You are viewing documentation for version 2 of the AWS SDK for Ruby. Version 3 documentation can be found here.
Class: Aws::SecurityHub::Types::AwsEc2SecurityGroupIpPermission
- Inherits:
-
Struct
- Object
- Struct
- Aws::SecurityHub::Types::AwsEc2SecurityGroupIpPermission
- Defined in:
- (unknown)
Overview
When passing AwsEc2SecurityGroupIpPermission as input to an Aws::Client method, you can use a vanilla Hash:
{
ip_protocol: "NonEmptyString",
from_port: 1,
to_port: 1,
user_id_group_pairs: [
{
group_id: "NonEmptyString",
group_name: "NonEmptyString",
peering_status: "NonEmptyString",
user_id: "NonEmptyString",
vpc_id: "NonEmptyString",
vpc_peering_connection_id: "NonEmptyString",
},
],
ip_ranges: [
{
cidr_ip: "NonEmptyString",
},
],
ipv_6_ranges: [
{
cidr_ipv_6: "NonEmptyString",
},
],
prefix_list_ids: [
{
prefix_list_id: "NonEmptyString",
},
],
}
An IP permission for an EC2 security group.
Instance Attribute Summary collapse
-
#from_port ⇒ Integer
The start of the port range for the TCP and UDP protocols, or an ICMP/ICMPv6 type number.
-
#ip_protocol ⇒ String
The IP protocol name (
tcp
,udp
,icmp
,icmpv6
) or number. -
#ip_ranges ⇒ Array<Types::AwsEc2SecurityGroupIpRange>
The IPv4 ranges.
-
#ipv_6_ranges ⇒ Array<Types::AwsEc2SecurityGroupIpv6Range>
The IPv6 ranges.
-
#prefix_list_ids ⇒ Array<Types::AwsEc2SecurityGroupPrefixListId>
[VPC only] The prefix list IDs for an AWS service.
-
#to_port ⇒ Integer
The end of the port range for the TCP and UDP protocols, or an ICMP/ICMPv6 code.
-
#user_id_group_pairs ⇒ Array<Types::AwsEc2SecurityGroupUserIdGroupPair>
The security group and AWS account ID pairs.
Instance Attribute Details
#from_port ⇒ Integer
The start of the port range for the TCP and UDP protocols, or an ICMP/ICMPv6 type number.
A value of -1 indicates all ICMP/ICMPv6 types. If you specify all ICMP/ICMPv6 types, you must specify all codes.
#ip_protocol ⇒ String
The IP protocol name (tcp
, udp
, icmp
, icmpv6
) or number.
[VPC only] Use -1
to specify all protocols.
When authorizing security group rules, specifying -1 or a protocol
number other than tcp
, udp
, icmp
, or icmpv6
allows traffic on
all ports, regardless of any port range you specify.
For tcp
, udp
, and icmp
, you must specify a port range.
For icmpv6
, the port range is optional. If you omit the port range,
traffic for all types and codes is allowed.
#ip_ranges ⇒ Array<Types::AwsEc2SecurityGroupIpRange>
The IPv4 ranges.
#ipv_6_ranges ⇒ Array<Types::AwsEc2SecurityGroupIpv6Range>
The IPv6 ranges.
#prefix_list_ids ⇒ Array<Types::AwsEc2SecurityGroupPrefixListId>
[VPC only] The prefix list IDs for an AWS service. With outbound rules, this is the AWS service to access through a VPC endpoint from instances associated with the security group.
#to_port ⇒ Integer
The end of the port range for the TCP and UDP protocols, or an ICMP/ICMPv6 code.
A value of -1 indicates all ICMP/ICMPv6 codes. If you specify all ICMP/ICMPv6 types, you must specify all codes.
#user_id_group_pairs ⇒ Array<Types::AwsEc2SecurityGroupUserIdGroupPair>
The security group and AWS account ID pairs.