AWS services or capabilities described in AWS Documentation may vary by region/location. Click Getting Started with Amazon AWS to see specific differences applicable to the China (Beijing) Region.
Removes one or more ingress rules from a security group. To remove a rule, the values
that you specify (for example, ports) must match the existing rule's values exactly.
[EC2-Classic security groups only] If the values you specify do not match the existing
rule's values, no error is returned. Use DescribeSecurityGroups to verify that
the rule has been removed.
[EC2-Classic security groups only] If the values you specify do not match the existing rule's values, no error is returned. Use DescribeSecurityGroups to verify that the rule has been removed.
Each rule consists of the protocol and the CIDR range or source security group. For the TCP and UDP protocols, you must also specify the destination port or range of ports. For the ICMP protocol, you must also specify the ICMP type and code. If the security group rule has a description, you do not have to specify the description to revoke the rule.
Rule changes are propagated to instances within the security group as quickly as possible. However, a small delay might occur.
For .NET Core and PCL this operation is only available in asynchronous form. Please refer to RevokeSecurityGroupIngressAsync.
public abstract RevokeSecurityGroupIngressResponse RevokeSecurityGroupIngress( RevokeSecurityGroupIngressRequest request )
Container for the necessary parameters to execute the RevokeSecurityGroupIngress service method.
Supported in: 4.5, 4.0, 3.5
Portable Class Library:
Supported in: Windows Store Apps
Supported in: Windows Phone 8.1
Supported in: Xamarin Android
Supported in: Xamarin iOS (Unified)
Supported in: Xamarin.Forms