
+var FirewallDomainRedirectionAction = {
+  INSPECT_REDIRECTION_DOMAIN: "INSPECT_REDIRECTION_DOMAIN",
+  TRUST_REDIRECTION_DOMAIN: "TRUST_REDIRECTION_DOMAIN"
+};
 var ShareStatus = {
   NotShared: "NOT_SHARED",
   SharedByMe: "SHARED_BY_ME",
@@ -2354,6 +2359,7 @@ var se_CreateFirewallRuleRequest = /* @__PURE__ */ __name((input, context) => {
     BlockResponse: [],
     CreatorRequestId: [true, (_) => _ ?? (0, import_uuid.v4)()],
     FirewallDomainListId: [],
+    FirewallDomainRedirectionAction: [],
     FirewallRuleGroupId: [],
     Name: [],
     Priority: [],
@@ -3810,6 +3816,7 @@ var paginateListTagsForResource = (0, import_core.createPaginator)(Route53Resolv
   BlockOverrideDnsType,
   BlockResponse,
   FirewallDomainListStatus,
+  FirewallDomainRedirectionAction,
   ShareStatus,
   FirewallRuleGroupStatus,
   OutpostResolverStatus,

package/dist-es/models/models_0.js CHANGED Viewed

@@ -223,6 +223,10 @@ export const FirewallDomainListStatus = {
     IMPORTING: "IMPORTING",
     UPDATING: "UPDATING",
 };
+export const FirewallDomainRedirectionAction = {
+    INSPECT_REDIRECTION_DOMAIN: "INSPECT_REDIRECTION_DOMAIN",
+    TRUST_REDIRECTION_DOMAIN: "TRUST_REDIRECTION_DOMAIN",
+};
 export const ShareStatus = {
     NotShared: "NOT_SHARED",
     SharedByMe: "SHARED_BY_ME",

package/dist-es/protocols/Aws_json1_1.js CHANGED Viewed

@@ -1550,6 +1550,7 @@ const se_CreateFirewallRuleRequest = (input, context) => {
         BlockResponse: [],
         CreatorRequestId: [true, (_) => _ ?? generateIdempotencyToken()],
         FirewallDomainListId: [],
+        FirewallDomainRedirectionAction: [],
         FirewallRuleGroupId: [],
         Name: [],
         Priority: [],

package/dist-types/commands/AssociateFirewallRuleGroupCommand.d.ts CHANGED Viewed

@@ -77,6 +77,8 @@ declare const AssociateFirewallRuleGroupCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link ConflictException} (client fault)
  *  <p>The requested state transition isn't valid. For example, you can't delete a firewall

package/dist-types/commands/AssociateResolverQueryLogConfigCommand.d.ts CHANGED Viewed

@@ -69,6 +69,8 @@ declare const AssociateResolverQueryLogConfigCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/CreateFirewallDomainListCommand.d.ts CHANGED Viewed

@@ -70,6 +70,8 @@ declare const CreateFirewallDomainListCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/CreateFirewallRuleCommand.d.ts CHANGED Viewed

@@ -44,6 +44,7 @@ declare const CreateFirewallRuleCommand_base: {
  *   BlockOverrideDnsType: "CNAME",
  *   BlockOverrideTtl: Number("int"),
  *   Name: "STRING_VALUE", // required
+ *   FirewallDomainRedirectionAction: "INSPECT_REDIRECTION_DOMAIN" || "TRUST_REDIRECTION_DOMAIN",
  *   Qtype: "STRING_VALUE",
  * };
  * const command = new CreateFirewallRuleCommand(input);
@@ -62,6 +63,7 @@ declare const CreateFirewallRuleCommand_base: {
  * //     CreatorRequestId: "STRING_VALUE",
  * //     CreationTime: "STRING_VALUE",
  * //     ModificationTime: "STRING_VALUE",
+ * //     FirewallDomainRedirectionAction: "INSPECT_REDIRECTION_DOMAIN" || "TRUST_REDIRECTION_DOMAIN",
  * //     Qtype: "STRING_VALUE",
  * //   },
  * // };
@@ -76,6 +78,8 @@ declare const CreateFirewallRuleCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/CreateFirewallRuleGroupCommand.d.ts CHANGED Viewed

@@ -72,6 +72,8 @@ declare const CreateFirewallRuleGroupCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/CreateOutpostResolverCommand.d.ts CHANGED Viewed

@@ -74,6 +74,8 @@ declare const CreateOutpostResolverCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/CreateResolverEndpointCommand.d.ts CHANGED Viewed

@@ -107,6 +107,8 @@ declare const CreateResolverEndpointCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/CreateResolverQueryLogConfigCommand.d.ts CHANGED Viewed

@@ -77,6 +77,8 @@ declare const CreateResolverQueryLogConfigCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/CreateResolverRuleCommand.d.ts CHANGED Viewed

@@ -93,6 +93,8 @@ declare const CreateResolverRuleCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/DeleteFirewallDomainListCommand.d.ts CHANGED Viewed

@@ -63,6 +63,8 @@ declare const DeleteFirewallDomainListCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link ConflictException} (client fault)
  *  <p>The requested state transition isn't valid. For example, you can't delete a firewall

package/dist-types/commands/DeleteFirewallRuleCommand.d.ts CHANGED Viewed

@@ -54,6 +54,7 @@ declare const DeleteFirewallRuleCommand_base: {
  * //     CreatorRequestId: "STRING_VALUE",
  * //     CreationTime: "STRING_VALUE",
  * //     ModificationTime: "STRING_VALUE",
+ * //     FirewallDomainRedirectionAction: "INSPECT_REDIRECTION_DOMAIN" || "TRUST_REDIRECTION_DOMAIN",
  * //     Qtype: "STRING_VALUE",
  * //   },
  * // };
@@ -68,6 +69,8 @@ declare const DeleteFirewallRuleCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/DeleteFirewallRuleGroupCommand.d.ts CHANGED Viewed

@@ -64,6 +64,8 @@ declare const DeleteFirewallRuleGroupCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link ConflictException} (client fault)
  *  <p>The requested state transition isn't valid. For example, you can't delete a firewall

package/dist-types/commands/DeleteOutpostResolverCommand.d.ts CHANGED Viewed

@@ -64,6 +64,8 @@ declare const DeleteOutpostResolverCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link ConflictException} (client fault)
  *  <p>The requested state transition isn't valid. For example, you can't delete a firewall

package/dist-types/commands/DeleteResolverQueryLogConfigCommand.d.ts CHANGED Viewed

@@ -71,6 +71,8 @@ declare const DeleteResolverQueryLogConfigCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/DisassociateFirewallRuleGroupCommand.d.ts CHANGED Viewed

@@ -66,6 +66,8 @@ declare const DisassociateFirewallRuleGroupCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link ConflictException} (client fault)
  *  <p>The requested state transition isn't valid. For example, you can't delete a firewall

package/dist-types/commands/DisassociateResolverQueryLogConfigCommand.d.ts CHANGED Viewed

@@ -75,6 +75,8 @@ declare const DisassociateResolverQueryLogConfigCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/GetFirewallConfigCommand.d.ts CHANGED Viewed

@@ -58,6 +58,8 @@ declare const GetFirewallConfigCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/GetFirewallDomainListCommand.d.ts CHANGED Viewed

@@ -63,6 +63,8 @@ declare const GetFirewallDomainListCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/GetFirewallRuleGroupAssociationCommand.d.ts CHANGED Viewed

@@ -66,6 +66,8 @@ declare const GetFirewallRuleGroupAssociationCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/GetFirewallRuleGroupCommand.d.ts CHANGED Viewed

@@ -64,6 +64,8 @@ declare const GetFirewallRuleGroupCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/GetFirewallRuleGroupPolicyCommand.d.ts CHANGED Viewed

@@ -53,6 +53,8 @@ declare const GetFirewallRuleGroupPolicyCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/GetOutpostResolverCommand.d.ts CHANGED Viewed

@@ -65,6 +65,8 @@ declare const GetOutpostResolverCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/GetResolverConfigCommand.d.ts CHANGED Viewed

@@ -58,6 +58,8 @@ declare const GetResolverConfigCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/GetResolverDnssecConfigCommand.d.ts CHANGED Viewed

@@ -57,6 +57,8 @@ declare const GetResolverDnssecConfigCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/GetResolverQueryLogConfigAssociationCommand.d.ts CHANGED Viewed

@@ -61,6 +61,8 @@ declare const GetResolverQueryLogConfigAssociationCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/GetResolverQueryLogConfigCommand.d.ts CHANGED Viewed

@@ -64,6 +64,8 @@ declare const GetResolverQueryLogConfigCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/GetResolverQueryLogConfigPolicyCommand.d.ts CHANGED Viewed

@@ -53,6 +53,8 @@ declare const GetResolverQueryLogConfigPolicyCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/GetResolverRulePolicyCommand.d.ts CHANGED Viewed

@@ -53,6 +53,8 @@ declare const GetResolverRulePolicyCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/ImportFirewallDomainsCommand.d.ts CHANGED Viewed

@@ -72,6 +72,8 @@ declare const ImportFirewallDomainsCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link ConflictException} (client fault)
  *  <p>The requested state transition isn't valid. For example, you can't delete a firewall

package/dist-types/commands/ListFirewallConfigsCommand.d.ts CHANGED Viewed

@@ -62,6 +62,8 @@ declare const ListFirewallConfigsCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/ListFirewallDomainListsCommand.d.ts CHANGED Viewed

@@ -63,6 +63,8 @@ declare const ListFirewallDomainListsCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/ListFirewallDomainsCommand.d.ts CHANGED Viewed

@@ -58,6 +58,8 @@ declare const ListFirewallDomainsCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/ListFirewallRuleGroupAssociationsCommand.d.ts CHANGED Viewed

@@ -75,6 +75,8 @@ declare const ListFirewallRuleGroupAssociationsCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/ListFirewallRuleGroupsCommand.d.ts CHANGED Viewed

@@ -64,6 +64,8 @@ declare const ListFirewallRuleGroupsCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/ListFirewallRulesCommand.d.ts CHANGED Viewed

@@ -59,6 +59,7 @@ declare const ListFirewallRulesCommand_base: {
  * //       CreatorRequestId: "STRING_VALUE",
  * //       CreationTime: "STRING_VALUE",
  * //       ModificationTime: "STRING_VALUE",
+ * //       FirewallDomainRedirectionAction: "INSPECT_REDIRECTION_DOMAIN" || "TRUST_REDIRECTION_DOMAIN",
  * //       Qtype: "STRING_VALUE",
  * //     },
  * //   ],
@@ -74,6 +75,8 @@ declare const ListFirewallRulesCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/ListOutpostResolversCommand.d.ts CHANGED Viewed

@@ -69,6 +69,8 @@ declare const ListOutpostResolversCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/ListResolverConfigsCommand.d.ts CHANGED Viewed

@@ -62,6 +62,8 @@ declare const ListResolverConfigsCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/ListResolverDnssecConfigsCommand.d.ts CHANGED Viewed

@@ -69,6 +69,8 @@ declare const ListResolverDnssecConfigsCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/ListResolverQueryLogConfigAssociationsCommand.d.ts CHANGED Viewed

@@ -76,6 +76,8 @@ declare const ListResolverQueryLogConfigAssociationsCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/ListResolverQueryLogConfigsCommand.d.ts CHANGED Viewed

@@ -80,6 +80,8 @@ declare const ListResolverQueryLogConfigsCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/PutFirewallRuleGroupPolicyCommand.d.ts CHANGED Viewed

@@ -55,6 +55,8 @@ declare const PutFirewallRuleGroupPolicyCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/PutResolverQueryLogConfigPolicyCommand.d.ts CHANGED Viewed

@@ -54,6 +54,8 @@ declare const PutResolverQueryLogConfigPolicyCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/PutResolverRulePolicyCommand.d.ts CHANGED Viewed

@@ -54,6 +54,8 @@ declare const PutResolverRulePolicyCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/UpdateFirewallConfigCommand.d.ts CHANGED Viewed

@@ -59,6 +59,8 @@ declare const UpdateFirewallConfigCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/UpdateFirewallDomainsCommand.d.ts CHANGED Viewed

@@ -59,6 +59,8 @@ declare const UpdateFirewallDomainsCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link ConflictException} (client fault)
  *  <p>The requested state transition isn't valid. For example, you can't delete a firewall

package/dist-types/commands/UpdateFirewallRuleCommand.d.ts CHANGED Viewed

@@ -43,6 +43,7 @@ declare const UpdateFirewallRuleCommand_base: {
  *   BlockOverrideDnsType: "CNAME",
  *   BlockOverrideTtl: Number("int"),
  *   Name: "STRING_VALUE",
+ *   FirewallDomainRedirectionAction: "INSPECT_REDIRECTION_DOMAIN" || "TRUST_REDIRECTION_DOMAIN",
  *   Qtype: "STRING_VALUE",
  * };
  * const command = new UpdateFirewallRuleCommand(input);
@@ -61,6 +62,7 @@ declare const UpdateFirewallRuleCommand_base: {
  * //     CreatorRequestId: "STRING_VALUE",
  * //     CreationTime: "STRING_VALUE",
  * //     ModificationTime: "STRING_VALUE",
+ * //     FirewallDomainRedirectionAction: "INSPECT_REDIRECTION_DOMAIN" || "TRUST_REDIRECTION_DOMAIN",
  * //     Qtype: "STRING_VALUE",
  * //   },
  * // };
@@ -75,6 +77,8 @@ declare const UpdateFirewallRuleCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link ConflictException} (client fault)
  *  <p>The requested state transition isn't valid. For example, you can't delete a firewall

package/dist-types/commands/UpdateFirewallRuleGroupAssociationCommand.d.ts CHANGED Viewed

@@ -69,6 +69,8 @@ declare const UpdateFirewallRuleGroupAssociationCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link ConflictException} (client fault)
  *  <p>The requested state transition isn't valid. For example, you can't delete a firewall

package/dist-types/commands/UpdateOutpostResolverCommand.d.ts CHANGED Viewed

@@ -67,6 +67,8 @@ declare const UpdateOutpostResolverCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link ConflictException} (client fault)
  *  <p>The requested state transition isn't valid. For example, you can't delete a firewall

package/dist-types/commands/UpdateResolverConfigCommand.d.ts CHANGED Viewed

@@ -59,6 +59,8 @@ declare const UpdateResolverConfigCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/UpdateResolverDnssecConfigCommand.d.ts CHANGED Viewed

@@ -58,6 +58,8 @@ declare const UpdateResolverDnssecConfigCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/UpdateResolverEndpointCommand.d.ts CHANGED Viewed

@@ -85,6 +85,8 @@ declare const UpdateResolverEndpointCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/commands/UpdateResolverRuleCommand.d.ts CHANGED Viewed

@@ -87,6 +87,8 @@ declare const UpdateResolverRuleCommand_base: {
  *
  * @throws {@link AccessDeniedException} (client fault)
  *  <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  *
  * @throws {@link InternalServiceErrorException} (client fault)
  *  <p>We encountered an unknown error. Try again in a few minutes.</p>

package/dist-types/models/models_0.d.ts CHANGED Viewed

@@ -2,6 +2,8 @@ import { ExceptionOptionType as __ExceptionOptionType } from "@smithy/smithy-cli
 import { Route53ResolverServiceException as __BaseException } from "./Route53ResolverServiceException";
 /**
  * <p>The current account doesn't have the IAM permissions required to perform the specified Resolver operation.</p>
+ *          <p>This error can also be thrown when a customer has reached the 5120 character limit for a
+ * 			resource policy for CloudWatch Logs.</p>
  * @public
  */
 export declare class AccessDeniedException extends __BaseException {
@@ -1038,6 +1040,18 @@ export interface CreateFirewallDomainListResponse {
      */
     FirewallDomainList?: FirewallDomainList;
 }
+/**
+ * @public
+ * @enum
+ */
+export declare const FirewallDomainRedirectionAction: {
+    readonly INSPECT_REDIRECTION_DOMAIN: "INSPECT_REDIRECTION_DOMAIN";
+    readonly TRUST_REDIRECTION_DOMAIN: "TRUST_REDIRECTION_DOMAIN";
+};
+/**
+ * @public
+ */
+export type FirewallDomainRedirectionAction = (typeof FirewallDomainRedirectionAction)[keyof typeof FirewallDomainRedirectionAction];
 /**
  * @public
  */
@@ -1131,6 +1145,19 @@ export interface CreateFirewallRuleRequest {
      * @public
      */
     Name: string | undefined;
+    /**
+     * <p>
+     * 			How you want the the rule to evaluate DNS redirection in the DNS redirection chain, such as CNAME, DNAME, ot ALIAS.
+     * 		</p>
+     *          <p>
+     *             <code>Inspect_Redirection_Domain </code>(Default) inspects all domains in the redirection chain. The individual domains in the redirection chain must be
+     * 			added to the allow domain list.</p>
+     *          <p>
+     *             <code>Trust_Redirection_Domain </code> inspects only the first domain in the redirection chain. You don't need to add the subsequent domains in the redirection list to
+     * 		the domain alloww list.</p>
+     * @public
+     */
+    FirewallDomainRedirectionAction?: FirewallDomainRedirectionAction;
     /**
      * <p>
      * 			The DNS query type you want the rule to evaluate. Allowed values are;
@@ -1176,6 +1203,13 @@ export interface CreateFirewallRuleRequest {
      *             <li>
      *                <p>TXT: Verifies email senders and application-specific values.</p>
      *             </li>
+     *             <li>
+     *                <p>A query type you define by using the DNS type ID, for example 28 for AAAA. The values must be
+     * 				defined as TYPENUMBER, where the
+     * 				NUMBER can be 1-65334, for
+     * 				example, TYPE28. For more information, see
+     * 				<a href="https://en.wikipedia.org/wiki/List_of_DNS_record_types">List of DNS record types</a>.</p>
+     *             </li>
      *          </ul>
      * @public
      */
@@ -1275,6 +1309,19 @@ export interface FirewallRule {
      * @public
      */
     ModificationTime?: string;
+    /**
+     * <p>
+     * 			How you want the the rule to evaluate DNS redirection in the DNS redirection chain, such as CNAME, DNAME, ot ALIAS.
+     * 		</p>
+     *          <p>
+     *             <code>Inspect_Redirection_Domain </code>(Default) inspects all domains in the redirection chain. The individual domains in the redirection chain must be
+     * 			added to the allow domain list.</p>
+     *          <p>
+     *             <code>Trust_Redirection_Domain </code> inspects only the first domain in the redirection chain. You don't need to add the subsequent domains in the domain in the redirection list to
+     * 			the domain alloww list.</p>
+     * @public
+     */
+    FirewallDomainRedirectionAction?: FirewallDomainRedirectionAction;
     /**
      * <p>
      * 			The DNS query type you want the rule to evaluate. Allowed values are;
@@ -1320,6 +1367,13 @@ export interface FirewallRule {
      *             <li>
      *                <p>TXT: Verifies email senders and application-specific values.</p>
      *             </li>
+     *             <li>
+     *                <p>A query type you define by using the DNS type ID, for example 28 for AAAA. The values must be
+     * 				defined as TYPENUMBER, where the
+     * 				NUMBER can be 1-65334, for
+     * 				example, TYPE28. For more information, see
+     * 				<a href="https://en.wikipedia.org/wiki/List_of_DNS_record_types">List of DNS record types</a>.</p>
+     *             </li>
      *          </ul>
      * @public
      */
@@ -1656,6 +1710,10 @@ export interface CreateResolverEndpointRequest {
      * 			must include one or more inbound rules (for inbound Resolver endpoints) or outbound rules (for outbound Resolver endpoints).
      * 			Inbound and outbound rules must allow TCP and UDP access. For inbound access, open port 53. For outbound access, open the port
      * 			that you're using for DNS queries on your network.</p>
+     *          <p>Some security group rules will cause your connection to be tracked. For outbound resolver endpoint, it can potentially impact the
+     * 			maximum queries per second from outbound endpoint to your target name server. For inbound resolver endpoint, it can bring down the overall maximum queries per second per IP address to as low as 1500.
+     * 			To avoid connection tracking caused by security group, see
+     * 			<a href="https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/security-group-connection-tracking.html#untracked-connectionsl">Untracked connections</a>.</p>
      * @public
      */
     SecurityGroupIds: string[] | undefined;
@@ -2268,6 +2326,13 @@ export interface DeleteFirewallRuleRequest {
      *             <li>
      *                <p>TXT: Verifies email senders and application-specific values.</p>
      *             </li>
+     *             <li>
+     *                <p>A query type you define by using the DNS type ID, for example 28 for AAAA. The values must be
+     * 				defined as TYPENUMBER, where the
+     * 				NUMBER can be 1-65334, for
+     * 				example, TYPE28. For more information, see
+     * 				<a href="https://en.wikipedia.org/wiki/List_of_DNS_record_types">List of DNS record types</a>.</p>
+     *             </li>
      *          </ul>
      * @public
      */
@@ -4933,6 +4998,19 @@ export interface UpdateFirewallRuleRequest {
      * @public
      */
     Name?: string;
+    /**
+     * <p>
+     * 			How you want the the rule to evaluate DNS redirection in the DNS redirection chain, such as CNAME, DNAME, ot ALIAS.
+     * 		</p>
+     *          <p>
+     *             <code>Inspect_Redirection_Domain </code>(Default) inspects all domains in the redirection chain. The individual domains in the redirection chain must be
+     * 			added to the allow domain list.</p>
+     *          <p>
+     *             <code>Trust_Redirection_Domain </code> inspects only the first domain in the redirection chain. You don't need to add the subsequent domains in the domain in the redirection list to
+     * 			the domain alloww list.</p>
+     * @public
+     */
+    FirewallDomainRedirectionAction?: FirewallDomainRedirectionAction;
     /**
      * <p>
      * 			The DNS query type you want the rule to evaluate. Allowed values are;
@@ -4978,6 +5056,13 @@ export interface UpdateFirewallRuleRequest {
      *             <li>
      *                <p>TXT: Verifies email senders and application-specific values.</p>
      *             </li>
+     *             <li>
+     *                <p>A query type you define by using the DNS type ID, for example 28 for AAAA. The values must be
+     * 				defined as TYPENUMBER, where the
+     * 				NUMBER can be 1-65334, for
+     * 				example, TYPE28. For more information, see
+     * 				<a href="https://en.wikipedia.org/wiki/List_of_DNS_record_types">List of DNS record types</a>.</p>
+     *             </li>
      *          </ul>
      * @public
      */

package/dist-types/ts3.4/models/models_0.d.ts CHANGED Viewed

@@ -306,6 +306,12 @@ export interface FirewallDomainList {
 export interface CreateFirewallDomainListResponse {
   FirewallDomainList?: FirewallDomainList;
 }
+export declare const FirewallDomainRedirectionAction: {
+  readonly INSPECT_REDIRECTION_DOMAIN: "INSPECT_REDIRECTION_DOMAIN";
+  readonly TRUST_REDIRECTION_DOMAIN: "TRUST_REDIRECTION_DOMAIN";
+};
+export type FirewallDomainRedirectionAction =
+  (typeof FirewallDomainRedirectionAction)[keyof typeof FirewallDomainRedirectionAction];
 export interface CreateFirewallRuleRequest {
   CreatorRequestId?: string;
   FirewallRuleGroupId: string | undefined;
@@ -317,6 +323,7 @@ export interface CreateFirewallRuleRequest {
   BlockOverrideDnsType?: BlockOverrideDnsType;
   BlockOverrideTtl?: number;
   Name: string | undefined;
+  FirewallDomainRedirectionAction?: FirewallDomainRedirectionAction;
   Qtype?: string;
 }
 export interface FirewallRule {
@@ -332,6 +339,7 @@ export interface FirewallRule {
   CreatorRequestId?: string;
   CreationTime?: string;
   ModificationTime?: string;
+  FirewallDomainRedirectionAction?: FirewallDomainRedirectionAction;
   Qtype?: string;
 }
 export interface CreateFirewallRuleResponse {
@@ -1053,6 +1061,7 @@ export interface UpdateFirewallRuleRequest {
   BlockOverrideDnsType?: BlockOverrideDnsType;
   BlockOverrideTtl?: number;
   Name?: string;
+  FirewallDomainRedirectionAction?: FirewallDomainRedirectionAction;
   Qtype?: string;
 }
 export interface UpdateFirewallRuleResponse {

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-route53resolver",
   "description": "AWS SDK for JavaScript Route53resolver Client for Node.js, Browser and React Native",
-  "version": "3.565.0",
+  "version": "3.566.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-route53resolver",