Describes a tag.
* @public */ export interface TagDescription { /** *The tag key.
* @public */ Key?: string | undefined; /** *The ID of the resource.
* @public */ ResourceId?: string | undefined; /** *The resource type.
* @public */ ResourceType?: ResourceType | undefined; /** *The tag value.
* @public */ Value?: string | undefined; } /** * @public */ export interface DescribeTagsResult { /** *The token to include in another request to get the next page of items.
* This value is null when there are no more items to return.
The tags.
* @public */ Tags?: TagDescription[] | undefined; } /** * @public */ export interface DescribeTrafficMirrorFilterRulesRequest { /** *Traffic filter rule IDs.
* @public */ TrafficMirrorFilterRuleIds?: string[] | undefined; /** *Traffic filter ID.
* @public */ TrafficMirrorFilterId?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Traffic mirror filters.
*
* traffic-mirror-filter-rule-id: The ID of the Traffic Mirror rule.
* traffic-mirror-filter-id: The ID of the filter that this rule is associated with.
* rule-number: The number of the Traffic Mirror rule.
* rule-action: The action taken on the filtered traffic. Possible actions are accept and reject.
* traffic-direction: The traffic direction. Possible directions are ingress and egress.
* protocol: The protocol, for example UDP, assigned to the Traffic Mirror rule.
* source-cidr-block: The source CIDR block assigned to the Traffic Mirror rule.
* destination-cidr-block: The destination CIDR block assigned to the Traffic Mirror rule.
* description: The description of the Traffic Mirror rule.
The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; } /** * @public */ export interface DescribeTrafficMirrorFilterRulesResult { /** *Traffic mirror rules.
* @public */ TrafficMirrorFilterRules?: TrafficMirrorFilterRule[] | undefined; /** *The token to use to retrieve the next page of results. The value is null when there are no more results to return.
The ID of the Traffic Mirror filter.
* @public */ TrafficMirrorFilterIds?: string[] | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
One or more filters. The possible values are:
*
* description: The Traffic Mirror filter description.
* traffic-mirror-filter-id: The ID of the Traffic Mirror filter.
The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; } /** * @public */ export interface DescribeTrafficMirrorFiltersResult { /** *Information about one or more Traffic Mirror filters.
* @public */ TrafficMirrorFilters?: TrafficMirrorFilter[] | undefined; /** *The token to use to retrieve the next page of results. The value is null when there are no more results to return.
The ID of the Traffic Mirror session.
* @public */ TrafficMirrorSessionIds?: string[] | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
One or more filters. The possible values are:
*
* description: The Traffic Mirror session description.
* network-interface-id: The ID of the Traffic Mirror session network interface.
* owner-id: The ID of the account that owns the Traffic Mirror session.
* packet-length: The assigned number of packets to mirror.
* session-number: The assigned session number.
* traffic-mirror-filter-id: The ID of the Traffic Mirror filter.
* traffic-mirror-session-id: The ID of the Traffic Mirror session.
* traffic-mirror-target-id: The ID of the Traffic Mirror target.
* virtual-network-id: The virtual network ID of the Traffic Mirror session.
The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; } /** * @public */ export interface DescribeTrafficMirrorSessionsResult { /** *Describes one or more Traffic Mirror sessions. By default, all Traffic Mirror sessions are described. Alternatively, you can filter the results.
* @public */ TrafficMirrorSessions?: TrafficMirrorSession[] | undefined; /** *The token to use to retrieve the next page of results. The value is null when there are no more results to return.
The ID of the Traffic Mirror targets.
* @public */ TrafficMirrorTargetIds?: string[] | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
One or more filters. The possible values are:
*
* description: The Traffic Mirror target description.
* network-interface-id: The ID of the Traffic Mirror session network interface.
* network-load-balancer-arn: The Amazon Resource Name (ARN) of the Network Load Balancer that is associated with the session.
* owner-id: The ID of the account that owns the Traffic Mirror session.
* traffic-mirror-target-id: The ID of the Traffic Mirror target.
The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; } /** * @public */ export interface DescribeTrafficMirrorTargetsResult { /** *Information about one or more Traffic Mirror targets.
* @public */ TrafficMirrorTargets?: TrafficMirrorTarget[] | undefined; /** *The token to use to retrieve the next page of results. The value is null when there are no more results to return.
The IDs of the attachments.
* @public */ TransitGatewayAttachmentIds?: string[] | undefined; /** *One or more filters. The possible values are:
*
* association.state - The state of the association (associating | associated |
* disassociating).
* association.transit-gateway-route-table-id - The ID of the route table for the transit gateway.
* resource-id - The ID of the resource.
* resource-owner-id - The ID of the Amazon Web Services account that owns the resource.
* resource-type - The resource type. Valid values are vpc
* | vpn | direct-connect-gateway | peering
* | connect.
* state - The state of the attachment. Valid values are available | deleted | deleting | failed | failing | initiatingRequest | modifying | pendingAcceptance | pending | rollingBack | rejected | rejecting.
* transit-gateway-attachment-id - The ID of the attachment.
* transit-gateway-id - The ID of the transit gateway.
* transit-gateway-owner-id - The ID of the Amazon Web Services account that owns the transit gateway.
The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Describes an association.
* @public */ export interface TransitGatewayAttachmentAssociation { /** *The ID of the route table for the transit gateway.
* @public */ TransitGatewayRouteTableId?: string | undefined; /** *The state of the association.
* @public */ State?: TransitGatewayAssociationState | undefined; } /** *Describes an attachment between a resource and a transit gateway.
* @public */ export interface TransitGatewayAttachment { /** *The ID of the attachment.
* @public */ TransitGatewayAttachmentId?: string | undefined; /** *The ID of the transit gateway.
* @public */ TransitGatewayId?: string | undefined; /** *The ID of the Amazon Web Services account that owns the transit gateway.
* @public */ TransitGatewayOwnerId?: string | undefined; /** *The ID of the Amazon Web Services account that owns the resource.
* @public */ ResourceOwnerId?: string | undefined; /** *The resource type. Note that the tgw-peering resource type has been deprecated.
The ID of the resource.
* @public */ ResourceId?: string | undefined; /** *The attachment state. Note that the initiating state has been deprecated.
The association.
* @public */ Association?: TransitGatewayAttachmentAssociation | undefined; /** *The creation time.
* @public */ CreationTime?: Date | undefined; /** *The tags for the attachment.
* @public */ Tags?: Tag[] | undefined; } /** * @public */ export interface DescribeTransitGatewayAttachmentsResult { /** *Information about the attachments.
* @public */ TransitGatewayAttachments?: TransitGatewayAttachment[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
The IDs of the Connect peers.
* @public */ TransitGatewayConnectPeerIds?: string[] | undefined; /** *One or more filters. The possible values are:
*
* state - The state of the Connect peer (pending |
* available | deleting |
* deleted).
* transit-gateway-attachment-id - The ID of the attachment.
* transit-gateway-connect-peer-id - The ID of the Connect peer.
The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Information about the Connect peers.
* @public */ TransitGatewayConnectPeers?: TransitGatewayConnectPeer[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
The IDs of the attachments.
* @public */ TransitGatewayAttachmentIds?: string[] | undefined; /** *One or more filters. The possible values are:
*
* options.protocol - The tunnel protocol (gre).
* state - The state of the attachment (initiating |
* initiatingRequest | pendingAcceptance |
* rollingBack | pending | available |
* modifying | deleting | deleted |
* failed | rejected | rejecting |
* failing).
* transit-gateway-attachment-id - The ID of the
* Connect attachment.
* transit-gateway-id - The ID of the transit gateway.
* transport-transit-gateway-attachment-id - The ID of the transit gateway attachment from which the Connect attachment was created.
The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Information about the Connect attachments.
* @public */ TransitGatewayConnects?: TransitGatewayConnect[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
The IDs of the transit gateway metering policies to describe.
* @public */ TransitGatewayMeteringPolicyIds?: string[] | undefined; /** *One or more filters to apply when describing transit gateway metering policies.
* @public */ Filters?: Filter[] | undefined; /** *The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Information about the transit gateway metering policies.
* @public */ TransitGatewayMeteringPolicies?: TransitGatewayMeteringPolicy[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
The ID of the transit gateway multicast domain.
* @public */ TransitGatewayMulticastDomainIds?: string[] | undefined; /** *One or more filters. The possible values are:
*
* state - The state of the transit gateway multicast domain. Valid values are pending | available | deleting | deleted.
* transit-gateway-id - The ID of the transit gateway.
* transit-gateway-multicast-domain-id - The ID of the transit gateway multicast domain.
The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Information about the transit gateway multicast domains.
* @public */ TransitGatewayMulticastDomains?: TransitGatewayMulticastDomain[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
One or more IDs of the transit gateway peering attachments.
* @public */ TransitGatewayAttachmentIds?: string[] | undefined; /** *One or more filters. The possible values are:
*
* transit-gateway-attachment-id - The ID of the transit gateway attachment.
* local-owner-id - The ID of your Amazon Web Services account.
* remote-owner-id - The ID of the Amazon Web Services account in the remote Region that owns the transit gateway.
* state - The state of the peering attachment. Valid values are available | deleted | deleting | failed | failing | initiatingRequest | modifying | pendingAcceptance | pending | rollingBack | rejected | rejecting).
* tag:Owner and the value TeamA, specify tag:Owner for the filter name and TeamA for the filter value.
* tag-key - The key of a tag assigned to the resource. Use this filter to find all resources that have a tag with a specific key, regardless of the tag value.
* transit-gateway-id - The ID of the transit gateway.
The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The transit gateway peering attachments.
* @public */ TransitGatewayPeeringAttachments?: TransitGatewayPeeringAttachment[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
The IDs of the transit gateway policy tables.
* @public */ TransitGatewayPolicyTableIds?: string[] | undefined; /** *The filters associated with the transit gateway policy table.
* @public */ Filters?: Filter[] | undefined; /** *The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Describes the transit gateway policy tables.
* @public */ TransitGatewayPolicyTables?: TransitGatewayPolicyTable[] | undefined; /** *The token for the next page of results.
* @public */ NextToken?: string | undefined; } /** * @public */ export interface DescribeTransitGatewayRouteTableAnnouncementsRequest { /** *The IDs of the transit gateway route tables that are being advertised.
* @public */ TransitGatewayRouteTableAnnouncementIds?: string[] | undefined; /** *The filters associated with the transit gateway policy table.
* @public */ Filters?: Filter[] | undefined; /** *The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Describes the transit gateway route table announcement.
* @public */ TransitGatewayRouteTableAnnouncements?: TransitGatewayRouteTableAnnouncement[] | undefined; /** *The token for the next page of results.
* @public */ NextToken?: string | undefined; } /** * @public */ export interface DescribeTransitGatewayRouteTablesRequest { /** *The IDs of the transit gateway route tables.
* @public */ TransitGatewayRouteTableIds?: string[] | undefined; /** *One or more filters. The possible values are:
*
* default-association-route-table - Indicates whether this is the default
* association route table for the transit gateway (true | false).
* default-propagation-route-table - Indicates whether this is the default
* propagation route table for the transit gateway (true | false).
* state - The state of the route table (available | deleting | deleted | pending).
* transit-gateway-id - The ID of the transit gateway.
* transit-gateway-route-table-id - The ID of the transit gateway route table.
The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Information about the transit gateway route tables.
* @public */ TransitGatewayRouteTables?: TransitGatewayRouteTable[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
The IDs of the transit gateways.
* @public */ TransitGatewayIds?: string[] | undefined; /** *One or more filters. The possible values are:
*
* options.propagation-default-route-table-id - The ID of the default propagation route table.
* options.amazon-side-asn - The private ASN for the Amazon side of a BGP session.
* options.association-default-route-table-id - The ID of the default association route table.
* options.auto-accept-shared-attachments - Indicates whether there is automatic acceptance of attachment requests (enable | disable).
* options.default-route-table-association - Indicates whether resource attachments are automatically
* associated with the default association route table (enable | disable).
* options.default-route-table-propagation - Indicates whether resource attachments automatically propagate
* routes to the default propagation route table (enable | disable).
* options.dns-support - Indicates whether DNS support is enabled (enable | disable).
* options.vpn-ecmp-support - Indicates whether Equal Cost Multipath Protocol support is enabled (enable | disable).
* owner-id - The ID of the Amazon Web Services account that owns the transit gateway.
* state - The state of the transit gateway (available | deleted | deleting | modifying | pending).
* transit-gateway-id - The ID of the transit gateway.
* tag-key - The key/value combination of a tag assigned to the resource. Use the
* tag key in the filter name and the tag value as the filter value. For example, to
* find all resources that have a tag with the key Owner and the value TeamA, specify
* tag:Owner for the filter name and TeamA for the filter value.
The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Information about the transit gateways.
* @public */ TransitGateways?: TransitGateway[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
The IDs of the attachments.
* @public */ TransitGatewayAttachmentIds?: string[] | undefined; /** *One or more filters. The possible values are:
*
* state - The state of the attachment. Valid values are available | deleted | deleting | failed | failing | initiatingRequest | modifying | pendingAcceptance | pending | rollingBack | rejected | rejecting.
* transit-gateway-attachment-id - The ID of the attachment.
* transit-gateway-id - The ID of the transit gateway.
* vpc-id - The ID of the VPC.
The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Information about the VPC attachments.
* @public */ TransitGatewayVpcAttachments?: TransitGatewayVpcAttachment[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
The IDs of the associations.
* @public */ AssociationIds?: string[] | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
One or more filters.
*
* gre-key - The ID of a trunk interface association.
* interface-protocol - The interface protocol. Valid values are VLAN and GRE.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
Information about the trunk associations.
* @public */ InterfaceAssociations?: TrunkInterfaceAssociation[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
The ID of the Verified Access endpoint.
* @public */ VerifiedAccessEndpointIds?: string[] | undefined; /** *The ID of the Verified Access instance.
* @public */ VerifiedAccessInstanceId?: string | undefined; /** *The ID of the Verified Access group.
* @public */ VerifiedAccessGroupId?: string | undefined; /** *The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *One or more filters. Filter names and values are case-sensitive.
* @public */ Filters?: Filter[] | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Details about the Verified Access endpoints.
* @public */ VerifiedAccessEndpoints?: VerifiedAccessEndpoint[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
The ID of the Verified Access groups.
* @public */ VerifiedAccessGroupIds?: string[] | undefined; /** *The ID of the Verified Access instance.
* @public */ VerifiedAccessInstanceId?: string | undefined; /** *The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *One or more filters. Filter names and values are case-sensitive.
* @public */ Filters?: Filter[] | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Details about the Verified Access groups.
* @public */ VerifiedAccessGroups?: VerifiedAccessGroup[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
The IDs of the Verified Access instances.
* @public */ VerifiedAccessInstanceIds?: string[] | undefined; /** *The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *One or more filters. Filter names and values are case-sensitive.
* @public */ Filters?: Filter[] | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Describes a log delivery status.
* @public */ export interface VerifiedAccessLogDeliveryStatus { /** *The status code.
* @public */ Code?: VerifiedAccessLogDeliveryStatusCode | undefined; /** *The status message.
* @public */ Message?: string | undefined; } /** *Options for CloudWatch Logs as a logging destination.
* @public */ export interface VerifiedAccessLogCloudWatchLogsDestination { /** *Indicates whether logging is enabled.
* @public */ Enabled?: boolean | undefined; /** *The delivery status for access logs.
* @public */ DeliveryStatus?: VerifiedAccessLogDeliveryStatus | undefined; /** *The ID of the CloudWatch Logs log group.
* @public */ LogGroup?: string | undefined; } /** *Options for Kinesis as a logging destination.
* @public */ export interface VerifiedAccessLogKinesisDataFirehoseDestination { /** *Indicates whether logging is enabled.
* @public */ Enabled?: boolean | undefined; /** *The delivery status.
* @public */ DeliveryStatus?: VerifiedAccessLogDeliveryStatus | undefined; /** *The ID of the delivery stream.
* @public */ DeliveryStream?: string | undefined; } /** *Options for Amazon S3 as a logging destination.
* @public */ export interface VerifiedAccessLogS3Destination { /** *Indicates whether logging is enabled.
* @public */ Enabled?: boolean | undefined; /** *The delivery status.
* @public */ DeliveryStatus?: VerifiedAccessLogDeliveryStatus | undefined; /** *The bucket name.
* @public */ BucketName?: string | undefined; /** *The bucket prefix.
* @public */ Prefix?: string | undefined; /** *The Amazon Web Services account number that owns the bucket.
* @public */ BucketOwner?: string | undefined; } /** *Describes the options for Verified Access logs.
* @public */ export interface VerifiedAccessLogs { /** *Amazon S3 logging options.
* @public */ S3?: VerifiedAccessLogS3Destination | undefined; /** *CloudWatch Logs logging destination.
* @public */ CloudWatchLogs?: VerifiedAccessLogCloudWatchLogsDestination | undefined; /** *Kinesis logging destination.
* @public */ KinesisDataFirehose?: VerifiedAccessLogKinesisDataFirehoseDestination | undefined; /** *The log version.
* @public */ LogVersion?: string | undefined; /** *Indicates whether trust data is included in the logs.
* @public */ IncludeTrustContext?: boolean | undefined; } /** *Describes logging options for an Amazon Web Services Verified Access instance.
* @public */ export interface VerifiedAccessInstanceLoggingConfiguration { /** *The ID of the Amazon Web Services Verified Access instance.
* @public */ VerifiedAccessInstanceId?: string | undefined; /** *Details about the logging options.
* @public */ AccessLogs?: VerifiedAccessLogs | undefined; } /** * @public */ export interface DescribeVerifiedAccessInstanceLoggingConfigurationsResult { /** *The logging configuration for the Verified Access instances.
* @public */ LoggingConfigurations?: VerifiedAccessInstanceLoggingConfiguration[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
The IDs of the Verified Access instances.
* @public */ VerifiedAccessInstanceIds?: string[] | undefined; /** *The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *One or more filters. Filter names and values are case-sensitive.
* @public */ Filters?: Filter[] | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Details about the Verified Access instances.
* @public */ VerifiedAccessInstances?: VerifiedAccessInstance[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
The IDs of the Verified Access trust providers.
* @public */ VerifiedAccessTrustProviderIds?: string[] | undefined; /** *The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *One or more filters. Filter names and values are case-sensitive.
* @public */ Filters?: Filter[] | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Details about the Verified Access trust providers.
* @public */ VerifiedAccessTrustProviders?: VerifiedAccessTrustProvider[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
The attribute of the volume. This parameter is required.
* @public */ Attribute: VolumeAttributeName | undefined; /** *The ID of the volume.
* @public */ VolumeId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The state of autoEnableIO attribute.
A list of product codes.
* @public */ ProductCodes?: ProductCode[] | undefined; /** *The ID of the volume.
* @public */ VolumeId?: string | undefined; } /** * @public */ export interface DescribeVolumesRequest { /** *The volume IDs. If not specified, then all volumes are included in the response.
* @public */ VolumeIds?: string[] | undefined; /** *Indicates whether to include managed resources in the output. If this parameter is set to true, the output includes resources that are managed by Amazon Web Services services, even if managed resource visibility is set to hidden.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The filters.
*
* attachment.attach-time - The time stamp when the attachment
* initiated.
* attachment.delete-on-termination - Whether the volume is deleted on
* instance termination.
* attachment.device - The device name specified in the block device mapping
* (for example, /dev/sda1).
* attachment.instance-id - The ID of the instance the volume is attached
* to.
* attachment.status - The attachment state (attaching |
* attached | detaching).
* availability-zone - The Availability Zone in which the volume was
* created.
* availability-zone-id - The ID of the Availability Zone in which the
* volume was created.
* create-time - The time stamp when the volume was created.
* encrypted - Indicates whether the volume is encrypted (true
* | false)
* fast-restored - Indicates whether the volume was created from a
* snapshot that is enabled for fast snapshot restore (true |
* false).
* multi-attach-enabled - Indicates whether the volume is enabled for Multi-Attach (true
* | false)
* operator.managed - A Boolean that indicates whether this is a managed
* volume.
* operator.principal - The principal that manages the volume. Only valid
* for managed volumes, where managed is true.
* size - The size of the volume, in GiB.
* snapshot-id - The snapshot from which the volume was created.
* status - The state of the volume (creating |
* available | in-use | deleting |
* deleted | error).
* tag:Owner and the value TeamA, specify tag:Owner for the filter name and TeamA for the filter value.
* tag-key - The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
* volume-id - The volume ID.
* volume-type - The Amazon EBS volume type (gp2 | gp3 | io1 | io2 |
* st1 | sc1| standard)
The token returned from a previous paginated request. * Pagination continues from the end of the items returned by the previous request.
* @public */ NextToken?: string | undefined; /** *The maximum number of items to return for this request. * To get the next page of items, make another request with the token returned in the output. * For more information, see Pagination.
* @public */ MaxResults?: number | undefined; } /** * @public */ export interface DescribeVolumesResult { /** *The token to include in another request to get the next page of items.
* This value is null when there are no more items to return.
Information about the volumes.
* @public */ Volumes?: Volume[] | undefined; } /** * @public */ export interface DescribeVolumesModificationsRequest { /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The IDs of the volumes.
* @public */ VolumeIds?: string[] | undefined; /** *The filters.
*
* modification-state - The current modification state (modifying |
* optimizing | completed | failed).
* original-iops - The original IOPS rate of the volume.
* original-size - The original size of the volume, in GiB.
* original-volume-type - The original volume type of the volume (standard |
* io1 | io2 | gp2 | sc1 | st1).
* originalMultiAttachEnabled - Indicates whether Multi-Attach support was enabled (true | false).
* start-time - The modification start time.
* target-iops - The target IOPS rate of the volume.
* target-size - The target size of the volume, in GiB.
* target-volume-type - The target volume type of the volume (standard |
* io1 | io2 | gp2 | sc1 | st1).
* targetMultiAttachEnabled - Indicates whether Multi-Attach support is to be enabled (true | false).
* volume-id - The ID of the volume.
The token returned from a previous paginated request. * Pagination continues from the end of the items returned by the previous request.
* @public */ NextToken?: string | undefined; /** *The maximum number of results (up to a limit of 500) to be returned in a paginated * request. For more information, see Pagination.
* @public */ MaxResults?: number | undefined; } /** *Describes the modification status of an EBS volume.
* @public */ export interface VolumeModification { /** *The ID of the volume.
* @public */ VolumeId?: string | undefined; /** *The current modification state.
* @public */ ModificationState?: VolumeModificationState | undefined; /** *A status message about the modification progress or failure.
* @public */ StatusMessage?: string | undefined; /** *The target size of the volume, in GiB.
* @public */ TargetSize?: number | undefined; /** *The target IOPS rate of the volume.
* @public */ TargetIops?: number | undefined; /** *The target EBS volume type of the volume.
* @public */ TargetVolumeType?: VolumeType | undefined; /** *The target throughput of the volume, in MiB/s.
* @public */ TargetThroughput?: number | undefined; /** *The target setting for Amazon EBS Multi-Attach.
* @public */ TargetMultiAttachEnabled?: boolean | undefined; /** *The original size of the volume, in GiB.
* @public */ OriginalSize?: number | undefined; /** *The original IOPS rate of the volume.
* @public */ OriginalIops?: number | undefined; /** *The original EBS volume type of the volume.
* @public */ OriginalVolumeType?: VolumeType | undefined; /** *The original throughput of the volume, in MiB/s.
* @public */ OriginalThroughput?: number | undefined; /** *The original setting for Amazon EBS Multi-Attach.
* @public */ OriginalMultiAttachEnabled?: boolean | undefined; /** *The modification progress, from 0 to 100 percent complete.
* @public */ Progress?: number | undefined; /** *The modification start time.
* @public */ StartTime?: Date | undefined; /** *The modification completion or failure time.
* @public */ EndTime?: Date | undefined; /** *Describes whether the resource is managed by a service provider and, if so, describes * the service provider that manages it.
* @public */ Operator?: OperatorResponse | undefined; } /** * @public */ export interface DescribeVolumesModificationsResult { /** *The token to include in another request to get the next page of items.
* This value is null when there are no more items to return.
Information about the volume modifications.
* @public */ VolumesModifications?: VolumeModification[] | undefined; } /** * @public */ export interface DescribeVolumeStatusRequest { /** *The maximum number of items to return for this request. * To get the next page of items, make another request with the token returned in the output. * For more information, see Pagination.
* @public */ MaxResults?: number | undefined; /** *The token returned from a previous paginated request. * Pagination continues from the end of the items returned by the previous request.
* @public */ NextToken?: string | undefined; /** *The IDs of the volumes.
*Default: Describes all your volumes.
* @public */ VolumeIds?: string[] | undefined; /** *Indicates whether to include managed resources in the output. If this parameter is set to true, the output includes resources that are managed by Amazon Web Services services, even if managed resource visibility is set to hidden.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The filters.
*
* action.code - The action code for the event (for example,
* enable-volume-io).
* action.description - A description of the action.
* action.event-id - The event ID associated with the action.
* availability-zone - The Availability Zone of the instance.
* event.description - A description of the event.
* event.event-id - The event ID.
* event.event-type - The event type (for io-enabled:
* passed | failed; for io-performance:
* io-performance:degraded | io-performance:severely-degraded |
* io-performance:stalled).
* event.not-after - The latest end time for the event.
* event.not-before - The earliest start time for the event.
* volume-status.details-name - The cause for
* volume-status.status (io-enabled |
* io-performance).
* volume-status.details-status - The status of
* volume-status.details-name (for io-enabled:
* passed | failed; for io-performance:
* normal | degraded | severely-degraded |
* stalled).
* volume-status.status - The status of the volume (ok |
* impaired | warning | insufficient-data).
Describes a volume status operation code.
* @public */ export interface VolumeStatusAction { /** *The code identifying the operation, for example, enable-volume-io.
A description of the operation.
* @public */ Description?: string | undefined; /** *The ID of the event associated with this operation.
* @public */ EventId?: string | undefined; /** *The event type associated with this operation.
* @public */ EventType?: string | undefined; } /** *Information about the instances to which the volume is attached.
* @public */ export interface VolumeStatusAttachmentStatus { /** *The maximum IOPS supported by the attached instance.
* @public */ IoPerformance?: string | undefined; /** *The ID of the attached instance.
* @public */ InstanceId?: string | undefined; } /** *Describes a volume status event.
* @public */ export interface VolumeStatusEvent { /** *A description of the event.
* @public */ Description?: string | undefined; /** *The ID of this event.
* @public */ EventId?: string | undefined; /** *The type of this event.
* @public */ EventType?: string | undefined; /** *The latest end time of the event.
* @public */ NotAfter?: Date | undefined; /** *The earliest start time of the event.
* @public */ NotBefore?: Date | undefined; /** *The ID of the instance associated with the event.
* @public */ InstanceId?: string | undefined; } /** *Information about the volume initialization. For more information, see Initialize Amazon EBS volumes.
* @public */ export interface InitializationStatusDetails { /** *The method used for volume initialization. Possible values include:
*
* default - Volume initialized using the default volume initialization
* rate or fast snapshot restore.
* provisioned-rate - Volume initialized using an Amazon EBS Provisioned
* Rate for Volume Initialization.
* volume-copy - Volume copy initialized at the rate for volume copies.
The current volume initialization progress as a percentage (0-100). Returns 100
* when volume initialization has completed.
The estimated remaining time, in seconds, for volume initialization to complete. Returns
* 0 when volume initialization has completed.
Only available for volumes created with Amazon EBS Provisioned Rate for Volume Initialization.
* @public */ EstimatedTimeToCompleteInSeconds?: number | undefined; } /** *Describes a volume status.
* @public */ export interface VolumeStatusDetails { /** *The name of the volume status.
*
* io-enabled - Indicates the volume I/O status. For more
* information, see Amazon EBS volume
* status checks.
* io-performance - Indicates the volume performance status.
* For more information, see Amazon EBS volume
* status checks.
* initialization-state - Indicates the status of the volume
* initialization process. For more information, see Initialize Amazon EBS volumes.
The intended status of the volume status.
* @public */ Status?: string | undefined; } /** *Describes the status of a volume.
* @public */ export interface VolumeStatusInfo { /** *The details of the volume status.
* @public */ Details?: VolumeStatusDetails[] | undefined; /** *The status of the volume.
* @public */ Status?: VolumeStatusInfoStatus | undefined; } /** *Describes the volume status.
* @public */ export interface VolumeStatusItem { /** *The details of the operation.
* @public */ Actions?: VolumeStatusAction[] | undefined; /** *The Availability Zone of the volume.
* @public */ AvailabilityZone?: string | undefined; /** *The Amazon Resource Name (ARN) of the Outpost.
* @public */ OutpostArn?: string | undefined; /** *A list of events associated with the volume.
* @public */ Events?: VolumeStatusEvent[] | undefined; /** *The volume ID.
* @public */ VolumeId?: string | undefined; /** *The volume status.
* @public */ VolumeStatus?: VolumeStatusInfo | undefined; /** *Information about the instances to which the volume is attached.
* @public */ AttachmentStatuses?: VolumeStatusAttachmentStatus[] | undefined; /** *Information about the volume initialization. It can take up to 5 minutes * for the volume initialization information to be updated.
*Only available for volumes created from snapshots. Not available for empty * volumes created without a snapshot.
*For more information, see * * Initialize Amazon EBS volumes.
* @public */ InitializationStatusDetails?: InitializationStatusDetails | undefined; /** *The ID of the Availability Zone.
* @public */ AvailabilityZoneId?: string | undefined; /** *The service provider that manages the resource.
* @public */ Operator?: OperatorResponse | undefined; } /** * @public */ export interface DescribeVolumeStatusResult { /** *The token to include in another request to get the next page of items.
* This value is null when there are no more items to return.
Information about the status of the volumes.
* @public */ VolumeStatuses?: VolumeStatusItem[] | undefined; } /** * @public */ export interface DescribeVpcAttributeRequest { /** *The VPC attribute.
* @public */ Attribute: VpcAttributeName | undefined; /** *The ID of the VPC.
* @public */ VpcId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Indicates whether the instances launched in the VPC get DNS hostnames.
* If this attribute is true, instances in the VPC get DNS hostnames;
* otherwise, they do not.
Indicates whether DNS resolution is enabled for
* the VPC. If this attribute is true, the Amazon DNS server
* resolves DNS hostnames for your instances to their corresponding
* IP addresses; otherwise, it does not.
Indicates whether Network Address Usage metrics are enabled for your VPC.
* @public */ EnableNetworkAddressUsageMetrics?: AttributeBooleanValue | undefined; /** *The ID of the VPC.
* @public */ VpcId?: string | undefined; } /** * @public */ export interface DescribeVpcBlockPublicAccessExclusionsRequest { /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Filters for the request:
*
* resource-arn - The Amazon Resource Name (ARN) of a exclusion.
* internet-gateway-exclusion-mode - The mode of a VPC BPA exclusion. Possible values: allow-bidirectional | allow-egress.
* state - The state of VPC BPA. Possible values: create-in-progress | create-complete | update-in-progress | update-complete | delete-in-progress | deleted-complete | disable-in-progress | disable-complete
*
* tag - The key/value combination of a tag assigned to the resource. Use the tag key in the filter name and the tag value as the filter value.
* For example, to find all resources that have a tag with the key Owner and the value TeamA, specify tag:Owner for the filter name and TeamA for the filter value.
* tag-key - The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
* tag-value: The value of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific value, regardless of the tag key.
IDs of exclusions.
* @public */ ExclusionIds?: string[] | undefined; /** *The token returned from a previous paginated request. Pagination continues from the end of the items returned by the previous request.
* @public */ NextToken?: string | undefined; /** *The maximum number of items to return for this request. * To get the next page of items, make another request with the token returned in the output. * For more information, see Pagination.
* @public */ MaxResults?: number | undefined; } /** * @public */ export interface DescribeVpcBlockPublicAccessExclusionsResult { /** *Details related to the exclusions.
* @public */ VpcBlockPublicAccessExclusions?: VpcBlockPublicAccessExclusion[] | undefined; /** *The token to include in another request to get the next page of items. This value is null when there are no more items to return.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
VPC Block Public Access (BPA) enables you to block resources in VPCs and subnets that you own in a Region from reaching or being reached from the internet through internet gateways and egress-only internet gateways. To learn more about VPC BPA, see Block public access to VPCs and subnets in the Amazon VPC User Guide.
* @public */ export interface VpcBlockPublicAccessOptions { /** *An Amazon Web Services account ID.
* @public */ AwsAccountId?: string | undefined; /** *An Amazon Web Services Region.
* @public */ AwsRegion?: string | undefined; /** *The current state of VPC BPA.
* @public */ State?: VpcBlockPublicAccessState | undefined; /** *The current mode of VPC BPA.
*
* off: VPC BPA is not enabled and traffic is allowed to and from internet gateways and egress-only internet gateways in this Region.
* block-bidirectional: Block all traffic to and from internet gateways and egress-only internet gateways in this Region (except for excluded VPCs and subnets).
* block-ingress: Block all internet traffic to the VPCs in this Region (except for VPCs or subnets which are excluded). Only traffic to and from NAT gateways and egress-only internet gateways is allowed because these gateways only allow outbound connections to be established.
The reason for the current state.
* @public */ Reason?: string | undefined; /** *The last time the VPC BPA mode was updated.
* @public */ LastUpdateTimestamp?: Date | undefined; /** *The entity that manages the state of VPC BPA. Possible values include:
*
* account - The state is managed by the account.
* declarative-policy - The state is managed by a declarative policy
* and can't be modified by the account.
Determines if exclusions are allowed. If you have enabled VPC BPA at the Organization level, exclusions may be
* not-allowed. Otherwise, they are allowed.
Details related to the options.
* @public */ VpcBlockPublicAccessOptions?: VpcBlockPublicAccessOptions | undefined; } /** * @public */ export interface DescribeVpcClassicLinkRequest { /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The VPCs for which you want to describe the ClassicLink status.
* @public */ VpcIds?: string[] | undefined; /** *The filters.
*
* is-classic-link-enabled - Whether the VPC is enabled for ClassicLink
* (true | false).
* tag - The key/value combination of a tag assigned to the resource. Use the tag key in the filter name and the tag value as the filter value.
* For example, to find all resources that have a tag with the key Owner and the value TeamA, specify tag:Owner for the filter name and TeamA for the filter value.
* tag-key - The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
Deprecated.
*Describes whether a VPC is enabled for ClassicLink.
* @public */ export interface VpcClassicLink { /** *Indicates whether the VPC is enabled for ClassicLink.
* @public */ ClassicLinkEnabled?: boolean | undefined; /** *Any tags assigned to the VPC.
* @public */ Tags?: Tag[] | undefined; /** *The ID of the VPC.
* @public */ VpcId?: string | undefined; } /** * @public */ export interface DescribeVpcClassicLinkResult { /** *The ClassicLink status of the VPCs.
* @public */ Vpcs?: VpcClassicLink[] | undefined; } /** * @public */ export interface DescribeVpcClassicLinkDnsSupportRequest { /** *The IDs of the VPCs.
* @public */ VpcIds?: string[] | undefined; /** *The maximum number of items to return for this request. * To get the next page of items, make another request with the token returned in the output. * For more information, see Pagination.
* @public */ MaxResults?: number | undefined; /** *The token returned from a previous paginated request. Pagination continues from the end of the items returned by the previous request.
* @public */ NextToken?: string | undefined; } /** *Deprecated.
*Describes the ClassicLink DNS support status of a VPC.
* @public */ export interface ClassicLinkDnsSupport { /** *Indicates whether ClassicLink DNS support is enabled for the VPC.
* @public */ ClassicLinkDnsSupported?: boolean | undefined; /** *The ID of the VPC.
* @public */ VpcId?: string | undefined; } /** * @public */ export interface DescribeVpcClassicLinkDnsSupportResult { /** *The token to include in another request to get the next page of items. This value is null when there are no more items to return.
Information about the ClassicLink DNS support status of the VPCs.
* @public */ Vpcs?: ClassicLinkDnsSupport[] | undefined; } /** * @public */ export interface DescribeVpcEncryptionControlsRequest { /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The filters to apply to the request.
* @public */ Filters?: Filter[] | undefined; /** *The IDs of the VPC Encryption Control configurations to describe.
* @public */ VpcEncryptionControlIds?: string[] | undefined; /** *The IDs of the VPCs to describe encryption control configurations for.
* @public */ VpcIds?: string[] | undefined; /** *The token returned from a previous paginated request. Pagination continues from the end of the items returned by the previous request.
* @public */ NextToken?: string | undefined; /** *The maximum number of items to return for this request. * To get the next page of items, make another request with the token returned in the output. * For more information, see Pagination.
* @public */ MaxResults?: number | undefined; } /** * @public */ export interface DescribeVpcEncryptionControlsResult { /** *Information about the VPC Encryption Control configurations.
* @public */ VpcEncryptionControls?: VpcEncryptionControl[] | undefined; /** *The token to include in another request to get the next page of items. This value is null when there are no more items to return.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The IDs of the VPC endpoints.
* @public */ VpcEndpointIds?: string[] | undefined; /** *The filters.
*
* vpc-endpoint-id - The ID of the VPC endpoint.
* associated-resource-accessibility - The association state. When the
* state is accessible, it returns AVAILABLE. When the state
* is inaccessible, it returns PENDING or
* FAILED.
* association-id - The ID of the VPC endpoint association.
* associated-resource-id - The ID of the associated resource
* configuration.
* service-network-arn - The Amazon Resource Name (ARN) of the
* associated service network. Only VPC endpoints of type service network will be
* returned.
* resource-configuration-group-arn - The Amazon Resource Name (ARN) of
* the resource configuration of type GROUP.
The maximum page size.
* @public */ MaxResults?: number | undefined; /** *The pagination token.
* @public */ NextToken?: string | undefined; } /** *Describes the VPC resources, VPC endpoint services, Lattice services, or service * networks associated with the VPC endpoint.
* @public */ export interface VpcEndpointAssociation { /** *The ID of the VPC endpoint association.
* @public */ Id?: string | undefined; /** *The ID of the VPC endpoint.
* @public */ VpcEndpointId?: string | undefined; /** *The Amazon Resource Name (ARN) of the service network.
* @public */ ServiceNetworkArn?: string | undefined; /** *The name of the service network.
* @public */ ServiceNetworkName?: string | undefined; /** *The connectivity status of the resources associated to a VPC endpoint. The resource is
* accessible if the associated resource configuration is AVAILABLE, otherwise
* the resource is inaccessible.
A message related to why an VPC endpoint association failed.
* @public */ FailureReason?: string | undefined; /** *An error code related to why an VPC endpoint association failed.
* @public */ FailureCode?: string | undefined; /** *The DNS entry of the VPC endpoint association.
* @public */ DnsEntry?: DnsEntry | undefined; /** *The private DNS entry of the VPC endpoint association.
* @public */ PrivateDnsEntry?: DnsEntry | undefined; /** *The Amazon Resource Name (ARN) of the associated resource.
* @public */ AssociatedResourceArn?: string | undefined; /** *The Amazon Resource Name (ARN) of the resource configuration group.
* @public */ ResourceConfigurationGroupArn?: string | undefined; /** *The tags to apply to the VPC endpoint association.
* @public */ Tags?: Tag[] | undefined; } /** * @public */ export interface DescribeVpcEndpointAssociationsResult { /** *Details of the endpoint associations.
* @public */ VpcEndpointAssociations?: VpcEndpointAssociation[] | undefined; /** *The pagination token.
* @public */ NextToken?: string | undefined; } /** * @public */ export interface DescribeVpcEndpointConnectionNotificationsRequest { /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The ID of the notification.
* @public */ ConnectionNotificationId?: string | undefined; /** *The filters.
*
* connection-notification-arn - The ARN of the SNS topic for the
* notification.
* connection-notification-id - The ID of the
* notification.
* connection-notification-state - The state of the notification
* (Enabled | Disabled).
* connection-notification-type - The type of notification
* (Topic).
* service-id - The ID of the endpoint service.
* vpc-endpoint-id - The ID of the VPC endpoint.
The maximum number of results to return in a single call. To retrieve the remaining
* results, make another request with the returned NextToken value.
The token to request the next page of results.
* @public */ NextToken?: string | undefined; } /** * @public */ export interface DescribeVpcEndpointConnectionNotificationsResult { /** *The notifications.
* @public */ ConnectionNotificationSet?: ConnectionNotification[] | undefined; /** *The token to use to retrieve the next page of results. This value is
* null when there are no more results to return.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The filters.
*
* ip-address-type - The IP address type (ipv4 | ipv6).
* service-id - The ID of the service.
* vpc-endpoint-owner - The ID of the Amazon Web Services account ID
* that owns the endpoint.
* vpc-endpoint-region - The Region of the endpoint or cross-region
* to find endpoints for other Regions.
* vpc-endpoint-state - The state of the endpoint
* (pendingAcceptance | pending |
* available | deleting | deleted |
* rejected | failed).
* vpc-endpoint-id - The ID of the endpoint.
The maximum number of results to return for the request in a single page. The remaining
* results of the initial request can be seen by sending another request with the returned
* NextToken value. This value can be between 5 and 1,000; if
* MaxResults is given a value larger than 1,000, only 1,000 results are
* returned.
The token to retrieve the next page of results.
* @public */ NextToken?: string | undefined; } /** *Describes a VPC endpoint connection to a service.
* @public */ export interface VpcEndpointConnection { /** *The ID of the service to which the endpoint is connected.
* @public */ ServiceId?: string | undefined; /** *The ID of the VPC endpoint.
* @public */ VpcEndpointId?: string | undefined; /** *The ID of the Amazon Web Services account that owns the VPC endpoint.
* @public */ VpcEndpointOwner?: string | undefined; /** *The state of the VPC endpoint.
* @public */ VpcEndpointState?: State | undefined; /** *The date and time that the VPC endpoint was created.
* @public */ CreationTimestamp?: Date | undefined; /** *The DNS entries for the VPC endpoint.
* @public */ DnsEntries?: DnsEntry[] | undefined; /** *The Amazon Resource Names (ARNs) of the network load balancers for the service.
* @public */ NetworkLoadBalancerArns?: string[] | undefined; /** *The Amazon Resource Names (ARNs) of the Gateway Load Balancers for the service.
* @public */ GatewayLoadBalancerArns?: string[] | undefined; /** *The IP address type for the endpoint.
* @public */ IpAddressType?: IpAddressType | undefined; /** *The ID of the VPC endpoint connection.
* @public */ VpcEndpointConnectionId?: string | undefined; /** *The tags.
* @public */ Tags?: Tag[] | undefined; /** *The Region of the endpoint.
* @public */ VpcEndpointRegion?: string | undefined; } /** * @public */ export interface DescribeVpcEndpointConnectionsResult { /** *Information about the VPC endpoint connections.
* @public */ VpcEndpointConnections?: VpcEndpointConnection[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The IDs of the VPC endpoints.
* @public */ VpcEndpointIds?: string[] | undefined; /** *The filters.
*
* ip-address-type - The IP address type (ipv4 | ipv6).
* service-name - The name of the service.
* service-region - The Region of the service.
* tag:Owner and the value TeamA, specify tag:Owner for the filter name and TeamA for the filter value.
* tag-key - The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
* vpc-id - The ID of the VPC in which the endpoint resides.
* vpc-endpoint-id - The ID of the endpoint.
* vpc-endpoint-state - The state of the endpoint
* (pendingAcceptance | pending |
* available | deleting | deleted |
* rejected | failed).
* vpc-endpoint-type - The type of VPC endpoint (Interface |
* Gateway | GatewayLoadBalancer | Resource |
* ServiceNetwork).
The maximum number of items to return for this request. The request returns a token that you can specify in a subsequent call to get the next set of results.
*Constraint: If the value is greater than 1,000, we return only 1,000 items.
* @public */ MaxResults?: number | undefined; /** *The token for the next set of items to return. (You received this token from a prior call.)
* @public */ NextToken?: string | undefined; } /** * @public */ export interface DescribeVpcEndpointsResult { /** *Information about the VPC endpoints.
* @public */ VpcEndpoints?: VpcEndpoint[] | undefined; /** *The token to use when requesting the next set of items. If there are no additional items to return, the string is empty.
* @public */ NextToken?: string | undefined; } /** * @public */ export interface DescribeVpcEndpointServiceConfigurationsRequest { /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The IDs of the endpoint services.
* @public */ ServiceIds?: string[] | undefined; /** *The filters.
*
* service-name - The name of the service.
* service-id - The ID of the service.
* service-state - The state of the service (Pending |
* Available | Deleting | Deleted |
* Failed).
* supported-ip-address-types - The IP address type (ipv4 | ipv6).
* tag:Owner and the value TeamA, specify tag:Owner for the filter name and TeamA for the filter value.
* tag-key - The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
The maximum number of results to return for the request in a single page. The remaining
* results of the initial request can be seen by sending another request with the returned
* NextToken value. This value can be between 5 and 1,000; if
* MaxResults is given a value larger than 1,000, only 1,000 results are
* returned.
The token to retrieve the next page of results.
* @public */ NextToken?: string | undefined; } /** * @public */ export interface DescribeVpcEndpointServiceConfigurationsResult { /** *Information about the services.
* @public */ ServiceConfigurations?: ServiceConfiguration[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The ID of the service.
* @public */ ServiceId: string | undefined; /** *The filters.
*
* principal - The ARN of the principal.
* principal-type - The principal type (All |
* Service | OrganizationUnit | Account
* | User | Role).
The maximum number of results to return for the request in a single page. The remaining
* results of the initial request can be seen by sending another request with the returned
* NextToken value. This value can be between 5 and 1,000; if
* MaxResults is given a value larger than 1,000, only 1,000 results are
* returned.
The token to retrieve the next page of results.
* @public */ NextToken?: string | undefined; } /** * @public */ export interface DescribeVpcEndpointServicePermissionsResult { /** *Information about the allowed principals.
* @public */ AllowedPrincipals?: AllowedPrincipal[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The service names.
* @public */ ServiceNames?: string[] | undefined; /** *The filters.
*
* owner - The ID or alias of the Amazon Web Services account that owns
* the service.
* service-name - The name of the service.
* service-region - The Region of the service.
* service-type - The type of service (Interface |
* Gateway | GatewayLoadBalancer).
* supported-ip-address-types - The IP address type (ipv4 | ipv6).
* tag:Owner and the value TeamA, specify tag:Owner for the filter name and TeamA for the filter value.
* tag-key - The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
The maximum number of items to return for this request. The request returns a token that you can specify in a subsequent call to get the next set of results.
*Constraint: If the value is greater than 1,000, we return only 1,000 items.
* @public */ MaxResults?: number | undefined; /** *The token for the next set of items to return. (You received this token from a prior call.)
* @public */ NextToken?: string | undefined; /** *The service Regions.
* @public */ ServiceRegions?: string[] | undefined; } /** *Information about the Private DNS name for interface endpoints.
* @public */ export interface PrivateDnsDetails { /** *The private DNS name assigned to the VPC endpoint service.
* @public */ PrivateDnsName?: string | undefined; } /** *Describes a VPC endpoint service.
* @public */ export interface ServiceDetail { /** *The name of the service.
* @public */ ServiceName?: string | undefined; /** *The ID of the endpoint service.
* @public */ ServiceId?: string | undefined; /** *The type of service.
* @public */ ServiceType?: ServiceTypeDetail[] | undefined; /** *The Region where the service is hosted.
* @public */ ServiceRegion?: string | undefined; /** *The IDs of the Availability Zones in which the service is available.
*Either AvailabilityZone or AvailabilityZoneId can be specified, but not both
The Availability Zones in which the service is available.
*Either AvailabilityZone or AvailabilityZoneId can be specified, but not both
The Amazon Web Services account ID of the service owner.
* @public */ Owner?: string | undefined; /** *The DNS names for the service.
* @public */ BaseEndpointDnsNames?: string[] | undefined; /** *The private DNS name for the service.
* @public */ PrivateDnsName?: string | undefined; /** *The private DNS names assigned to the VPC endpoint service.
* @public */ PrivateDnsNames?: PrivateDnsDetails[] | undefined; /** *Indicates whether the service supports endpoint policies.
* @public */ VpcEndpointPolicySupported?: boolean | undefined; /** *Indicates whether VPC endpoint connection requests to the service must be accepted by the service owner.
* @public */ AcceptanceRequired?: boolean | undefined; /** *Indicates whether the service manages its VPC endpoints. Management of the service VPC * endpoints using the VPC endpoint API is restricted.
* @public */ ManagesVpcEndpoints?: boolean | undefined; /** *The payer responsibility.
* @public */ PayerResponsibility?: PayerResponsibility | undefined; /** *The tags assigned to the service.
* @public */ Tags?: Tag[] | undefined; /** *The verification state of the VPC endpoint service.
*Consumers of the endpoint service cannot use the private name when the state is not verified.
The supported IP address types.
* @public */ SupportedIpAddressTypes?: ServiceConnectivityType[] | undefined; } /** * @public */ export interface DescribeVpcEndpointServicesResult { /** *The supported services.
* @public */ ServiceNames?: string[] | undefined; /** *Information about the service.
* @public */ ServiceDetails?: ServiceDetail[] | undefined; /** *The token to use when requesting the next set of items. If there are no additional items to return, the string is empty.
* @public */ NextToken?: string | undefined; } /** * @public */ export interface DescribeVpcPeeringConnectionsRequest { /** *The token returned from a previous paginated request. Pagination continues from the end of the items returned by the previous request.
* @public */ NextToken?: string | undefined; /** *The maximum number of items to return for this request. * To get the next page of items, make another request with the token returned in the output. * For more information, see Pagination.
* @public */ MaxResults?: number | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The IDs of the VPC peering connections.
*Default: Describes all your VPC peering connections.
* @public */ VpcPeeringConnectionIds?: string[] | undefined; /** *The filters.
*
* accepter-vpc-info.cidr-block - The IPv4 CIDR block of the accepter
* VPC.
* accepter-vpc-info.owner-id - The ID of the Amazon Web Services account that owns the
* accepter VPC.
* accepter-vpc-info.vpc-id - The ID of the accepter VPC.
* expiration-time - The expiration date and time for the VPC peering
* connection.
* requester-vpc-info.cidr-block - The IPv4 CIDR block of the
* requester's VPC.
* requester-vpc-info.owner-id - The ID of the Amazon Web Services account that owns the
* requester VPC.
* requester-vpc-info.vpc-id - The ID of the requester VPC.
* status-code - The status of the VPC peering connection
* (pending-acceptance | failed |
* expired | provisioning | active |
* deleting | deleted |
* rejected).
* status-message - A message that provides more information about the status
* of the VPC peering connection, if applicable.
* tag - The key/value combination of a tag assigned to the resource. Use the tag key in the filter name and the tag value as the filter value.
* For example, to find all resources that have a tag with the key Owner and the value TeamA, specify tag:Owner for the filter name and TeamA for the filter value.
* tag-key - The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
* vpc-peering-connection-id - The ID of the VPC peering connection.
Information about the VPC peering connections.
* @public */ VpcPeeringConnections?: VpcPeeringConnection[] | undefined; /** *The token to include in another request to get the next page of items. This value is null when there are no more items to return.
The filters.
*
* cidr - The primary IPv4 CIDR block of the VPC. The CIDR block you
* specify must exactly match the VPC's CIDR block for information to be returned
* for the VPC. Must contain the slash followed by one or two digits (for example,
* /28).
* cidr-block-association.cidr-block - An IPv4 CIDR block associated with the
* VPC.
* cidr-block-association.association-id - The association ID for
* an IPv4 CIDR block associated with the VPC.
* cidr-block-association.state - The state of an IPv4 CIDR block
* associated with the VPC.
* dhcp-options-id - The ID of a set of DHCP options.
* ipv6-cidr-block-association.ipv6-cidr-block - An IPv6 CIDR
* block associated with the VPC.
* ipv6-cidr-block-association.ipv6-pool - The ID of the IPv6 address pool from which the IPv6 CIDR block is allocated.
* ipv6-cidr-block-association.association-id - The association
* ID for an IPv6 CIDR block associated with the VPC.
* ipv6-cidr-block-association.state - The state of an IPv6 CIDR
* block associated with the VPC.
* is-default - Indicates whether the VPC is the default VPC.
* owner-id - The ID of the Amazon Web Services account that owns the VPC.
* state - The state of the VPC (pending | available).
* tag - The key/value combination of a tag assigned to the resource. Use the tag key in the filter name and the tag value as the filter value.
* For example, to find all resources that have a tag with the key Owner and the value TeamA, specify tag:Owner for the filter name and TeamA for the filter value.
* tag-key - The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
* vpc-id - The ID of the VPC.
The IDs of the VPCs.
* @public */ VpcIds?: string[] | undefined; /** *The token returned from a previous paginated request. Pagination continues from the end of the items returned by the previous request.
* @public */ NextToken?: string | undefined; /** *The maximum number of items to return for this request. * To get the next page of items, make another request with the token returned in the output. * For more information, see Pagination.
* @public */ MaxResults?: number | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The token to include in another request to get the next page of items. This value is null when there are no more items to return.
Information about the VPCs.
* @public */ Vpcs?: Vpc[] | undefined; } /** * @public */ export interface DescribeVpnConcentratorsRequest { /** *One or more VPN concentrator IDs.
* @public */ VpnConcentratorIds?: string[] | undefined; /** *One or more filters to limit the results.
* @public */ Filters?: Filter[] | undefined; /** *The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Information about the VPN concentrators.
* @public */ VpnConcentrators?: VpnConcentrator[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
Contains the parameters for DescribeVpnConnections.
* @public */ export interface DescribeVpnConnectionsRequest { /** *One or more filters.
*
* customer-gateway-configuration - The configuration information
* for the customer gateway.
* customer-gateway-id - The ID of a customer gateway associated
* with the VPN connection.
* state - The state of the VPN connection (pending |
* available | deleting |
* deleted).
* option.static-routes-only - Indicates whether the connection has
* static routes only. Used for devices that do not support Border Gateway Protocol
* (BGP).
* route.destination-cidr-block - The destination CIDR block. This
* corresponds to the subnet used in a customer data center.
* bgp-asn - The BGP Autonomous System Number (ASN) associated with
* a BGP device.
* tag:Owner and the value TeamA, specify tag:Owner for the filter name and TeamA for the filter value.
* tag-key - The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
* type - The type of VPN connection. Currently the only supported
* type is ipsec.1.
* vpn-connection-id - The ID of the VPN connection.
* vpn-gateway-id - The ID of a virtual private gateway associated
* with the VPN connection.
* transit-gateway-id - The ID of a transit gateway associated with
* the VPN connection.
One or more VPN connection IDs.
*Default: Describes your VPN connections.
* @public */ VpnConnectionIds?: string[] | undefined; /** *Checks whether you have the required permissions for the action, without actually
* making the request, and provides an error response. If you have the required
* permissions, the error response is DryRunOperation. Otherwise, it is
* UnauthorizedOperation.
Contains the output of DescribeVpnConnections.
* @public */ export interface DescribeVpnConnectionsResult { /** *Information about one or more VPN connections.
* @public */ VpnConnections?: VpnConnection[] | undefined; } /** *Contains the parameters for DescribeVpnGateways.
* @public */ export interface DescribeVpnGatewaysRequest { /** *One or more filters.
*
* amazon-side-asn - The Autonomous System Number (ASN) for the
* Amazon side of the gateway.
* attachment.state - The current state of the attachment between
* the gateway and the VPC (attaching | attached |
* detaching | detached).
* attachment.vpc-id - The ID of an attached VPC.
* availability-zone - The Availability Zone for the virtual private
* gateway (if applicable).
* state - The state of the virtual private gateway
* (pending | available | deleting |
* deleted).
* tag:Owner and the value TeamA, specify tag:Owner for the filter name and TeamA for the filter value.
* tag-key - The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
* type - The type of virtual private gateway. Currently the only
* supported type is ipsec.1.
* vpn-gateway-id - The ID of the virtual private gateway.
One or more virtual private gateway IDs.
*Default: Describes all your virtual private gateways.
* @public */ VpnGatewayIds?: string[] | undefined; /** *Checks whether you have the required permissions for the action, without actually
* making the request, and provides an error response. If you have the required
* permissions, the error response is DryRunOperation. Otherwise, it is
* UnauthorizedOperation.
Contains the output of DescribeVpnGateways.
* @public */ export interface DescribeVpnGatewaysResult { /** *Information about one or more virtual private gateways.
* @public */ VpnGateways?: VpnGateway[] | undefined; } /** * @public */ export interface DetachClassicLinkVpcRequest { /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The ID of the instance to unlink from the VPC.
* @public */ InstanceId: string | undefined; /** *The ID of the VPC to which the instance is linked.
* @public */ VpcId: string | undefined; } /** * @public */ export interface DetachClassicLinkVpcResult { /** *Returns true if the request succeeds; otherwise, it returns an error.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The ID of the internet gateway.
* @public */ InternetGatewayId: string | undefined; /** *The ID of the VPC.
* @public */ VpcId: string | undefined; } /** *Contains the parameters for DetachNetworkInterface.
* @public */ export interface DetachNetworkInterfaceRequest { /** *Checks whether you have the required permissions for the action, without actually
* making the request, and provides an error response. If you have the required
* permissions, the error response is DryRunOperation. Otherwise, it is
* UnauthorizedOperation.
The ID of the attachment.
* @public */ AttachmentId: string | undefined; /** *Specifies whether to force a detachment.
*Use the Force parameter only as a last resort to detach a
* network interface from a failed instance.
If you use the Force parameter to detach a network interface,
* you might not be able to attach a different network interface to the same
* index on the instance without first stopping and starting the
* instance.
If you force the detachment of a network interface, the instance * metadata might not get updated. This means that the attributes * associated with the detached network interface might still be visible. The * instance metadata will get updated when you stop and start the * instance.
*The ID of the Verified Access instance.
* @public */ VerifiedAccessInstanceId: string | undefined; /** *The ID of the Verified Access trust provider.
* @public */ VerifiedAccessTrustProviderId: string | undefined; /** *A unique, case-sensitive token that you provide to ensure idempotency of your * modification request. For more information, see Ensuring idempotency.
* @public */ ClientToken?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Details about the Verified Access trust provider.
* @public */ VerifiedAccessTrustProvider?: VerifiedAccessTrustProvider | undefined; /** *Details about the Verified Access instance.
* @public */ VerifiedAccessInstance?: VerifiedAccessInstance | undefined; } /** * @public */ export interface DetachVolumeRequest { /** *The device name.
* @public */ Device?: string | undefined; /** *Forces detachment if the previous detachment attempt did not occur cleanly (for example, * logging into an instance, unmounting the volume, and detaching normally). This option can lead * to data loss or a corrupted file system. Use this option only as a last resort to detach a * volume from a failed instance. The instance won't have an opportunity to flush file system * caches or file system metadata. If you use this option, you must perform file system check and * repair procedures.
* @public */ Force?: boolean | undefined; /** *The ID of the instance. If you are detaching a Multi-Attach enabled volume, you must specify an instance ID.
* @public */ InstanceId?: string | undefined; /** *The ID of the volume.
* @public */ VolumeId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Contains the parameters for DetachVpnGateway.
* @public */ export interface DetachVpnGatewayRequest { /** *The ID of the VPC.
* @public */ VpcId: string | undefined; /** *The ID of the virtual private gateway.
* @public */ VpnGatewayId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually
* making the request, and provides an error response. If you have the required
* permissions, the error response is DryRunOperation. Otherwise, it is
* UnauthorizedOperation.
The allocation ID of an Elastic IP address.
* @public */ AllocationId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
An Elastic IP address transfer.
* @public */ AddressTransfer?: AddressTransfer | undefined; } /** * @public */ export interface DisableAllowedImagesSettingsRequest { /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is
* DryRunOperation. Otherwise, it is UnauthorizedOperation.
Returns disabled if the request succeeds; otherwise, it returns an
* error.
The source Region or Availability Zone that the metric subscription is disabled for. For example, us-east-1.
The target Region or Availability Zone that the metric subscription is disabled for. For example, eu-north-1.
The metric used for the disabled subscription.
* @public */ Metric?: MetricType | undefined; /** *The statistic used for the disabled subscription.
* @public */ Statistic?: StatisticType | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Indicates whether the unsubscribe action was successful.
* @public */ Output?: boolean | undefined; } /** * @public */ export interface DisableCapacityManagerRequest { /** *
* Checks whether you have the required permissions for the action, without actually making the request, and provides an error response.
* If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
*
* Unique, case-sensitive identifier that you provide to ensure the idempotency of the request. *
* @public */ ClientToken?: string | undefined; } /** * @public */ export interface DisableCapacityManagerResult { /** ** The current status of Capacity Manager after the disable operation. *
* @public */ CapacityManagerStatus?: CapacityManagerStatus | undefined; /** *
* Indicates whether Organizations access is enabled. This will be false after disabling Capacity Manager.
*
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The updated status of encryption by default.
* @public */ EbsEncryptionByDefault?: boolean | undefined; } /** * @public */ export interface DisableFastLaunchRequest { /** *Specify the ID of the image for which to disable Windows fast launch.
* @public */ ImageId: string | undefined; /** *Forces the image settings to turn off Windows fast launch for your Windows AMI. This * parameter overrides any errors that are encountered while cleaning up resources in your * account.
* @public */ Force?: boolean | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is
* DryRunOperation. Otherwise, it is UnauthorizedOperation.
The ID of the image for which Windows fast launch was disabled.
* @public */ ImageId?: string | undefined; /** *The pre-provisioning resource type that must be cleaned after turning off Windows fast
* launch for the Windows AMI. Supported values include: snapshot.
Parameters that were used for Windows fast launch for the Windows AMI before Windows fast * launch was disabled. This informs the clean-up process.
* @public */ SnapshotConfiguration?: FastLaunchSnapshotConfigurationResponse | undefined; /** *The launch template that was used to launch Windows instances from pre-provisioned * snapshots.
* @public */ LaunchTemplate?: FastLaunchLaunchTemplateSpecificationResponse | undefined; /** *The maximum number of instances that Amazon EC2 can launch at the same time to create * pre-provisioned snapshots for Windows fast launch.
* @public */ MaxParallelLaunches?: number | undefined; /** *The owner of the Windows AMI for which Windows fast launch was disabled.
* @public */ OwnerId?: string | undefined; /** *The current state of Windows fast launch for the specified Windows AMI.
* @public */ State?: FastLaunchStateCode | undefined; /** *The reason that the state changed for Windows fast launch for the Windows AMI.
* @public */ StateTransitionReason?: string | undefined; /** *The time that the state changed for Windows fast launch for the Windows AMI.
* @public */ StateTransitionTime?: Date | undefined; } /** * @public */ export interface DisableFastSnapshotRestoresRequest { /** *One or more Availability Zones. For example, us-east-2a.
Either AvailabilityZone or AvailabilityZoneId must be specified in the request, but not both.
One or more Availability Zone IDs. For example, use2-az1.
Either AvailabilityZone or AvailabilityZoneId must be specified in the request, but not both.
The IDs of one or more snapshots. For example, snap-1234567890abcdef0.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Describes fast snapshot restores that were successfully disabled.
* @public */ export interface DisableFastSnapshotRestoreSuccessItem { /** *The ID of the snapshot.
* @public */ SnapshotId?: string | undefined; /** *The Availability Zone.
* @public */ AvailabilityZone?: string | undefined; /** *The ID of the Availability Zone.
* @public */ AvailabilityZoneId?: string | undefined; /** *The state of fast snapshot restores for the snapshot.
* @public */ State?: FastSnapshotRestoreStateCode | undefined; /** *The reason for the state transition. The possible values are as follows:
*
* Client.UserInitiated - The state successfully transitioned to enabling or
* disabling.
* Client.UserInitiated - Lifecycle state transition - The state successfully transitioned
* to optimizing, enabled, or disabled.
The ID of the Amazon Web Services account that enabled fast snapshot restores on the snapshot.
* @public */ OwnerId?: string | undefined; /** *The Amazon Web Services owner alias that enabled fast snapshot restores on the snapshot. This is intended for future use.
* @public */ OwnerAlias?: string | undefined; /** *The time at which fast snapshot restores entered the enabling state.
The time at which fast snapshot restores entered the optimizing state.
The time at which fast snapshot restores entered the enabled state.
The time at which fast snapshot restores entered the disabling state.
The time at which fast snapshot restores entered the disabled state.
Describes an error that occurred when disabling fast snapshot restores.
* @public */ export interface DisableFastSnapshotRestoreStateError { /** *The error code.
* @public */ Code?: string | undefined; /** *The error message.
* @public */ Message?: string | undefined; } /** *Contains information about an error that occurred when disabling fast snapshot restores.
* @public */ export interface DisableFastSnapshotRestoreStateErrorItem { /** *The Availability Zone.
* @public */ AvailabilityZone?: string | undefined; /** *The ID of the Availability Zone.
* @public */ AvailabilityZoneId?: string | undefined; /** *The error.
* @public */ Error?: DisableFastSnapshotRestoreStateError | undefined; } /** *Contains information about the errors that occurred when disabling fast snapshot restores.
* @public */ export interface DisableFastSnapshotRestoreErrorItem { /** *The ID of the snapshot.
* @public */ SnapshotId?: string | undefined; /** *The errors.
* @public */ FastSnapshotRestoreStateErrors?: DisableFastSnapshotRestoreStateErrorItem[] | undefined; } /** * @public */ export interface DisableFastSnapshotRestoresResult { /** *Information about the snapshots for which fast snapshot restores were successfully disabled.
* @public */ Successful?: DisableFastSnapshotRestoreSuccessItem[] | undefined; /** *Information about the snapshots for which fast snapshot restores could not be disabled.
* @public */ Unsuccessful?: DisableFastSnapshotRestoreErrorItem[] | undefined; } /** * @public */ export interface DisableImageRequest { /** *The ID of the AMI.
* @public */ ImageId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is
* DryRunOperation. Otherwise, it is UnauthorizedOperation.
Returns true if the request succeeds; otherwise, it returns an error.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is
* DryRunOperation. Otherwise, it is UnauthorizedOperation.
Returns unblocked if the request succeeds; otherwise, it returns an
* error.
The ID of the AMI.
* @public */ ImageId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is
* DryRunOperation. Otherwise, it is UnauthorizedOperation.
Returns true if the request succeeds; otherwise, it returns an error.
The ID of the AMI.
* @public */ ImageId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is
* DryRunOperation. Otherwise, it is UnauthorizedOperation.
Returns true if the request succeeds; otherwise, it returns an error.
The IDs of the instances to disable from SQL Server High Availability standby detection monitoring.
* @public */ InstanceIds: string[] | undefined; /** *Checks whether you have the required permissions for the action,
* without actually making the request, and provides an error response. If you have the
* required permissions, the error response is DryRunOperation. Otherwise,
* it is UnauthorizedOperation.
Information about the instances that were disabled from SQL Server High Availability standby * detection monitoring.
* @public */ Instances?: RegisteredInstance[] | undefined; } /** * @public */ export interface DisableIpamOrganizationAdminAccountRequest { /** *A check for whether you have the required permissions for the action without actually making the request
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The Organizations member account ID that you want to disable as IPAM account.
* @public */ DelegatedAdminAccountId: string | undefined; } /** * @public */ export interface DisableIpamOrganizationAdminAccountResult { /** *The result of disabling the IPAM account.
* @public */ Success?: boolean | undefined; } /** * @public */ export interface DisableIpamPolicyRequest { /** *A check for whether you have the required permissions for the action without actually making the request
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The ID of the IPAM policy to disable.
* @public */ IpamPolicyId: string | undefined; /** *The ID of the Amazon Web Services Organizations target for which to disable the IPAM policy. This parameter is required only when IPAM is integrated with Amazon Web Services Organizations. When IPAM is not integrated with Amazon Web Services Organizations, omit this parameter and the policy will be disabled for the current account.
*A target can be an individual Amazon Web Services account or an entity within an Amazon Web Services Organization to which an IPAM policy can be applied.
* @public */ OrganizationTargetId?: string | undefined; } /** * @public */ export interface DisableIpamPolicyResult { /** *Returns true if the IPAM policy was successfully disabled.
* @public */ Return?: boolean | undefined; } /** * @public */ export interface DisableRouteServerPropagationRequest { /** *The ID of the route server for which to disable propagation.
* @public */ RouteServerId: string | undefined; /** *The ID of the route table for which to disable route server propagation.
* @public */ RouteTableId: string | undefined; /** *A check for whether you have the required permissions for the action without actually making the request
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Describes the route propagation configuration between a route server and a route table.
*When enabled, route server propagation installs the routes in the FIB on the route table you've specified. Route server supports IPv4 and IPv6 route propagation.
* @public */ export interface RouteServerPropagation { /** *The ID of the route server configured for route propagation.
* @public */ RouteServerId?: string | undefined; /** *The ID of the route table configured for route server propagation.
* @public */ RouteTableId?: string | undefined; /** *The current state of route propagation.
* @public */ State?: RouteServerPropagationState | undefined; } /** * @public */ export interface DisableRouteServerPropagationResult { /** *Information about the disabled route server propagation.
* @public */ RouteServerPropagation?: RouteServerPropagation | undefined; } /** * @public */ export interface DisableSerialConsoleAccessRequest { /** *Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
If true, access to the EC2 serial console of all instances is enabled for
* your account. If false, access to the EC2 serial console of all instances
* is disabled for your account.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Returns unblocked if the request succeeds.
The ID of the propagation route table.
* @public */ TransitGatewayRouteTableId: string | undefined; /** *The ID of the attachment.
* @public */ TransitGatewayAttachmentId?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The ID of the route table announcement.
* @public */ TransitGatewayRouteTableAnnouncementId?: string | undefined; } /** *Describes route propagation.
* @public */ export interface TransitGatewayPropagation { /** *The ID of the attachment.
* @public */ TransitGatewayAttachmentId?: string | undefined; /** *The ID of the resource.
* @public */ ResourceId?: string | undefined; /** *The resource type. Note that the tgw-peering resource type has been deprecated.
The ID of the transit gateway route table.
* @public */ TransitGatewayRouteTableId?: string | undefined; /** *The state.
* @public */ State?: TransitGatewayPropagationState | undefined; /** *The ID of the transit gateway route table announcement.
* @public */ TransitGatewayRouteTableAnnouncementId?: string | undefined; } /** * @public */ export interface DisableTransitGatewayRouteTablePropagationResult { /** *Information about route propagation.
* @public */ Propagation?: TransitGatewayPropagation | undefined; } /** *Contains the parameters for DisableVgwRoutePropagation.
* @public */ export interface DisableVgwRoutePropagationRequest { /** *The ID of the virtual private gateway.
* @public */ GatewayId: string | undefined; /** *The ID of the route table.
* @public */ RouteTableId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually
* making the request, and provides an error response. If you have the required
* permissions, the error response is DryRunOperation. Otherwise, it is
* UnauthorizedOperation.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The ID of the VPC.
* @public */ VpcId: string | undefined; } /** * @public */ export interface DisableVpcClassicLinkResult { /** *Returns true if the request succeeds; otherwise, it returns an error.
The ID of the VPC.
* @public */ VpcId?: string | undefined; } /** * @public */ export interface DisableVpcClassicLinkDnsSupportResult { /** *Returns true if the request succeeds; otherwise, it returns an error.
The association ID. This parameter is required.
* @public */ AssociationId?: string | undefined; /** *Deprecated.
* @public */ PublicIp?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
The ID of the Capacity Reservation.
* @public */ CapacityReservationId: string | undefined; /** *The ID of the consumer account to which the request was sent.
* @public */ UnusedReservationBillingOwnerId: string | undefined; } /** * @public */ export interface DisassociateCapacityReservationBillingOwnerResult { /** *Returns true if the request succeeds; otherwise, it returns an error.
The ID of the Client VPN endpoint from which to disassociate the target network.
* @public */ ClientVpnEndpointId: string | undefined; /** *The ID of the target network association.
* @public */ AssociationId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
The ID of the target network association.
* @public */ AssociationId?: string | undefined; /** *The current state of the target network association.
* @public */ Status?: AssociationStatus | undefined; } /** * @public */ export interface DisassociateEnclaveCertificateIamRoleRequest { /** *The ARN of the ACM certificate from which to disassociate the IAM role.
* @public */ CertificateArn: string | undefined; /** *The ARN of the IAM role to disassociate.
* @public */ RoleArn: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
Returns true if the request succeeds; otherwise, it returns an error.
The ID of the IAM instance profile association.
* @public */ AssociationId: string | undefined; } /** * @public */ export interface DisassociateIamInstanceProfileResult { /** *Information about the IAM instance profile association.
* @public */ IamInstanceProfileAssociation?: IamInstanceProfileAssociation | undefined; } /** *The targets to disassociate from the specified event window.
* @public */ export interface InstanceEventWindowDisassociationRequest { /** *The IDs of the instances to disassociate from the event window.
* @public */ InstanceIds?: string[] | undefined; /** *The instance tags to disassociate from the event window. Any instances associated with * the tags will be disassociated from the event window.
* @public */ InstanceTags?: Tag[] | undefined; /** *The IDs of the Dedicated Hosts to disassociate from the event window.
* @public */ DedicatedHostIds?: string[] | undefined; } /** * @public */ export interface DisassociateInstanceEventWindowRequest { /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The ID of the event window.
* @public */ InstanceEventWindowId: string | undefined; /** *One or more targets to disassociate from the specified event window.
* @public */ AssociationTarget: InstanceEventWindowDisassociationRequest | undefined; } /** * @public */ export interface DisassociateInstanceEventWindowResult { /** *Information about the event window.
* @public */ InstanceEventWindow?: InstanceEventWindow | undefined; } /** * @public */ export interface DisassociateIpamByoasnRequest { /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
A public 2-byte or 4-byte ASN.
* @public */ Asn: string | undefined; /** *A BYOIP CIDR.
* @public */ Cidr: string | undefined; } /** * @public */ export interface DisassociateIpamByoasnResult { /** *An ASN and BYOIP CIDR association.
* @public */ AsnAssociation?: AsnAssociation | undefined; } /** * @public */ export interface DisassociateIpamResourceDiscoveryRequest { /** *A check for whether you have the required permissions for the action without actually making the request
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
A resource discovery association ID.
* @public */ IpamResourceDiscoveryAssociationId: string | undefined; } /** * @public */ export interface DisassociateIpamResourceDiscoveryResult { /** *A resource discovery association.
* @public */ IpamResourceDiscoveryAssociation?: IpamResourceDiscoveryAssociation | undefined; } /** * @public */ export interface DisassociateNatGatewayAddressRequest { /** *The ID of the NAT gateway.
* @public */ NatGatewayId: string | undefined; /** *The association IDs of EIPs that have been associated with the NAT gateway.
* @public */ AssociationIds: string[] | undefined; /** *The maximum amount of time to wait (in seconds) before forcibly releasing the IP addresses if connections are still in progress. Default value is 350 seconds.
* @public */ MaxDrainDurationSeconds?: number | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The ID of the NAT gateway.
* @public */ NatGatewayId?: string | undefined; /** *Information about the NAT gateway IP addresses.
* @public */ NatGatewayAddresses?: NatGatewayAddress[] | undefined; } /** * @public */ export interface DisassociateRouteServerRequest { /** *The ID of the route server to disassociate.
* @public */ RouteServerId: string | undefined; /** *The ID of the VPC to disassociate from the route server.
* @public */ VpcId: string | undefined; /** *A check for whether you have the required permissions for the action without actually making the request
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Information about the disassociated route server.
* @public */ RouteServerAssociation?: RouteServerAssociation | undefined; } /** * @public */ export interface DisassociateRouteTableRequest { /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The association ID representing the current association between the route table and subnet or gateway.
* @public */ AssociationId: string | undefined; } /** * @public */ export interface DisassociateSecurityGroupVpcRequest { /** *A security group ID.
* @public */ GroupId: string | undefined; /** *A VPC ID.
* @public */ VpcId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The state of the disassociation.
* @public */ State?: SecurityGroupVpcAssociationState | undefined; } /** * @public */ export interface DisassociateSubnetCidrBlockRequest { /** *The association ID for the CIDR block.
* @public */ AssociationId: string | undefined; } /** * @public */ export interface DisassociateSubnetCidrBlockResult { /** *Information about the IPv6 CIDR block association.
* @public */ Ipv6CidrBlockAssociation?: SubnetIpv6CidrBlockAssociation | undefined; /** *The ID of the subnet.
* @public */ SubnetId?: string | undefined; } /** * @public */ export interface DisassociateTransitGatewayMulticastDomainRequest { /** *The ID of the transit gateway multicast domain.
* @public */ TransitGatewayMulticastDomainId: string | undefined; /** *The ID of the attachment.
* @public */ TransitGatewayAttachmentId: string | undefined; /** *The IDs of the subnets;
* @public */ SubnetIds: string[] | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Information about the association.
* @public */ Associations?: TransitGatewayMulticastDomainAssociations | undefined; } /** * @public */ export interface DisassociateTransitGatewayPolicyTableRequest { /** *The ID of the disassociated policy table.
* @public */ TransitGatewayPolicyTableId: string | undefined; /** *The ID of the transit gateway attachment to disassociate from the policy table.
* @public */ TransitGatewayAttachmentId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Returns details about the transit gateway policy table disassociation.
* @public */ Association?: TransitGatewayPolicyTableAssociation | undefined; } /** * @public */ export interface DisassociateTransitGatewayRouteTableRequest { /** *The ID of the transit gateway route table.
* @public */ TransitGatewayRouteTableId: string | undefined; /** *The ID of the attachment.
* @public */ TransitGatewayAttachmentId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Information about the association.
* @public */ Association?: TransitGatewayAssociation | undefined; } /** * @public */ export interface DisassociateTrunkInterfaceRequest { /** *The ID of the association
* @public */ AssociationId: string | undefined; /** *Unique, case-sensitive identifier that you provide to ensure the idempotency of the * request. For more information, see Ensuring * idempotency.
* @public */ ClientToken?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Is true if the request succeeds and an error otherwise.
Unique, case-sensitive identifier that you provide to ensure the idempotency of the * request. For more information, see Ensuring * idempotency.
* @public */ ClientToken?: string | undefined; } /** * @public */ export interface DisassociateVpcCidrBlockRequest { /** *The association ID for the CIDR block.
* @public */ AssociationId: string | undefined; } /** * @public */ export interface DisassociateVpcCidrBlockResult { /** *Information about the IPv6 CIDR block association.
* @public */ Ipv6CidrBlockAssociation?: VpcIpv6CidrBlockAssociation | undefined; /** *Information about the IPv4 CIDR block association.
* @public */ CidrBlockAssociation?: VpcCidrBlockAssociation | undefined; /** *The ID of the VPC.
* @public */ VpcId?: string | undefined; } /** * @public */ export interface EnableAddressTransferRequest { /** *The allocation ID of an Elastic IP address.
* @public */ AllocationId: string | undefined; /** *The ID of the account that you want to transfer the Elastic IP address to.
* @public */ TransferAccountId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
An Elastic IP address transfer.
* @public */ AddressTransfer?: AddressTransfer | undefined; } /** * @public */ export interface EnableAllowedImagesSettingsRequest { /** *Specify enabled to apply the image criteria specified by the Allowed AMIs
* settings. Specify audit-mode so that you can check which AMIs will be allowed or
* not allowed by the image criteria.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is
* DryRunOperation. Otherwise, it is UnauthorizedOperation.
Returns enabled or audit-mode if the request succeeds;
* otherwise, it returns an error.
The source Region (like us-east-1) or Availability Zone ID (like use1-az1) that the metric subscription is enabled for. If you use Availability Zone IDs, the Source and Destination Availability Zones must be in the same Region.
The target Region (like us-east-2) or Availability Zone ID (like use2-az2) that the metric subscription is enabled for. If you use Availability Zone IDs, the Source and Destination Availability Zones must be in the same Region.
The metric used for the enabled subscription.
* @public */ Metric?: MetricType | undefined; /** *The statistic used for the enabled subscription.
* @public */ Statistic?: StatisticType | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Indicates whether the subscribe action was successful.
* @public */ Output?: boolean | undefined; } /** * @public */ export interface EnableCapacityManagerRequest { /** ** Specifies whether to enable cross-account access for Amazon Web Services Organizations. When enabled, Capacity Manager can aggregate data from all accounts in your organization. Default is false. *
* @public */ OrganizationsAccess?: boolean | undefined; /** *
* Checks whether you have the required permissions for the action, without actually making the request, and provides an error response.
* If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
*
* Unique, case-sensitive identifier that you provide to ensure the idempotency of the request. *
* @public */ ClientToken?: string | undefined; } /** * @public */ export interface EnableCapacityManagerResult { /** ** The current status of Capacity Manager after the enable operation. *
* @public */ CapacityManagerStatus?: CapacityManagerStatus | undefined; /** ** Indicates whether Organizations access is enabled for cross-account data aggregation. *
* @public */ OrganizationsAccess?: boolean | undefined; } /** * @public */ export interface EnableEbsEncryptionByDefaultRequest { /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The updated status of encryption by default.
* @public */ EbsEncryptionByDefault?: boolean | undefined; } /** *Request to create a launch template for a Windows fast launch enabled AMI.
*Note - You can specify either the LaunchTemplateName or the
* LaunchTemplateId, but not both.
Specify the ID of the launch template that the AMI should use for Windows fast * launch.
* @public */ LaunchTemplateId?: string | undefined; /** *Specify the name of the launch template that the AMI should use for Windows fast * launch.
* @public */ LaunchTemplateName?: string | undefined; /** *Specify the version of the launch template that the AMI should use for Windows fast * launch.
* @public */ Version: string | undefined; } /** *Configuration settings for creating and managing pre-provisioned snapshots for a Windows * fast launch enabled AMI.
* @public */ export interface FastLaunchSnapshotConfigurationRequest { /** *The number of pre-provisioned snapshots to keep on hand for a Windows fast launch enabled * AMI.
* @public */ TargetResourceCount?: number | undefined; } /** * @public */ export interface EnableFastLaunchRequest { /** *Specify the ID of the image for which to enable Windows fast launch.
* @public */ ImageId: string | undefined; /** *The type of resource to use for pre-provisioning the AMI for Windows fast launch.
* Supported values include: snapshot, which is the default value.
Configuration settings for creating and managing the snapshots that are used for
* pre-provisioning the AMI for Windows fast launch. The associated ResourceType
* must be snapshot.
The launch template to use when launching Windows instances from pre-provisioned * snapshots. Launch template parameters can include either the name or ID of the launch * template, but not both.
* @public */ LaunchTemplate?: FastLaunchLaunchTemplateSpecificationRequest | undefined; /** *The maximum number of instances that Amazon EC2 can launch at the same time to create
* pre-provisioned snapshots for Windows fast launch. Value must be 6 or
* greater.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is
* DryRunOperation. Otherwise, it is UnauthorizedOperation.
The image ID that identifies the AMI for which Windows fast launch was enabled.
* @public */ ImageId?: string | undefined; /** *The type of resource that was defined for pre-provisioning the AMI for Windows fast * launch.
* @public */ ResourceType?: FastLaunchResourceType | undefined; /** *Settings to create and manage the pre-provisioned snapshots that Amazon EC2 uses for faster
* launches from the Windows AMI. This property is returned when the associated
* resourceType is snapshot.
The launch template that is used when launching Windows instances from pre-provisioned * snapshots.
* @public */ LaunchTemplate?: FastLaunchLaunchTemplateSpecificationResponse | undefined; /** *The maximum number of instances that Amazon EC2 can launch at the same time to create * pre-provisioned snapshots for Windows fast launch.
* @public */ MaxParallelLaunches?: number | undefined; /** *The owner ID for the AMI for which Windows fast launch was enabled.
* @public */ OwnerId?: string | undefined; /** *The current state of Windows fast launch for the specified AMI.
* @public */ State?: FastLaunchStateCode | undefined; /** *The reason that the state changed for Windows fast launch for the AMI.
* @public */ StateTransitionReason?: string | undefined; /** *The time that the state changed for Windows fast launch for the AMI.
* @public */ StateTransitionTime?: Date | undefined; } /** * @public */ export interface EnableFastSnapshotRestoresRequest { /** *One or more Availability Zones. For example, us-east-2a.
Either AvailabilityZone or AvailabilityZoneId must be specified in the request, but not both.
One or more Availability Zone IDs. For example, use2-az1.
Either AvailabilityZone or AvailabilityZoneId must be specified in the request, but not both.
The IDs of one or more snapshots. For example, snap-1234567890abcdef0. You can specify
* a snapshot that was shared with you from another Amazon Web Services account.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Describes fast snapshot restores that were successfully enabled.
* @public */ export interface EnableFastSnapshotRestoreSuccessItem { /** *The ID of the snapshot.
* @public */ SnapshotId?: string | undefined; /** *The Availability Zone.
* @public */ AvailabilityZone?: string | undefined; /** *The ID of the Availability Zone.
* @public */ AvailabilityZoneId?: string | undefined; /** *The state of fast snapshot restores.
* @public */ State?: FastSnapshotRestoreStateCode | undefined; /** *The reason for the state transition. The possible values are as follows:
*
* Client.UserInitiated - The state successfully transitioned to enabling or
* disabling.
* Client.UserInitiated - Lifecycle state transition - The state successfully transitioned
* to optimizing, enabled, or disabled.
The ID of the Amazon Web Services account that enabled fast snapshot restores on the snapshot.
* @public */ OwnerId?: string | undefined; /** *The Amazon Web Services owner alias that enabled fast snapshot restores on the snapshot. This is intended for future use.
* @public */ OwnerAlias?: string | undefined; /** *The time at which fast snapshot restores entered the enabling state.
The time at which fast snapshot restores entered the optimizing state.
The time at which fast snapshot restores entered the enabled state.
The time at which fast snapshot restores entered the disabling state.
The time at which fast snapshot restores entered the disabled state.
Describes an error that occurred when enabling fast snapshot restores.
* @public */ export interface EnableFastSnapshotRestoreStateError { /** *The error code.
* @public */ Code?: string | undefined; /** *The error message.
* @public */ Message?: string | undefined; } /** *Contains information about an error that occurred when enabling fast snapshot restores.
* @public */ export interface EnableFastSnapshotRestoreStateErrorItem { /** *The Availability Zone.
* @public */ AvailabilityZone?: string | undefined; /** *The ID of the Availability Zone.
* @public */ AvailabilityZoneId?: string | undefined; /** *The error.
* @public */ Error?: EnableFastSnapshotRestoreStateError | undefined; } /** *Contains information about the errors that occurred when enabling fast snapshot restores.
* @public */ export interface EnableFastSnapshotRestoreErrorItem { /** *The ID of the snapshot.
* @public */ SnapshotId?: string | undefined; /** *The errors.
* @public */ FastSnapshotRestoreStateErrors?: EnableFastSnapshotRestoreStateErrorItem[] | undefined; } /** * @public */ export interface EnableFastSnapshotRestoresResult { /** *Information about the snapshots for which fast snapshot restores were successfully enabled.
* @public */ Successful?: EnableFastSnapshotRestoreSuccessItem[] | undefined; /** *Information about the snapshots for which fast snapshot restores could not be enabled.
* @public */ Unsuccessful?: EnableFastSnapshotRestoreErrorItem[] | undefined; } /** * @public */ export interface EnableImageRequest { /** *The ID of the AMI.
* @public */ ImageId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is
* DryRunOperation. Otherwise, it is UnauthorizedOperation.
Returns true if the request succeeds; otherwise, it returns an error.
Specify block-new-sharing to enable block public access for AMIs at the
* account level in the specified Region. This will block any attempt to publicly share your AMIs
* in the specified Region.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is
* DryRunOperation. Otherwise, it is UnauthorizedOperation.
Returns block-new-sharing if the request succeeds; otherwise, it returns an
* error.
The ID of the AMI.
* @public */ ImageId: string | undefined; /** *The date and time to deprecate the AMI, in UTC, in the following format: * YYYY-MM-DDTHH:MM:SSZ. * If you specify a value for seconds, Amazon EC2 rounds the seconds to the nearest minute.
*You can’t specify a date in the past. The upper limit for DeprecateAt is 10
* years from now, except for public AMIs, where the upper limit is 2 years from the creation
* date.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is
* DryRunOperation. Otherwise, it is UnauthorizedOperation.
Returns true if the request succeeds; otherwise, it returns an error.
The ID of the AMI.
* @public */ ImageId: string | undefined; /** *If true, enforces deregistration protection for 24 hours after deregistration
* protection is disabled.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is
* DryRunOperation. Otherwise, it is UnauthorizedOperation.
Returns true if the request succeeds; otherwise, it returns an error.
The IDs of the instances to enable for SQL Server High Availability standby detection monitoring.
* @public */ InstanceIds: string[] | undefined; /** *The ARN of the Secrets Manager secret containing the SQL Server access credentials. The specified * secret must contain valid SQL Server credentials for the specified instances. If not specified, * deafult local user credentials will be used by the Amazon Web Services Systems Manager agent. To enable * instances with different credentials, you must make separate requests.
* @public */ SqlServerCredentials?: string | undefined; /** *Checks whether you have the required permissions for the action,
* without actually making the request, and provides an error response. If you have the
* required permissions, the error response is DryRunOperation. Otherwise,
* it is UnauthorizedOperation.
Information about the instances that were enabled for SQL Server High Availability standby * detection monitoring.
* @public */ Instances?: RegisteredInstance[] | undefined; } /** * @public */ export interface EnableIpamOrganizationAdminAccountRequest { /** *A check for whether you have the required permissions for the action without actually making the request
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The Organizations member account ID that you want to enable as the IPAM account.
* @public */ DelegatedAdminAccountId: string | undefined; } /** * @public */ export interface EnableIpamOrganizationAdminAccountResult { /** *The result of enabling the IPAM account.
* @public */ Success?: boolean | undefined; } /** * @public */ export interface EnableIpamPolicyRequest { /** *A check for whether you have the required permissions for the action without actually making the request
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The ID of the IPAM policy to enable.
* @public */ IpamPolicyId: string | undefined; /** *A target can be an individual Amazon Web Services account or an entity within an Amazon Web Services Organization to which an IPAM policy can be applied.
*The ID of the Amazon Web Services Organizations target for which to enable the IPAM policy. This parameter is required only when IPAM is integrated with Amazon Web Services Organizations. When IPAM is not integrated with Amazon Web Services Organizations, omit this parameter and the policy will apply to the current account.
* @public */ OrganizationTargetId?: string | undefined; } /** * @public */ export interface EnableIpamPolicyResult { /** *The ID of the IPAM policy that was enabled.
* @public */ IpamPolicyId?: string | undefined; } /** * @public */ export interface EnableReachabilityAnalyzerOrganizationSharingRequest { /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Returns true if the request succeeds; otherwise, returns an error.
The ID of the route server for which to enable propagation.
* @public */ RouteServerId: string | undefined; /** *The ID of the route table to which route server will propagate routes.
* @public */ RouteTableId: string | undefined; /** *A check for whether you have the required permissions for the action without actually making the request
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Information about the enabled route server propagation.
* @public */ RouteServerPropagation?: RouteServerPropagation | undefined; } /** * @public */ export interface EnableSerialConsoleAccessRequest { /** *Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
If true, access to the EC2 serial console of all instances is enabled for
* your account. If false, access to the EC2 serial console of all instances
* is disabled for your account.
The mode in which to enable block public access for snapshots for the Region. * Specify one of the following values:
*
* block-all-sharing - Prevents all public sharing of snapshots in
* the Region. Users in the account will no longer be able to request new public
* sharing. Additionally, snapshots that are already publicly shared are treated as
* private and they are no longer publicly available.
* block-new-sharing - Prevents only new public sharing of snapshots
* in the Region. Users in the account will no longer be able to request new public
* sharing. However, snapshots that are already publicly shared, remain publicly
* available.
* unblocked is not a valid value for EnableSnapshotBlockPublicAccess.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The state of block public access for snapshots for the account and Region. Returns
* either block-all-sharing or block-new-sharing if the request
* succeeds.
The ID of the propagation route table.
* @public */ TransitGatewayRouteTableId: string | undefined; /** *The ID of the attachment.
* @public */ TransitGatewayAttachmentId?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The ID of the transit gateway route table announcement.
* @public */ TransitGatewayRouteTableAnnouncementId?: string | undefined; } /** * @public */ export interface EnableTransitGatewayRouteTablePropagationResult { /** *Information about route propagation.
* @public */ Propagation?: TransitGatewayPropagation | undefined; } /** *Contains the parameters for EnableVgwRoutePropagation.
* @public */ export interface EnableVgwRoutePropagationRequest { /** *The ID of the virtual private gateway that is attached to a VPC. The virtual private * gateway must be attached to the same VPC that the routing tables are associated with. *
* @public */ GatewayId: string | undefined; /** *The ID of the route table. The routing table must be associated with the same VPC that * the virtual private gateway is attached to.
* @public */ RouteTableId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually
* making the request, and provides an error response. If you have the required
* permissions, the error response is DryRunOperation. Otherwise, it is
* UnauthorizedOperation.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The ID of the volume.
* @public */ VolumeId: string | undefined; } /** * @public */ export interface EnableVpcClassicLinkRequest { /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The ID of the VPC.
* @public */ VpcId: string | undefined; } /** * @public */ export interface EnableVpcClassicLinkResult { /** *Returns true if the request succeeds; otherwise, it returns an error.
The ID of the VPC.
* @public */ VpcId?: string | undefined; } /** * @public */ export interface EnableVpcClassicLinkDnsSupportResult { /** *Returns true if the request succeeds; otherwise, it returns an error.
The ID of the Client VPN endpoint.
* @public */ ClientVpnEndpointId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
Describes the state of a client certificate revocation list.
* @public */ export interface ClientCertificateRevocationListStatus { /** *The state of the client certificate revocation list.
* @public */ Code?: ClientCertificateRevocationListStatusCode | undefined; /** *A message about the status of the client certificate revocation list, if applicable.
* @public */ Message?: string | undefined; } /** * @public */ export interface ExportClientVpnClientCertificateRevocationListResult { /** *Information about the client certificate revocation list.
* @public */ CertificateRevocationList?: string | undefined; /** *The current state of the client certificate revocation list.
* @public */ Status?: ClientCertificateRevocationListStatus | undefined; } /** * @public */ export interface ExportClientVpnClientConfigurationRequest { /** *The ID of the Client VPN endpoint.
* @public */ ClientVpnEndpointId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
The contents of the Client VPN endpoint configuration file.
* @public */ ClientConfiguration?: string | undefined; } /** *Describes the destination for an export image task.
* @public */ export interface ExportTaskS3LocationRequest { /** *The destination Amazon S3 bucket.
* @public */ S3Bucket: string | undefined; /** *The prefix (logical hierarchy) in the bucket.
* @public */ S3Prefix?: string | undefined; } /** * @public */ export interface ExportImageRequest { /** *Token to enable idempotency for export image requests.
* @public */ ClientToken?: string | undefined; /** *A description of the image being exported. The maximum length is 255 characters.
* @public */ Description?: string | undefined; /** *The disk image format.
* @public */ DiskImageFormat: DiskImageFormat | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The ID of the image.
* @public */ ImageId: string | undefined; /** *The Amazon S3 bucket for the destination image. The destination bucket must exist.
* @public */ S3ExportLocation: ExportTaskS3LocationRequest | undefined; /** *The name of the role that grants VM Import/Export permission to export images to your Amazon * S3 bucket. If this parameter is not specified, the default role is named 'vmimport'.
* @public */ RoleName?: string | undefined; /** *The tags to apply to the export image task during creation.
* @public */ TagSpecifications?: TagSpecification[] | undefined; } /** * @public */ export interface ExportImageResult { /** *A description of the image being exported.
* @public */ Description?: string | undefined; /** *The disk image format for the exported image.
* @public */ DiskImageFormat?: DiskImageFormat | undefined; /** *The ID of the export image task.
* @public */ ExportImageTaskId?: string | undefined; /** *The ID of the image.
* @public */ ImageId?: string | undefined; /** *The name of the role that grants VM Import/Export permission to export images to your Amazon * S3 bucket.
* @public */ RoleName?: string | undefined; /** *The percent complete of the export image task.
* @public */ Progress?: string | undefined; /** *Information about the destination Amazon S3 bucket.
* @public */ S3ExportLocation?: ExportTaskS3Location | undefined; /** *The status of the export image task. The possible values are active, completed,
* deleting, and deleted.
The status message for the export image task.
* @public */ StatusMessage?: string | undefined; /** *Any tags assigned to the export image task.
* @public */ Tags?: Tag[] | undefined; } /** * @public */ export interface ExportTransitGatewayRoutesRequest { /** *The ID of the route table.
* @public */ TransitGatewayRouteTableId: string | undefined; /** *One or more filters. The possible values are:
*
* attachment.transit-gateway-attachment-id - The id of the transit gateway attachment.
* attachment.resource-id - The resource id of the transit gateway attachment.
* route-search.exact-match - The exact match of the specified filter.
* route-search.longest-prefix-match - The longest prefix that matches the route.
* route-search.subnet-of-match - The routes with a subnet that match the specified CIDR filter.
* route-search.supernet-of-match - The routes with a CIDR that encompass the CIDR filter. For example, if you have 10.0.1.0/29 and 10.0.1.0/31 routes in your route table and you specify supernet-of-match as 10.0.1.0/30, then the result returns 10.0.1.0/29.
* state - The state of the route (active | blackhole).
* transit-gateway-route-destination-cidr-block - The CIDR range.
* type - The type of route (propagated |
* static).
The name of the S3 bucket.
* @public */ S3Bucket: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
The URL of the exported file in Amazon S3. For example, * s3://bucket_name/VPCTransitGateway/TransitGatewayRouteTables/file_name.
* @public */ S3Location?: string | undefined; } /** * @public */ export interface ExportVerifiedAccessInstanceClientConfigurationRequest { /** *The ID of the Verified Access instance.
* @public */ VerifiedAccessInstanceId: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Describes a route.
* @public */ export interface VerifiedAccessInstanceOpenVpnClientConfigurationRoute { /** *The CIDR block.
* @public */ Cidr?: string | undefined; } /** *Describes a set of routes.
* @public */ export interface VerifiedAccessInstanceOpenVpnClientConfiguration { /** *The base64-encoded Open VPN client configuration.
* @public */ Config?: string | undefined; /** *The routes.
* @public */ Routes?: VerifiedAccessInstanceOpenVpnClientConfigurationRoute[] | undefined; } /** *Describes the trust provider.
* @public */ export interface VerifiedAccessInstanceUserTrustProviderClientConfiguration { /** *The trust provider type.
* @public */ Type?: UserTrustProviderType | undefined; /** *The set of user claims to be requested from the IdP.
* @public */ Scopes?: string | undefined; /** *The OIDC issuer identifier of the IdP.
* @public */ Issuer?: string | undefined; /** *The authorization endpoint of the IdP.
* @public */ AuthorizationEndpoint?: string | undefined; /** *The public signing key endpoint.
* @public */ PublicSigningKeyEndpoint?: string | undefined; /** *The token endpoint of the IdP.
* @public */ TokenEndpoint?: string | undefined; /** *The user info endpoint of the IdP.
* @public */ UserInfoEndpoint?: string | undefined; /** *The OAuth 2.0 client identifier.
* @public */ ClientId?: string | undefined; /** *The OAuth 2.0 client secret.
* @public */ ClientSecret?: string | undefined; /** *Indicates whether Proof of Key Code Exchange (PKCE) is enabled.
* @public */ PkceEnabled?: boolean | undefined; } /** * @public */ export interface ExportVerifiedAccessInstanceClientConfigurationResult { /** *The version.
* @public */ Version?: string | undefined; /** *The ID of the Verified Access instance.
* @public */ VerifiedAccessInstanceId?: string | undefined; /** *The Region.
* @public */ Region?: string | undefined; /** *The device trust providers.
* @public */ DeviceTrustProviders?: DeviceTrustProviderType[] | undefined; /** *The user identity trust provider.
* @public */ UserTrustProvider?: VerifiedAccessInstanceUserTrustProviderClientConfiguration | undefined; /** *The Open VPN configuration.
* @public */ OpenVpnConfigurations?: VerifiedAccessInstanceOpenVpnClientConfiguration[] | undefined; } /** * @public */ export interface GetActiveVpnTunnelStatusRequest { /** *The ID of the VPN connection for which to retrieve the active tunnel status.
* @public */ VpnConnectionId: string | undefined; /** *The external IP address of the VPN tunnel for which to retrieve the active status.
* @public */ VpnTunnelOutsideIpAddress: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request.
* @public */ DryRun?: boolean | undefined; } /** * @public */ export interface GetActiveVpnTunnelStatusResult { /** *Information about the current security configuration of the VPN tunnel.
* @public */ ActiveVpnTunnelStatus?: ActiveVpnTunnelStatus | undefined; } /** * @public */ export interface GetAllowedImagesSettingsRequest { /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is
* DryRunOperation. Otherwise, it is UnauthorizedOperation.
The maximum age for allowed images.
* @public */ export interface CreationDateCondition { /** *The maximum number of days that have elapsed since the image was created. For example, a
* value of 300 allows images that were created within the last 300 days.
The maximum period since deprecation for allowed images.
* @public */ export interface DeprecationTimeCondition { /** *The maximum number of days that have elapsed since the image was deprecated. When set to
* 0, no deprecated images are allowed.
The criteria that are evaluated to determine which AMIs are discoverable and usable in * your account for the specified Amazon Web Services Region.
*For more information, see How Allowed AMIs * works in the Amazon EC2 User Guide.
* @public */ export interface ImageCriterion { /** *The image providers whose images are allowed.
*Possible values:
*
* amazon: Allow AMIs created by Amazon or verified providers.
* aws-marketplace: Allow AMIs created by verified providers in the Amazon Web Services
* Marketplace.
* aws-backup-vault: Allow AMIs created by Amazon Web Services Backup.
12-digit account ID: Allow AMIs created by this account. One or more account IDs can be * specified.
*
* none: Allow AMIs created by your own account only.
Maximum: 200 values
* @public */ ImageProviders?: string[] | undefined; /** *The Amazon Web Services Marketplace product codes for allowed images.
*Length: 1-25 characters
*Valid characters: Letters (A–Z, a–z) and numbers (0–9)
Maximum: 50 values
* @public */ MarketplaceProductCodes?: string[] | undefined; /** *The names of allowed images. Names can include wildcards (? and
* *).
Length: 1–128 characters. With ?, the minimum is 3 characters.
Valid characters:
*Letters: A–Z, a–z
*
Numbers: 0–9
*
Special characters: ( ) [ ] . / - ' @ _ * ?
*
Spaces
*Maximum: 50 values
* @public */ ImageNames?: string[] | undefined; /** *The maximum period since deprecation for allowed images.
* @public */ DeprecationTimeCondition?: DeprecationTimeCondition | undefined; /** *The maximum age for allowed images.
* @public */ CreationDateCondition?: CreationDateCondition | undefined; } /** * @public */ export interface GetAllowedImagesSettingsResult { /** *The current state of the Allowed AMIs setting at the account level in the specified Amazon Web Services * Region.
*Possible values:
*
* disabled: All AMIs are allowed.
* audit-mode: All AMIs are allowed, but the ImageAllowed field
* is set to true if the AMI would be allowed with the current list of criteria
* if allowed AMIs was enabled.
* enabled: Only AMIs matching the image criteria are discoverable and
* available for use.
The list of criteria for images that are discoverable and usable in the account in the * specified Amazon Web Services Region.
* @public */ ImageCriteria?: ImageCriterion[] | undefined; /** *The entity that manages the Allowed AMIs settings. Possible values include:
*
* account - The Allowed AMIs settings is managed by the account.
* declarative-policy - The Allowed AMIs settings is managed by a
* declarative policy and can't be modified by the account.
The ARN of the ACM certificate for which to view the associated IAM roles, encryption keys, and Amazon * S3 object information.
* @public */ CertificateArn: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
Information about the associated IAM roles.
* @public */ export interface AssociatedRole { /** *The ARN of the associated IAM role.
* @public */ AssociatedRoleArn?: string | undefined; /** *The name of the Amazon S3 bucket in which the Amazon S3 object is stored.
* @public */ CertificateS3BucketName?: string | undefined; /** *The key of the Amazon S3 object where the certificate, certificate chain, and encrypted private key bundle
* are stored. The object key is formatted as follows: role_arn/certificate_arn.
*
The ID of the KMS key used to encrypt the private key.
* @public */ EncryptionKmsKeyId?: string | undefined; } /** * @public */ export interface GetAssociatedEnclaveCertificateIamRolesResult { /** *Information about the associated IAM roles.
* @public */ AssociatedRoles?: AssociatedRole[] | undefined; } /** * @public */ export interface GetAssociatedIpv6PoolCidrsRequest { /** *The ID of the IPv6 address pool.
* @public */ PoolId: string | undefined; /** *The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Describes an IPv6 CIDR block association.
* @public */ export interface Ipv6CidrAssociation { /** *The IPv6 CIDR block.
* @public */ Ipv6Cidr?: string | undefined; /** *The resource that's associated with the IPv6 CIDR block.
* @public */ AssociatedResource?: string | undefined; } /** * @public */ export interface GetAssociatedIpv6PoolCidrsResult { /** *Information about the IPv6 CIDR block associations.
* @public */ Ipv6CidrAssociations?: Ipv6CidrAssociation[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
A query used for retrieving network health data.
* @public */ export interface DataQuery { /** *A user-defined ID associated with a data query that's returned in the dataResponse identifying the query. For example, if you set the Id to MyQuery01in the query, the dataResponse identifies the query as MyQuery01.
The Region or Availability Zone that's the source for the data query. For example, us-east-1.
The Region or Availability Zone that's the target for the data query. For example, eu-north-1.
The metric used for the network performance request.
* @public */ Metric?: MetricType | undefined; /** *The metric data aggregation period, p50, between the specified startDate
* and endDate. For example, a metric of five_minutes is the median of all
* the data points gathered within those five minutes. p50 is the only supported metric.
The aggregation period used for the data query.
* @public */ Period?: PeriodType | undefined; } /** * @public */ export interface GetAwsNetworkPerformanceDataRequest { /** *A list of network performance data queries.
* @public */ DataQueries?: DataQuery[] | undefined; /** *The starting time for the performance data request. The starting time must be formatted
* as yyyy-mm-ddThh:mm:ss. For example, 2022-06-10T12:00:00.000Z.
The ending time for the performance data request. The end time must be formatted as yyyy-mm-ddThh:mm:ss. For example, 2022-06-12T12:00:00.000Z.
The maximum number of results to return with a single call.
* To retrieve the remaining results, make another call with the returned nextToken value.
The token for the next page of results.
* @public */ NextToken?: string | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request,
* and provides an error response. If you have the required permissions, the error response is DryRunOperation.
* Otherwise, it is UnauthorizedOperation.
Indicates whether the network was healthy or degraded at a particular point. The value is aggregated from the startDate to the endDate. Currently only five_minutes is supported.
The start date for the metric point. The starting date for the metric point. The starting time must be formatted
* as yyyy-mm-ddThh:mm:ss. For example, 2022-06-10T12:00:00.000Z.
The end date for the metric point. The ending time must be formatted as yyyy-mm-ddThh:mm:ss. For example, 2022-06-12T12:00:00.000Z.
The status of the metric point.
* @public */ Status?: string | undefined; } /** *The response to a DataQuery.
The ID passed in the DataQuery.
The Region or Availability Zone that's the source for the data query. For example, us-east-1.
The Region or Availability Zone that's the destination for the data query. For example, eu-west-1.
The metric used for the network performance request.
* @public */ Metric?: MetricType | undefined; /** *The statistic used for the network performance request.
* @public */ Statistic?: StatisticType | undefined; /** *The period used for the network performance request.
* @public */ Period?: PeriodType | undefined; /** *A list of MetricPoint objects.
The list of data responses.
* @public */ DataResponses?: DataResponse[] | undefined; /** *The token to use to retrieve the next page of results. This value is null when there are no more results to return.
* Checks whether you have the required permissions for the action, without actually making the request, and provides an error response.
* If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
*
* The current status of Capacity Manager. *
* @public */ CapacityManagerStatus?: CapacityManagerStatus | undefined; /** ** Indicates whether Organizations access is enabled for cross-account data aggregation. *
* @public */ OrganizationsAccess?: boolean | undefined; /** ** The number of active data export configurations for this account. This count includes all data exports regardless of their current delivery status. *
* @public */ DataExportCount?: number | undefined; /** ** The current data ingestion status. Initial ingestion may take several hours after enabling Capacity Manager. *
* @public */ IngestionStatus?: IngestionStatus | undefined; /** ** A descriptive message providing additional details about the current ingestion status. This may include error information if ingestion has * failed or progress details during initial setup. *
* @public */ IngestionStatusMessage?: string | undefined; /** ** The timestamp of the earliest data point available in Capacity Manager, in milliseconds since epoch. This indicates how far back historical data is available for queries. *
* @public */ EarliestDatapointTimestamp?: Date | undefined; /** ** The timestamp of the most recent data point ingested by Capacity Manager, in milliseconds since epoch. This indicates how current your capacity data is. *
* @public */ LatestDatapointTimestamp?: Date | undefined; } /** ** Specifies a condition for filtering capacity data based on dimension values. Used to create precise filters for metric queries and dimension lookups. *
* @public */ export interface DimensionCondition { /** ** The name of the dimension to filter by. *
* @public */ Dimension?: FilterByDimension | undefined; /** ** The comparison operator to use for the filter. *
* @public */ Comparison?: Comparison | undefined; /** ** The list of values to match against the specified dimension. For 'equals' comparison, only the first value is used. For 'in' comparison, any matching value will satisfy the condition. *
* @public */ Values?: string[] | undefined; } /** ** Represents a filter condition for Capacity Manager queries. Contains dimension-based filtering criteria used to narrow down metric data and dimension results. *
* @public */ export interface CapacityManagerCondition { /** ** The dimension-based condition that specifies how to filter the data based on dimension values. *
* @public */ DimensionCondition?: DimensionCondition | undefined; } /** * @public */ export interface GetCapacityManagerMetricDataRequest { /** ** The names of the metrics to retrieve. Maximum of 10 metrics per request. *
* @public */ MetricNames: Metric[] | undefined; /** ** The start time for the metric data query, in ISO 8601 format. The time range (end time - start time) must be a multiple of the specified period. *
* @public */ StartTime: Date | undefined; /** ** The end time for the metric data query, in ISO 8601 format. If the end time is beyond the latest ingested data, it will be automatically adjusted to the latest available data point. *
* @public */ EndTime: Date | undefined; /** ** The granularity, in seconds, of the returned data points. *
* @public */ Period: number | undefined; /** ** The dimensions by which to group the metric data. This determines how the data is aggregated and returned. *
* @public */ GroupBy?: GroupBy[] | undefined; /** ** Conditions to filter the metric data. Each filter specifies a dimension, comparison operator ('equals', 'in'), and values to match against. *
* @public */ FilterBy?: CapacityManagerCondition[] | undefined; /** ** The maximum number of data points to return. Valid range is 1 to 100,000. Use with NextToken for pagination of large result sets. *
* @public */ MaxResults?: number | undefined; /** ** The token for the next page of results. Use this value in a subsequent call to retrieve additional data points. *
* @public */ NextToken?: string | undefined; /** *
* Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have
* the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
*
* A key-value pair representing a tag associated with a capacity resource in Capacity Manager. *
* @public */ export interface CapacityManagerTagDimension { /** ** The tag key. *
* @public */ Key?: string | undefined; /** ** The tag value. *
* @public */ Value?: string | undefined; } /** ** Represents dimension values for capacity metrics, including resource identifiers, geographic information, and reservation details used for grouping and filtering capacity data. *
* @public */ export interface CapacityManagerDimension { /** ** The Amazon Web Services Region where the capacity resource is located. *
* @public */ ResourceRegion?: string | undefined; /** ** The unique identifier of the Availability Zone where the capacity resource is located. *
* @public */ AvailabilityZoneId?: string | undefined; /** ** The Amazon Web Services account ID that owns the capacity resource. *
* @public */ AccountId?: string | undefined; /** ** The name of the Amazon Web Services account that owns the capacity resource. This dimension is only available when Organizations access is enabled for Capacity Manager. *
* @public */ AccountName?: string | undefined; /** ** The EC2 instance family of the capacity resource. *
* @public */ InstanceFamily?: string | undefined; /** ** The specific EC2 instance type of the capacity resource. *
* @public */ InstanceType?: string | undefined; /** ** The platform or operating system of the instance. *
* @public */ InstancePlatform?: string | undefined; /** ** The Amazon Resource Name (ARN) of the capacity reservation. This provides a unique identifier that can be used across Amazon Web Services services to reference the specific reservation. *
* @public */ ReservationArn?: string | undefined; /** ** The unique identifier of the capacity reservation. *
* @public */ ReservationId?: string | undefined; /** ** The type of capacity reservation. *
* @public */ ReservationType?: ReservationType | undefined; /** ** The timestamp when the capacity reservation was originally created, in milliseconds since epoch. This differs from the start timestamp as * reservations can be created before they become active. *
* @public */ ReservationCreateTimestamp?: Date | undefined; /** ** The timestamp when the capacity reservation becomes active and available for use, in milliseconds since epoch. This is when the reservation begins providing capacity. *
* @public */ ReservationStartTimestamp?: Date | undefined; /** ** The timestamp when the capacity reservation expires and is no longer available, in milliseconds since epoch. After this time, the reservation will not provide any capacity. *
* @public */ ReservationEndTimestamp?: Date | undefined; /** ** The type of end date for the capacity reservation. This indicates whether the reservation has a fixed end date, is open-ended, or follows a specific termination pattern. *
* @public */ ReservationEndDateType?: ReservationEndDateType | undefined; /** ** The tenancy of the EC2 instances associated with this capacity dimension. Valid values are 'default' for shared tenancy, 'dedicated' for dedicated instances, or 'host' for dedicated hosts. *
* @public */ Tenancy?: CapacityTenancy | undefined; /** ** The current state of the capacity reservation. *
* @public */ ReservationState?: ReservationState | undefined; /** ** The instance matching criteria for the capacity reservation, determining how instances are matched to the reservation. *
* @public */ ReservationInstanceMatchCriteria?: string | undefined; /** ** The Amazon Web Services account ID that is financially responsible for unused capacity reservation costs. *
* @public */ ReservationUnusedFinancialOwner?: string | undefined; /** *
* The tags associated with the capacity resource, represented as key-value pairs. Only tags that have been activated for monitoring via UpdateCapacityManagerMonitoredTagKeys are included.
*
* Represents a single metric value with its associated statistic, such as the sum or average of unused capacity hours. *
* @public */ export interface MetricValue { /** ** The name of the metric. *
* @public */ Metric?: Metric | undefined; /** ** The numerical value of the metric for the specified statistic and time period. *
* @public */ Value?: number | undefined; } /** ** Contains a single data point from a capacity metrics query, including the dimension values, timestamp, and metric values for that specific combination. *
* @public */ export interface MetricDataResult { /** ** The dimension values that identify this specific data point, such as account ID, region, and instance family. *
* @public */ Dimension?: CapacityManagerDimension | undefined; /** ** The timestamp for this data point, indicating when the capacity usage occurred. *
* @public */ Timestamp?: Date | undefined; /** ** The metric values and statistics for this data point, containing the actual capacity usage numbers. *
* @public */ MetricValues?: MetricValue[] | undefined; } /** * @public */ export interface GetCapacityManagerMetricDataResult { /** ** The metric data points returned by the query. Each result contains dimension values, timestamp, and metric values with their associated statistics. *
* @public */ MetricDataResults?: MetricDataResult[] | undefined; /** ** The token to use to retrieve the next page of results. This value is null when there are no more results to return. *
* @public */ NextToken?: string | undefined; } /** * @public */ export interface GetCapacityManagerMetricDimensionsRequest { /** ** The dimensions to group by when retrieving available dimension values. This determines which dimension combinations are returned. Required parameter. *
* @public */ GroupBy: GroupBy[] | undefined; /** ** Conditions to filter which dimension values are returned. Each filter specifies a dimension, comparison operator, and values to match against. *
* @public */ FilterBy?: CapacityManagerCondition[] | undefined; /** ** The start time for the dimension query, in ISO 8601 format. Only dimensions with data in this time range will be returned. *
* @public */ StartTime: Date | undefined; /** ** The end time for the dimension query, in ISO 8601 format. Only dimensions with data in this time range will be returned. *
* @public */ EndTime: Date | undefined; /** ** The metric names to use as an additional filter when retrieving dimensions. Only dimensions that have data for these * metrics will be returned. Required parameter with maximum size of 1 for v1. *
* @public */ MetricNames: Metric[] | undefined; /** ** The maximum number of dimension combinations to return. Valid range is 1 to 1000. Use with NextToken for pagination. *
* @public */ MaxResults?: number | undefined; /** ** The token for the next page of results. Use this value in a subsequent call to retrieve additional dimension values. *
* @public */ NextToken?: string | undefined; /** *
* Checks whether you have the required permissions for the action, without actually making the request, and provides
* an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
*
* The available dimension combinations that have data within the specified time range and filters. *
* @public */ MetricDimensionResults?: CapacityManagerDimension[] | undefined; /** ** The token to use to retrieve the next page of results. This value is null when there are no more results to return. *
* @public */ NextToken?: string | undefined; } /** * @public */ export interface GetCapacityManagerMonitoredTagKeysRequest { /** *
* The maximum number of results to return in a single call. To retrieve the remaining results, make another call with the returned NextToken value. If not specified, up to 1000 results are returned.
*
* The token for the next page of results. Use the value returned from a previous call to retrieve additional results. *
* @public */ NextToken?: string | undefined; /** *
* Checks whether you have the required permissions for the action, without actually making the request, and provides an error response.
* If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
*
* Describes a tag key that is being monitored by Capacity Manager, including its activation status and the earliest available data point. *
* @public */ export interface CapacityManagerMonitoredTagKey { /** ** The tag key being monitored. *
* @public */ TagKey?: string | undefined; /** *
* The current status of the monitored tag key. Valid values are activating, activated, deactivating, and suspended.
*
* A message providing additional details about the current status of the monitored tag key. *
* @public */ StatusMessage?: string | undefined; /** ** Indicates whether this tag key is provided by Capacity Manager by default, rather than being user-activated. *
* @public */ CapacityManagerProvided?: boolean | undefined; /** ** The earliest timestamp from which tag data is available for queries, in UTC ISO 8601 format. *
* @public */ EarliestDatapointTimestamp?: Date | undefined; } /** * @public */ export interface GetCapacityManagerMonitoredTagKeysResult { /** ** The list of tag keys being monitored by Capacity Manager, including their current status and metadata. *
* @public */ CapacityManagerTagKeys?: CapacityManagerMonitoredTagKey[] | undefined; /** ** The token to use to retrieve the next page of results. This value is null when there are no more results to return. *
* @public */ NextToken?: string | undefined; } /** * @public */ export interface GetCapacityReservationUsageRequest { /** *The ID of the Capacity Reservation.
* @public */ CapacityReservationId: string | undefined; /** *The token to use to retrieve the next page of results.
* @public */ NextToken?: string | undefined; /** *The maximum number of items to return for this request. To get the next page of items, make another request with the token returned in the output. For more information, * see Pagination.
* @public */ MaxResults?: number | undefined; /** *Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.