cdk-docker-image-deployment 0.0.150 → 0.0.152

package/node_modules/aws-sdk/clients/ec2.d.ts

@@ -124,6 +124,14 @@ declare class EC2 extends Service {
    * Assigns one or more secondary private IP addresses to the specified network interface. You can specify one or more specific secondary IP addresses, or you can specify the number of secondary IP addresses to be automatically assigned within the subnet's CIDR block range. The number of secondary IP addresses that you can assign to an instance varies by instance type. For information about instance types, see Instance Types in the Amazon Elastic Compute Cloud User Guide. For more information about Elastic IP addresses, see Elastic IP Addresses in the Amazon Elastic Compute Cloud User Guide. When you move a secondary private IP address to another network interface, any Elastic IP address that is associated with the IP address is also moved. Remapping an IP address is an asynchronous operation. When you move an IP address from one network interface to another, check network/interfaces/macs/mac/local-ipv4s in the instance metadata to confirm that the remapping is complete. You must specify either the IP addresses or the IP address count in the request. You can optionally use Prefix Delegation on the network interface. You must specify either the IPv4 Prefix Delegation prefixes, or the IPv4 Prefix Delegation count. For information, see  Assigning prefixes to Amazon EC2 network interfaces in the Amazon Elastic Compute Cloud User Guide.
    */
   assignPrivateIpAddresses(callback?: (err: AWSError, data: EC2.Types.AssignPrivateIpAddressesResult) => void): Request<EC2.Types.AssignPrivateIpAddressesResult, AWSError>;
+  /**
+   * Assigns one or more private IPv4 addresses to a private NAT gateway. For more information, see Work with NAT gateways in the Amazon Virtual Private Cloud User Guide.
+   */
+  assignPrivateNatGatewayAddress(params: EC2.Types.AssignPrivateNatGatewayAddressRequest, callback?: (err: AWSError, data: EC2.Types.AssignPrivateNatGatewayAddressResult) => void): Request<EC2.Types.AssignPrivateNatGatewayAddressResult, AWSError>;
+  /**
+   * Assigns one or more private IPv4 addresses to a private NAT gateway. For more information, see Work with NAT gateways in the Amazon Virtual Private Cloud User Guide.
+   */
+  assignPrivateNatGatewayAddress(callback?: (err: AWSError, data: EC2.Types.AssignPrivateNatGatewayAddressResult) => void): Request<EC2.Types.AssignPrivateNatGatewayAddressResult, AWSError>;
   /**
    * Associates an Elastic IP address, or carrier IP address (for instances that are in subnets in Wavelength Zones) with an instance or a network interface. Before you can use an Elastic IP address, you must allocate it to your account. An Elastic IP address is for use in either the EC2-Classic platform or in a VPC. For more information, see Elastic IP Addresses in the Amazon Elastic Compute Cloud User Guide. [EC2-Classic, VPC in an EC2-VPC-only account] If the Elastic IP address is already associated with a different instance, it is disassociated from that instance and associated with the specified instance. If you associate an Elastic IP address with an instance that has an existing Elastic IP address, the existing address is disassociated from the instance, but remains allocated to your account. [VPC in an EC2-Classic account] If you don't specify a private IP address, the Elastic IP address is associated with the primary IP address. If the Elastic IP address is already associated with a different instance or a network interface, you get an error unless you allow reassociation. You cannot associate an Elastic IP address with an instance or network interface that has an existing Elastic IP address. [Subnets in Wavelength Zones] You can associate an IP address from the telecommunication carrier to the instance or network interface.  You cannot associate an Elastic IP address with an interface in a different network border group.  This is an idempotent operation. If you perform the operation more than once, Amazon EC2 doesn't return an error, and you may be charged for each time the Elastic IP address is remapped to the same instance. For more information, see the Elastic IP Addresses section of Amazon EC2 Pricing.   We are retiring EC2-Classic. We recommend that you migrate from EC2-Classic to a VPC. For more information, see Migrate from EC2-Classic to a VPC in the Amazon Elastic Compute Cloud User Guide. 
    */
@@ -180,6 +188,14 @@ declare class EC2 extends Service {
    * Associates an IPAM resource discovery with an Amazon VPC IPAM. A resource discovery is an IPAM component that enables IPAM Service to manage and monitor resources that belong to the owning account.
    */
   associateIpamResourceDiscovery(callback?: (err: AWSError, data: EC2.Types.AssociateIpamResourceDiscoveryResult) => void): Request<EC2.Types.AssociateIpamResourceDiscoveryResult, AWSError>;
+  /**
+   * Associates Elastic IP addresses (EIPs) and private IPv4 addresses with a public NAT gateway. For more information, see Work with NAT gateways in the Amazon Virtual Private Cloud User Guide. By default, you can associate up to 2 Elastic IP addresses per public NAT gateway. You can increase the limit by requesting a quota adjustment. For more information, see Elastic IP address quotas in the Amazon Virtual Private Cloud User Guide.
+   */
+  associateNatGatewayAddress(params: EC2.Types.AssociateNatGatewayAddressRequest, callback?: (err: AWSError, data: EC2.Types.AssociateNatGatewayAddressResult) => void): Request<EC2.Types.AssociateNatGatewayAddressResult, AWSError>;
+  /**
+   * Associates Elastic IP addresses (EIPs) and private IPv4 addresses with a public NAT gateway. For more information, see Work with NAT gateways in the Amazon Virtual Private Cloud User Guide. By default, you can associate up to 2 Elastic IP addresses per public NAT gateway. You can increase the limit by requesting a quota adjustment. For more information, see Elastic IP address quotas in the Amazon Virtual Private Cloud User Guide.
+   */
+  associateNatGatewayAddress(callback?: (err: AWSError, data: EC2.Types.AssociateNatGatewayAddressResult) => void): Request<EC2.Types.AssociateNatGatewayAddressResult, AWSError>;
   /**
    * Associates a subnet in your VPC or an internet gateway or virtual private gateway attached to your VPC with a route table in your VPC. This association causes traffic from the subnet or gateway to be routed according to the routes in the route table. The action returns an association ID, which you need in order to disassociate the route table later. A route table can be associated with multiple subnets. For more information, see Route tables in the Amazon Virtual Private Cloud User Guide.
    */
@@ -3060,6 +3076,14 @@ declare class EC2 extends Service {
    * Disassociates a resource discovery from an Amazon VPC IPAM. A resource discovery is an IPAM component that enables IPAM Service to manage and monitor resources that belong to the owning account.
    */
   disassociateIpamResourceDiscovery(callback?: (err: AWSError, data: EC2.Types.DisassociateIpamResourceDiscoveryResult) => void): Request<EC2.Types.DisassociateIpamResourceDiscoveryResult, AWSError>;
+  /**
+   * Disassociates secondary Elastic IP addresses (EIPs) from a public NAT gateway. You cannot disassociate your primary EIP. For more information, see Edit secondary IP address associations in the Amazon Virtual Private Cloud User Guide. While disassociating is in progress, you cannot associate/disassociate additional EIPs while the connections are being drained. You are, however, allowed to delete the NAT gateway. An EIP will only be released at the end of MaxDrainDurationSeconds. The EIPs stay associated and support the existing connections but do not support any new connections (new connections are distributed across the remaining associated EIPs). As the existing connections drain out, the EIPs (and the corresponding private IPs mapped to them) get released.
+   */
+  disassociateNatGatewayAddress(params: EC2.Types.DisassociateNatGatewayAddressRequest, callback?: (err: AWSError, data: EC2.Types.DisassociateNatGatewayAddressResult) => void): Request<EC2.Types.DisassociateNatGatewayAddressResult, AWSError>;
+  /**
+   * Disassociates secondary Elastic IP addresses (EIPs) from a public NAT gateway. You cannot disassociate your primary EIP. For more information, see Edit secondary IP address associations in the Amazon Virtual Private Cloud User Guide. While disassociating is in progress, you cannot associate/disassociate additional EIPs while the connections are being drained. You are, however, allowed to delete the NAT gateway. An EIP will only be released at the end of MaxDrainDurationSeconds. The EIPs stay associated and support the existing connections but do not support any new connections (new connections are distributed across the remaining associated EIPs). As the existing connections drain out, the EIPs (and the corresponding private IPs mapped to them) get released.
+   */
+  disassociateNatGatewayAddress(callback?: (err: AWSError, data: EC2.Types.DisassociateNatGatewayAddressResult) => void): Request<EC2.Types.DisassociateNatGatewayAddressResult, AWSError>;
   /**
    * Disassociates a subnet or gateway from a route table. After you perform this action, the subnet no longer uses the routes in the route table. Instead, it uses the routes in the VPC's main route table. For more information about route tables, see Route tables in the Amazon Virtual Private Cloud User Guide.
    */
@@ -4660,6 +4684,14 @@ declare class EC2 extends Service {
    * Unassigns one or more secondary private IP addresses, or IPv4 Prefix Delegation prefixes from a network interface.
    */
   unassignPrivateIpAddresses(callback?: (err: AWSError, data: {}) => void): Request<{}, AWSError>;
+  /**
+   * Unassigns secondary private NAT gateway IPv4 addresses from a private NAT gateway. You cannot unassign your primary private IP. For more information, see Edit secondary IP address associations in the Amazon Virtual Private Cloud User Guide. While unassigning is in progress, you cannot assign/unassign additional IP addresses while the connections are being drained. You are, however, allowed to delete the NAT gateway. A private IP address will only be released at the end of MaxDrainDurationSeconds. The private IP addresses stay associated and support the existing connections but do not support any new connections (new connections are distributed across the remaining assigned private IP address). After the existing connections drain out, the private IP addresses get released.   
+   */
+  unassignPrivateNatGatewayAddress(params: EC2.Types.UnassignPrivateNatGatewayAddressRequest, callback?: (err: AWSError, data: EC2.Types.UnassignPrivateNatGatewayAddressResult) => void): Request<EC2.Types.UnassignPrivateNatGatewayAddressResult, AWSError>;
+  /**
+   * Unassigns secondary private NAT gateway IPv4 addresses from a private NAT gateway. You cannot unassign your primary private IP. For more information, see Edit secondary IP address associations in the Amazon Virtual Private Cloud User Guide. While unassigning is in progress, you cannot assign/unassign additional IP addresses while the connections are being drained. You are, however, allowed to delete the NAT gateway. A private IP address will only be released at the end of MaxDrainDurationSeconds. The private IP addresses stay associated and support the existing connections but do not support any new connections (new connections are distributed across the remaining assigned private IP address). After the existing connections drain out, the private IP addresses get released.   
+   */
+  unassignPrivateNatGatewayAddress(callback?: (err: AWSError, data: EC2.Types.UnassignPrivateNatGatewayAddressResult) => void): Request<EC2.Types.UnassignPrivateNatGatewayAddressResult, AWSError>;
   /**
    * Disables detailed monitoring for a running instance. For more information, see Monitoring your instances and volumes in the Amazon EC2 User Guide.
    */
@@ -5868,6 +5900,34 @@ declare namespace EC2 {
      */
     AssignedIpv4Prefixes?: Ipv4PrefixesList;
   }
+  export interface AssignPrivateNatGatewayAddressRequest {
+    /**
+     * The NAT gateway ID.
+     */
+    NatGatewayId: NatGatewayId;
+    /**
+     * The private IPv4 addresses you want to assign to the private NAT gateway.
+     */
+    PrivateIpAddresses?: IpList;
+    /**
+     * The number of private IP addresses to assign to the NAT gateway. You can't specify this parameter when also specifying private IP addresses.
+     */
+    PrivateIpAddressCount?: PrivateIpAddressCount;
+    /**
+     * Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
+     */
+    DryRun?: Boolean;
+  }
+  export interface AssignPrivateNatGatewayAddressResult {
+    /**
+     * The NAT gateway ID.
+     */
+    NatGatewayId?: NatGatewayId;
+    /**
+     * NAT gateway IP addresses.
+     */
+    NatGatewayAddresses?: NatGatewayAddressList;
+  }
   export interface AssignedPrivateIpAddress {
     /**
      * The private IP address assigned to the network interface.
@@ -5957,11 +6017,11 @@ declare namespace EC2 {
     /**
      * The ARN of the ACM certificate with which to associate the IAM role.
      */
-    CertificateArn?: ResourceArn;
+    CertificateArn?: CertificateId;
     /**
      * The ARN of the IAM role to associate with the ACM certificate. You can associate up to 16 IAM roles with an ACM certificate.
      */
-    RoleArn?: ResourceArn;
+    RoleArn?: RoleId;
     /**
      * Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
      */
@@ -6045,6 +6105,34 @@ declare namespace EC2 {
      */
     IpamResourceDiscoveryAssociation?: IpamResourceDiscoveryAssociation;
   }
+  export interface AssociateNatGatewayAddressRequest {
+    /**
+     * The NAT gateway ID.
+     */
+    NatGatewayId: NatGatewayId;
+    /**
+     * The allocation IDs of EIPs that you want to associate with your NAT gateway.
+     */
+    AllocationIds: AllocationIdList;
+    /**
+     * The private IPv4 addresses that you want to assign to the NAT gateway.
+     */
+    PrivateIpAddresses?: IpList;
+    /**
+     * Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
+     */
+    DryRun?: Boolean;
+  }
+  export interface AssociateNatGatewayAddressResult {
+    /**
+     * The NAT gateway ID.
+     */
+    NatGatewayId?: NatGatewayId;
+    /**
+     * The IP addresses.
+     */
+    NatGatewayAddresses?: NatGatewayAddressList;
+  }
   export interface AssociateRouteTableRequest {
     /**
      * Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
@@ -7383,6 +7471,7 @@ declare namespace EC2 {
      */
     ClientRootCertificateChainArn?: String;
   }
+  export type CertificateId = string;
   export interface CidrAuthorizationContext {
     /**
      * The plain-text authorization message for the prefix and account.
@@ -8114,7 +8203,7 @@ declare namespace EC2 {
     /**
      * When you copy an encrypted source snapshot using the Amazon EC2 Query API, you must supply a pre-signed URL. This parameter is optional for unencrypted snapshots. For more information, see Query requests. The PresignedUrl should use the snapshot source endpoint, the CopySnapshot action, and include the SourceRegion, SourceSnapshotId, and DestinationRegion parameters. The PresignedUrl must be signed using Amazon Web Services Signature Version 4. Because EBS snapshots are stored in Amazon S3, the signing algorithm for this parameter uses the same logic that is described in Authenticating Requests: Using Query Parameters (Amazon Web Services Signature Version 4) in the Amazon Simple Storage Service API Reference. An invalid or improperly signed PresignedUrl will cause the copy operation to fail asynchronously, and the snapshot will move to an error state.
      */
-    PresignedUrl?: String;
+    PresignedUrl?: CopySnapshotRequestPSU;
     /**
      * The ID of the Region that contains the snapshot to be copied.
      */
@@ -8132,6 +8221,7 @@ declare namespace EC2 {
      */
     DryRun?: Boolean;
   }
+  export type CopySnapshotRequestPSU = string;
   export interface CopySnapshotResult {
     /**
      * The ID of the new snapshot.
@@ -9224,7 +9314,7 @@ declare namespace EC2 {
     /**
      * The CIDR range used for destination matches. Routing decisions are based on the most specific match.
      */
-    DestinationCidrBlock: String;
+    DestinationCidrBlock?: String;
     /**
      * The ID of the local gateway route table.
      */
@@ -9241,6 +9331,10 @@ declare namespace EC2 {
      * The ID of the network interface.
      */
     NetworkInterfaceId?: NetworkInterfaceId;
+    /**
+     *  The ID of the prefix list. Use a prefix list in place of DestinationCidrBlock. You cannot use DestinationPrefixListId and DestinationCidrBlock in the same request. 
+     */
+    DestinationPrefixListId?: PrefixListResourceId;
   }
   export interface CreateLocalGatewayRouteResult {
     /**
@@ -9370,7 +9464,7 @@ declare namespace EC2 {
      */
     DryRun?: Boolean;
     /**
-     * The subnet in which to create the NAT gateway.
+     * The ID of the subnet in which to create the NAT gateway.
      */
     SubnetId: SubnetId;
     /**
@@ -9385,6 +9479,18 @@ declare namespace EC2 {
      * The private IPv4 address to assign to the NAT gateway. If you don't provide an address, a private IPv4 address will be automatically assigned.
      */
     PrivateIpAddress?: String;
+    /**
+     * Secondary EIP allocation IDs. For more information about secondary addresses, see Create a NAT gateway in the Amazon Virtual Private Cloud User Guide.
+     */
+    SecondaryAllocationIds?: AllocationIdList;
+    /**
+     * Secondary private IPv4 addresses. For more information about secondary addresses, see Create a NAT gateway in the Amazon Virtual Private Cloud User Guide.
+     */
+    SecondaryPrivateIpAddresses?: IpList;
+    /**
+     * [Private NAT gateway only] The number of secondary private IPv4 addresses you want to assign to the NAT gateway. For more information about secondary addresses, see Create a NAT gateway in the Amazon Virtual Private Cloud User Guide.
+     */
+    SecondaryPrivateIpAddressCount?: PrivateIpAddressCount;
   }
   export interface CreateNatGatewayResult {
     /**
@@ -11760,7 +11866,7 @@ declare namespace EC2 {
     /**
      * The CIDR range for the route. This must match the CIDR for the route exactly.
      */
-    DestinationCidrBlock: String;
+    DestinationCidrBlock?: String;
     /**
      * The ID of the local gateway route table.
      */
@@ -11769,6 +11875,10 @@ declare namespace EC2 {
      * Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
      */
     DryRun?: Boolean;
+    /**
+     *  Use a prefix list in place of DestinationCidrBlock. You cannot use DestinationPrefixListId and DestinationCidrBlock in the same request. 
+     */
+    DestinationPrefixListId?: PrefixListResourceId;
   }
   export interface DeleteLocalGatewayRouteResult {
     /**
@@ -12158,7 +12268,7 @@ declare namespace EC2 {
     /**
      * The ID of the Traffic Mirror rule.
      */
-    TrafficMirrorFilterRuleId: TrafficMirrorFilterRuleId;
+    TrafficMirrorFilterRuleId: TrafficMirrorFilterRuleIdWithResolver;
     /**
      * Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
      */
@@ -17889,11 +17999,11 @@ declare namespace EC2 {
     /**
      * The ARN of the ACM certificate from which to disassociate the IAM role.
      */
-    CertificateArn?: ResourceArn;
+    CertificateArn?: CertificateId;
     /**
      * The ARN of the IAM role to disassociate.
      */
-    RoleArn?: ResourceArn;
+    RoleArn?: RoleId;
     /**
      * Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
      */
@@ -17953,6 +18063,34 @@ declare namespace EC2 {
      */
     IpamResourceDiscoveryAssociation?: IpamResourceDiscoveryAssociation;
   }
+  export interface DisassociateNatGatewayAddressRequest {
+    /**
+     * The NAT gateway ID.
+     */
+    NatGatewayId: NatGatewayId;
+    /**
+     * The association IDs of EIPs that have been associated with the NAT gateway.
+     */
+    AssociationIds: EipAssociationIdList;
+    /**
+     * The maximum amount of time to wait (in seconds) before forcibly releasing the IP addresses if connections are still in progress. Default value is 350 seconds.
+     */
+    MaxDrainDurationSeconds?: DrainSeconds;
+    /**
+     * Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
+     */
+    DryRun?: Boolean;
+  }
+  export interface DisassociateNatGatewayAddressResult {
+    /**
+     * The NAT gateway ID.
+     */
+    NatGatewayId?: NatGatewayId;
+    /**
+     * Information about the NAT gateway IP addresses.
+     */
+    NatGatewayAddresses?: NatGatewayAddressList;
+  }
   export interface DisassociateRouteTableRequest {
     /**
      * The association ID representing the current association between the route table and subnet or gateway.
@@ -18202,6 +18340,7 @@ declare namespace EC2 {
   export type DomainType = "vpc"|"standard"|string;
   export type Double = number;
   export type DoubleWithConstraints = number;
+  export type DrainSeconds = number;
   export type DynamicRoutingValue = "enable"|"disable"|string;
   export interface EbsBlockDevice {
     /**
@@ -18340,6 +18479,7 @@ declare namespace EC2 {
   export type EgressOnlyInternetGatewayId = string;
   export type EgressOnlyInternetGatewayIdList = EgressOnlyInternetGatewayId[];
   export type EgressOnlyInternetGatewayList = EgressOnlyInternetGateway[];
+  export type EipAssociationIdList = ElasticIpAssociationId[];
   export interface ElasticGpuAssociation {
     /**
      * The ID of the Elastic Graphics accelerator.
@@ -19963,7 +20103,7 @@ declare namespace EC2 {
     /**
      * The ARN of the ACM certificate for which to view the associated IAM roles, encryption keys, and Amazon S3 object information.
      */
-    CertificateArn?: ResourceArn;
+    CertificateArn?: CertificateId;
     /**
      * Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
      */
@@ -22906,6 +23046,7 @@ declare namespace EC2 {
   export type InstanceIdList = InstanceId[];
   export type InstanceIdSet = InstanceId[];
   export type InstanceIdStringList = InstanceId[];
+  export type InstanceIdWithVolumeResolver = string;
   export type InstanceIdsSet = InstanceId[];
   export type InstanceInterruptionBehavior = "hibernate"|"stop"|"terminate"|string;
   export interface InstanceIpv4Prefix {
@@ -23452,7 +23593,7 @@ declare namespace EC2 {
     /**
      * The instance to specify which volumes should be snapshotted.
      */
-    InstanceId?: InstanceId;
+    InstanceId: InstanceIdWithVolumeResolver;
     /**
      * Excludes the root volume from being snapshotted.
      */
@@ -23784,6 +23925,7 @@ declare namespace EC2 {
   export type IpAddress = string;
   export type IpAddressList = IpAddress[];
   export type IpAddressType = "ipv4"|"dualstack"|"ipv6"|string;
+  export type IpList = String[];
   export interface IpPermission {
     /**
      * If the protocol is TCP or UDP, this is the start of the port range. If the protocol is ICMP or ICMPv6, this is the type number. A value of -1 indicates all ICMP/ICMPv6 types. If you specify all ICMP/ICMPv6 types, you must specify all ICMP/ICMPv6 codes.
@@ -25654,6 +25796,10 @@ declare namespace EC2 {
      * The ID of the network interface.
      */
     NetworkInterfaceId?: NetworkInterfaceId;
+    /**
+     *  The ID of the prefix list. 
+     */
+    DestinationPrefixListId?: PrefixListResourceId;
   }
   export type LocalGatewayRouteList = LocalGatewayRoute[];
   export type LocalGatewayRouteState = "pending"|"active"|"blackhole"|"deleting"|"deleted"|string;
@@ -26821,7 +26967,7 @@ declare namespace EC2 {
     /**
      * The CIDR block used for destination matches. The value that you provide must match the CIDR of an existing route in the table.
      */
-    DestinationCidrBlock: String;
+    DestinationCidrBlock?: String;
     /**
      * The ID of the local gateway route table.
      */
@@ -26838,6 +26984,10 @@ declare namespace EC2 {
      * Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
      */
     DryRun?: Boolean;
+    /**
+     *  The ID of the prefix list. Use a prefix list in place of DestinationCidrBlock. You cannot use DestinationPrefixListId and DestinationCidrBlock in the same request. 
+     */
+    DestinationPrefixListId?: PrefixListResourceId;
   }
   export interface ModifyLocalGatewayRouteResult {
     /**
@@ -27139,7 +27289,7 @@ declare namespace EC2 {
     /**
      * The ID of the Traffic Mirror rule.
      */
-    TrafficMirrorFilterRuleId: TrafficMirrorFilterRuleId;
+    TrafficMirrorFilterRuleId: TrafficMirrorFilterRuleIdWithResolver;
     /**
      * The type of traffic to assign to the rule.
      */
@@ -28235,8 +28385,25 @@ declare namespace EC2 {
      * [Public NAT gateway only] The Elastic IP address associated with the NAT gateway.
      */
     PublicIp?: String;
+    /**
+     * [Public NAT gateway only] The association ID of the Elastic IP address that's associated with the NAT gateway.
+     */
+    AssociationId?: String;
+    /**
+     * Defines if the IP address is the primary address.
+     */
+    IsPrimary?: Boolean;
+    /**
+     * The address failure message.
+     */
+    FailureMessage?: String;
+    /**
+     * The address status.
+     */
+    Status?: NatGatewayAddressStatus;
   }
   export type NatGatewayAddressList = NatGatewayAddress[];
+  export type NatGatewayAddressStatus = "assigning"|"unassigning"|"associating"|"disassociating"|"succeeded"|"failed"|string;
   export type NatGatewayId = string;
   export type NatGatewayIdStringList = NatGatewayId[];
   export type NatGatewayList = NatGateway[];
@@ -29613,6 +29780,7 @@ declare namespace EC2 {
     EnableResourceNameDnsAAAARecord?: Boolean;
   }
   export type PrivateIpAddressConfigSet = ScheduledInstancesPrivateIpAddressConfig[];
+  export type PrivateIpAddressCount = number;
   export interface PrivateIpAddressSpecification {
     /**
      * Indicates whether the private IPv4 address is the primary private IPv4 address. Only one IPv4 address can be designated as primary.
@@ -31844,6 +32012,7 @@ declare namespace EC2 {
      */
     UnknownIpPermissions?: IpPermissionList;
   }
+  export type RoleId = string;
   export type RootDeviceType = "ebs"|"instance-store"|string;
   export type RootDeviceTypeList = RootDeviceType[];
   export interface Route {
@@ -32587,7 +32756,7 @@ declare namespace EC2 {
      */
     LocalGatewayRouteTableId: LocalGatewayRoutetableId;
     /**
-     * One or more filters.    route-search.exact-match - The exact match of the specified filter.    route-search.longest-prefix-match - The longest prefix that matches the route.    route-search.subnet-of-match - The routes with a subnet that match the specified CIDR filter.    route-search.supernet-of-match - The routes with a CIDR that encompass the CIDR filter. For example, if you have 10.0.1.0/29 and 10.0.1.0/31 routes in your route table and you specify supernet-of-match as 10.0.1.0/30, then the result returns 10.0.1.0/29.    state - The state of the route.    type - The route type.  
+     * One or more filters.    prefix-list-id - The ID of the prefix list.    route-search.exact-match - The exact match of the specified filter.    route-search.longest-prefix-match - The longest prefix that matches the route.    route-search.subnet-of-match - The routes with a subnet that match the specified CIDR filter.    route-search.supernet-of-match - The routes with a CIDR that encompass the CIDR filter. For example, if you have 10.0.1.0/29 and 10.0.1.0/31 routes in your route table and you specify supernet-of-match as 10.0.1.0/30, then the result returns 10.0.1.0/29.    state - The state of the route.    type - The route type.  
      */
     Filters?: FilterList;
     /**
@@ -34621,7 +34790,7 @@ declare namespace EC2 {
   }
   export type TrafficMirrorFilterRuleField = "destination-port-range"|"source-port-range"|"protocol"|"description"|string;
   export type TrafficMirrorFilterRuleFieldList = TrafficMirrorFilterRuleField[];
-  export type TrafficMirrorFilterRuleId = string;
+  export type TrafficMirrorFilterRuleIdWithResolver = string;
   export type TrafficMirrorFilterRuleList = TrafficMirrorFilterRule[];
   export type TrafficMirrorFilterSet = TrafficMirrorFilter[];
   export type TrafficMirrorNetworkService = "amazon-dns"|string;
@@ -35896,6 +36065,34 @@ declare namespace EC2 {
      */
     Ipv4Prefixes?: IpPrefixList;
   }
+  export interface UnassignPrivateNatGatewayAddressRequest {
+    /**
+     * The NAT gateway ID.
+     */
+    NatGatewayId: NatGatewayId;
+    /**
+     * The private IPv4 addresses you want to unassign.
+     */
+    PrivateIpAddresses: IpList;
+    /**
+     * The maximum amount of time to wait (in seconds) before forcibly releasing the IP addresses if connections are still in progress. Default value is 350 seconds.
+     */
+    MaxDrainDurationSeconds?: DrainSeconds;
+    /**
+     * Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
+     */
+    DryRun?: Boolean;
+  }
+  export interface UnassignPrivateNatGatewayAddressResult {
+    /**
+     * The NAT gateway ID.
+     */
+    NatGatewayId?: NatGatewayId;
+    /**
+     * Information about the NAT gateway IP addresses.
+     */
+    NatGatewayAddresses?: NatGatewayAddressList;
+  }
   export type UnlimitedSupportedInstanceFamily = "t2"|"t3"|"t3a"|"t4g"|string;
   export interface UnmonitorInstancesRequest {
     /**