Skip to content

/AWS1/CL_EC2IPPERMISSION

Describes the permissions for a security group rule.

CONSTRUCTOR

IMPORTING

Optional arguments:

IV_FROMPORT TYPE /AWS1/EC2INTEGER /AWS1/EC2INTEGER

If the protocol is TCP or UDP, this is the start of the port range. If the protocol is ICMP or ICMPv6, this is the ICMP type or -1 (all ICMP types).

IV_IPPROTOCOL TYPE /AWS1/EC2STRING /AWS1/EC2STRING

The IP protocol name (tcp, udp, icmp, icmpv6) or number (see Protocol Numbers).

Use -1 to specify all protocols. When authorizing security group rules, specifying -1 or a protocol number other than tcp, udp, icmp, or icmpv6 allows traffic on all ports, regardless of any port range you specify. For tcp, udp, and icmp, you must specify a port range. For icmpv6, the port range is optional; if you omit the port range, traffic for all types and codes is allowed.

IT_IPRANGES TYPE /AWS1/CL_EC2IPRANGE=>TT_IPRANGELIST TT_IPRANGELIST

The IPv4 address ranges.

IT_IPV6RANGES TYPE /AWS1/CL_EC2IPV6RANGE=>TT_IPV6RANGELIST TT_IPV6RANGELIST

The IPv6 address ranges.

IT_PREFIXLISTIDS TYPE /AWS1/CL_EC2PREFIXLISTID=>TT_PREFIXLISTIDLIST TT_PREFIXLISTIDLIST

The prefix list IDs.

IV_TOPORT TYPE /AWS1/EC2INTEGER /AWS1/EC2INTEGER

If the protocol is TCP or UDP, this is the end of the port range. If the protocol is ICMP or ICMPv6, this is the ICMP code or -1 (all ICMP codes). If the start port is -1 (all ICMP types), then the end port must be -1 (all ICMP codes).

IT_USERIDGROUPPAIRS TYPE /AWS1/CL_EC2USERIDGROUPPAIR=>TT_USERIDGROUPPAIRLIST TT_USERIDGROUPPAIRLIST

The security group and Amazon Web Services account ID pairs.

Queryable Attributes

FromPort

If the protocol is TCP or UDP, this is the start of the port range. If the protocol is ICMP or ICMPv6, this is the ICMP type or -1 (all ICMP types).

Accessible with the following methods

Method Description
GET_FROMPORT() Getter for FROMPORT, with configurable default
ASK_FROMPORT() Getter for FROMPORT w/ exceptions if field has no value
HAS_FROMPORT() Determine if FROMPORT has a value

IpProtocol

The IP protocol name (tcp, udp, icmp, icmpv6) or number (see Protocol Numbers).

Use -1 to specify all protocols. When authorizing security group rules, specifying -1 or a protocol number other than tcp, udp, icmp, or icmpv6 allows traffic on all ports, regardless of any port range you specify. For tcp, udp, and icmp, you must specify a port range. For icmpv6, the port range is optional; if you omit the port range, traffic for all types and codes is allowed.

Accessible with the following methods

Method Description
GET_IPPROTOCOL() Getter for IPPROTOCOL, with configurable default
ASK_IPPROTOCOL() Getter for IPPROTOCOL w/ exceptions if field has no value
HAS_IPPROTOCOL() Determine if IPPROTOCOL has a value

IpRanges

The IPv4 address ranges.

Accessible with the following methods

Method Description
GET_IPRANGES() Getter for IPRANGES, with configurable default
ASK_IPRANGES() Getter for IPRANGES w/ exceptions if field has no value
HAS_IPRANGES() Determine if IPRANGES has a value

Ipv6Ranges

The IPv6 address ranges.

Accessible with the following methods

Method Description
GET_IPV6RANGES() Getter for IPV6RANGES, with configurable default
ASK_IPV6RANGES() Getter for IPV6RANGES w/ exceptions if field has no value
HAS_IPV6RANGES() Determine if IPV6RANGES has a value

PrefixListIds

The prefix list IDs.

Accessible with the following methods

Method Description
GET_PREFIXLISTIDS() Getter for PREFIXLISTIDS, with configurable default
ASK_PREFIXLISTIDS() Getter for PREFIXLISTIDS w/ exceptions if field has no value
HAS_PREFIXLISTIDS() Determine if PREFIXLISTIDS has a value

ToPort

If the protocol is TCP or UDP, this is the end of the port range. If the protocol is ICMP or ICMPv6, this is the ICMP code or -1 (all ICMP codes). If the start port is -1 (all ICMP types), then the end port must be -1 (all ICMP codes).

Accessible with the following methods

Method Description
GET_TOPORT() Getter for TOPORT, with configurable default
ASK_TOPORT() Getter for TOPORT w/ exceptions if field has no value
HAS_TOPORT() Determine if TOPORT has a value

UserIdGroupPairs

The security group and Amazon Web Services account ID pairs.

Accessible with the following methods

Method Description
GET_USERIDGROUPPAIRS() Getter for USERIDGROUPPAIRS, with configurable default
ASK_USERIDGROUPPAIRS() Getter for USERIDGROUPPAIRS w/ exceptions if field has no va
HAS_USERIDGROUPPAIRS() Determine if USERIDGROUPPAIRS has a value

Public Local Types In This Class

Internal table types, representing arrays and maps of this class, are defined as local types:

TT_IPPERMISSIONLIST

TYPES TT_IPPERMISSIONLIST TYPE STANDARD TABLE OF REF TO /AWS1/CL_EC2IPPERMISSION WITH DEFAULT KEY
.