import * as cdk from "../../core"; import * as constructs from "constructs"; import * as cfn_parse from "../../core/lib/helpers-internal"; /** * Creates a new Capacity Reservation with the specified attributes. * * For more information, see [Capacity Reservations](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-capacity-reservations.html) in the *Amazon EC2 User Guide* . * * @cloudformationResource AWS::EC2::CapacityReservation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html */ export declare class CfnCapacityReservation extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggableV2 { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnCapacityReservation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnCapacityReservation; /** * Returns the Availability Zone in which the capacity is reserved. For example: `us-east-1a` . * * @cloudformationAttribute AvailabilityZone */ readonly attrAvailabilityZone: string; /** * Returns the remaining capacity, which indicates the number of instances that can be launched in the Capacity Reservation. For example: `9` . * * @cloudformationAttribute AvailableInstanceCount */ readonly attrAvailableInstanceCount: number; /** * @cloudformationAttribute CapacityAllocationSet */ readonly attrCapacityAllocationSet: cdk.IResolvable; /** * The Amazon Resource Name (ARN) of the Capacity Reservation. * * @cloudformationAttribute CapacityReservationArn */ readonly attrCapacityReservationArn: string; /** * The ID of the Capacity Reservation Fleet to which the Capacity Reservation belongs. Only valid for Capacity Reservations that were created by a Capacity Reservation Fleet. * * @cloudformationAttribute CapacityReservationFleetId */ readonly attrCapacityReservationFleetId: string; /** * @cloudformationAttribute CommitmentInfo */ readonly attrCommitmentInfo: cdk.IResolvable; /** * The date and time at which the Capacity Reservation was created. * * @cloudformationAttribute CreateDate */ readonly attrCreateDate: string; /** * The delivery method for a future-dated Capacity Reservation. `incremental` indicates that the requested capacity is delivered in addition to any running instances and reserved capacity that you have in your account at the requested date and time. * * @cloudformationAttribute DeliveryPreference */ readonly attrDeliveryPreference: string; /** * The ID of the Capacity Reservation. * * @cloudformationAttribute Id */ readonly attrId: string; /** * Returns the type of instance for which the capacity is reserved. For example: `m4.large` . * * @cloudformationAttribute InstanceType */ readonly attrInstanceType: string; /** * The ID of the AWS account that owns the Capacity Reservation. * * @cloudformationAttribute OwnerId */ readonly attrOwnerId: string; /** * The type of Capacity Reservation. * * @cloudformationAttribute ReservationType */ readonly attrReservationType: string; /** * The date and time at which the Capacity Reservation was started. * * @cloudformationAttribute StartDate */ readonly attrStartDate: string; /** * The current state of the Capacity Reservation. A Capacity Reservation can be in one of the following states: * * - `active` - The capacity is available for use. * - `expired` - The Capacity Reservation expired automatically at the date and time specified in your reservation request. The reserved capacity is no longer available for your use. * - `cancelled` - The Capacity Reservation was canceled. The reserved capacity is no longer available for your use. * - `pending` - The Capacity Reservation request was successful but the capacity provisioning is still pending. * - `failed` - The Capacity Reservation request has failed. A request can fail due to request parameters that are not valid, capacity constraints, or instance limit constraints. You can view a failed request for 60 minutes. * - `scheduled` - ( *Future-dated Capacity Reservations* ) The future-dated Capacity Reservation request was approved and the Capacity Reservation is scheduled for delivery on the requested start date. * - `payment-pending` - ( *Capacity Blocks* ) The upfront payment has not been processed yet. * - `payment-failed` - ( *Capacity Blocks* ) The upfront payment was not processed in the 12-hour time frame. Your Capacity Block was released. * - `assessing` - ( *Future-dated Capacity Reservations* ) Amazon EC2 is assessing your request for a future-dated Capacity Reservation. * - `delayed` - ( *Future-dated Capacity Reservations* ) Amazon EC2 encountered a delay in provisioning the requested future-dated Capacity Reservation. Amazon EC2 is unable to deliver the requested capacity by the requested start date and time. * - `unsupported` - ( *Future-dated Capacity Reservations* ) Amazon EC2 can't support the future-dated Capacity Reservation request due to capacity constraints. You can view unsupported requests for 30 days. The Capacity Reservation will not be delivered. * * @cloudformationAttribute State */ readonly attrState: string; /** * Returns the tenancy of the Capacity Reservation. For example: `dedicated` . * * @cloudformationAttribute Tenancy */ readonly attrTenancy: string; /** * Returns the total number of instances for which the Capacity Reservation reserves capacity. For example: `15` . * * @cloudformationAttribute TotalInstanceCount */ readonly attrTotalInstanceCount: number; /** * The Availability Zone in which to create the Capacity Reservation. */ availabilityZone?: string; /** * The Availability Zone ID of the Capacity Reservation. */ availabilityZoneId?: string; /** * Tag Manager which manages the tags for this resource */ readonly cdkTagManager: cdk.TagManager; /** * Indicates whether the Capacity Reservation supports EBS-optimized instances. */ ebsOptimized?: boolean | cdk.IResolvable; /** * The date and time at which the Capacity Reservation expires. */ endDate?: string; /** * Indicates the way in which the Capacity Reservation ends. */ endDateType?: string; /** * *Deprecated.*. */ ephemeralStorage?: boolean | cdk.IResolvable; /** * The number of instances for which to reserve capacity. */ instanceCount: number; /** * Indicates the type of instance launches that the Capacity Reservation accepts. The options include:. */ instanceMatchCriteria?: string; /** * The type of operating system for which to reserve capacity. */ instancePlatform: string; /** * The instance type for which to reserve capacity. */ instanceType: string; /** * > Not supported for future-dated Capacity Reservations. */ outPostArn?: string; /** * > Not supported for future-dated Capacity Reservations. */ placementGroupArn?: string; /** * The tags to apply to the Capacity Reservation during launch. */ tagSpecifications?: Array; /** * Indicates the tenancy of the Capacity Reservation. A Capacity Reservation can have one of the following tenancy settings:. */ tenancy?: string; /** * The ID of the AWS account to which to assign billing of the unused capacity of the Capacity Reservation. */ unusedReservationBillingOwnerId?: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnCapacityReservationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnCapacityReservation { /** * An array of key-value pairs to apply to this resource. * * For more information, see [Tag](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-resource-tags.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservation-tagspecification.html */ interface TagSpecificationProperty { /** * The type of resource to tag. * * Specify `capacity-reservation` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservation-tagspecification.html#cfn-ec2-capacityreservation-tagspecification-resourcetype */ readonly resourceType?: string; /** * The tags to apply to the resource. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservation-tagspecification.html#cfn-ec2-capacityreservation-tagspecification-tags */ readonly tags?: Array; } /** * Information about instance capacity usage for a Capacity Reservation. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservation-capacityallocation.html */ interface CapacityAllocationProperty { /** * The usage type. * * `used` indicates that the instance capacity is in use by instances that are running in the Capacity Reservation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservation-capacityallocation.html#cfn-ec2-capacityreservation-capacityallocation-allocationtype */ readonly allocationType?: string; /** * The amount of instance capacity associated with the usage. * * For example a value of `4` indicates that instance capacity for 4 instances is currently in use. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservation-capacityallocation.html#cfn-ec2-capacityreservation-capacityallocation-count */ readonly count?: number; } /** * Information about your commitment for a future-dated Capacity Reservation. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservation-commitmentinfo.html */ interface CommitmentInfoProperty { /** * The date and time at which the commitment duration expires, in the ISO8601 format in the UTC time zone ( `YYYY-MM-DDThh:mm:ss.sssZ` ). You can't decrease the instance count or cancel the Capacity Reservation before this date and time. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservation-commitmentinfo.html#cfn-ec2-capacityreservation-commitmentinfo-commitmentenddate */ readonly commitmentEndDate?: string; /** * The instance capacity that you committed to when you requested the future-dated Capacity Reservation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservation-commitmentinfo.html#cfn-ec2-capacityreservation-commitmentinfo-committedinstancecount */ readonly committedInstanceCount?: number; } } /** * Properties for defining a `CfnCapacityReservation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html */ export interface CfnCapacityReservationProps { /** * The Availability Zone in which to create the Capacity Reservation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html#cfn-ec2-capacityreservation-availabilityzone */ readonly availabilityZone?: string; /** * The Availability Zone ID of the Capacity Reservation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html#cfn-ec2-capacityreservation-availabilityzoneid */ readonly availabilityZoneId?: string; /** * Indicates whether the Capacity Reservation supports EBS-optimized instances. * * This optimization provides dedicated throughput to Amazon EBS and an optimized configuration stack to provide optimal I/O performance. This optimization isn't available with all instance types. Additional usage charges apply when using an EBS- optimized instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html#cfn-ec2-capacityreservation-ebsoptimized */ readonly ebsOptimized?: boolean | cdk.IResolvable; /** * The date and time at which the Capacity Reservation expires. * * When a Capacity Reservation expires, the reserved capacity is released and you can no longer launch instances into it. The Capacity Reservation's state changes to `expired` when it reaches its end date and time. * * You must provide an `EndDate` value if `EndDateType` is `limited` . Omit `EndDate` if `EndDateType` is `unlimited` . * * If the `EndDateType` is `limited` , the Capacity Reservation is cancelled within an hour from the specified time. For example, if you specify 5/31/2019, 13:30:55, the Capacity Reservation is guaranteed to end between 13:30:55 and 14:30:55 on 5/31/2019. * * If you are requesting a future-dated Capacity Reservation, you can't specify an end date and time that is within the commitment duration. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html#cfn-ec2-capacityreservation-enddate */ readonly endDate?: string; /** * Indicates the way in which the Capacity Reservation ends. * * A Capacity Reservation can have one of the following end types: * * - `unlimited` - The Capacity Reservation remains active until you explicitly cancel it. Do not provide an `EndDate` if the `EndDateType` is `unlimited` . * - `limited` - The Capacity Reservation expires automatically at a specified date and time. You must provide an `EndDate` value if the `EndDateType` value is `limited` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html#cfn-ec2-capacityreservation-enddatetype */ readonly endDateType?: string; /** * *Deprecated.*. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html#cfn-ec2-capacityreservation-ephemeralstorage */ readonly ephemeralStorage?: boolean | cdk.IResolvable; /** * The number of instances for which to reserve capacity. * * > You can request future-dated Capacity Reservations for an instance count with a minimum of 100 vCPUs. For example, if you request a future-dated Capacity Reservation for `m5.xlarge` instances, you must request at least 25 instances ( *25 * m5.xlarge = 100 vCPUs* ). * * Valid range: 1 - 1000 * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html#cfn-ec2-capacityreservation-instancecount */ readonly instanceCount: number; /** * Indicates the type of instance launches that the Capacity Reservation accepts. The options include:. * * - `open` - The Capacity Reservation automatically matches all instances that have matching attributes (instance type, platform, and Availability Zone). Instances that have matching attributes run in the Capacity Reservation automatically without specifying any additional parameters. * - `targeted` - The Capacity Reservation only accepts instances that have matching attributes (instance type, platform, and Availability Zone), and explicitly target the Capacity Reservation. This ensures that only permitted instances can use the reserved capacity. * * > If you are requesting a future-dated Capacity Reservation, you must specify `targeted` . * * Default: `open` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html#cfn-ec2-capacityreservation-instancematchcriteria */ readonly instanceMatchCriteria?: string; /** * The type of operating system for which to reserve capacity. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html#cfn-ec2-capacityreservation-instanceplatform */ readonly instancePlatform: string; /** * The instance type for which to reserve capacity. * * > You can request future-dated Capacity Reservations for instance types in the C, M, R, I, and T instance families only. * * For more information, see [Instance types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html#cfn-ec2-capacityreservation-instancetype */ readonly instanceType: string; /** * > Not supported for future-dated Capacity Reservations. * * The Amazon Resource Name (ARN) of the Outpost on which to create the Capacity Reservation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html#cfn-ec2-capacityreservation-outpostarn */ readonly outPostArn?: string; /** * > Not supported for future-dated Capacity Reservations. * * The Amazon Resource Name (ARN) of the cluster placement group in which to create the Capacity Reservation. For more information, see [Capacity Reservations for cluster placement groups](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/cr-cpg.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html#cfn-ec2-capacityreservation-placementgrouparn */ readonly placementGroupArn?: string; /** * The tags to apply to the Capacity Reservation during launch. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html#cfn-ec2-capacityreservation-tagspecifications */ readonly tagSpecifications?: Array; /** * Indicates the tenancy of the Capacity Reservation. A Capacity Reservation can have one of the following tenancy settings:. * * - `default` - The Capacity Reservation is created on hardware that is shared with other AWS accounts . * - `dedicated` - The Capacity Reservation is created on single-tenant hardware that is dedicated to a single AWS account . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html#cfn-ec2-capacityreservation-tenancy */ readonly tenancy?: string; /** * The ID of the AWS account to which to assign billing of the unused capacity of the Capacity Reservation. * * A request will be sent to the specified account. That account must accept the request for the billing to be assigned to their account. For more information, see [Billing assignment for shared Amazon EC2 Capacity Reservations](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/assign-billing.html) . * * You can assign billing only for shared Capacity Reservations. To share a Capacity Reservation, you must add it to a resource share. For more information, see [AWS::RAM::ResourceShare](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ram-resourceshare.html) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservation.html#cfn-ec2-capacityreservation-unusedreservationbillingownerid */ readonly unusedReservationBillingOwnerId?: string; } /** * Creates a new Capacity Reservation Fleet with the specified attributes. * * For more information, see [Capacity Reservation Fleets](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/cr-fleets.html) in the *Amazon EC2 User Guide* . * * @cloudformationResource AWS::EC2::CapacityReservationFleet * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservationfleet.html */ export declare class CfnCapacityReservationFleet extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnCapacityReservationFleet from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnCapacityReservationFleet; /** * The ID of the Capacity Reservation Fleet. * * @cloudformationAttribute CapacityReservationFleetId */ readonly attrCapacityReservationFleetId: string; /** * The strategy used by the Capacity Reservation Fleet to determine which of the specified instance types to use. */ allocationStrategy?: string; /** * The date and time at which the Capacity Reservation Fleet expires. */ endDate?: string; /** * Indicates the type of instance launches that the Capacity Reservation Fleet accepts. */ instanceMatchCriteria?: string; /** * Information about the instance types for which to reserve the capacity. */ instanceTypeSpecifications?: Array | cdk.IResolvable; /** * Used to add an end date to a Capacity Reservation Fleet that has no end date and time. */ noRemoveEndDate?: boolean | cdk.IResolvable; /** * Used to remove an end date from a Capacity Reservation Fleet that is configured to end automatically at a specific date and time. */ removeEndDate?: boolean | cdk.IResolvable; /** * The tags to assign to the Capacity Reservation Fleet. */ tagSpecifications?: Array | cdk.IResolvable; /** * Indicates the tenancy of the Capacity Reservation Fleet. */ tenancy?: string; /** * The total number of capacity units to be reserved by the Capacity Reservation Fleet. */ totalTargetCapacity?: number; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnCapacityReservationFleetProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnCapacityReservationFleet { /** * The tags to apply to a resource when the resource is being created. * * When you specify a tag, you must specify the resource type to tag, otherwise the request will fail. * * > The `Valid Values` lists all the resource types that can be tagged. However, the action you're using might not support tagging all of these resource types. If you try to tag a resource type that is unsupported for the action you're using, you'll get an error. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservationfleet-tagspecification.html */ interface TagSpecificationProperty { /** * The type of resource to tag on creation. Specify `capacity-reservation-fleet` . * * To tag a resource after it has been created, see [CreateTags](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateTags.html) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservationfleet-tagspecification.html#cfn-ec2-capacityreservationfleet-tagspecification-resourcetype */ readonly resourceType?: string; /** * The tags to apply to the resource. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservationfleet-tagspecification.html#cfn-ec2-capacityreservationfleet-tagspecification-tags */ readonly tags?: Array; } /** * Specifies information about an instance type to use in a Capacity Reservation Fleet. * * `InstanceTypeSpecification` is a property of the [AWS::EC2::CapacityReservationFleet](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservationfleet.html) resource. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservationfleet-instancetypespecification.html */ interface InstanceTypeSpecificationProperty { /** * The Availability Zone in which the Capacity Reservation Fleet reserves the capacity. * * A Capacity Reservation Fleet can't span Availability Zones. All instance type specifications that you specify for the Fleet must use the same Availability Zone. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservationfleet-instancetypespecification.html#cfn-ec2-capacityreservationfleet-instancetypespecification-availabilityzone */ readonly availabilityZone?: string; /** * The ID of the Availability Zone in which the Capacity Reservation Fleet reserves the capacity. * * A Capacity Reservation Fleet can't span Availability Zones. All instance type specifications that you specify for the Fleet must use the same Availability Zone. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservationfleet-instancetypespecification.html#cfn-ec2-capacityreservationfleet-instancetypespecification-availabilityzoneid */ readonly availabilityZoneId?: string; /** * Indicates whether the Capacity Reservation Fleet supports EBS-optimized instances types. * * This optimization provides dedicated throughput to Amazon EBS and an optimized configuration stack to provide optimal I/O performance. This optimization isn't available with all instance types. Additional usage charges apply when using EBS-optimized instance types. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservationfleet-instancetypespecification.html#cfn-ec2-capacityreservationfleet-instancetypespecification-ebsoptimized */ readonly ebsOptimized?: boolean | cdk.IResolvable; /** * The type of operating system for which the Capacity Reservation Fleet reserves capacity. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservationfleet-instancetypespecification.html#cfn-ec2-capacityreservationfleet-instancetypespecification-instanceplatform */ readonly instancePlatform?: string; /** * The instance type for which the Capacity Reservation Fleet reserves capacity. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservationfleet-instancetypespecification.html#cfn-ec2-capacityreservationfleet-instancetypespecification-instancetype */ readonly instanceType?: string; /** * The priority to assign to the instance type. * * This value is used to determine which of the instance types specified for the Fleet should be prioritized for use. A lower value indicates a high priority. For more information, see [Instance type priority](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/crfleet-concepts.html#instance-priority) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservationfleet-instancetypespecification.html#cfn-ec2-capacityreservationfleet-instancetypespecification-priority */ readonly priority?: number; /** * The number of capacity units provided by the specified instance type. * * This value, together with the total target capacity that you specify for the Fleet determine the number of instances for which the Fleet reserves capacity. Both values are based on units that make sense for your workload. For more information, see [Total target capacity](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/crfleet-concepts.html#target-capacity) in the Amazon EC2 User Guide. * * Valid Range: Minimum value of `0.001` . Maximum value of `99.999` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-capacityreservationfleet-instancetypespecification.html#cfn-ec2-capacityreservationfleet-instancetypespecification-weight */ readonly weight?: number; } } /** * Properties for defining a `CfnCapacityReservationFleet` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservationfleet.html */ export interface CfnCapacityReservationFleetProps { /** * The strategy used by the Capacity Reservation Fleet to determine which of the specified instance types to use. * * Currently, only the `prioritized` allocation strategy is supported. For more information, see [Allocation strategy](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/crfleet-concepts.html#allocation-strategy) in the *Amazon EC2 User Guide* . * * Valid values: `prioritized` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservationfleet.html#cfn-ec2-capacityreservationfleet-allocationstrategy */ readonly allocationStrategy?: string; /** * The date and time at which the Capacity Reservation Fleet expires. * * When the Capacity Reservation Fleet expires, its state changes to `expired` and all of the Capacity Reservations in the Fleet expire. * * The Capacity Reservation Fleet expires within an hour after the specified time. For example, if you specify `5/31/2019` , `13:30:55` , the Capacity Reservation Fleet is guaranteed to expire between `13:30:55` and `14:30:55` on `5/31/2019` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservationfleet.html#cfn-ec2-capacityreservationfleet-enddate */ readonly endDate?: string; /** * Indicates the type of instance launches that the Capacity Reservation Fleet accepts. * * All Capacity Reservations in the Fleet inherit this instance matching criteria. * * Currently, Capacity Reservation Fleets support `open` instance matching criteria only. This means that instances that have matching attributes (instance type, platform, and Availability Zone) run in the Capacity Reservations automatically. Instances do not need to explicitly target a Capacity Reservation Fleet to use its reserved capacity. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservationfleet.html#cfn-ec2-capacityreservationfleet-instancematchcriteria */ readonly instanceMatchCriteria?: string; /** * Information about the instance types for which to reserve the capacity. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservationfleet.html#cfn-ec2-capacityreservationfleet-instancetypespecifications */ readonly instanceTypeSpecifications?: Array | cdk.IResolvable; /** * Used to add an end date to a Capacity Reservation Fleet that has no end date and time. * * To add an end date to a Capacity Reservation Fleet, specify `true` for this paramater and specify the end date and time (in UTC time format) for the *EndDate* parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservationfleet.html#cfn-ec2-capacityreservationfleet-noremoveenddate */ readonly noRemoveEndDate?: boolean | cdk.IResolvable; /** * Used to remove an end date from a Capacity Reservation Fleet that is configured to end automatically at a specific date and time. * * To remove the end date from a Capacity Reservation Fleet, specify `true` for this paramater and omit the *EndDate* parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservationfleet.html#cfn-ec2-capacityreservationfleet-removeenddate */ readonly removeEndDate?: boolean | cdk.IResolvable; /** * The tags to assign to the Capacity Reservation Fleet. * * The tags are automatically assigned to the Capacity Reservations in the Fleet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservationfleet.html#cfn-ec2-capacityreservationfleet-tagspecifications */ readonly tagSpecifications?: Array | cdk.IResolvable; /** * Indicates the tenancy of the Capacity Reservation Fleet. * * All Capacity Reservations in the Fleet inherit this tenancy. The Capacity Reservation Fleet can have one of the following tenancy settings: * * - `default` - The Capacity Reservation Fleet is created on hardware that is shared with other AWS accounts . * - `dedicated` - The Capacity Reservations are created on single-tenant hardware that is dedicated to a single AWS account . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservationfleet.html#cfn-ec2-capacityreservationfleet-tenancy */ readonly tenancy?: string; /** * The total number of capacity units to be reserved by the Capacity Reservation Fleet. * * This value, together with the instance type weights that you assign to each instance type used by the Fleet determine the number of instances for which the Fleet reserves capacity. Both values are based on units that make sense for your workload. For more information, see [Total target capacity](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/crfleet-concepts.html#target-capacity) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-capacityreservationfleet.html#cfn-ec2-capacityreservationfleet-totaltargetcapacity */ readonly totalTargetCapacity?: number; } /** * Creates a carrier gateway. * * For more information about carrier gateways, see [Carrier gateways](https://docs.aws.amazon.com/wavelength/latest/developerguide/how-wavelengths-work.html#wavelength-carrier-gateway) in the *AWS Wavelength Developer Guide* . * * @cloudformationResource AWS::EC2::CarrierGateway * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-carriergateway.html */ export declare class CfnCarrierGateway extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnCarrierGateway from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnCarrierGateway; /** * The ID of the carrier gateway. * * @cloudformationAttribute CarrierGatewayId */ readonly attrCarrierGatewayId: string; /** * The AWS account ID of the owner of the carrier gateway. * * @cloudformationAttribute OwnerId */ readonly attrOwnerId: string; /** * The state of the carrier gateway. * * @cloudformationAttribute State */ readonly attrState: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags assigned to the carrier gateway. */ tagsRaw?: Array; /** * The ID of the VPC associated with the carrier gateway. */ vpcId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnCarrierGatewayProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnCarrierGateway` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-carriergateway.html */ export interface CfnCarrierGatewayProps { /** * The tags assigned to the carrier gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-carriergateway.html#cfn-ec2-carriergateway-tags */ readonly tags?: Array; /** * The ID of the VPC associated with the carrier gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-carriergateway.html#cfn-ec2-carriergateway-vpcid */ readonly vpcId: string; } /** * Specifies an ingress authorization rule to add to a Client VPN endpoint. * * Ingress authorization rules act as firewall rules that grant access to networks. You must configure ingress authorization rules to enable clients to access resources in AWS or on-premises networks. * * @cloudformationResource AWS::EC2::ClientVpnAuthorizationRule * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnauthorizationrule.html */ export declare class CfnClientVpnAuthorizationRule extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnClientVpnAuthorizationRule from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnClientVpnAuthorizationRule; /** * @cloudformationAttribute Id */ readonly attrId: string; /** * The ID of the group to grant access to, for example, the Active Directory group or identity provider (IdP) group. */ accessGroupId?: string; /** * Indicates whether to grant access to all clients. */ authorizeAllGroups?: boolean | cdk.IResolvable; /** * The ID of the Client VPN endpoint. */ clientVpnEndpointId: string; /** * A brief description of the authorization rule. */ description?: string; /** * The IPv4 address range, in CIDR notation, of the network for which access is being authorized. */ targetNetworkCidr: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnClientVpnAuthorizationRuleProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnClientVpnAuthorizationRule` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnauthorizationrule.html */ export interface CfnClientVpnAuthorizationRuleProps { /** * The ID of the group to grant access to, for example, the Active Directory group or identity provider (IdP) group. * * Required if `AuthorizeAllGroups` is `false` or not specified. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnauthorizationrule.html#cfn-ec2-clientvpnauthorizationrule-accessgroupid */ readonly accessGroupId?: string; /** * Indicates whether to grant access to all clients. * * Specify `true` to grant all clients who successfully establish a VPN connection access to the network. Must be set to `true` if `AccessGroupId` is not specified. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnauthorizationrule.html#cfn-ec2-clientvpnauthorizationrule-authorizeallgroups */ readonly authorizeAllGroups?: boolean | cdk.IResolvable; /** * The ID of the Client VPN endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnauthorizationrule.html#cfn-ec2-clientvpnauthorizationrule-clientvpnendpointid */ readonly clientVpnEndpointId: string; /** * A brief description of the authorization rule. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnauthorizationrule.html#cfn-ec2-clientvpnauthorizationrule-description */ readonly description?: string; /** * The IPv4 address range, in CIDR notation, of the network for which access is being authorized. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnauthorizationrule.html#cfn-ec2-clientvpnauthorizationrule-targetnetworkcidr */ readonly targetNetworkCidr: string; } /** * Specifies a Client VPN endpoint. * * A Client VPN endpoint is the resource you create and configure to enable and manage client VPN sessions. It is the destination endpoint at which all client VPN sessions are terminated. * * @cloudformationResource AWS::EC2::ClientVpnEndpoint * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html */ export declare class CfnClientVpnEndpoint extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnClientVpnEndpoint from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnClientVpnEndpoint; /** * @cloudformationAttribute Id */ readonly attrId: string; /** * Information about the authentication method to be used to authenticate clients. */ authenticationOptions: Array | cdk.IResolvable; /** * The IPv4 address range, in CIDR notation, from which to assign client IP addresses. */ clientCidrBlock: string; /** * The options for managing connection authorization for new client connections. */ clientConnectOptions?: CfnClientVpnEndpoint.ClientConnectOptionsProperty | cdk.IResolvable; /** * Options for enabling a customizable text banner that will be displayed on AWS provided clients when a VPN session is established. */ clientLoginBannerOptions?: CfnClientVpnEndpoint.ClientLoginBannerOptionsProperty | cdk.IResolvable; /** * Client route enforcement is a feature of the Client VPN service that helps enforce administrator defined routes on devices connected through the VPN. */ clientRouteEnforcementOptions?: CfnClientVpnEndpoint.ClientRouteEnforcementOptionsProperty | cdk.IResolvable; /** * Information about the client connection logging options. */ connectionLogOptions: CfnClientVpnEndpoint.ConnectionLogOptionsProperty | cdk.IResolvable; /** * A brief description of the Client VPN endpoint. */ description?: string; /** * Indicates whether the client VPN session is disconnected after the maximum `sessionTimeoutHours` is reached. */ disconnectOnSessionTimeout?: boolean | cdk.IResolvable; /** * Information about the DNS servers to be used for DNS resolution. */ dnsServers?: Array; /** * The IDs of one or more security groups to apply to the target network. */ securityGroupIds?: Array; /** * Specify whether to enable the self-service portal for the Client VPN endpoint. */ selfServicePortal?: string; /** * The ARN of the server certificate. */ serverCertificateArn: string; /** * The maximum VPN session duration time in hours. */ sessionTimeoutHours?: number; /** * Indicates whether split-tunnel is enabled on the AWS Client VPN endpoint. */ splitTunnel?: boolean | cdk.IResolvable; /** * The tags to apply to the Client VPN endpoint during creation. */ tagSpecifications?: Array | cdk.IResolvable; /** * The transport protocol to be used by the VPN session. */ transportProtocol?: string; /** * The ID of the VPC to associate with the Client VPN endpoint. */ vpcId?: string; /** * The port number to assign to the Client VPN endpoint for TCP and UDP traffic. */ vpnPort?: number; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnClientVpnEndpointProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnClientVpnEndpoint { /** * Indicates whether client connect options are enabled. * * The default is `false` (not enabled). * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-clientconnectoptions.html */ interface ClientConnectOptionsProperty { /** * Indicates whether client connect options are enabled. * * The default is `false` (not enabled). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-clientconnectoptions.html#cfn-ec2-clientvpnendpoint-clientconnectoptions-enabled */ readonly enabled: boolean | cdk.IResolvable; /** * The Amazon Resource Name (ARN) of the AWS Lambda function used for connection authorization. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-clientconnectoptions.html#cfn-ec2-clientvpnendpoint-clientconnectoptions-lambdafunctionarn */ readonly lambdaFunctionArn?: string; } /** * Specifies the tags to apply to the Client VPN endpoint. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-tagspecification.html */ interface TagSpecificationProperty { /** * The type of resource to tag. * * To tag a Client VPN endpoint, `ResourceType` must be `client-vpn-endpoint` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-tagspecification.html#cfn-ec2-clientvpnendpoint-tagspecification-resourcetype */ readonly resourceType: string; /** * The tags to apply to the resource. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-tagspecification.html#cfn-ec2-clientvpnendpoint-tagspecification-tags */ readonly tags: Array; } /** * Describes the authentication method to be used by a Client VPN endpoint. * * For more information, see [Authentication](https://docs.aws.amazon.com/vpn/latest/clientvpn-admin/authentication-authrization.html#client-authentication) in the *AWS Client VPN Administrator Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-clientauthenticationrequest.html */ interface ClientAuthenticationRequestProperty { /** * Information about the Active Directory to be used, if applicable. * * You must provide this information if *Type* is `directory-service-authentication` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-clientauthenticationrequest.html#cfn-ec2-clientvpnendpoint-clientauthenticationrequest-activedirectory */ readonly activeDirectory?: CfnClientVpnEndpoint.DirectoryServiceAuthenticationRequestProperty | cdk.IResolvable; /** * Information about the IAM SAML identity provider, if applicable. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-clientauthenticationrequest.html#cfn-ec2-clientvpnendpoint-clientauthenticationrequest-federatedauthentication */ readonly federatedAuthentication?: CfnClientVpnEndpoint.FederatedAuthenticationRequestProperty | cdk.IResolvable; /** * Information about the authentication certificates to be used, if applicable. * * You must provide this information if *Type* is `certificate-authentication` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-clientauthenticationrequest.html#cfn-ec2-clientvpnendpoint-clientauthenticationrequest-mutualauthentication */ readonly mutualAuthentication?: CfnClientVpnEndpoint.CertificateAuthenticationRequestProperty | cdk.IResolvable; /** * The type of client authentication to be used. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-clientauthenticationrequest.html#cfn-ec2-clientvpnendpoint-clientauthenticationrequest-type */ readonly type: string; } /** * Information about the client certificate to be used for authentication. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-certificateauthenticationrequest.html */ interface CertificateAuthenticationRequestProperty { /** * The ARN of the client certificate. * * The certificate must be signed by a certificate authority (CA) and it must be provisioned in AWS Certificate Manager (ACM). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-certificateauthenticationrequest.html#cfn-ec2-clientvpnendpoint-certificateauthenticationrequest-clientrootcertificatechainarn */ readonly clientRootCertificateChainArn: string; } /** * The IAM SAML identity provider used for federated authentication. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-federatedauthenticationrequest.html */ interface FederatedAuthenticationRequestProperty { /** * The Amazon Resource Name (ARN) of the IAM SAML identity provider. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-federatedauthenticationrequest.html#cfn-ec2-clientvpnendpoint-federatedauthenticationrequest-samlproviderarn */ readonly samlProviderArn: string; /** * The Amazon Resource Name (ARN) of the IAM SAML identity provider for the self-service portal. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-federatedauthenticationrequest.html#cfn-ec2-clientvpnendpoint-federatedauthenticationrequest-selfservicesamlproviderarn */ readonly selfServiceSamlProviderArn?: string; } /** * Describes the Active Directory to be used for client authentication. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-directoryserviceauthenticationrequest.html */ interface DirectoryServiceAuthenticationRequestProperty { /** * The ID of the Active Directory to be used for authentication. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-directoryserviceauthenticationrequest.html#cfn-ec2-clientvpnendpoint-directoryserviceauthenticationrequest-directoryid */ readonly directoryId: string; } /** * Describes the client connection logging options for the Client VPN endpoint. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-connectionlogoptions.html */ interface ConnectionLogOptionsProperty { /** * The name of the CloudWatch Logs log group. * * Required if connection logging is enabled. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-connectionlogoptions.html#cfn-ec2-clientvpnendpoint-connectionlogoptions-cloudwatchloggroup */ readonly cloudwatchLogGroup?: string; /** * The name of the CloudWatch Logs log stream to which the connection data is published. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-connectionlogoptions.html#cfn-ec2-clientvpnendpoint-connectionlogoptions-cloudwatchlogstream */ readonly cloudwatchLogStream?: string; /** * Indicates whether connection logging is enabled. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-connectionlogoptions.html#cfn-ec2-clientvpnendpoint-connectionlogoptions-enabled */ readonly enabled: boolean | cdk.IResolvable; } /** * Options for enabling a customizable text banner that will be displayed on AWS provided clients when a VPN session is established. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-clientloginbanneroptions.html */ interface ClientLoginBannerOptionsProperty { /** * Customizable text that will be displayed in a banner on AWS provided clients when a VPN session is established. * * UTF-8 encoded characters only. Maximum of 1400 characters. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-clientloginbanneroptions.html#cfn-ec2-clientvpnendpoint-clientloginbanneroptions-bannertext */ readonly bannerText?: string; /** * Enable or disable a customizable text banner that will be displayed on AWS provided clients when a VPN session is established. * * Valid values: `true | false` * * Default value: `false` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-clientloginbanneroptions.html#cfn-ec2-clientvpnendpoint-clientloginbanneroptions-enabled */ readonly enabled: boolean | cdk.IResolvable; } /** * Client Route Enforcement is a feature of Client VPN that helps enforce administrator defined routes on devices connected through the VPN. * * This feature helps improve your security posture by ensuring that network traffic originating from a connected client is not inadvertently sent outside the VPN tunnel. * * Client Route Enforcement works by monitoring the route table of a connected device for routing policy changes to the VPN connection. If the feature detects any VPN routing policy modifications, it will automatically force an update to the route table, reverting it back to the expected route configurations. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-clientrouteenforcementoptions.html */ interface ClientRouteEnforcementOptionsProperty { /** * Enable or disable Client Route Enforcement. * * The state can either be `true` (enabled) or `false` (disabled). The default is `false` . * * Valid values: `true | false` * * Default value: `false` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-clientrouteenforcementoptions.html#cfn-ec2-clientvpnendpoint-clientrouteenforcementoptions-enforced */ readonly enforced?: boolean | cdk.IResolvable; } } /** * Properties for defining a `CfnClientVpnEndpoint` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html */ export interface CfnClientVpnEndpointProps { /** * Information about the authentication method to be used to authenticate clients. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-authenticationoptions */ readonly authenticationOptions: Array | cdk.IResolvable; /** * The IPv4 address range, in CIDR notation, from which to assign client IP addresses. * * The address range cannot overlap with the local CIDR of the VPC in which the associated subnet is located, or the routes that you add manually. The address range cannot be changed after the Client VPN endpoint has been created. Client CIDR range must have a size of at least /22 and must not be greater than /12. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-clientcidrblock */ readonly clientCidrBlock: string; /** * The options for managing connection authorization for new client connections. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-clientconnectoptions */ readonly clientConnectOptions?: CfnClientVpnEndpoint.ClientConnectOptionsProperty | cdk.IResolvable; /** * Options for enabling a customizable text banner that will be displayed on AWS provided clients when a VPN session is established. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-clientloginbanneroptions */ readonly clientLoginBannerOptions?: CfnClientVpnEndpoint.ClientLoginBannerOptionsProperty | cdk.IResolvable; /** * Client route enforcement is a feature of the Client VPN service that helps enforce administrator defined routes on devices connected through the VPN. * * T his feature helps improve your security posture by ensuring that network traffic originating from a connected client is not inadvertently sent outside the VPN tunnel. * * Client route enforcement works by monitoring the route table of a connected device for routing policy changes to the VPN connection. If the feature detects any VPN routing policy modifications, it will automatically force an update to the route table, reverting it back to the expected route configurations. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-clientrouteenforcementoptions */ readonly clientRouteEnforcementOptions?: CfnClientVpnEndpoint.ClientRouteEnforcementOptionsProperty | cdk.IResolvable; /** * Information about the client connection logging options. * * If you enable client connection logging, data about client connections is sent to a Cloudwatch Logs log stream. The following information is logged: * * - Client connection requests * - Client connection results (successful and unsuccessful) * - Reasons for unsuccessful client connection requests * - Client connection termination time * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-connectionlogoptions */ readonly connectionLogOptions: CfnClientVpnEndpoint.ConnectionLogOptionsProperty | cdk.IResolvable; /** * A brief description of the Client VPN endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-description */ readonly description?: string; /** * Indicates whether the client VPN session is disconnected after the maximum `sessionTimeoutHours` is reached. * * If `true` , users are prompted to reconnect client VPN. If `false` , client VPN attempts to reconnect automatically. The default value is `true` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-disconnectonsessiontimeout */ readonly disconnectOnSessionTimeout?: boolean | cdk.IResolvable; /** * Information about the DNS servers to be used for DNS resolution. * * A Client VPN endpoint can have up to two DNS servers. If no DNS server is specified, the DNS address configured on the device is used for the DNS server. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-dnsservers */ readonly dnsServers?: Array; /** * The IDs of one or more security groups to apply to the target network. * * You must also specify the ID of the VPC that contains the security groups. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-securitygroupids */ readonly securityGroupIds?: Array; /** * Specify whether to enable the self-service portal for the Client VPN endpoint. * * Default Value: `enabled` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-selfserviceportal */ readonly selfServicePortal?: string; /** * The ARN of the server certificate. * * For more information, see the [AWS Certificate Manager User Guide](https://docs.aws.amazon.com/acm/latest/userguide/) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-servercertificatearn */ readonly serverCertificateArn: string; /** * The maximum VPN session duration time in hours. * * Valid values: `8 | 10 | 12 | 24` * * Default value: `24` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-sessiontimeouthours */ readonly sessionTimeoutHours?: number; /** * Indicates whether split-tunnel is enabled on the AWS Client VPN endpoint. * * By default, split-tunnel on a VPN endpoint is disabled. * * For information about split-tunnel VPN endpoints, see [Split-tunnel AWS Client VPN endpoint](https://docs.aws.amazon.com/vpn/latest/clientvpn-admin/split-tunnel-vpn.html) in the *AWS Client VPN Administrator Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-splittunnel */ readonly splitTunnel?: boolean | cdk.IResolvable; /** * The tags to apply to the Client VPN endpoint during creation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-tagspecifications */ readonly tagSpecifications?: Array | cdk.IResolvable; /** * The transport protocol to be used by the VPN session. * * Default value: `udp` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-transportprotocol */ readonly transportProtocol?: string; /** * The ID of the VPC to associate with the Client VPN endpoint. * * If no security group IDs are specified in the request, the default security group for the VPC is applied. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-vpcid */ readonly vpcId?: string; /** * The port number to assign to the Client VPN endpoint for TCP and UDP traffic. * * Valid Values: `443` | `1194` * * Default Value: `443` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnendpoint.html#cfn-ec2-clientvpnendpoint-vpnport */ readonly vpnPort?: number; } /** * Specifies a network route to add to a Client VPN endpoint. * * Each Client VPN endpoint has a route table that describes the available destination network routes. Each route in the route table specifies the path for traffic to specific resources or networks. * * A target network association must be created before you can specify a route. If you're setting up all the components of a Client VPN endpoint at the same time, you must use the [DependsOn Attribute](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-attribute-dependson.html) to declare a dependency on the `AWS::EC2::ClientVpnTargetNetworkAssociation` resource. * * @cloudformationResource AWS::EC2::ClientVpnRoute * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnroute.html */ export declare class CfnClientVpnRoute extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnClientVpnRoute from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnClientVpnRoute; /** * @cloudformationAttribute Id */ readonly attrId: string; /** * The ID of the Client VPN endpoint to which to add the route. */ clientVpnEndpointId: string; /** * A brief description of the route. */ description?: string; /** * The IPv4 address range, in CIDR notation, of the route destination. For example:. */ destinationCidrBlock: string; /** * The ID of the subnet through which you want to route traffic. */ targetVpcSubnetId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnClientVpnRouteProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnClientVpnRoute` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnroute.html */ export interface CfnClientVpnRouteProps { /** * The ID of the Client VPN endpoint to which to add the route. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnroute.html#cfn-ec2-clientvpnroute-clientvpnendpointid */ readonly clientVpnEndpointId: string; /** * A brief description of the route. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnroute.html#cfn-ec2-clientvpnroute-description */ readonly description?: string; /** * The IPv4 address range, in CIDR notation, of the route destination. For example:. * * - To add a route for Internet access, enter `0.0.0.0/0` * - To add a route for a peered VPC, enter the peered VPC's IPv4 CIDR range * - To add a route for an on-premises network, enter the AWS Site-to-Site VPN connection's IPv4 CIDR range * - To add a route for the local network, enter the client CIDR range * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnroute.html#cfn-ec2-clientvpnroute-destinationcidrblock */ readonly destinationCidrBlock: string; /** * The ID of the subnet through which you want to route traffic. * * The specified subnet must be an existing target network of the Client VPN endpoint. * * Alternatively, if you're adding a route for the local network, specify `local` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpnroute.html#cfn-ec2-clientvpnroute-targetvpcsubnetid */ readonly targetVpcSubnetId: string; } /** * Specifies a target network to associate with a Client VPN endpoint. * * A target network is a subnet in a VPC. You can associate multiple subnets from the same VPC with a Client VPN endpoint. You can associate only one subnet in each Availability Zone. We recommend that you associate at least two subnets to provide Availability Zone redundancy. * * @cloudformationResource AWS::EC2::ClientVpnTargetNetworkAssociation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpntargetnetworkassociation.html */ export declare class CfnClientVpnTargetNetworkAssociation extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnClientVpnTargetNetworkAssociation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnClientVpnTargetNetworkAssociation; /** * @cloudformationAttribute Id */ readonly attrId: string; /** * The ID of the Client VPN endpoint. */ clientVpnEndpointId: string; /** * The ID of the subnet to associate with the Client VPN endpoint. */ subnetId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnClientVpnTargetNetworkAssociationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnClientVpnTargetNetworkAssociation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpntargetnetworkassociation.html */ export interface CfnClientVpnTargetNetworkAssociationProps { /** * The ID of the Client VPN endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpntargetnetworkassociation.html#cfn-ec2-clientvpntargetnetworkassociation-clientvpnendpointid */ readonly clientVpnEndpointId: string; /** * The ID of the subnet to associate with the Client VPN endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-clientvpntargetnetworkassociation.html#cfn-ec2-clientvpntargetnetworkassociation-subnetid */ readonly subnetId: string; } /** * Specifies a customer gateway. * * @cloudformationResource AWS::EC2::CustomerGateway * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-customergateway.html */ export declare class CfnCustomerGateway extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnCustomerGateway from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnCustomerGateway; /** * The ID of the customer gateway. * * @cloudformationAttribute CustomerGatewayId */ readonly attrCustomerGatewayId: string; /** * For customer gateway devices that support BGP, specify the device's ASN. */ bgpAsn?: number; /** * For customer gateway devices that support BGP, specify the device's ASN. */ bgpAsnExtended?: number; /** * The Amazon Resource Name (ARN) for the customer gateway certificate. */ certificateArn?: string; /** * The name of customer gateway device. */ deviceName?: string; /** * IPv4 address for the customer gateway device's outside interface. */ ipAddress: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * One or more tags for the customer gateway. */ tagsRaw?: Array; /** * The type of VPN connection that this customer gateway supports ( `ipsec.1` ). */ type: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnCustomerGatewayProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnCustomerGateway` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-customergateway.html */ export interface CfnCustomerGatewayProps { /** * For customer gateway devices that support BGP, specify the device's ASN. * * You must specify either `BgpAsn` or `BgpAsnExtended` when creating the customer gateway. If the ASN is larger than `2,147,483,647` , you must use `BgpAsnExtended` . * * Default: 65000 * * Valid values: `1` to `2,147,483,647` * * @default - 65000 * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-customergateway.html#cfn-ec2-customergateway-bgpasn */ readonly bgpAsn?: number; /** * For customer gateway devices that support BGP, specify the device's ASN. * * You must specify either `BgpAsn` or `BgpAsnExtended` when creating the customer gateway. If the ASN is larger than `2,147,483,647` , you must use `BgpAsnExtended` . * * Valid values: `2,147,483,648` to `4,294,967,295` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-customergateway.html#cfn-ec2-customergateway-bgpasnextended */ readonly bgpAsnExtended?: number; /** * The Amazon Resource Name (ARN) for the customer gateway certificate. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-customergateway.html#cfn-ec2-customergateway-certificatearn */ readonly certificateArn?: string; /** * The name of customer gateway device. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-customergateway.html#cfn-ec2-customergateway-devicename */ readonly deviceName?: string; /** * IPv4 address for the customer gateway device's outside interface. * * The address must be static. If `OutsideIpAddressType` in your VPN connection options is set to `PrivateIpv4` , you can use an RFC6598 or RFC1918 private IPv4 address. If `OutsideIpAddressType` is set to `PublicIpv4` , you can use a public IPv4 address. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-customergateway.html#cfn-ec2-customergateway-ipaddress */ readonly ipAddress: string; /** * One or more tags for the customer gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-customergateway.html#cfn-ec2-customergateway-tags */ readonly tags?: Array; /** * The type of VPN connection that this customer gateway supports ( `ipsec.1` ). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-customergateway.html#cfn-ec2-customergateway-type */ readonly type: string; } /** * Specifies a set of DHCP options for your VPC. * * You must specify at least one of the following properties: `DomainNameServers` , `NetbiosNameServers` , `NtpServers` . If you specify `NetbiosNameServers` , you must specify `NetbiosNodeType` . * * @cloudformationResource AWS::EC2::DHCPOptions * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-dhcpoptions.html */ export declare class CfnDHCPOptions extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnDHCPOptions from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnDHCPOptions; /** * The ID of the DHCP options set. * * @cloudformationAttribute DhcpOptionsId */ readonly attrDhcpOptionsId: string; /** * This value is used to complete unqualified DNS hostnames. */ domainName?: string; /** * The IPv4 addresses of up to four domain name servers, or `AmazonProvidedDNS` . */ domainNameServers?: Array; /** * A value (in seconds, minutes, hours, or years) for how frequently a running instance with an IPv6 assigned to it goes through DHCPv6 lease renewal. */ ipv6AddressPreferredLeaseTime?: number; /** * The IPv4 addresses of up to four NetBIOS name servers. */ netbiosNameServers?: Array; /** * The NetBIOS node type (1, 2, 4, or 8). */ netbiosNodeType?: number; /** * The IPv4 addresses of up to four Network Time Protocol (NTP) servers. */ ntpServers?: Array; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * Any tags assigned to the DHCP options set. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnDHCPOptionsProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnDHCPOptions` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-dhcpoptions.html */ export interface CfnDHCPOptionsProps { /** * This value is used to complete unqualified DNS hostnames. * * If you're using AmazonProvidedDNS in `us-east-1` , specify `ec2.internal` . If you're using AmazonProvidedDNS in another Region, specify *region* . `compute.internal` (for example, `ap-northeast-1.compute.internal` ). Otherwise, specify a domain name (for example, *MyCompany.com* ). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-dhcpoptions.html#cfn-ec2-dhcpoptions-domainname */ readonly domainName?: string; /** * The IPv4 addresses of up to four domain name servers, or `AmazonProvidedDNS` . * * The default is `AmazonProvidedDNS` . To have your instance receive a custom DNS hostname as specified in `DomainName` , you must set this property to a custom DNS server. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-dhcpoptions.html#cfn-ec2-dhcpoptions-domainnameservers */ readonly domainNameServers?: Array; /** * A value (in seconds, minutes, hours, or years) for how frequently a running instance with an IPv6 assigned to it goes through DHCPv6 lease renewal. * * Acceptable values are between 140 and 2147483647 seconds (approximately 68 years). If no value is entered, the default lease time is 140 seconds. If you use long-term addressing for EC2 instances, you can increase the lease time and avoid frequent lease renewal requests. Lease renewal typically occurs when half of the lease time has elapsed. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-dhcpoptions.html#cfn-ec2-dhcpoptions-ipv6addresspreferredleasetime */ readonly ipv6AddressPreferredLeaseTime?: number; /** * The IPv4 addresses of up to four NetBIOS name servers. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-dhcpoptions.html#cfn-ec2-dhcpoptions-netbiosnameservers */ readonly netbiosNameServers?: Array; /** * The NetBIOS node type (1, 2, 4, or 8). * * We recommend that you specify 2 (broadcast and multicast are not currently supported). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-dhcpoptions.html#cfn-ec2-dhcpoptions-netbiosnodetype */ readonly netbiosNodeType?: number; /** * The IPv4 addresses of up to four Network Time Protocol (NTP) servers. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-dhcpoptions.html#cfn-ec2-dhcpoptions-ntpservers */ readonly ntpServers?: Array; /** * Any tags assigned to the DHCP options set. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-dhcpoptions.html#cfn-ec2-dhcpoptions-tags */ readonly tags?: Array; } /** * Specifies the configuration information to launch a fleet--or group--of instances. * * An EC2 Fleet can launch multiple instance types across multiple Availability Zones, using the On-Demand Instance, Reserved Instance, and Spot Instance purchasing models together. Using EC2 Fleet, you can define separate On-Demand and Spot capacity targets, specify the instance types that work best for your applications, and specify how Amazon EC2 should distribute your fleet capacity within each purchasing model. For more information, see [Launching an EC2 Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet.html) in the *Amazon EC2 User Guide* . * * @cloudformationResource AWS::EC2::EC2Fleet * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html */ export declare class CfnEC2Fleet extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnEC2Fleet from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnEC2Fleet; /** * The ID of the EC2 Fleet. * * @cloudformationAttribute FleetId */ readonly attrFleetId: string; /** * Reserved. */ context?: string; /** * Indicates whether running instances should be terminated if the total target capacity of the EC2 Fleet is decreased below the current size of the EC2 Fleet. */ excessCapacityTerminationPolicy?: string; /** * The configuration for the EC2 Fleet. */ launchTemplateConfigs: Array | cdk.IResolvable; /** * Describes the configuration of On-Demand Instances in an EC2 Fleet. */ onDemandOptions?: cdk.IResolvable | CfnEC2Fleet.OnDemandOptionsRequestProperty; /** * Indicates whether EC2 Fleet should replace unhealthy Spot Instances. */ replaceUnhealthyInstances?: boolean | cdk.IResolvable; /** * Describes the configuration of Spot Instances in an EC2 Fleet. */ spotOptions?: cdk.IResolvable | CfnEC2Fleet.SpotOptionsRequestProperty; /** * The key-value pair for tagging the EC2 Fleet request on creation. For more information, see [Tag your resources](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Using_Tags.html#tag-resources) . */ tagSpecifications?: Array | cdk.IResolvable; /** * The number of units to request. */ targetCapacitySpecification: cdk.IResolvable | CfnEC2Fleet.TargetCapacitySpecificationRequestProperty; /** * Indicates whether running instances should be terminated when the EC2 Fleet expires. */ terminateInstancesWithExpiration?: boolean | cdk.IResolvable; /** * The fleet type. The default value is `maintain` . */ type?: string; /** * The start date and time of the request, in UTC format (for example, *YYYY* - *MM* - *DD* T *HH* : *MM* : *SS* Z). */ validFrom?: string; /** * The end date and time of the request, in UTC format (for example, *YYYY* - *MM* - *DD* T *HH* : *MM* : *SS* Z). */ validUntil?: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnEC2FleetProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnEC2Fleet { /** * Specifies the number of units to request for an EC2 Fleet. * * You can choose to set the target capacity in terms of instances or a performance characteristic that is important to your application workload, such as vCPUs, memory, or I/O. If the request type is `maintain` , you can specify a target capacity of `0` and add capacity later. * * `TargetCapacitySpecificationRequest` is a property of the [AWS::EC2::EC2Fleet](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html) resource. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-targetcapacityspecificationrequest.html */ interface TargetCapacitySpecificationRequestProperty { /** * The default target capacity type. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-targetcapacityspecificationrequest.html#cfn-ec2-ec2fleet-targetcapacityspecificationrequest-defaulttargetcapacitytype */ readonly defaultTargetCapacityType?: string; /** * The number of On-Demand units to request. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-targetcapacityspecificationrequest.html#cfn-ec2-ec2fleet-targetcapacityspecificationrequest-ondemandtargetcapacity */ readonly onDemandTargetCapacity?: number; /** * The number of Spot units to request. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-targetcapacityspecificationrequest.html#cfn-ec2-ec2fleet-targetcapacityspecificationrequest-spottargetcapacity */ readonly spotTargetCapacity?: number; /** * The unit for the target capacity. You can specify this parameter only when using attributed-based instance type selection. * * Default: `units` (the number of instances) * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-targetcapacityspecificationrequest.html#cfn-ec2-ec2fleet-targetcapacityspecificationrequest-targetcapacityunittype */ readonly targetCapacityUnitType?: string; /** * The number of units to request, filled using the default target capacity type. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-targetcapacityspecificationrequest.html#cfn-ec2-ec2fleet-targetcapacityspecificationrequest-totaltargetcapacity */ readonly totalTargetCapacity: number; } /** * Specifies the allocation strategy of On-Demand Instances in an EC2 Fleet. * * `OnDemandOptionsRequest` is a property of the [AWS::EC2::EC2Fleet](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html) resource. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-ondemandoptionsrequest.html */ interface OnDemandOptionsRequestProperty { /** * The strategy that determines the order of the launch template overrides to use in fulfilling On-Demand capacity. * * `lowest-price` - EC2 Fleet uses price to determine the order, launching the lowest price first. * * `prioritized` - EC2 Fleet uses the priority that you assigned to each launch template override, launching the highest priority first. * * Default: `lowest-price` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-ondemandoptionsrequest.html#cfn-ec2-ec2fleet-ondemandoptionsrequest-allocationstrategy */ readonly allocationStrategy?: string; /** * The strategy for using unused Capacity Reservations for fulfilling On-Demand capacity. * * Supported only for fleets of type `instant` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-ondemandoptionsrequest.html#cfn-ec2-ec2fleet-ondemandoptionsrequest-capacityreservationoptions */ readonly capacityReservationOptions?: CfnEC2Fleet.CapacityReservationOptionsRequestProperty | cdk.IResolvable; /** * The maximum amount per hour for On-Demand Instances that you're willing to pay. * * > If your fleet includes T instances that are configured as `unlimited` , and if their average CPU usage exceeds the baseline utilization, you will incur a charge for surplus credits. The `MaxTotalPrice` does not account for surplus credits, and, if you use surplus credits, your final cost might be higher than what you specified for `MaxTotalPrice` . For more information, see [Surplus credits can incur charges](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/burstable-performance-instances-unlimited-mode-concepts.html#unlimited-mode-surplus-credits) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-ondemandoptionsrequest.html#cfn-ec2-ec2fleet-ondemandoptionsrequest-maxtotalprice */ readonly maxTotalPrice?: string; /** * The minimum target capacity for On-Demand Instances in the fleet. * * If this minimum capacity isn't reached, no instances are launched. * * Constraints: Maximum value of `1000` . Supported only for fleets of type `instant` . * * At least one of the following must be specified: `SingleAvailabilityZone` | `SingleInstanceType` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-ondemandoptionsrequest.html#cfn-ec2-ec2fleet-ondemandoptionsrequest-mintargetcapacity */ readonly minTargetCapacity?: number; /** * Indicates that the fleet launches all On-Demand Instances into a single Availability Zone. * * Supported only for fleets of type `instant` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-ondemandoptionsrequest.html#cfn-ec2-ec2fleet-ondemandoptionsrequest-singleavailabilityzone */ readonly singleAvailabilityZone?: boolean | cdk.IResolvable; /** * Indicates that the fleet uses a single instance type to launch all On-Demand Instances in the fleet. * * Supported only for fleets of type `instant` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-ondemandoptionsrequest.html#cfn-ec2-ec2fleet-ondemandoptionsrequest-singleinstancetype */ readonly singleInstanceType?: boolean | cdk.IResolvable; } /** * Describes the strategy for using unused Capacity Reservations for fulfilling On-Demand capacity. * * > This strategy can only be used if the EC2 Fleet is of type `instant` . * * For more information about Capacity Reservations, see [On-Demand Capacity Reservations](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-capacity-reservations.html) in the *Amazon EC2 User Guide* . For examples of using Capacity Reservations in an EC2 Fleet, see [EC2 Fleet example configurations](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-examples.html) in the *Amazon EC2 User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-capacityreservationoptionsrequest.html */ interface CapacityReservationOptionsRequestProperty { /** * Indicates whether to use unused Capacity Reservations for fulfilling On-Demand capacity. * * If you specify `use-capacity-reservations-first` , the fleet uses unused Capacity Reservations to fulfill On-Demand capacity up to the target On-Demand capacity. If multiple instance pools have unused Capacity Reservations, the On-Demand allocation strategy ( `lowest-price` or `prioritized` ) is applied. If the number of unused Capacity Reservations is less than the On-Demand target capacity, the remaining On-Demand target capacity is launched according to the On-Demand allocation strategy ( `lowest-price` or `prioritized` ). * * If you do not specify a value, the fleet fulfils the On-Demand capacity according to the chosen On-Demand allocation strategy. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-capacityreservationoptionsrequest.html#cfn-ec2-ec2fleet-capacityreservationoptionsrequest-usagestrategy */ readonly usageStrategy?: string; } /** * Specifies the tags to apply to a resource when the resource is being created for an EC2 Fleet. * * `TagSpecification` is a property of the [AWS::EC2::EC2Fleet](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html) resource. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-tagspecification.html */ interface TagSpecificationProperty { /** * The type of resource to tag. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-tagspecification.html#cfn-ec2-ec2fleet-tagspecification-resourcetype */ readonly resourceType?: string; /** * The tags to apply to the resource. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-tagspecification.html#cfn-ec2-ec2fleet-tagspecification-tags */ readonly tags?: Array; } /** * Specifies the configuration of Spot Instances for an EC2 Fleet. * * `SpotOptionsRequest` is a property of the [AWS::EC2::EC2Fleet](https://docs.aws.amazon.com//AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html) resource. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-spotoptionsrequest.html */ interface SpotOptionsRequestProperty { /** * Indicates how to allocate the target Spot Instance capacity across the Spot Instance pools specified by the EC2 Fleet. * * If the allocation strategy is `lowestPrice` , EC2 Fleet launches instances from the Spot Instance pools with the lowest price. This is the default allocation strategy. * * If the allocation strategy is `diversified` , EC2 Fleet launches instances from all the Spot Instance pools that you specify. * * If the allocation strategy is `capacityOptimized` , EC2 Fleet launches instances from Spot Instance pools that are optimally chosen based on the available Spot Instance capacity. * * *Allowed Values* : `lowestPrice` | `diversified` | `capacityOptimized` | `capacityOptimizedPrioritized` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-spotoptionsrequest.html#cfn-ec2-ec2fleet-spotoptionsrequest-allocationstrategy */ readonly allocationStrategy?: string; /** * The behavior when a Spot Instance is interrupted. * * Default: `terminate` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-spotoptionsrequest.html#cfn-ec2-ec2fleet-spotoptionsrequest-instanceinterruptionbehavior */ readonly instanceInterruptionBehavior?: string; /** * The number of Spot pools across which to allocate your target Spot capacity. * * Supported only when Spot `AllocationStrategy` is set to `lowest-price` . EC2 Fleet selects the cheapest Spot pools and evenly allocates your target Spot capacity across the number of Spot pools that you specify. * * Note that EC2 Fleet attempts to draw Spot Instances from the number of pools that you specify on a best effort basis. If a pool runs out of Spot capacity before fulfilling your target capacity, EC2 Fleet will continue to fulfill your request by drawing from the next cheapest pool. To ensure that your target capacity is met, you might receive Spot Instances from more than the number of pools that you specified. Similarly, if most of the pools have no Spot capacity, you might receive your full target capacity from fewer than the number of pools that you specified. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-spotoptionsrequest.html#cfn-ec2-ec2fleet-spotoptionsrequest-instancepoolstousecount */ readonly instancePoolsToUseCount?: number; /** * The strategies for managing your Spot Instances that are at an elevated risk of being interrupted. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-spotoptionsrequest.html#cfn-ec2-ec2fleet-spotoptionsrequest-maintenancestrategies */ readonly maintenanceStrategies?: cdk.IResolvable | CfnEC2Fleet.MaintenanceStrategiesProperty; /** * The maximum amount per hour for Spot Instances that you're willing to pay. * * We do not recommend using this parameter because it can lead to increased interruptions. If you do not specify this parameter, you will pay the current Spot price. * * > If you specify a maximum price, your Spot Instances will be interrupted more frequently than if you do not specify this parameter. > If your fleet includes T instances that are configured as `unlimited` , and if their average CPU usage exceeds the baseline utilization, you will incur a charge for surplus credits. The `MaxTotalPrice` does not account for surplus credits, and, if you use surplus credits, your final cost might be higher than what you specified for `MaxTotalPrice` . For more information, see [Surplus credits can incur charges](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/burstable-performance-instances-unlimited-mode-concepts.html#unlimited-mode-surplus-credits) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-spotoptionsrequest.html#cfn-ec2-ec2fleet-spotoptionsrequest-maxtotalprice */ readonly maxTotalPrice?: string; /** * The minimum target capacity for Spot Instances in the fleet. * * If this minimum capacity isn't reached, no instances are launched. * * Constraints: Maximum value of `1000` . Supported only for fleets of type `instant` . * * At least one of the following must be specified: `SingleAvailabilityZone` | `SingleInstanceType` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-spotoptionsrequest.html#cfn-ec2-ec2fleet-spotoptionsrequest-mintargetcapacity */ readonly minTargetCapacity?: number; /** * Indicates that the fleet launches all Spot Instances into a single Availability Zone. * * Supported only for fleets of type `instant` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-spotoptionsrequest.html#cfn-ec2-ec2fleet-spotoptionsrequest-singleavailabilityzone */ readonly singleAvailabilityZone?: boolean | cdk.IResolvable; /** * Indicates that the fleet uses a single instance type to launch all Spot Instances in the fleet. * * Supported only for fleets of type `instant` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-spotoptionsrequest.html#cfn-ec2-ec2fleet-spotoptionsrequest-singleinstancetype */ readonly singleInstanceType?: boolean | cdk.IResolvable; } /** * The strategies for managing your Spot Instances that are at an elevated risk of being interrupted. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-maintenancestrategies.html */ interface MaintenanceStrategiesProperty { /** * The strategy to use when Amazon EC2 emits a signal that your Spot Instance is at an elevated risk of being interrupted. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-maintenancestrategies.html#cfn-ec2-ec2fleet-maintenancestrategies-capacityrebalance */ readonly capacityRebalance?: CfnEC2Fleet.CapacityRebalanceProperty | cdk.IResolvable; } /** * The Spot Instance replacement strategy to use when Amazon EC2 emits a rebalance notification signal that your Spot Instance is at an elevated risk of being interrupted. * * For more information, see [Capacity rebalancing](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-capacity-rebalance.html) in the *Amazon EC2 User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-capacityrebalance.html */ interface CapacityRebalanceProperty { /** * The replacement strategy to use. Only available for fleets of type `maintain` . * * `launch` - EC2 Fleet launches a replacement Spot Instance when a rebalance notification is emitted for an existing Spot Instance in the fleet. EC2 Fleet does not terminate the instances that receive a rebalance notification. You can terminate the old instances, or you can leave them running. You are charged for all instances while they are running. * * `launch-before-terminate` - EC2 Fleet launches a replacement Spot Instance when a rebalance notification is emitted for an existing Spot Instance in the fleet, and then, after a delay that you specify (in `TerminationDelay` ), terminates the instances that received a rebalance notification. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-capacityrebalance.html#cfn-ec2-ec2fleet-capacityrebalance-replacementstrategy */ readonly replacementStrategy?: string; /** * The amount of time (in seconds) that Amazon EC2 waits before terminating the old Spot Instance after launching a new replacement Spot Instance. * * Required when `ReplacementStrategy` is set to `launch-before-terminate` . * * Not valid when `ReplacementStrategy` is set to `launch` . * * Valid values: Minimum value of `120` seconds. Maximum value of `7200` seconds. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-capacityrebalance.html#cfn-ec2-ec2fleet-capacityrebalance-terminationdelay */ readonly terminationDelay?: number; } /** * Specifies a launch template and overrides for an EC2 Fleet. * * `FleetLaunchTemplateConfigRequest` is a property of the [AWS::EC2::EC2Fleet](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html) resource. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplateconfigrequest.html */ interface FleetLaunchTemplateConfigRequestProperty { /** * The launch template to use. * * You must specify either the launch template ID or launch template name in the request. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplateconfigrequest.html#cfn-ec2-ec2fleet-fleetlaunchtemplateconfigrequest-launchtemplatespecification */ readonly launchTemplateSpecification?: CfnEC2Fleet.FleetLaunchTemplateSpecificationRequestProperty | cdk.IResolvable; /** * Any parameters that you specify override the same parameters in the launch template. * * For fleets of type `request` and `maintain` , a maximum of 300 items is allowed across all launch templates. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplateconfigrequest.html#cfn-ec2-ec2fleet-fleetlaunchtemplateconfigrequest-overrides */ readonly overrides?: Array | cdk.IResolvable; } /** * Specifies the launch template to be used by the EC2 Fleet for configuring Amazon EC2 instances. * * You must specify the following: * * - The ID or the name of the launch template, but not both. * - The version of the launch template. * * `FleetLaunchTemplateSpecificationRequest` is a property of the [FleetLaunchTemplateConfigRequest](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplateconfigrequest.html) property type. * * For information about creating a launch template, see [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html) and [Create a launch template](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-templates.html#create-launch-template) in the *Amazon EC2 User Guide* . * * For examples of launch templates, see [Examples](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#aws-resource-ec2-launchtemplate--examples) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplatespecificationrequest.html */ interface FleetLaunchTemplateSpecificationRequestProperty { /** * The ID of the launch template. * * You must specify the `LaunchTemplateId` or the `LaunchTemplateName` , but not both. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplatespecificationrequest.html#cfn-ec2-ec2fleet-fleetlaunchtemplatespecificationrequest-launchtemplateid */ readonly launchTemplateId?: string; /** * The name of the launch template. * * You must specify the `LaunchTemplateName` or the `LaunchTemplateId` , but not both. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplatespecificationrequest.html#cfn-ec2-ec2fleet-fleetlaunchtemplatespecificationrequest-launchtemplatename */ readonly launchTemplateName?: string; /** * The launch template version number, `$Latest` , or `$Default` . You must specify a value, otherwise the request fails. * * If the value is `$Latest` , Amazon EC2 uses the latest version of the launch template. * * If the value is `$Default` , Amazon EC2 uses the default version of the launch template. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplatespecificationrequest.html#cfn-ec2-ec2fleet-fleetlaunchtemplatespecificationrequest-version */ readonly version: string; } /** * Specifies overrides for a launch template for an EC2 Fleet. * * `FleetLaunchTemplateOverridesRequest` is a property of the [FleetLaunchTemplateConfigRequest](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplateconfigrequest.html) property type. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest.html */ interface FleetLaunchTemplateOverridesRequestProperty { /** * The Availability Zone in which to launch the instances. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest.html#cfn-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest-availabilityzone */ readonly availabilityZone?: string; /** * The block device mappings, which define the EBS volumes and instance store volumes to attach to the instance at launch. * * Supported only for fleets of type `instant` . * * For more information, see [Block device mappings for volumes on Amazon EC2 instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/block-device-mapping-concepts.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest.html#cfn-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest-blockdevicemappings */ readonly blockDeviceMappings?: Array | cdk.IResolvable; /** * The attributes for the instance types. * * When you specify instance attributes, Amazon EC2 will identify instance types with those attributes. * * > If you specify `InstanceRequirements` , you can't specify `InstanceType` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest.html#cfn-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest-instancerequirements */ readonly instanceRequirements?: CfnEC2Fleet.InstanceRequirementsRequestProperty | cdk.IResolvable; /** * The instance type. * * `mac1.metal` is not supported as a launch template override. * * > If you specify `InstanceType` , you can't specify `InstanceRequirements` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest.html#cfn-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest-instancetype */ readonly instanceType?: string; /** * The maximum price per unit hour that you are willing to pay for a Spot Instance. * * We do not recommend using this parameter because it can lead to increased interruptions. If you do not specify this parameter, you will pay the current Spot price. * * > If you specify a maximum price, your instances will be interrupted more frequently than if you do not specify this parameter. * > * > If you specify a maximum price, it must be more than USD $0.001. Specifying a value below USD $0.001 will result in an `InvalidParameterValue` error message. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest.html#cfn-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest-maxprice */ readonly maxPrice?: string; /** * The location where the instance launched, if applicable. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest.html#cfn-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest-placement */ readonly placement?: cdk.IResolvable | CfnEC2Fleet.PlacementProperty; /** * The priority for the launch template override. The highest priority is launched first. * * If the On-Demand `AllocationStrategy` is set to `prioritized` , EC2 Fleet uses priority to determine which launch template override to use first in fulfilling On-Demand capacity. * * If the Spot `AllocationStrategy` is set to `capacity-optimized-prioritized` , EC2 Fleet uses priority on a best-effort basis to determine which launch template override to use in fulfilling Spot capacity, but optimizes for capacity first. * * Valid values are whole numbers starting at `0` . The lower the number, the higher the priority. If no number is set, the launch template override has the lowest priority. You can set the same priority for different launch template overrides. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest.html#cfn-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest-priority */ readonly priority?: number; /** * The IDs of the subnets in which to launch the instances. * * Separate multiple subnet IDs using commas (for example, `subnet-1234abcdeexample1, subnet-0987cdef6example2` ). A request of type `instant` can have only one subnet ID. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest.html#cfn-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest-subnetid */ readonly subnetId?: string; /** * The number of units provided by the specified instance type. * * These are the same units that you chose to set the target capacity in terms of instances, or a performance characteristic such as vCPUs, memory, or I/O. * * If the target capacity divided by this value is not a whole number, Amazon EC2 rounds the number of instances to the next whole number. If this value is not specified, the default is 1. * * > When specifying weights, the price used in the `lowest-price` and `price-capacity-optimized` allocation strategies is per *unit* hour (where the instance price is divided by the specified weight). However, if all the specified weights are above the requested `TargetCapacity` , resulting in only 1 instance being launched, the price used is per *instance* hour. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest.html#cfn-ec2-ec2fleet-fleetlaunchtemplateoverridesrequest-weightedcapacity */ readonly weightedCapacity?: number; } /** * Describes the placement of an instance. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-placement.html */ interface PlacementProperty { /** * The affinity setting for the instance on the Dedicated Host. * * This parameter is not supported for [CreateFleet](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateFleet) or [ImportInstance](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ImportInstance.html) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-placement.html#cfn-ec2-ec2fleet-placement-affinity */ readonly affinity?: string; /** * The Availability Zone of the instance. * * If not specified, an Availability Zone will be automatically chosen for you based on the load balancing criteria for the Region. * * This parameter is not supported for [CreateFleet](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateFleet) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-placement.html#cfn-ec2-ec2fleet-placement-availabilityzone */ readonly availabilityZone?: string; /** * The name of the placement group that the instance is in. * * If you specify `GroupName` , you can't specify `GroupId` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-placement.html#cfn-ec2-ec2fleet-placement-groupname */ readonly groupName?: string; /** * The ID of the Dedicated Host on which the instance resides. * * This parameter is not supported for [CreateFleet](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateFleet) or [ImportInstance](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ImportInstance.html) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-placement.html#cfn-ec2-ec2fleet-placement-hostid */ readonly hostId?: string; /** * The ARN of the host resource group in which to launch the instances. * * If you specify this parameter, either omit the *Tenancy* parameter or set it to `host` . * * This parameter is not supported for [CreateFleet](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateFleet) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-placement.html#cfn-ec2-ec2fleet-placement-hostresourcegrouparn */ readonly hostResourceGroupArn?: string; /** * The number of the partition that the instance is in. * * Valid only if the placement group strategy is set to `partition` . * * This parameter is not supported for [CreateFleet](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateFleet) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-placement.html#cfn-ec2-ec2fleet-placement-partitionnumber */ readonly partitionNumber?: number; /** * Reserved for future use. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-placement.html#cfn-ec2-ec2fleet-placement-spreaddomain */ readonly spreadDomain?: string; /** * The tenancy of the instance. An instance with a tenancy of `dedicated` runs on single-tenant hardware. * * This parameter is not supported for [CreateFleet](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateFleet) . The `host` tenancy is not supported for [ImportInstance](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ImportInstance.html) or for T3 instances that are configured for the `unlimited` CPU credit option. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-placement.html#cfn-ec2-ec2fleet-placement-tenancy */ readonly tenancy?: string; } /** * The attributes for the instance types. * * When you specify instance attributes, Amazon EC2 will identify instance types with these attributes. * * You must specify `VCpuCount` and `MemoryMiB` . All other attributes are optional. Any unspecified optional attribute is set to its default. * * When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values. * * To limit the list of instance types from which Amazon EC2 can identify matching instance types, you can use one of the following parameters, but not both in the same request: * * - `AllowedInstanceTypes` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes. * - `ExcludedInstanceTypes` - The instance types to exclude from the list, even if they match your specified attributes. * * > If you specify `InstanceRequirements` , you can't specify `InstanceType` . * > * > Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html) , or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify `InstanceRequirements` . * * For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html */ interface InstanceRequirementsRequestProperty { /** * The minimum and maximum number of accelerators (GPUs, FPGAs, or AWS Inferentia chips) on an instance. * * To exclude accelerator-enabled instance types, set `Max` to `0` . * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-acceleratorcount */ readonly acceleratorCount?: CfnEC2Fleet.AcceleratorCountRequestProperty | cdk.IResolvable; /** * Indicates whether instance types must have accelerators by specific manufacturers. * * - For instance types with AWS devices, specify `amazon-web-services` . * - For instance types with AMD devices, specify `amd` . * - For instance types with Habana devices, specify `habana` . * - For instance types with NVIDIA devices, specify `nvidia` . * - For instance types with Xilinx devices, specify `xilinx` . * * Default: Any manufacturer * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-acceleratormanufacturers */ readonly acceleratorManufacturers?: Array; /** * The accelerators that must be on the instance type. * * - For instance types with NVIDIA A10G GPUs, specify `a10g` . * - For instance types with NVIDIA A100 GPUs, specify `a100` . * - For instance types with NVIDIA H100 GPUs, specify `h100` . * - For instance types with AWS Inferentia chips, specify `inferentia` . * - For instance types with NVIDIA GRID K520 GPUs, specify `k520` . * - For instance types with NVIDIA K80 GPUs, specify `k80` . * - For instance types with NVIDIA M60 GPUs, specify `m60` . * - For instance types with AMD Radeon Pro V520 GPUs, specify `radeon-pro-v520` . * - For instance types with NVIDIA T4 GPUs, specify `t4` . * - For instance types with NVIDIA T4G GPUs, specify `t4g` . * - For instance types with Xilinx VU9P FPGAs, specify `vu9p` . * - For instance types with NVIDIA V100 GPUs, specify `v100` . * * Default: Any accelerator * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-acceleratornames */ readonly acceleratorNames?: Array; /** * The minimum and maximum amount of total accelerator memory, in MiB. * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-acceleratortotalmemorymib */ readonly acceleratorTotalMemoryMiB?: CfnEC2Fleet.AcceleratorTotalMemoryMiBRequestProperty | cdk.IResolvable; /** * The accelerator types that must be on the instance type. * * - For instance types with FPGA accelerators, specify `fpga` . * - For instance types with GPU accelerators, specify `gpu` . * - For instance types with Inference accelerators, specify `inference` . * * Default: Any accelerator type * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-acceleratortypes */ readonly acceleratorTypes?: Array; /** * The instance types to apply your specified attributes against. * * All other instance types are ignored, even if they match your specified attributes. * * You can use strings with one or more wild cards, represented by an asterisk ( `*` ), to allow an instance type, size, or generation. The following are examples: `m5.8xlarge` , `c5*.*` , `m5a.*` , `r*` , `*3*` . * * For example, if you specify `c5*` ,Amazon EC2 will allow the entire C5 instance family, which includes all C5a and C5n instance types. If you specify `m5a.*` , Amazon EC2 will allow all the M5a instance types, but not the M5n instance types. * * > If you specify `AllowedInstanceTypes` , you can't specify `ExcludedInstanceTypes` . * * Default: All instance types * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-allowedinstancetypes */ readonly allowedInstanceTypes?: Array; /** * Indicates whether bare metal instance types must be included, excluded, or required. * * - To include bare metal instance types, specify `included` . * - To require only bare metal instance types, specify `required` . * - To exclude bare metal instance types, specify `excluded` . * * Default: `excluded` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-baremetal */ readonly bareMetal?: string; /** * The minimum and maximum baseline bandwidth to Amazon EBS, in Mbps. * * For more information, see [Amazon EBS–optimized instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ebs-optimized.html) in the *Amazon EC2 User Guide* . * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-baselineebsbandwidthmbps */ readonly baselineEbsBandwidthMbps?: CfnEC2Fleet.BaselineEbsBandwidthMbpsRequestProperty | cdk.IResolvable; /** * The baseline performance to consider, using an instance family as a baseline reference. * * The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-baselineperformancefactors */ readonly baselinePerformanceFactors?: CfnEC2Fleet.BaselinePerformanceFactorsRequestProperty | cdk.IResolvable; /** * Indicates whether burstable performance T instance types are included, excluded, or required. * * For more information, see [Burstable performance instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/burstable-performance-instances.html) . * * - To include burstable performance instance types, specify `included` . * - To require only burstable performance instance types, specify `required` . * - To exclude burstable performance instance types, specify `excluded` . * * Default: `excluded` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-burstableperformance */ readonly burstablePerformance?: string; /** * The CPU manufacturers to include. * * - For instance types with Intel CPUs, specify `intel` . * - For instance types with AMD CPUs, specify `amd` . * - For instance types with AWS CPUs, specify `amazon-web-services` . * - For instance types with Apple CPUs, specify `apple` . * * > Don't confuse the CPU manufacturer with the CPU architecture. Instances will be launched with a compatible CPU architecture based on the Amazon Machine Image (AMI) that you specify in your launch template. * * Default: Any manufacturer * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-cpumanufacturers */ readonly cpuManufacturers?: Array; /** * The instance types to exclude. * * You can use strings with one or more wild cards, represented by an asterisk ( `*` ), to exclude an instance family, type, size, or generation. The following are examples: `m5.8xlarge` , `c5*.*` , `m5a.*` , `r*` , `*3*` . * * For example, if you specify `c5*` ,Amazon EC2 will exclude the entire C5 instance family, which includes all C5a and C5n instance types. If you specify `m5a.*` , Amazon EC2 will exclude all the M5a instance types, but not the M5n instance types. * * > If you specify `ExcludedInstanceTypes` , you can't specify `AllowedInstanceTypes` . * * Default: No excluded instance types * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-excludedinstancetypes */ readonly excludedInstanceTypes?: Array; /** * Indicates whether current or previous generation instance types are included. * * The current generation instance types are recommended for use. Current generation instance types are typically the latest two to three generations in each instance family. For more information, see [Instance types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html) in the *Amazon EC2 User Guide* . * * For current generation instance types, specify `current` . * * For previous generation instance types, specify `previous` . * * Default: Current and previous generation instance types * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-instancegenerations */ readonly instanceGenerations?: Array; /** * Indicates whether instance types with instance store volumes are included, excluded, or required. * * For more information, [Amazon EC2 instance store](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/InstanceStorage.html) in the *Amazon EC2 User Guide* . * * - To include instance types with instance store volumes, specify `included` . * - To require only instance types with instance store volumes, specify `required` . * - To exclude instance types with instance store volumes, specify `excluded` . * * Default: `included` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-localstorage */ readonly localStorage?: string; /** * The type of local storage that is required. * * - For instance types with hard disk drive (HDD) storage, specify `hdd` . * - For instance types with solid state drive (SSD) storage, specify `ssd` . * * Default: `hdd` and `ssd` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-localstoragetypes */ readonly localStorageTypes?: Array; /** * [Price protection] The price protection threshold for Spot Instances, as a percentage of an identified On-Demand price. * * The identified On-Demand price is the price of the lowest priced current generation C, M, or R instance type with your specified attributes. If no current generation C, M, or R instance type matches your attributes, then the identified price is from the lowest priced current generation instance types, and failing that, from the lowest priced previous generation instance types that match your attributes. When Amazon EC2 selects instance types with your attributes, it will exclude instance types whose price exceeds your specified threshold. * * The parameter accepts an integer, which Amazon EC2 interprets as a percentage. * * If you set `TargetCapacityUnitType` to `vcpu` or `memory-mib` , the price protection threshold is based on the per vCPU or per memory price instead of the per instance price. * * > Only one of `SpotMaxPricePercentageOverLowestPrice` or `MaxSpotPriceAsPercentageOfOptimalOnDemandPrice` can be specified. If you don't specify either, Amazon EC2 will automatically apply optimal price protection to consistently select from a wide range of instance types. To indicate no price protection threshold for Spot Instances, meaning you want to consider all instance types that match your attributes, include one of these parameters and specify a high value, such as `999999` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-maxspotpriceaspercentageofoptimalondemandprice */ readonly maxSpotPriceAsPercentageOfOptimalOnDemandPrice?: number; /** * The minimum and maximum amount of memory per vCPU, in GiB. * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-memorygibpervcpu */ readonly memoryGiBPerVCpu?: cdk.IResolvable | CfnEC2Fleet.MemoryGiBPerVCpuRequestProperty; /** * The minimum and maximum amount of memory, in MiB. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-memorymib */ readonly memoryMiB?: cdk.IResolvable | CfnEC2Fleet.MemoryMiBRequestProperty; /** * The minimum and maximum amount of baseline network bandwidth, in gigabits per second (Gbps). * * For more information, see [Amazon EC2 instance network bandwidth](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-network-bandwidth.html) in the *Amazon EC2 User Guide* . * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-networkbandwidthgbps */ readonly networkBandwidthGbps?: cdk.IResolvable | CfnEC2Fleet.NetworkBandwidthGbpsRequestProperty; /** * The minimum and maximum number of network interfaces. * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-networkinterfacecount */ readonly networkInterfaceCount?: cdk.IResolvable | CfnEC2Fleet.NetworkInterfaceCountRequestProperty; /** * [Price protection] The price protection threshold for On-Demand Instances, as a percentage higher than an identified On-Demand price. * * The identified On-Demand price is the price of the lowest priced current generation C, M, or R instance type with your specified attributes. When Amazon EC2 selects instance types with your attributes, it will exclude instance types whose price exceeds your specified threshold. * * The parameter accepts an integer, which Amazon EC2 interprets as a percentage. * * To indicate no price protection threshold, specify a high value, such as `999999` . * * This parameter is not supported for [GetSpotPlacementScores](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetSpotPlacementScores.html) and [GetInstanceTypesFromInstanceRequirements](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetInstanceTypesFromInstanceRequirements.html) . * * > If you set `TargetCapacityUnitType` to `vcpu` or `memory-mib` , the price protection threshold is applied based on the per-vCPU or per-memory price instead of the per-instance price. * * Default: `20` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-ondemandmaxpricepercentageoverlowestprice */ readonly onDemandMaxPricePercentageOverLowestPrice?: number; /** * Indicates whether instance types must support hibernation for On-Demand Instances. * * This parameter is not supported for [GetSpotPlacementScores](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetSpotPlacementScores.html) . * * Default: `false` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-requirehibernatesupport */ readonly requireHibernateSupport?: boolean | cdk.IResolvable; /** * [Price protection] The price protection threshold for Spot Instances, as a percentage higher than an identified Spot price. * * The identified Spot price is the Spot price of the lowest priced current generation C, M, or R instance type with your specified attributes. If no current generation C, M, or R instance type matches your attributes, then the identified Spot price is from the lowest priced current generation instance types, and failing that, from the lowest priced previous generation instance types that match your attributes. When Amazon EC2 selects instance types with your attributes, it will exclude instance types whose Spot price exceeds your specified threshold. * * The parameter accepts an integer, which Amazon EC2 interprets as a percentage. * * If you set `TargetCapacityUnitType` to `vcpu` or `memory-mib` , the price protection threshold is applied based on the per-vCPU or per-memory price instead of the per-instance price. * * This parameter is not supported for [GetSpotPlacementScores](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetSpotPlacementScores.html) and [GetInstanceTypesFromInstanceRequirements](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetInstanceTypesFromInstanceRequirements.html) . * * > Only one of `SpotMaxPricePercentageOverLowestPrice` or `MaxSpotPriceAsPercentageOfOptimalOnDemandPrice` can be specified. If you don't specify either, Amazon EC2 will automatically apply optimal price protection to consistently select from a wide range of instance types. To indicate no price protection threshold for Spot Instances, meaning you want to consider all instance types that match your attributes, include one of these parameters and specify a high value, such as `999999` . * * Default: `100` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-spotmaxpricepercentageoverlowestprice */ readonly spotMaxPricePercentageOverLowestPrice?: number; /** * The minimum and maximum amount of total local storage, in GB. * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-totallocalstoragegb */ readonly totalLocalStorageGb?: cdk.IResolvable | CfnEC2Fleet.TotalLocalStorageGBRequestProperty; /** * The minimum and maximum number of vCPUs. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-instancerequirementsrequest.html#cfn-ec2-ec2fleet-instancerequirementsrequest-vcpucount */ readonly vCpuCount?: cdk.IResolvable | CfnEC2Fleet.VCpuCountRangeRequestProperty; } /** * The minimum and maximum number of network interfaces. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-networkinterfacecountrequest.html */ interface NetworkInterfaceCountRequestProperty { /** * The maximum number of network interfaces. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-networkinterfacecountrequest.html#cfn-ec2-ec2fleet-networkinterfacecountrequest-max */ readonly max?: number; /** * The minimum number of network interfaces. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-networkinterfacecountrequest.html#cfn-ec2-ec2fleet-networkinterfacecountrequest-min */ readonly min?: number; } /** * The minimum and maximum amount of memory per vCPU, in GiB. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-memorygibpervcpurequest.html */ interface MemoryGiBPerVCpuRequestProperty { /** * The maximum amount of memory per vCPU, in GiB. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-memorygibpervcpurequest.html#cfn-ec2-ec2fleet-memorygibpervcpurequest-max */ readonly max?: number; /** * The minimum amount of memory per vCPU, in GiB. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-memorygibpervcpurequest.html#cfn-ec2-ec2fleet-memorygibpervcpurequest-min */ readonly min?: number; } /** * The minimum and maximum number of vCPUs. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-vcpucountrangerequest.html */ interface VCpuCountRangeRequestProperty { /** * The maximum number of vCPUs. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-vcpucountrangerequest.html#cfn-ec2-ec2fleet-vcpucountrangerequest-max */ readonly max?: number; /** * The minimum number of vCPUs. * * To specify no minimum limit, specify `0` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-vcpucountrangerequest.html#cfn-ec2-ec2fleet-vcpucountrangerequest-min */ readonly min?: number; } /** * The minimum and maximum amount of network bandwidth, in gigabits per second (Gbps). * * > Setting the minimum bandwidth does not guarantee that your instance will achieve the minimum bandwidth. Amazon EC2 will identify instance types that support the specified minimum bandwidth, but the actual bandwidth of your instance might go below the specified minimum at times. For more information, see [Available instance bandwidth](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-network-bandwidth.html#available-instance-bandwidth) in the *Amazon EC2 User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-networkbandwidthgbpsrequest.html */ interface NetworkBandwidthGbpsRequestProperty { /** * The maximum amount of network bandwidth, in Gbps. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-networkbandwidthgbpsrequest.html#cfn-ec2-ec2fleet-networkbandwidthgbpsrequest-max */ readonly max?: number; /** * The minimum amount of network bandwidth, in Gbps. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-networkbandwidthgbpsrequest.html#cfn-ec2-ec2fleet-networkbandwidthgbpsrequest-min */ readonly min?: number; } /** * The minimum and maximum number of accelerators (GPUs, FPGAs, or AWS Inferentia chips) on an instance. * * To exclude accelerator-enabled instance types, set `Max` to `0` . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-acceleratorcountrequest.html */ interface AcceleratorCountRequestProperty { /** * The maximum number of accelerators. * * To specify no maximum limit, omit this parameter. To exclude accelerator-enabled instance types, set `Max` to `0` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-acceleratorcountrequest.html#cfn-ec2-ec2fleet-acceleratorcountrequest-max */ readonly max?: number; /** * The minimum number of accelerators. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-acceleratorcountrequest.html#cfn-ec2-ec2fleet-acceleratorcountrequest-min */ readonly min?: number; } /** * The minimum and maximum baseline bandwidth to Amazon EBS, in Mbps. * * For more information, see [Amazon EBS–optimized instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ebs-optimized.html) in the *Amazon EC2 User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-baselineebsbandwidthmbpsrequest.html */ interface BaselineEbsBandwidthMbpsRequestProperty { /** * The maximum baseline bandwidth, in Mbps. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-baselineebsbandwidthmbpsrequest.html#cfn-ec2-ec2fleet-baselineebsbandwidthmbpsrequest-max */ readonly max?: number; /** * The minimum baseline bandwidth, in Mbps. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-baselineebsbandwidthmbpsrequest.html#cfn-ec2-ec2fleet-baselineebsbandwidthmbpsrequest-min */ readonly min?: number; } /** * The minimum and maximum amount of total accelerator memory, in MiB. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-acceleratortotalmemorymibrequest.html */ interface AcceleratorTotalMemoryMiBRequestProperty { /** * The maximum amount of accelerator memory, in MiB. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-acceleratortotalmemorymibrequest.html#cfn-ec2-ec2fleet-acceleratortotalmemorymibrequest-max */ readonly max?: number; /** * The minimum amount of accelerator memory, in MiB. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-acceleratortotalmemorymibrequest.html#cfn-ec2-ec2fleet-acceleratortotalmemorymibrequest-min */ readonly min?: number; } /** * The minimum and maximum amount of memory, in MiB. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-memorymibrequest.html */ interface MemoryMiBRequestProperty { /** * The maximum amount of memory, in MiB. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-memorymibrequest.html#cfn-ec2-ec2fleet-memorymibrequest-max */ readonly max?: number; /** * The minimum amount of memory, in MiB. * * To specify no minimum limit, specify `0` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-memorymibrequest.html#cfn-ec2-ec2fleet-memorymibrequest-min */ readonly min?: number; } /** * The minimum and maximum amount of total local storage, in GB. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-totallocalstoragegbrequest.html */ interface TotalLocalStorageGBRequestProperty { /** * The maximum amount of total local storage, in GB. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-totallocalstoragegbrequest.html#cfn-ec2-ec2fleet-totallocalstoragegbrequest-max */ readonly max?: number; /** * The minimum amount of total local storage, in GB. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-totallocalstoragegbrequest.html#cfn-ec2-ec2fleet-totallocalstoragegbrequest-min */ readonly min?: number; } /** * The baseline performance to consider, using an instance family as a baseline reference. * * The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. * * Currently, this parameter only supports CPU performance as a baseline performance factor. For example, specifying `c6i` would use the CPU performance of the `c6i` family as the baseline reference. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-baselineperformancefactorsrequest.html */ interface BaselinePerformanceFactorsRequestProperty { /** * The CPU performance to consider, using an instance family as the baseline reference. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-baselineperformancefactorsrequest.html#cfn-ec2-ec2fleet-baselineperformancefactorsrequest-cpu */ readonly cpu?: CfnEC2Fleet.CpuPerformanceFactorRequestProperty | cdk.IResolvable; } /** * The CPU performance to consider, using an instance family as the baseline reference. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-cpuperformancefactorrequest.html */ interface CpuPerformanceFactorRequestProperty { /** * Specify an instance family to use as the baseline reference for CPU performance. * * All instance types that match your specified attributes will be compared against the CPU performance of the referenced instance family, regardless of CPU manufacturer or architecture differences. * * > Currently, only one instance family can be specified in the list. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-cpuperformancefactorrequest.html#cfn-ec2-ec2fleet-cpuperformancefactorrequest-references */ readonly references?: Array | cdk.IResolvable; } /** * Specify an instance family to use as the baseline reference for CPU performance. * * All instance types that match your specified attributes will be compared against the CPU performance of the referenced instance family, regardless of CPU manufacturer or architecture. * * > Currently, only one instance family can be specified in the list. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-performancefactorreferencerequest.html */ interface PerformanceFactorReferenceRequestProperty { /** * The instance family to use as a baseline reference. * * > Ensure that you specify the correct value for the instance family. The instance family is everything before the period ( `.` ) in the instance type name. For example, in the instance type `c6i.large` , the instance family is `c6i` , not `c6` . For more information, see [Amazon EC2 instance type naming conventions](https://docs.aws.amazon.com/ec2/latest/instancetypes/instance-type-names.html) in *Amazon EC2 Instance Types* . * * The following instance families are *not supported* for performance protection: * * - `c1` * - `g3` | `g3s` * - `hpc7g` * - `m1` | `m2` * - `mac1` | `mac2` | `mac2-m1ultra` | `mac2-m2` | `mac2-m2pro` * - `p3dn` | `p4d` | `p5` * - `t1` * - `u-12tb1` | `u-18tb1` | `u-24tb1` | `u-3tb1` | `u-6tb1` | `u-9tb1` | `u7i-12tb` | `u7in-16tb` | `u7in-24tb` | `u7in-32tb` * * If you enable performance protection by specifying a supported instance family, the returned instance types will exclude the above unsupported instance families. * * If you specify an unsupported instance family as a value for baseline performance, the API returns an empty response response for [GetInstanceTypesFromInstanceRequirements](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetInstanceTypesFromInstanceRequirements.html) and an exception for [CreateFleet](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateFleet.html) , [RequestSpotFleet](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RequestSpotFleet.html) , [ModifyFleet](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ModifyFleet.html) , and [ModifySpotFleetRequest](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ModifySpotFleetRequest.html) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-performancefactorreferencerequest.html#cfn-ec2-ec2fleet-performancefactorreferencerequest-instancefamily */ readonly instanceFamily?: string; } /** * Describes a block device mapping, which defines the EBS volumes and instance store volumes to attach to an instance at launch. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-blockdevicemapping.html */ interface BlockDeviceMappingProperty { /** * The device name (for example, `/dev/sdh` or `xvdh` ). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-blockdevicemapping.html#cfn-ec2-ec2fleet-blockdevicemapping-devicename */ readonly deviceName?: string; /** * Parameters used to automatically set up EBS volumes when the instance is launched. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-blockdevicemapping.html#cfn-ec2-ec2fleet-blockdevicemapping-ebs */ readonly ebs?: CfnEC2Fleet.EbsBlockDeviceProperty | cdk.IResolvable; /** * To omit the device from the block device mapping, specify an empty string. * * When this property is specified, the device is removed from the block device mapping regardless of the assigned value. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-blockdevicemapping.html#cfn-ec2-ec2fleet-blockdevicemapping-nodevice */ readonly noDevice?: string; /** * The virtual device name ( `ephemeral` N). * * Instance store volumes are numbered starting from 0. An instance type with 2 available instance store volumes can specify mappings for `ephemeral0` and `ephemeral1` . The number of available instance store volumes depends on the instance type. After you connect to the instance, you must mount the volume. * * NVMe instance store volumes are automatically enumerated and assigned a device name. Including them in your block device mapping has no effect. * * Constraints: For M3 instances, you must specify instance store volumes in the block device mapping for the instance. When you launch an M3 instance, we ignore any instance store volumes specified in the block device mapping for the AMI. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-blockdevicemapping.html#cfn-ec2-ec2fleet-blockdevicemapping-virtualname */ readonly virtualName?: string; } /** * Describes a block device for an EBS volume. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-ebsblockdevice.html */ interface EbsBlockDeviceProperty { /** * Indicates whether the EBS volume is deleted on instance termination. * * For more information, see [Preserving Amazon EBS volumes on instance termination](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/terminating-instances.html#preserving-volumes-on-termination) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-ebsblockdevice.html#cfn-ec2-ec2fleet-ebsblockdevice-deleteontermination */ readonly deleteOnTermination?: boolean | cdk.IResolvable; /** * Indicates whether the encryption state of an EBS volume is changed while being restored from a backing snapshot. * * The effect of setting the encryption state to `true` depends on the volume origin (new or from a snapshot), starting encryption state, ownership, and whether encryption by default is enabled. For more information, see [Amazon EBS encryption](https://docs.aws.amazon.com/ebs/latest/userguide/ebs-encryption.html#encryption-parameters) in the *Amazon EBS User Guide* . * * In no case can you remove encryption from an encrypted volume. * * Encrypted volumes can only be attached to instances that support Amazon EBS encryption. For more information, see [Supported instance types](https://docs.aws.amazon.com/ebs/latest/userguide/ebs-encryption-requirements.html#ebs-encryption_supported_instances) . * * This parameter is not returned by `DescribeImageAttribute` . * * For `CreateImage` and `RegisterImage` , whether you can include this parameter, and the allowed values differ depending on the type of block device mapping you are creating. * * - If you are creating a block device mapping for a *new (empty) volume* , you can include this parameter, and specify either `true` for an encrypted volume, or `false` for an unencrypted volume. If you omit this parameter, it defaults to `false` (unencrypted). * - If you are creating a block device mapping from an *existing encrypted or unencrypted snapshot* , you must omit this parameter. If you include this parameter, the request will fail, regardless of the value that you specify. * - If you are creating a block device mapping from an *existing unencrypted volume* , you can include this parameter, but you must specify `false` . If you specify `true` , the request will fail. In this case, we recommend that you omit the parameter. * - If you are creating a block device mapping from an *existing encrypted volume* , you can include this parameter, and specify either `true` or `false` . However, if you specify `false` , the parameter is ignored and the block device mapping is always encrypted. In this case, we recommend that you omit the parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-ebsblockdevice.html#cfn-ec2-ec2fleet-ebsblockdevice-encrypted */ readonly encrypted?: boolean | cdk.IResolvable; /** * The number of I/O operations per second (IOPS). * * For `gp3` , `io1` , and `io2` volumes, this represents the number of IOPS that are provisioned for the volume. For `gp2` volumes, this represents the baseline performance of the volume and the rate at which the volume accumulates I/O credits for bursting. * * The following are the supported values for each volume type: * * - `gp3` : 3,000 - 16,000 IOPS * - `io1` : 100 - 64,000 IOPS * - `io2` : 100 - 256,000 IOPS * * For `io2` volumes, you can achieve up to 256,000 IOPS on [instances built on the Nitro System](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html#ec2-nitro-instances) . On other instances, you can achieve performance up to 32,000 IOPS. * * This parameter is required for `io1` and `io2` volumes. The default for `gp3` volumes is 3,000 IOPS. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-ebsblockdevice.html#cfn-ec2-ec2fleet-ebsblockdevice-iops */ readonly iops?: number; /** * Identifier (key ID, key alias, key ARN, or alias ARN) of the customer managed KMS key to use for EBS encryption. * * This parameter is only supported on `BlockDeviceMapping` objects called by [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) , [RequestSpotFleet](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RequestSpotFleet.html) , and [RequestSpotInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RequestSpotInstances.html) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-ebsblockdevice.html#cfn-ec2-ec2fleet-ebsblockdevice-kmskeyid */ readonly kmsKeyId?: string; /** * The ID of the snapshot. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-ebsblockdevice.html#cfn-ec2-ec2fleet-ebsblockdevice-snapshotid */ readonly snapshotId?: string; /** * The size of the volume, in GiBs. * * You must specify either a snapshot ID or a volume size. If you specify a snapshot, the default is the snapshot size. You can specify a volume size that is equal to or larger than the snapshot size. * * The following are the supported sizes for each volume type: * * - `gp2` and `gp3` : 1 - 16,384 GiB * - `io1` : 4 - 16,384 GiB * - `io2` : 4 - 65,536 GiB * - `st1` and `sc1` : 125 - 16,384 GiB * - `standard` : 1 - 1024 GiB * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-ebsblockdevice.html#cfn-ec2-ec2fleet-ebsblockdevice-volumesize */ readonly volumeSize?: number; /** * The volume type. * * For more information, see [Amazon EBS volume types](https://docs.aws.amazon.com/ebs/latest/userguide/ebs-volume-types.html) in the *Amazon EBS User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ec2fleet-ebsblockdevice.html#cfn-ec2-ec2fleet-ebsblockdevice-volumetype */ readonly volumeType?: string; } } /** * Properties for defining a `CfnEC2Fleet` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html */ export interface CfnEC2FleetProps { /** * Reserved. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html#cfn-ec2-ec2fleet-context */ readonly context?: string; /** * Indicates whether running instances should be terminated if the total target capacity of the EC2 Fleet is decreased below the current size of the EC2 Fleet. * * Supported only for fleets of type `maintain` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html#cfn-ec2-ec2fleet-excesscapacityterminationpolicy */ readonly excessCapacityTerminationPolicy?: string; /** * The configuration for the EC2 Fleet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html#cfn-ec2-ec2fleet-launchtemplateconfigs */ readonly launchTemplateConfigs: Array | cdk.IResolvable; /** * Describes the configuration of On-Demand Instances in an EC2 Fleet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html#cfn-ec2-ec2fleet-ondemandoptions */ readonly onDemandOptions?: cdk.IResolvable | CfnEC2Fleet.OnDemandOptionsRequestProperty; /** * Indicates whether EC2 Fleet should replace unhealthy Spot Instances. * * Supported only for fleets of type `maintain` . For more information, see [EC2 Fleet health checks](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/manage-ec2-fleet.html#ec2-fleet-health-checks) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html#cfn-ec2-ec2fleet-replaceunhealthyinstances */ readonly replaceUnhealthyInstances?: boolean | cdk.IResolvable; /** * Describes the configuration of Spot Instances in an EC2 Fleet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html#cfn-ec2-ec2fleet-spotoptions */ readonly spotOptions?: cdk.IResolvable | CfnEC2Fleet.SpotOptionsRequestProperty; /** * The key-value pair for tagging the EC2 Fleet request on creation. For more information, see [Tag your resources](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Using_Tags.html#tag-resources) . * * If the fleet type is `instant` , specify a resource type of `fleet` to tag the fleet or `instance` to tag the instances at launch. * * If the fleet type is `maintain` or `request` , specify a resource type of `fleet` to tag the fleet. You cannot specify a resource type of `instance` . To tag instances at launch, specify the tags in a [launch template](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-templates.html#create-launch-template) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html#cfn-ec2-ec2fleet-tagspecifications */ readonly tagSpecifications?: Array | cdk.IResolvable; /** * The number of units to request. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html#cfn-ec2-ec2fleet-targetcapacityspecification */ readonly targetCapacitySpecification: cdk.IResolvable | CfnEC2Fleet.TargetCapacitySpecificationRequestProperty; /** * Indicates whether running instances should be terminated when the EC2 Fleet expires. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html#cfn-ec2-ec2fleet-terminateinstanceswithexpiration */ readonly terminateInstancesWithExpiration?: boolean | cdk.IResolvable; /** * The fleet type. The default value is `maintain` . * * - `maintain` - The EC2 Fleet places an asynchronous request for your desired capacity, and continues to maintain your desired Spot capacity by replenishing interrupted Spot Instances. * - `request` - The EC2 Fleet places an asynchronous one-time request for your desired capacity, but does submit Spot requests in alternative capacity pools if Spot capacity is unavailable, and does not maintain Spot capacity if Spot Instances are interrupted. * - `instant` - The EC2 Fleet places a synchronous one-time request for your desired capacity, and returns errors for any instances that could not be launched. * * For more information, see [EC2 Fleet request types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-request-type.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html#cfn-ec2-ec2fleet-type */ readonly type?: string; /** * The start date and time of the request, in UTC format (for example, *YYYY* - *MM* - *DD* T *HH* : *MM* : *SS* Z). * * The default is to start fulfilling the request immediately. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html#cfn-ec2-ec2fleet-validfrom */ readonly validFrom?: string; /** * The end date and time of the request, in UTC format (for example, *YYYY* - *MM* - *DD* T *HH* : *MM* : *SS* Z). * * At this point, no new EC2 Fleet requests are placed or able to fulfill the request. If no value is specified, the request remains until you cancel it. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ec2fleet.html#cfn-ec2-ec2fleet-validuntil */ readonly validUntil?: string; } /** * Specifies an Elastic IP (EIP) address and can, optionally, associate it with an Amazon EC2 instance. * * You can allocate an Elastic IP address from an address pool owned by AWS or from an address pool created from a public IPv4 address range that you have brought to AWS for use with your AWS resources using bring your own IP addresses (BYOIP). For more information, see [Bring Your Own IP Addresses (BYOIP)](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-byoip.html) in the *Amazon EC2 User Guide* . * * For more information, see [Elastic IP Addresses](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/elastic-ip-addresses-eip.html) in the *Amazon EC2 User Guide* . * * @cloudformationResource AWS::EC2::EIP * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eip.html */ export declare class CfnEIP extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnEIP from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnEIP; /** * The ID that AWS assigns to represent the allocation of the address for use with Amazon VPC. This is returned only for VPC elastic IP addresses. For example, `eipalloc-5723d13e` . * * @cloudformationAttribute AllocationId */ readonly attrAllocationId: string; /** * The Elastic IP address. * * @cloudformationAttribute PublicIp */ readonly attrPublicIp: string; /** * An Elastic IP address or a carrier IP address in a Wavelength Zone. */ address?: string; /** * The network ( `vpc` ). */ domain?: string; /** * The ID of the instance. */ instanceId?: string; /** * The ID of an IPAM pool which has an Amazon-provided or BYOIP public IPv4 CIDR provisioned to it. */ ipamPoolId?: string; /** * A unique set of Availability Zones, Local Zones, or Wavelength Zones from which AWS advertises IP addresses. */ networkBorderGroup?: string; /** * The ID of an address pool that you own. */ publicIpv4Pool?: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * Any tags assigned to the Elastic IP address. */ tagsRaw?: Array; /** * The Elastic IP address you are accepting for transfer. */ transferAddress?: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnEIPProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnEIP` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eip.html */ export interface CfnEIPProps { /** * An Elastic IP address or a carrier IP address in a Wavelength Zone. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eip.html#cfn-ec2-eip-address */ readonly address?: string; /** * The network ( `vpc` ). * * If you define an Elastic IP address and associate it with a VPC that is defined in the same template, you must declare a dependency on the VPC-gateway attachment by using the [DependsOn Attribute](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-attribute-dependson.html) on this resource. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eip.html#cfn-ec2-eip-domain */ readonly domain?: string; /** * The ID of the instance. * * > Updates to the `InstanceId` property may require *some interruptions* . Updates on an EIP reassociates the address on its associated resource. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eip.html#cfn-ec2-eip-instanceid */ readonly instanceId?: string; /** * The ID of an IPAM pool which has an Amazon-provided or BYOIP public IPv4 CIDR provisioned to it. * * For more information, see [Allocate sequential Elastic IP addresses from an IPAM pool](https://docs.aws.amazon.com/vpc/latest/ipam/tutorials-eip-pool.html) in the *Amazon VPC IPAM User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eip.html#cfn-ec2-eip-ipampoolid */ readonly ipamPoolId?: string; /** * A unique set of Availability Zones, Local Zones, or Wavelength Zones from which AWS advertises IP addresses. * * Use this parameter to limit the IP address to this location. IP addresses cannot move between network border groups. * * Use [DescribeAvailabilityZones](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DescribeAvailabilityZones.html) to view the network border groups. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eip.html#cfn-ec2-eip-networkbordergroup */ readonly networkBorderGroup?: string; /** * The ID of an address pool that you own. * * Use this parameter to let Amazon EC2 select an address from the address pool. * * > Updates to the `PublicIpv4Pool` property may require *some interruptions* . Updates on an EIP reassociates the address on its associated resource. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eip.html#cfn-ec2-eip-publicipv4pool */ readonly publicIpv4Pool?: string; /** * Any tags assigned to the Elastic IP address. * * > Updates to the `Tags` property may require *some interruptions* . Updates on an EIP reassociates the address on its associated resource. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eip.html#cfn-ec2-eip-tags */ readonly tags?: Array; /** * The Elastic IP address you are accepting for transfer. * * You can only accept one transferred address. For more information on Elastic IP address transfers, see [Transfer Elastic IP addresses](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-eips.html#transfer-EIPs-intro) in the *Amazon Virtual Private Cloud User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eip.html#cfn-ec2-eip-transferaddress */ readonly transferAddress?: string; } /** * Associates an Elastic IP address with an instance or a network interface. * * Before you can use an Elastic IP address, you must allocate it to your account. For more information about working with Elastic IP addresses, see [Elastic IP address concepts and rules](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-eips.html#vpc-eip-overview) . * * You must specify `AllocationId` and either `InstanceId` , `NetworkInterfaceId` , or `PrivateIpAddress` . * * @cloudformationResource AWS::EC2::EIPAssociation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eipassociation.html */ export declare class CfnEIPAssociation extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnEIPAssociation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnEIPAssociation; /** * The ID of the association. * * @cloudformationAttribute Id */ readonly attrId: string; /** * The allocation ID. */ allocationId?: string; /** * @deprecated this property has been deprecated */ eip?: string; /** * The ID of the instance. */ instanceId?: string; /** * The ID of the network interface. */ networkInterfaceId?: string; /** * The primary or secondary private IP address to associate with the Elastic IP address. */ privateIpAddress?: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnEIPAssociationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnEIPAssociation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eipassociation.html */ export interface CfnEIPAssociationProps { /** * The allocation ID. * * This is required. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eipassociation.html#cfn-ec2-eipassociation-allocationid */ readonly allocationId?: string; /** * @deprecated this property has been deprecated * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eipassociation.html#cfn-ec2-eipassociation-eip */ readonly eip?: string; /** * The ID of the instance. * * The instance must have exactly one attached network interface. You can specify either the instance ID or the network interface ID, but not both. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eipassociation.html#cfn-ec2-eipassociation-instanceid */ readonly instanceId?: string; /** * The ID of the network interface. * * If the instance has more than one network interface, you must specify a network interface ID. * * You can specify either the instance ID or the network interface ID, but not both. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eipassociation.html#cfn-ec2-eipassociation-networkinterfaceid */ readonly networkInterfaceId?: string; /** * The primary or secondary private IP address to associate with the Elastic IP address. * * If no private IP address is specified, the Elastic IP address is associated with the primary private IP address. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-eipassociation.html#cfn-ec2-eipassociation-privateipaddress */ readonly privateIpAddress?: string; } /** * [IPv6 only] Specifies an egress-only internet gateway for your VPC. * * An egress-only internet gateway is used to enable outbound communication over IPv6 from instances in your VPC to the internet, and prevents hosts outside of your VPC from initiating an IPv6 connection with your instance. * * For more information, see [Egress-only internet gateway](https://docs.aws.amazon.com/vpc/latest/userguide/egress-only-internet-gateway.html) in the *Amazon VPC User Guide* . * * @cloudformationResource AWS::EC2::EgressOnlyInternetGateway * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-egressonlyinternetgateway.html */ export declare class CfnEgressOnlyInternetGateway extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggableV2 { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnEgressOnlyInternetGateway from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnEgressOnlyInternetGateway; /** * The ID of the egress-only internet gateway. * * @cloudformationAttribute Id */ readonly attrId: string; /** * Tag Manager which manages the tags for this resource */ readonly cdkTagManager: cdk.TagManager; /** * The tags assigned to the egress-only internet gateway. */ tags?: Array; /** * The ID of the VPC for which to create the egress-only internet gateway. */ vpcId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnEgressOnlyInternetGatewayProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnEgressOnlyInternetGateway` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-egressonlyinternetgateway.html */ export interface CfnEgressOnlyInternetGatewayProps { /** * The tags assigned to the egress-only internet gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-egressonlyinternetgateway.html#cfn-ec2-egressonlyinternetgateway-tags */ readonly tags?: Array; /** * The ID of the VPC for which to create the egress-only internet gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-egressonlyinternetgateway.html#cfn-ec2-egressonlyinternetgateway-vpcid */ readonly vpcId: string; } /** * Associates an AWS Identity and Access Management (IAM) role with an AWS Certificate Manager (ACM) certificate. * * This enables the certificate to be used by the ACM for Nitro Enclaves application inside an enclave. For more information, see [AWS Certificate Manager for Nitro Enclaves](https://docs.aws.amazon.com/enclaves/latest/user/nitro-enclave-refapp.html) in the *AWS Nitro Enclaves User Guide* . * * When the IAM role is associated with the ACM certificate, the certificate, certificate chain, and encrypted private key are placed in an Amazon S3 location that only the associated IAM role can access. The private key of the certificate is encrypted with an AWS managed key that has an attached attestation-based key policy. * * To enable the IAM role to access the Amazon S3 object, you must grant it permission to call `s3:GetObject` on the Amazon S3 bucket returned by the command. To enable the IAM role to access the KMS key, you must grant it permission to call `kms:Decrypt` on the KMS key returned by the command. For more information, see [Grant the role permission to access the certificate and encryption key](https://docs.aws.amazon.com/enclaves/latest/user/nitro-enclave-refapp.html#add-policy) in the *AWS Nitro Enclaves User Guide* . * * @cloudformationResource AWS::EC2::EnclaveCertificateIamRoleAssociation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-enclavecertificateiamroleassociation.html */ export declare class CfnEnclaveCertificateIamRoleAssociation extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnEnclaveCertificateIamRoleAssociation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnEnclaveCertificateIamRoleAssociation; /** * The name of the Amazon S3 bucket to which the certificate was uploaded. * * @cloudformationAttribute CertificateS3BucketName */ readonly attrCertificateS3BucketName: string; /** * The Amazon S3 object key where the certificate, certificate chain, and encrypted private key bundle are stored. The object key is formatted as follows: `role_arn` / `certificate_arn` . * * @cloudformationAttribute CertificateS3ObjectKey */ readonly attrCertificateS3ObjectKey: string; /** * The ID of the AWS KMS key used to encrypt the private key of the certificate. * * @cloudformationAttribute EncryptionKmsKeyId */ readonly attrEncryptionKmsKeyId: string; /** * The ARN of the ACM certificate with which to associate the IAM role. */ certificateArn: string; /** * The ARN of the IAM role to associate with the ACM certificate. */ roleArn: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnEnclaveCertificateIamRoleAssociationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnEnclaveCertificateIamRoleAssociation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-enclavecertificateiamroleassociation.html */ export interface CfnEnclaveCertificateIamRoleAssociationProps { /** * The ARN of the ACM certificate with which to associate the IAM role. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-enclavecertificateiamroleassociation.html#cfn-ec2-enclavecertificateiamroleassociation-certificatearn */ readonly certificateArn: string; /** * The ARN of the IAM role to associate with the ACM certificate. * * You can associate up to 16 IAM roles with an ACM certificate. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-enclavecertificateiamroleassociation.html#cfn-ec2-enclavecertificateiamroleassociation-rolearn */ readonly roleArn: string; } /** * Specifies a VPC flow log that captures IP traffic for a specified network interface, subnet, or VPC. * * To view the log data, use Amazon CloudWatch Logs (CloudWatch Logs) to help troubleshoot connection issues. For example, you can use a flow log to investigate why certain traffic isn't reaching an instance, which can help you diagnose overly restrictive security group rules. For more information, see [VPC Flow Logs](https://docs.aws.amazon.com/vpc/latest/userguide/flow-logs.html) in the *Amazon VPC User Guide* . * * @cloudformationResource AWS::EC2::FlowLog * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-flowlog.html */ export declare class CfnFlowLog extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnFlowLog from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnFlowLog; /** * The ID of the flow log. For example, `fl-123456abc123abc1` . * * @cloudformationAttribute Id */ readonly attrId: string; /** * The ARN of the IAM role that allows the service to publish flow logs across accounts. */ deliverCrossAccountRole?: string; /** * The ARN of the IAM role that allows Amazon EC2 to publish flow logs to the log destination. */ deliverLogsPermissionArn?: string; /** * The destination options. */ destinationOptions?: any | cdk.IResolvable; /** * The destination for the flow log data. The meaning of this parameter depends on the destination type. */ logDestination?: string; /** * The type of destination for the flow log data. */ logDestinationType?: string; /** * The fields to include in the flow log record, in the order in which they should appear. */ logFormat?: string; /** * The name of a new or existing CloudWatch Logs log group where Amazon EC2 publishes your flow logs. */ logGroupName?: string; /** * The maximum interval of time during which a flow of packets is captured and aggregated into a flow log record. */ maxAggregationInterval?: number; /** * The ID of the resource to monitor. */ resourceId: string; /** * The type of resource to monitor. */ resourceType: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags to apply to the flow logs. */ tagsRaw?: Array; /** * The type of traffic to monitor (accepted traffic, rejected traffic, or all traffic). */ trafficType?: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnFlowLogProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnFlowLog { /** * Describes the destination options for a flow log. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-flowlog-destinationoptions.html */ interface DestinationOptionsProperty { /** * The format for the flow log. * * The default is `plain-text` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-flowlog-destinationoptions.html#cfn-ec2-flowlog-destinationoptions-fileformat */ readonly fileFormat: string; /** * Indicates whether to use Hive-compatible prefixes for flow logs stored in Amazon S3. * * The default is `false` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-flowlog-destinationoptions.html#cfn-ec2-flowlog-destinationoptions-hivecompatiblepartitions */ readonly hiveCompatiblePartitions: boolean | cdk.IResolvable; /** * Indicates whether to partition the flow log per hour. * * This reduces the cost and response time for queries. The default is `false` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-flowlog-destinationoptions.html#cfn-ec2-flowlog-destinationoptions-perhourpartition */ readonly perHourPartition: boolean | cdk.IResolvable; } } /** * Properties for defining a `CfnFlowLog` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-flowlog.html */ export interface CfnFlowLogProps { /** * The ARN of the IAM role that allows the service to publish flow logs across accounts. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-flowlog.html#cfn-ec2-flowlog-delivercrossaccountrole */ readonly deliverCrossAccountRole?: string; /** * The ARN of the IAM role that allows Amazon EC2 to publish flow logs to the log destination. * * This parameter is required if the destination type is `cloud-watch-logs` , or if the destination type is `kinesis-data-firehose` and the delivery stream and the resources to monitor are in different accounts. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-flowlog.html#cfn-ec2-flowlog-deliverlogspermissionarn */ readonly deliverLogsPermissionArn?: string; /** * The destination options. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-flowlog.html#cfn-ec2-flowlog-destinationoptions */ readonly destinationOptions?: any | cdk.IResolvable; /** * The destination for the flow log data. The meaning of this parameter depends on the destination type. * * - If the destination type is `cloud-watch-logs` , specify the ARN of a CloudWatch Logs log group. For example: * * arn:aws:logs: *region* : *account_id* :log-group: *my_group* * * Alternatively, use the `LogGroupName` parameter. * - If the destination type is `s3` , specify the ARN of an S3 bucket. For example: * * arn:aws:s3::: *my_bucket* / *my_subfolder* / * * The subfolder is optional. Note that you can't use `AWSLogs` as a subfolder name. * - If the destination type is `kinesis-data-firehose` , specify the ARN of a Kinesis Data Firehose delivery stream. For example: * * arn:aws:firehose: *region* : *account_id* :deliverystream: *my_stream* * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-flowlog.html#cfn-ec2-flowlog-logdestination */ readonly logDestination?: string; /** * The type of destination for the flow log data. * * Default: `cloud-watch-logs` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-flowlog.html#cfn-ec2-flowlog-logdestinationtype */ readonly logDestinationType?: string; /** * The fields to include in the flow log record, in the order in which they should appear. * * If you omit this parameter, the flow log is created using the default format. If you specify this parameter, you must include at least one field. For more information about the available fields, see [Flow log records](https://docs.aws.amazon.com/vpc/latest/userguide/flow-logs.html#flow-log-records) in the *Amazon VPC User Guide* or [Transit Gateway Flow Log records](https://docs.aws.amazon.com/vpc/latest/tgw/tgw-flow-logs.html#flow-log-records) in the *AWS Transit Gateway Guide* . * * Specify the fields using the `${field-id}` format, separated by spaces. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-flowlog.html#cfn-ec2-flowlog-logformat */ readonly logFormat?: string; /** * The name of a new or existing CloudWatch Logs log group where Amazon EC2 publishes your flow logs. * * This parameter is valid only if the destination type is `cloud-watch-logs` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-flowlog.html#cfn-ec2-flowlog-loggroupname */ readonly logGroupName?: string; /** * The maximum interval of time during which a flow of packets is captured and aggregated into a flow log record. * * The possible values are 60 seconds (1 minute) or 600 seconds (10 minutes). This parameter must be 60 seconds for transit gateway resource types. * * When a network interface is attached to a [Nitro-based instance](https://docs.aws.amazon.com/ec2/latest/instancetypes/ec2-nitro-instances.html) , the aggregation interval is always 60 seconds or less, regardless of the value that you specify. * * Default: 600 * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-flowlog.html#cfn-ec2-flowlog-maxaggregationinterval */ readonly maxAggregationInterval?: number; /** * The ID of the resource to monitor. * * For example, if the resource type is `VPC` , specify the ID of the VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-flowlog.html#cfn-ec2-flowlog-resourceid */ readonly resourceId: string; /** * The type of resource to monitor. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-flowlog.html#cfn-ec2-flowlog-resourcetype */ readonly resourceType: string; /** * The tags to apply to the flow logs. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-flowlog.html#cfn-ec2-flowlog-tags */ readonly tags?: Array; /** * The type of traffic to monitor (accepted traffic, rejected traffic, or all traffic). * * This parameter is not supported for transit gateway resource types. It is required for the other resource types. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-flowlog.html#cfn-ec2-flowlog-traffictype */ readonly trafficType?: string; } /** * Associates a virtual private gateway or internet gateway with a route table. * * The gateway and route table must be in the same VPC. This association causes the incoming traffic to the gateway to be routed according to the routes in the route table. * * @cloudformationResource AWS::EC2::GatewayRouteTableAssociation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-gatewayroutetableassociation.html */ export declare class CfnGatewayRouteTableAssociation extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnGatewayRouteTableAssociation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnGatewayRouteTableAssociation; /** * The ID of the route table association. * * @cloudformationAttribute AssociationId */ readonly attrAssociationId: string; /** * The ID of the gateway. */ gatewayId: string; /** * The ID of the route table. */ routeTableId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnGatewayRouteTableAssociationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnGatewayRouteTableAssociation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-gatewayroutetableassociation.html */ export interface CfnGatewayRouteTableAssociationProps { /** * The ID of the gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-gatewayroutetableassociation.html#cfn-ec2-gatewayroutetableassociation-gatewayid */ readonly gatewayId: string; /** * The ID of the route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-gatewayroutetableassociation.html#cfn-ec2-gatewayroutetableassociation-routetableid */ readonly routeTableId: string; } /** * Allocates a fully dedicated physical server for launching EC2 instances. * * Because the host is fully dedicated for your use, it can help you address compliance requirements and reduce costs by allowing you to use your existing server-bound software licenses. For more information, see [Dedicated Hosts](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/dedicated-hosts-overview.html) in the *Amazon EC2 User Guide* . * * @cloudformationResource AWS::EC2::Host * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-host.html */ export declare class CfnHost extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggableV2 { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnHost from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnHost; /** * The ID of the host. * * @cloudformationAttribute HostId */ readonly attrHostId: string; /** * The ID of the Outpost hardware asset on which the Dedicated Host is allocated. */ assetId?: string; /** * Indicates whether the host accepts any untargeted instance launches that match its instance type configuration, or if it only accepts Host tenancy instance launches that specify its unique host ID. */ autoPlacement?: string; /** * The Availability Zone in which to allocate the Dedicated Host. */ availabilityZone: string; /** * Tag Manager which manages the tags for this resource */ readonly cdkTagManager: cdk.TagManager; /** * Indicates whether host maintenance is enabled or disabled for the Dedicated Host. */ hostMaintenance?: string; /** * Indicates whether to enable or disable host recovery for the Dedicated Host. */ hostRecovery?: string; /** * The instance family supported by the Dedicated Host. */ instanceFamily?: string; /** * Specifies the instance type to be supported by the Dedicated Hosts. */ instanceType?: string; /** * The Amazon Resource Name (ARN) of the AWS Outpost on which the Dedicated Host is allocated. */ outpostArn?: string; /** * Any tags assigned to the Dedicated Host. */ tags?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnHostProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnHost` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-host.html */ export interface CfnHostProps { /** * The ID of the Outpost hardware asset on which the Dedicated Host is allocated. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-host.html#cfn-ec2-host-assetid */ readonly assetId?: string; /** * Indicates whether the host accepts any untargeted instance launches that match its instance type configuration, or if it only accepts Host tenancy instance launches that specify its unique host ID. * * For more information, see [Understanding auto-placement and affinity](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/how-dedicated-hosts-work.html#dedicated-hosts-understanding) in the *Amazon EC2 User Guide* . * * Default: `off` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-host.html#cfn-ec2-host-autoplacement */ readonly autoPlacement?: string; /** * The Availability Zone in which to allocate the Dedicated Host. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-host.html#cfn-ec2-host-availabilityzone */ readonly availabilityZone: string; /** * Indicates whether host maintenance is enabled or disabled for the Dedicated Host. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-host.html#cfn-ec2-host-hostmaintenance */ readonly hostMaintenance?: string; /** * Indicates whether to enable or disable host recovery for the Dedicated Host. * * Host recovery is disabled by default. For more information, see [Host recovery](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/dedicated-hosts-recovery.html) in the *Amazon EC2 User Guide* . * * Default: `off` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-host.html#cfn-ec2-host-hostrecovery */ readonly hostRecovery?: string; /** * The instance family supported by the Dedicated Host. * * For example, `m5` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-host.html#cfn-ec2-host-instancefamily */ readonly instanceFamily?: string; /** * Specifies the instance type to be supported by the Dedicated Hosts. * * If you specify an instance type, the Dedicated Hosts support instances of the specified instance type only. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-host.html#cfn-ec2-host-instancetype */ readonly instanceType?: string; /** * The Amazon Resource Name (ARN) of the AWS Outpost on which the Dedicated Host is allocated. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-host.html#cfn-ec2-host-outpostarn */ readonly outpostArn?: string; /** * Any tags assigned to the Dedicated Host. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-host.html#cfn-ec2-host-tags */ readonly tags?: Array; } /** * IPAM is a VPC feature that you can use to automate your IP address management workflows including assigning, tracking, troubleshooting, and auditing IP addresses across AWS Regions and accounts throughout your AWS Organization. * * For more information, see [What is IPAM?](https://docs.aws.amazon.com//vpc/latest/ipam/what-is-it-ipam.html) in the *Amazon VPC IPAM User Guide* . * * There are AWS Identity and Access Management (IAM) permissions required to fully manage an IPAM in CloudFormation. For more information, see [Example policy](https://docs.aws.amazon.com//vpc/latest/ipam/iam-ipam-policy-examples.html) in the *Amazon VPC IPAM User Guide* . * * @cloudformationResource AWS::EC2::IPAM * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipam.html */ export declare class CfnIPAM extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnIPAM from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnIPAM; /** * The ARN of the IPAM. * * @cloudformationAttribute Arn */ readonly attrArn: string; /** * The ID of the default resource discovery association. * * @cloudformationAttribute DefaultResourceDiscoveryAssociationId */ readonly attrDefaultResourceDiscoveryAssociationId: string; /** * The ID of the default resource discovery. * * @cloudformationAttribute DefaultResourceDiscoveryId */ readonly attrDefaultResourceDiscoveryId: string; /** * The ID of the IPAM. * * @cloudformationAttribute IpamId */ readonly attrIpamId: string; /** * The ID of the default private scope. * * @cloudformationAttribute PrivateDefaultScopeId */ readonly attrPrivateDefaultScopeId: string; /** * The ID of the default public scope. * * @cloudformationAttribute PublicDefaultScopeId */ readonly attrPublicDefaultScopeId: string; /** * The number of resource discovery associations. * * @cloudformationAttribute ResourceDiscoveryAssociationCount */ readonly attrResourceDiscoveryAssociationCount: number; /** * The number of scopes. * * @cloudformationAttribute ScopeCount */ readonly attrScopeCount: number; /** * If your IPAM is integrated with AWS Organizations, you can exclude an [organizational unit (OU)](https://docs.aws.amazon.com/organizations/latest/userguide/orgs_getting-started_concepts.html#organizationalunit) from being managed by IPAM. When you exclude an OU, IPAM will not manage the IP addresses in accounts in that OU. For more information, see [Exclude organizational units from IPAM](https://docs.aws.amazon.com/vpc/latest/ipam/exclude-ous.html) in the *Amazon Virtual Private Cloud IP Address Manager User Guide* . */ defaultResourceDiscoveryOrganizationalUnitExclusions?: Array | cdk.IResolvable; /** * The description for the IPAM. */ description?: string; /** * Enable this option to use your own GUA ranges as private IPv6 addresses. */ enablePrivateGua?: boolean | cdk.IResolvable; /** * A metered account is an account that is charged for active IP addresses managed in IPAM. */ meteredAccount?: string; /** * The operating Regions for an IPAM. */ operatingRegions?: Array | cdk.IResolvable; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The key/value combination of a tag assigned to the resource. */ tagsRaw?: Array; /** * IPAM is offered in a Free Tier and an Advanced Tier. */ tier?: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnIPAMProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnIPAM { /** * The operating Regions for an IPAM. * * Operating Regions are AWS Regions where the IPAM is allowed to manage IP address CIDRs. IPAM only discovers and monitors resources in the AWS Regions you select as operating Regions. * * For more information about operating Regions, see [Create an IPAM](https://docs.aws.amazon.com//vpc/latest/ipam/create-ipam.html) in the *Amazon VPC IPAM User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ipam-ipamoperatingregion.html */ interface IpamOperatingRegionProperty { /** * The name of the operating Region. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ipam-ipamoperatingregion.html#cfn-ec2-ipam-ipamoperatingregion-regionname */ readonly regionName: string; } /** * If your IPAM is integrated with AWS Organizations, you can exclude an [organizational unit (OU)](https://docs.aws.amazon.com/organizations/latest/userguide/orgs_getting-started_concepts.html#organizationalunit) from being managed by IPAM. When you exclude an OU, IPAM will not manage the IP addresses in accounts in that OU. For more information, see [Exclude organizational units from IPAM](https://docs.aws.amazon.com/vpc/latest/ipam/exclude-ous.html) in the *Amazon Virtual Private Cloud IP Address Manager User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ipam-ipamorganizationalunitexclusion.html */ interface IpamOrganizationalUnitExclusionProperty { /** * An AWS Organizations entity path. * * For more information on the entity path, see [Understand the AWS Organizations entity path](https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed-view-data-orgs.html#access_policies_access-advisor-viewing-orgs-entity-path) in the *AWS Identity and Access Management User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ipam-ipamorganizationalunitexclusion.html#cfn-ec2-ipam-ipamorganizationalunitexclusion-organizationsentitypath */ readonly organizationsEntityPath: string; } } /** * Properties for defining a `CfnIPAM` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipam.html */ export interface CfnIPAMProps { /** * If your IPAM is integrated with AWS Organizations, you can exclude an [organizational unit (OU)](https://docs.aws.amazon.com/organizations/latest/userguide/orgs_getting-started_concepts.html#organizationalunit) from being managed by IPAM. When you exclude an OU, IPAM will not manage the IP addresses in accounts in that OU. For more information, see [Exclude organizational units from IPAM](https://docs.aws.amazon.com/vpc/latest/ipam/exclude-ous.html) in the *Amazon Virtual Private Cloud IP Address Manager User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipam.html#cfn-ec2-ipam-defaultresourcediscoveryorganizationalunitexclusions */ readonly defaultResourceDiscoveryOrganizationalUnitExclusions?: Array | cdk.IResolvable; /** * The description for the IPAM. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipam.html#cfn-ec2-ipam-description */ readonly description?: string; /** * Enable this option to use your own GUA ranges as private IPv6 addresses. * * This option is disabled by default. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipam.html#cfn-ec2-ipam-enableprivategua */ readonly enablePrivateGua?: boolean | cdk.IResolvable; /** * A metered account is an account that is charged for active IP addresses managed in IPAM. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipam.html#cfn-ec2-ipam-meteredaccount */ readonly meteredAccount?: string; /** * The operating Regions for an IPAM. * * Operating Regions are AWS Regions where the IPAM is allowed to manage IP address CIDRs. IPAM only discovers and monitors resources in the AWS Regions you select as operating Regions. * * For more information about operating Regions, see [Create an IPAM](https://docs.aws.amazon.com//vpc/latest/ipam/create-ipam.html) in the *Amazon VPC IPAM User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipam.html#cfn-ec2-ipam-operatingregions */ readonly operatingRegions?: Array | cdk.IResolvable; /** * The key/value combination of a tag assigned to the resource. * * Use the tag key in the filter name and the tag value as the filter value. For example, to find all resources that have a tag with the key `Owner` and the value `TeamA` , specify `tag:Owner` for the filter name and `TeamA` for the filter value. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipam.html#cfn-ec2-ipam-tags */ readonly tags?: Array; /** * IPAM is offered in a Free Tier and an Advanced Tier. * * For more information about the features available in each tier and the costs associated with the tiers, see the [VPC IPAM product pricing page](https://docs.aws.amazon.com//vpc/pricing/) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipam.html#cfn-ec2-ipam-tier */ readonly tier?: string; } /** * In IPAM, an allocation is a CIDR assignment from an IPAM pool to another IPAM pool or to a resource. * * @cloudformationResource AWS::EC2::IPAMAllocation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamallocation.html */ export declare class CfnIPAMAllocation extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnIPAMAllocation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnIPAMAllocation; /** * The ID of an allocation. * * @cloudformationAttribute IpamPoolAllocationId */ readonly attrIpamPoolAllocationId: string; /** * The CIDR you would like to allocate from the IPAM pool. Note the following:. */ cidr?: string; /** * A description for the allocation. */ description?: string; /** * The ID of the IPAM pool from which you would like to allocate a CIDR. */ ipamPoolId: string; /** * The netmask length of the CIDR you would like to allocate from the IPAM pool. Note the following:. */ netmaskLength?: number; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnIPAMAllocationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnIPAMAllocation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamallocation.html */ export interface CfnIPAMAllocationProps { /** * The CIDR you would like to allocate from the IPAM pool. Note the following:. * * - If there is no DefaultNetmaskLength allocation rule set on the pool, you must specify either the NetmaskLength or the CIDR. * - If the DefaultNetmaskLength allocation rule is set on the pool, you can specify either the NetmaskLength or the CIDR and the DefaultNetmaskLength allocation rule will be ignored. * * Possible values: Any available IPv4 or IPv6 CIDR. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamallocation.html#cfn-ec2-ipamallocation-cidr */ readonly cidr?: string; /** * A description for the allocation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamallocation.html#cfn-ec2-ipamallocation-description */ readonly description?: string; /** * The ID of the IPAM pool from which you would like to allocate a CIDR. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamallocation.html#cfn-ec2-ipamallocation-ipampoolid */ readonly ipamPoolId: string; /** * The netmask length of the CIDR you would like to allocate from the IPAM pool. Note the following:. * * - If there is no DefaultNetmaskLength allocation rule set on the pool, you must specify either the NetmaskLength or the CIDR. * - If the DefaultNetmaskLength allocation rule is set on the pool, you can specify either the NetmaskLength or the CIDR and the DefaultNetmaskLength allocation rule will be ignored. * * Possible netmask lengths for IPv4 addresses are 0 - 32. Possible netmask lengths for IPv6 addresses are 0 - 128. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamallocation.html#cfn-ec2-ipamallocation-netmasklength */ readonly netmaskLength?: number; } /** * In IPAM, a pool is a collection of contiguous IP addresses CIDRs. * * Pools enable you to organize your IP addresses according to your routing and security needs. For example, if you have separate routing and security needs for development and production applications, you can create a pool for each. * * @cloudformationResource AWS::EC2::IPAMPool * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html */ export declare class CfnIPAMPool extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnIPAMPool from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnIPAMPool; /** * The ARN of the IPAM pool. * * @cloudformationAttribute Arn */ readonly attrArn: string; /** * The ARN of the IPAM. * * @cloudformationAttribute IpamArn */ readonly attrIpamArn: string; /** * The ID of the IPAM pool. * * @cloudformationAttribute IpamPoolId */ readonly attrIpamPoolId: string; /** * The ARN of the scope of the IPAM pool. * * @cloudformationAttribute IpamScopeArn */ readonly attrIpamScopeArn: string; /** * The scope of the IPAM. * * @cloudformationAttribute IpamScopeType */ readonly attrIpamScopeType: string; /** * The depth of pools in your IPAM pool. The pool depth quota is 10. * * @cloudformationAttribute PoolDepth */ readonly attrPoolDepth: number; /** * The state of the IPAM pool. * * @cloudformationAttribute State */ readonly attrState: string; /** * A message related to the failed creation of an IPAM pool. * * @cloudformationAttribute StateMessage */ readonly attrStateMessage: string; /** * The address family of the pool. */ addressFamily: string; /** * The default netmask length for allocations added to this pool. */ allocationDefaultNetmaskLength?: number; /** * The maximum netmask length possible for CIDR allocations in this IPAM pool to be compliant. */ allocationMaxNetmaskLength?: number; /** * The minimum netmask length required for CIDR allocations in this IPAM pool to be compliant. */ allocationMinNetmaskLength?: number; /** * Tags that are required for resources that use CIDRs from this IPAM pool. */ allocationResourceTags?: Array | cdk.IResolvable; /** * If selected, IPAM will continuously look for resources within the CIDR range of this pool and automatically import them as allocations into your IPAM. */ autoImport?: boolean | cdk.IResolvable; /** * Limits which service in AWS that the pool can be used in. */ awsService?: string; /** * The description of the IPAM pool. */ description?: string; /** * The ID of the scope in which you would like to create the IPAM pool. */ ipamScopeId: string; /** * The locale of the IPAM pool. */ locale?: string; /** * Information about the CIDRs provisioned to an IPAM pool. */ provisionedCidrs?: Array | cdk.IResolvable; /** * The IP address source for pools in the public scope. */ publicIpSource?: string; /** * Determines if a pool is publicly advertisable. */ publiclyAdvertisable?: boolean | cdk.IResolvable; /** * The ID of the source IPAM pool. */ sourceIpamPoolId?: string; /** * The resource used to provision CIDRs to a resource planning pool. */ sourceResource?: cdk.IResolvable | CfnIPAMPool.SourceResourceProperty; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The key/value combination of a tag assigned to the resource. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnIPAMPoolProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnIPAMPool { /** * The CIDR provisioned to the IPAM pool. * * A CIDR is a representation of an IP address and its associated network mask (or netmask) and refers to a range of IP addresses. An IPv4 CIDR example is `10.24.34.0/23` . An IPv6 CIDR example is `2001:DB8::/32` . * * > This resource type does not allow you to provision a CIDR using the netmask length. To provision a CIDR using netmask length, use [AWS::EC2::IPAMPoolCidr](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampoolcidr.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ipampool-provisionedcidr.html */ interface ProvisionedCidrProperty { /** * The CIDR provisioned to the IPAM pool. * * A CIDR is a representation of an IP address and its associated network mask (or netmask) and refers to a range of IP addresses. An IPv4 CIDR example is `10.24.34.0/23` . An IPv6 CIDR example is `2001:DB8::/32` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ipampool-provisionedcidr.html#cfn-ec2-ipampool-provisionedcidr-cidr */ readonly cidr: string; } /** * The resource used to provision CIDRs to a resource planning pool. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ipampool-sourceresource.html */ interface SourceResourceProperty { /** * The source resource ID. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ipampool-sourceresource.html#cfn-ec2-ipampool-sourceresource-resourceid */ readonly resourceId: string; /** * The source resource owner. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ipampool-sourceresource.html#cfn-ec2-ipampool-sourceresource-resourceowner */ readonly resourceOwner: string; /** * The source resource Region. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ipampool-sourceresource.html#cfn-ec2-ipampool-sourceresource-resourceregion */ readonly resourceRegion: string; /** * The source resource type. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ipampool-sourceresource.html#cfn-ec2-ipampool-sourceresource-resourcetype */ readonly resourceType: string; } } /** * Properties for defining a `CfnIPAMPool` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html */ export interface CfnIPAMPoolProps { /** * The address family of the pool. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html#cfn-ec2-ipampool-addressfamily */ readonly addressFamily: string; /** * The default netmask length for allocations added to this pool. * * If, for example, the CIDR assigned to this pool is 10.0.0.0/8 and you enter 16 here, new allocations will default to 10.0.0.0/16. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html#cfn-ec2-ipampool-allocationdefaultnetmasklength */ readonly allocationDefaultNetmaskLength?: number; /** * The maximum netmask length possible for CIDR allocations in this IPAM pool to be compliant. * * The maximum netmask length must be greater than the minimum netmask length. Possible netmask lengths for IPv4 addresses are 0 - 32. Possible netmask lengths for IPv6 addresses are 0 - 128. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html#cfn-ec2-ipampool-allocationmaxnetmasklength */ readonly allocationMaxNetmaskLength?: number; /** * The minimum netmask length required for CIDR allocations in this IPAM pool to be compliant. * * The minimum netmask length must be less than the maximum netmask length. Possible netmask lengths for IPv4 addresses are 0 - 32. Possible netmask lengths for IPv6 addresses are 0 - 128. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html#cfn-ec2-ipampool-allocationminnetmasklength */ readonly allocationMinNetmaskLength?: number; /** * Tags that are required for resources that use CIDRs from this IPAM pool. * * Resources that do not have these tags will not be allowed to allocate space from the pool. If the resources have their tags changed after they have allocated space or if the allocation tagging requirements are changed on the pool, the resource may be marked as noncompliant. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html#cfn-ec2-ipampool-allocationresourcetags */ readonly allocationResourceTags?: Array | cdk.IResolvable; /** * If selected, IPAM will continuously look for resources within the CIDR range of this pool and automatically import them as allocations into your IPAM. * * The CIDRs that will be allocated for these resources must not already be allocated to other resources in order for the import to succeed. IPAM will import a CIDR regardless of its compliance with the pool's allocation rules, so a resource might be imported and subsequently marked as noncompliant. If IPAM discovers multiple CIDRs that overlap, IPAM will import the largest CIDR only. If IPAM discovers multiple CIDRs with matching CIDRs, IPAM will randomly import one of them only. * * A locale must be set on the pool for this feature to work. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html#cfn-ec2-ipampool-autoimport */ readonly autoImport?: boolean | cdk.IResolvable; /** * Limits which service in AWS that the pool can be used in. * * "ec2", for example, allows users to use space for Elastic IP addresses and VPCs. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html#cfn-ec2-ipampool-awsservice */ readonly awsService?: string; /** * The description of the IPAM pool. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html#cfn-ec2-ipampool-description */ readonly description?: string; /** * The ID of the scope in which you would like to create the IPAM pool. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html#cfn-ec2-ipampool-ipamscopeid */ readonly ipamScopeId: string; /** * The locale of the IPAM pool. * * The locale for the pool should be one of the following: * * - An AWS Region where you want this IPAM pool to be available for allocations. * - The network border group for an AWS Local Zone where you want this IPAM pool to be available for allocations ( [supported Local Zones](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-byoip.html#byoip-zone-avail) ). This option is only available for IPAM IPv4 pools in the public scope. * * If you choose an AWS Region for locale that has not been configured as an operating Region for the IPAM, you'll get an error. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html#cfn-ec2-ipampool-locale */ readonly locale?: string; /** * Information about the CIDRs provisioned to an IPAM pool. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html#cfn-ec2-ipampool-provisionedcidrs */ readonly provisionedCidrs?: Array | cdk.IResolvable; /** * The IP address source for pools in the public scope. * * Only used for provisioning IP address CIDRs to pools in the public scope. Default is `BYOIP` . For more information, see [Create IPv6 pools](https://docs.aws.amazon.com//vpc/latest/ipam/intro-create-ipv6-pools.html) in the *Amazon VPC IPAM User Guide* . By default, you can add only one Amazon-provided IPv6 CIDR block to a top-level IPv6 pool. For information on increasing the default limit, see [Quotas for your IPAM](https://docs.aws.amazon.com//vpc/latest/ipam/quotas-ipam.html) in the *Amazon VPC IPAM User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html#cfn-ec2-ipampool-publicipsource */ readonly publicIpSource?: string; /** * Determines if a pool is publicly advertisable. * * This option is not available for pools with AddressFamily set to `ipv4` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html#cfn-ec2-ipampool-publiclyadvertisable */ readonly publiclyAdvertisable?: boolean | cdk.IResolvable; /** * The ID of the source IPAM pool. * * You can use this option to create an IPAM pool within an existing source pool. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html#cfn-ec2-ipampool-sourceipampoolid */ readonly sourceIpamPoolId?: string; /** * The resource used to provision CIDRs to a resource planning pool. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html#cfn-ec2-ipampool-sourceresource */ readonly sourceResource?: cdk.IResolvable | CfnIPAMPool.SourceResourceProperty; /** * The key/value combination of a tag assigned to the resource. * * Use the tag key in the filter name and the tag value as the filter value. For example, to find all resources that have a tag with the key `Owner` and the value `TeamA` , specify `tag:Owner` for the filter name and `TeamA` for the filter value. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampool.html#cfn-ec2-ipampool-tags */ readonly tags?: Array; } /** * A CIDR provisioned to an IPAM pool. * * @cloudformationResource AWS::EC2::IPAMPoolCidr * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampoolcidr.html */ export declare class CfnIPAMPoolCidr extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnIPAMPoolCidr from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnIPAMPoolCidr; /** * The IPAM pool CIDR ID. * * @cloudformationAttribute IpamPoolCidrId */ readonly attrIpamPoolCidrId: string; /** * The state of the CIDR. * * @cloudformationAttribute State */ readonly attrState: string; /** * The CIDR provisioned to the IPAM pool. */ cidr?: string; /** * The ID of the IPAM pool. */ ipamPoolId: string; /** * The netmask length of the CIDR you'd like to provision to a pool. */ netmaskLength?: number; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnIPAMPoolCidrProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnIPAMPoolCidr` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampoolcidr.html */ export interface CfnIPAMPoolCidrProps { /** * The CIDR provisioned to the IPAM pool. * * A CIDR is a representation of an IP address and its associated network mask (or netmask) and refers to a range of IP addresses. An IPv4 CIDR example is `10.24.34.0/23` . An IPv6 CIDR example is `2001:DB8::/32` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampoolcidr.html#cfn-ec2-ipampoolcidr-cidr */ readonly cidr?: string; /** * The ID of the IPAM pool. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampoolcidr.html#cfn-ec2-ipampoolcidr-ipampoolid */ readonly ipamPoolId: string; /** * The netmask length of the CIDR you'd like to provision to a pool. * * Can be used for provisioning Amazon-provided IPv6 CIDRs to top-level pools and for provisioning CIDRs to pools with source pools. Cannot be used to provision BYOIP CIDRs to top-level pools. "NetmaskLength" or "Cidr" is required. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipampoolcidr.html#cfn-ec2-ipampoolcidr-netmasklength */ readonly netmaskLength?: number; } /** * A resource discovery is an IPAM component that enables IPAM to manage and monitor resources that belong to the owning account. * * @cloudformationResource AWS::EC2::IPAMResourceDiscovery * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamresourcediscovery.html */ export declare class CfnIPAMResourceDiscovery extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnIPAMResourceDiscovery from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnIPAMResourceDiscovery; /** * The resource discovery ARN. * * @cloudformationAttribute IpamResourceDiscoveryArn */ readonly attrIpamResourceDiscoveryArn: string; /** * The resource discovery ID. * * @cloudformationAttribute IpamResourceDiscoveryId */ readonly attrIpamResourceDiscoveryId: string; /** * The resource discovery Region. * * @cloudformationAttribute IpamResourceDiscoveryRegion */ readonly attrIpamResourceDiscoveryRegion: string; /** * Defines if the resource discovery is the default. The default resource discovery is the resource discovery automatically created when you create an IPAM. * * @cloudformationAttribute IsDefault */ readonly attrIsDefault: cdk.IResolvable; /** * The owner ID. * * @cloudformationAttribute OwnerId */ readonly attrOwnerId: string; /** * The resource discovery's state. * * - `create-in-progress` - Resource discovery is being created. * - `create-complete` - Resource discovery creation is complete. * - `create-failed` - Resource discovery creation has failed. * - `modify-in-progress` - Resource discovery is being modified. * - `modify-complete` - Resource discovery modification is complete. * - `modify-failed` - Resource discovery modification has failed. * - `delete-in-progress` - Resource discovery is being deleted. * - `delete-complete` - Resource discovery deletion is complete. * - `delete-failed` - Resource discovery deletion has failed. * - `isolate-in-progress` - AWS account that created the resource discovery has been removed and the resource discovery is being isolated. * - `isolate-complete` - Resource discovery isolation is complete. * - `restore-in-progress` - AWS account that created the resource discovery and was isolated has been restored. * * @cloudformationAttribute State */ readonly attrState: string; /** * The resource discovery description. */ description?: string; /** * The operating Regions for the resource discovery. */ operatingRegions?: Array | cdk.IResolvable; /** * If your IPAM is integrated with AWS Organizations, you can exclude an [organizational unit (OU)](https://docs.aws.amazon.com/organizations/latest/userguide/orgs_getting-started_concepts.html#organizationalunit) from being managed by IPAM. When you exclude an OU, IPAM will not manage the IP addresses in accounts in that OU. For more information, see [Exclude organizational units from IPAM](https://docs.aws.amazon.com/vpc/latest/ipam/exclude-ous.html) in the *Amazon Virtual Private Cloud IP Address Manager User Guide* . */ organizationalUnitExclusions?: Array | cdk.IResolvable; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * A tag is a label that you assign to an AWS resource. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnIPAMResourceDiscoveryProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnIPAMResourceDiscovery { /** * The operating Regions for an IPAM. * * Operating Regions are AWS Regions where the IPAM is allowed to manage IP address CIDRs. IPAM only discovers and monitors resources in the AWS Regions you select as operating Regions. * * For more information about operating Regions, see [Create an IPAM](https://docs.aws.amazon.com//vpc/latest/ipam/create-ipam.html) in the *Amazon VPC IPAM User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ipamresourcediscovery-ipamoperatingregion.html */ interface IpamOperatingRegionProperty { /** * The name of the operating Region. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ipamresourcediscovery-ipamoperatingregion.html#cfn-ec2-ipamresourcediscovery-ipamoperatingregion-regionname */ readonly regionName: string; } /** * If your IPAM is integrated with AWS Organizations, you can exclude an [organizational unit (OU)](https://docs.aws.amazon.com/organizations/latest/userguide/orgs_getting-started_concepts.html#organizationalunit) from being managed by IPAM. When you exclude an OU, IPAM will not manage the IP addresses in accounts in that OU. For more information, see [Exclude organizational units from IPAM](https://docs.aws.amazon.com/vpc/latest/ipam/exclude-ous.html) in the *Amazon Virtual Private Cloud IP Address Manager User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ipamresourcediscovery-ipamresourcediscoveryorganizationalunitexclusion.html */ interface IpamResourceDiscoveryOrganizationalUnitExclusionProperty { /** * An AWS Organizations entity path. * * For more information on the entity path, see [Understand the AWS Organizations entity path](https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_last-accessed-view-data-orgs.html#access_policies_access-advisor-viewing-orgs-entity-path) in the *AWS Identity and Access Management User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ipamresourcediscovery-ipamresourcediscoveryorganizationalunitexclusion.html#cfn-ec2-ipamresourcediscovery-ipamresourcediscoveryorganizationalunitexclusion-organizationsentitypath */ readonly organizationsEntityPath: string; } } /** * Properties for defining a `CfnIPAMResourceDiscovery` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamresourcediscovery.html */ export interface CfnIPAMResourceDiscoveryProps { /** * The resource discovery description. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamresourcediscovery.html#cfn-ec2-ipamresourcediscovery-description */ readonly description?: string; /** * The operating Regions for the resource discovery. * * Operating Regions are AWS Regions where the IPAM is allowed to manage IP address CIDRs. IPAM only discovers and monitors resources in the AWS Regions you select as operating Regions. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamresourcediscovery.html#cfn-ec2-ipamresourcediscovery-operatingregions */ readonly operatingRegions?: Array | cdk.IResolvable; /** * If your IPAM is integrated with AWS Organizations, you can exclude an [organizational unit (OU)](https://docs.aws.amazon.com/organizations/latest/userguide/orgs_getting-started_concepts.html#organizationalunit) from being managed by IPAM. When you exclude an OU, IPAM will not manage the IP addresses in accounts in that OU. For more information, see [Exclude organizational units from IPAM](https://docs.aws.amazon.com/vpc/latest/ipam/exclude-ous.html) in the *Amazon Virtual Private Cloud IP Address Manager User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamresourcediscovery.html#cfn-ec2-ipamresourcediscovery-organizationalunitexclusions */ readonly organizationalUnitExclusions?: Array | cdk.IResolvable; /** * A tag is a label that you assign to an AWS resource. * * Each tag consists of a key and an optional value. You can use tags to search and filter your resources or track your AWS costs. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamresourcediscovery.html#cfn-ec2-ipamresourcediscovery-tags */ readonly tags?: Array; } /** * An IPAM resource discovery association. * * An associated resource discovery is a resource discovery that has been associated with an IPAM. IPAM aggregates the resource CIDRs discovered by the associated resource discovery. * * @cloudformationResource AWS::EC2::IPAMResourceDiscoveryAssociation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamresourcediscoveryassociation.html */ export declare class CfnIPAMResourceDiscoveryAssociation extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnIPAMResourceDiscoveryAssociation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnIPAMResourceDiscoveryAssociation; /** * The IPAM ARN. * * @cloudformationAttribute IpamArn */ readonly attrIpamArn: string; /** * The IPAM home Region. * * @cloudformationAttribute IpamRegion */ readonly attrIpamRegion: string; /** * The resource discovery association ARN. * * @cloudformationAttribute IpamResourceDiscoveryAssociationArn */ readonly attrIpamResourceDiscoveryAssociationArn: string; /** * The resource discovery association ID. * * @cloudformationAttribute IpamResourceDiscoveryAssociationId */ readonly attrIpamResourceDiscoveryAssociationId: string; /** * Defines if the resource discovery is the default. When you create an IPAM, a default resource discovery is created for your IPAM and it's associated with your IPAM. * * @cloudformationAttribute IsDefault */ readonly attrIsDefault: cdk.IResolvable; /** * The owner ID. * * @cloudformationAttribute OwnerId */ readonly attrOwnerId: string; /** * The resource discovery status. * * - `active` - Connection or permissions required to read the results of the resource discovery are intact. * - `not-found` - Connection or permissions required to read the results of the resource discovery are broken. This may happen if the owner of the resource discovery stopped sharing it or deleted the resource discovery. Verify the resource discovery still exists and the AWS RAM resource share is still intact. * * @cloudformationAttribute ResourceDiscoveryStatus */ readonly attrResourceDiscoveryStatus: string; /** * The lifecycle state of the association when you associate or disassociate a resource discovery. * * - `associate-in-progress` - Resource discovery is being associated. * - `associate-complete` - Resource discovery association is complete. * - `associate-failed` - Resource discovery association has failed. * - `disassociate-in-progress` - Resource discovery is being disassociated. * - `disassociate-complete` - Resource discovery disassociation is complete. * - `disassociate-failed` - Resource discovery disassociation has failed. * - `isolate-in-progress` - AWS account that created the resource discovery association has been removed and the resource discovery associatation is being isolated. * - `isolate-complete` - Resource discovery isolation is complete.. * - `restore-in-progress` - Resource discovery is being restored. * * @cloudformationAttribute State */ readonly attrState: string; /** * The IPAM ID. */ ipamId: string; /** * The resource discovery ID. */ ipamResourceDiscoveryId: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * A tag is a label that you assign to an AWS resource. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnIPAMResourceDiscoveryAssociationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnIPAMResourceDiscoveryAssociation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamresourcediscoveryassociation.html */ export interface CfnIPAMResourceDiscoveryAssociationProps { /** * The IPAM ID. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamresourcediscoveryassociation.html#cfn-ec2-ipamresourcediscoveryassociation-ipamid */ readonly ipamId: string; /** * The resource discovery ID. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamresourcediscoveryassociation.html#cfn-ec2-ipamresourcediscoveryassociation-ipamresourcediscoveryid */ readonly ipamResourceDiscoveryId: string; /** * A tag is a label that you assign to an AWS resource. * * Each tag consists of a key and an optional value. You can use tags to search and filter your resources or track your AWS costs. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamresourcediscoveryassociation.html#cfn-ec2-ipamresourcediscoveryassociation-tags */ readonly tags?: Array; } /** * In IPAM, a scope is the highest-level container within IPAM. * * An IPAM contains two default scopes. Each scope represents the IP space for a single network. The private scope is intended for all private IP address space. The public scope is intended for all public IP address space. Scopes enable you to reuse IP addresses across multiple unconnected networks without causing IP address overlap or conflict. * * For more information, see [How IPAM works](https://docs.aws.amazon.com//vpc/latest/ipam/how-it-works-ipam.html) in the *Amazon VPC IPAM User Guide* . * * @cloudformationResource AWS::EC2::IPAMScope * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamscope.html */ export declare class CfnIPAMScope extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnIPAMScope from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnIPAMScope; /** * The ARN of the scope. * * @cloudformationAttribute Arn */ readonly attrArn: string; /** * The ARN of an IPAM. * * @cloudformationAttribute IpamArn */ readonly attrIpamArn: string; /** * The ID of an IPAM scope. * * @cloudformationAttribute IpamScopeId */ readonly attrIpamScopeId: string; /** * The type of the scope. * * @cloudformationAttribute IpamScopeType */ readonly attrIpamScopeType: string; /** * Defines if the scope is the default scope or not. * * @cloudformationAttribute IsDefault */ readonly attrIsDefault: cdk.IResolvable; /** * The number of pools in a scope. * * @cloudformationAttribute PoolCount */ readonly attrPoolCount: number; /** * The description of the scope. */ description?: string; /** * The ID of the IPAM for which you're creating this scope. */ ipamId: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The key/value combination of a tag assigned to the resource. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnIPAMScopeProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnIPAMScope` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamscope.html */ export interface CfnIPAMScopeProps { /** * The description of the scope. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamscope.html#cfn-ec2-ipamscope-description */ readonly description?: string; /** * The ID of the IPAM for which you're creating this scope. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamscope.html#cfn-ec2-ipamscope-ipamid */ readonly ipamId: string; /** * The key/value combination of a tag assigned to the resource. * * Use the tag key in the filter name and the tag value as the filter value. For example, to find all resources that have a tag with the key `Owner` and the value `TeamA` , specify `tag:Owner` for the filter name and `TeamA` for the filter value. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-ipamscope.html#cfn-ec2-ipamscope-tags */ readonly tags?: Array; } /** * Specifies an EC2 instance. * * If an Elastic IP address is attached to your instance, AWS CloudFormation reattaches the Elastic IP address after it updates the instance. For more information about updating stacks, see [AWS CloudFormation Stacks Updates](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks.html) . * * @cloudformationResource AWS::EC2::Instance * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html */ export declare class CfnInstance extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnInstance from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnInstance; /** * @cloudformationAttribute AvailabilityZone */ readonly attrAvailabilityZone: string; /** * The ID of the instance. * * @cloudformationAttribute InstanceId */ readonly attrInstanceId: string; /** * The private DNS name of the specified instance. For example: `ip-10-24-34-0.ec2.internal` . * * @cloudformationAttribute PrivateDnsName */ readonly attrPrivateDnsName: string; /** * The private IP address of the specified instance. For example: `10.24.34.0` . * * @cloudformationAttribute PrivateIp */ readonly attrPrivateIp: string; /** * The public DNS name of the specified instance. For example: `ec2-107-20-50-45.compute-1.amazonaws.com` . * * @cloudformationAttribute PublicDnsName */ readonly attrPublicDnsName: string; /** * The public IP address of the specified instance. For example: `192.0.2.0` . * * @cloudformationAttribute PublicIp */ readonly attrPublicIp: string; /** * The current state of the instance * * @cloudformationAttribute State */ readonly attrState: cdk.IResolvable; /** * The ID of the VPC in which the instance is running. * * @cloudformationAttribute VpcId */ readonly attrVpcId: string; /** * This property is reserved for internal use. */ additionalInfo?: string; /** * Indicates whether the instance is associated with a dedicated host. */ affinity?: string; /** * The Availability Zone of the instance. */ availabilityZone?: string; /** * The block device mapping entries that defines the block devices to attach to the instance at launch. */ blockDeviceMappings?: Array | cdk.IResolvable; /** * The CPU options for the instance. */ cpuOptions?: CfnInstance.CpuOptionsProperty | cdk.IResolvable; /** * The credit option for CPU usage of the burstable performance instance. */ creditSpecification?: CfnInstance.CreditSpecificationProperty | cdk.IResolvable; /** * Indicates whether termination protection is enabled for the instance. */ disableApiTermination?: boolean | cdk.IResolvable; /** * Indicates whether the instance is optimized for Amazon EBS I/O. */ ebsOptimized?: boolean | cdk.IResolvable; /** * An elastic GPU to associate with the instance. */ elasticGpuSpecifications?: Array | cdk.IResolvable; /** * An elastic inference accelerator to associate with the instance. */ elasticInferenceAccelerators?: Array | cdk.IResolvable; /** * Indicates whether the instance is enabled for AWS Nitro Enclaves. */ enclaveOptions?: CfnInstance.EnclaveOptionsProperty | cdk.IResolvable; /** * Indicates whether an instance is enabled for hibernation. */ hibernationOptions?: CfnInstance.HibernationOptionsProperty | cdk.IResolvable; /** * If you specify host for the `Affinity` property, the ID of a dedicated host that the instance is associated with. */ hostId?: string; /** * The ARN of the host resource group in which to launch the instances. */ hostResourceGroupArn?: string; /** * The name of an IAM instance profile. */ iamInstanceProfile?: string; /** * The ID of the AMI. */ imageId?: string; /** * Indicates whether an instance stops or terminates when you initiate shutdown from the instance (using the operating system command for system shutdown). */ instanceInitiatedShutdownBehavior?: string; /** * The instance type. For more information, see [Instance types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html) in the *Amazon EC2 User Guide* . */ instanceType?: string; /** * The number of IPv6 addresses to associate with the primary network interface. */ ipv6AddressCount?: number; /** * The IPv6 addresses from the range of the subnet to associate with the primary network interface. */ ipv6Addresses?: Array | cdk.IResolvable; /** * The ID of the kernel. */ kernelId?: string; /** * The name of the key pair. You can create a key pair using [CreateKeyPair](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateKeyPair.html) or [ImportKeyPair](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ImportKeyPair.html) . */ keyName?: string; /** * The launch template. */ launchTemplate?: cdk.IResolvable | CfnInstance.LaunchTemplateSpecificationProperty; /** * The license configurations. */ licenseSpecifications?: Array | cdk.IResolvable; /** * The metadata options for the instance. */ metadataOptions?: cdk.IResolvable | CfnInstance.MetadataOptionsProperty; /** * Specifies whether detailed monitoring is enabled for the instance. */ monitoring?: boolean | cdk.IResolvable; /** * The network interfaces to associate with the instance. */ networkInterfaces?: Array | cdk.IResolvable; /** * The name of an existing placement group that you want to launch the instance into (cluster | partition | spread). */ placementGroupName?: string; /** * The options for the instance hostname. */ privateDnsNameOptions?: cdk.IResolvable | CfnInstance.PrivateDnsNameOptionsProperty; /** * The primary IPv4 address. You must specify a value from the IPv4 address range of the subnet. */ privateIpAddress?: string; /** * Indicates whether to assign the tags specified in the `Tags` property to the volumes specified in the `BlockDeviceMappings` property. */ propagateTagsToVolumeOnCreation?: boolean | cdk.IResolvable; /** * The ID of the RAM disk to select. */ ramdiskId?: string; /** * The IDs of the security groups. */ securityGroupIds?: Array; /** * [Default VPC] The names of the security groups. For a nondefault VPC, you must use security group IDs instead. */ securityGroups?: Array; /** * Enable or disable source/destination checks, which ensure that the instance is either the source or the destination of any traffic that it receives. */ sourceDestCheck?: boolean | cdk.IResolvable; /** * The SSM [document](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ssm-document.html) and parameter values in AWS Systems Manager to associate with this instance. To use this property, you must specify an IAM instance profile role for the instance. For more information, see [Create an IAM instance profile for Systems Manager](https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-configuring-access-role.html) in the *AWS Systems Manager User Guide* . */ ssmAssociations?: Array | cdk.IResolvable; /** * The ID of the subnet to launch the instance into. */ subnetId?: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags to add to the instance. */ tagsRaw?: Array; /** * The tenancy of the instance. */ tenancy?: string; /** * The parameters or scripts to store as user data. */ userData?: string; /** * The volumes to attach to the instance. */ volumes?: Array | cdk.IResolvable; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnInstanceProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnInstance { /** * Specifies a block device mapping for an instance. * * You must specify exactly one of the following properties: `VirtualName` , `Ebs` , or `NoDevice` . * * `BlockDeviceMapping` is a property of the [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) resource. * * > After the instance is running, you can modify only the `DeleteOnTermination` parameter for the attached volumes without interrupting the instance. Modifying any other parameter results in instance [replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-replacement) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-blockdevicemapping.html */ interface BlockDeviceMappingProperty { /** * The device name (for example, `/dev/sdh` or `xvdh` ). * * > After the instance is running, this parameter is used to specify the device name of the block device mapping to update. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-blockdevicemapping.html#cfn-ec2-instance-blockdevicemapping-devicename */ readonly deviceName: string; /** * Parameters used to automatically set up EBS volumes when the instance is launched. * * > After the instance is running, you can modify only the `DeleteOnTermination` parameter for the attached volumes without interrupting the instance. Modifying any other parameter results in instance [replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-blockdevicemapping.html#cfn-ec2-instance-blockdevicemapping-ebs */ readonly ebs?: CfnInstance.EbsProperty | cdk.IResolvable; /** * To omit the device from the block device mapping, specify an empty string. * * > After the instance is running, modifying this parameter results in instance [replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-replacement) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-blockdevicemapping.html#cfn-ec2-instance-blockdevicemapping-nodevice */ readonly noDevice?: cdk.IResolvable | CfnInstance.NoDeviceProperty; /** * The virtual device name ( `ephemeral` N). * * The name must be in the form `ephemeral` *X* where *X* is a number starting from zero (0). For example, an instance type with 2 available instance store volumes can specify mappings for `ephemeral0` and `ephemeral1` . The number of available instance store volumes depends on the instance type. After you connect to the instance, you must mount the volume. * * NVMe instance store volumes are automatically enumerated and assigned a device name. Including them in your block device mapping has no effect. * * *Constraints* : For M3 instances, you must specify instance store volumes in the block device mapping for the instance. When you launch an M3 instance, we ignore any instance store volumes specified in the block device mapping for the AMI. * * > After the instance is running, modifying this parameter results in instance [replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-replacement) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-blockdevicemapping.html#cfn-ec2-instance-blockdevicemapping-virtualname */ readonly virtualName?: string; } /** * Specifies a block device for an EBS volume. * * `Ebs` is a property of the [BlockDeviceMapping](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-blockdevicemapping.html) property type. * * > After the instance is running, you can modify only the `DeleteOnTermination` parameters for the attached volumes without interrupting the instance. Modifying any other parameter results in instance [replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-replacement) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-ebs.html */ interface EbsProperty { /** * Indicates whether the EBS volume is deleted on instance termination. * * For more information, see [Preserving Amazon EBS volumes on instance termination](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/terminating-instances.html#preserving-volumes-on-termination) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-ebs.html#cfn-ec2-instance-ebs-deleteontermination */ readonly deleteOnTermination?: boolean | cdk.IResolvable; /** * Indicates whether the volume should be encrypted. * * The effect of setting the encryption state to `true` depends on the volume origin (new or from a snapshot), starting encryption state, ownership, and whether encryption by default is enabled. For more information, see [Encryption by default](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html#encryption-by-default) in the *Amazon Elastic Compute Cloud User Guide* . * * Encrypted Amazon EBS volumes must be attached to instances that support Amazon EBS encryption. For more information, see [Supported instance types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html#EBSEncryption_supported_instances) . * * > After the instance is running, modifying this parameter results in instance [replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-replacement) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-ebs.html#cfn-ec2-instance-ebs-encrypted */ readonly encrypted?: boolean | cdk.IResolvable; /** * The number of I/O operations per second (IOPS). * * For `gp3` , `io1` , and `io2` volumes, this represents the number of IOPS that are provisioned for the volume. For `gp2` volumes, this represents the baseline performance of the volume and the rate at which the volume accumulates I/O credits for bursting. * * The following are the supported values for each volume type: * * - `gp3` : 3,000-16,000 IOPS * - `io1` : 100-64,000 IOPS * - `io2` : 100-64,000 IOPS * * For `io1` and `io2` volumes, we guarantee 64,000 IOPS only for [Instances built on the Nitro System](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html#ec2-nitro-instances) . Other instance families guarantee performance up to 32,000 IOPS. * * This parameter is required for `io1` and `io2` volumes. The default for `gp3` volumes is 3,000 IOPS. This parameter is not supported for `gp2` , `st1` , `sc1` , or `standard` volumes. * * > After the instance is running, modifying this parameter results in instance [replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-replacement) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-ebs.html#cfn-ec2-instance-ebs-iops */ readonly iops?: number; /** * The identifier of the AWS KMS key to use for Amazon EBS encryption. * * If `KmsKeyId` is specified, the encrypted state must be `true` . If the encrypted state is `true` but you do not specify `KmsKeyId` , your KMS key for EBS is used. * * You can specify the KMS key using any of the following: * * - Key ID. For example, 1234abcd-12ab-34cd-56ef-1234567890ab. * - Key alias. For example, alias/ExampleAlias. * - Key ARN. For example, arn:aws:kms:us-west-2:111122223333:key/1234abcd-12ab-34cd-56ef-1234567890ab. * - Alias ARN. For example, arn:aws:kms:us-west-2:111122223333:alias/ExampleAlias. * * > After the instance is running, modifying this parameter results in instance [replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-replacement) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-ebs.html#cfn-ec2-instance-ebs-kmskeyid */ readonly kmsKeyId?: string; /** * The ID of the snapshot. * * If you specify both `SnapshotId` and `VolumeSize` , `VolumeSize` must be equal or greater than the size of the snapshot. * * > After the instance is running, modifying this parameter results in instance [replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-replacement) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-ebs.html#cfn-ec2-instance-ebs-snapshotid */ readonly snapshotId?: string; /** * The size of the volume, in GiBs. * * You must specify either a snapshot ID or a volume size. If you specify a snapshot, the default is the snapshot size. You can specify a volume size that is equal to or larger than the snapshot size. * * The following are the supported volumes sizes for each volume type: * * - `gp2` and `gp3` :1-16,384 * - `io1` and `io2` : 4-16,384 * - `st1` and `sc1` : 125-16,384 * - `standard` : 1-1,024 * * > After the instance is running, modifying this parameter results in instance [replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-replacement) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-ebs.html#cfn-ec2-instance-ebs-volumesize */ readonly volumeSize?: number; /** * The volume type. * * For more information, see [Amazon EBS volume types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSVolumeTypes.html) in the *Amazon EC2 User Guide* . If the volume type is `io1` or `io2` , you must specify the IOPS that the volume supports. * * > After the instance is running, modifying this parameter results in instance [replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-replacement) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-ebs.html#cfn-ec2-instance-ebs-volumetype */ readonly volumeType?: string; } /** * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-nodevice.html */ interface NoDeviceProperty { } /** * Specifies the CPU options for the instance. * * When you specify CPU options, you must specify both the number of CPU cores and threads per core. * * Modifying the CPU options for an instance results in instance [replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-replacement) . * * For more information, see [Optimize CPU options](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-optimize-cpu.html) in the *Amazon Elastic Compute Cloud User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-cpuoptions.html */ interface CpuOptionsProperty { /** * The number of CPU cores for the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-cpuoptions.html#cfn-ec2-instance-cpuoptions-corecount */ readonly coreCount?: number; /** * The number of threads per CPU core. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-cpuoptions.html#cfn-ec2-instance-cpuoptions-threadspercore */ readonly threadsPerCore?: number; } /** * Specifies the credit option for CPU usage of a T instance. * * `CreditSpecification` is a property of the [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) resource. * * For more information, see [Burstable performance instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/burstable-performance-instances.html) in the *Amazon EC2 User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-creditspecification.html */ interface CreditSpecificationProperty { /** * The credit option for CPU usage of the instance. * * Valid values: `standard` | `unlimited` * * T3 instances with `host` tenancy do not support the `unlimited` CPU credit option. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-creditspecification.html#cfn-ec2-instance-creditspecification-cpucredits */ readonly cpuCredits?: string; } /** * > Amazon Elastic Graphics reached end of life on January 8, 2024. * * Specifies the type of Elastic GPU. An Elastic GPU is a GPU resource that you can attach to your Amazon EC2 instance to accelerate the graphics performance of your applications. * * `ElasticGpuSpecification` is a property of the [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) resource. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-elasticgpuspecification.html */ interface ElasticGpuSpecificationProperty { /** * The type of Elastic Graphics accelerator. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-elasticgpuspecification.html#cfn-ec2-instance-elasticgpuspecification-type */ readonly type: string; } /** * > Amazon Elastic Inference is no longer available. * * Specifies the Elastic Inference Accelerator for the instance. * * `ElasticInferenceAccelerator` is a property of the [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) resource. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-elasticinferenceaccelerator.html */ interface ElasticInferenceAcceleratorProperty { /** * The number of elastic inference accelerators to attach to the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-elasticinferenceaccelerator.html#cfn-ec2-instance-elasticinferenceaccelerator-count */ readonly count?: number; /** * The type of elastic inference accelerator. * * The possible values are `eia1.medium` , `eia1.large` , `eia1.xlarge` , `eia2.medium` , `eia2.large` , and `eia2.xlarge` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-elasticinferenceaccelerator.html#cfn-ec2-instance-elasticinferenceaccelerator-type */ readonly type: string; } /** * Indicates whether the instance is enabled for AWS Nitro Enclaves. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-enclaveoptions.html */ interface EnclaveOptionsProperty { /** * If this parameter is set to `true` , the instance is enabled for AWS Nitro Enclaves; * * otherwise, it is not enabled for AWS Nitro Enclaves. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-enclaveoptions.html#cfn-ec2-instance-enclaveoptions-enabled */ readonly enabled?: boolean | cdk.IResolvable; } /** * Specifies the hibernation options for the instance. * * `HibernationOptions` is a property of the [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) resource. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-hibernationoptions.html */ interface HibernationOptionsProperty { /** * Set to `true` to enable your instance for hibernation. * * For Spot Instances, if you set `Configured` to `true` , either omit the `InstanceInterruptionBehavior` parameter (for [`SpotMarketOptions`](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_SpotMarketOptions.html) ), or set it to `hibernate` . When `Configured` is true: * * - If you omit `InstanceInterruptionBehavior` , it defaults to `hibernate` . * - If you set `InstanceInterruptionBehavior` to a value other than `hibernate` , you'll get an error. * * Default: `false` * * @default - false * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-hibernationoptions.html#cfn-ec2-instance-hibernationoptions-configured */ readonly configured?: boolean | cdk.IResolvable; } /** * Specifies the IPv6 address for the instance. * * `InstanceIpv6Address` is a property of the [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) resource. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-instanceipv6address.html */ interface InstanceIpv6AddressProperty { /** * The IPv6 address. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-instanceipv6address.html#cfn-ec2-instance-instanceipv6address-ipv6address */ readonly ipv6Address: string; } /** * Specifies a launch template to use when launching an Amazon EC2 instance. * * You must specify the following: * * - The ID or the name of the launch template, but not both. * - The version of the launch template. * * For information about creating a launch template, see [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html) and [Create a launch template](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-templates.html#create-launch-template) in the *Amazon EC2 User Guide* . For example launch templates, see the [Examples](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#aws-resource-ec2-launchtemplate--examples) for `AWS::EC2::LaunchTemplate` . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-launchtemplatespecification.html */ interface LaunchTemplateSpecificationProperty { /** * The ID of the launch template. * * You must specify either the launch template ID or the launch template name, but not both. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-launchtemplatespecification.html#cfn-ec2-instance-launchtemplatespecification-launchtemplateid */ readonly launchTemplateId?: string; /** * The name of the launch template. * * You must specify either the launch template ID or the launch template name, but not both. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-launchtemplatespecification.html#cfn-ec2-instance-launchtemplatespecification-launchtemplatename */ readonly launchTemplateName?: string; /** * The version number of the launch template. You must specify this property. * * To specify the default version of the template, use the `Fn::GetAtt` intrinsic function to retrieve the `DefaultVersionNumber` attribute of the launch template. To specify the latest version of the template, use `Fn::GetAtt` to retrieve the `LatestVersionNumber` attribute. For more information, see [AWS::EC2:LaunchTemplate return values for Fn::GetAtt](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#aws-resource-ec2-launchtemplate-return-values-fn--getatt) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-launchtemplatespecification.html#cfn-ec2-instance-launchtemplatespecification-version */ readonly version: string; } /** * Specifies the license configuration to use. * * `LicenseSpecification` is a property of the [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) resource. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-licensespecification.html */ interface LicenseSpecificationProperty { /** * The Amazon Resource Name (ARN) of the license configuration. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-licensespecification.html#cfn-ec2-instance-licensespecification-licenseconfigurationarn */ readonly licenseConfigurationArn: string; } /** * Specifies a network interface that is to be attached to an instance. * * You can create a network interface when launching an instance. For an example, see the [AWS::EC2::Instance examples](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html#aws-properties-ec2-instance--examples--Automatically_assign_a_public_IP_address) . * * Alternatively, you can attach an existing network interface when launching an instance. For an example, see the [AWS::EC2:NetworkInterface examples](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#aws-resource-ec2-networkinterface--examples) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-networkinterface.html */ interface NetworkInterfaceProperty { /** * Indicates whether to assign a carrier IP address to the network interface. * * You can only assign a carrier IP address to a network interface that is in a subnet in a Wavelength Zone. For more information about carrier IP addresses, see [Carrier IP address](https://docs.aws.amazon.com/wavelength/latest/developerguide/how-wavelengths-work.html#provider-owned-ip) in the *AWS Wavelength Developer Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-networkinterface.html#cfn-ec2-instance-networkinterface-associatecarrieripaddress */ readonly associateCarrierIpAddress?: boolean | cdk.IResolvable; /** * Indicates whether to assign a public IPv4 address to an instance. * * Applies only if creating a network interface when launching an instance. The network interface must be the primary network interface. If launching into a default subnet, the default value is `true` . * * AWS charges for all public IPv4 addresses, including public IPv4 addresses associated with running instances and Elastic IP addresses. For more information, see the *Public IPv4 Address* tab on the [VPC pricing page](https://docs.aws.amazon.com/vpc/pricing/) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-networkinterface.html#cfn-ec2-instance-networkinterface-associatepublicipaddress */ readonly associatePublicIpAddress?: boolean | cdk.IResolvable; /** * Indicates whether the network interface is deleted when the instance is terminated. * * Applies only if creating a network interface when launching an instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-networkinterface.html#cfn-ec2-instance-networkinterface-deleteontermination */ readonly deleteOnTermination?: boolean | cdk.IResolvable; /** * The description of the network interface. * * Applies only if creating a network interface when launching an instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-networkinterface.html#cfn-ec2-instance-networkinterface-description */ readonly description?: string; /** * The position of the network interface in the attachment order. * * A primary network interface has a device index of 0. * * If you create a network interface when launching an instance, you must specify the device index. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-networkinterface.html#cfn-ec2-instance-networkinterface-deviceindex */ readonly deviceIndex: string; /** * Configures ENA Express for UDP network traffic. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-networkinterface.html#cfn-ec2-instance-networkinterface-enasrdspecification */ readonly enaSrdSpecification?: CfnInstance.EnaSrdSpecificationProperty | cdk.IResolvable; /** * The IDs of the security groups for the network interface. * * Applies only if creating a network interface when launching an instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-networkinterface.html#cfn-ec2-instance-networkinterface-groupset */ readonly groupSet?: Array; /** * A number of IPv6 addresses to assign to the network interface. * * Amazon EC2 chooses the IPv6 addresses from the range of the subnet. You cannot specify this option and the option to assign specific IPv6 addresses in the same request. You can specify this option if you've specified a minimum number of instances to launch. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-networkinterface.html#cfn-ec2-instance-networkinterface-ipv6addresscount */ readonly ipv6AddressCount?: number; /** * The IPv6 addresses to assign to the network interface. * * You cannot specify this option and the option to assign a number of IPv6 addresses in the same request. You cannot specify this option if you've specified a minimum number of instances to launch. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-networkinterface.html#cfn-ec2-instance-networkinterface-ipv6addresses */ readonly ipv6Addresses?: Array | cdk.IResolvable; /** * The ID of the network interface, when attaching an existing network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-networkinterface.html#cfn-ec2-instance-networkinterface-networkinterfaceid */ readonly networkInterfaceId?: string; /** * The private IPv4 address of the network interface. * * Applies only if creating a network interface when launching an instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-networkinterface.html#cfn-ec2-instance-networkinterface-privateipaddress */ readonly privateIpAddress?: string; /** * One or more private IPv4 addresses to assign to the network interface. * * Only one private IPv4 address can be designated as primary. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-networkinterface.html#cfn-ec2-instance-networkinterface-privateipaddresses */ readonly privateIpAddresses?: Array | cdk.IResolvable; /** * The number of secondary private IPv4 addresses. * * You can't specify this option and specify more than one private IP address using the private IP addresses option. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-networkinterface.html#cfn-ec2-instance-networkinterface-secondaryprivateipaddresscount */ readonly secondaryPrivateIpAddressCount?: number; /** * The ID of the subnet associated with the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-networkinterface.html#cfn-ec2-instance-networkinterface-subnetid */ readonly subnetId?: string; } /** * Specifies a secondary private IPv4 address for a network interface. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-privateipaddressspecification.html */ interface PrivateIpAddressSpecificationProperty { /** * Indicates whether the private IPv4 address is the primary private IPv4 address. * * Only one IPv4 address can be designated as primary. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-privateipaddressspecification.html#cfn-ec2-instance-privateipaddressspecification-primary */ readonly primary: boolean | cdk.IResolvable; /** * The private IPv4 address. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-privateipaddressspecification.html#cfn-ec2-instance-privateipaddressspecification-privateipaddress */ readonly privateIpAddress: string; } /** * ENA Express uses AWS Scalable Reliable Datagram (SRD) technology to increase the maximum bandwidth used per stream and minimize tail latency of network traffic between EC2 instances. * * With ENA Express, you can communicate between two EC2 instances in the same subnet within the same account, or in different accounts. Both sending and receiving instances must have ENA Express enabled. * * To improve the reliability of network packet delivery, ENA Express reorders network packets on the receiving end by default. However, some UDP-based applications are designed to handle network packets that are out of order to reduce the overhead for packet delivery at the network layer. When ENA Express is enabled, you can specify whether UDP network traffic uses it. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-enasrdspecification.html */ interface EnaSrdSpecificationProperty { /** * Indicates whether ENA Express is enabled for the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-enasrdspecification.html#cfn-ec2-instance-enasrdspecification-enasrdenabled */ readonly enaSrdEnabled?: boolean | cdk.IResolvable; /** * Configures ENA Express for UDP network traffic. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-enasrdspecification.html#cfn-ec2-instance-enasrdspecification-enasrdudpspecification */ readonly enaSrdUdpSpecification?: CfnInstance.EnaSrdUdpSpecificationProperty | cdk.IResolvable; } /** * ENA Express is compatible with both TCP and UDP transport protocols. * * When it's enabled, TCP traffic automatically uses it. However, some UDP-based applications are designed to handle network packets that are out of order, without a need for retransmission, such as live video broadcasting or other near-real-time applications. For UDP traffic, you can specify whether to use ENA Express, based on your application environment needs. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-enasrdudpspecification.html */ interface EnaSrdUdpSpecificationProperty { /** * Indicates whether UDP traffic to and from the instance uses ENA Express. * * To specify this setting, you must first enable ENA Express. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-enasrdudpspecification.html#cfn-ec2-instance-enasrdudpspecification-enasrdudpenabled */ readonly enaSrdUdpEnabled?: boolean | cdk.IResolvable; } /** * The type of hostnames to assign to instances in the subnet at launch. * * For IPv4 only subnets, an instance DNS name must be based on the instance IPv4 address. For IPv6 only subnets, an instance DNS name must be based on the instance ID. For dual-stack subnets, you can specify whether DNS names use the instance IPv4 address or the instance ID. For more information, see [Amazon EC2 instance hostname types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-naming.html) in the *Amazon Elastic Compute Cloud User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-privatednsnameoptions.html */ interface PrivateDnsNameOptionsProperty { /** * Indicates whether to respond to DNS queries for instance hostnames with DNS AAAA records. * * For more information, see [Amazon EC2 instance hostname types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-naming.html) in the *Amazon Elastic Compute Cloud User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-privatednsnameoptions.html#cfn-ec2-instance-privatednsnameoptions-enableresourcenamednsaaaarecord */ readonly enableResourceNameDnsAaaaRecord?: boolean | cdk.IResolvable; /** * Indicates whether to respond to DNS queries for instance hostnames with DNS A records. * * For more information, see [Amazon EC2 instance hostname types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-naming.html) in the *Amazon Elastic Compute Cloud User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-privatednsnameoptions.html#cfn-ec2-instance-privatednsnameoptions-enableresourcenamednsarecord */ readonly enableResourceNameDnsARecord?: boolean | cdk.IResolvable; /** * The type of hostnames to assign to instances in the subnet at launch. * * For IPv4 only subnets, an instance DNS name must be based on the instance IPv4 address. For IPv6 only subnets, an instance DNS name must be based on the instance ID. For dual-stack subnets, you can specify whether DNS names use the instance IPv4 address or the instance ID. For more information, see [Amazon EC2 instance hostname types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-naming.html) in the *Amazon Elastic Compute Cloud User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-privatednsnameoptions.html#cfn-ec2-instance-privatednsnameoptions-hostnametype */ readonly hostnameType?: string; } /** * Specifies the SSM document and parameter values in AWS Systems Manager to associate with an instance. * * `SsmAssociations` is a property of the [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) resource. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-ssmassociation.html */ interface SsmAssociationProperty { /** * The input parameter values to use with the associated SSM document. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-ssmassociation.html#cfn-ec2-instance-ssmassociation-associationparameters */ readonly associationParameters?: Array | cdk.IResolvable; /** * The name of an SSM document to associate with the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-ssmassociation.html#cfn-ec2-instance-ssmassociation-documentname */ readonly documentName: string; } /** * Specifies input parameter values for an SSM document in AWS Systems Manager . * * `AssociationParameter` is a property of the [SsmAssociation](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-ssmassociation.html) property type. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-associationparameter.html */ interface AssociationParameterProperty { /** * The name of an input parameter that is in the associated SSM document. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-associationparameter.html#cfn-ec2-instance-associationparameter-key */ readonly key: string; /** * The value of an input parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-associationparameter.html#cfn-ec2-instance-associationparameter-value */ readonly value: Array; } /** * Specifies a volume to attach to an instance. * * `Volume` is an embedded property of the [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) resource. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-volume.html */ interface VolumeProperty { /** * The device name (for example, `/dev/sdh` or `xvdh` ). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-volume.html#cfn-ec2-instance-volume-device */ readonly device: string; /** * The ID of the EBS volume. * * The volume and instance must be within the same Availability Zone. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-volume.html#cfn-ec2-instance-volume-volumeid */ readonly volumeId: string; } /** * Specifies the metadata options for the instance. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-metadataoptions.html */ interface MetadataOptionsProperty { /** * Enables or disables the HTTP metadata endpoint on your instances. * * If you specify a value of `disabled` , you cannot access your instance metadata. * * Default: `enabled` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-metadataoptions.html#cfn-ec2-instance-metadataoptions-httpendpoint */ readonly httpEndpoint?: string; /** * Enables or disables the IPv6 endpoint for the instance metadata service. * * Default: `disabled` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-metadataoptions.html#cfn-ec2-instance-metadataoptions-httpprotocolipv6 */ readonly httpProtocolIpv6?: string; /** * The maximum number of hops that the metadata token can travel. * * Possible values: Integers from 1 to 64 * * @default - 1 * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-metadataoptions.html#cfn-ec2-instance-metadataoptions-httpputresponsehoplimit */ readonly httpPutResponseHopLimit?: number; /** * Indicates whether IMDSv2 is required. * * - `optional` - IMDSv2 is optional, which means that you can use either IMDSv2 or IMDSv1. * - `required` - IMDSv2 is required, which means that IMDSv1 is disabled, and you must use IMDSv2. * * Default: * * - If the value of `ImdsSupport` for the Amazon Machine Image (AMI) for your instance is `v2.0` and the account level default is set to `no-preference` , the default is `required` . * - If the value of `ImdsSupport` for the Amazon Machine Image (AMI) for your instance is `v2.0` , but the account level default is set to `V1 or V2` , the default is `optional` . * * The default value can also be affected by other combinations of parameters. For more information, see [Order of precedence for instance metadata options](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-instance-metadata-options.html#instance-metadata-options-order-of-precedence) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-metadataoptions.html#cfn-ec2-instance-metadataoptions-httptokens */ readonly httpTokens?: string; /** * Set to `enabled` to allow access to instance tags from the instance metadata. * * Set to `disabled` to turn off access to instance tags from the instance metadata. For more information, see [Work with instance tags using the instance metadata](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Using_Tags.html#work-with-tags-in-IMDS) . * * Default: `disabled` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-metadataoptions.html#cfn-ec2-instance-metadataoptions-instancemetadatatags */ readonly instanceMetadataTags?: string; } /** * Describes the current state of an instance. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-state.html */ interface StateProperty { /** * The state of the instance as a 16-bit unsigned integer. * * The high byte is all of the bits between 2^8 and (2^16)-1, which equals decimal values between 256 and 65,535. These numerical values are used for internal purposes and should be ignored. * * The low byte is all of the bits between 2^0 and (2^8)-1, which equals decimal values between 0 and 255. * * The valid values for instance-state-code will all be in the range of the low byte and they are: * * - `0` : `pending` * - `16` : `running` * - `32` : `shutting-down` * - `48` : `terminated` * - `64` : `stopping` * - `80` : `stopped` * * You can ignore the high byte value by zeroing out all of the bits above 2^8 or 256 in decimal. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-state.html#cfn-ec2-instance-state-code */ readonly code?: string; /** * The current state of the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance-state.html#cfn-ec2-instance-state-name */ readonly name?: string; } } /** * Properties for defining a `CfnInstance` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html */ export interface CfnInstanceProps { /** * This property is reserved for internal use. * * If you use it, the stack fails with this error: `Bad property set: [Testing this property] (Service: AmazonEC2; Status Code: 400; Error Code: InvalidParameterCombination; Request ID: 0XXXXXX-49c7-4b40-8bcc-76885dcXXXXX)` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-additionalinfo */ readonly additionalInfo?: string; /** * Indicates whether the instance is associated with a dedicated host. * * If you want the instance to always restart on the same host on which it was launched, specify `host` . If you want the instance to restart on any available host, but try to launch onto the last host it ran on (on a best-effort basis), specify `default` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-affinity */ readonly affinity?: string; /** * The Availability Zone of the instance. * * If not specified, an Availability Zone will be automatically chosen for you based on the load balancing criteria for the Region. * * This parameter is not supported by [DescribeImageAttribute](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DescribeImageAttribute.html) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-availabilityzone */ readonly availabilityZone?: string; /** * The block device mapping entries that defines the block devices to attach to the instance at launch. * * By default, the block devices specified in the block device mapping for the AMI are used. You can override the AMI block device mapping using the instance block device mapping. For the root volume, you can override only the volume size, volume type, volume encryption settings, and the `DeleteOnTermination` setting. * * > After the instance is running, you can modify only the `DeleteOnTermination` parameter for the attached volumes without interrupting the instance. Modifying any other parameter results in instance [replacement](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-replacement) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-blockdevicemappings */ readonly blockDeviceMappings?: Array | cdk.IResolvable; /** * The CPU options for the instance. * * For more information, see [Optimize CPU options](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-optimize-cpu.html) in the *Amazon Elastic Compute Cloud User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-cpuoptions */ readonly cpuOptions?: CfnInstance.CpuOptionsProperty | cdk.IResolvable; /** * The credit option for CPU usage of the burstable performance instance. * * Valid values are `standard` and `unlimited` . To change this attribute after launch, use [ModifyInstanceCreditSpecification](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ModifyInstanceCreditSpecification.html) . For more information, see [Burstable performance instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/burstable-performance-instances.html) in the *Amazon EC2 User Guide* . * * Default: `standard` (T2 instances) or `unlimited` (T3/T3a/T4g instances) * * For T3 instances with `host` tenancy, only `standard` is supported. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-creditspecification */ readonly creditSpecification?: CfnInstance.CreditSpecificationProperty | cdk.IResolvable; /** * Indicates whether termination protection is enabled for the instance. * * The default is `false` , which means that you can terminate the instance using the Amazon EC2 console, command line tools, or API. You can enable termination protection when you launch an instance, while the instance is running, or while the instance is stopped. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-disableapitermination */ readonly disableApiTermination?: boolean | cdk.IResolvable; /** * Indicates whether the instance is optimized for Amazon EBS I/O. * * This optimization provides dedicated throughput to Amazon EBS and an optimized configuration stack to provide optimal Amazon EBS I/O performance. This optimization isn't available with all instance types. Additional usage charges apply when using an EBS-optimized instance. * * Default: `false` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-ebsoptimized */ readonly ebsOptimized?: boolean | cdk.IResolvable; /** * An elastic GPU to associate with the instance. * * > Amazon Elastic Graphics reached end of life on January 8, 2024. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-elasticgpuspecifications */ readonly elasticGpuSpecifications?: Array | cdk.IResolvable; /** * An elastic inference accelerator to associate with the instance. * * > Amazon Elastic Inference is no longer available. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-elasticinferenceaccelerators */ readonly elasticInferenceAccelerators?: Array | cdk.IResolvable; /** * Indicates whether the instance is enabled for AWS Nitro Enclaves. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-enclaveoptions */ readonly enclaveOptions?: CfnInstance.EnclaveOptionsProperty | cdk.IResolvable; /** * Indicates whether an instance is enabled for hibernation. * * This parameter is valid only if the instance meets the [hibernation prerequisites](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/hibernating-prerequisites.html) . For more information, see [Hibernate your Amazon EC2 instance](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Hibernate.html) in the *Amazon EC2 User Guide* . * * You can't enable hibernation and AWS Nitro Enclaves on the same instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-hibernationoptions */ readonly hibernationOptions?: CfnInstance.HibernationOptionsProperty | cdk.IResolvable; /** * If you specify host for the `Affinity` property, the ID of a dedicated host that the instance is associated with. * * If you don't specify an ID, Amazon EC2 launches the instance onto any available, compatible dedicated host in your account. This type of launch is called an untargeted launch. Note that for untargeted launches, you must have a compatible, dedicated host available to successfully launch instances. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-hostid */ readonly hostId?: string; /** * The ARN of the host resource group in which to launch the instances. * * If you specify a host resource group ARN, omit the *Tenancy* parameter or set it to `host` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-hostresourcegrouparn */ readonly hostResourceGroupArn?: string; /** * The name of an IAM instance profile. * * To create a new IAM instance profile, use the [AWS::IAM::InstanceProfile](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iam-instanceprofile.html) resource. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-iaminstanceprofile */ readonly iamInstanceProfile?: string; /** * The ID of the AMI. * * An AMI ID is required to launch an instance and must be specified here or in a launch template. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-imageid */ readonly imageId?: string; /** * Indicates whether an instance stops or terminates when you initiate shutdown from the instance (using the operating system command for system shutdown). * * Default: `stop` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-instanceinitiatedshutdownbehavior */ readonly instanceInitiatedShutdownBehavior?: string; /** * The instance type. For more information, see [Instance types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html) in the *Amazon EC2 User Guide* . * * When you change your EBS-backed instance type, instance restart or replacement behavior depends on the instance type compatibility between the old and new types. An instance with an instance store volume as the root volume is always replaced. For more information, see [Change the instance type](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-resize.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-instancetype */ readonly instanceType?: string; /** * The number of IPv6 addresses to associate with the primary network interface. * * Amazon EC2 chooses the IPv6 addresses from the range of your subnet. You cannot specify this option and the option to assign specific IPv6 addresses in the same request. You can specify this option if you've specified a minimum number of instances to launch. * * You cannot specify this option and the network interfaces option in the same request. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-ipv6addresscount */ readonly ipv6AddressCount?: number; /** * The IPv6 addresses from the range of the subnet to associate with the primary network interface. * * You cannot specify this option and the option to assign a number of IPv6 addresses in the same request. You cannot specify this option if you've specified a minimum number of instances to launch. * * You cannot specify this option and the network interfaces option in the same request. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-ipv6addresses */ readonly ipv6Addresses?: Array | cdk.IResolvable; /** * The ID of the kernel. * * > We recommend that you use PV-GRUB instead of kernels and RAM disks. For more information, see [PV-GRUB](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/UserProvidedkernels.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-kernelid */ readonly kernelId?: string; /** * The name of the key pair. You can create a key pair using [CreateKeyPair](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateKeyPair.html) or [ImportKeyPair](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ImportKeyPair.html) . * * > If you do not specify a key pair, you can't connect to the instance unless you choose an AMI that is configured to allow users another way to log in. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-keyname */ readonly keyName?: string; /** * The launch template. * * Any additional parameters that you specify for the new instance overwrite the corresponding parameters included in the launch template. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-launchtemplate */ readonly launchTemplate?: cdk.IResolvable | CfnInstance.LaunchTemplateSpecificationProperty; /** * The license configurations. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-licensespecifications */ readonly licenseSpecifications?: Array | cdk.IResolvable; /** * The metadata options for the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-metadataoptions */ readonly metadataOptions?: cdk.IResolvable | CfnInstance.MetadataOptionsProperty; /** * Specifies whether detailed monitoring is enabled for the instance. * * Specify `true` to enable detailed monitoring. Otherwise, basic monitoring is enabled. For more information about detailed monitoring, see [Enable or turn off detailed monitoring for your instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-cloudwatch-new.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-monitoring */ readonly monitoring?: boolean | cdk.IResolvable; /** * The network interfaces to associate with the instance. * * > If you use this property to point to a network interface, you must terminate the original interface before attaching a new one to allow the update of the instance to succeed. * > * > If this resource has a public IP address and is also in a VPC that is defined in the same template, you must use the [DependsOn Attribute](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-attribute-dependson.html) to declare a dependency on the VPC-gateway attachment. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-networkinterfaces */ readonly networkInterfaces?: Array | cdk.IResolvable; /** * The name of an existing placement group that you want to launch the instance into (cluster | partition | spread). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-placementgroupname */ readonly placementGroupName?: string; /** * The options for the instance hostname. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-privatednsnameoptions */ readonly privateDnsNameOptions?: cdk.IResolvable | CfnInstance.PrivateDnsNameOptionsProperty; /** * The primary IPv4 address. You must specify a value from the IPv4 address range of the subnet. * * Only one private IP address can be designated as primary. You can't specify this option if you've specified the option to designate a private IP address as the primary IP address in a network interface specification. You cannot specify this option if you're launching more than one instance in the request. * * You cannot specify this option and the network interfaces option in the same request. * * If you make an update to an instance that requires replacement, you must assign a new private IP address. During a replacement, AWS CloudFormation creates a new instance but doesn't delete the old instance until the stack has successfully updated. If the stack update fails, AWS CloudFormation uses the old instance to roll back the stack to the previous working state. The old and new instances cannot have the same private IP address. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-privateipaddress */ readonly privateIpAddress?: string; /** * Indicates whether to assign the tags specified in the `Tags` property to the volumes specified in the `BlockDeviceMappings` property. * * Note that using this feature does not assign the tags to volumes that are created separately and then attached using `AWS::EC2::VolumeAttachment` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-propagatetagstovolumeoncreation */ readonly propagateTagsToVolumeOnCreation?: boolean | cdk.IResolvable; /** * The ID of the RAM disk to select. * * Some kernels require additional drivers at launch. Check the kernel requirements for information about whether you need to specify a RAM disk. To find kernel requirements, go to the AWS Resource Center and search for the kernel ID. * * > We recommend that you use PV-GRUB instead of kernels and RAM disks. For more information, see [PV-GRUB](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/UserProvidedkernels.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-ramdiskid */ readonly ramdiskId?: string; /** * The IDs of the security groups. * * You can specify the IDs of existing security groups and references to resources created by the stack template. * * If you specify a network interface, you must specify any security groups as part of the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-securitygroupids */ readonly securityGroupIds?: Array; /** * [Default VPC] The names of the security groups. For a nondefault VPC, you must use security group IDs instead. * * You cannot specify this option and the network interfaces option in the same request. The list can contain both the name of existing Amazon EC2 security groups or references to AWS::EC2::SecurityGroup resources created in the template. * * Default: Amazon EC2 uses the default security group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-securitygroups */ readonly securityGroups?: Array; /** * Enable or disable source/destination checks, which ensure that the instance is either the source or the destination of any traffic that it receives. * * If the value is `true` , source/destination checks are enabled; otherwise, they are disabled. The default value is `true` . You must disable source/destination checks if the instance runs services such as network address translation, routing, or firewalls. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-sourcedestcheck */ readonly sourceDestCheck?: boolean | cdk.IResolvable; /** * The SSM [document](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ssm-document.html) and parameter values in AWS Systems Manager to associate with this instance. To use this property, you must specify an IAM instance profile role for the instance. For more information, see [Create an IAM instance profile for Systems Manager](https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-configuring-access-role.html) in the *AWS Systems Manager User Guide* . * * > You can associate only one document with an instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-ssmassociations */ readonly ssmAssociations?: Array | cdk.IResolvable; /** * The ID of the subnet to launch the instance into. * * If you specify a network interface, you must specify any subnets as part of the network interface instead of using this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-subnetid */ readonly subnetId?: string; /** * The tags to add to the instance. * * These tags are not applied to the EBS volumes, such as the root volume, unless [PropagateTagsToVolumeOnCreation](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html#cfn-ec2-instance-propagatetagstovolumeoncreation) is `true` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-tags */ readonly tags?: Array; /** * The tenancy of the instance. * * An instance with a tenancy of `dedicated` runs on single-tenant hardware. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-tenancy */ readonly tenancy?: string; /** * The parameters or scripts to store as user data. * * Any scripts in user data are run when you launch the instance. User data is limited to 16 KB. You must provide base64-encoded text. For more information, see [Fn::Base64](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-base64.html) . * * If the root volume is an EBS volume and you update user data, CloudFormation restarts the instance. If the root volume is an instance store volume and you update user data, the instance is replaced. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-userdata */ readonly userData?: string; /** * The volumes to attach to the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instance.html#cfn-ec2-instance-volumes */ readonly volumes?: Array | cdk.IResolvable; } /** * Creates an EC2 Instance Connect Endpoint. * * An EC2 Instance Connect Endpoint allows you to connect to an instance, without requiring the instance to have a public IPv4 address. For more information, see [Connect to your instances using EC2 Instance Connect Endpoint](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Connect-using-EC2-Instance-Connect-Endpoint.html) in the *Amazon EC2 User Guide* . * * With the replacement update behavior, AWS CloudFormation usually creates the new resource first, changes references to point to the new resource, and then deletes the old resource. However, you can create only one EC2 Instance Connect Endpoint per VPC, so the replacement process fails. If you need to modify an EC2 Instance Connect Endpoint, you must replace the resource manually. * * @cloudformationResource AWS::EC2::InstanceConnectEndpoint * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instanceconnectendpoint.html */ export declare class CfnInstanceConnectEndpoint extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggableV2 { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnInstanceConnectEndpoint from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnInstanceConnectEndpoint; /** * The ID of the EC2 Instance Connect Endpoint. * * @cloudformationAttribute Id */ readonly attrId: string; /** * Tag Manager which manages the tags for this resource */ readonly cdkTagManager: cdk.TagManager; /** * Unique, case-sensitive identifier that you provide to ensure the idempotency of the request. */ clientToken?: string; /** * Indicates whether the client IP address is preserved as the source. The following are the possible values. */ preserveClientIp?: boolean | cdk.IResolvable; /** * One or more security groups to associate with the endpoint. */ securityGroupIds?: Array; /** * The ID of the subnet in which to create the EC2 Instance Connect Endpoint. */ subnetId: string; /** * The tags to apply to the EC2 Instance Connect Endpoint during creation. */ tags?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnInstanceConnectEndpointProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnInstanceConnectEndpoint` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instanceconnectendpoint.html */ export interface CfnInstanceConnectEndpointProps { /** * Unique, case-sensitive identifier that you provide to ensure the idempotency of the request. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instanceconnectendpoint.html#cfn-ec2-instanceconnectendpoint-clienttoken */ readonly clientToken?: string; /** * Indicates whether the client IP address is preserved as the source. The following are the possible values. * * - `true` - Use the client IP address as the source. * - `false` - Use the network interface IP address as the source. * * Default: `false` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instanceconnectendpoint.html#cfn-ec2-instanceconnectendpoint-preserveclientip */ readonly preserveClientIp?: boolean | cdk.IResolvable; /** * One or more security groups to associate with the endpoint. * * If you don't specify a security group, the default security group for your VPC will be associated with the endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instanceconnectendpoint.html#cfn-ec2-instanceconnectendpoint-securitygroupids */ readonly securityGroupIds?: Array; /** * The ID of the subnet in which to create the EC2 Instance Connect Endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instanceconnectendpoint.html#cfn-ec2-instanceconnectendpoint-subnetid */ readonly subnetId: string; /** * The tags to apply to the EC2 Instance Connect Endpoint during creation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-instanceconnectendpoint.html#cfn-ec2-instanceconnectendpoint-tags */ readonly tags?: Array; } /** * Allocates an internet gateway for use with a VPC. * * After creating the Internet gateway, you then attach it to a VPC. * * @cloudformationResource AWS::EC2::InternetGateway * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-internetgateway.html */ export declare class CfnInternetGateway extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnInternetGateway from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnInternetGateway; /** * The ID of the internet gateway. * * @cloudformationAttribute InternetGatewayId */ readonly attrInternetGatewayId: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * Any tags to assign to the internet gateway. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnInternetGatewayProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnInternetGateway` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-internetgateway.html */ export interface CfnInternetGatewayProps { /** * Any tags to assign to the internet gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-internetgateway.html#cfn-ec2-internetgateway-tags */ readonly tags?: Array; } /** * Specifies a key pair for use with an Amazon Elastic Compute Cloud instance as follows:. * * - To import an existing key pair, include the `PublicKeyMaterial` property. * - To create a new key pair, omit the `PublicKeyMaterial` property. * * When you import an existing key pair, you specify the public key material for the key. We assume that you have the private key material for the key. AWS CloudFormation does not create or return the private key material when you import a key pair. * * When you create a new key pair, the private key is saved to AWS Systems Manager Parameter Store, using a parameter with the following name: `/ec2/keypair/{key_pair_id}` . For more information about retrieving private key, and the required permissions, see [Create a key pair using AWS CloudFormation](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/create-key-pairs.html#create-key-pair-cloudformation) in the *Amazon EC2 User Guide* . * * When AWS CloudFormation deletes a key pair that was created or imported by a stack, it also deletes the parameter that was used to store the private key material in Parameter Store. * * @cloudformationResource AWS::EC2::KeyPair * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-keypair.html */ export declare class CfnKeyPair extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnKeyPair from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnKeyPair; /** * If you created the key pair using Amazon EC2: * * - For RSA key pairs, the key fingerprint is the SHA-1 digest of the DER encoded private key. * - For ED25519 key pairs, the key fingerprint is the base64-encoded SHA-256 digest, which is the default for OpenSSH, starting with [OpenSSH 6.8](https://docs.aws.amazon.com/http://www.openssh.com/txt/release-6.8) . * * If you imported the key pair to Amazon EC2: * * - For RSA key pairs, the key fingerprint is the MD5 public key fingerprint as specified in section 4 of RFC 4716. * - For ED25519 key pairs, the key fingerprint is the base64-encoded SHA-256 digest, which is the default for OpenSSH, starting with [OpenSSH 6.8](https://docs.aws.amazon.com/http://www.openssh.com/txt/release-6.8) . * * @cloudformationAttribute KeyFingerprint */ readonly attrKeyFingerprint: string; /** * The ID of the key pair. * * @cloudformationAttribute KeyPairId */ readonly attrKeyPairId: string; /** * The format of the key pair. */ keyFormat?: string; /** * A unique name for the key pair. */ keyName: string; /** * The type of key pair. Note that ED25519 keys are not supported for Windows instances. */ keyType?: string; /** * The public key material. */ publicKeyMaterial?: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags to apply to the key pair. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnKeyPairProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnKeyPair` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-keypair.html */ export interface CfnKeyPairProps { /** * The format of the key pair. * * Default: `pem` * * @default - "pem" * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-keypair.html#cfn-ec2-keypair-keyformat */ readonly keyFormat?: string; /** * A unique name for the key pair. * * Constraints: Up to 255 ASCII characters * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-keypair.html#cfn-ec2-keypair-keyname */ readonly keyName: string; /** * The type of key pair. Note that ED25519 keys are not supported for Windows instances. * * If the `PublicKeyMaterial` property is specified, the `KeyType` property is ignored, and the key type is inferred from the `PublicKeyMaterial` value. * * Default: `rsa` * * @default - "rsa" * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-keypair.html#cfn-ec2-keypair-keytype */ readonly keyType?: string; /** * The public key material. * * The `PublicKeyMaterial` property is used to import a key pair. If this property is not specified, then a new key pair will be created. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-keypair.html#cfn-ec2-keypair-publickeymaterial */ readonly publicKeyMaterial?: string; /** * The tags to apply to the key pair. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-keypair.html#cfn-ec2-keypair-tags */ readonly tags?: Array; } /** * Specifies the properties for creating a launch template. * * The minimum required properties for specifying a launch template are as follows: * * - You must specify at least one property for the launch template data. * - You can optionally specify a name for the launch template. If you do not specify a name, AWS CloudFormation creates a name for you. * * A launch template can contain some or all of the configuration information to launch an instance. When you launch an instance using a launch template, instance properties that are not specified in the launch template use default values, except the `ImageId` property, which has no default value. If you do not specify an AMI ID for the launch template `ImageId` property, you must specify an AMI ID for the instance `ImageId` property. * * For more information, see [Launch an instance from a launch template](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-templates.html) in the *Amazon EC2 User Guide* . * * @cloudformationResource AWS::EC2::LaunchTemplate * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html */ export declare class CfnLaunchTemplate extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnLaunchTemplate from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnLaunchTemplate; /** * The default version of the launch template, such as 2. * * The default version of a launch template cannot be specified in AWS CloudFormation . The default version can be set in the Amazon EC2 console or by using the `modify-launch-template` AWS CLI command. * * @cloudformationAttribute DefaultVersionNumber */ readonly attrDefaultVersionNumber: string; /** * The latest version of the launch template, such as `5` . * * @cloudformationAttribute LatestVersionNumber */ readonly attrLatestVersionNumber: string; /** * The ID of the launch template. * * @cloudformationAttribute LaunchTemplateId */ readonly attrLaunchTemplateId: string; /** * The information for the launch template. */ launchTemplateData: cdk.IResolvable | CfnLaunchTemplate.LaunchTemplateDataProperty; /** * A name for the launch template. */ launchTemplateName?: string; /** * The tags to apply to the launch template on creation. */ tagSpecifications?: Array | cdk.IResolvable; /** * A description for the first version of the launch template. */ versionDescription?: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnLaunchTemplateProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnLaunchTemplate { /** * The information to include in the launch template. * * > You must specify at least one parameter for the launch template data. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html */ interface LaunchTemplateDataProperty { /** * The block device mapping. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-blockdevicemappings */ readonly blockDeviceMappings?: Array | cdk.IResolvable; /** * The Capacity Reservation targeting option. * * If you do not specify this parameter, the instance's Capacity Reservation preference defaults to `open` , which enables it to run in any open Capacity Reservation that has matching attributes (instance type, platform, Availability Zone). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-capacityreservationspecification */ readonly capacityReservationSpecification?: CfnLaunchTemplate.CapacityReservationSpecificationProperty | cdk.IResolvable; /** * The CPU options for the instance. * * For more information, see [CPU options for Amazon EC2 instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-optimize-cpu.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-cpuoptions */ readonly cpuOptions?: CfnLaunchTemplate.CpuOptionsProperty | cdk.IResolvable; /** * The credit option for CPU usage of the instance. * * Valid only for T instances. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-creditspecification */ readonly creditSpecification?: CfnLaunchTemplate.CreditSpecificationProperty | cdk.IResolvable; /** * Indicates whether to enable the instance for stop protection. * * For more information, see [Enable stop protection for your EC2 instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-stop-protection.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-disableapistop */ readonly disableApiStop?: boolean | cdk.IResolvable; /** * Indicates whether termination protection is enabled for the instance. * * The default is `false` , which means that you can terminate the instance using the Amazon EC2 console, command line tools, or API. You can enable termination protection when you launch an instance, while the instance is running, or while the instance is stopped. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-disableapitermination */ readonly disableApiTermination?: boolean | cdk.IResolvable; /** * Indicates whether the instance is optimized for Amazon EBS I/O. * * This optimization provides dedicated throughput to Amazon EBS and an optimized configuration stack to provide optimal Amazon EBS I/O performance. This optimization isn't available with all instance types. Additional usage charges apply when using an EBS-optimized instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-ebsoptimized */ readonly ebsOptimized?: boolean | cdk.IResolvable; /** * Deprecated. * * > Amazon Elastic Graphics reached end of life on January 8, 2024. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-elasticgpuspecifications */ readonly elasticGpuSpecifications?: Array | cdk.IResolvable; /** * > Amazon Elastic Inference is no longer available. * * An elastic inference accelerator to associate with the instance. Elastic inference accelerators are a resource you can attach to your Amazon EC2 instances to accelerate your Deep Learning (DL) inference workloads. * * You cannot specify accelerators from different generations in the same request. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-elasticinferenceaccelerators */ readonly elasticInferenceAccelerators?: Array | cdk.IResolvable; /** * Indicates whether the instance is enabled for AWS Nitro Enclaves. * * For more information, see [What is Nitro Enclaves?](https://docs.aws.amazon.com/enclaves/latest/user/nitro-enclave.html) in the *AWS Nitro Enclaves User Guide* . * * You can't enable AWS Nitro Enclaves and hibernation on the same instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-enclaveoptions */ readonly enclaveOptions?: CfnLaunchTemplate.EnclaveOptionsProperty | cdk.IResolvable; /** * Indicates whether an instance is enabled for hibernation. * * This parameter is valid only if the instance meets the [hibernation prerequisites](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/hibernating-prerequisites.html) . For more information, see [Hibernate your Amazon EC2 instance](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Hibernate.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-hibernationoptions */ readonly hibernationOptions?: CfnLaunchTemplate.HibernationOptionsProperty | cdk.IResolvable; /** * The name or Amazon Resource Name (ARN) of an IAM instance profile. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-iaminstanceprofile */ readonly iamInstanceProfile?: CfnLaunchTemplate.IamInstanceProfileProperty | cdk.IResolvable; /** * The ID of the AMI. * * Alternatively, you can specify a Systems Manager parameter, which will resolve to an AMI ID on launch. * * Valid formats: * * - `ami-0ac394d6a3example` * - `resolve:ssm:parameter-name` * - `resolve:ssm:parameter-name:version-number` * - `resolve:ssm:parameter-name:label` * * For more information, see [Use a Systems Manager parameter to find an AMI](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/finding-an-ami.html#using-systems-manager-parameter-to-find-AMI) in the *Amazon Elastic Compute Cloud User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-imageid */ readonly imageId?: string; /** * Indicates whether an instance stops or terminates when you initiate shutdown from the instance (using the operating system command for system shutdown). * * Default: `stop` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-instanceinitiatedshutdownbehavior */ readonly instanceInitiatedShutdownBehavior?: string; /** * The market (purchasing) option for the instances. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-instancemarketoptions */ readonly instanceMarketOptions?: CfnLaunchTemplate.InstanceMarketOptionsProperty | cdk.IResolvable; /** * The attributes for the instance types. * * When you specify instance attributes, Amazon EC2 will identify instance types with these attributes. * * You must specify `VCpuCount` and `MemoryMiB` . All other attributes are optional. Any unspecified optional attribute is set to its default. * * When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values. * * To limit the list of instance types from which Amazon EC2 can identify matching instance types, you can use one of the following parameters, but not both in the same request: * * - `AllowedInstanceTypes` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes. * - `ExcludedInstanceTypes` - The instance types to exclude from the list, even if they match your specified attributes. * * > If you specify `InstanceRequirements` , you can't specify `InstanceType` . * > * > Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html) , or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify `InstanceRequirements` . * * For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-instancerequirements */ readonly instanceRequirements?: CfnLaunchTemplate.InstanceRequirementsProperty | cdk.IResolvable; /** * The instance type. For more information, see [Amazon EC2 instance types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html) in the *Amazon EC2 User Guide* . * * If you specify `InstanceType` , you can't specify `InstanceRequirements` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-instancetype */ readonly instanceType?: string; /** * The ID of the kernel. * * We recommend that you use PV-GRUB instead of kernels and RAM disks. For more information, see [User Provided Kernels](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/UserProvidedkernels.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-kernelid */ readonly kernelId?: string; /** * The name of the key pair. You can create a key pair using [CreateKeyPair](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateKeyPair.html) or [ImportKeyPair](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ImportKeyPair.html) . * * > If you do not specify a key pair, you can't connect to the instance unless you choose an AMI that is configured to allow users another way to log in. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-keyname */ readonly keyName?: string; /** * The license configurations. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-licensespecifications */ readonly licenseSpecifications?: Array | cdk.IResolvable; /** * The maintenance options of your instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-maintenanceoptions */ readonly maintenanceOptions?: cdk.IResolvable | CfnLaunchTemplate.MaintenanceOptionsProperty; /** * The metadata options for the instance. * * For more information, see [Configure the Instance Metadata Service options](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-instance-metadata-options.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-metadataoptions */ readonly metadataOptions?: cdk.IResolvable | CfnLaunchTemplate.MetadataOptionsProperty; /** * The monitoring for the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-monitoring */ readonly monitoring?: cdk.IResolvable | CfnLaunchTemplate.MonitoringProperty; /** * The network interfaces for the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-networkinterfaces */ readonly networkInterfaces?: Array | cdk.IResolvable; /** * The settings for the network performance options for the instance. * * For more information, see [EC2 instance bandwidth weighting configuration](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configure-bandwidth-weighting.html) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-networkperformanceoptions */ readonly networkPerformanceOptions?: cdk.IResolvable | CfnLaunchTemplate.NetworkPerformanceOptionsProperty; /** * The placement for the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-placement */ readonly placement?: cdk.IResolvable | CfnLaunchTemplate.PlacementProperty; /** * The hostname type for EC2 instances launched into this subnet and how DNS A and AAAA record queries should be handled. * * For more information, see [Amazon EC2 instance hostname types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-naming.html) in the *Amazon Elastic Compute Cloud User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-privatednsnameoptions */ readonly privateDnsNameOptions?: cdk.IResolvable | CfnLaunchTemplate.PrivateDnsNameOptionsProperty; /** * The ID of the RAM disk. * * > We recommend that you use PV-GRUB instead of kernels and RAM disks. For more information, see [User provided kernels](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/UserProvidedkernels.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-ramdiskid */ readonly ramDiskId?: string; /** * The IDs of the security groups. * * You can specify the IDs of existing security groups and references to resources created by the stack template. * * If you specify a network interface, you must specify any security groups as part of the network interface instead. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-securitygroupids */ readonly securityGroupIds?: Array; /** * The names of the security groups. For a nondefault VPC, you must use security group IDs instead. * * If you specify a network interface, you must specify any security groups as part of the network interface instead of using this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-securitygroups */ readonly securityGroups?: Array; /** * The tags to apply to resources that are created during instance launch. * * To tag the launch template itself, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#cfn-ec2-launchtemplate-tagspecifications) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications */ readonly tagSpecifications?: Array | cdk.IResolvable; /** * The user data to make available to the instance. * * You must provide base64-encoded text. User data is limited to 16 KB. For more information, see [Run commands when you launch an EC2 instance with user data input](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/user-data.html) in the *Amazon EC2 User Guide* . * * If you are creating the launch template for use with AWS Batch , the user data must be provided in the [MIME multi-part archive format](https://docs.aws.amazon.com/https://cloudinit.readthedocs.io/en/latest/topics/format.html#mime-multi-part-archive) . For more information, see [Amazon EC2 user data in launch templates](https://docs.aws.amazon.com/batch/latest/userguide/launch-templates.html#lt-user-data) in the *AWS Batch User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-userdata */ readonly userData?: string; } /** * Specifies the tags to apply to resources that are created during instance launch. * * `TagSpecification` is a property type of [`TagSpecifications`](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications) . [`TagSpecifications`](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications) is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-tagspecification.html */ interface TagSpecificationProperty { /** * The type of resource to tag. * * You can specify tags for the following resource types only: `instance` | `volume` | `network-interface` | `spot-instances-request` . If the instance does not include the resource type that you specify, the instance launch fails. For example, not all instance types include a volume. * * To tag a resource after it has been created, see [CreateTags](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateTags.html) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-tagspecification.html#cfn-ec2-launchtemplate-tagspecification-resourcetype */ readonly resourceType?: string; /** * The tags to apply to the resource. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-tagspecification.html#cfn-ec2-launchtemplate-tagspecification-tags */ readonly tags?: Array; } /** * Specifies a block device mapping for a launch template. * * You must specify `DeviceName` plus exactly one of the following properties: `Ebs` , `NoDevice` , or `VirtualName` . * * `BlockDeviceMapping` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-blockdevicemapping.html */ interface BlockDeviceMappingProperty { /** * The device name (for example, /dev/sdh or xvdh). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-blockdevicemapping.html#cfn-ec2-launchtemplate-blockdevicemapping-devicename */ readonly deviceName?: string; /** * Parameters used to automatically set up EBS volumes when the instance is launched. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-blockdevicemapping.html#cfn-ec2-launchtemplate-blockdevicemapping-ebs */ readonly ebs?: CfnLaunchTemplate.EbsProperty | cdk.IResolvable; /** * To omit the device from the block device mapping, specify an empty string. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-blockdevicemapping.html#cfn-ec2-launchtemplate-blockdevicemapping-nodevice */ readonly noDevice?: string; /** * The virtual device name (ephemeralN). * * Instance store volumes are numbered starting from 0. An instance type with 2 available instance store volumes can specify mappings for ephemeral0 and ephemeral1. The number of available instance store volumes depends on the instance type. After you connect to the instance, you must mount the volume. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-blockdevicemapping.html#cfn-ec2-launchtemplate-blockdevicemapping-virtualname */ readonly virtualName?: string; } /** * Parameters for a block device for an EBS volume in an Amazon EC2 launch template. * * `Ebs` is a property of [AWS::EC2::LaunchTemplate BlockDeviceMapping](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-blockdevicemapping.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-ebs.html */ interface EbsProperty { /** * Indicates whether the EBS volume is deleted on instance termination. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-ebs.html#cfn-ec2-launchtemplate-ebs-deleteontermination */ readonly deleteOnTermination?: boolean | cdk.IResolvable; /** * Indicates whether the EBS volume is encrypted. * * Encrypted volumes can only be attached to instances that support Amazon EBS encryption. If you are creating a volume from a snapshot, you can't specify an encryption value. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-ebs.html#cfn-ec2-launchtemplate-ebs-encrypted */ readonly encrypted?: boolean | cdk.IResolvable; /** * The number of I/O operations per second (IOPS). * * For `gp3` , `io1` , and `io2` volumes, this represents the number of IOPS that are provisioned for the volume. For `gp2` volumes, this represents the baseline performance of the volume and the rate at which the volume accumulates I/O credits for bursting. * * The following are the supported values for each volume type: * * - `gp3` : 3,000 - 16,000 IOPS * - `io1` : 100 - 64,000 IOPS * - `io2` : 100 - 256,000 IOPS * * For `io2` volumes, you can achieve up to 256,000 IOPS on [instances built on the Nitro System](https://docs.aws.amazon.com/ec2/latest/instancetypes/ec2-nitro-instances.html) . On other instances, you can achieve performance up to 32,000 IOPS. * * This parameter is supported for `io1` , `io2` , and `gp3` volumes only. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-ebs.html#cfn-ec2-launchtemplate-ebs-iops */ readonly iops?: number; /** * Identifier (key ID, key alias, key ARN, or alias ARN) of the customer managed KMS key to use for EBS encryption. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-ebs.html#cfn-ec2-launchtemplate-ebs-kmskeyid */ readonly kmsKeyId?: string; /** * The ID of the snapshot. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-ebs.html#cfn-ec2-launchtemplate-ebs-snapshotid */ readonly snapshotId?: string; /** * The throughput to provision for a `gp3` volume, with a maximum of 1,000 MiB/s. * * Valid Range: Minimum value of 125. Maximum value of 1000. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-ebs.html#cfn-ec2-launchtemplate-ebs-throughput */ readonly throughput?: number; /** * Specifies the Amazon EBS Provisioned Rate for Volume Initialization (volume initialization rate), in MiB/s, at which to download the snapshot blocks from Amazon S3 to the volume. * * This is also known as *volume initialization* . Specifying a volume initialization rate ensures that the volume is initialized at a predictable and consistent rate after creation. * * This parameter is supported only for volumes created from snapshots. Omit this parameter if: * * - You want to create the volume using fast snapshot restore. You must specify a snapshot that is enabled for fast snapshot restore. In this case, the volume is fully initialized at creation. * * > If you specify a snapshot that is enabled for fast snapshot restore and a volume initialization rate, the volume will be initialized at the specified rate instead of fast snapshot restore. * - You want to create a volume that is initialized at the default rate. * * For more information, see [Initialize Amazon EBS volumes](https://docs.aws.amazon.com/ebs/latest/userguide/initalize-volume.html) in the *Amazon EC2 User Guide* . * * Valid range: 100 - 300 MiB/s * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-ebs.html#cfn-ec2-launchtemplate-ebs-volumeinitializationrate */ readonly volumeInitializationRate?: number; /** * The size of the volume, in GiBs. * * You must specify either a snapshot ID or a volume size. The following are the supported volumes sizes for each volume type: * * - `gp2` and `gp3` : 1 - 16,384 GiB * - `io1` : 4 - 16,384 GiB * - `io2` : 4 - 65,536 GiB * - `st1` and `sc1` : 125 - 16,384 GiB * - `standard` : 1 - 1024 GiB * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-ebs.html#cfn-ec2-launchtemplate-ebs-volumesize */ readonly volumeSize?: number; /** * The volume type. * * For more information, see [Amazon EBS volume types](https://docs.aws.amazon.com/ebs/latest/userguide/ebs-volume-types.html) in the *Amazon EBS User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-ebs.html#cfn-ec2-launchtemplate-ebs-volumetype */ readonly volumeType?: string; } /** * The maintenance options of your instance. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-maintenanceoptions.html */ interface MaintenanceOptionsProperty { /** * Disables the automatic recovery behavior of your instance or sets it to default. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-maintenanceoptions.html#cfn-ec2-launchtemplate-maintenanceoptions-autorecovery */ readonly autoRecovery?: string; } /** * Specifies an IAM instance profile, which is a container for an IAM role for your instance. * * You can use an IAM role to distribute your AWS credentials to your instances. * * If you are creating the launch template for use with an Amazon EC2 Auto Scaling group, you can specify either the name or the ARN of the instance profile, but not both. * * `IamInstanceProfile` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-iaminstanceprofile.html */ interface IamInstanceProfileProperty { /** * The Amazon Resource Name (ARN) of the instance profile. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-iaminstanceprofile.html#cfn-ec2-launchtemplate-iaminstanceprofile-arn */ readonly arn?: string; /** * The name of the instance profile. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-iaminstanceprofile.html#cfn-ec2-launchtemplate-iaminstanceprofile-name */ readonly name?: string; } /** * > Amazon Elastic Graphics reached end of life on January 8, 2024. * * Specifies a specification for an Elastic GPU for an Amazon EC2 launch template. * * `ElasticGpuSpecification` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-elasticgpuspecification.html */ interface ElasticGpuSpecificationProperty { /** * The type of Elastic Graphics accelerator. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-elasticgpuspecification.html#cfn-ec2-launchtemplate-elasticgpuspecification-type */ readonly type?: string; } /** * > Amazon Elastic Inference is no longer available. * * Specifies an elastic inference accelerator. * * `LaunchTemplateElasticInferenceAccelerator` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplateelasticinferenceaccelerator.html */ interface LaunchTemplateElasticInferenceAcceleratorProperty { /** * The number of elastic inference accelerators to attach to the instance. * * Default: 1 * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplateelasticinferenceaccelerator.html#cfn-ec2-launchtemplate-launchtemplateelasticinferenceaccelerator-count */ readonly count?: number; /** * The type of elastic inference accelerator. * * The possible values are eia1.medium, eia1.large, and eia1.xlarge. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplateelasticinferenceaccelerator.html#cfn-ec2-launchtemplate-launchtemplateelasticinferenceaccelerator-type */ readonly type?: string; } /** * Specifies the placement of an instance. * * `Placement` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-placement.html */ interface PlacementProperty { /** * The affinity setting for an instance on a Dedicated Host. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-placement.html#cfn-ec2-launchtemplate-placement-affinity */ readonly affinity?: string; /** * The Availability Zone for the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-placement.html#cfn-ec2-launchtemplate-placement-availabilityzone */ readonly availabilityZone?: string; /** * The Group Id of a placement group. * * You must specify the Placement Group *Group Id* to launch an instance in a shared placement group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-placement.html#cfn-ec2-launchtemplate-placement-groupid */ readonly groupId?: string; /** * The name of the placement group for the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-placement.html#cfn-ec2-launchtemplate-placement-groupname */ readonly groupName?: string; /** * The ID of the Dedicated Host for the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-placement.html#cfn-ec2-launchtemplate-placement-hostid */ readonly hostId?: string; /** * The ARN of the host resource group in which to launch the instances. * * If you specify a host resource group ARN, omit the *Tenancy* parameter or set it to `host` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-placement.html#cfn-ec2-launchtemplate-placement-hostresourcegrouparn */ readonly hostResourceGroupArn?: string; /** * The number of the partition the instance should launch in. * * Valid only if the placement group strategy is set to `partition` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-placement.html#cfn-ec2-launchtemplate-placement-partitionnumber */ readonly partitionNumber?: number; /** * Reserved for future use. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-placement.html#cfn-ec2-launchtemplate-placement-spreaddomain */ readonly spreadDomain?: string; /** * The tenancy of the instance. * * An instance with a tenancy of dedicated runs on single-tenant hardware. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-placement.html#cfn-ec2-launchtemplate-placement-tenancy */ readonly tenancy?: string; } /** * Specifies the parameters for a network interface. * * `NetworkInterface` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html */ interface NetworkInterfaceProperty { /** * Associates a Carrier IP address with eth0 for a new network interface. * * Use this option when you launch an instance in a Wavelength Zone and want to associate a Carrier IP address with the network interface. For more information about Carrier IP addresses, see [Carrier IP addresses](https://docs.aws.amazon.com/wavelength/latest/developerguide/how-wavelengths-work.html#provider-owned-ip) in the *AWS Wavelength Developer Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-associatecarrieripaddress */ readonly associateCarrierIpAddress?: boolean | cdk.IResolvable; /** * Associates a public IPv4 address with eth0 for a new network interface. * * AWS charges for all public IPv4 addresses, including public IPv4 addresses associated with running instances and Elastic IP addresses. For more information, see the *Public IPv4 Address* tab on the [Amazon VPC pricing page](https://docs.aws.amazon.com/vpc/pricing/) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-associatepublicipaddress */ readonly associatePublicIpAddress?: boolean | cdk.IResolvable; /** * A connection tracking specification for the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-connectiontrackingspecification */ readonly connectionTrackingSpecification?: CfnLaunchTemplate.ConnectionTrackingSpecificationProperty | cdk.IResolvable; /** * Indicates whether the network interface is deleted when the instance is terminated. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-deleteontermination */ readonly deleteOnTermination?: boolean | cdk.IResolvable; /** * A description for the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-description */ readonly description?: string; /** * The device index for the network interface attachment. * * The primary network interface has a device index of 0. If the network interface is of type `interface` , you must specify a device index. * * If you create a launch template that includes secondary network interfaces but no primary network interface, and you specify it using the `LaunchTemplate` property of `AWS::EC2::Instance` , then you must include a primary network interface using the `NetworkInterfaces` property of `AWS::EC2::Instance` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-deviceindex */ readonly deviceIndex?: number; /** * The ENA Express configuration for the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-enasrdspecification */ readonly enaSrdSpecification?: CfnLaunchTemplate.EnaSrdSpecificationProperty | cdk.IResolvable; /** * The IDs of one or more security groups. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-groups */ readonly groups?: Array; /** * The type of network interface. * * To create an Elastic Fabric Adapter (EFA), specify `efa` or `efa` . For more information, see [Elastic Fabric Adapter for AI/ML and HPC workloads on Amazon EC2](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/efa.html) in the *Amazon EC2 User Guide* . * * If you are not creating an EFA, specify `interface` or omit this parameter. * * If you specify `efa-only` , do not assign any IP addresses to the network interface. EFA-only network interfaces do not support IP addresses. * * Valid values: `interface` | `efa` | `efa-only` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-interfacetype */ readonly interfaceType?: string; /** * The number of IPv4 prefixes to be automatically assigned to the network interface. * * You cannot use this option if you use the `Ipv4Prefix` option. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-ipv4prefixcount */ readonly ipv4PrefixCount?: number; /** * One or more IPv4 prefixes to be assigned to the network interface. * * You cannot use this option if you use the `Ipv4PrefixCount` option. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-ipv4prefixes */ readonly ipv4Prefixes?: Array | cdk.IResolvable; /** * The number of IPv6 addresses to assign to a network interface. * * Amazon EC2 automatically selects the IPv6 addresses from the subnet range. You can't use this option if specifying specific IPv6 addresses. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-ipv6addresscount */ readonly ipv6AddressCount?: number; /** * One or more specific IPv6 addresses from the IPv6 CIDR block range of your subnet. * * You can't use this option if you're specifying a number of IPv6 addresses. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-ipv6addresses */ readonly ipv6Addresses?: Array | cdk.IResolvable; /** * The number of IPv6 prefixes to be automatically assigned to the network interface. * * You cannot use this option if you use the `Ipv6Prefix` option. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-ipv6prefixcount */ readonly ipv6PrefixCount?: number; /** * One or more IPv6 prefixes to be assigned to the network interface. * * You cannot use this option if you use the `Ipv6PrefixCount` option. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-ipv6prefixes */ readonly ipv6Prefixes?: Array | cdk.IResolvable; /** * The index of the network card. * * Some instance types support multiple network cards. The primary network interface must be assigned to network card index 0. The default is network card index 0. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-networkcardindex */ readonly networkCardIndex?: number; /** * The ID of the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-networkinterfaceid */ readonly networkInterfaceId?: string; /** * The primary IPv6 address of the network interface. * * When you enable an IPv6 GUA address to be a primary IPv6, the first IPv6 GUA will be made the primary IPv6 address until the instance is terminated or the network interface is detached. For more information about primary IPv6 addresses, see [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-primaryipv6 */ readonly primaryIpv6?: boolean | cdk.IResolvable; /** * The primary private IPv4 address of the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-privateipaddress */ readonly privateIpAddress?: string; /** * One or more private IPv4 addresses. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-privateipaddresses */ readonly privateIpAddresses?: Array | cdk.IResolvable; /** * The number of secondary private IPv4 addresses to assign to a network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-secondaryprivateipaddresscount */ readonly secondaryPrivateIpAddressCount?: number; /** * The ID of the subnet for the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html#cfn-ec2-launchtemplate-networkinterface-subnetid */ readonly subnetId?: string; } /** * Specifies a secondary private IPv4 address for a network interface. * * `PrivateIpAdd` is a property of [AWS::EC2::LaunchTemplate NetworkInterface](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-privateipadd.html */ interface PrivateIpAddProperty { /** * Indicates whether the private IPv4 address is the primary private IPv4 address. * * Only one IPv4 address can be designated as primary. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-privateipadd.html#cfn-ec2-launchtemplate-privateipadd-primary */ readonly primary?: boolean | cdk.IResolvable; /** * The private IPv4 address. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-privateipadd.html#cfn-ec2-launchtemplate-privateipadd-privateipaddress */ readonly privateIpAddress?: string; } /** * Specifies an IPv4 prefix for a network interface. * * `Ipv4PrefixSpecification` is a property of [AWS::EC2::LaunchTemplate NetworkInterface](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-ipv4prefixspecification.html */ interface Ipv4PrefixSpecificationProperty { /** * The IPv4 prefix. * * For information, see [Assigning prefixes to network interfaces](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-prefix-eni.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-ipv4prefixspecification.html#cfn-ec2-launchtemplate-ipv4prefixspecification-ipv4prefix */ readonly ipv4Prefix?: string; } /** * Specifies an IPv6 prefix for a network interface. * * `Ipv6PrefixSpecification` is a property of [AWS::EC2::LaunchTemplate NetworkInterface](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-ipv6prefixspecification.html */ interface Ipv6PrefixSpecificationProperty { /** * The IPv6 prefix. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-ipv6prefixspecification.html#cfn-ec2-launchtemplate-ipv6prefixspecification-ipv6prefix */ readonly ipv6Prefix?: string; } /** * Specifies an IPv6 address in an Amazon EC2 launch template. * * `Ipv6Add` is a property of [AWS::EC2::LaunchTemplate NetworkInterface](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-ipv6add.html */ interface Ipv6AddProperty { /** * One or more specific IPv6 addresses from the IPv6 CIDR block range of your subnet. * * You can't use this option if you're specifying a number of IPv6 addresses. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-ipv6add.html#cfn-ec2-launchtemplate-ipv6add-ipv6address */ readonly ipv6Address?: string; } /** * ENA Express uses AWS Scalable Reliable Datagram (SRD) technology to increase the maximum bandwidth used per stream and minimize tail latency of network traffic between EC2 instances. * * With ENA Express, you can communicate between two EC2 instances in the same subnet within the same account, or in different accounts. Both sending and receiving instances must have ENA Express enabled. * * To improve the reliability of network packet delivery, ENA Express reorders network packets on the receiving end by default. However, some UDP-based applications are designed to handle network packets that are out of order to reduce the overhead for packet delivery at the network layer. When ENA Express is enabled, you can specify whether UDP network traffic uses it. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-enasrdspecification.html */ interface EnaSrdSpecificationProperty { /** * Indicates whether ENA Express is enabled for the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-enasrdspecification.html#cfn-ec2-launchtemplate-enasrdspecification-enasrdenabled */ readonly enaSrdEnabled?: boolean | cdk.IResolvable; /** * Configures ENA Express for UDP network traffic. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-enasrdspecification.html#cfn-ec2-launchtemplate-enasrdspecification-enasrdudpspecification */ readonly enaSrdUdpSpecification?: CfnLaunchTemplate.EnaSrdUdpSpecificationProperty | cdk.IResolvable; } /** * ENA Express is compatible with both TCP and UDP transport protocols. * * When it's enabled, TCP traffic automatically uses it. However, some UDP-based applications are designed to handle network packets that are out of order, without a need for retransmission, such as live video broadcasting or other near-real-time applications. For UDP traffic, you can specify whether to use ENA Express, based on your application environment needs. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-enasrdudpspecification.html */ interface EnaSrdUdpSpecificationProperty { /** * Indicates whether UDP traffic to and from the instance uses ENA Express. * * To specify this setting, you must first enable ENA Express. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-enasrdudpspecification.html#cfn-ec2-launchtemplate-enasrdudpspecification-enasrdudpenabled */ readonly enaSrdUdpEnabled?: boolean | cdk.IResolvable; } /** * A security group connection tracking specification that enables you to set the idle timeout for connection tracking on an Elastic network interface. * * For more information, see [Connection tracking timeouts](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/security-group-connection-tracking.html#connection-tracking-timeouts) in the *Amazon EC2 User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-connectiontrackingspecification.html */ interface ConnectionTrackingSpecificationProperty { /** * Timeout (in seconds) for idle TCP connections in an established state. * * Min: 60 seconds. Max: 432000 seconds (5 days). Default: 432000 seconds. Recommended: Less than 432000 seconds. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-connectiontrackingspecification.html#cfn-ec2-launchtemplate-connectiontrackingspecification-tcpestablishedtimeout */ readonly tcpEstablishedTimeout?: number; /** * Timeout (in seconds) for idle UDP flows classified as streams which have seen more than one request-response transaction. * * Min: 60 seconds. Max: 180 seconds (3 minutes). Default: 180 seconds. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-connectiontrackingspecification.html#cfn-ec2-launchtemplate-connectiontrackingspecification-udpstreamtimeout */ readonly udpStreamTimeout?: number; /** * Timeout (in seconds) for idle UDP flows that have seen traffic only in a single direction or a single request-response transaction. * * Min: 30 seconds. Max: 60 seconds. Default: 30 seconds. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-connectiontrackingspecification.html#cfn-ec2-launchtemplate-connectiontrackingspecification-udptimeout */ readonly udpTimeout?: number; } /** * Indicates whether the instance is enabled for AWS Nitro Enclaves. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-enclaveoptions.html */ interface EnclaveOptionsProperty { /** * If this parameter is set to `true` , the instance is enabled for AWS Nitro Enclaves; * * otherwise, it is not enabled for AWS Nitro Enclaves. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-enclaveoptions.html#cfn-ec2-launchtemplate-enclaveoptions-enabled */ readonly enabled?: boolean | cdk.IResolvable; } /** * Specifies whether detailed monitoring is enabled for an instance. * * For more information about detailed monitoring, see [Enable or turn off detailed monitoring for your instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-cloudwatch-new.html) in the *Amazon EC2 User Guide* . * * `Monitoring` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-monitoring.html */ interface MonitoringProperty { /** * Specify `true` to enable detailed monitoring. * * Otherwise, basic monitoring is enabled. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-monitoring.html#cfn-ec2-launchtemplate-monitoring-enabled */ readonly enabled?: boolean | cdk.IResolvable; } /** * Specifies whether your instance is configured for hibernation. * * This parameter is valid only if the instance meets the [hibernation prerequisites](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Hibernate.html#hibernating-prerequisites) . For more information, see [Hibernate Your Instance](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Hibernate.html) in the *Amazon EC2 User Guide* . * * `HibernationOptions` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-hibernationoptions.html */ interface HibernationOptionsProperty { /** * If you set this parameter to `true` , the instance is enabled for hibernation. * * Default: `false` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-hibernationoptions.html#cfn-ec2-launchtemplate-hibernationoptions-configured */ readonly configured?: boolean | cdk.IResolvable; } /** * The metadata options for the instance. * * For more information, see [Instance metadata and user data](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html) in the *Amazon EC2 User Guide* . * * `MetadataOptions` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-metadataoptions.html */ interface MetadataOptionsProperty { /** * Enables or disables the HTTP metadata endpoint on your instances. * * If the parameter is not specified, the default state is `enabled` . * * > If you specify a value of `disabled` , you will not be able to access your instance metadata. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-metadataoptions.html#cfn-ec2-launchtemplate-metadataoptions-httpendpoint */ readonly httpEndpoint?: string; /** * Enables or disables the IPv6 endpoint for the instance metadata service. * * Default: `disabled` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-metadataoptions.html#cfn-ec2-launchtemplate-metadataoptions-httpprotocolipv6 */ readonly httpProtocolIpv6?: string; /** * The desired HTTP PUT response hop limit for instance metadata requests. * * The larger the number, the further instance metadata requests can travel. * * Default: `1` * * Possible values: Integers from 1 to 64 * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-metadataoptions.html#cfn-ec2-launchtemplate-metadataoptions-httpputresponsehoplimit */ readonly httpPutResponseHopLimit?: number; /** * Indicates whether IMDSv2 is required. * * - `optional` - IMDSv2 is optional. You can choose whether to send a session token in your instance metadata retrieval requests. If you retrieve IAM role credentials without a session token, you receive the IMDSv1 role credentials. If you retrieve IAM role credentials using a valid session token, you receive the IMDSv2 role credentials. * - `required` - IMDSv2 is required. You must send a session token in your instance metadata retrieval requests. With this option, retrieving the IAM role credentials always returns IMDSv2 credentials; IMDSv1 credentials are not available. * * Default: If the value of `ImdsSupport` for the Amazon Machine Image (AMI) for your instance is `v2.0` , the default is `required` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-metadataoptions.html#cfn-ec2-launchtemplate-metadataoptions-httptokens */ readonly httpTokens?: string; /** * Set to `enabled` to allow access to instance tags from the instance metadata. * * Set to `disabled` to turn off access to instance tags from the instance metadata. For more information, see [View tags for your EC2 instances using instance metadata](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/work-with-tags-in-IMDS.html) . * * Default: `disabled` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-metadataoptions.html#cfn-ec2-launchtemplate-metadataoptions-instancemetadatatags */ readonly instanceMetadataTags?: string; } /** * Specifies a license configuration for an instance. * * `LicenseSpecification` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-licensespecification.html */ interface LicenseSpecificationProperty { /** * The Amazon Resource Name (ARN) of the license configuration. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-licensespecification.html#cfn-ec2-launchtemplate-licensespecification-licenseconfigurationarn */ readonly licenseConfigurationArn?: string; } /** * Specifies the CPU options for an instance. * * For more information, see [Optimize CPU options](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-optimize-cpu.html) in the *Amazon Elastic Compute Cloud User Guide* . * * `CpuOptions` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-cpuoptions.html */ interface CpuOptionsProperty { /** * Indicates whether to enable the instance for AMD SEV-SNP. * * AMD SEV-SNP is supported with M6a, R6a, and C6a instance types only. For more information, see [AMD SEV-SNP for Amazon EC2 instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/sev-snp.html) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-cpuoptions.html#cfn-ec2-launchtemplate-cpuoptions-amdsevsnp */ readonly amdSevSnp?: string; /** * The number of CPU cores for the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-cpuoptions.html#cfn-ec2-launchtemplate-cpuoptions-corecount */ readonly coreCount?: number; /** * The number of threads per CPU core. * * To disable multithreading for the instance, specify a value of `1` . Otherwise, specify the default value of `2` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-cpuoptions.html#cfn-ec2-launchtemplate-cpuoptions-threadspercore */ readonly threadsPerCore?: number; } /** * The hostname type for EC2 instances launched into this subnet and how DNS A and AAAA record queries should be handled. * * For more information, see [Amazon EC2 instance hostname types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-naming.html) in the *Amazon Elastic Compute Cloud User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-privatednsnameoptions.html */ interface PrivateDnsNameOptionsProperty { /** * Indicates whether to respond to DNS queries for instance hostnames with DNS AAAA records. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-privatednsnameoptions.html#cfn-ec2-launchtemplate-privatednsnameoptions-enableresourcenamednsaaaarecord */ readonly enableResourceNameDnsAaaaRecord?: boolean | cdk.IResolvable; /** * Indicates whether to respond to DNS queries for instance hostnames with DNS A records. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-privatednsnameoptions.html#cfn-ec2-launchtemplate-privatednsnameoptions-enableresourcenamednsarecord */ readonly enableResourceNameDnsARecord?: boolean | cdk.IResolvable; /** * The type of hostname for EC2 instances. * * For IPv4 only subnets, an instance DNS name must be based on the instance IPv4 address. For IPv6 only subnets, an instance DNS name must be based on the instance ID. For dual-stack subnets, you can specify whether DNS names use the instance IPv4 address or the instance ID. For more information, see [Amazon EC2 instance hostname types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-naming.html) in the *Amazon Elastic Compute Cloud User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-privatednsnameoptions.html#cfn-ec2-launchtemplate-privatednsnameoptions-hostnametype */ readonly hostnameType?: string; } /** * Specifies the market (purchasing) option for an instance. * * `InstanceMarketOptions` is a property of the [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancemarketoptions.html */ interface InstanceMarketOptionsProperty { /** * The market type. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancemarketoptions.html#cfn-ec2-launchtemplate-instancemarketoptions-markettype */ readonly marketType?: string; /** * The options for Spot Instances. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancemarketoptions.html#cfn-ec2-launchtemplate-instancemarketoptions-spotoptions */ readonly spotOptions?: cdk.IResolvable | CfnLaunchTemplate.SpotOptionsProperty; } /** * Specifies options for Spot Instances. * * `SpotOptions` is a property of [AWS::EC2::LaunchTemplate InstanceMarketOptions](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata-instancemarketoptions.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-spotoptions.html */ interface SpotOptionsProperty { /** * Deprecated. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-spotoptions.html#cfn-ec2-launchtemplate-spotoptions-blockdurationminutes */ readonly blockDurationMinutes?: number; /** * The behavior when a Spot Instance is interrupted. * * The default is `terminate` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-spotoptions.html#cfn-ec2-launchtemplate-spotoptions-instanceinterruptionbehavior */ readonly instanceInterruptionBehavior?: string; /** * The maximum hourly price you're willing to pay for a Spot Instance. * * We do not recommend using this parameter because it can lead to increased interruptions. If you do not specify this parameter, you will pay the current Spot price. If you do specify this parameter, it must be more than USD $0.001. Specifying a value below USD $0.001 will result in an `InvalidParameterValue` error message when the launch template is used to launch an instance. * * > If you specify a maximum price, your Spot Instances will be interrupted more frequently than if you do not specify this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-spotoptions.html#cfn-ec2-launchtemplate-spotoptions-maxprice */ readonly maxPrice?: string; /** * The Spot Instance request type. * * If you are using Spot Instances with an Auto Scaling group, use `one-time` requests, as the Amazon EC2 Auto Scaling service handles requesting new Spot Instances whenever the group is below its desired capacity. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-spotoptions.html#cfn-ec2-launchtemplate-spotoptions-spotinstancetype */ readonly spotInstanceType?: string; /** * The end date of the request, in UTC format ( *YYYY-MM-DD* T *HH:MM:SS* Z). Supported only for persistent requests. * * - For a persistent request, the request remains active until the `ValidUntil` date and time is reached. Otherwise, the request remains active until you cancel it. * - For a one-time request, `ValidUntil` is not supported. The request remains active until all instances launch or you cancel the request. * * Default: 7 days from the current date * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-spotoptions.html#cfn-ec2-launchtemplate-spotoptions-validuntil */ readonly validUntil?: string; } /** * The attributes for the instance types. * * When you specify instance attributes, Amazon EC2 will identify instance types with these attributes. * * You must specify `VCpuCount` and `MemoryMiB` . All other attributes are optional. Any unspecified optional attribute is set to its default. * * When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values. * * To limit the list of instance types from which Amazon EC2 can identify matching instance types, you can use one of the following parameters, but not both in the same request: * * - `AllowedInstanceTypes` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes. * - `ExcludedInstanceTypes` - The instance types to exclude from the list, even if they match your specified attributes. * * > If you specify `InstanceRequirements` , you can't specify `InstanceType` . * > * > Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html) , or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify `InstanceRequirements` . * * For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html */ interface InstanceRequirementsProperty { /** * The minimum and maximum number of accelerators (GPUs, FPGAs, or AWS Inferentia chips) on an instance. * * To exclude accelerator-enabled instance types, set `Max` to `0` . * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-acceleratorcount */ readonly acceleratorCount?: CfnLaunchTemplate.AcceleratorCountProperty | cdk.IResolvable; /** * Indicates whether instance types must have accelerators by specific manufacturers. * * - For instance types with AWS devices, specify `amazon-web-services` . * - For instance types with AMD devices, specify `amd` . * - For instance types with Habana devices, specify `habana` . * - For instance types with NVIDIA devices, specify `nvidia` . * - For instance types with Xilinx devices, specify `xilinx` . * * Default: Any manufacturer * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-acceleratormanufacturers */ readonly acceleratorManufacturers?: Array; /** * The accelerators that must be on the instance type. * * - For instance types with NVIDIA A10G GPUs, specify `a10g` . * - For instance types with NVIDIA A100 GPUs, specify `a100` . * - For instance types with NVIDIA H100 GPUs, specify `h100` . * - For instance types with AWS Inferentia chips, specify `inferentia` . * - For instance types with NVIDIA GRID K520 GPUs, specify `k520` . * - For instance types with NVIDIA K80 GPUs, specify `k80` . * - For instance types with NVIDIA M60 GPUs, specify `m60` . * - For instance types with AMD Radeon Pro V520 GPUs, specify `radeon-pro-v520` . * - For instance types with NVIDIA T4 GPUs, specify `t4` . * - For instance types with NVIDIA T4G GPUs, specify `t4g` . * - For instance types with Xilinx VU9P FPGAs, specify `vu9p` . * - For instance types with NVIDIA V100 GPUs, specify `v100` . * * Default: Any accelerator * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-acceleratornames */ readonly acceleratorNames?: Array; /** * The minimum and maximum amount of total accelerator memory, in MiB. * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-acceleratortotalmemorymib */ readonly acceleratorTotalMemoryMiB?: CfnLaunchTemplate.AcceleratorTotalMemoryMiBProperty | cdk.IResolvable; /** * The accelerator types that must be on the instance type. * * - For instance types with FPGA accelerators, specify `fpga` . * - For instance types with GPU accelerators, specify `gpu` . * - For instance types with Inference accelerators, specify `inference` . * * Default: Any accelerator type * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-acceleratortypes */ readonly acceleratorTypes?: Array; /** * The instance types to apply your specified attributes against. * * All other instance types are ignored, even if they match your specified attributes. * * You can use strings with one or more wild cards, represented by an asterisk ( `*` ), to allow an instance type, size, or generation. The following are examples: `m5.8xlarge` , `c5*.*` , `m5a.*` , `r*` , `*3*` . * * For example, if you specify `c5*` ,Amazon EC2 will allow the entire C5 instance family, which includes all C5a and C5n instance types. If you specify `m5a.*` , Amazon EC2 will allow all the M5a instance types, but not the M5n instance types. * * > If you specify `AllowedInstanceTypes` , you can't specify `ExcludedInstanceTypes` . * * Default: All instance types * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-allowedinstancetypes */ readonly allowedInstanceTypes?: Array; /** * Indicates whether bare metal instance types must be included, excluded, or required. * * - To include bare metal instance types, specify `included` . * - To require only bare metal instance types, specify `required` . * - To exclude bare metal instance types, specify `excluded` . * * Default: `excluded` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-baremetal */ readonly bareMetal?: string; /** * The minimum and maximum baseline bandwidth to Amazon EBS, in Mbps. * * For more information, see [Amazon EBS–optimized instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ebs-optimized.html) in the *Amazon EC2 User Guide* . * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-baselineebsbandwidthmbps */ readonly baselineEbsBandwidthMbps?: CfnLaunchTemplate.BaselineEbsBandwidthMbpsProperty | cdk.IResolvable; /** * The baseline performance to consider, using an instance family as a baseline reference. * * The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-baselineperformancefactors */ readonly baselinePerformanceFactors?: CfnLaunchTemplate.BaselinePerformanceFactorsProperty | cdk.IResolvable; /** * Indicates whether burstable performance T instance types are included, excluded, or required. * * For more information, see [Burstable performance instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/burstable-performance-instances.html) . * * - To include burstable performance instance types, specify `included` . * - To require only burstable performance instance types, specify `required` . * - To exclude burstable performance instance types, specify `excluded` . * * Default: `excluded` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-burstableperformance */ readonly burstablePerformance?: string; /** * The CPU manufacturers to include. * * - For instance types with Intel CPUs, specify `intel` . * - For instance types with AMD CPUs, specify `amd` . * - For instance types with AWS CPUs, specify `amazon-web-services` . * - For instance types with Apple CPUs, specify `apple` . * * > Don't confuse the CPU manufacturer with the CPU architecture. Instances will be launched with a compatible CPU architecture based on the Amazon Machine Image (AMI) that you specify in your launch template. * * Default: Any manufacturer * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-cpumanufacturers */ readonly cpuManufacturers?: Array; /** * The instance types to exclude. * * You can use strings with one or more wild cards, represented by an asterisk ( `*` ), to exclude an instance type, size, or generation. The following are examples: `m5.8xlarge` , `c5*.*` , `m5a.*` , `r*` , `*3*` . * * For example, if you specify `c5*` ,Amazon EC2 will exclude the entire C5 instance family, which includes all C5a and C5n instance types. If you specify `m5a.*` , Amazon EC2 will exclude all the M5a instance types, but not the M5n instance types. * * > If you specify `ExcludedInstanceTypes` , you can't specify `AllowedInstanceTypes` . * * Default: No excluded instance types * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-excludedinstancetypes */ readonly excludedInstanceTypes?: Array; /** * Indicates whether current or previous generation instance types are included. * * The current generation instance types are recommended for use. Current generation instance types are typically the latest two to three generations in each instance family. For more information, see [Instance types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html) in the *Amazon EC2 User Guide* . * * For current generation instance types, specify `current` . * * For previous generation instance types, specify `previous` . * * Default: Current and previous generation instance types * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-instancegenerations */ readonly instanceGenerations?: Array; /** * Indicates whether instance types with instance store volumes are included, excluded, or required. * * For more information, [Amazon EC2 instance store](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/InstanceStorage.html) in the *Amazon EC2 User Guide* . * * - To include instance types with instance store volumes, specify `included` . * - To require only instance types with instance store volumes, specify `required` . * - To exclude instance types with instance store volumes, specify `excluded` . * * Default: `included` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-localstorage */ readonly localStorage?: string; /** * The type of local storage that is required. * * - For instance types with hard disk drive (HDD) storage, specify `hdd` . * - For instance types with solid state drive (SSD) storage, specify `ssd` . * * Default: `hdd` and `ssd` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-localstoragetypes */ readonly localStorageTypes?: Array; /** * [Price protection] The price protection threshold for Spot Instances, as a percentage of an identified On-Demand price. * * The identified On-Demand price is the price of the lowest priced current generation C, M, or R instance type with your specified attributes. If no current generation C, M, or R instance type matches your attributes, then the identified price is from the lowest priced current generation instance types, and failing that, from the lowest priced previous generation instance types that match your attributes. When Amazon EC2 selects instance types with your attributes, it will exclude instance types whose price exceeds your specified threshold. * * The parameter accepts an integer, which Amazon EC2 interprets as a percentage. * * If you set `TargetCapacityUnitType` to `vcpu` or `memory-mib` , the price protection threshold is based on the per vCPU or per memory price instead of the per instance price. * * > Only one of `SpotMaxPricePercentageOverLowestPrice` or `MaxSpotPriceAsPercentageOfOptimalOnDemandPrice` can be specified. If you don't specify either, Amazon EC2 will automatically apply optimal price protection to consistently select from a wide range of instance types. To indicate no price protection threshold for Spot Instances, meaning you want to consider all instance types that match your attributes, include one of these parameters and specify a high value, such as `999999` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-maxspotpriceaspercentageofoptimalondemandprice */ readonly maxSpotPriceAsPercentageOfOptimalOnDemandPrice?: number; /** * The minimum and maximum amount of memory per vCPU, in GiB. * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-memorygibpervcpu */ readonly memoryGiBPerVCpu?: cdk.IResolvable | CfnLaunchTemplate.MemoryGiBPerVCpuProperty; /** * The minimum and maximum amount of memory, in MiB. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-memorymib */ readonly memoryMiB?: cdk.IResolvable | CfnLaunchTemplate.MemoryMiBProperty; /** * The minimum and maximum amount of network bandwidth, in gigabits per second (Gbps). * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-networkbandwidthgbps */ readonly networkBandwidthGbps?: cdk.IResolvable | CfnLaunchTemplate.NetworkBandwidthGbpsProperty; /** * The minimum and maximum number of network interfaces. * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-networkinterfacecount */ readonly networkInterfaceCount?: cdk.IResolvable | CfnLaunchTemplate.NetworkInterfaceCountProperty; /** * [Price protection] The price protection threshold for On-Demand Instances, as a percentage higher than an identified On-Demand price. * * The identified On-Demand price is the price of the lowest priced current generation C, M, or R instance type with your specified attributes. When Amazon EC2 selects instance types with your attributes, it will exclude instance types whose price exceeds your specified threshold. * * The parameter accepts an integer, which Amazon EC2 interprets as a percentage. * * To turn off price protection, specify a high value, such as `999999` . * * This parameter is not supported for [GetSpotPlacementScores](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetSpotPlacementScores.html) and [GetInstanceTypesFromInstanceRequirements](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetInstanceTypesFromInstanceRequirements.html) . * * > If you set `TargetCapacityUnitType` to `vcpu` or `memory-mib` , the price protection threshold is applied based on the per-vCPU or per-memory price instead of the per-instance price. * * Default: `20` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-ondemandmaxpricepercentageoverlowestprice */ readonly onDemandMaxPricePercentageOverLowestPrice?: number; /** * Indicates whether instance types must support hibernation for On-Demand Instances. * * This parameter is not supported for [GetSpotPlacementScores](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetSpotPlacementScores.html) . * * Default: `false` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-requirehibernatesupport */ readonly requireHibernateSupport?: boolean | cdk.IResolvable; /** * [Price protection] The price protection threshold for Spot Instances, as a percentage higher than an identified Spot price. * * The identified Spot price is the Spot price of the lowest priced current generation C, M, or R instance type with your specified attributes. If no current generation C, M, or R instance type matches your attributes, then the identified Spot price is from the lowest priced current generation instance types, and failing that, from the lowest priced previous generation instance types that match your attributes. When Amazon EC2 selects instance types with your attributes, it will exclude instance types whose Spot price exceeds your specified threshold. * * The parameter accepts an integer, which Amazon EC2 interprets as a percentage. * * If you set `TargetCapacityUnitType` to `vcpu` or `memory-mib` , the price protection threshold is applied based on the per-vCPU or per-memory price instead of the per-instance price. * * This parameter is not supported for [GetSpotPlacementScores](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetSpotPlacementScores.html) and [GetInstanceTypesFromInstanceRequirements](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetInstanceTypesFromInstanceRequirements.html) . * * > Only one of `SpotMaxPricePercentageOverLowestPrice` or `MaxSpotPriceAsPercentageOfOptimalOnDemandPrice` can be specified. If you don't specify either, Amazon EC2 will automatically apply optimal price protection to consistently select from a wide range of instance types. To indicate no price protection threshold for Spot Instances, meaning you want to consider all instance types that match your attributes, include one of these parameters and specify a high value, such as `999999` . * * Default: `100` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-spotmaxpricepercentageoverlowestprice */ readonly spotMaxPricePercentageOverLowestPrice?: number; /** * The minimum and maximum amount of total local storage, in GB. * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-totallocalstoragegb */ readonly totalLocalStorageGb?: cdk.IResolvable | CfnLaunchTemplate.TotalLocalStorageGBProperty; /** * The minimum and maximum number of vCPUs. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-instancerequirements.html#cfn-ec2-launchtemplate-instancerequirements-vcpucount */ readonly vCpuCount?: cdk.IResolvable | CfnLaunchTemplate.VCpuCountProperty; } /** * The minimum and maximum number of network interfaces. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterfacecount.html */ interface NetworkInterfaceCountProperty { /** * The maximum number of network interfaces. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterfacecount.html#cfn-ec2-launchtemplate-networkinterfacecount-max */ readonly max?: number; /** * The minimum number of network interfaces. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterfacecount.html#cfn-ec2-launchtemplate-networkinterfacecount-min */ readonly min?: number; } /** * The minimum and maximum amount of memory per vCPU, in GiB. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-memorygibpervcpu.html */ interface MemoryGiBPerVCpuProperty { /** * The maximum amount of memory per vCPU, in GiB. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-memorygibpervcpu.html#cfn-ec2-launchtemplate-memorygibpervcpu-max */ readonly max?: number; /** * The minimum amount of memory per vCPU, in GiB. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-memorygibpervcpu.html#cfn-ec2-launchtemplate-memorygibpervcpu-min */ readonly min?: number; } /** * The minimum and maximum number of vCPUs. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-vcpucount.html */ interface VCpuCountProperty { /** * The maximum number of vCPUs. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-vcpucount.html#cfn-ec2-launchtemplate-vcpucount-max */ readonly max?: number; /** * The minimum number of vCPUs. * * To specify no minimum limit, specify `0` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-vcpucount.html#cfn-ec2-launchtemplate-vcpucount-min */ readonly min?: number; } /** * The minimum and maximum number of accelerators (GPUs, FPGAs, or AWS Inferentia chips) on an instance. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-acceleratorcount.html */ interface AcceleratorCountProperty { /** * The maximum number of accelerators. * * To specify no maximum limit, omit this parameter. To exclude accelerator-enabled instance types, set `Max` to `0` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-acceleratorcount.html#cfn-ec2-launchtemplate-acceleratorcount-max */ readonly max?: number; /** * The minimum number of accelerators. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-acceleratorcount.html#cfn-ec2-launchtemplate-acceleratorcount-min */ readonly min?: number; } /** * The minimum and maximum amount of network bandwidth, in gigabits per second (Gbps). * * > Setting the minimum bandwidth does not guarantee that your instance will achieve the minimum bandwidth. Amazon EC2 will identify instance types that support the specified minimum bandwidth, but the actual bandwidth of your instance might go below the specified minimum at times. For more information, see [Available instance bandwidth](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-network-bandwidth.html#available-instance-bandwidth) in the *Amazon EC2 User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkbandwidthgbps.html */ interface NetworkBandwidthGbpsProperty { /** * The maximum amount of network bandwidth, in Gbps. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkbandwidthgbps.html#cfn-ec2-launchtemplate-networkbandwidthgbps-max */ readonly max?: number; /** * The minimum amount of network bandwidth, in Gbps. * * If this parameter is not specified, there is no minimum limit. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkbandwidthgbps.html#cfn-ec2-launchtemplate-networkbandwidthgbps-min */ readonly min?: number; } /** * The minimum and maximum baseline bandwidth to Amazon EBS, in Mbps. * * For more information, see [Amazon EBS–optimized instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ebs-optimized.html) in the *Amazon EC2 User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-baselineebsbandwidthmbps.html */ interface BaselineEbsBandwidthMbpsProperty { /** * The maximum baseline bandwidth, in Mbps. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-baselineebsbandwidthmbps.html#cfn-ec2-launchtemplate-baselineebsbandwidthmbps-max */ readonly max?: number; /** * The minimum baseline bandwidth, in Mbps. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-baselineebsbandwidthmbps.html#cfn-ec2-launchtemplate-baselineebsbandwidthmbps-min */ readonly min?: number; } /** * The minimum and maximum amount of total accelerator memory, in MiB. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-acceleratortotalmemorymib.html */ interface AcceleratorTotalMemoryMiBProperty { /** * The maximum amount of accelerator memory, in MiB. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-acceleratortotalmemorymib.html#cfn-ec2-launchtemplate-acceleratortotalmemorymib-max */ readonly max?: number; /** * The minimum amount of accelerator memory, in MiB. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-acceleratortotalmemorymib.html#cfn-ec2-launchtemplate-acceleratortotalmemorymib-min */ readonly min?: number; } /** * The minimum and maximum amount of memory, in MiB. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-memorymib.html */ interface MemoryMiBProperty { /** * The maximum amount of memory, in MiB. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-memorymib.html#cfn-ec2-launchtemplate-memorymib-max */ readonly max?: number; /** * The minimum amount of memory, in MiB. * * To specify no minimum limit, specify `0` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-memorymib.html#cfn-ec2-launchtemplate-memorymib-min */ readonly min?: number; } /** * The minimum and maximum amount of total local storage, in GB. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-totallocalstoragegb.html */ interface TotalLocalStorageGBProperty { /** * The maximum amount of total local storage, in GB. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-totallocalstoragegb.html#cfn-ec2-launchtemplate-totallocalstoragegb-max */ readonly max?: number; /** * The minimum amount of total local storage, in GB. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-totallocalstoragegb.html#cfn-ec2-launchtemplate-totallocalstoragegb-min */ readonly min?: number; } /** * The baseline performance to consider, using an instance family as a baseline reference. * * The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. * * Currently, this parameter only supports CPU performance as a baseline performance factor. For example, specifying `c6i` would use the CPU performance of the `c6i` family as the baseline reference. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-baselineperformancefactors.html */ interface BaselinePerformanceFactorsProperty { /** * The CPU performance to consider, using an instance family as the baseline reference. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-baselineperformancefactors.html#cfn-ec2-launchtemplate-baselineperformancefactors-cpu */ readonly cpu?: CfnLaunchTemplate.CpuProperty | cdk.IResolvable; } /** * Specifies the CPU performance to consider when using an instance family as the baseline reference. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-cpu.html */ interface CpuProperty { /** * The instance family to use as the baseline reference for CPU performance. * * All instance types that match your specified attributes are compared against the CPU performance of the referenced instance family, regardless of CPU manufacturer or architecture differences. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-cpu.html#cfn-ec2-launchtemplate-cpu-references */ readonly references?: Array | cdk.IResolvable; } /** * Specifies an instance family to use as the baseline reference for CPU performance. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-reference.html */ interface ReferenceProperty { /** * The instance family to use as a baseline reference. * * > Ensure that you specify the correct value for the instance family. The instance family is everything before the period ( `.` ) in the instance type name. For example, in the instance type `c6i.large` , the instance family is `c6i` , not `c6` . For more information, see [Amazon EC2 instance type naming conventions](https://docs.aws.amazon.com/ec2/latest/instancetypes/instance-type-names.html) in *Amazon EC2 Instance Types* . * * The following instance families are *not supported* for performance protection: * * - `c1` * - `g3` | `g3s` * - `hpc7g` * - `m1` | `m2` * - `mac1` | `mac2` | `mac2-m1ultra` | `mac2-m2` | `mac2-m2pro` * - `p3dn` | `p4d` | `p5` * - `t1` * - `u-12tb1` | `u-18tb1` | `u-24tb1` | `u-3tb1` | `u-6tb1` | `u-9tb1` | `u7i-12tb` | `u7in-16tb` | `u7in-24tb` | `u7in-32tb` * * If you enable performance protection by specifying a supported instance family, the returned instance types will exclude the above unsupported instance families. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-reference.html#cfn-ec2-launchtemplate-reference-instancefamily */ readonly instanceFamily?: string; } /** * Specifies an instance's Capacity Reservation targeting option. You can specify only one option at a time. * * `CapacityReservationSpecification` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-capacityreservationspecification.html */ interface CapacityReservationSpecificationProperty { /** * Indicates the instance's Capacity Reservation preferences. Possible preferences include:. * * - `capacity-reservations-only` - The instance will only run in a Capacity Reservation or Capacity Reservation group. If capacity isn't available, the instance will fail to launch. * - `open` - The instance can run in any `open` Capacity Reservation that has matching attributes (instance type, platform, Availability Zone, tenancy). * - `none` - The instance avoids running in a Capacity Reservation even if one is available. The instance runs in On-Demand capacity. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-capacityreservationspecification.html#cfn-ec2-launchtemplate-capacityreservationspecification-capacityreservationpreference */ readonly capacityReservationPreference?: string; /** * Information about the target Capacity Reservation or Capacity Reservation group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-capacityreservationspecification.html#cfn-ec2-launchtemplate-capacityreservationspecification-capacityreservationtarget */ readonly capacityReservationTarget?: CfnLaunchTemplate.CapacityReservationTargetProperty | cdk.IResolvable; } /** * Specifies a target Capacity Reservation. * * `CapacityReservationTarget` is a property of the [Amazon EC2 LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) property type. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-capacityreservationtarget.html */ interface CapacityReservationTargetProperty { /** * The ID of the Capacity Reservation in which to run the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-capacityreservationtarget.html#cfn-ec2-launchtemplate-capacityreservationtarget-capacityreservationid */ readonly capacityReservationId?: string; /** * The ARN of the Capacity Reservation resource group in which to run the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-capacityreservationtarget.html#cfn-ec2-launchtemplate-capacityreservationtarget-capacityreservationresourcegrouparn */ readonly capacityReservationResourceGroupArn?: string; } /** * Specifies the credit option for CPU usage of a T2, T3, or T3a instance. * * `CreditSpecification` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-creditspecification.html */ interface CreditSpecificationProperty { /** * The credit option for CPU usage of a T instance. * * Valid values: `standard` | `unlimited` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-creditspecification.html#cfn-ec2-launchtemplate-creditspecification-cpucredits */ readonly cpuCredits?: string; } /** * Contains settings for the network performance options for the instance. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkperformanceoptions.html */ interface NetworkPerformanceOptionsProperty { /** * Specify the bandwidth weighting option to boost the associated type of baseline bandwidth, as follows:. * * - **default** - This option uses the standard bandwidth configuration for your instance type. * - **vpc-1** - This option boosts your networking baseline bandwidth and reduces your EBS baseline bandwidth. * - **ebs-1** - This option boosts your EBS baseline bandwidth and reduces your networking baseline bandwidth. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkperformanceoptions.html#cfn-ec2-launchtemplate-networkperformanceoptions-bandwidthweighting */ readonly bandwidthWeighting?: string; } /** * Specifies the tags to apply to the launch template during creation. * * To specify the tags for the resources that are created during instance launch, use [AWS::EC2::LaunchTemplate TagSpecification](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-tagspecification.html) . * * `LaunchTemplateTagSpecification` is a property of [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatetagspecification.html */ interface LaunchTemplateTagSpecificationProperty { /** * The type of resource. * * To tag a launch template, `ResourceType` must be `launch-template` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatetagspecification.html#cfn-ec2-launchtemplate-launchtemplatetagspecification-resourcetype */ readonly resourceType?: string; /** * The tags for the resource. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatetagspecification.html#cfn-ec2-launchtemplate-launchtemplatetagspecification-tags */ readonly tags?: Array; } } /** * Properties for defining a `CfnLaunchTemplate` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html */ export interface CfnLaunchTemplateProps { /** * The information for the launch template. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#cfn-ec2-launchtemplate-launchtemplatedata */ readonly launchTemplateData: cdk.IResolvable | CfnLaunchTemplate.LaunchTemplateDataProperty; /** * A name for the launch template. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#cfn-ec2-launchtemplate-launchtemplatename */ readonly launchTemplateName?: string; /** * The tags to apply to the launch template on creation. * * To tag the launch template, the resource type must be `launch-template` . * * To specify the tags for resources that are created during instance launch, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#cfn-ec2-launchtemplate-tagspecifications */ readonly tagSpecifications?: Array | cdk.IResolvable; /** * A description for the first version of the launch template. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#cfn-ec2-launchtemplate-versiondescription */ readonly versionDescription?: string; } /** * Creates a static route for the specified local gateway route table. You must specify one of the following targets:. * * - `LocalGatewayVirtualInterfaceGroupId` * - `NetworkInterfaceId` * * @cloudformationResource AWS::EC2::LocalGatewayRoute * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroute.html */ export declare class CfnLocalGatewayRoute extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnLocalGatewayRoute from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnLocalGatewayRoute; /** * The state of the local gateway route table. * * @cloudformationAttribute State */ readonly attrState: string; /** * The type of local gateway route. * * @cloudformationAttribute Type */ readonly attrType: string; /** * The CIDR block used for destination matches. */ destinationCidrBlock: string; /** * The ID of the local gateway route table. */ localGatewayRouteTableId: string; /** * The ID of the virtual interface group. */ localGatewayVirtualInterfaceGroupId?: string; /** * The ID of the network interface. */ networkInterfaceId?: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnLocalGatewayRouteProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnLocalGatewayRoute` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroute.html */ export interface CfnLocalGatewayRouteProps { /** * The CIDR block used for destination matches. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroute.html#cfn-ec2-localgatewayroute-destinationcidrblock */ readonly destinationCidrBlock: string; /** * The ID of the local gateway route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroute.html#cfn-ec2-localgatewayroute-localgatewayroutetableid */ readonly localGatewayRouteTableId: string; /** * The ID of the virtual interface group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroute.html#cfn-ec2-localgatewayroute-localgatewayvirtualinterfacegroupid */ readonly localGatewayVirtualInterfaceGroupId?: string; /** * The ID of the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroute.html#cfn-ec2-localgatewayroute-networkinterfaceid */ readonly networkInterfaceId?: string; } /** * Describes a local gateway route table. * * @cloudformationResource AWS::EC2::LocalGatewayRouteTable * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroutetable.html */ export declare class CfnLocalGatewayRouteTable extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnLocalGatewayRouteTable from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnLocalGatewayRouteTable; /** * The Amazon Resource Name (ARN) of the local gateway route table. * * @cloudformationAttribute LocalGatewayRouteTableArn */ readonly attrLocalGatewayRouteTableArn: string; /** * The ID of the local gateway route table. * * @cloudformationAttribute LocalGatewayRouteTableId */ readonly attrLocalGatewayRouteTableId: string; /** * The Amazon Resource Name (ARN) of the Outpost. * * @cloudformationAttribute OutpostArn */ readonly attrOutpostArn: string; /** * The ID of the AWS account that owns the local gateway route table. * * @cloudformationAttribute OwnerId */ readonly attrOwnerId: string; /** * The state of the local gateway route table. * * @cloudformationAttribute State */ readonly attrState: string; /** * The ID of the local gateway. */ localGatewayId: string; /** * The mode of the local gateway route table. */ mode?: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags assigned to the local gateway route table. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnLocalGatewayRouteTableProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnLocalGatewayRouteTable` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroutetable.html */ export interface CfnLocalGatewayRouteTableProps { /** * The ID of the local gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroutetable.html#cfn-ec2-localgatewayroutetable-localgatewayid */ readonly localGatewayId: string; /** * The mode of the local gateway route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroutetable.html#cfn-ec2-localgatewayroutetable-mode */ readonly mode?: string; /** * The tags assigned to the local gateway route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroutetable.html#cfn-ec2-localgatewayroutetable-tags */ readonly tags?: Array; } /** * Associates the specified VPC with the specified local gateway route table. * * @cloudformationResource AWS::EC2::LocalGatewayRouteTableVPCAssociation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroutetablevpcassociation.html */ export declare class CfnLocalGatewayRouteTableVPCAssociation extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnLocalGatewayRouteTableVPCAssociation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnLocalGatewayRouteTableVPCAssociation; /** * The ID of the local gateway. * * @cloudformationAttribute LocalGatewayId */ readonly attrLocalGatewayId: string; /** * The ID of the association. * * @cloudformationAttribute LocalGatewayRouteTableVpcAssociationId */ readonly attrLocalGatewayRouteTableVpcAssociationId: string; /** * The state of the association. * * @cloudformationAttribute State */ readonly attrState: string; /** * The ID of the local gateway route table. */ localGatewayRouteTableId: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags assigned to the association. */ tagsRaw?: Array; /** * The ID of the VPC. */ vpcId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnLocalGatewayRouteTableVPCAssociationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnLocalGatewayRouteTableVPCAssociation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroutetablevpcassociation.html */ export interface CfnLocalGatewayRouteTableVPCAssociationProps { /** * The ID of the local gateway route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroutetablevpcassociation.html#cfn-ec2-localgatewayroutetablevpcassociation-localgatewayroutetableid */ readonly localGatewayRouteTableId: string; /** * The tags assigned to the association. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroutetablevpcassociation.html#cfn-ec2-localgatewayroutetablevpcassociation-tags */ readonly tags?: Array; /** * The ID of the VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroutetablevpcassociation.html#cfn-ec2-localgatewayroutetablevpcassociation-vpcid */ readonly vpcId: string; } /** * Describes an association between a local gateway route table and a virtual interface group. * * @cloudformationResource AWS::EC2::LocalGatewayRouteTableVirtualInterfaceGroupAssociation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroutetablevirtualinterfacegroupassociation.html */ export declare class CfnLocalGatewayRouteTableVirtualInterfaceGroupAssociation extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnLocalGatewayRouteTableVirtualInterfaceGroupAssociation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnLocalGatewayRouteTableVirtualInterfaceGroupAssociation; /** * The ID of the local gateway. * * @cloudformationAttribute LocalGatewayId */ readonly attrLocalGatewayId: string; /** * The Amazon Resource Name (ARN) of the local gateway route table for the virtual interface group. * * @cloudformationAttribute LocalGatewayRouteTableArn */ readonly attrLocalGatewayRouteTableArn: string; /** * The ID of the association. * * @cloudformationAttribute LocalGatewayRouteTableVirtualInterfaceGroupAssociationId */ readonly attrLocalGatewayRouteTableVirtualInterfaceGroupAssociationId: string; /** * The ID of the AWS account that owns the local gateway virtual interface group association. * * @cloudformationAttribute OwnerId */ readonly attrOwnerId: string; /** * The state of the association. * * @cloudformationAttribute State */ readonly attrState: string; /** * The ID of the local gateway route table. */ localGatewayRouteTableId: string; /** * The ID of the virtual interface group. */ localGatewayVirtualInterfaceGroupId: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags assigned to the association. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnLocalGatewayRouteTableVirtualInterfaceGroupAssociationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnLocalGatewayRouteTableVirtualInterfaceGroupAssociation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroutetablevirtualinterfacegroupassociation.html */ export interface CfnLocalGatewayRouteTableVirtualInterfaceGroupAssociationProps { /** * The ID of the local gateway route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroutetablevirtualinterfacegroupassociation.html#cfn-ec2-localgatewayroutetablevirtualinterfacegroupassociation-localgatewayroutetableid */ readonly localGatewayRouteTableId: string; /** * The ID of the virtual interface group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroutetablevirtualinterfacegroupassociation.html#cfn-ec2-localgatewayroutetablevirtualinterfacegroupassociation-localgatewayvirtualinterfacegroupid */ readonly localGatewayVirtualInterfaceGroupId: string; /** * The tags assigned to the association. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-localgatewayroutetablevirtualinterfacegroupassociation.html#cfn-ec2-localgatewayroutetablevirtualinterfacegroupassociation-tags */ readonly tags?: Array; } /** * Specifies a network address translation (NAT) gateway in the specified subnet. * * You can create either a public NAT gateway or a private NAT gateway. The default is a public NAT gateway. If you create a public NAT gateway, you must specify an elastic IP address. * * With a NAT gateway, instances in a private subnet can connect to the internet, other AWS services, or an on-premises network using the IP address of the NAT gateway. For more information, see [NAT gateways](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-nat-gateway.html) in the *Amazon VPC User Guide* . * * If you add a default route ( `AWS::EC2::Route` resource) that points to a NAT gateway, specify the NAT gateway ID for the route's `NatGatewayId` property. * * > When you associate an Elastic IP address or secondary Elastic IP address with a public NAT gateway, the network border group of the Elastic IP address must match the network border group of the Availability Zone (AZ) that the public NAT gateway is in. Otherwise, the NAT gateway fails to launch. You can see the network border group for the AZ by viewing the details of the subnet. Similarly, you can view the network border group for the Elastic IP address by viewing its details. For more information, see [Allocate an Elastic IP address](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-eips.html#allocate-eip) in the *Amazon VPC User Guide* . * * @cloudformationResource AWS::EC2::NatGateway * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-natgateway.html */ export declare class CfnNatGateway extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnNatGateway from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnNatGateway; /** * The ID of the NAT gateway. * * @cloudformationAttribute NatGatewayId */ readonly attrNatGatewayId: string; /** * [Public NAT gateway only] The allocation ID of the Elastic IP address that's associated with the NAT gateway. */ allocationId?: string; /** * Indicates whether the NAT gateway supports public or private connectivity. */ connectivityType?: string; /** * The maximum amount of time to wait (in seconds) before forcibly releasing the IP addresses if connections are still in progress. */ maxDrainDurationSeconds?: number; /** * The private IPv4 address to assign to the NAT gateway. */ privateIpAddress?: string; /** * Secondary EIP allocation IDs. */ secondaryAllocationIds?: Array; /** * [Private NAT gateway only] The number of secondary private IPv4 addresses you want to assign to the NAT gateway. */ secondaryPrivateIpAddressCount?: number; /** * Secondary private IPv4 addresses. */ secondaryPrivateIpAddresses?: Array; /** * The ID of the subnet in which the NAT gateway is located. */ subnetId: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags for the NAT gateway. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnNatGatewayProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnNatGateway` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-natgateway.html */ export interface CfnNatGatewayProps { /** * [Public NAT gateway only] The allocation ID of the Elastic IP address that's associated with the NAT gateway. * * This property is required for a public NAT gateway and cannot be specified with a private NAT gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-natgateway.html#cfn-ec2-natgateway-allocationid */ readonly allocationId?: string; /** * Indicates whether the NAT gateway supports public or private connectivity. * * The default is public connectivity. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-natgateway.html#cfn-ec2-natgateway-connectivitytype */ readonly connectivityType?: string; /** * The maximum amount of time to wait (in seconds) before forcibly releasing the IP addresses if connections are still in progress. * * Default value is 350 seconds. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-natgateway.html#cfn-ec2-natgateway-maxdraindurationseconds */ readonly maxDrainDurationSeconds?: number; /** * The private IPv4 address to assign to the NAT gateway. * * If you don't provide an address, a private IPv4 address will be automatically assigned. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-natgateway.html#cfn-ec2-natgateway-privateipaddress */ readonly privateIpAddress?: string; /** * Secondary EIP allocation IDs. * * For more information, see [Create a NAT gateway](https://docs.aws.amazon.com/vpc/latest/userguide/nat-gateway-working-with.html) in the *Amazon VPC User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-natgateway.html#cfn-ec2-natgateway-secondaryallocationids */ readonly secondaryAllocationIds?: Array; /** * [Private NAT gateway only] The number of secondary private IPv4 addresses you want to assign to the NAT gateway. * * For more information about secondary addresses, see [Create a NAT gateway](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-nat-gateway.html#nat-gateway-creating) in the *Amazon Virtual Private Cloud User Guide* . * * `SecondaryPrivateIpAddressCount` and `SecondaryPrivateIpAddresses` cannot be set at the same time. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-natgateway.html#cfn-ec2-natgateway-secondaryprivateipaddresscount */ readonly secondaryPrivateIpAddressCount?: number; /** * Secondary private IPv4 addresses. * * For more information about secondary addresses, see [Create a NAT gateway](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-nat-gateway.html#nat-gateway-creating) in the *Amazon Virtual Private Cloud User Guide* . * * `SecondaryPrivateIpAddressCount` and `SecondaryPrivateIpAddresses` cannot be set at the same time. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-natgateway.html#cfn-ec2-natgateway-secondaryprivateipaddresses */ readonly secondaryPrivateIpAddresses?: Array; /** * The ID of the subnet in which the NAT gateway is located. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-natgateway.html#cfn-ec2-natgateway-subnetid */ readonly subnetId: string; /** * The tags for the NAT gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-natgateway.html#cfn-ec2-natgateway-tags */ readonly tags?: Array; } /** * Specifies a network ACL for your VPC. * * To add a network ACL entry, see [AWS::EC2::NetworkAclEntry](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkaclentry.html) . * * @cloudformationResource AWS::EC2::NetworkAcl * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkacl.html */ export declare class CfnNetworkAcl extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnNetworkAcl from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnNetworkAcl; /** * The ID of the network ACL. * * @cloudformationAttribute Id */ readonly attrId: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags for the network ACL. */ tagsRaw?: Array; /** * The ID of the VPC for the network ACL. */ vpcId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnNetworkAclProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnNetworkAcl` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkacl.html */ export interface CfnNetworkAclProps { /** * The tags for the network ACL. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkacl.html#cfn-ec2-networkacl-tags */ readonly tags?: Array; /** * The ID of the VPC for the network ACL. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkacl.html#cfn-ec2-networkacl-vpcid */ readonly vpcId: string; } /** * Specifies an entry, known as a rule, in a network ACL with a rule number you specify. * * Each network ACL has a set of numbered ingress rules and a separate set of numbered egress rules. * * To create the network ACL, see [AWS::EC2::NetworkAcl](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkacl.html) . * * For information about the protocol value, see [Protocol Numbers](https://docs.aws.amazon.com/https://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml) on the Internet Assigned Numbers Authority (IANA) website. * * @cloudformationResource AWS::EC2::NetworkAclEntry * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkaclentry.html */ export declare class CfnNetworkAclEntry extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnNetworkAclEntry from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnNetworkAclEntry; /** * The ID of the network ACL entry. * * @cloudformationAttribute Id */ readonly attrId: string; /** * The IPv4 CIDR range to allow or deny, in CIDR notation (for example, 172.16.0.0/24). You must specify an IPv4 CIDR block or an IPv6 CIDR block. */ cidrBlock?: string; /** * Whether this rule applies to egress traffic from the subnet ( `true` ) or ingress traffic to the subnet ( `false` ). */ egress?: boolean | cdk.IResolvable; /** * The Internet Control Message Protocol (ICMP) code and type. */ icmp?: CfnNetworkAclEntry.IcmpProperty | cdk.IResolvable; /** * The IPv6 network range to allow or deny, in CIDR notation. */ ipv6CidrBlock?: string; /** * The ID of the ACL for the entry. */ networkAclId: string; /** * The range of port numbers for the UDP/TCP protocol. */ portRange?: cdk.IResolvable | CfnNetworkAclEntry.PortRangeProperty; /** * The IP protocol that the rule applies to. */ protocol: number; /** * Whether to allow or deny traffic that matches the rule; */ ruleAction: string; /** * Rule number to assign to the entry, such as 100. */ ruleNumber: number; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnNetworkAclEntryProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnNetworkAclEntry { /** * Describes the ICMP type and code. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkaclentry-icmp.html */ interface IcmpProperty { /** * The Internet Control Message Protocol (ICMP) code. * * You can use -1 to specify all ICMP codes for the given ICMP type. Required if you specify 1 (ICMP) for the protocol parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkaclentry-icmp.html#cfn-ec2-networkaclentry-icmp-code */ readonly code?: number; /** * The Internet Control Message Protocol (ICMP) type. * * You can use -1 to specify all ICMP types. Conditional requirement: Required if you specify 1 (ICMP) for the `CreateNetworkAclEntry` protocol parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkaclentry-icmp.html#cfn-ec2-networkaclentry-icmp-type */ readonly type?: number; } /** * Describes a range of ports. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkaclentry-portrange.html */ interface PortRangeProperty { /** * The first port in the range. * * Required if you specify 6 (TCP) or 17 (UDP) for the protocol parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkaclentry-portrange.html#cfn-ec2-networkaclentry-portrange-from */ readonly from?: number; /** * The last port in the range. * * Required if you specify 6 (TCP) or 17 (UDP) for the protocol parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkaclentry-portrange.html#cfn-ec2-networkaclentry-portrange-to */ readonly to?: number; } } /** * Properties for defining a `CfnNetworkAclEntry` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkaclentry.html */ export interface CfnNetworkAclEntryProps { /** * The IPv4 CIDR range to allow or deny, in CIDR notation (for example, 172.16.0.0/24). You must specify an IPv4 CIDR block or an IPv6 CIDR block. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkaclentry.html#cfn-ec2-networkaclentry-cidrblock */ readonly cidrBlock?: string; /** * Whether this rule applies to egress traffic from the subnet ( `true` ) or ingress traffic to the subnet ( `false` ). * * By default, AWS CloudFormation specifies `false` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkaclentry.html#cfn-ec2-networkaclentry-egress */ readonly egress?: boolean | cdk.IResolvable; /** * The Internet Control Message Protocol (ICMP) code and type. * * Required if specifying 1 (ICMP) for the protocol parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkaclentry.html#cfn-ec2-networkaclentry-icmp */ readonly icmp?: CfnNetworkAclEntry.IcmpProperty | cdk.IResolvable; /** * The IPv6 network range to allow or deny, in CIDR notation. * * You must specify an IPv4 CIDR block or an IPv6 CIDR block. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkaclentry.html#cfn-ec2-networkaclentry-ipv6cidrblock */ readonly ipv6CidrBlock?: string; /** * The ID of the ACL for the entry. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkaclentry.html#cfn-ec2-networkaclentry-networkaclid */ readonly networkAclId: string; /** * The range of port numbers for the UDP/TCP protocol. * * Required if specifying 6 (TCP) or 17 (UDP) for the protocol parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkaclentry.html#cfn-ec2-networkaclentry-portrange */ readonly portRange?: cdk.IResolvable | CfnNetworkAclEntry.PortRangeProperty; /** * The IP protocol that the rule applies to. * * You must specify -1 or a protocol number. You can specify -1 for all protocols. * * > If you specify -1, all ports are opened and the `PortRange` property is ignored. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkaclentry.html#cfn-ec2-networkaclentry-protocol */ readonly protocol: number; /** * Whether to allow or deny traffic that matches the rule; * * valid values are "allow" or "deny". * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkaclentry.html#cfn-ec2-networkaclentry-ruleaction */ readonly ruleAction: string; /** * Rule number to assign to the entry, such as 100. * * ACL entries are processed in ascending order by rule number. Entries can't use the same rule number unless one is an egress rule and the other is an ingress rule. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkaclentry.html#cfn-ec2-networkaclentry-rulenumber */ readonly ruleNumber: number; } /** * Describes a Network Access Scope. * * A Network Access Scope defines outbound (egress) and inbound (ingress) traffic patterns, including sources, destinations, paths, and traffic types. * * Network Access Analyzer identifies unintended network access to your resources on AWS . When you start an analysis on a Network Access Scope, Network Access Analyzer produces findings. For more information, see the [Network Access Analyzer User Guide](https://docs.aws.amazon.com/vpc/latest/network-access-analyzer/) . * * @cloudformationResource AWS::EC2::NetworkInsightsAccessScope * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightsaccessscope.html */ export declare class CfnNetworkInsightsAccessScope extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnNetworkInsightsAccessScope from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnNetworkInsightsAccessScope; /** * The creation date. * * @cloudformationAttribute CreatedDate */ readonly attrCreatedDate: string; /** * The ARN of the Network Access Scope. * * @cloudformationAttribute NetworkInsightsAccessScopeArn */ readonly attrNetworkInsightsAccessScopeArn: string; /** * The ID of the Network Access Scope. * * @cloudformationAttribute NetworkInsightsAccessScopeId */ readonly attrNetworkInsightsAccessScopeId: string; /** * The last updated date. * * @cloudformationAttribute UpdatedDate */ readonly attrUpdatedDate: string; /** * The paths to exclude. */ excludePaths?: Array | cdk.IResolvable; /** * The paths to match. */ matchPaths?: Array | cdk.IResolvable; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnNetworkInsightsAccessScopeProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnNetworkInsightsAccessScope { /** * Describes a path. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-accessscopepathrequest.html */ interface AccessScopePathRequestProperty { /** * The destination. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-accessscopepathrequest.html#cfn-ec2-networkinsightsaccessscope-accessscopepathrequest-destination */ readonly destination?: cdk.IResolvable | CfnNetworkInsightsAccessScope.PathStatementRequestProperty; /** * The source. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-accessscopepathrequest.html#cfn-ec2-networkinsightsaccessscope-accessscopepathrequest-source */ readonly source?: cdk.IResolvable | CfnNetworkInsightsAccessScope.PathStatementRequestProperty; /** * The through resources. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-accessscopepathrequest.html#cfn-ec2-networkinsightsaccessscope-accessscopepathrequest-throughresources */ readonly throughResources?: Array | cdk.IResolvable; } /** * Describes a path statement. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-pathstatementrequest.html */ interface PathStatementRequestProperty { /** * The packet header statement. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-pathstatementrequest.html#cfn-ec2-networkinsightsaccessscope-pathstatementrequest-packetheaderstatement */ readonly packetHeaderStatement?: cdk.IResolvable | CfnNetworkInsightsAccessScope.PacketHeaderStatementRequestProperty; /** * The resource statement. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-pathstatementrequest.html#cfn-ec2-networkinsightsaccessscope-pathstatementrequest-resourcestatement */ readonly resourceStatement?: cdk.IResolvable | CfnNetworkInsightsAccessScope.ResourceStatementRequestProperty; } /** * Describes a resource statement. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-resourcestatementrequest.html */ interface ResourceStatementRequestProperty { /** * The resources. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-resourcestatementrequest.html#cfn-ec2-networkinsightsaccessscope-resourcestatementrequest-resources */ readonly resources?: Array; /** * The resource types. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-resourcestatementrequest.html#cfn-ec2-networkinsightsaccessscope-resourcestatementrequest-resourcetypes */ readonly resourceTypes?: Array; } /** * Describes a packet header statement. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-packetheaderstatementrequest.html */ interface PacketHeaderStatementRequestProperty { /** * The destination addresses. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-packetheaderstatementrequest.html#cfn-ec2-networkinsightsaccessscope-packetheaderstatementrequest-destinationaddresses */ readonly destinationAddresses?: Array; /** * The destination ports. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-packetheaderstatementrequest.html#cfn-ec2-networkinsightsaccessscope-packetheaderstatementrequest-destinationports */ readonly destinationPorts?: Array; /** * The destination prefix lists. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-packetheaderstatementrequest.html#cfn-ec2-networkinsightsaccessscope-packetheaderstatementrequest-destinationprefixlists */ readonly destinationPrefixLists?: Array; /** * The protocols. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-packetheaderstatementrequest.html#cfn-ec2-networkinsightsaccessscope-packetheaderstatementrequest-protocols */ readonly protocols?: Array; /** * The source addresses. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-packetheaderstatementrequest.html#cfn-ec2-networkinsightsaccessscope-packetheaderstatementrequest-sourceaddresses */ readonly sourceAddresses?: Array; /** * The source ports. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-packetheaderstatementrequest.html#cfn-ec2-networkinsightsaccessscope-packetheaderstatementrequest-sourceports */ readonly sourcePorts?: Array; /** * The source prefix lists. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-packetheaderstatementrequest.html#cfn-ec2-networkinsightsaccessscope-packetheaderstatementrequest-sourceprefixlists */ readonly sourcePrefixLists?: Array; } /** * Describes a through resource statement. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-throughresourcesstatementrequest.html */ interface ThroughResourcesStatementRequestProperty { /** * The resource statement. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsaccessscope-throughresourcesstatementrequest.html#cfn-ec2-networkinsightsaccessscope-throughresourcesstatementrequest-resourcestatement */ readonly resourceStatement?: cdk.IResolvable | CfnNetworkInsightsAccessScope.ResourceStatementRequestProperty; } } /** * Properties for defining a `CfnNetworkInsightsAccessScope` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightsaccessscope.html */ export interface CfnNetworkInsightsAccessScopeProps { /** * The paths to exclude. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightsaccessscope.html#cfn-ec2-networkinsightsaccessscope-excludepaths */ readonly excludePaths?: Array | cdk.IResolvable; /** * The paths to match. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightsaccessscope.html#cfn-ec2-networkinsightsaccessscope-matchpaths */ readonly matchPaths?: Array | cdk.IResolvable; /** * The tags. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightsaccessscope.html#cfn-ec2-networkinsightsaccessscope-tags */ readonly tags?: Array; } /** * Describes a Network Access Scope analysis. * * @cloudformationResource AWS::EC2::NetworkInsightsAccessScopeAnalysis * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightsaccessscopeanalysis.html */ export declare class CfnNetworkInsightsAccessScopeAnalysis extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnNetworkInsightsAccessScopeAnalysis from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnNetworkInsightsAccessScopeAnalysis; /** * The number of network interfaces analyzed. * * @cloudformationAttribute AnalyzedEniCount */ readonly attrAnalyzedEniCount: number; /** * The end date of the analysis. * * @cloudformationAttribute EndDate */ readonly attrEndDate: string; /** * Indicates whether there are findings (true | false | unknown). * * @cloudformationAttribute FindingsFound */ readonly attrFindingsFound: string; /** * The ARN of the Network Access Scope analysis. * * @cloudformationAttribute NetworkInsightsAccessScopeAnalysisArn */ readonly attrNetworkInsightsAccessScopeAnalysisArn: string; /** * The ID of the Network Access Scope analysis. * * @cloudformationAttribute NetworkInsightsAccessScopeAnalysisId */ readonly attrNetworkInsightsAccessScopeAnalysisId: string; /** * The start date of the analysis. * * @cloudformationAttribute StartDate */ readonly attrStartDate: string; /** * The status of the analysis (running | succeeded | failed). * * @cloudformationAttribute Status */ readonly attrStatus: string; /** * The status message. * * @cloudformationAttribute StatusMessage */ readonly attrStatusMessage: string; /** * The ID of the Network Access Scope. */ networkInsightsAccessScopeId: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnNetworkInsightsAccessScopeAnalysisProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnNetworkInsightsAccessScopeAnalysis` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightsaccessscopeanalysis.html */ export interface CfnNetworkInsightsAccessScopeAnalysisProps { /** * The ID of the Network Access Scope. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightsaccessscopeanalysis.html#cfn-ec2-networkinsightsaccessscopeanalysis-networkinsightsaccessscopeid */ readonly networkInsightsAccessScopeId: string; /** * The tags. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightsaccessscopeanalysis.html#cfn-ec2-networkinsightsaccessscopeanalysis-tags */ readonly tags?: Array; } /** * Specifies a network insights analysis. * * @cloudformationResource AWS::EC2::NetworkInsightsAnalysis * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightsanalysis.html */ export declare class CfnNetworkInsightsAnalysis extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnNetworkInsightsAnalysis from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnNetworkInsightsAnalysis; /** * Potential intermediate components. * * @cloudformationAttribute AlternatePathHints */ readonly attrAlternatePathHints: cdk.IResolvable; /** * The explanations. For more information, see [Reachability Analyzer explanation codes](https://docs.aws.amazon.com/vpc/latest/reachability/explanation-codes.html) . * * @cloudformationAttribute Explanations */ readonly attrExplanations: cdk.IResolvable; /** * The components in the path from source to destination. * * @cloudformationAttribute ForwardPathComponents */ readonly attrForwardPathComponents: cdk.IResolvable; /** * The Amazon Resource Name (ARN) of the network insights analysis. * * @cloudformationAttribute NetworkInsightsAnalysisArn */ readonly attrNetworkInsightsAnalysisArn: string; /** * The ID of the network insights analysis. * * @cloudformationAttribute NetworkInsightsAnalysisId */ readonly attrNetworkInsightsAnalysisId: string; /** * Indicates whether the destination is reachable from the source. * * @cloudformationAttribute NetworkPathFound */ readonly attrNetworkPathFound: cdk.IResolvable; /** * The components in the path from destination to source. * * @cloudformationAttribute ReturnPathComponents */ readonly attrReturnPathComponents: cdk.IResolvable; /** * The time the analysis started. * * @cloudformationAttribute StartDate */ readonly attrStartDate: string; /** * The status of the network insights analysis. * * @cloudformationAttribute Status */ readonly attrStatus: string; /** * The status message, if the status is `failed` . * * @cloudformationAttribute StatusMessage */ readonly attrStatusMessage: string; /** * The IDs of potential intermediate accounts. * * @cloudformationAttribute SuggestedAccounts */ readonly attrSuggestedAccounts: Array; /** * The member accounts that contain resources that the path can traverse. */ additionalAccounts?: Array; /** * The Amazon Resource Names (ARN) of the resources that the path must traverse. */ filterInArns?: Array; /** * The Amazon Resource Names (ARN) of the resources that the path must ignore. */ filterOutArns?: Array; /** * The ID of the path. */ networkInsightsPathId: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags to apply. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnNetworkInsightsAnalysisProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnNetworkInsightsAnalysis { /** * Describes a path component. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html */ interface PathComponentProperty { /** * The network ACL rule. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-aclrule */ readonly aclRule?: CfnNetworkInsightsAnalysis.AnalysisAclRuleProperty | cdk.IResolvable; /** * The additional details. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-additionaldetails */ readonly additionalDetails?: Array | cdk.IResolvable; /** * The component. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-component */ readonly component?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The destination VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-destinationvpc */ readonly destinationVpc?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The load balancer listener. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-elasticloadbalancerlistener */ readonly elasticLoadBalancerListener?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The explanation codes. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-explanations */ readonly explanations?: Array | cdk.IResolvable; /** * The inbound header. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-inboundheader */ readonly inboundHeader?: CfnNetworkInsightsAnalysis.AnalysisPacketHeaderProperty | cdk.IResolvable; /** * The outbound header. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-outboundheader */ readonly outboundHeader?: CfnNetworkInsightsAnalysis.AnalysisPacketHeaderProperty | cdk.IResolvable; /** * The route table route. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-routetableroute */ readonly routeTableRoute?: CfnNetworkInsightsAnalysis.AnalysisRouteTableRouteProperty | cdk.IResolvable; /** * The security group rule. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-securitygrouprule */ readonly securityGroupRule?: CfnNetworkInsightsAnalysis.AnalysisSecurityGroupRuleProperty | cdk.IResolvable; /** * The sequence number. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-sequencenumber */ readonly sequenceNumber?: number; /** * The name of the VPC endpoint service. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-servicename */ readonly serviceName?: string; /** * The source VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-sourcevpc */ readonly sourceVpc?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The subnet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-subnet */ readonly subnet?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The transit gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-transitgateway */ readonly transitGateway?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The route in a transit gateway route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-transitgatewayroutetableroute */ readonly transitGatewayRouteTableRoute?: cdk.IResolvable | CfnNetworkInsightsAnalysis.TransitGatewayRouteTableRouteProperty; /** * The component VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-pathcomponent.html#cfn-ec2-networkinsightsanalysis-pathcomponent-vpc */ readonly vpc?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; } /** * Describes an additional detail for a path analysis. * * For more information, see [Reachability Analyzer additional detail codes](https://docs.aws.amazon.com/vpc/latest/reachability/additional-detail-codes.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-additionaldetail.html */ interface AdditionalDetailProperty { /** * The additional detail code. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-additionaldetail.html#cfn-ec2-networkinsightsanalysis-additionaldetail-additionaldetailtype */ readonly additionalDetailType?: string; /** * The path component. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-additionaldetail.html#cfn-ec2-networkinsightsanalysis-additionaldetail-component */ readonly component?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The load balancers. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-additionaldetail.html#cfn-ec2-networkinsightsanalysis-additionaldetail-loadbalancers */ readonly loadBalancers?: Array | cdk.IResolvable; /** * The name of the VPC endpoint service. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-additionaldetail.html#cfn-ec2-networkinsightsanalysis-additionaldetail-servicename */ readonly serviceName?: string; } /** * Describes a path component. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysiscomponent.html */ interface AnalysisComponentProperty { /** * The Amazon Resource Name (ARN) of the component. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysiscomponent.html#cfn-ec2-networkinsightsanalysis-analysiscomponent-arn */ readonly arn?: string; /** * The ID of the component. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysiscomponent.html#cfn-ec2-networkinsightsanalysis-analysiscomponent-id */ readonly id?: string; } /** * Describes a header. * * Reflects any changes made by a component as traffic passes through. The fields of an inbound header are null except for the first component of a path. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysispacketheader.html */ interface AnalysisPacketHeaderProperty { /** * The destination addresses. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysispacketheader.html#cfn-ec2-networkinsightsanalysis-analysispacketheader-destinationaddresses */ readonly destinationAddresses?: Array; /** * The destination port ranges. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysispacketheader.html#cfn-ec2-networkinsightsanalysis-analysispacketheader-destinationportranges */ readonly destinationPortRanges?: Array | cdk.IResolvable; /** * The protocol. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysispacketheader.html#cfn-ec2-networkinsightsanalysis-analysispacketheader-protocol */ readonly protocol?: string; /** * The source addresses. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysispacketheader.html#cfn-ec2-networkinsightsanalysis-analysispacketheader-sourceaddresses */ readonly sourceAddresses?: Array; /** * The source port ranges. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysispacketheader.html#cfn-ec2-networkinsightsanalysis-analysispacketheader-sourceportranges */ readonly sourcePortRanges?: Array | cdk.IResolvable; } /** * Describes a range of ports. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-portrange.html */ interface PortRangeProperty { /** * The first port in the range. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-portrange.html#cfn-ec2-networkinsightsanalysis-portrange-from */ readonly from?: number; /** * The last port in the range. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-portrange.html#cfn-ec2-networkinsightsanalysis-portrange-to */ readonly to?: number; } /** * Describes a security group rule. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysissecuritygrouprule.html */ interface AnalysisSecurityGroupRuleProperty { /** * The IPv4 address range, in CIDR notation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysissecuritygrouprule.html#cfn-ec2-networkinsightsanalysis-analysissecuritygrouprule-cidr */ readonly cidr?: string; /** * The direction. The following are the possible values:. * * - egress * - ingress * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysissecuritygrouprule.html#cfn-ec2-networkinsightsanalysis-analysissecuritygrouprule-direction */ readonly direction?: string; /** * The port range. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysissecuritygrouprule.html#cfn-ec2-networkinsightsanalysis-analysissecuritygrouprule-portrange */ readonly portRange?: cdk.IResolvable | CfnNetworkInsightsAnalysis.PortRangeProperty; /** * The prefix list ID. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysissecuritygrouprule.html#cfn-ec2-networkinsightsanalysis-analysissecuritygrouprule-prefixlistid */ readonly prefixListId?: string; /** * The protocol name. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysissecuritygrouprule.html#cfn-ec2-networkinsightsanalysis-analysissecuritygrouprule-protocol */ readonly protocol?: string; /** * The security group ID. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysissecuritygrouprule.html#cfn-ec2-networkinsightsanalysis-analysissecuritygrouprule-securitygroupid */ readonly securityGroupId?: string; } /** * Describes an explanation code for an unreachable path. * * For more information, see [Reachability Analyzer explanation codes](https://docs.aws.amazon.com/vpc/latest/reachability/explanation-codes.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html */ interface ExplanationProperty { /** * The network ACL. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-acl */ readonly acl?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The network ACL rule. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-aclrule */ readonly aclRule?: CfnNetworkInsightsAnalysis.AnalysisAclRuleProperty | cdk.IResolvable; /** * The IPv4 address, in CIDR notation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-address */ readonly address?: string; /** * The IPv4 addresses, in CIDR notation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-addresses */ readonly addresses?: Array; /** * The resource to which the component is attached. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-attachedto */ readonly attachedTo?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The Availability Zones. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-availabilityzones */ readonly availabilityZones?: Array; /** * The CIDR ranges. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-cidrs */ readonly cidrs?: Array; /** * The listener for a Classic Load Balancer. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-classicloadbalancerlistener */ readonly classicLoadBalancerListener?: CfnNetworkInsightsAnalysis.AnalysisLoadBalancerListenerProperty | cdk.IResolvable; /** * The component. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-component */ readonly component?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The AWS account for the component. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-componentaccount */ readonly componentAccount?: string; /** * The Region for the component. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-componentregion */ readonly componentRegion?: string; /** * The customer gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-customergateway */ readonly customerGateway?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The destination. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-destination */ readonly destination?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The destination VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-destinationvpc */ readonly destinationVpc?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The direction. The following are the possible values:. * * - egress * - ingress * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-direction */ readonly direction?: string; /** * The load balancer listener. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-elasticloadbalancerlistener */ readonly elasticLoadBalancerListener?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The explanation code. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-explanationcode */ readonly explanationCode?: string; /** * The route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-ingressroutetable */ readonly ingressRouteTable?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The internet gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-internetgateway */ readonly internetGateway?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The Amazon Resource Name (ARN) of the load balancer. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-loadbalancerarn */ readonly loadBalancerArn?: string; /** * The listener port of the load balancer. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-loadbalancerlistenerport */ readonly loadBalancerListenerPort?: number; /** * The target. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-loadbalancertarget */ readonly loadBalancerTarget?: CfnNetworkInsightsAnalysis.AnalysisLoadBalancerTargetProperty | cdk.IResolvable; /** * The target group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-loadbalancertargetgroup */ readonly loadBalancerTargetGroup?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The target groups. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-loadbalancertargetgroups */ readonly loadBalancerTargetGroups?: Array | cdk.IResolvable; /** * The target port. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-loadbalancertargetport */ readonly loadBalancerTargetPort?: number; /** * The missing component. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-missingcomponent */ readonly missingComponent?: string; /** * The NAT gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-natgateway */ readonly natGateway?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-networkinterface */ readonly networkInterface?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The packet field. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-packetfield */ readonly packetField?: string; /** * The port. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-port */ readonly port?: number; /** * The port ranges. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-portranges */ readonly portRanges?: Array | cdk.IResolvable; /** * The prefix list. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-prefixlist */ readonly prefixList?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The protocols. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-protocols */ readonly protocols?: Array; /** * The route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-routetable */ readonly routeTable?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The route table route. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-routetableroute */ readonly routeTableRoute?: CfnNetworkInsightsAnalysis.AnalysisRouteTableRouteProperty | cdk.IResolvable; /** * The security group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-securitygroup */ readonly securityGroup?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The security group rule. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-securitygrouprule */ readonly securityGroupRule?: CfnNetworkInsightsAnalysis.AnalysisSecurityGroupRuleProperty | cdk.IResolvable; /** * The security groups. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-securitygroups */ readonly securityGroups?: Array | cdk.IResolvable; /** * The source VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-sourcevpc */ readonly sourceVpc?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The state. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-state */ readonly state?: string; /** * The subnet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-subnet */ readonly subnet?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The route table for the subnet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-subnetroutetable */ readonly subnetRouteTable?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The transit gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-transitgateway */ readonly transitGateway?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The transit gateway attachment. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-transitgatewayattachment */ readonly transitGatewayAttachment?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The transit gateway route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-transitgatewayroutetable */ readonly transitGatewayRouteTable?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The transit gateway route table route. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-transitgatewayroutetableroute */ readonly transitGatewayRouteTableRoute?: cdk.IResolvable | CfnNetworkInsightsAnalysis.TransitGatewayRouteTableRouteProperty; /** * The component VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-vpc */ readonly vpc?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The VPC endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-vpcendpoint */ readonly vpcEndpoint?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The VPC peering connection. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-vpcpeeringconnection */ readonly vpcPeeringConnection?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The VPN connection. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-vpnconnection */ readonly vpnConnection?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The VPN gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-explanation.html#cfn-ec2-networkinsightsanalysis-explanation-vpngateway */ readonly vpnGateway?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; } /** * Describes a load balancer listener. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisloadbalancerlistener.html */ interface AnalysisLoadBalancerListenerProperty { /** * [Classic Load Balancers] The back-end port for the listener. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisloadbalancerlistener.html#cfn-ec2-networkinsightsanalysis-analysisloadbalancerlistener-instanceport */ readonly instancePort?: number; /** * The port on which the load balancer is listening. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisloadbalancerlistener.html#cfn-ec2-networkinsightsanalysis-analysisloadbalancerlistener-loadbalancerport */ readonly loadBalancerPort?: number; } /** * Describes a route in a transit gateway route table. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-transitgatewayroutetableroute.html */ interface TransitGatewayRouteTableRouteProperty { /** * The ID of the route attachment. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-transitgatewayroutetableroute.html#cfn-ec2-networkinsightsanalysis-transitgatewayroutetableroute-attachmentid */ readonly attachmentId?: string; /** * The CIDR block used for destination matches. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-transitgatewayroutetableroute.html#cfn-ec2-networkinsightsanalysis-transitgatewayroutetableroute-destinationcidr */ readonly destinationCidr?: string; /** * The ID of the prefix list. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-transitgatewayroutetableroute.html#cfn-ec2-networkinsightsanalysis-transitgatewayroutetableroute-prefixlistid */ readonly prefixListId?: string; /** * The ID of the resource for the route attachment. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-transitgatewayroutetableroute.html#cfn-ec2-networkinsightsanalysis-transitgatewayroutetableroute-resourceid */ readonly resourceId?: string; /** * The resource type for the route attachment. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-transitgatewayroutetableroute.html#cfn-ec2-networkinsightsanalysis-transitgatewayroutetableroute-resourcetype */ readonly resourceType?: string; /** * The route origin. The following are the possible values:. * * - static * - propagated * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-transitgatewayroutetableroute.html#cfn-ec2-networkinsightsanalysis-transitgatewayroutetableroute-routeorigin */ readonly routeOrigin?: string; /** * The state of the route. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-transitgatewayroutetableroute.html#cfn-ec2-networkinsightsanalysis-transitgatewayroutetableroute-state */ readonly state?: string; } /** * Describes a load balancer target. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisloadbalancertarget.html */ interface AnalysisLoadBalancerTargetProperty { /** * The IP address. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisloadbalancertarget.html#cfn-ec2-networkinsightsanalysis-analysisloadbalancertarget-address */ readonly address?: string; /** * The Availability Zone. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisloadbalancertarget.html#cfn-ec2-networkinsightsanalysis-analysisloadbalancertarget-availabilityzone */ readonly availabilityZone?: string; /** * Information about the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisloadbalancertarget.html#cfn-ec2-networkinsightsanalysis-analysisloadbalancertarget-instance */ readonly instance?: CfnNetworkInsightsAnalysis.AnalysisComponentProperty | cdk.IResolvable; /** * The port on which the target is listening. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisloadbalancertarget.html#cfn-ec2-networkinsightsanalysis-analysisloadbalancertarget-port */ readonly port?: number; } /** * Describes a route table route. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisroutetableroute.html */ interface AnalysisRouteTableRouteProperty { /** * The destination IPv4 address, in CIDR notation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisroutetableroute.html#cfn-ec2-networkinsightsanalysis-analysisroutetableroute-destinationcidr */ readonly destinationCidr?: string; /** * The prefix of the AWS service. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisroutetableroute.html#cfn-ec2-networkinsightsanalysis-analysisroutetableroute-destinationprefixlistid */ readonly destinationPrefixListId?: string; /** * The ID of an egress-only internet gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisroutetableroute.html#cfn-ec2-networkinsightsanalysis-analysisroutetableroute-egressonlyinternetgatewayid */ readonly egressOnlyInternetGatewayId?: string; /** * The ID of the gateway, such as an internet gateway or virtual private gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisroutetableroute.html#cfn-ec2-networkinsightsanalysis-analysisroutetableroute-gatewayid */ readonly gatewayId?: string; /** * The ID of the instance, such as a NAT instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisroutetableroute.html#cfn-ec2-networkinsightsanalysis-analysisroutetableroute-instanceid */ readonly instanceId?: string; /** * The ID of a NAT gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisroutetableroute.html#cfn-ec2-networkinsightsanalysis-analysisroutetableroute-natgatewayid */ readonly natGatewayId?: string; /** * The ID of a network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisroutetableroute.html#cfn-ec2-networkinsightsanalysis-analysisroutetableroute-networkinterfaceid */ readonly networkInterfaceId?: string; /** * Describes how the route was created. The following are the possible values:. * * - CreateRouteTable - The route was automatically created when the route table was created. * - CreateRoute - The route was manually added to the route table. * - EnableVgwRoutePropagation - The route was propagated by route propagation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisroutetableroute.html#cfn-ec2-networkinsightsanalysis-analysisroutetableroute-origin */ readonly origin?: string; /** * The state. The following are the possible values:. * * - active * - blackhole * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisroutetableroute.html#cfn-ec2-networkinsightsanalysis-analysisroutetableroute-state */ readonly state?: string; /** * The ID of a transit gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisroutetableroute.html#cfn-ec2-networkinsightsanalysis-analysisroutetableroute-transitgatewayid */ readonly transitGatewayId?: string; /** * The ID of a VPC peering connection. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisroutetableroute.html#cfn-ec2-networkinsightsanalysis-analysisroutetableroute-vpcpeeringconnectionid */ readonly vpcPeeringConnectionId?: string; } /** * Describes a network access control (ACL) rule. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisaclrule.html */ interface AnalysisAclRuleProperty { /** * The IPv4 address range, in CIDR notation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisaclrule.html#cfn-ec2-networkinsightsanalysis-analysisaclrule-cidr */ readonly cidr?: string; /** * Indicates whether the rule is an outbound rule. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisaclrule.html#cfn-ec2-networkinsightsanalysis-analysisaclrule-egress */ readonly egress?: boolean | cdk.IResolvable; /** * The range of ports. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisaclrule.html#cfn-ec2-networkinsightsanalysis-analysisaclrule-portrange */ readonly portRange?: cdk.IResolvable | CfnNetworkInsightsAnalysis.PortRangeProperty; /** * The protocol. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisaclrule.html#cfn-ec2-networkinsightsanalysis-analysisaclrule-protocol */ readonly protocol?: string; /** * Indicates whether to allow or deny traffic that matches the rule. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisaclrule.html#cfn-ec2-networkinsightsanalysis-analysisaclrule-ruleaction */ readonly ruleAction?: string; /** * The rule number. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-analysisaclrule.html#cfn-ec2-networkinsightsanalysis-analysisaclrule-rulenumber */ readonly ruleNumber?: number; } /** * Describes an potential intermediate component of a feasible path. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-alternatepathhint.html */ interface AlternatePathHintProperty { /** * The Amazon Resource Name (ARN) of the component. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-alternatepathhint.html#cfn-ec2-networkinsightsanalysis-alternatepathhint-componentarn */ readonly componentArn?: string; /** * The ID of the component. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightsanalysis-alternatepathhint.html#cfn-ec2-networkinsightsanalysis-alternatepathhint-componentid */ readonly componentId?: string; } } /** * Properties for defining a `CfnNetworkInsightsAnalysis` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightsanalysis.html */ export interface CfnNetworkInsightsAnalysisProps { /** * The member accounts that contain resources that the path can traverse. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightsanalysis.html#cfn-ec2-networkinsightsanalysis-additionalaccounts */ readonly additionalAccounts?: Array; /** * The Amazon Resource Names (ARN) of the resources that the path must traverse. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightsanalysis.html#cfn-ec2-networkinsightsanalysis-filterinarns */ readonly filterInArns?: Array; /** * The Amazon Resource Names (ARN) of the resources that the path must ignore. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightsanalysis.html#cfn-ec2-networkinsightsanalysis-filteroutarns */ readonly filterOutArns?: Array; /** * The ID of the path. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightsanalysis.html#cfn-ec2-networkinsightsanalysis-networkinsightspathid */ readonly networkInsightsPathId: string; /** * The tags to apply. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightsanalysis.html#cfn-ec2-networkinsightsanalysis-tags */ readonly tags?: Array; } /** * Specifies a path to analyze for reachability. * * VPC Reachability Analyzer enables you to analyze and debug network reachability between two resources in your virtual private cloud (VPC). For more information, see the [Reachability Analyzer User Guide](https://docs.aws.amazon.com/vpc/latest/reachability/what-is-reachability-analyzer.html) . * * @cloudformationResource AWS::EC2::NetworkInsightsPath * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightspath.html */ export declare class CfnNetworkInsightsPath extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnNetworkInsightsPath from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnNetworkInsightsPath; /** * The time stamp when the path was created. * * @cloudformationAttribute CreatedDate */ readonly attrCreatedDate: string; /** * The Amazon Resource Name (ARN) of the destination. * * @cloudformationAttribute DestinationArn */ readonly attrDestinationArn: string; /** * The Amazon Resource Name (ARN) of the path. * * @cloudformationAttribute NetworkInsightsPathArn */ readonly attrNetworkInsightsPathArn: string; /** * The ID of the path. * * @cloudformationAttribute NetworkInsightsPathId */ readonly attrNetworkInsightsPathId: string; /** * The Amazon Resource Name (ARN) of the source. * * @cloudformationAttribute SourceArn */ readonly attrSourceArn: string; /** * The ID or ARN of the destination. */ destination?: string; /** * The IP address of the destination. */ destinationIp?: string; /** * The destination port. */ destinationPort?: number; /** * Scopes the analysis to network paths that match specific filters at the destination. */ filterAtDestination?: cdk.IResolvable | CfnNetworkInsightsPath.PathFilterProperty; /** * Scopes the analysis to network paths that match specific filters at the source. */ filterAtSource?: cdk.IResolvable | CfnNetworkInsightsPath.PathFilterProperty; /** * The protocol. */ protocol: string; /** * The ID or ARN of the source. */ source: string; /** * The IP address of the source. */ sourceIp?: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags to add to the path. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnNetworkInsightsPathProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnNetworkInsightsPath { /** * Describes a set of filters for a path analysis. * * Use path filters to scope the analysis when there can be multiple resulting paths. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightspath-pathfilter.html */ interface PathFilterProperty { /** * The destination IPv4 address. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightspath-pathfilter.html#cfn-ec2-networkinsightspath-pathfilter-destinationaddress */ readonly destinationAddress?: string; /** * The destination port range. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightspath-pathfilter.html#cfn-ec2-networkinsightspath-pathfilter-destinationportrange */ readonly destinationPortRange?: CfnNetworkInsightsPath.FilterPortRangeProperty | cdk.IResolvable; /** * The source IPv4 address. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightspath-pathfilter.html#cfn-ec2-networkinsightspath-pathfilter-sourceaddress */ readonly sourceAddress?: string; /** * The source port range. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightspath-pathfilter.html#cfn-ec2-networkinsightspath-pathfilter-sourceportrange */ readonly sourcePortRange?: CfnNetworkInsightsPath.FilterPortRangeProperty | cdk.IResolvable; } /** * Describes a port range. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightspath-filterportrange.html */ interface FilterPortRangeProperty { /** * The first port in the range. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightspath-filterportrange.html#cfn-ec2-networkinsightspath-filterportrange-fromport */ readonly fromPort?: number; /** * The last port in the range. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinsightspath-filterportrange.html#cfn-ec2-networkinsightspath-filterportrange-toport */ readonly toPort?: number; } } /** * Properties for defining a `CfnNetworkInsightsPath` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightspath.html */ export interface CfnNetworkInsightsPathProps { /** * The ID or ARN of the destination. * * If the resource is in another account, you must specify an ARN. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightspath.html#cfn-ec2-networkinsightspath-destination */ readonly destination?: string; /** * The IP address of the destination. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightspath.html#cfn-ec2-networkinsightspath-destinationip */ readonly destinationIp?: string; /** * The destination port. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightspath.html#cfn-ec2-networkinsightspath-destinationport */ readonly destinationPort?: number; /** * Scopes the analysis to network paths that match specific filters at the destination. * * If you specify this parameter, you can't specify the parameter for the destination IP address. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightspath.html#cfn-ec2-networkinsightspath-filteratdestination */ readonly filterAtDestination?: cdk.IResolvable | CfnNetworkInsightsPath.PathFilterProperty; /** * Scopes the analysis to network paths that match specific filters at the source. * * If you specify this parameter, you can't specify the parameters for the source IP address or the destination port. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightspath.html#cfn-ec2-networkinsightspath-filteratsource */ readonly filterAtSource?: cdk.IResolvable | CfnNetworkInsightsPath.PathFilterProperty; /** * The protocol. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightspath.html#cfn-ec2-networkinsightspath-protocol */ readonly protocol: string; /** * The ID or ARN of the source. * * If the resource is in another account, you must specify an ARN. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightspath.html#cfn-ec2-networkinsightspath-source */ readonly source: string; /** * The IP address of the source. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightspath.html#cfn-ec2-networkinsightspath-sourceip */ readonly sourceIp?: string; /** * The tags to add to the path. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinsightspath.html#cfn-ec2-networkinsightspath-tags */ readonly tags?: Array; } /** * Describes a network interface in an Amazon EC2 instance for AWS CloudFormation . * * @cloudformationResource AWS::EC2::NetworkInterface * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html */ export declare class CfnNetworkInterface extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnNetworkInterface from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnNetworkInterface; /** * The ID of the network interface. * * @cloudformationAttribute Id */ readonly attrId: string; /** * The primary IPv6 address of the network interface. * * @cloudformationAttribute PrimaryIpv6Address */ readonly attrPrimaryIpv6Address: string; /** * The primary private IP address of the network interface. For example, `10.0.0.192` . * * @cloudformationAttribute PrimaryPrivateIpAddress */ readonly attrPrimaryPrivateIpAddress: string; /** * The secondary private IP addresses of the network interface. For example, `["10.0.0.161", "10.0.0.162", "10.0.0.163"]` . * * @cloudformationAttribute SecondaryPrivateIpAddresses */ readonly attrSecondaryPrivateIpAddresses: Array; /** * The ID of the VPC. * * @cloudformationAttribute VpcId */ readonly attrVpcId: string; /** * A connection tracking specification for the network interface. */ connectionTrackingSpecification?: CfnNetworkInterface.ConnectionTrackingSpecificationProperty | cdk.IResolvable; /** * A description for the network interface. */ description?: string; /** * If you’re modifying a network interface in a dual-stack or IPv6-only subnet, you have the option to assign a primary IPv6 IP address. */ enablePrimaryIpv6?: boolean | cdk.IResolvable; /** * The IDs of the security groups associated with this network interface. */ groupSet?: Array; /** * The type of network interface. */ interfaceType?: string; /** * The number of IPv4 prefixes to be automatically assigned to the network interface. */ ipv4PrefixCount?: number; /** * The IPv4 delegated prefixes that are assigned to the network interface. */ ipv4Prefixes?: Array | cdk.IResolvable; /** * The number of IPv6 addresses to assign to the network interface. */ ipv6AddressCount?: number; /** * The IPv6 addresses from the IPv6 CIDR block range of your subnet to assign to the network interface. */ ipv6Addresses?: Array | cdk.IResolvable; /** * The number of IPv6 prefixes to be automatically assigned to the network interface. */ ipv6PrefixCount?: number; /** * The IPv6 delegated prefixes that are assigned to the network interface. */ ipv6Prefixes?: Array | cdk.IResolvable; /** * The private IPv4 address to assign to the network interface as the primary private IP address. */ privateIpAddress?: string; /** * The private IPv4 addresses to assign to the network interface. */ privateIpAddresses?: Array | cdk.IResolvable; /** * The number of secondary private IPv4 addresses to assign to a network interface. */ secondaryPrivateIpAddressCount?: number; /** * Enable or disable source/destination checks, which ensure that the instance is either the source or the destination of any traffic that it receives. */ sourceDestCheck?: boolean | cdk.IResolvable; /** * The ID of the subnet to associate with the network interface. */ subnetId: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags to apply to the network interface. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnNetworkInterfaceProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnNetworkInterface { /** * Describes a secondary private IPv4 address for a network interface. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterface-privateipaddressspecification.html */ interface PrivateIpAddressSpecificationProperty { /** * Sets the private IP address as the primary private address. * * You can set only one primary private IP address. If you don't specify a primary private IP address, Amazon EC2 automatically assigns a primary private IP address. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterface-privateipaddressspecification.html#cfn-ec2-networkinterface-privateipaddressspecification-primary */ readonly primary: boolean | cdk.IResolvable; /** * The private IP address of the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterface-privateipaddressspecification.html#cfn-ec2-networkinterface-privateipaddressspecification-privateipaddress */ readonly privateIpAddress: string; } /** * Describes an IPv4 prefix. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterface-ipv4prefixspecification.html */ interface Ipv4PrefixSpecificationProperty { /** * The IPv4 prefix. * * For information, see [Assigning prefixes to network interfaces](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-prefix-eni.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterface-ipv4prefixspecification.html#cfn-ec2-networkinterface-ipv4prefixspecification-ipv4prefix */ readonly ipv4Prefix: string; } /** * Describes the IPv6 addresses to associate with the network interface. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterface-instanceipv6address.html */ interface InstanceIpv6AddressProperty { /** * An IPv6 address to associate with the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterface-instanceipv6address.html#cfn-ec2-networkinterface-instanceipv6address-ipv6address */ readonly ipv6Address: string; } /** * Describes the IPv6 prefix. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterface-ipv6prefixspecification.html */ interface Ipv6PrefixSpecificationProperty { /** * The IPv6 prefix. * * For information, see [Assigning prefixes to Amazon EC2 network interfaces](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-prefix-eni.html) in the *Amazon Elastic Compute Cloud User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterface-ipv6prefixspecification.html#cfn-ec2-networkinterface-ipv6prefixspecification-ipv6prefix */ readonly ipv6Prefix: string; } /** * Configurable options for connection tracking on a network interface. * * For more information, see [Connection tracking timeouts](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/security-group-connection-tracking.html#connection-tracking-timeouts) in the *Amazon Elastic Compute Cloud User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterface-connectiontrackingspecification.html */ interface ConnectionTrackingSpecificationProperty { /** * Timeout (in seconds) for idle TCP connections in an established state. * * Min: 60 seconds. Max: 432000 seconds (5 days). Default: 432000 seconds. Recommended: Less than 432000 seconds. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterface-connectiontrackingspecification.html#cfn-ec2-networkinterface-connectiontrackingspecification-tcpestablishedtimeout */ readonly tcpEstablishedTimeout?: number; /** * Timeout (in seconds) for idle UDP flows classified as streams which have seen more than one request-response transaction. * * Min: 60 seconds. Max: 180 seconds (3 minutes). Default: 180 seconds. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterface-connectiontrackingspecification.html#cfn-ec2-networkinterface-connectiontrackingspecification-udpstreamtimeout */ readonly udpStreamTimeout?: number; /** * Timeout (in seconds) for idle UDP flows that have seen traffic only in a single direction or a single request-response transaction. * * Min: 30 seconds. Max: 60 seconds. Default: 30 seconds. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterface-connectiontrackingspecification.html#cfn-ec2-networkinterface-connectiontrackingspecification-udptimeout */ readonly udpTimeout?: number; } } /** * Properties for defining a `CfnNetworkInterface` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html */ export interface CfnNetworkInterfaceProps { /** * A connection tracking specification for the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-connectiontrackingspecification */ readonly connectionTrackingSpecification?: CfnNetworkInterface.ConnectionTrackingSpecificationProperty | cdk.IResolvable; /** * A description for the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-description */ readonly description?: string; /** * If you’re modifying a network interface in a dual-stack or IPv6-only subnet, you have the option to assign a primary IPv6 IP address. * * A primary IPv6 address is an IPv6 GUA address associated with an ENI that you have enabled to use a primary IPv6 address. Use this option if the instance that this ENI will be attached to relies on its IPv6 address not changing. AWS will automatically assign an IPv6 address associated with the ENI attached to your instance to be the primary IPv6 address. Once you enable an IPv6 GUA address to be a primary IPv6, you cannot disable it. When you enable an IPv6 GUA address to be a primary IPv6, the first IPv6 GUA will be made the primary IPv6 address until the instance is terminated or the network interface is detached. If you have multiple IPv6 addresses associated with an ENI attached to your instance and you enable a primary IPv6 address, the first IPv6 GUA address associated with the ENI becomes the primary IPv6 address. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-enableprimaryipv6 */ readonly enablePrimaryIpv6?: boolean | cdk.IResolvable; /** * The IDs of the security groups associated with this network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-groupset */ readonly groupSet?: Array; /** * The type of network interface. * * The default is `interface` . The supported values are `efa` and `trunk` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-interfacetype */ readonly interfaceType?: string; /** * The number of IPv4 prefixes to be automatically assigned to the network interface. * * When creating a network interface, you can't specify a count of IPv4 prefixes if you've specified one of the following: specific IPv4 prefixes, specific private IPv4 addresses, or a count of private IPv4 addresses. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-ipv4prefixcount */ readonly ipv4PrefixCount?: number; /** * The IPv4 delegated prefixes that are assigned to the network interface. * * When creating a network interface, you can't specify IPv4 prefixes if you've specified one of the following: a count of IPv4 prefixes, specific private IPv4 addresses, or a count of private IPv4 addresses. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-ipv4prefixes */ readonly ipv4Prefixes?: Array | cdk.IResolvable; /** * The number of IPv6 addresses to assign to the network interface. * * Amazon EC2 automatically selects the IPv6 addresses from the subnet range. To specify specific IPv6 addresses, use the `Ipv6Addresses` property and don't specify this property. * * When creating a network interface, you can't specify a count of IPv6 addresses if you've specified one of the following: specific IPv6 addresses, specific IPv6 prefixes, or a count of IPv6 prefixes. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-ipv6addresscount */ readonly ipv6AddressCount?: number; /** * The IPv6 addresses from the IPv6 CIDR block range of your subnet to assign to the network interface. * * If you're specifying a number of IPv6 addresses, use the `Ipv6AddressCount` property and don't specify this property. * * When creating a network interface, you can't specify IPv6 addresses if you've specified one of the following: a count of IPv6 addresses, specific IPv6 prefixes, or a count of IPv6 prefixes. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-ipv6addresses */ readonly ipv6Addresses?: Array | cdk.IResolvable; /** * The number of IPv6 prefixes to be automatically assigned to the network interface. * * When creating a network interface, you can't specify a count of IPv6 prefixes if you've specified one of the following: specific IPv6 prefixes, specific IPv6 addresses, or a count of IPv6 addresses. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-ipv6prefixcount */ readonly ipv6PrefixCount?: number; /** * The IPv6 delegated prefixes that are assigned to the network interface. * * When creating a network interface, you can't specify IPv6 prefixes if you've specified one of the following: a count of IPv6 prefixes, specific IPv6 addresses, or a count of IPv6 addresses. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-ipv6prefixes */ readonly ipv6Prefixes?: Array | cdk.IResolvable; /** * The private IPv4 address to assign to the network interface as the primary private IP address. * * If you want to specify multiple private IP addresses, use the `PrivateIpAddresses` property. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-privateipaddress */ readonly privateIpAddress?: string; /** * The private IPv4 addresses to assign to the network interface. * * You can specify a primary private IP address by setting the value of the `Primary` property to `true` in the `PrivateIpAddressSpecification` property. If you want EC2 to automatically assign private IP addresses, use the `SecondaryPrivateIpAddressCount` property and do not specify this property. * * When creating a network interface, you can't specify private IPv4 addresses if you've specified one of the following: a count of private IPv4 addresses, specific IPv4 prefixes, or a count of IPv4 prefixes. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-privateipaddresses */ readonly privateIpAddresses?: Array | cdk.IResolvable; /** * The number of secondary private IPv4 addresses to assign to a network interface. * * When you specify a number of secondary IPv4 addresses, Amazon EC2 selects these IP addresses within the subnet's IPv4 CIDR range. You can't specify this option and specify more than one private IP address using `privateIpAddresses` . * * When creating a Network Interface, you can't specify a count of private IPv4 addresses if you've specified one of the following: specific private IPv4 addresses, specific IPv4 prefixes, or a count of IPv4 prefixes. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-secondaryprivateipaddresscount */ readonly secondaryPrivateIpAddressCount?: number; /** * Enable or disable source/destination checks, which ensure that the instance is either the source or the destination of any traffic that it receives. * * If the value is `true` , source/destination checks are enabled; otherwise, they are disabled. The default value is `true` . You must disable source/destination checks if the instance runs services such as network address translation, routing, or firewalls. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-sourcedestcheck */ readonly sourceDestCheck?: boolean | cdk.IResolvable; /** * The ID of the subnet to associate with the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-subnetid */ readonly subnetId: string; /** * The tags to apply to the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterface.html#cfn-ec2-networkinterface-tags */ readonly tags?: Array; } /** * Attaches an elastic network interface (ENI) to an Amazon EC2 instance. * * You can use this resource type to attach additional network interfaces to an instance without interruption. * * @cloudformationResource AWS::EC2::NetworkInterfaceAttachment * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterfaceattachment.html */ export declare class CfnNetworkInterfaceAttachment extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnNetworkInterfaceAttachment from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnNetworkInterfaceAttachment; /** * The ID of the network interface attachment. * * @cloudformationAttribute AttachmentId */ readonly attrAttachmentId: string; /** * Whether to delete the network interface when the instance terminates. */ deleteOnTermination?: boolean | cdk.IResolvable; /** * The network interface's position in the attachment order. */ deviceIndex: string; /** * Configures ENA Express for the network interface that this action attaches to the instance. */ enaSrdSpecification?: CfnNetworkInterfaceAttachment.EnaSrdSpecificationProperty | cdk.IResolvable; /** * The ID of the instance to which you will attach the ENI. */ instanceId: string; /** * The ID of the ENI that you want to attach. */ networkInterfaceId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnNetworkInterfaceAttachmentProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnNetworkInterfaceAttachment { /** * ENA Express uses AWS Scalable Reliable Datagram (SRD) technology to increase the maximum bandwidth used per stream and minimize tail latency of network traffic between EC2 instances. * * With ENA Express, you can communicate between two EC2 instances in the same subnet within the same account, or in different accounts. Both sending and receiving instances must have ENA Express enabled. * * To improve the reliability of network packet delivery, ENA Express reorders network packets on the receiving end by default. However, some UDP-based applications are designed to handle network packets that are out of order to reduce the overhead for packet delivery at the network layer. When ENA Express is enabled, you can specify whether UDP network traffic uses it. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterfaceattachment-enasrdspecification.html */ interface EnaSrdSpecificationProperty { /** * Indicates whether ENA Express is enabled for the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterfaceattachment-enasrdspecification.html#cfn-ec2-networkinterfaceattachment-enasrdspecification-enasrdenabled */ readonly enaSrdEnabled?: boolean | cdk.IResolvable; /** * Configures ENA Express for UDP network traffic. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterfaceattachment-enasrdspecification.html#cfn-ec2-networkinterfaceattachment-enasrdspecification-enasrdudpspecification */ readonly enaSrdUdpSpecification?: CfnNetworkInterfaceAttachment.EnaSrdUdpSpecificationProperty | cdk.IResolvable; } /** * ENA Express is compatible with both TCP and UDP transport protocols. * * When it's enabled, TCP traffic automatically uses it. However, some UDP-based applications are designed to handle network packets that are out of order, without a need for retransmission, such as live video broadcasting or other near-real-time applications. For UDP traffic, you can specify whether to use ENA Express, based on your application environment needs. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterfaceattachment-enasrdudpspecification.html */ interface EnaSrdUdpSpecificationProperty { /** * Indicates whether UDP traffic to and from the instance uses ENA Express. * * To specify this setting, you must first enable ENA Express. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-networkinterfaceattachment-enasrdudpspecification.html#cfn-ec2-networkinterfaceattachment-enasrdudpspecification-enasrdudpenabled */ readonly enaSrdUdpEnabled?: boolean | cdk.IResolvable; } } /** * Properties for defining a `CfnNetworkInterfaceAttachment` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterfaceattachment.html */ export interface CfnNetworkInterfaceAttachmentProps { /** * Whether to delete the network interface when the instance terminates. * * By default, this value is set to `true` . * * @default - true * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterfaceattachment.html#cfn-ec2-networkinterfaceattachment-deleteontermination */ readonly deleteOnTermination?: boolean | cdk.IResolvable; /** * The network interface's position in the attachment order. * * For example, the first attached network interface has a `DeviceIndex` of 0. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterfaceattachment.html#cfn-ec2-networkinterfaceattachment-deviceindex */ readonly deviceIndex: string; /** * Configures ENA Express for the network interface that this action attaches to the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterfaceattachment.html#cfn-ec2-networkinterfaceattachment-enasrdspecification */ readonly enaSrdSpecification?: CfnNetworkInterfaceAttachment.EnaSrdSpecificationProperty | cdk.IResolvable; /** * The ID of the instance to which you will attach the ENI. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterfaceattachment.html#cfn-ec2-networkinterfaceattachment-instanceid */ readonly instanceId: string; /** * The ID of the ENI that you want to attach. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterfaceattachment.html#cfn-ec2-networkinterfaceattachment-networkinterfaceid */ readonly networkInterfaceId: string; } /** * Specifies a permission for the network interface, For example, you can grant an AWS -authorized account permission to attach the network interface to an instance in their account. * * @cloudformationResource AWS::EC2::NetworkInterfacePermission * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterfacepermission.html */ export declare class CfnNetworkInterfacePermission extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnNetworkInterfacePermission from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnNetworkInterfacePermission; /** * @cloudformationAttribute Id */ readonly attrId: string; /** * The AWS account ID. */ awsAccountId: string; /** * The ID of the network interface. */ networkInterfaceId: string; /** * The type of permission to grant: `INSTANCE-ATTACH` or `EIP-ASSOCIATE` . */ permission: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnNetworkInterfacePermissionProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnNetworkInterfacePermission` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterfacepermission.html */ export interface CfnNetworkInterfacePermissionProps { /** * The AWS account ID. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterfacepermission.html#cfn-ec2-networkinterfacepermission-awsaccountid */ readonly awsAccountId: string; /** * The ID of the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterfacepermission.html#cfn-ec2-networkinterfacepermission-networkinterfaceid */ readonly networkInterfaceId: string; /** * The type of permission to grant: `INSTANCE-ATTACH` or `EIP-ASSOCIATE` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkinterfacepermission.html#cfn-ec2-networkinterfacepermission-permission */ readonly permission: string; } /** * Describes Infrastructure Performance subscriptions. * * @cloudformationResource AWS::EC2::NetworkPerformanceMetricSubscription * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkperformancemetricsubscription.html */ export declare class CfnNetworkPerformanceMetricSubscription extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnNetworkPerformanceMetricSubscription from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnNetworkPerformanceMetricSubscription; /** * The Region or Availability Zone that's the target for the subscription. */ destination: string; /** * The metric used for the subscription. */ metric: string; /** * The Region or Availability Zone that's the source for the subscription. */ source: string; /** * The statistic used for the subscription. */ statistic: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnNetworkPerformanceMetricSubscriptionProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnNetworkPerformanceMetricSubscription` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkperformancemetricsubscription.html */ export interface CfnNetworkPerformanceMetricSubscriptionProps { /** * The Region or Availability Zone that's the target for the subscription. * * For example, `eu-west-1` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkperformancemetricsubscription.html#cfn-ec2-networkperformancemetricsubscription-destination */ readonly destination: string; /** * The metric used for the subscription. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkperformancemetricsubscription.html#cfn-ec2-networkperformancemetricsubscription-metric */ readonly metric: string; /** * The Region or Availability Zone that's the source for the subscription. * * For example, `us-east-1` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkperformancemetricsubscription.html#cfn-ec2-networkperformancemetricsubscription-source */ readonly source: string; /** * The statistic used for the subscription. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkperformancemetricsubscription.html#cfn-ec2-networkperformancemetricsubscription-statistic */ readonly statistic: string; } /** * Specifies a placement group in which to launch instances. * * The strategy of the placement group determines how the instances are organized within the group. * * A `cluster` placement group is a logical grouping of instances within a single Availability Zone that benefit from low network latency, high network throughput. A `spread` placement group places instances on distinct hardware. A `partition` placement group places groups of instances in different partitions, where instances in one partition do not share the same hardware with instances in another partition. * * For more information, see [Placement Groups](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/placement-groups.html) in the *Amazon EC2 User Guide* . * * @cloudformationResource AWS::EC2::PlacementGroup * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-placementgroup.html */ export declare class CfnPlacementGroup extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnPlacementGroup from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnPlacementGroup; /** * The name of the placement group. * * @cloudformationAttribute GroupName */ readonly attrGroupName: string; /** * The number of partitions. */ partitionCount?: number; /** * Determines how placement groups spread instances. */ spreadLevel?: string; /** * The placement strategy. */ strategy?: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags to apply to the new placement group. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnPlacementGroupProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnPlacementGroup` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-placementgroup.html */ export interface CfnPlacementGroupProps { /** * The number of partitions. * * Valid only when *Strategy* is set to `partition` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-placementgroup.html#cfn-ec2-placementgroup-partitioncount */ readonly partitionCount?: number; /** * Determines how placement groups spread instances. * * - Host – You can use `host` only with Outpost placement groups. * - Rack – No usage restrictions. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-placementgroup.html#cfn-ec2-placementgroup-spreadlevel */ readonly spreadLevel?: string; /** * The placement strategy. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-placementgroup.html#cfn-ec2-placementgroup-strategy */ readonly strategy?: string; /** * The tags to apply to the new placement group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-placementgroup.html#cfn-ec2-placementgroup-tags */ readonly tags?: Array; } /** * Specifies a managed prefix list. * * You can add one or more entries to the prefix list. Each entry consists of a CIDR block and an optional description. * * @cloudformationResource AWS::EC2::PrefixList * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-prefixlist.html */ export declare class CfnPrefixList extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnPrefixList from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnPrefixList; /** * The ARN of the prefix list. For example, `arn:aws:ec2:us-east-1:123456789012:prefix-list/pl-0123123123123abcd` . * * @cloudformationAttribute Arn */ readonly attrArn: string; /** * The ID of the owner of the prefix list. For example, `123456789012` . * * @cloudformationAttribute OwnerId */ readonly attrOwnerId: string; /** * The ID of the prefix list. For example, `pl-0123123123123abcd` . * * @cloudformationAttribute PrefixListId */ readonly attrPrefixListId: string; /** * The version of the prefix list. For example, `1` . * * @cloudformationAttribute Version */ readonly attrVersion: number; /** * The IP address type. */ addressFamily: string; /** * The entries for the prefix list. */ entries?: Array | cdk.IResolvable; /** * The maximum number of entries for the prefix list. */ maxEntries?: number; /** * A name for the prefix list. */ prefixListName: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags for the prefix list. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnPrefixListProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnPrefixList { /** * An entry for a prefix list. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-prefixlist-entry.html */ interface EntryProperty { /** * The CIDR block. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-prefixlist-entry.html#cfn-ec2-prefixlist-entry-cidr */ readonly cidr: string; /** * A description for the entry. * * Constraints: Up to 255 characters in length. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-prefixlist-entry.html#cfn-ec2-prefixlist-entry-description */ readonly description?: string; } } /** * Properties for defining a `CfnPrefixList` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-prefixlist.html */ export interface CfnPrefixListProps { /** * The IP address type. * * Valid Values: `IPv4` | `IPv6` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-prefixlist.html#cfn-ec2-prefixlist-addressfamily */ readonly addressFamily: string; /** * The entries for the prefix list. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-prefixlist.html#cfn-ec2-prefixlist-entries */ readonly entries?: Array | cdk.IResolvable; /** * The maximum number of entries for the prefix list. * * You can't modify the entries and the size of a prefix list at the same time. * * This property is required when you create a prefix list. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-prefixlist.html#cfn-ec2-prefixlist-maxentries */ readonly maxEntries?: number; /** * A name for the prefix list. * * Constraints: Up to 255 characters in length. The name cannot start with `com.amazonaws` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-prefixlist.html#cfn-ec2-prefixlist-prefixlistname */ readonly prefixListName: string; /** * The tags for the prefix list. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-prefixlist.html#cfn-ec2-prefixlist-tags */ readonly tags?: Array; } /** * Specifies a route in a route table. For more information, see [Routes](https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Route_Tables.html#route-table-routes) in the *Amazon VPC User Guide* . * * You must specify either a destination CIDR block or prefix list ID. You must also specify exactly one of the resources as the target. * * If you create a route that references a transit gateway in the same template where you create the transit gateway, you must declare a dependency on the transit gateway attachment. The route table cannot use the transit gateway until it has successfully attached to the VPC. Add a [DependsOn Attribute](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-attribute-dependson.html) in the `AWS::EC2::Route` resource to explicitly declare a dependency on the `AWS::EC2::TransitGatewayAttachment` resource. * * @cloudformationResource AWS::EC2::Route * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html */ export declare class CfnRoute extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnRoute from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnRoute; /** * The IPv4 CIDR block. * * @cloudformationAttribute CidrBlock */ readonly attrCidrBlock: string; /** * The ID of the carrier gateway. */ carrierGatewayId?: string; /** * The Amazon Resource Name (ARN) of the core network. */ coreNetworkArn?: string; /** * The IPv4 CIDR address block used for the destination match. */ destinationCidrBlock?: string; /** * The IPv6 CIDR block used for the destination match. */ destinationIpv6CidrBlock?: string; /** * The ID of a prefix list used for the destination match. */ destinationPrefixListId?: string; /** * [IPv6 traffic only] The ID of an egress-only internet gateway. */ egressOnlyInternetGatewayId?: string; /** * The ID of an internet gateway or virtual private gateway attached to your VPC. */ gatewayId?: string; /** * The ID of a NAT instance in your VPC. */ instanceId?: string; /** * The ID of the local gateway. */ localGatewayId?: string; /** * [IPv4 traffic only] The ID of a NAT gateway. */ natGatewayId?: string; /** * The ID of a network interface. */ networkInterfaceId?: string; /** * The ID of the route table for the route. */ routeTableId: string; /** * The ID of a transit gateway. */ transitGatewayId?: string; /** * The ID of a VPC endpoint. */ vpcEndpointId?: string; /** * The ID of a VPC peering connection. */ vpcPeeringConnectionId?: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnRouteProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnRoute` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html */ export interface CfnRouteProps { /** * The ID of the carrier gateway. * * You can only use this option when the VPC contains a subnet which is associated with a Wavelength Zone. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html#cfn-ec2-route-carriergatewayid */ readonly carrierGatewayId?: string; /** * The Amazon Resource Name (ARN) of the core network. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html#cfn-ec2-route-corenetworkarn */ readonly coreNetworkArn?: string; /** * The IPv4 CIDR address block used for the destination match. * * Routing decisions are based on the most specific match. We modify the specified CIDR block to its canonical form; for example, if you specify `100.68.0.18/18` , we modify it to `100.68.0.0/18` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html#cfn-ec2-route-destinationcidrblock */ readonly destinationCidrBlock?: string; /** * The IPv6 CIDR block used for the destination match. * * Routing decisions are based on the most specific match. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html#cfn-ec2-route-destinationipv6cidrblock */ readonly destinationIpv6CidrBlock?: string; /** * The ID of a prefix list used for the destination match. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html#cfn-ec2-route-destinationprefixlistid */ readonly destinationPrefixListId?: string; /** * [IPv6 traffic only] The ID of an egress-only internet gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html#cfn-ec2-route-egressonlyinternetgatewayid */ readonly egressOnlyInternetGatewayId?: string; /** * The ID of an internet gateway or virtual private gateway attached to your VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html#cfn-ec2-route-gatewayid */ readonly gatewayId?: string; /** * The ID of a NAT instance in your VPC. * * The operation fails if you specify an instance ID unless exactly one network interface is attached. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html#cfn-ec2-route-instanceid */ readonly instanceId?: string; /** * The ID of the local gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html#cfn-ec2-route-localgatewayid */ readonly localGatewayId?: string; /** * [IPv4 traffic only] The ID of a NAT gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html#cfn-ec2-route-natgatewayid */ readonly natGatewayId?: string; /** * The ID of a network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html#cfn-ec2-route-networkinterfaceid */ readonly networkInterfaceId?: string; /** * The ID of the route table for the route. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html#cfn-ec2-route-routetableid */ readonly routeTableId: string; /** * The ID of a transit gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html#cfn-ec2-route-transitgatewayid */ readonly transitGatewayId?: string; /** * The ID of a VPC endpoint. * * Supported for Gateway Load Balancer endpoints only. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html#cfn-ec2-route-vpcendpointid */ readonly vpcEndpointId?: string; /** * The ID of a VPC peering connection. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html#cfn-ec2-route-vpcpeeringconnectionid */ readonly vpcPeeringConnectionId?: string; } /** * Specifies a route table for the specified VPC. * * After you create a route table, you can add routes and associate the table with a subnet. * * For more information, see [Route tables](https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Route_Tables.html) in the *Amazon VPC User Guide* . * * @cloudformationResource AWS::EC2::RouteTable * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routetable.html */ export declare class CfnRouteTable extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnRouteTable from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnRouteTable; /** * The ID of the route table. * * @cloudformationAttribute RouteTableId */ readonly attrRouteTableId: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * Any tags assigned to the route table. */ tagsRaw?: Array; /** * The ID of the VPC. */ vpcId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnRouteTableProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnRouteTable` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routetable.html */ export interface CfnRouteTableProps { /** * Any tags assigned to the route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routetable.html#cfn-ec2-routetable-tags */ readonly tags?: Array; /** * The ID of the VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routetable.html#cfn-ec2-routetable-vpcid */ readonly vpcId: string; } /** * Specifies a security group. * * You must specify ingress rules to allow inbound traffic. By default, no inbound traffic is allowed. * * When you create a security group, if you do not add egress rules, we add egress rules that allow all outbound IPv4 and IPv6 traffic. Otherwise, we do not add them. After the security group is created, if you remove all egress rules that you added, we do not add egress rules, so no outbound traffic is allowed. * * If you modify a rule, CloudFormation removes the existing rule and then adds a new rule. There is a brief period when neither the original rule or the new rule exists, so the corresponding traffic is dropped. * * This type supports updates. For more information about updating stacks, see [AWS CloudFormation Stacks Updates](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks.html) . * * > To cross-reference two security groups in the ingress and egress rules of those security groups, use the [AWS::EC2::SecurityGroupEgress](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-security-group-egress.html) and [AWS::EC2::SecurityGroupIngress](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-security-group-ingress.html) resources to define your rules. Do not use the embedded ingress and egress rules in the `AWS::EC2::SecurityGroup` . Doing so creates a circular dependency, which AWS CloudFormation doesn't allow. * * @cloudformationResource AWS::EC2::SecurityGroup * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroup.html */ export declare class CfnSecurityGroup extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnSecurityGroup from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnSecurityGroup; /** * The ID of the security group, such as `sg-94b3a1f6` . * * @cloudformationAttribute GroupId */ readonly attrGroupId: string; /** * The group name or group ID depending on whether the SG is created in default or specific VPC * * @cloudformationAttribute Id */ readonly attrId: string; /** * The ID of the VPC, such as `vpc-0669f8f9` . * * @cloudformationAttribute VpcId */ readonly attrVpcId: string; /** * A description for the security group. */ groupDescription: string; /** * The name of the security group. Names are case-insensitive and must be unique within the VPC. */ groupName?: string; /** * The outbound rules associated with the security group. */ securityGroupEgress?: Array | cdk.IResolvable; /** * The inbound rules associated with the security group. */ securityGroupIngress?: Array | cdk.IResolvable; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * Any tags assigned to the security group. */ tagsRaw?: Array; /** * The ID of the VPC for the security group. */ vpcId?: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnSecurityGroupProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnSecurityGroup { /** * Adds the specified outbound (egress) rule to a security group. * * An outbound rule permits instances to send traffic to the specified IPv4 or IPv6 address range, the IP address ranges that are specified by a prefix list, or the instances that are associated with a destination security group. For more information, see [Security group rules](https://docs.aws.amazon.com/vpc/latest/userguide/security-group-rules.html) . * * You must specify exactly one of the following destinations: an IPv4 address range, an IPv6 address range, a prefix list, or a security group. * * You must specify a protocol for each rule (for example, TCP). If the protocol is TCP or UDP, you must also specify a port or port range. If the protocol is ICMP or ICMPv6, you must also specify the ICMP/ICMPv6 type and code. * * Rule changes are propagated to instances associated with the security group as quickly as possible. However, a small delay might occur. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-egress.html */ interface EgressProperty { /** * The IPv4 address range, in CIDR format. * * You must specify exactly one of the following: `CidrIp` , `CidrIpv6` , `DestinationPrefixListId` , or `DestinationSecurityGroupId` . * * For examples of rules that you can add to security groups for specific access scenarios, see [Security group rules for different use cases](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/security-group-rules-reference.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-egress.html#cfn-ec2-securitygroup-egress-cidrip */ readonly cidrIp?: string; /** * The IPv6 address range, in CIDR format. * * You must specify exactly one of the following: `CidrIp` , `CidrIpv6` , `DestinationPrefixListId` , or `DestinationSecurityGroupId` . * * For examples of rules that you can add to security groups for specific access scenarios, see [Security group rules for different use cases](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/security-group-rules-reference.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-egress.html#cfn-ec2-securitygroup-egress-cidripv6 */ readonly cidrIpv6?: string; /** * A description for the security group rule. * * Constraints: Up to 255 characters in length. Allowed characters are a-z, A-Z, 0-9, spaces, and ._-:/()#,@[]+=;{}!$* * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-egress.html#cfn-ec2-securitygroup-egress-description */ readonly description?: string; /** * The prefix list IDs for the destination AWS service. * * This is the AWS service that you want to access through a VPC endpoint from instances associated with the security group. * * You must specify exactly one of the following: `CidrIp` , `CidrIpv6` , `DestinationPrefixListId` , or `DestinationSecurityGroupId` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-egress.html#cfn-ec2-securitygroup-egress-destinationprefixlistid */ readonly destinationPrefixListId?: string; /** * The ID of the destination VPC security group. * * You must specify exactly one of the following: `CidrIp` , `CidrIpv6` , `DestinationPrefixListId` , or `DestinationSecurityGroupId` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-egress.html#cfn-ec2-securitygroup-egress-destinationsecuritygroupid */ readonly destinationSecurityGroupId?: string; /** * If the protocol is TCP or UDP, this is the start of the port range. * * If the protocol is ICMP or ICMPv6, this is the ICMP type or -1 (all ICMP types). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-egress.html#cfn-ec2-securitygroup-egress-fromport */ readonly fromPort?: number; /** * The IP protocol name ( `tcp` , `udp` , `icmp` , `icmpv6` ) or number (see [Protocol Numbers](https://docs.aws.amazon.com/http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml) ). * * Use `-1` to specify all protocols. When authorizing security group rules, specifying `-1` or a protocol number other than `tcp` , `udp` , `icmp` , or `icmpv6` allows traffic on all ports, regardless of any port range you specify. For `tcp` , `udp` , and `icmp` , you must specify a port range. For `icmpv6` , the port range is optional; if you omit the port range, traffic for all types and codes is allowed. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-egress.html#cfn-ec2-securitygroup-egress-ipprotocol */ readonly ipProtocol: string; /** * If the protocol is TCP or UDP, this is the end of the port range. * * If the protocol is ICMP or ICMPv6, this is the ICMP code or -1 (all ICMP codes). If the start port is -1 (all ICMP types), then the end port must be -1 (all ICMP codes). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-egress.html#cfn-ec2-securitygroup-egress-toport */ readonly toPort?: number; } /** * Adds an inbound (ingress) rule to a security group. * * An inbound rule permits instances to receive traffic from the specified IPv4 or IPv6 address range, the IP address ranges that are specified by a prefix list, or the instances that are associated with a source security group. For more information, see [Security group rules](https://docs.aws.amazon.com/vpc/latest/userguide/security-group-rules.html) . * * You must specify exactly one of the following sources: an IPv4 address range, an IPv6 address range, a prefix list, or a security group. * * You must specify a protocol for each rule (for example, TCP). If the protocol is TCP or UDP, you must also specify a port or port range. If the protocol is ICMP or ICMPv6, you must also specify the ICMP/ICMPv6 type and code. * * Rule changes are propagated to instances associated with the security group as quickly as possible. However, a small delay might occur. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-ingress.html */ interface IngressProperty { /** * The IPv4 address range, in CIDR format. * * You must specify exactly one of the following: `CidrIp` , `CidrIpv6` , `SourcePrefixListId` , or `SourceSecurityGroupId` . * * For examples of rules that you can add to security groups for specific access scenarios, see [Security group rules for different use cases](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/security-group-rules-reference.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-ingress.html#cfn-ec2-securitygroup-ingress-cidrip */ readonly cidrIp?: string; /** * The IPv6 address range, in CIDR format. * * You must specify exactly one of the following: `CidrIp` , `CidrIpv6` , `SourcePrefixListId` , or `SourceSecurityGroupId` . * * For examples of rules that you can add to security groups for specific access scenarios, see [Security group rules for different use cases](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/security-group-rules-reference.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-ingress.html#cfn-ec2-securitygroup-ingress-cidripv6 */ readonly cidrIpv6?: string; /** * Updates the description of an ingress (inbound) security group rule. * * You can replace an existing description, or add a description to a rule that did not have one previously. * * Constraints: Up to 255 characters in length. Allowed characters are a-z, A-Z, 0-9, spaces, and ._-:/()#,@[]+=;{}!$* * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-ingress.html#cfn-ec2-securitygroup-ingress-description */ readonly description?: string; /** * If the protocol is TCP or UDP, this is the start of the port range. * * If the protocol is ICMP or ICMPv6, this is the ICMP type or -1 (all ICMP types). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-ingress.html#cfn-ec2-securitygroup-ingress-fromport */ readonly fromPort?: number; /** * The IP protocol name ( `tcp` , `udp` , `icmp` , `icmpv6` ) or number (see [Protocol Numbers](https://docs.aws.amazon.com/http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml) ). * * Use `-1` to specify all protocols. When authorizing security group rules, specifying `-1` or a protocol number other than `tcp` , `udp` , `icmp` , or `icmpv6` allows traffic on all ports, regardless of any port range you specify. For `tcp` , `udp` , and `icmp` , you must specify a port range. For `icmpv6` , the port range is optional; if you omit the port range, traffic for all types and codes is allowed. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-ingress.html#cfn-ec2-securitygroup-ingress-ipprotocol */ readonly ipProtocol: string; /** * The ID of a prefix list. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-ingress.html#cfn-ec2-securitygroup-ingress-sourceprefixlistid */ readonly sourcePrefixListId?: string; /** * The ID of the security group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-ingress.html#cfn-ec2-securitygroup-ingress-sourcesecuritygroupid */ readonly sourceSecurityGroupId?: string; /** * [Default VPC] The name of the source security group. * * You must specify either the security group ID or the security group name. You can't specify the group name in combination with an IP address range. Creates rules that grant full ICMP, UDP, and TCP access. * * For security groups in a nondefault VPC, you must specify the group ID. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-ingress.html#cfn-ec2-securitygroup-ingress-sourcesecuritygroupname */ readonly sourceSecurityGroupName?: string; /** * [nondefault VPC] The AWS account ID for the source security group, if the source security group is in a different account. * * You can't specify this property with an IP address range. Creates rules that grant full ICMP, UDP, and TCP access. * * If you specify `SourceSecurityGroupName` or `SourceSecurityGroupId` and that security group is owned by a different account than the account creating the stack, you must specify the `SourceSecurityGroupOwnerId` ; otherwise, this property is optional. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-ingress.html#cfn-ec2-securitygroup-ingress-sourcesecuritygroupownerid */ readonly sourceSecurityGroupOwnerId?: string; /** * If the protocol is TCP or UDP, this is the end of the port range. * * If the protocol is ICMP or ICMPv6, this is the ICMP code or -1 (all ICMP codes). If the start port is -1 (all ICMP types), then the end port must be -1 (all ICMP codes). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-securitygroup-ingress.html#cfn-ec2-securitygroup-ingress-toport */ readonly toPort?: number; } } /** * Properties for defining a `CfnSecurityGroup` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroup.html */ export interface CfnSecurityGroupProps { /** * A description for the security group. * * Constraints: Up to 255 characters in length * * Valid characters: a-z, A-Z, 0-9, spaces, and ._-:/()#,@[]+=&;{}!$* * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroup.html#cfn-ec2-securitygroup-groupdescription */ readonly groupDescription: string; /** * The name of the security group. Names are case-insensitive and must be unique within the VPC. * * Constraints: Up to 255 characters in length. Can't start with `sg-` . * * Valid characters: a-z, A-Z, 0-9, spaces, and ._-:/()#,@[]+=&;{}!$* * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroup.html#cfn-ec2-securitygroup-groupname */ readonly groupName?: string; /** * The outbound rules associated with the security group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroup.html#cfn-ec2-securitygroup-securitygroupegress */ readonly securityGroupEgress?: Array | cdk.IResolvable; /** * The inbound rules associated with the security group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroup.html#cfn-ec2-securitygroup-securitygroupingress */ readonly securityGroupIngress?: Array | cdk.IResolvable; /** * Any tags assigned to the security group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroup.html#cfn-ec2-securitygroup-tags */ readonly tags?: Array; /** * The ID of the VPC for the security group. * * If you do not specify a VPC, the default is to use the default VPC for the Region. If there's no specified VPC and no default VPC, security group creation fails. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroup.html#cfn-ec2-securitygroup-vpcid */ readonly vpcId?: string; } /** * Adds the specified outbound (egress) rule to a security group. * * An outbound rule permits instances to send traffic to the specified IPv4 or IPv6 address range, the IP addresses that are specified by a prefix list, or the instances that are associated with a destination security group. For more information, see [Security group rules](https://docs.aws.amazon.com/vpc/latest/userguide/security-group-rules.html) . * * You must specify exactly one of the following destinations: an IPv4 address range, an IPv6 address range, a prefix list, or a security group. * * You must specify a protocol for each rule (for example, TCP). If the protocol is TCP or UDP, you must also specify a port or port range. If the protocol is ICMP or ICMPv6, you must also specify the ICMP/ICMPv6 type and code. To specify all types or all codes, use -1. * * Rule changes are propagated to instances associated with the security group as quickly as possible. However, a small delay might occur. * * @cloudformationResource AWS::EC2::SecurityGroupEgress * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupegress.html */ export declare class CfnSecurityGroupEgress extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnSecurityGroupEgress from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnSecurityGroupEgress; /** * @cloudformationAttribute Id */ readonly attrId: string; /** * The IPv4 address range, in CIDR format. */ cidrIp?: string; /** * The IPv6 address range, in CIDR format. */ cidrIpv6?: string; /** * The description of an egress (outbound) security group rule. */ description?: string; /** * The prefix list IDs for an AWS service. */ destinationPrefixListId?: string; /** * The ID of the security group. */ destinationSecurityGroupId?: string; /** * If the protocol is TCP or UDP, this is the start of the port range. */ fromPort?: number; /** * The ID of the security group. */ groupId: string; /** * The IP protocol name ( `tcp` , `udp` , `icmp` , `icmpv6` ) or number (see [Protocol Numbers](https://docs.aws.amazon.com/http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml) ). */ ipProtocol: string; /** * If the protocol is TCP or UDP, this is the end of the port range. */ toPort?: number; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnSecurityGroupEgressProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnSecurityGroupEgress` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupegress.html */ export interface CfnSecurityGroupEgressProps { /** * The IPv4 address range, in CIDR format. * * You must specify exactly one of the following: `CidrIp` , `CidrIpv6` , `DestinationPrefixListId` , or `DestinationSecurityGroupId` . * * For examples of rules that you can add to security groups for specific access scenarios, see [Security group rules for different use cases](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/security-group-rules-reference.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupegress.html#cfn-ec2-securitygroupegress-cidrip */ readonly cidrIp?: string; /** * The IPv6 address range, in CIDR format. * * You must specify exactly one of the following: `CidrIp` , `CidrIpv6` , `DestinationPrefixListId` , or `DestinationSecurityGroupId` . * * For examples of rules that you can add to security groups for specific access scenarios, see [Security group rules for different use cases](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/security-group-rules-reference.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupegress.html#cfn-ec2-securitygroupegress-cidripv6 */ readonly cidrIpv6?: string; /** * The description of an egress (outbound) security group rule. * * Constraints: Up to 255 characters in length. Allowed characters are a-z, A-Z, 0-9, spaces, and ._-:/()#,@[]+=;{}!$* * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupegress.html#cfn-ec2-securitygroupegress-description */ readonly description?: string; /** * The prefix list IDs for an AWS service. * * This is the AWS service to access through a VPC endpoint from instances associated with the security group. * * You must specify exactly one of the following: `CidrIp` , `CidrIpv6` , `DestinationPrefixListId` , or `DestinationSecurityGroupId` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupegress.html#cfn-ec2-securitygroupegress-destinationprefixlistid */ readonly destinationPrefixListId?: string; /** * The ID of the security group. * * You must specify exactly one of the following: `CidrIp` , `CidrIpv6` , `DestinationPrefixListId` , or `DestinationSecurityGroupId` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupegress.html#cfn-ec2-securitygroupegress-destinationsecuritygroupid */ readonly destinationSecurityGroupId?: string; /** * If the protocol is TCP or UDP, this is the start of the port range. * * If the protocol is ICMP or ICMPv6, this is the ICMP type or -1 (all ICMP types). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupegress.html#cfn-ec2-securitygroupegress-fromport */ readonly fromPort?: number; /** * The ID of the security group. * * You must specify either the security group ID or the security group name in the request. For security groups in a nondefault VPC, you must specify the security group ID. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupegress.html#cfn-ec2-securitygroupegress-groupid */ readonly groupId: string; /** * The IP protocol name ( `tcp` , `udp` , `icmp` , `icmpv6` ) or number (see [Protocol Numbers](https://docs.aws.amazon.com/http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml) ). * * Use `-1` to specify all protocols. When authorizing security group rules, specifying `-1` or a protocol number other than `tcp` , `udp` , `icmp` , or `icmpv6` allows traffic on all ports, regardless of any port range you specify. For `tcp` , `udp` , and `icmp` , you must specify a port range. For `icmpv6` , the port range is optional; if you omit the port range, traffic for all types and codes is allowed. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupegress.html#cfn-ec2-securitygroupegress-ipprotocol */ readonly ipProtocol: string; /** * If the protocol is TCP or UDP, this is the end of the port range. * * If the protocol is ICMP or ICMPv6, this is the ICMP code or -1 (all ICMP codes). If the start port is -1 (all ICMP types), then the end port must be -1 (all ICMP codes). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupegress.html#cfn-ec2-securitygroupegress-toport */ readonly toPort?: number; } /** * Adds an inbound (ingress) rule to a security group. * * An inbound rule permits instances to receive traffic from the specified IPv4 or IPv6 address range, the IP addresses that are specified by a prefix list, or the instances that are associated with a source security group. For more information, see [Security group rules](https://docs.aws.amazon.com/vpc/latest/userguide/security-group-rules.html) . * * You must specify exactly one of the following sources: an IPv4 address range, an IPv6 address range, a prefix list, or a security group. * * You must specify a protocol for each rule (for example, TCP). If the protocol is TCP or UDP, you must also specify a port or port range. If the protocol is ICMP or ICMPv6, you must also specify the ICMP/ICMPv6 type and code. * * Rule changes are propagated to instances associated with the security group as quickly as possible. However, a small delay might occur. * * @cloudformationResource AWS::EC2::SecurityGroupIngress * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html */ export declare class CfnSecurityGroupIngress extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnSecurityGroupIngress from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnSecurityGroupIngress; /** * The Security Group Rule Id * * @cloudformationAttribute Id */ readonly attrId: string; /** * The IPv4 address range, in CIDR format. */ cidrIp?: string; /** * The IPv6 address range, in CIDR format. */ cidrIpv6?: string; /** * Updates the description of an ingress (inbound) security group rule. */ description?: string; /** * The start of port range for the TCP and UDP protocols, or an ICMP/ICMPv6 type number. */ fromPort?: number; /** * The ID of the security group. */ groupId?: string; /** * [Default VPC] The name of the security group. */ groupName?: string; /** * The IP protocol name ( `tcp` , `udp` , `icmp` , `icmpv6` ) or number (see [Protocol Numbers](https://docs.aws.amazon.com/http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml) ). */ ipProtocol: string; /** * The ID of a prefix list. */ sourcePrefixListId?: string; /** * The ID of the security group. */ sourceSecurityGroupId?: string; /** * [Default VPC] The name of the source security group. */ sourceSecurityGroupName?: string; /** * [nondefault VPC] The AWS account ID for the source security group, if the source security group is in a different account. */ sourceSecurityGroupOwnerId?: string; /** * The end of port range for the TCP and UDP protocols, or an ICMP/ICMPv6 code. */ toPort?: number; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnSecurityGroupIngressProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnSecurityGroupIngress` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html */ export interface CfnSecurityGroupIngressProps { /** * The IPv4 address range, in CIDR format. * * You must specify exactly one of the following: `CidrIp` , `CidrIpv6` , `SourcePrefixListId` , or `SourceSecurityGroupId` . * * For examples of rules that you can add to security groups for specific access scenarios, see [Security group rules for different use cases](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/security-group-rules-reference.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html#cfn-ec2-securitygroupingress-cidrip */ readonly cidrIp?: string; /** * The IPv6 address range, in CIDR format. * * You must specify exactly one of the following: `CidrIp` , `CidrIpv6` , `SourcePrefixListId` , or `SourceSecurityGroupId` . * * For examples of rules that you can add to security groups for specific access scenarios, see [Security group rules for different use cases](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/security-group-rules-reference.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html#cfn-ec2-securitygroupingress-cidripv6 */ readonly cidrIpv6?: string; /** * Updates the description of an ingress (inbound) security group rule. * * You can replace an existing description, or add a description to a rule that did not have one previously. * * Constraints: Up to 255 characters in length. Allowed characters are a-z, A-Z, 0-9, spaces, and ._-:/()#,@[]+=;{}!$* * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html#cfn-ec2-securitygroupingress-description */ readonly description?: string; /** * The start of port range for the TCP and UDP protocols, or an ICMP/ICMPv6 type number. * * A value of `-1` indicates all ICMP/ICMPv6 types. If you specify all ICMP/ICMPv6 types, you must specify all codes. * * Use this for ICMP and any protocol that uses ports. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html#cfn-ec2-securitygroupingress-fromport */ readonly fromPort?: number; /** * The ID of the security group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html#cfn-ec2-securitygroupingress-groupid */ readonly groupId?: string; /** * [Default VPC] The name of the security group. * * For security groups for a default VPC you can specify either the ID or the name of the security group. For security groups for a nondefault VPC, you must specify the ID of the security group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html#cfn-ec2-securitygroupingress-groupname */ readonly groupName?: string; /** * The IP protocol name ( `tcp` , `udp` , `icmp` , `icmpv6` ) or number (see [Protocol Numbers](https://docs.aws.amazon.com/http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml) ). * * Use `-1` to specify all protocols. When authorizing security group rules, specifying `-1` or a protocol number other than `tcp` , `udp` , `icmp` , or `icmpv6` allows traffic on all ports, regardless of any port range you specify. For `tcp` , `udp` , and `icmp` , you must specify a port range. For `icmpv6` , the port range is optional; if you omit the port range, traffic for all types and codes is allowed. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html#cfn-ec2-securitygroupingress-ipprotocol */ readonly ipProtocol: string; /** * The ID of a prefix list. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html#cfn-ec2-securitygroupingress-sourceprefixlistid */ readonly sourcePrefixListId?: string; /** * The ID of the security group. * * You must specify either the security group ID or the security group name. For security groups in a nondefault VPC, you must specify the security group ID. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html#cfn-ec2-securitygroupingress-sourcesecuritygroupid */ readonly sourceSecurityGroupId?: string; /** * [Default VPC] The name of the source security group. * * You must specify either the security group ID or the security group name. You can't specify the group name in combination with an IP address range. Creates rules that grant full ICMP, UDP, and TCP access. * * For security groups in a nondefault VPC, you must specify the group ID. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html#cfn-ec2-securitygroupingress-sourcesecuritygroupname */ readonly sourceSecurityGroupName?: string; /** * [nondefault VPC] The AWS account ID for the source security group, if the source security group is in a different account. * * You can't specify this property with an IP address range. Creates rules that grant full ICMP, UDP, and TCP access. * * If you specify `SourceSecurityGroupName` or `SourceSecurityGroupId` and that security group is owned by a different account than the account creating the stack, you must specify `SourceSecurityGroupOwnerId` ; otherwise, this property is optional. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html#cfn-ec2-securitygroupingress-sourcesecuritygroupownerid */ readonly sourceSecurityGroupOwnerId?: string; /** * The end of port range for the TCP and UDP protocols, or an ICMP/ICMPv6 code. * * A value of `-1` indicates all ICMP/ICMPv6 codes for the specified ICMP type. If you specify all ICMP/ICMPv6 types, you must specify all codes. * * Use this for ICMP and any protocol that uses ports. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html#cfn-ec2-securitygroupingress-toport */ readonly toPort?: number; } /** * Specifies a Spot Fleet request. * * The Spot Fleet request specifies the total target capacity and the On-Demand target capacity. Amazon EC2 calculates the difference between the total capacity and On-Demand capacity, and launches the difference as Spot capacity. * * You can submit a single request that includes multiple launch specifications that vary by instance type, AMI, Availability Zone, or subnet. * * By default, the Spot Fleet requests Spot Instances in the Spot Instance pool where the price per unit is the lowest. Each launch specification can include its own instance weighting that reflects the value of the instance type to your application workload. * * Alternatively, you can specify that the Spot Fleet distribute the target capacity across the Spot pools included in its launch specifications. By ensuring that the Spot Instances in your Spot Fleet are in different Spot pools, you can improve the availability of your fleet. * * You can specify tags for the Spot Fleet request and instances launched by the fleet. You cannot tag other resource types in a Spot Fleet request because only the `spot-fleet-request` and `instance` resource types are supported. * * For more information, see [Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet.html) in the *Amazon EC2 User Guide* . * * @cloudformationResource AWS::EC2::SpotFleet * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-spotfleet.html */ export declare class CfnSpotFleet extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnSpotFleet from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnSpotFleet; /** * The ID of the Spot Fleet. * * @cloudformationAttribute Id */ readonly attrId: string; /** * Describes the configuration of a Spot Fleet request. */ spotFleetRequestConfigData: cdk.IResolvable | CfnSpotFleet.SpotFleetRequestConfigDataProperty; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnSpotFleetProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnSpotFleet { /** * Specifies the configuration of a Spot Fleet request. * * For more information, see [Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet.html) in the *Amazon EC2 User Guide* . * * You must specify either `LaunchSpecifications` or `LaunchTemplateConfigs` . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html */ interface SpotFleetRequestConfigDataProperty { /** * The strategy that determines how to allocate the target Spot Instance capacity across the Spot Instance pools specified by the Spot Fleet launch configuration. * * For more information, see [Allocation strategies for Spot Instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-allocation-strategy.html) in the *Amazon EC2 User Guide* . * * - **priceCapacityOptimized (recommended)** - Spot Fleet identifies the pools with the highest capacity availability for the number of instances that are launching. This means that we will request Spot Instances from the pools that we believe have the lowest chance of interruption in the near term. Spot Fleet then requests Spot Instances from the lowest priced of these pools. * - **capacityOptimized** - Spot Fleet identifies the pools with the highest capacity availability for the number of instances that are launching. This means that we will request Spot Instances from the pools that we believe have the lowest chance of interruption in the near term. To give certain instance types a higher chance of launching first, use `capacityOptimizedPrioritized` . Set a priority for each instance type by using the `Priority` parameter for `LaunchTemplateOverrides` . You can assign the same priority to different `LaunchTemplateOverrides` . EC2 implements the priorities on a best-effort basis, but optimizes for capacity first. `capacityOptimizedPrioritized` is supported only if your Spot Fleet uses a launch template. Note that if the `OnDemandAllocationStrategy` is set to `prioritized` , the same priority is applied when fulfilling On-Demand capacity. * - **diversified** - Spot Fleet requests instances from all of the Spot Instance pools that you specify. * - **lowestPrice (not recommended)** - > We don't recommend the `lowestPrice` allocation strategy because it has the highest risk of interruption for your Spot Instances. * * Spot Fleet requests instances from the lowest priced Spot Instance pool that has available capacity. If the lowest priced pool doesn't have available capacity, the Spot Instances come from the next lowest priced pool that has available capacity. If a pool runs out of capacity before fulfilling your desired capacity, Spot Fleet will continue to fulfill your request by drawing from the next lowest priced pool. To ensure that your desired capacity is met, you might receive Spot Instances from several pools. Because this strategy only considers instance price and not capacity availability, it might lead to high interruption rates. * * Default: `lowestPrice` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-allocationstrategy */ readonly allocationStrategy?: string; /** * Reserved. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-context */ readonly context?: string; /** * Indicates whether running Spot Instances should be terminated if you decrease the target capacity of the Spot Fleet request below the current size of the Spot Fleet. * * Supported only for fleets of type `maintain` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-excesscapacityterminationpolicy */ readonly excessCapacityTerminationPolicy?: string; /** * The Amazon Resource Name (ARN) of an AWS Identity and Access Management (IAM) role that grants the Spot Fleet the permission to request, launch, terminate, and tag instances on your behalf. * * For more information, see [Spot Fleet Prerequisites](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-requests.html#spot-fleet-prerequisites) in the *Amazon EC2 User Guide* . Spot Fleet can terminate Spot Instances on your behalf when you cancel its Spot Fleet request or when the Spot Fleet request expires, if you set `TerminateInstancesWithExpiration` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-iamfleetrole */ readonly iamFleetRole: string; /** * The behavior when a Spot Instance is interrupted. * * The default is `terminate` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-instanceinterruptionbehavior */ readonly instanceInterruptionBehavior?: string; /** * The number of Spot pools across which to allocate your target Spot capacity. * * Valid only when Spot *AllocationStrategy* is set to `lowest-price` . Spot Fleet selects the cheapest Spot pools and evenly allocates your target Spot capacity across the number of Spot pools that you specify. * * Note that Spot Fleet attempts to draw Spot Instances from the number of pools that you specify on a best effort basis. If a pool runs out of Spot capacity before fulfilling your target capacity, Spot Fleet will continue to fulfill your request by drawing from the next cheapest pool. To ensure that your target capacity is met, you might receive Spot Instances from more than the number of pools that you specified. Similarly, if most of the pools have no Spot capacity, you might receive your full target capacity from fewer than the number of pools that you specified. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-instancepoolstousecount */ readonly instancePoolsToUseCount?: number; /** * The launch specifications for the Spot Fleet request. * * If you specify `LaunchSpecifications` , you can't specify `LaunchTemplateConfigs` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-launchspecifications */ readonly launchSpecifications?: Array | cdk.IResolvable; /** * The launch template and overrides. * * If you specify `LaunchTemplateConfigs` , you can't specify `LaunchSpecifications` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-launchtemplateconfigs */ readonly launchTemplateConfigs?: Array | cdk.IResolvable; /** * One or more Classic Load Balancers and target groups to attach to the Spot Fleet request. * * Spot Fleet registers the running Spot Instances with the specified Classic Load Balancers and target groups. * * With Network Load Balancers, Spot Fleet cannot register instances that have the following instance types: C1, CC1, CC2, CG1, CG2, CR1, CS1, G1, G2, HI1, HS1, M1, M2, M3, and T1. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-loadbalancersconfig */ readonly loadBalancersConfig?: cdk.IResolvable | CfnSpotFleet.LoadBalancersConfigProperty; /** * The order of the launch template overrides to use in fulfilling On-Demand capacity. * * If you specify `lowestPrice` , Spot Fleet uses price to determine the order, launching the lowest price first. If you specify `prioritized` , Spot Fleet uses the priority that you assign to each Spot Fleet launch template override, launching the highest priority first. If you do not specify a value, Spot Fleet defaults to `lowestPrice` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-ondemandallocationstrategy */ readonly onDemandAllocationStrategy?: string; /** * The maximum amount per hour for On-Demand Instances that you're willing to pay. * * You can use the `onDemandMaxTotalPrice` parameter, the `spotMaxTotalPrice` parameter, or both parameters to ensure that your fleet cost does not exceed your budget. If you set a maximum price per hour for the On-Demand Instances and Spot Instances in your request, Spot Fleet will launch instances until it reaches the maximum amount you're willing to pay. When the maximum amount you're willing to pay is reached, the fleet stops launching instances even if it hasn’t met the target capacity. * * > If your fleet includes T instances that are configured as `unlimited` , and if their average CPU usage exceeds the baseline utilization, you will incur a charge for surplus credits. The `onDemandMaxTotalPrice` does not account for surplus credits, and, if you use surplus credits, your final cost might be higher than what you specified for `onDemandMaxTotalPrice` . For more information, see [Surplus credits can incur charges](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/burstable-performance-instances-unlimited-mode-concepts.html#unlimited-mode-surplus-credits) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-ondemandmaxtotalprice */ readonly onDemandMaxTotalPrice?: string; /** * The number of On-Demand units to request. * * You can choose to set the target capacity in terms of instances or a performance characteristic that is important to your application workload, such as vCPUs, memory, or I/O. If the request type is `maintain` , you can specify a target capacity of 0 and add capacity later. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-ondemandtargetcapacity */ readonly onDemandTargetCapacity?: number; /** * Indicates whether Spot Fleet should replace unhealthy instances. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-replaceunhealthyinstances */ readonly replaceUnhealthyInstances?: boolean | cdk.IResolvable; /** * The strategies for managing your Spot Instances that are at an elevated risk of being interrupted. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-spotmaintenancestrategies */ readonly spotMaintenanceStrategies?: cdk.IResolvable | CfnSpotFleet.SpotMaintenanceStrategiesProperty; /** * The maximum amount per hour for Spot Instances that you're willing to pay. * * You can use the `spotMaxTotalPrice` parameter, the `onDemandMaxTotalPrice` parameter, or both parameters to ensure that your fleet cost does not exceed your budget. If you set a maximum price per hour for the On-Demand Instances and Spot Instances in your request, Spot Fleet will launch instances until it reaches the maximum amount you're willing to pay. When the maximum amount you're willing to pay is reached, the fleet stops launching instances even if it hasn’t met the target capacity. * * > If your fleet includes T instances that are configured as `unlimited` , and if their average CPU usage exceeds the baseline utilization, you will incur a charge for surplus credits. The `spotMaxTotalPrice` does not account for surplus credits, and, if you use surplus credits, your final cost might be higher than what you specified for `spotMaxTotalPrice` . For more information, see [Surplus credits can incur charges](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/burstable-performance-instances-unlimited-mode-concepts.html#unlimited-mode-surplus-credits) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-spotmaxtotalprice */ readonly spotMaxTotalPrice?: string; /** * The maximum price per unit hour that you are willing to pay for a Spot Instance. * * We do not recommend using this parameter because it can lead to increased interruptions. If you do not specify this parameter, you will pay the current Spot price. * * > If you specify a maximum price, your instances will be interrupted more frequently than if you do not specify this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-spotprice */ readonly spotPrice?: string; /** * The key-value pair for tagging the Spot Fleet request on creation. * * The value for `ResourceType` must be `spot-fleet-request` , otherwise the Spot Fleet request fails. To tag instances at launch, specify the tags in the [launch template](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-templates.html#create-launch-template) (valid only if you use `LaunchTemplateConfigs` ) or in the `[SpotFleetTagSpecification](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_SpotFleetTagSpecification.html)` (valid only if you use `LaunchSpecifications` ). For information about tagging after launch, see [Tag your resources](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Using_Tags.html#tag-resources) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-tagspecifications */ readonly tagSpecifications?: Array | cdk.IResolvable; /** * The number of units to request for the Spot Fleet. * * You can choose to set the target capacity in terms of instances or a performance characteristic that is important to your application workload, such as vCPUs, memory, or I/O. If the request type is `maintain` , you can specify a target capacity of 0 and add capacity later. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-targetcapacity */ readonly targetCapacity: number; /** * The unit for the target capacity. You can specify this parameter only when using attribute-based instance type selection. * * Default: `units` (the number of instances) * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-targetcapacityunittype */ readonly targetCapacityUnitType?: string; /** * Indicates whether running Spot Instances are terminated when the Spot Fleet request expires. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-terminateinstanceswithexpiration */ readonly terminateInstancesWithExpiration?: boolean | cdk.IResolvable; /** * The type of request. * * Indicates whether the Spot Fleet only requests the target capacity or also attempts to maintain it. When this value is `request` , the Spot Fleet only places the required requests. It does not attempt to replenish Spot Instances if capacity is diminished, nor does it submit requests in alternative Spot pools if capacity is not available. When this value is `maintain` , the Spot Fleet maintains the target capacity. The Spot Fleet places the required requests to meet capacity and automatically replenishes any interrupted instances. Default: `maintain` . `instant` is listed but is not used by Spot Fleet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-type */ readonly type?: string; /** * The start date and time of the request, in UTC format ( *YYYY* - *MM* - *DD* T *HH* : *MM* : *SS* Z). * * By default, Amazon EC2 starts fulfilling the request immediately. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-validfrom */ readonly validFrom?: string; /** * The end date and time of the request, in UTC format ( *YYYY* - *MM* - *DD* T *HH* : *MM* : *SS* Z). * * After the end date and time, no new Spot Instance requests are placed or able to fulfill the request. If no value is specified, the Spot Fleet request remains until you cancel it. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetrequestconfigdata.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata-validuntil */ readonly validUntil?: string; } /** * The tags for a Spot Fleet resource. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleettagspecification.html */ interface SpotFleetTagSpecificationProperty { /** * The type of resource. * * Currently, the only resource type that is supported is `instance` . To tag the Spot Fleet request on creation, use the `TagSpecifications` parameter in `[SpotFleetRequestConfigData](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_SpotFleetRequestConfigData.html)` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleettagspecification.html#cfn-ec2-spotfleet-spotfleettagspecification-resourcetype */ readonly resourceType?: string; /** * The tags. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleettagspecification.html#cfn-ec2-spotfleet-spotfleettagspecification-tags */ readonly tags?: Array; } /** * Specifies a launch template and overrides. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-launchtemplateconfig.html */ interface LaunchTemplateConfigProperty { /** * The launch template to use. * * Make sure that the launch template does not contain the `NetworkInterfaceId` parameter because you can't specify a network interface ID in a Spot Fleet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-launchtemplateconfig.html#cfn-ec2-spotfleet-launchtemplateconfig-launchtemplatespecification */ readonly launchTemplateSpecification?: CfnSpotFleet.FleetLaunchTemplateSpecificationProperty | cdk.IResolvable; /** * Any parameters that you specify override the same parameters in the launch template. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-launchtemplateconfig.html#cfn-ec2-spotfleet-launchtemplateconfig-overrides */ readonly overrides?: Array | cdk.IResolvable; } /** * Specifies the launch template to be used by the Spot Fleet request for configuring Amazon EC2 instances. * * You must specify the following: * * - The ID or the name of the launch template, but not both. * - The version of the launch template. * * `FleetLaunchTemplateSpecification` is a property of the [AWS::EC2::SpotFleet](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-spotfleet.html) resource. * * For information about creating a launch template, see [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html) and [Create a launch template](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-templates.html#create-launch-template) in the *Amazon EC2 User Guide* . * * For examples of launch templates, see [Examples](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#aws-resource-ec2-launchtemplate--examples) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-fleetlaunchtemplatespecification.html */ interface FleetLaunchTemplateSpecificationProperty { /** * The ID of the launch template. * * You must specify the `LaunchTemplateId` or the `LaunchTemplateName` , but not both. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-fleetlaunchtemplatespecification.html#cfn-ec2-spotfleet-fleetlaunchtemplatespecification-launchtemplateid */ readonly launchTemplateId?: string; /** * The name of the launch template. * * You must specify the `LaunchTemplateName` or the `LaunchTemplateId` , but not both. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-fleetlaunchtemplatespecification.html#cfn-ec2-spotfleet-fleetlaunchtemplatespecification-launchtemplatename */ readonly launchTemplateName?: string; /** * The version number of the launch template. * * Specifying `$Latest` or `$Default` for the template version number is not supported. However, you can specify `LatestVersionNumber` or `DefaultVersionNumber` using the `Fn::GetAtt` intrinsic function. For more information, see [Fn::GetAtt](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#aws-resource-ec2-launchtemplate-return-values-fn--getatt) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-fleetlaunchtemplatespecification.html#cfn-ec2-spotfleet-fleetlaunchtemplatespecification-version */ readonly version: string; } /** * Specifies overrides for a launch template. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-launchtemplateoverrides.html */ interface LaunchTemplateOverridesProperty { /** * The Availability Zone in which to launch the instances. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-launchtemplateoverrides.html#cfn-ec2-spotfleet-launchtemplateoverrides-availabilityzone */ readonly availabilityZone?: string; /** * The instance requirements. * * When you specify instance requirements, Amazon EC2 will identify instance types with the provided requirements, and then use your On-Demand and Spot allocation strategies to launch instances from these instance types, in the same way as when you specify a list of instance types. * * > If you specify `InstanceRequirements` , you can't specify `InstanceType` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-launchtemplateoverrides.html#cfn-ec2-spotfleet-launchtemplateoverrides-instancerequirements */ readonly instanceRequirements?: CfnSpotFleet.InstanceRequirementsRequestProperty | cdk.IResolvable; /** * The instance type. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-launchtemplateoverrides.html#cfn-ec2-spotfleet-launchtemplateoverrides-instancetype */ readonly instanceType?: string; /** * The priority for the launch template override. The highest priority is launched first. * * If `OnDemandAllocationStrategy` is set to `prioritized` , Spot Fleet uses priority to determine which launch template override to use first in fulfilling On-Demand capacity. * * If the Spot `AllocationStrategy` is set to `capacityOptimizedPrioritized` , Spot Fleet uses priority on a best-effort basis to determine which launch template override to use in fulfilling Spot capacity, but optimizes for capacity first. * * Valid values are whole numbers starting at `0` . The lower the number, the higher the priority. If no number is set, the launch template override has the lowest priority. You can set the same priority for different launch template overrides. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-launchtemplateoverrides.html#cfn-ec2-spotfleet-launchtemplateoverrides-priority */ readonly priority?: number; /** * The maximum price per unit hour that you are willing to pay for a Spot Instance. * * We do not recommend using this parameter because it can lead to increased interruptions. If you do not specify this parameter, you will pay the current Spot price. * * > If you specify a maximum price, your instances will be interrupted more frequently than if you do not specify this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-launchtemplateoverrides.html#cfn-ec2-spotfleet-launchtemplateoverrides-spotprice */ readonly spotPrice?: string; /** * The ID of the subnet in which to launch the instances. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-launchtemplateoverrides.html#cfn-ec2-spotfleet-launchtemplateoverrides-subnetid */ readonly subnetId?: string; /** * The number of units provided by the specified instance type. * * These are the same units that you chose to set the target capacity in terms of instances, or a performance characteristic such as vCPUs, memory, or I/O. * * If the target capacity divided by this value is not a whole number, Amazon EC2 rounds the number of instances to the next whole number. If this value is not specified, the default is 1. * * > When specifying weights, the price used in the `lowestPrice` and `priceCapacityOptimized` allocation strategies is per *unit* hour (where the instance price is divided by the specified weight). However, if all the specified weights are above the requested `TargetCapacity` , resulting in only 1 instance being launched, the price used is per *instance* hour. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-launchtemplateoverrides.html#cfn-ec2-spotfleet-launchtemplateoverrides-weightedcapacity */ readonly weightedCapacity?: number; } /** * The attributes for the instance types. * * When you specify instance attributes, Amazon EC2 will identify instance types with these attributes. * * You must specify `VCpuCount` and `MemoryMiB` . All other attributes are optional. Any unspecified optional attribute is set to its default. * * When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values. * * To limit the list of instance types from which Amazon EC2 can identify matching instance types, you can use one of the following parameters, but not both in the same request: * * - `AllowedInstanceTypes` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes. * - `ExcludedInstanceTypes` - The instance types to exclude from the list, even if they match your specified attributes. * * > If you specify `InstanceRequirements` , you can't specify `InstanceType` . * > * > Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html) , or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify `InstanceRequirements` . * * For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html */ interface InstanceRequirementsRequestProperty { /** * The minimum and maximum number of accelerators (GPUs, FPGAs, or AWS Inferentia chips) on an instance. * * To exclude accelerator-enabled instance types, set `Max` to `0` . * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-acceleratorcount */ readonly acceleratorCount?: CfnSpotFleet.AcceleratorCountRequestProperty | cdk.IResolvable; /** * Indicates whether instance types must have accelerators by specific manufacturers. * * - For instance types with AWS devices, specify `amazon-web-services` . * - For instance types with AMD devices, specify `amd` . * - For instance types with Habana devices, specify `habana` . * - For instance types with NVIDIA devices, specify `nvidia` . * - For instance types with Xilinx devices, specify `xilinx` . * * Default: Any manufacturer * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-acceleratormanufacturers */ readonly acceleratorManufacturers?: Array; /** * The accelerators that must be on the instance type. * * - For instance types with NVIDIA A10G GPUs, specify `a10g` . * - For instance types with NVIDIA A100 GPUs, specify `a100` . * - For instance types with NVIDIA H100 GPUs, specify `h100` . * - For instance types with AWS Inferentia chips, specify `inferentia` . * - For instance types with NVIDIA GRID K520 GPUs, specify `k520` . * - For instance types with NVIDIA K80 GPUs, specify `k80` . * - For instance types with NVIDIA M60 GPUs, specify `m60` . * - For instance types with AMD Radeon Pro V520 GPUs, specify `radeon-pro-v520` . * - For instance types with NVIDIA T4 GPUs, specify `t4` . * - For instance types with NVIDIA T4G GPUs, specify `t4g` . * - For instance types with Xilinx VU9P FPGAs, specify `vu9p` . * - For instance types with NVIDIA V100 GPUs, specify `v100` . * * Default: Any accelerator * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-acceleratornames */ readonly acceleratorNames?: Array; /** * The minimum and maximum amount of total accelerator memory, in MiB. * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-acceleratortotalmemorymib */ readonly acceleratorTotalMemoryMiB?: CfnSpotFleet.AcceleratorTotalMemoryMiBRequestProperty | cdk.IResolvable; /** * The accelerator types that must be on the instance type. * * - For instance types with FPGA accelerators, specify `fpga` . * - For instance types with GPU accelerators, specify `gpu` . * - For instance types with Inference accelerators, specify `inference` . * * Default: Any accelerator type * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-acceleratortypes */ readonly acceleratorTypes?: Array; /** * The instance types to apply your specified attributes against. * * All other instance types are ignored, even if they match your specified attributes. * * You can use strings with one or more wild cards, represented by an asterisk ( `*` ), to allow an instance type, size, or generation. The following are examples: `m5.8xlarge` , `c5*.*` , `m5a.*` , `r*` , `*3*` . * * For example, if you specify `c5*` ,Amazon EC2 will allow the entire C5 instance family, which includes all C5a and C5n instance types. If you specify `m5a.*` , Amazon EC2 will allow all the M5a instance types, but not the M5n instance types. * * > If you specify `AllowedInstanceTypes` , you can't specify `ExcludedInstanceTypes` . * * Default: All instance types * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-allowedinstancetypes */ readonly allowedInstanceTypes?: Array; /** * Indicates whether bare metal instance types must be included, excluded, or required. * * - To include bare metal instance types, specify `included` . * - To require only bare metal instance types, specify `required` . * - To exclude bare metal instance types, specify `excluded` . * * Default: `excluded` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-baremetal */ readonly bareMetal?: string; /** * The minimum and maximum baseline bandwidth to Amazon EBS, in Mbps. * * For more information, see [Amazon EBS–optimized instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ebs-optimized.html) in the *Amazon EC2 User Guide* . * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-baselineebsbandwidthmbps */ readonly baselineEbsBandwidthMbps?: CfnSpotFleet.BaselineEbsBandwidthMbpsRequestProperty | cdk.IResolvable; /** * The baseline performance to consider, using an instance family as a baseline reference. * * The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-baselineperformancefactors */ readonly baselinePerformanceFactors?: CfnSpotFleet.BaselinePerformanceFactorsRequestProperty | cdk.IResolvable; /** * Indicates whether burstable performance T instance types are included, excluded, or required. * * For more information, see [Burstable performance instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/burstable-performance-instances.html) . * * - To include burstable performance instance types, specify `included` . * - To require only burstable performance instance types, specify `required` . * - To exclude burstable performance instance types, specify `excluded` . * * Default: `excluded` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-burstableperformance */ readonly burstablePerformance?: string; /** * The CPU manufacturers to include. * * - For instance types with Intel CPUs, specify `intel` . * - For instance types with AMD CPUs, specify `amd` . * - For instance types with AWS CPUs, specify `amazon-web-services` . * - For instance types with Apple CPUs, specify `apple` . * * > Don't confuse the CPU manufacturer with the CPU architecture. Instances will be launched with a compatible CPU architecture based on the Amazon Machine Image (AMI) that you specify in your launch template. * * Default: Any manufacturer * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-cpumanufacturers */ readonly cpuManufacturers?: Array; /** * The instance types to exclude. * * You can use strings with one or more wild cards, represented by an asterisk ( `*` ), to exclude an instance family, type, size, or generation. The following are examples: `m5.8xlarge` , `c5*.*` , `m5a.*` , `r*` , `*3*` . * * For example, if you specify `c5*` ,Amazon EC2 will exclude the entire C5 instance family, which includes all C5a and C5n instance types. If you specify `m5a.*` , Amazon EC2 will exclude all the M5a instance types, but not the M5n instance types. * * > If you specify `ExcludedInstanceTypes` , you can't specify `AllowedInstanceTypes` . * * Default: No excluded instance types * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-excludedinstancetypes */ readonly excludedInstanceTypes?: Array; /** * Indicates whether current or previous generation instance types are included. * * The current generation instance types are recommended for use. Current generation instance types are typically the latest two to three generations in each instance family. For more information, see [Instance types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html) in the *Amazon EC2 User Guide* . * * For current generation instance types, specify `current` . * * For previous generation instance types, specify `previous` . * * Default: Current and previous generation instance types * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-instancegenerations */ readonly instanceGenerations?: Array; /** * Indicates whether instance types with instance store volumes are included, excluded, or required. * * For more information, [Amazon EC2 instance store](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/InstanceStorage.html) in the *Amazon EC2 User Guide* . * * - To include instance types with instance store volumes, specify `included` . * - To require only instance types with instance store volumes, specify `required` . * - To exclude instance types with instance store volumes, specify `excluded` . * * Default: `included` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-localstorage */ readonly localStorage?: string; /** * The type of local storage that is required. * * - For instance types with hard disk drive (HDD) storage, specify `hdd` . * - For instance types with solid state drive (SSD) storage, specify `ssd` . * * Default: `hdd` and `ssd` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-localstoragetypes */ readonly localStorageTypes?: Array; /** * [Price protection] The price protection threshold for Spot Instances, as a percentage of an identified On-Demand price. * * The identified On-Demand price is the price of the lowest priced current generation C, M, or R instance type with your specified attributes. If no current generation C, M, or R instance type matches your attributes, then the identified price is from the lowest priced current generation instance types, and failing that, from the lowest priced previous generation instance types that match your attributes. When Amazon EC2 selects instance types with your attributes, it will exclude instance types whose price exceeds your specified threshold. * * The parameter accepts an integer, which Amazon EC2 interprets as a percentage. * * If you set `TargetCapacityUnitType` to `vcpu` or `memory-mib` , the price protection threshold is based on the per vCPU or per memory price instead of the per instance price. * * > Only one of `SpotMaxPricePercentageOverLowestPrice` or `MaxSpotPriceAsPercentageOfOptimalOnDemandPrice` can be specified. If you don't specify either, Amazon EC2 will automatically apply optimal price protection to consistently select from a wide range of instance types. To indicate no price protection threshold for Spot Instances, meaning you want to consider all instance types that match your attributes, include one of these parameters and specify a high value, such as `999999` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-maxspotpriceaspercentageofoptimalondemandprice */ readonly maxSpotPriceAsPercentageOfOptimalOnDemandPrice?: number; /** * The minimum and maximum amount of memory per vCPU, in GiB. * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-memorygibpervcpu */ readonly memoryGiBPerVCpu?: cdk.IResolvable | CfnSpotFleet.MemoryGiBPerVCpuRequestProperty; /** * The minimum and maximum amount of memory, in MiB. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-memorymib */ readonly memoryMiB?: cdk.IResolvable | CfnSpotFleet.MemoryMiBRequestProperty; /** * The minimum and maximum amount of baseline network bandwidth, in gigabits per second (Gbps). * * For more information, see [Amazon EC2 instance network bandwidth](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-network-bandwidth.html) in the *Amazon EC2 User Guide* . * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-networkbandwidthgbps */ readonly networkBandwidthGbps?: cdk.IResolvable | CfnSpotFleet.NetworkBandwidthGbpsRequestProperty; /** * The minimum and maximum number of network interfaces. * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-networkinterfacecount */ readonly networkInterfaceCount?: cdk.IResolvable | CfnSpotFleet.NetworkInterfaceCountRequestProperty; /** * [Price protection] The price protection threshold for On-Demand Instances, as a percentage higher than an identified On-Demand price. * * The identified On-Demand price is the price of the lowest priced current generation C, M, or R instance type with your specified attributes. When Amazon EC2 selects instance types with your attributes, it will exclude instance types whose price exceeds your specified threshold. * * The parameter accepts an integer, which Amazon EC2 interprets as a percentage. * * To indicate no price protection threshold, specify a high value, such as `999999` . * * This parameter is not supported for [GetSpotPlacementScores](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetSpotPlacementScores.html) and [GetInstanceTypesFromInstanceRequirements](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetInstanceTypesFromInstanceRequirements.html) . * * > If you set `TargetCapacityUnitType` to `vcpu` or `memory-mib` , the price protection threshold is applied based on the per-vCPU or per-memory price instead of the per-instance price. * * Default: `20` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-ondemandmaxpricepercentageoverlowestprice */ readonly onDemandMaxPricePercentageOverLowestPrice?: number; /** * Indicates whether instance types must support hibernation for On-Demand Instances. * * This parameter is not supported for [GetSpotPlacementScores](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetSpotPlacementScores.html) . * * Default: `false` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-requirehibernatesupport */ readonly requireHibernateSupport?: boolean | cdk.IResolvable; /** * [Price protection] The price protection threshold for Spot Instances, as a percentage higher than an identified Spot price. * * The identified Spot price is the Spot price of the lowest priced current generation C, M, or R instance type with your specified attributes. If no current generation C, M, or R instance type matches your attributes, then the identified Spot price is from the lowest priced current generation instance types, and failing that, from the lowest priced previous generation instance types that match your attributes. When Amazon EC2 selects instance types with your attributes, it will exclude instance types whose Spot price exceeds your specified threshold. * * The parameter accepts an integer, which Amazon EC2 interprets as a percentage. * * If you set `TargetCapacityUnitType` to `vcpu` or `memory-mib` , the price protection threshold is applied based on the per-vCPU or per-memory price instead of the per-instance price. * * This parameter is not supported for [GetSpotPlacementScores](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetSpotPlacementScores.html) and [GetInstanceTypesFromInstanceRequirements](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetInstanceTypesFromInstanceRequirements.html) . * * > Only one of `SpotMaxPricePercentageOverLowestPrice` or `MaxSpotPriceAsPercentageOfOptimalOnDemandPrice` can be specified. If you don't specify either, Amazon EC2 will automatically apply optimal price protection to consistently select from a wide range of instance types. To indicate no price protection threshold for Spot Instances, meaning you want to consider all instance types that match your attributes, include one of these parameters and specify a high value, such as `999999` . * * Default: `100` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-spotmaxpricepercentageoverlowestprice */ readonly spotMaxPricePercentageOverLowestPrice?: number; /** * The minimum and maximum amount of total local storage, in GB. * * Default: No minimum or maximum limits * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-totallocalstoragegb */ readonly totalLocalStorageGb?: cdk.IResolvable | CfnSpotFleet.TotalLocalStorageGBRequestProperty; /** * The minimum and maximum number of vCPUs. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancerequirementsrequest.html#cfn-ec2-spotfleet-instancerequirementsrequest-vcpucount */ readonly vCpuCount?: cdk.IResolvable | CfnSpotFleet.VCpuCountRangeRequestProperty; } /** * The minimum and maximum number of network interfaces. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-networkinterfacecountrequest.html */ interface NetworkInterfaceCountRequestProperty { /** * The maximum number of network interfaces. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-networkinterfacecountrequest.html#cfn-ec2-spotfleet-networkinterfacecountrequest-max */ readonly max?: number; /** * The minimum number of network interfaces. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-networkinterfacecountrequest.html#cfn-ec2-spotfleet-networkinterfacecountrequest-min */ readonly min?: number; } /** * The minimum and maximum amount of memory per vCPU, in GiB. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-memorygibpervcpurequest.html */ interface MemoryGiBPerVCpuRequestProperty { /** * The maximum amount of memory per vCPU, in GiB. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-memorygibpervcpurequest.html#cfn-ec2-spotfleet-memorygibpervcpurequest-max */ readonly max?: number; /** * The minimum amount of memory per vCPU, in GiB. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-memorygibpervcpurequest.html#cfn-ec2-spotfleet-memorygibpervcpurequest-min */ readonly min?: number; } /** * The minimum and maximum number of vCPUs. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-vcpucountrangerequest.html */ interface VCpuCountRangeRequestProperty { /** * The maximum number of vCPUs. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-vcpucountrangerequest.html#cfn-ec2-spotfleet-vcpucountrangerequest-max */ readonly max?: number; /** * The minimum number of vCPUs. * * To specify no minimum limit, specify `0` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-vcpucountrangerequest.html#cfn-ec2-spotfleet-vcpucountrangerequest-min */ readonly min?: number; } /** * The minimum and maximum amount of baseline network bandwidth, in gigabits per second (Gbps). * * For more information, see [Amazon EC2 instance network bandwidth](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-network-bandwidth.html) in the *Amazon EC2 User Guide* . * * Default: No minimum or maximum limits * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-networkbandwidthgbpsrequest.html */ interface NetworkBandwidthGbpsRequestProperty { /** * The maximum amount of network bandwidth, in Gbps. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-networkbandwidthgbpsrequest.html#cfn-ec2-spotfleet-networkbandwidthgbpsrequest-max */ readonly max?: number; /** * The minimum amount of network bandwidth, in Gbps. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-networkbandwidthgbpsrequest.html#cfn-ec2-spotfleet-networkbandwidthgbpsrequest-min */ readonly min?: number; } /** * The minimum and maximum number of accelerators (GPUs, FPGAs, or AWS Inferentia chips) on an instance. * * To exclude accelerator-enabled instance types, set `Max` to `0` . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-acceleratorcountrequest.html */ interface AcceleratorCountRequestProperty { /** * The maximum number of accelerators. * * To specify no maximum limit, omit this parameter. To exclude accelerator-enabled instance types, set `Max` to `0` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-acceleratorcountrequest.html#cfn-ec2-spotfleet-acceleratorcountrequest-max */ readonly max?: number; /** * The minimum number of accelerators. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-acceleratorcountrequest.html#cfn-ec2-spotfleet-acceleratorcountrequest-min */ readonly min?: number; } /** * The minimum and maximum baseline bandwidth to Amazon EBS, in Mbps. * * For more information, see [Amazon EBS–optimized instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ebs-optimized.html) in the *Amazon EC2 User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-baselineebsbandwidthmbpsrequest.html */ interface BaselineEbsBandwidthMbpsRequestProperty { /** * The maximum baseline bandwidth, in Mbps. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-baselineebsbandwidthmbpsrequest.html#cfn-ec2-spotfleet-baselineebsbandwidthmbpsrequest-max */ readonly max?: number; /** * The minimum baseline bandwidth, in Mbps. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-baselineebsbandwidthmbpsrequest.html#cfn-ec2-spotfleet-baselineebsbandwidthmbpsrequest-min */ readonly min?: number; } /** * The minimum and maximum amount of total accelerator memory, in MiB. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-acceleratortotalmemorymibrequest.html */ interface AcceleratorTotalMemoryMiBRequestProperty { /** * The maximum amount of accelerator memory, in MiB. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-acceleratortotalmemorymibrequest.html#cfn-ec2-spotfleet-acceleratortotalmemorymibrequest-max */ readonly max?: number; /** * The minimum amount of accelerator memory, in MiB. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-acceleratortotalmemorymibrequest.html#cfn-ec2-spotfleet-acceleratortotalmemorymibrequest-min */ readonly min?: number; } /** * The minimum and maximum amount of memory, in MiB. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-memorymibrequest.html */ interface MemoryMiBRequestProperty { /** * The maximum amount of memory, in MiB. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-memorymibrequest.html#cfn-ec2-spotfleet-memorymibrequest-max */ readonly max?: number; /** * The minimum amount of memory, in MiB. * * To specify no minimum limit, specify `0` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-memorymibrequest.html#cfn-ec2-spotfleet-memorymibrequest-min */ readonly min?: number; } /** * The minimum and maximum amount of total local storage, in GB. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-totallocalstoragegbrequest.html */ interface TotalLocalStorageGBRequestProperty { /** * The maximum amount of total local storage, in GB. * * To specify no maximum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-totallocalstoragegbrequest.html#cfn-ec2-spotfleet-totallocalstoragegbrequest-max */ readonly max?: number; /** * The minimum amount of total local storage, in GB. * * To specify no minimum limit, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-totallocalstoragegbrequest.html#cfn-ec2-spotfleet-totallocalstoragegbrequest-min */ readonly min?: number; } /** * The baseline performance to consider, using an instance family as a baseline reference. * * The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. * * Currently, this parameter only supports CPU performance as a baseline performance factor. For example, specifying `c6i` would use the CPU performance of the `c6i` family as the baseline reference. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-baselineperformancefactorsrequest.html */ interface BaselinePerformanceFactorsRequestProperty { /** * The CPU performance to consider, using an instance family as the baseline reference. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-baselineperformancefactorsrequest.html#cfn-ec2-spotfleet-baselineperformancefactorsrequest-cpu */ readonly cpu?: CfnSpotFleet.CpuPerformanceFactorRequestProperty | cdk.IResolvable; } /** * The CPU performance to consider, using an instance family as the baseline reference. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-cpuperformancefactorrequest.html */ interface CpuPerformanceFactorRequestProperty { /** * Specify an instance family to use as the baseline reference for CPU performance. * * All instance types that match your specified attributes will be compared against the CPU performance of the referenced instance family, regardless of CPU manufacturer or architecture differences. * * > Currently, only one instance family can be specified in the list. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-cpuperformancefactorrequest.html#cfn-ec2-spotfleet-cpuperformancefactorrequest-references */ readonly references?: Array | cdk.IResolvable; } /** * Specify an instance family to use as the baseline reference for CPU performance. * * All instance types that match your specified attributes will be compared against the CPU performance of the referenced instance family, regardless of CPU manufacturer or architecture. * * > Currently, only one instance family can be specified in the list. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-performancefactorreferencerequest.html */ interface PerformanceFactorReferenceRequestProperty { /** * The instance family to use as a baseline reference. * * > Ensure that you specify the correct value for the instance family. The instance family is everything before the period ( `.` ) in the instance type name. For example, in the instance type `c6i.large` , the instance family is `c6i` , not `c6` . For more information, see [Amazon EC2 instance type naming conventions](https://docs.aws.amazon.com/ec2/latest/instancetypes/instance-type-names.html) in *Amazon EC2 Instance Types* . * * The following instance families are *not supported* for performance protection: * * - `c1` * - `g3` | `g3s` * - `hpc7g` * - `m1` | `m2` * - `mac1` | `mac2` | `mac2-m1ultra` | `mac2-m2` | `mac2-m2pro` * - `p3dn` | `p4d` | `p5` * - `t1` * - `u-12tb1` | `u-18tb1` | `u-24tb1` | `u-3tb1` | `u-6tb1` | `u-9tb1` | `u7i-12tb` | `u7in-16tb` | `u7in-24tb` | `u7in-32tb` * * If you enable performance protection by specifying a supported instance family, the returned instance types will exclude the above unsupported instance families. * * If you specify an unsupported instance family as a value for baseline performance, the API returns an empty response for [GetInstanceTypesFromInstanceRequirements](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetInstanceTypesFromInstanceRequirements.html) and an exception for [CreateFleet](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateFleet.html) , [RequestSpotFleet](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RequestSpotFleet.html) , [ModifyFleet](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ModifyFleet.html) , and [ModifySpotFleetRequest](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ModifySpotFleetRequest.html) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-performancefactorreferencerequest.html#cfn-ec2-spotfleet-performancefactorreferencerequest-instancefamily */ readonly instanceFamily?: string; } /** * The strategies for managing your Spot Instances that are at an elevated risk of being interrupted. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotmaintenancestrategies.html */ interface SpotMaintenanceStrategiesProperty { /** * The Spot Instance replacement strategy to use when Amazon EC2 emits a signal that your Spot Instance is at an elevated risk of being interrupted. * * For more information, see [Capacity rebalancing](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-capacity-rebalance.html) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotmaintenancestrategies.html#cfn-ec2-spotfleet-spotmaintenancestrategies-capacityrebalance */ readonly capacityRebalance?: cdk.IResolvable | CfnSpotFleet.SpotCapacityRebalanceProperty; } /** * The Spot Instance replacement strategy to use when Amazon EC2 emits a signal that your Spot Instance is at an elevated risk of being interrupted. * * For more information, see [Capacity rebalancing](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-capacity-rebalance.html) in the *Amazon EC2 User Guide* . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotcapacityrebalance.html */ interface SpotCapacityRebalanceProperty { /** * The replacement strategy to use. Only available for fleets of type `maintain` . * * `launch` - Spot Fleet launches a new replacement Spot Instance when a rebalance notification is emitted for an existing Spot Instance in the fleet. Spot Fleet does not terminate the instances that receive a rebalance notification. You can terminate the old instances, or you can leave them running. You are charged for all instances while they are running. * * `launch-before-terminate` - Spot Fleet launches a new replacement Spot Instance when a rebalance notification is emitted for an existing Spot Instance in the fleet, and then, after a delay that you specify (in `TerminationDelay` ), terminates the instances that received a rebalance notification. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotcapacityrebalance.html#cfn-ec2-spotfleet-spotcapacityrebalance-replacementstrategy */ readonly replacementStrategy?: string; /** * The amount of time (in seconds) that Amazon EC2 waits before terminating the old Spot Instance after launching a new replacement Spot Instance. * * Required when `ReplacementStrategy` is set to `launch-before-terminate` . * * Not valid when `ReplacementStrategy` is set to `launch` . * * Valid values: Minimum value of `120` seconds. Maximum value of `7200` seconds. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotcapacityrebalance.html#cfn-ec2-spotfleet-spotcapacityrebalance-terminationdelay */ readonly terminationDelay?: number; } /** * Specifies the launch specification for one or more Spot Instances. * * If you include On-Demand capacity in your fleet request, you can't use `SpotFleetLaunchSpecification` ; you must use [LaunchTemplateConfig](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-launchtemplateconfig.html) . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html */ interface SpotFleetLaunchSpecificationProperty { /** * One or more block devices that are mapped to the Spot Instances. * * You can't specify both a snapshot ID and an encryption value. This is because only blank volumes can be encrypted on creation. If a snapshot is the basis for a volume, it is not blank and its encryption status is used for the volume encryption status. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-blockdevicemappings */ readonly blockDeviceMappings?: Array | cdk.IResolvable; /** * Indicates whether the instances are optimized for EBS I/O. * * This optimization provides dedicated throughput to Amazon EBS and an optimized configuration stack to provide optimal EBS I/O performance. This optimization isn't available with all instance types. Additional usage charges apply when using an EBS Optimized instance. * * Default: `false` * * @default - false * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-ebsoptimized */ readonly ebsOptimized?: boolean | cdk.IResolvable; /** * The IAM instance profile. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-iaminstanceprofile */ readonly iamInstanceProfile?: CfnSpotFleet.IamInstanceProfileSpecificationProperty | cdk.IResolvable; /** * The ID of the AMI. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-imageid */ readonly imageId: string; /** * The attributes for the instance types. * * When you specify instance attributes, Amazon EC2 will identify instance types with those attributes. * * > If you specify `InstanceRequirements` , you can't specify `InstanceType` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-instancerequirements */ readonly instanceRequirements?: CfnSpotFleet.InstanceRequirementsRequestProperty | cdk.IResolvable; /** * The instance type. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-instancetype */ readonly instanceType?: string; /** * The ID of the kernel. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-kernelid */ readonly kernelId?: string; /** * The name of the key pair. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-keyname */ readonly keyName?: string; /** * Enable or disable monitoring for the instances. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-monitoring */ readonly monitoring?: cdk.IResolvable | CfnSpotFleet.SpotFleetMonitoringProperty; /** * The network interfaces. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-networkinterfaces */ readonly networkInterfaces?: Array | cdk.IResolvable; /** * The placement information. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-placement */ readonly placement?: cdk.IResolvable | CfnSpotFleet.SpotPlacementProperty; /** * The ID of the RAM disk. * * Some kernels require additional drivers at launch. Check the kernel requirements for information about whether you need to specify a RAM disk. To find kernel requirements, refer to the AWS Resource Center and search for the kernel ID. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-ramdiskid */ readonly ramdiskId?: string; /** * The security groups. * * If you specify a network interface, you must specify any security groups as part of the network interface instead of using this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-securitygroups */ readonly securityGroups?: Array | cdk.IResolvable; /** * The maximum price per unit hour that you are willing to pay for a Spot Instance. * * We do not recommend using this parameter because it can lead to increased interruptions. If you do not specify this parameter, you will pay the current Spot price. * * > If you specify a maximum price, your instances will be interrupted more frequently than if you do not specify this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-spotprice */ readonly spotPrice?: string; /** * The IDs of the subnets in which to launch the instances. * * To specify multiple subnets, separate them using commas; for example, "subnet-1234abcdeexample1, subnet-0987cdef6example2". * * If you specify a network interface, you must specify any subnets as part of the network interface instead of using this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-subnetid */ readonly subnetId?: string; /** * The tags to apply during creation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-tagspecifications */ readonly tagSpecifications?: Array | cdk.IResolvable; /** * The base64-encoded user data that instances use when starting up. * * User data is limited to 16 KB. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-userdata */ readonly userData?: string; /** * The number of units provided by the specified instance type. * * These are the same units that you chose to set the target capacity in terms of instances, or a performance characteristic such as vCPUs, memory, or I/O. * * If the target capacity divided by this value is not a whole number, Amazon EC2 rounds the number of instances to the next whole number. If this value is not specified, the default is 1. * * > When specifying weights, the price used in the `lowestPrice` and `priceCapacityOptimized` allocation strategies is per *unit* hour (where the instance price is divided by the specified weight). However, if all the specified weights are above the requested `TargetCapacity` , resulting in only 1 instance being launched, the price used is per *instance* hour. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetlaunchspecification.html#cfn-ec2-spotfleet-spotfleetlaunchspecification-weightedcapacity */ readonly weightedCapacity?: number; } /** * Describes a security group. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-groupidentifier.html */ interface GroupIdentifierProperty { /** * The ID of the security group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-groupidentifier.html#cfn-ec2-spotfleet-groupidentifier-groupid */ readonly groupId: string; } /** * Specifies a block device mapping. * * You can specify `Ebs` or `VirtualName` , but not both. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-blockdevicemapping.html */ interface BlockDeviceMappingProperty { /** * The device name (for example, `/dev/sdh` or `xvdh` ). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-blockdevicemapping.html#cfn-ec2-spotfleet-blockdevicemapping-devicename */ readonly deviceName: string; /** * Parameters used to automatically set up EBS volumes when the instance is launched. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-blockdevicemapping.html#cfn-ec2-spotfleet-blockdevicemapping-ebs */ readonly ebs?: CfnSpotFleet.EbsBlockDeviceProperty | cdk.IResolvable; /** * To omit the device from the block device mapping, specify an empty string. * * When this property is specified, the device is removed from the block device mapping regardless of the assigned value. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-blockdevicemapping.html#cfn-ec2-spotfleet-blockdevicemapping-nodevice */ readonly noDevice?: string; /** * The virtual device name ( `ephemeral` N). * * Instance store volumes are numbered starting from 0. An instance type with 2 available instance store volumes can specify mappings for `ephemeral0` and `ephemeral1` . The number of available instance store volumes depends on the instance type. After you connect to the instance, you must mount the volume. * * NVMe instance store volumes are automatically enumerated and assigned a device name. Including them in your block device mapping has no effect. * * Constraints: For M3 instances, you must specify instance store volumes in the block device mapping for the instance. When you launch an M3 instance, we ignore any instance store volumes specified in the block device mapping for the AMI. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-blockdevicemapping.html#cfn-ec2-spotfleet-blockdevicemapping-virtualname */ readonly virtualName?: string; } /** * Describes a block device for an EBS volume. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-ebsblockdevice.html */ interface EbsBlockDeviceProperty { /** * Indicates whether the EBS volume is deleted on instance termination. * * For more information, see [Preserving Amazon EBS volumes on instance termination](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/terminating-instances.html#preserving-volumes-on-termination) in the *Amazon EC2 User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-ebsblockdevice.html#cfn-ec2-spotfleet-ebsblockdevice-deleteontermination */ readonly deleteOnTermination?: boolean | cdk.IResolvable; /** * Indicates whether the encryption state of an EBS volume is changed while being restored from a backing snapshot. * * The effect of setting the encryption state to `true` depends on the volume origin (new or from a snapshot), starting encryption state, ownership, and whether encryption by default is enabled. For more information, see [Amazon EBS Encryption](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html#encryption-parameters) in the *Amazon EC2 User Guide* . * * In no case can you remove encryption from an encrypted volume. * * Encrypted volumes can only be attached to instances that support Amazon EBS encryption. For more information, see [Supported Instance Types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html#EBSEncryption_supported_instances) . * * This parameter is not returned by [DescribeImageAttribute](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DescribeImageAttribute.html) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-ebsblockdevice.html#cfn-ec2-spotfleet-ebsblockdevice-encrypted */ readonly encrypted?: boolean | cdk.IResolvable; /** * The number of I/O operations per second (IOPS). * * For `gp3` , `io1` , and `io2` volumes, this represents the number of IOPS that are provisioned for the volume. For `gp2` volumes, this represents the baseline performance of the volume and the rate at which the volume accumulates I/O credits for bursting. * * The following are the supported values for each volume type: * * - `gp3` : 3,000 - 16,000 IOPS * - `io1` : 100 - 64,000 IOPS * - `io2` : 100 - 256,000 IOPS * * For `io2` volumes, you can achieve up to 256,000 IOPS on [instances built on the Nitro System](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html#ec2-nitro-instances) . On other instances, you can achieve performance up to 32,000 IOPS. * * This parameter is required for `io1` and `io2` volumes. The default for `gp3` volumes is 3,000 IOPS. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-ebsblockdevice.html#cfn-ec2-spotfleet-ebsblockdevice-iops */ readonly iops?: number; /** * The ID of the snapshot. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-ebsblockdevice.html#cfn-ec2-spotfleet-ebsblockdevice-snapshotid */ readonly snapshotId?: string; /** * The size of the volume, in GiBs. * * You must specify either a snapshot ID or a volume size. If you specify a snapshot, the default is the snapshot size. You can specify a volume size that is equal to or larger than the snapshot size. * * The following are the supported sizes for each volume type: * * - `gp2` and `gp3` : 1 - 16,384 GiB * - `io1` : 4 - 16,384 GiB * - `io2` : 4 - 65,536 GiB * - `st1` and `sc1` : 125 - 16,384 GiB * - `standard` : 1 - 1024 GiB * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-ebsblockdevice.html#cfn-ec2-spotfleet-ebsblockdevice-volumesize */ readonly volumeSize?: number; /** * The volume type. * * For more information, see [Amazon EBS volume types](https://docs.aws.amazon.com/ebs/latest/userguide/ebs-volume-types.html) in the *Amazon EBS User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-ebsblockdevice.html#cfn-ec2-spotfleet-ebsblockdevice-volumetype */ readonly volumeType?: string; } /** * Describes an IAM instance profile. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-iaminstanceprofilespecification.html */ interface IamInstanceProfileSpecificationProperty { /** * The Amazon Resource Name (ARN) of the instance profile. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-iaminstanceprofilespecification.html#cfn-ec2-spotfleet-iaminstanceprofilespecification-arn */ readonly arn?: string; } /** * Describes Spot Instance placement. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotplacement.html */ interface SpotPlacementProperty { /** * The Availability Zone. * * To specify multiple Availability Zones, separate them using commas; for example, "us-west-2a, us-west-2b". * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotplacement.html#cfn-ec2-spotfleet-spotplacement-availabilityzone */ readonly availabilityZone?: string; /** * The name of the placement group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotplacement.html#cfn-ec2-spotfleet-spotplacement-groupname */ readonly groupName?: string; /** * The tenancy of the instance (if the instance is running in a VPC). * * An instance with a tenancy of `dedicated` runs on single-tenant hardware. The `host` tenancy is not supported for Spot Instances. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotplacement.html#cfn-ec2-spotfleet-spotplacement-tenancy */ readonly tenancy?: string; } /** * Describes a network interface. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancenetworkinterfacespecification.html */ interface InstanceNetworkInterfaceSpecificationProperty { /** * Indicates whether to assign a public IPv4 address to an instance you launch in a VPC. * * The public IP address can only be assigned to a network interface for eth0, and can only be assigned to a new network interface, not an existing one. You cannot specify more than one network interface in the request. If launching into a default subnet, the default value is `true` . * * AWS charges for all public IPv4 addresses, including public IPv4 addresses associated with running instances and Elastic IP addresses. For more information, see the *Public IPv4 Address* tab on the [Amazon VPC pricing page](https://docs.aws.amazon.com/vpc/pricing/) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancenetworkinterfacespecification.html#cfn-ec2-spotfleet-instancenetworkinterfacespecification-associatepublicipaddress */ readonly associatePublicIpAddress?: boolean | cdk.IResolvable; /** * Indicates whether the network interface is deleted when the instance is terminated. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancenetworkinterfacespecification.html#cfn-ec2-spotfleet-instancenetworkinterfacespecification-deleteontermination */ readonly deleteOnTermination?: boolean | cdk.IResolvable; /** * The description of the network interface. * * Applies only if creating a network interface when launching an instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancenetworkinterfacespecification.html#cfn-ec2-spotfleet-instancenetworkinterfacespecification-description */ readonly description?: string; /** * The position of the network interface in the attachment order. * * A primary network interface has a device index of 0. * * If you specify a network interface when launching an instance, you must specify the device index. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancenetworkinterfacespecification.html#cfn-ec2-spotfleet-instancenetworkinterfacespecification-deviceindex */ readonly deviceIndex?: number; /** * The IDs of the security groups for the network interface. * * Applies only if creating a network interface when launching an instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancenetworkinterfacespecification.html#cfn-ec2-spotfleet-instancenetworkinterfacespecification-groups */ readonly groups?: Array; /** * A number of IPv6 addresses to assign to the network interface. * * Amazon EC2 chooses the IPv6 addresses from the range of the subnet. You cannot specify this option and the option to assign specific IPv6 addresses in the same request. You can specify this option if you've specified a minimum number of instances to launch. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancenetworkinterfacespecification.html#cfn-ec2-spotfleet-instancenetworkinterfacespecification-ipv6addresscount */ readonly ipv6AddressCount?: number; /** * The IPv6 addresses to assign to the network interface. * * You cannot specify this option and the option to assign a number of IPv6 addresses in the same request. You cannot specify this option if you've specified a minimum number of instances to launch. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancenetworkinterfacespecification.html#cfn-ec2-spotfleet-instancenetworkinterfacespecification-ipv6addresses */ readonly ipv6Addresses?: Array | cdk.IResolvable; /** * The ID of the network interface. * * If you are creating a Spot Fleet, omit this parameter because you can’t specify a network interface ID in a launch specification. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancenetworkinterfacespecification.html#cfn-ec2-spotfleet-instancenetworkinterfacespecification-networkinterfaceid */ readonly networkInterfaceId?: string; /** * The private IPv4 addresses to assign to the network interface. * * Only one private IPv4 address can be designated as primary. You cannot specify this option if you're launching more than one instance in a [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) request. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancenetworkinterfacespecification.html#cfn-ec2-spotfleet-instancenetworkinterfacespecification-privateipaddresses */ readonly privateIpAddresses?: Array | cdk.IResolvable; /** * The number of secondary private IPv4 addresses. * * You can’t specify this parameter and also specify a secondary private IP address using the `PrivateIpAddress` parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancenetworkinterfacespecification.html#cfn-ec2-spotfleet-instancenetworkinterfacespecification-secondaryprivateipaddresscount */ readonly secondaryPrivateIpAddressCount?: number; /** * The ID of the subnet associated with the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instancenetworkinterfacespecification.html#cfn-ec2-spotfleet-instancenetworkinterfacespecification-subnetid */ readonly subnetId?: string; } /** * Describes a secondary private IPv4 address for a network interface. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-privateipaddressspecification.html */ interface PrivateIpAddressSpecificationProperty { /** * Indicates whether the private IPv4 address is the primary private IPv4 address. * * Only one IPv4 address can be designated as primary. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-privateipaddressspecification.html#cfn-ec2-spotfleet-privateipaddressspecification-primary */ readonly primary?: boolean | cdk.IResolvable; /** * The private IPv4 address. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-privateipaddressspecification.html#cfn-ec2-spotfleet-privateipaddressspecification-privateipaddress */ readonly privateIpAddress: string; } /** * Describes an IPv6 address. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instanceipv6address.html */ interface InstanceIpv6AddressProperty { /** * The IPv6 address. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-instanceipv6address.html#cfn-ec2-spotfleet-instanceipv6address-ipv6address */ readonly ipv6Address: string; } /** * Describes whether monitoring is enabled. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetmonitoring.html */ interface SpotFleetMonitoringProperty { /** * Enables monitoring for the instance. * * Default: `false` * * @default - false * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-spotfleetmonitoring.html#cfn-ec2-spotfleet-spotfleetmonitoring-enabled */ readonly enabled?: boolean | cdk.IResolvable; } /** * Specifies the Classic Load Balancers and target groups to attach to a Spot Fleet request. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-loadbalancersconfig.html */ interface LoadBalancersConfigProperty { /** * The Classic Load Balancers. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-loadbalancersconfig.html#cfn-ec2-spotfleet-loadbalancersconfig-classicloadbalancersconfig */ readonly classicLoadBalancersConfig?: CfnSpotFleet.ClassicLoadBalancersConfigProperty | cdk.IResolvable; /** * The target groups. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-loadbalancersconfig.html#cfn-ec2-spotfleet-loadbalancersconfig-targetgroupsconfig */ readonly targetGroupsConfig?: cdk.IResolvable | CfnSpotFleet.TargetGroupsConfigProperty; } /** * Specifies the Classic Load Balancers to attach to a Spot Fleet. * * Spot Fleet registers the running Spot Instances with these Classic Load Balancers. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-classicloadbalancersconfig.html */ interface ClassicLoadBalancersConfigProperty { /** * One or more Classic Load Balancers. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-classicloadbalancersconfig.html#cfn-ec2-spotfleet-classicloadbalancersconfig-classicloadbalancers */ readonly classicLoadBalancers: Array | cdk.IResolvable; } /** * Specifies a Classic Load Balancer. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-classicloadbalancer.html */ interface ClassicLoadBalancerProperty { /** * The name of the load balancer. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-classicloadbalancer.html#cfn-ec2-spotfleet-classicloadbalancer-name */ readonly name: string; } /** * Describes the target groups to attach to a Spot Fleet. * * Spot Fleet registers the running Spot Instances with these target groups. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-targetgroupsconfig.html */ interface TargetGroupsConfigProperty { /** * One or more target groups. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-targetgroupsconfig.html#cfn-ec2-spotfleet-targetgroupsconfig-targetgroups */ readonly targetGroups: Array | cdk.IResolvable; } /** * Describes a load balancer target group. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-targetgroup.html */ interface TargetGroupProperty { /** * The Amazon Resource Name (ARN) of the target group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-spotfleet-targetgroup.html#cfn-ec2-spotfleet-targetgroup-arn */ readonly arn: string; } } /** * Properties for defining a `CfnSpotFleet` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-spotfleet.html */ export interface CfnSpotFleetProps { /** * Describes the configuration of a Spot Fleet request. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-spotfleet.html#cfn-ec2-spotfleet-spotfleetrequestconfigdata */ readonly spotFleetRequestConfigData: cdk.IResolvable | CfnSpotFleet.SpotFleetRequestConfigDataProperty; } /** * Specifies a subnet for the specified VPC. * * For an IPv4 only subnet, specify an IPv4 CIDR block. If the VPC has an IPv6 CIDR block, you can create an IPv6 only subnet or a dual stack subnet instead. For an IPv6 only subnet, specify an IPv6 CIDR block. For a dual stack subnet, specify both an IPv4 CIDR block and an IPv6 CIDR block. * * For more information, see [Subnets for your VPC](https://docs.aws.amazon.com/vpc/latest/userguide/configure-subnets.html) in the *Amazon VPC User Guide* . * * @cloudformationResource AWS::EC2::Subnet * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html */ export declare class CfnSubnet extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnSubnet from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnSubnet; /** * The Availability Zone of this subnet. For example, `us-east-1a` . * * @cloudformationAttribute AvailabilityZone */ readonly attrAvailabilityZone: string; /** * The Availability Zone ID of this subnet. For example, `use1-az1` . * * @cloudformationAttribute AvailabilityZoneId */ readonly attrAvailabilityZoneId: string; /** * @cloudformationAttribute BlockPublicAccessStates */ readonly attrBlockPublicAccessStates: cdk.IResolvable; /** * The IPv4 CIDR blocks that are associated with the subnet. * * @cloudformationAttribute CidrBlock */ readonly attrCidrBlock: string; /** * The IPv6 CIDR blocks that are associated with the subnet. * * @cloudformationAttribute Ipv6CidrBlocks */ readonly attrIpv6CidrBlocks: Array; /** * The ID of the network ACL that is associated with the subnet's VPC, such as `acl-5fb85d36` . * * @cloudformationAttribute NetworkAclAssociationId */ readonly attrNetworkAclAssociationId: string; /** * The Amazon Resource Name (ARN) of the Outpost. * * @cloudformationAttribute OutpostArn */ readonly attrOutpostArn: string; /** * The ID of the subnet. * * @cloudformationAttribute SubnetId */ readonly attrSubnetId: string; /** * The ID of the subnet's VPC, such as `vpc-11ad4878` . * * @cloudformationAttribute VpcId */ readonly attrVpcId: string; /** * Indicates whether a network interface created in this subnet receives an IPv6 address. The default value is `false` . */ assignIpv6AddressOnCreation?: boolean | cdk.IResolvable; /** * The Availability Zone of the subnet. */ availabilityZone?: string; /** * The AZ ID of the subnet. */ availabilityZoneId?: string; /** * The IPv4 CIDR block assigned to the subnet. */ cidrBlock?: string; /** * Indicates whether DNS queries made to the Amazon-provided DNS Resolver in this subnet should return synthetic IPv6 addresses for IPv4-only destinations. */ enableDns64?: boolean | cdk.IResolvable; /** * Indicates the device position for local network interfaces in this subnet. */ enableLniAtDeviceIndex?: number; /** * An IPv4 IPAM pool ID for the subnet. */ ipv4IpamPoolId?: string; /** * An IPv4 netmask length for the subnet. */ ipv4NetmaskLength?: number; /** * The IPv6 CIDR block. */ ipv6CidrBlock?: string; /** * An IPv6 IPAM pool ID for the subnet. */ ipv6IpamPoolId?: string; /** * Indicates whether this is an IPv6 only subnet. */ ipv6Native?: boolean | cdk.IResolvable; /** * An IPv6 netmask length for the subnet. */ ipv6NetmaskLength?: number; /** * Indicates whether instances launched in this subnet receive a public IPv4 address. The default value is `false` . */ mapPublicIpOnLaunch?: boolean | cdk.IResolvable; /** * The Amazon Resource Name (ARN) of the Outpost. */ outpostArn?: string; /** * The hostname type for EC2 instances launched into this subnet and how DNS A and AAAA record queries to the instances should be handled. */ privateDnsNameOptionsOnLaunch?: any | cdk.IResolvable; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * Any tags assigned to the subnet. */ tagsRaw?: Array; /** * The ID of the VPC the subnet is in. */ vpcId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnSubnetProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnSubnet { /** * Describes the options for instance hostnames. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-subnet-privatednsnameoptionsonlaunch.html */ interface PrivateDnsNameOptionsOnLaunchProperty { /** * Indicates whether to respond to DNS queries for instance hostname with DNS AAAA records. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-subnet-privatednsnameoptionsonlaunch.html#cfn-ec2-subnet-privatednsnameoptionsonlaunch-enableresourcenamednsaaaarecord */ readonly enableResourceNameDnsAaaaRecord?: boolean | cdk.IResolvable; /** * Indicates whether to respond to DNS queries for instance hostnames with DNS A records. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-subnet-privatednsnameoptionsonlaunch.html#cfn-ec2-subnet-privatednsnameoptionsonlaunch-enableresourcenamednsarecord */ readonly enableResourceNameDnsARecord?: boolean | cdk.IResolvable; /** * The type of hostname for EC2 instances. * * For IPv4 only subnets, an instance DNS name must be based on the instance IPv4 address. For IPv6 only subnets, an instance DNS name must be based on the instance ID. For dual-stack subnets, you can specify whether DNS names use the instance IPv4 address or the instance ID. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-subnet-privatednsnameoptionsonlaunch.html#cfn-ec2-subnet-privatednsnameoptionsonlaunch-hostnametype */ readonly hostnameType?: string; } /** * The state of VPC Block Public Access (BPA). * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-subnet-blockpublicaccessstates.html */ interface BlockPublicAccessStatesProperty { /** * The mode of VPC BPA. * * - `off` : VPC BPA is not enabled and traffic is allowed to and from internet gateways and egress-only internet gateways in this Region. * - `block-bidirectional` : Block all traffic to and from internet gateways and egress-only internet gateways in this Region (except for excluded VPCs and subnets). * - `block-ingress` : Block all internet traffic to the VPCs in this Region (except for VPCs or subnets which are excluded). Only traffic to and from NAT gateways and egress-only internet gateways is allowed because these gateways only allow outbound connections to be established. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-subnet-blockpublicaccessstates.html#cfn-ec2-subnet-blockpublicaccessstates-internetgatewayblockmode */ readonly internetGatewayBlockMode?: string; } } /** * Properties for defining a `CfnSubnet` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html */ export interface CfnSubnetProps { /** * Indicates whether a network interface created in this subnet receives an IPv6 address. The default value is `false` . * * If you specify `AssignIpv6AddressOnCreation` , you must also specify an IPv6 CIDR block. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-assignipv6addressoncreation */ readonly assignIpv6AddressOnCreation?: boolean | cdk.IResolvable; /** * The Availability Zone of the subnet. * * If you update this property, you must also update the `CidrBlock` property. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-availabilityzone */ readonly availabilityZone?: string; /** * The AZ ID of the subnet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-availabilityzoneid */ readonly availabilityZoneId?: string; /** * The IPv4 CIDR block assigned to the subnet. * * If you update this property, we create a new subnet, and then delete the existing one. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-cidrblock */ readonly cidrBlock?: string; /** * Indicates whether DNS queries made to the Amazon-provided DNS Resolver in this subnet should return synthetic IPv6 addresses for IPv4-only destinations. * * > You must first configure a NAT gateway in a public subnet (separate from the subnet containing the IPv6-only workloads). For example, the subnet containing the NAT gateway should have a `0.0.0.0/0` route pointing to the internet gateway. For more information, see [Configure DNS64 and NAT64](https://docs.aws.amazon.com/vpc/latest/userguide/nat-gateway-nat64-dns64.html#nat-gateway-nat64-dns64-walkthrough) in the *Amazon Virtual Private Cloud User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-enabledns64 */ readonly enableDns64?: boolean | cdk.IResolvable; /** * Indicates the device position for local network interfaces in this subnet. * * For example, `1` indicates local network interfaces in this subnet are the secondary network interface (eth1). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-enablelniatdeviceindex */ readonly enableLniAtDeviceIndex?: number; /** * An IPv4 IPAM pool ID for the subnet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-ipv4ipampoolid */ readonly ipv4IpamPoolId?: string; /** * An IPv4 netmask length for the subnet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-ipv4netmasklength */ readonly ipv4NetmaskLength?: number; /** * The IPv6 CIDR block. * * If you specify `AssignIpv6AddressOnCreation` , you must also specify an IPv6 CIDR block. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-ipv6cidrblock */ readonly ipv6CidrBlock?: string; /** * An IPv6 IPAM pool ID for the subnet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-ipv6ipampoolid */ readonly ipv6IpamPoolId?: string; /** * Indicates whether this is an IPv6 only subnet. * * For more information, see [Subnet basics](https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Subnets.html#subnet-basics) in the *Amazon Virtual Private Cloud User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-ipv6native */ readonly ipv6Native?: boolean | cdk.IResolvable; /** * An IPv6 netmask length for the subnet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-ipv6netmasklength */ readonly ipv6NetmaskLength?: number; /** * Indicates whether instances launched in this subnet receive a public IPv4 address. The default value is `false` . * * AWS charges for all public IPv4 addresses, including public IPv4 addresses associated with running instances and Elastic IP addresses. For more information, see the *Public IPv4 Address* tab on the [VPC pricing page](https://docs.aws.amazon.com/vpc/pricing/) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-mappubliciponlaunch */ readonly mapPublicIpOnLaunch?: boolean | cdk.IResolvable; /** * The Amazon Resource Name (ARN) of the Outpost. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-outpostarn */ readonly outpostArn?: string; /** * The hostname type for EC2 instances launched into this subnet and how DNS A and AAAA record queries to the instances should be handled. * * For more information, see [Amazon EC2 instance hostname types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-naming.html) in the *Amazon Elastic Compute Cloud User Guide* . * * Available options: * * - EnableResourceNameDnsAAAARecord (true | false) * - EnableResourceNameDnsARecord (true | false) * - HostnameType (ip-name | resource-name) * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-privatednsnameoptionsonlaunch */ readonly privateDnsNameOptionsOnLaunch?: any | cdk.IResolvable; /** * Any tags assigned to the subnet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-tags */ readonly tags?: Array; /** * The ID of the VPC the subnet is in. * * If you update this property, you must also update the `CidrBlock` property. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnet.html#cfn-ec2-subnet-vpcid */ readonly vpcId: string; } /** * Associates a CIDR block with your subnet. * * You can associate a single IPv6 CIDR block with your subnet. * * @cloudformationResource AWS::EC2::SubnetCidrBlock * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnetcidrblock.html */ export declare class CfnSubnetCidrBlock extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnSubnetCidrBlock from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnSubnetCidrBlock; /** * The ID of the association. * * @cloudformationAttribute Id */ readonly attrId: string; /** * The source that allocated the IP address space. `byoip` or `amazon` indicates public IP address space allocated by Amazon or space that you have allocated with Bring your own IP (BYOIP). `none` indicates private space. * * @cloudformationAttribute IpSource */ readonly attrIpSource: string; /** * Public IPv6 addresses are those advertised on the internet from AWS . Private IP addresses are not and cannot be advertised on the internet from AWS . * * @cloudformationAttribute Ipv6AddressAttribute */ readonly attrIpv6AddressAttribute: string; /** * The IPv6 network range for the subnet, in CIDR notation. */ ipv6CidrBlock?: string; /** * An IPv6 IPAM pool ID for the subnet. */ ipv6IpamPoolId?: string; /** * An IPv6 netmask length for the subnet. */ ipv6NetmaskLength?: number; /** * The ID of the subnet. */ subnetId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnSubnetCidrBlockProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnSubnetCidrBlock` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnetcidrblock.html */ export interface CfnSubnetCidrBlockProps { /** * The IPv6 network range for the subnet, in CIDR notation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnetcidrblock.html#cfn-ec2-subnetcidrblock-ipv6cidrblock */ readonly ipv6CidrBlock?: string; /** * An IPv6 IPAM pool ID for the subnet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnetcidrblock.html#cfn-ec2-subnetcidrblock-ipv6ipampoolid */ readonly ipv6IpamPoolId?: string; /** * An IPv6 netmask length for the subnet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnetcidrblock.html#cfn-ec2-subnetcidrblock-ipv6netmasklength */ readonly ipv6NetmaskLength?: number; /** * The ID of the subnet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnetcidrblock.html#cfn-ec2-subnetcidrblock-subnetid */ readonly subnetId: string; } /** * Associates a subnet with a network ACL. For more information, see [ReplaceNetworkAclAssociation](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/ApiReference-query-ReplaceNetworkAclAssociation.html) in the *Amazon EC2 API Reference* . * * When `AWS::EC2::SubnetNetworkAclAssociation` resources are created during create or update operations, AWS CloudFormation adopts existing resources that share the same key properties (the properties that contribute to uniquely identify the resource). However, if the operation fails and rolls back, AWS CloudFormation deletes the previously out-of-band resources. You can protect against this behavior by using `Retain` deletion policies. For more information, see [DeletionPolicy Attribute](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-attribute-deletionpolicy.html) . * * @cloudformationResource AWS::EC2::SubnetNetworkAclAssociation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnetnetworkaclassociation.html */ export declare class CfnSubnetNetworkAclAssociation extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnSubnetNetworkAclAssociation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnSubnetNetworkAclAssociation; /** * Returns the value of this object's AssociationId property. * * @cloudformationAttribute AssociationId */ readonly attrAssociationId: string; /** * The ID of the network ACL. */ networkAclId: string; /** * The ID of the subnet. */ subnetId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnSubnetNetworkAclAssociationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnSubnetNetworkAclAssociation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnetnetworkaclassociation.html */ export interface CfnSubnetNetworkAclAssociationProps { /** * The ID of the network ACL. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnetnetworkaclassociation.html#cfn-ec2-subnetnetworkaclassociation-networkaclid */ readonly networkAclId: string; /** * The ID of the subnet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnetnetworkaclassociation.html#cfn-ec2-subnetnetworkaclassociation-subnetid */ readonly subnetId: string; } /** * Associates a subnet with a route table. * * The subnet and route table must be in the same VPC. This association causes traffic originating from the subnet to be routed according to the routes in the route table. A route table can be associated with multiple subnets. To create a route table, see [AWS::EC2::RouteTable](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routetable.html) . * * @cloudformationResource AWS::EC2::SubnetRouteTableAssociation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnetroutetableassociation.html */ export declare class CfnSubnetRouteTableAssociation extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnSubnetRouteTableAssociation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnSubnetRouteTableAssociation; /** * The ID of the subnet route table association. * * @cloudformationAttribute Id */ readonly attrId: string; /** * The ID of the route table. */ routeTableId: string; /** * The ID of the subnet. */ subnetId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnSubnetRouteTableAssociationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnSubnetRouteTableAssociation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnetroutetableassociation.html */ export interface CfnSubnetRouteTableAssociationProps { /** * The ID of the route table. * * The physical ID changes when the route table ID is changed. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnetroutetableassociation.html#cfn-ec2-subnetroutetableassociation-routetableid */ readonly routeTableId: string; /** * The ID of the subnet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-subnetroutetableassociation.html#cfn-ec2-subnetroutetableassociation-subnetid */ readonly subnetId: string; } /** * Specifies a Traffic Mirror filter. * * A Traffic Mirror filter is a set of rules that defines the traffic to mirror. * * By default, no traffic is mirrored. To mirror traffic, use [AWS::EC2::TrafficMirrorFilterRule](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilterrule.html) to add Traffic Mirror rules to the filter. The rules you add define what traffic gets mirrored. * * @cloudformationResource AWS::EC2::TrafficMirrorFilter * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilter.html */ export declare class CfnTrafficMirrorFilter extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTrafficMirrorFilter from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTrafficMirrorFilter; /** * The ID of a traffic mirror filter. * * @cloudformationAttribute Id */ readonly attrId: string; /** * The description of the Traffic Mirror filter. */ description?: string; /** * The network service traffic that is associated with the Traffic Mirror filter. */ networkServices?: Array; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags to assign to a Traffic Mirror filter. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnTrafficMirrorFilterProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnTrafficMirrorFilter` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilter.html */ export interface CfnTrafficMirrorFilterProps { /** * The description of the Traffic Mirror filter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilter.html#cfn-ec2-trafficmirrorfilter-description */ readonly description?: string; /** * The network service traffic that is associated with the Traffic Mirror filter. * * Valid values are `amazon-dns` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilter.html#cfn-ec2-trafficmirrorfilter-networkservices */ readonly networkServices?: Array; /** * The tags to assign to a Traffic Mirror filter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilter.html#cfn-ec2-trafficmirrorfilter-tags */ readonly tags?: Array; } /** * Creates a Traffic Mirror filter rule. * * A Traffic Mirror rule defines the Traffic Mirror source traffic to mirror. * * You need the Traffic Mirror filter ID when you create the rule. * * @cloudformationResource AWS::EC2::TrafficMirrorFilterRule * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilterrule.html */ export declare class CfnTrafficMirrorFilterRule extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggableV2 { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTrafficMirrorFilterRule from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTrafficMirrorFilterRule; /** * @cloudformationAttribute Id */ readonly attrId: string; /** * The ID of the Traffic Mirror Filter rule. * * @cloudformationAttribute TrafficMirrorFilterRuleId */ readonly attrTrafficMirrorFilterRuleId: string; /** * Tag Manager which manages the tags for this resource */ readonly cdkTagManager: cdk.TagManager; /** * The description of the Traffic Mirror rule. */ description?: string; /** * The destination CIDR block to assign to the Traffic Mirror rule. */ destinationCidrBlock: string; /** * The destination port range. */ destinationPortRange?: cdk.IResolvable | CfnTrafficMirrorFilterRule.TrafficMirrorPortRangeProperty; /** * The protocol, for example UDP, to assign to the Traffic Mirror rule. */ protocol?: number; /** * The action to take on the filtered traffic. */ ruleAction: string; /** * The number of the Traffic Mirror rule. */ ruleNumber: number; /** * The source CIDR block to assign to the Traffic Mirror rule. */ sourceCidrBlock: string; /** * The source port range. */ sourcePortRange?: cdk.IResolvable | CfnTrafficMirrorFilterRule.TrafficMirrorPortRangeProperty; /** * Tags on Traffic Mirroring filter rules. */ tags?: Array; /** * The type of traffic. */ trafficDirection: string; /** * The ID of the filter that this rule is associated with. */ trafficMirrorFilterId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnTrafficMirrorFilterRuleProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnTrafficMirrorFilterRule { /** * Describes the Traffic Mirror port range. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-trafficmirrorfilterrule-trafficmirrorportrange.html */ interface TrafficMirrorPortRangeProperty { /** * The start of the Traffic Mirror port range. * * This applies to the TCP and UDP protocols. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-trafficmirrorfilterrule-trafficmirrorportrange.html#cfn-ec2-trafficmirrorfilterrule-trafficmirrorportrange-fromport */ readonly fromPort: number; /** * The end of the Traffic Mirror port range. * * This applies to the TCP and UDP protocols. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-trafficmirrorfilterrule-trafficmirrorportrange.html#cfn-ec2-trafficmirrorfilterrule-trafficmirrorportrange-toport */ readonly toPort: number; } } /** * Properties for defining a `CfnTrafficMirrorFilterRule` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilterrule.html */ export interface CfnTrafficMirrorFilterRuleProps { /** * The description of the Traffic Mirror rule. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilterrule.html#cfn-ec2-trafficmirrorfilterrule-description */ readonly description?: string; /** * The destination CIDR block to assign to the Traffic Mirror rule. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilterrule.html#cfn-ec2-trafficmirrorfilterrule-destinationcidrblock */ readonly destinationCidrBlock: string; /** * The destination port range. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilterrule.html#cfn-ec2-trafficmirrorfilterrule-destinationportrange */ readonly destinationPortRange?: cdk.IResolvable | CfnTrafficMirrorFilterRule.TrafficMirrorPortRangeProperty; /** * The protocol, for example UDP, to assign to the Traffic Mirror rule. * * For information about the protocol value, see [Protocol Numbers](https://docs.aws.amazon.com/https://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml) on the Internet Assigned Numbers Authority (IANA) website. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilterrule.html#cfn-ec2-trafficmirrorfilterrule-protocol */ readonly protocol?: number; /** * The action to take on the filtered traffic. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilterrule.html#cfn-ec2-trafficmirrorfilterrule-ruleaction */ readonly ruleAction: string; /** * The number of the Traffic Mirror rule. * * This number must be unique for each Traffic Mirror rule in a given direction. The rules are processed in ascending order by rule number. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilterrule.html#cfn-ec2-trafficmirrorfilterrule-rulenumber */ readonly ruleNumber: number; /** * The source CIDR block to assign to the Traffic Mirror rule. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilterrule.html#cfn-ec2-trafficmirrorfilterrule-sourcecidrblock */ readonly sourceCidrBlock: string; /** * The source port range. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilterrule.html#cfn-ec2-trafficmirrorfilterrule-sourceportrange */ readonly sourcePortRange?: cdk.IResolvable | CfnTrafficMirrorFilterRule.TrafficMirrorPortRangeProperty; /** * Tags on Traffic Mirroring filter rules. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilterrule.html#cfn-ec2-trafficmirrorfilterrule-tags */ readonly tags?: Array; /** * The type of traffic. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilterrule.html#cfn-ec2-trafficmirrorfilterrule-trafficdirection */ readonly trafficDirection: string; /** * The ID of the filter that this rule is associated with. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilterrule.html#cfn-ec2-trafficmirrorfilterrule-trafficmirrorfilterid */ readonly trafficMirrorFilterId: string; } /** * Creates a Traffic Mirror session. * * A Traffic Mirror session actively copies packets from a Traffic Mirror source to a Traffic Mirror target. Create a filter, and then assign it to the session to define a subset of the traffic to mirror, for example all TCP traffic. * * The Traffic Mirror source and the Traffic Mirror target (monitoring appliances) can be in the same VPC, or in a different VPC connected via VPC peering or a transit gateway. * * By default, no traffic is mirrored. Use [AWS::EC2::TrafficMirrorFilterRule](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilterrule.html) to specify filter rules that specify the traffic to mirror. * * @cloudformationResource AWS::EC2::TrafficMirrorSession * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorsession.html */ export declare class CfnTrafficMirrorSession extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTrafficMirrorSession from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTrafficMirrorSession; /** * @cloudformationAttribute Id */ readonly attrId: string; /** * The description of the Traffic Mirror session. */ description?: string; /** * The ID of the source network interface. */ networkInterfaceId: string; /** * The number of bytes in each packet to mirror. */ packetLength?: number; /** * The session number determines the order in which sessions are evaluated when an interface is used by multiple sessions. */ sessionNumber: number; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags to assign to a Traffic Mirror session. */ tagsRaw?: Array; /** * The ID of the Traffic Mirror filter. */ trafficMirrorFilterId: string; /** * The ID of the Traffic Mirror target. */ trafficMirrorTargetId: string; /** * The VXLAN ID for the Traffic Mirror session. */ virtualNetworkId?: number; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnTrafficMirrorSessionProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnTrafficMirrorSession` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorsession.html */ export interface CfnTrafficMirrorSessionProps { /** * The description of the Traffic Mirror session. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorsession.html#cfn-ec2-trafficmirrorsession-description */ readonly description?: string; /** * The ID of the source network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorsession.html#cfn-ec2-trafficmirrorsession-networkinterfaceid */ readonly networkInterfaceId: string; /** * The number of bytes in each packet to mirror. * * These are bytes after the VXLAN header. Do not specify this parameter when you want to mirror the entire packet. To mirror a subset of the packet, set this to the length (in bytes) that you want to mirror. For example, if you set this value to 100, then the first 100 bytes that meet the filter criteria are copied to the target. * * If you do not want to mirror the entire packet, use the `PacketLength` parameter to specify the number of bytes in each packet to mirror. * * For sessions with Network Load Balancer (NLB) Traffic Mirror targets the default `PacketLength` will be set to 8500. Valid values are 1-8500. Setting a `PacketLength` greater than 8500 will result in an error response. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorsession.html#cfn-ec2-trafficmirrorsession-packetlength */ readonly packetLength?: number; /** * The session number determines the order in which sessions are evaluated when an interface is used by multiple sessions. * * The first session with a matching filter is the one that mirrors the packets. * * Valid values are 1-32766. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorsession.html#cfn-ec2-trafficmirrorsession-sessionnumber */ readonly sessionNumber: number; /** * The tags to assign to a Traffic Mirror session. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorsession.html#cfn-ec2-trafficmirrorsession-tags */ readonly tags?: Array; /** * The ID of the Traffic Mirror filter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorsession.html#cfn-ec2-trafficmirrorsession-trafficmirrorfilterid */ readonly trafficMirrorFilterId: string; /** * The ID of the Traffic Mirror target. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorsession.html#cfn-ec2-trafficmirrorsession-trafficmirrortargetid */ readonly trafficMirrorTargetId: string; /** * The VXLAN ID for the Traffic Mirror session. * * For more information about the VXLAN protocol, see [RFC 7348](https://docs.aws.amazon.com/https://datatracker.ietf.org/doc/html/rfc7348) . If you do not specify a `VirtualNetworkId` , an account-wide unique ID is chosen at random. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorsession.html#cfn-ec2-trafficmirrorsession-virtualnetworkid */ readonly virtualNetworkId?: number; } /** * Specifies a target for your Traffic Mirror session. * * A Traffic Mirror target is the destination for mirrored traffic. The Traffic Mirror source and the Traffic Mirror target (monitoring appliances) can be in the same VPC, or in different VPCs connected via VPC peering or a transit gateway. * * A Traffic Mirror target can be a network interface, a Network Load Balancer, or a Gateway Load Balancer endpoint. * * To use the target in a Traffic Mirror session, use [AWS::EC2::TrafficMirrorSession](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorsession.html) . * * @cloudformationResource AWS::EC2::TrafficMirrorTarget * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrortarget.html */ export declare class CfnTrafficMirrorTarget extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTrafficMirrorTarget from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTrafficMirrorTarget; /** * @cloudformationAttribute Id */ readonly attrId: string; /** * The description of the Traffic Mirror target. */ description?: string; /** * The ID of the Gateway Load Balancer endpoint. */ gatewayLoadBalancerEndpointId?: string; /** * The network interface ID that is associated with the target. */ networkInterfaceId?: string; /** * The Amazon Resource Name (ARN) of the Network Load Balancer that is associated with the target. */ networkLoadBalancerArn?: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags to assign to the Traffic Mirror target. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnTrafficMirrorTargetProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnTrafficMirrorTarget` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrortarget.html */ export interface CfnTrafficMirrorTargetProps { /** * The description of the Traffic Mirror target. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrortarget.html#cfn-ec2-trafficmirrortarget-description */ readonly description?: string; /** * The ID of the Gateway Load Balancer endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrortarget.html#cfn-ec2-trafficmirrortarget-gatewayloadbalancerendpointid */ readonly gatewayLoadBalancerEndpointId?: string; /** * The network interface ID that is associated with the target. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrortarget.html#cfn-ec2-trafficmirrortarget-networkinterfaceid */ readonly networkInterfaceId?: string; /** * The Amazon Resource Name (ARN) of the Network Load Balancer that is associated with the target. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrortarget.html#cfn-ec2-trafficmirrortarget-networkloadbalancerarn */ readonly networkLoadBalancerArn?: string; /** * The tags to assign to the Traffic Mirror target. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrortarget.html#cfn-ec2-trafficmirrortarget-tags */ readonly tags?: Array; } /** * Specifies a transit gateway. * * You can use a transit gateway to interconnect your virtual private clouds (VPC) and on-premises networks. After the transit gateway enters the `available` state, you can attach your VPCs and VPN connections to the transit gateway. * * To attach your VPCs, use [AWS::EC2::TransitGatewayAttachment](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayattachment.html) . * * To attach a VPN connection, use [AWS::EC2::CustomerGateway](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-customer-gateway.html) to create a customer gateway and specify the ID of the customer gateway and the ID of the transit gateway in a call to [AWS::EC2::VPNConnection](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpn-connection.html) . * * When you create a transit gateway, we create a default transit gateway route table and use it as the default association route table and the default propagation route table. You can use [AWS::EC2::TransitGatewayRouteTable](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroutetable.html) to create additional transit gateway route tables. If you disable automatic route propagation, we do not create a default transit gateway route table. You can use [AWS::EC2::TransitGatewayRouteTablePropagation](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroutetablepropagation.html) to propagate routes from a resource attachment to a transit gateway route table. If you disable automatic associations, you can use [AWS::EC2::TransitGatewayRouteTableAssociation](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroutetableassociation.html) to associate a resource attachment with a transit gateway route table. * * @cloudformationResource AWS::EC2::TransitGateway * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgateway.html */ export declare class CfnTransitGateway extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTransitGateway from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTransitGateway; /** * The ID of the transit gateway. * * @cloudformationAttribute Id */ readonly attrId: string; /** * @cloudformationAttribute TransitGatewayArn */ readonly attrTransitGatewayArn: string; /** * A private Autonomous System Number (ASN) for the Amazon side of a BGP session. */ amazonSideAsn?: number; /** * The ID of the default association route table. */ associationDefaultRouteTableId?: string; /** * Enable or disable automatic acceptance of attachment requests. */ autoAcceptSharedAttachments?: string; /** * Enable or disable automatic association with the default association route table. */ defaultRouteTableAssociation?: string; /** * Enable or disable automatic propagation of routes to the default propagation route table. */ defaultRouteTablePropagation?: string; /** * The description of the transit gateway. */ description?: string; /** * Enable or disable DNS support. */ dnsSupport?: string; /** * Indicates whether multicast is enabled on the transit gateway. */ multicastSupport?: string; /** * The ID of the default propagation route table. */ propagationDefaultRouteTableId?: string; /** * Enables you to reference a security group across VPCs attached to a transit gateway (TGW). */ securityGroupReferencingSupport?: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags for the transit gateway. */ tagsRaw?: Array; /** * The transit gateway CIDR blocks. */ transitGatewayCidrBlocks?: Array; /** * Enable or disable Equal Cost Multipath Protocol support. */ vpnEcmpSupport?: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnTransitGatewayProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnTransitGateway` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgateway.html */ export interface CfnTransitGatewayProps { /** * A private Autonomous System Number (ASN) for the Amazon side of a BGP session. * * The range is 64512 to 65534 for 16-bit ASNs. The default is 64512. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgateway.html#cfn-ec2-transitgateway-amazonsideasn */ readonly amazonSideAsn?: number; /** * The ID of the default association route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgateway.html#cfn-ec2-transitgateway-associationdefaultroutetableid */ readonly associationDefaultRouteTableId?: string; /** * Enable or disable automatic acceptance of attachment requests. * * Disabled by default. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgateway.html#cfn-ec2-transitgateway-autoacceptsharedattachments */ readonly autoAcceptSharedAttachments?: string; /** * Enable or disable automatic association with the default association route table. * * Enabled by default. If `DefaultRouteTableAssociation` is set to enable, AWS Transit Gateway will create the default transit gateway route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgateway.html#cfn-ec2-transitgateway-defaultroutetableassociation */ readonly defaultRouteTableAssociation?: string; /** * Enable or disable automatic propagation of routes to the default propagation route table. * * Enabled by default. If `DefaultRouteTablePropagation` is set to enable, AWS Transit Gateway will create the default transit gateway route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgateway.html#cfn-ec2-transitgateway-defaultroutetablepropagation */ readonly defaultRouteTablePropagation?: string; /** * The description of the transit gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgateway.html#cfn-ec2-transitgateway-description */ readonly description?: string; /** * Enable or disable DNS support. * * Enabled by default. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgateway.html#cfn-ec2-transitgateway-dnssupport */ readonly dnsSupport?: string; /** * Indicates whether multicast is enabled on the transit gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgateway.html#cfn-ec2-transitgateway-multicastsupport */ readonly multicastSupport?: string; /** * The ID of the default propagation route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgateway.html#cfn-ec2-transitgateway-propagationdefaultroutetableid */ readonly propagationDefaultRouteTableId?: string; /** * Enables you to reference a security group across VPCs attached to a transit gateway (TGW). * * Use this option to simplify security group management and control of instance-to-instance traffic across VPCs that are connected by transit gateway. You can also use this option to migrate from VPC peering (which was the only option that supported security group referencing) to transit gateways (which now also support security group referencing). This option is disabled by default and there are no additional costs to use this feature. * * For important information about this feature, see [Create a transit gateway](https://docs.aws.amazon.com/vpc/latest/tgw/tgw-transit-gateways.html#create-tgw) in the *AWS Transit Gateway Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgateway.html#cfn-ec2-transitgateway-securitygroupreferencingsupport */ readonly securityGroupReferencingSupport?: string; /** * The tags for the transit gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgateway.html#cfn-ec2-transitgateway-tags */ readonly tags?: Array; /** * The transit gateway CIDR blocks. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgateway.html#cfn-ec2-transitgateway-transitgatewaycidrblocks */ readonly transitGatewayCidrBlocks?: Array; /** * Enable or disable Equal Cost Multipath Protocol support. * * Enabled by default. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgateway.html#cfn-ec2-transitgateway-vpnecmpsupport */ readonly vpnEcmpSupport?: string; } /** * Attaches a VPC to a transit gateway. * * If you attach a VPC with a CIDR range that overlaps the CIDR range of a VPC that is already attached, the new VPC CIDR range is not propagated to the default propagation route table. * * To send VPC traffic to an attached transit gateway, add a route to the VPC route table using [AWS::EC2::Route](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html) . * * To update tags for a VPC attachment after creation without replacing the attachment, use [AWS::EC2::TransitGatewayVpcAttachment](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayvpcattachment.html) instead. * * @cloudformationResource AWS::EC2::TransitGatewayAttachment * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayattachment.html */ export declare class CfnTransitGatewayAttachment extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTransitGatewayAttachment from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTransitGatewayAttachment; /** * The ID of the attachment. * * @cloudformationAttribute Id */ readonly attrId: string; /** * The VPC attachment options. */ options?: any | cdk.IResolvable; /** * The IDs of one or more subnets. */ subnetIds: Array; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags for the attachment. */ tagsRaw?: Array; /** * The ID of the transit gateway. */ transitGatewayId: string; /** * The ID of the VPC. */ vpcId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnTransitGatewayAttachmentProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnTransitGatewayAttachment { /** * Describes the VPC attachment options. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewayattachment-options.html */ interface OptionsProperty { /** * Enable or disable appliance mode support. * * The default is `disable` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewayattachment-options.html#cfn-ec2-transitgatewayattachment-options-appliancemodesupport */ readonly applianceModeSupport?: string; /** * Enable or disable DNS support. * * The default is `disable` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewayattachment-options.html#cfn-ec2-transitgatewayattachment-options-dnssupport */ readonly dnsSupport?: string; /** * Enable or disable IPv6 support. * * The default is `disable` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewayattachment-options.html#cfn-ec2-transitgatewayattachment-options-ipv6support */ readonly ipv6Support?: string; /** * Enables you to reference a security group across VPCs attached to a transit gateway (TGW). * * Use this option to simplify security group management and control of instance-to-instance traffic across VPCs that are connected by transit gateway. You can also use this option to migrate from VPC peering (which was the only option that supported security group referencing) to transit gateways (which now also support security group referencing). This option is disabled by default and there are no additional costs to use this feature. * * For important information about this feature, see [Create a transit gateway](https://docs.aws.amazon.com/vpc/latest/tgw/tgw-transit-gateways.html#create-tgw) in the *AWS Transit Gateway Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewayattachment-options.html#cfn-ec2-transitgatewayattachment-options-securitygroupreferencingsupport */ readonly securityGroupReferencingSupport?: string; } } /** * Properties for defining a `CfnTransitGatewayAttachment` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayattachment.html */ export interface CfnTransitGatewayAttachmentProps { /** * The VPC attachment options. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayattachment.html#cfn-ec2-transitgatewayattachment-options */ readonly options?: any | cdk.IResolvable; /** * The IDs of one or more subnets. * * You can specify only one subnet per Availability Zone. You must specify at least one subnet, but we recommend that you specify two subnets for better availability. The transit gateway uses one IP address from each specified subnet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayattachment.html#cfn-ec2-transitgatewayattachment-subnetids */ readonly subnetIds: Array; /** * The tags for the attachment. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayattachment.html#cfn-ec2-transitgatewayattachment-tags */ readonly tags?: Array; /** * The ID of the transit gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayattachment.html#cfn-ec2-transitgatewayattachment-transitgatewayid */ readonly transitGatewayId: string; /** * The ID of the VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayattachment.html#cfn-ec2-transitgatewayattachment-vpcid */ readonly vpcId: string; } /** * Creates a Connect attachment from a specified transit gateway attachment. * * A Connect attachment is a GRE-based tunnel attachment that you can use to establish a connection between a transit gateway and an appliance. * * A Connect attachment uses an existing VPC or AWS Direct Connect attachment as the underlying transport mechanism. * * @cloudformationResource AWS::EC2::TransitGatewayConnect * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayconnect.html */ export declare class CfnTransitGatewayConnect extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTransitGatewayConnect from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTransitGatewayConnect; /** * The creation time. * * @cloudformationAttribute CreationTime */ readonly attrCreationTime: string; /** * The state of the attachment. * * @cloudformationAttribute State */ readonly attrState: string; /** * The ID of the transit gateway attachment. * * @cloudformationAttribute TransitGatewayAttachmentId */ readonly attrTransitGatewayAttachmentId: string; /** * The ID of the transit gateway. * * @cloudformationAttribute TransitGatewayId */ readonly attrTransitGatewayId: string; /** * The Connect attachment options. */ options: cdk.IResolvable | CfnTransitGatewayConnect.TransitGatewayConnectOptionsProperty; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags for the attachment. */ tagsRaw?: Array; /** * The ID of the attachment from which the Connect attachment was created. */ transportTransitGatewayAttachmentId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnTransitGatewayConnectProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnTransitGatewayConnect { /** * Describes the Connect attachment options. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewayconnect-transitgatewayconnectoptions.html */ interface TransitGatewayConnectOptionsProperty { /** * The tunnel protocol. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewayconnect-transitgatewayconnectoptions.html#cfn-ec2-transitgatewayconnect-transitgatewayconnectoptions-protocol */ readonly protocol?: string; } } /** * Properties for defining a `CfnTransitGatewayConnect` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayconnect.html */ export interface CfnTransitGatewayConnectProps { /** * The Connect attachment options. * * - protocol (gre) * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayconnect.html#cfn-ec2-transitgatewayconnect-options */ readonly options: cdk.IResolvable | CfnTransitGatewayConnect.TransitGatewayConnectOptionsProperty; /** * The tags for the attachment. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayconnect.html#cfn-ec2-transitgatewayconnect-tags */ readonly tags?: Array; /** * The ID of the attachment from which the Connect attachment was created. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayconnect.html#cfn-ec2-transitgatewayconnect-transporttransitgatewayattachmentid */ readonly transportTransitGatewayAttachmentId: string; } /** * Creates a multicast domain using the specified transit gateway. * * The transit gateway must be in the available state before you create a domain. * * @cloudformationResource AWS::EC2::TransitGatewayMulticastDomain * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastdomain.html */ export declare class CfnTransitGatewayMulticastDomain extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTransitGatewayMulticastDomain from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTransitGatewayMulticastDomain; /** * The time the multicast domain was created. * * @cloudformationAttribute CreationTime */ readonly attrCreationTime: string; /** * The state of the multicast domain. * * @cloudformationAttribute State */ readonly attrState: string; /** * The Amazon Resource Name (ARN) of the multicast domain. * * @cloudformationAttribute TransitGatewayMulticastDomainArn */ readonly attrTransitGatewayMulticastDomainArn: string; /** * The ID of the multicast domain. * * @cloudformationAttribute TransitGatewayMulticastDomainId */ readonly attrTransitGatewayMulticastDomainId: string; /** * The options for the transit gateway multicast domain. */ options?: any | cdk.IResolvable; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags for the transit gateway multicast domain. */ tagsRaw?: Array; /** * The ID of the transit gateway. */ transitGatewayId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnTransitGatewayMulticastDomainProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnTransitGatewayMulticastDomain { /** * The options for the transit gateway multicast domain. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewaymulticastdomain-options.html */ interface OptionsProperty { /** * Indicates whether to automatically accept cross-account subnet associations that are associated with the transit gateway multicast domain. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewaymulticastdomain-options.html#cfn-ec2-transitgatewaymulticastdomain-options-autoacceptsharedassociations */ readonly autoAcceptSharedAssociations?: string; /** * Specify whether to enable Internet Group Management Protocol (IGMP) version 2 for the transit gateway multicast domain. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewaymulticastdomain-options.html#cfn-ec2-transitgatewaymulticastdomain-options-igmpv2support */ readonly igmpv2Support?: string; /** * Specify whether to enable support for statically configuring multicast group sources for a domain. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewaymulticastdomain-options.html#cfn-ec2-transitgatewaymulticastdomain-options-staticsourcessupport */ readonly staticSourcesSupport?: string; } } /** * Properties for defining a `CfnTransitGatewayMulticastDomain` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastdomain.html */ export interface CfnTransitGatewayMulticastDomainProps { /** * The options for the transit gateway multicast domain. * * - AutoAcceptSharedAssociations (enable | disable) * - Igmpv2Support (enable | disable) * - StaticSourcesSupport (enable | disable) * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastdomain.html#cfn-ec2-transitgatewaymulticastdomain-options */ readonly options?: any | cdk.IResolvable; /** * The tags for the transit gateway multicast domain. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastdomain.html#cfn-ec2-transitgatewaymulticastdomain-tags */ readonly tags?: Array; /** * The ID of the transit gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastdomain.html#cfn-ec2-transitgatewaymulticastdomain-transitgatewayid */ readonly transitGatewayId: string; } /** * Associates the specified subnets and transit gateway attachments with the specified transit gateway multicast domain. * * The transit gateway attachment must be in the available state before you can add a resource. * * @cloudformationResource AWS::EC2::TransitGatewayMulticastDomainAssociation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastdomainassociation.html */ export declare class CfnTransitGatewayMulticastDomainAssociation extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTransitGatewayMulticastDomainAssociation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTransitGatewayMulticastDomainAssociation; /** * The ID of the resource. * * @cloudformationAttribute ResourceId */ readonly attrResourceId: string; /** * The type of resource, for example a VPC attachment. * * @cloudformationAttribute ResourceType */ readonly attrResourceType: string; /** * The state of the resource. * * @cloudformationAttribute State */ readonly attrState: string; /** * The IDs of the subnets to associate with the transit gateway multicast domain. */ subnetId: string; /** * The ID of the transit gateway attachment. */ transitGatewayAttachmentId: string; /** * The ID of the transit gateway multicast domain. */ transitGatewayMulticastDomainId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnTransitGatewayMulticastDomainAssociationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnTransitGatewayMulticastDomainAssociation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastdomainassociation.html */ export interface CfnTransitGatewayMulticastDomainAssociationProps { /** * The IDs of the subnets to associate with the transit gateway multicast domain. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastdomainassociation.html#cfn-ec2-transitgatewaymulticastdomainassociation-subnetid */ readonly subnetId: string; /** * The ID of the transit gateway attachment. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastdomainassociation.html#cfn-ec2-transitgatewaymulticastdomainassociation-transitgatewayattachmentid */ readonly transitGatewayAttachmentId: string; /** * The ID of the transit gateway multicast domain. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastdomainassociation.html#cfn-ec2-transitgatewaymulticastdomainassociation-transitgatewaymulticastdomainid */ readonly transitGatewayMulticastDomainId: string; } /** * Registers members (network interfaces) with the transit gateway multicast group. * * A member is a network interface associated with a supported EC2 instance that receives multicast traffic. For information about supported instances, see [Multicast Consideration](https://docs.aws.amazon.com/vpc/latest/tgw/transit-gateway-limits.html#multicast-limits) in *Amazon VPC Transit Gateways* . * * @cloudformationResource AWS::EC2::TransitGatewayMulticastGroupMember * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastgroupmember.html */ export declare class CfnTransitGatewayMulticastGroupMember extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTransitGatewayMulticastGroupMember from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTransitGatewayMulticastGroupMember; /** * Information about the registered transit gateway multicast domain group members. * * @cloudformationAttribute GroupMember */ readonly attrGroupMember: cdk.IResolvable; /** * Indicates that the resource is a transit gateway multicast domain group member. * * @cloudformationAttribute GroupSource */ readonly attrGroupSource: cdk.IResolvable; /** * The type of group member, for example static. * * @cloudformationAttribute MemberType */ readonly attrMemberType: string; /** * The ID of the resource. * * @cloudformationAttribute ResourceId */ readonly attrResourceId: string; /** * The type of resource, for example a VPC attachment. * * @cloudformationAttribute ResourceType */ readonly attrResourceType: string; /** * @cloudformationAttribute SourceType */ readonly attrSourceType: string; /** * The ID of the subnet. * * @cloudformationAttribute SubnetId */ readonly attrSubnetId: string; /** * The ID of the transit gateway attachment. * * @cloudformationAttribute TransitGatewayAttachmentId */ readonly attrTransitGatewayAttachmentId: string; /** * The IP address assigned to the transit gateway multicast group. */ groupIpAddress: string; /** * The group members' network interface IDs to register with the transit gateway multicast group. */ networkInterfaceId: string; /** * The ID of the transit gateway multicast domain. */ transitGatewayMulticastDomainId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnTransitGatewayMulticastGroupMemberProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnTransitGatewayMulticastGroupMember` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastgroupmember.html */ export interface CfnTransitGatewayMulticastGroupMemberProps { /** * The IP address assigned to the transit gateway multicast group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastgroupmember.html#cfn-ec2-transitgatewaymulticastgroupmember-groupipaddress */ readonly groupIpAddress: string; /** * The group members' network interface IDs to register with the transit gateway multicast group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastgroupmember.html#cfn-ec2-transitgatewaymulticastgroupmember-networkinterfaceid */ readonly networkInterfaceId: string; /** * The ID of the transit gateway multicast domain. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastgroupmember.html#cfn-ec2-transitgatewaymulticastgroupmember-transitgatewaymulticastdomainid */ readonly transitGatewayMulticastDomainId: string; } /** * Registers sources (network interfaces) with the specified transit gateway multicast domain. * * A multicast source is a network interface attached to a supported instance that sends multicast traffic. For information about supported instances, see [Multicast Considerations](https://docs.aws.amazon.com/vpc/latest/tgw/transit-gateway-limits.html#multicast-limits) in *Amazon VPC Transit Gateways* . * * @cloudformationResource AWS::EC2::TransitGatewayMulticastGroupSource * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastgroupsource.html */ export declare class CfnTransitGatewayMulticastGroupSource extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTransitGatewayMulticastGroupSource from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTransitGatewayMulticastGroupSource; /** * Information about the registered transit gateway multicast domain group members. * * @cloudformationAttribute GroupMember */ readonly attrGroupMember: cdk.IResolvable; /** * Indicates that the resource is a transit gateway group member. * * @cloudformationAttribute GroupSource */ readonly attrGroupSource: cdk.IResolvable; /** * @cloudformationAttribute MemberType */ readonly attrMemberType: string; /** * The ID of the resource. * * @cloudformationAttribute ResourceId */ readonly attrResourceId: string; /** * The type of resource, for example a VPC attachment. * * @cloudformationAttribute ResourceType */ readonly attrResourceType: string; /** * The type of source. * * @cloudformationAttribute SourceType */ readonly attrSourceType: string; /** * The ID of the subnet. * * @cloudformationAttribute SubnetId */ readonly attrSubnetId: string; /** * The ID of the transit gateway attachment. * * @cloudformationAttribute TransitGatewayAttachmentId */ readonly attrTransitGatewayAttachmentId: string; /** * The IP address assigned to the transit gateway multicast group. */ groupIpAddress: string; /** * The group sources' network interface IDs to register with the transit gateway multicast group. */ networkInterfaceId: string; /** * The ID of the transit gateway multicast domain. */ transitGatewayMulticastDomainId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnTransitGatewayMulticastGroupSourceProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnTransitGatewayMulticastGroupSource` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastgroupsource.html */ export interface CfnTransitGatewayMulticastGroupSourceProps { /** * The IP address assigned to the transit gateway multicast group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastgroupsource.html#cfn-ec2-transitgatewaymulticastgroupsource-groupipaddress */ readonly groupIpAddress: string; /** * The group sources' network interface IDs to register with the transit gateway multicast group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastgroupsource.html#cfn-ec2-transitgatewaymulticastgroupsource-networkinterfaceid */ readonly networkInterfaceId: string; /** * The ID of the transit gateway multicast domain. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaymulticastgroupsource.html#cfn-ec2-transitgatewaymulticastgroupsource-transitgatewaymulticastdomainid */ readonly transitGatewayMulticastDomainId: string; } /** * Requests a transit gateway peering attachment between the specified transit gateway (requester) and a peer transit gateway (accepter). * * The peer transit gateway can be in your account or a different AWS account . * * After you create the peering attachment, the owner of the accepter transit gateway must accept the attachment request. * * @cloudformationResource AWS::EC2::TransitGatewayPeeringAttachment * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaypeeringattachment.html */ export declare class CfnTransitGatewayPeeringAttachment extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTransitGatewayPeeringAttachment from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTransitGatewayPeeringAttachment; /** * The time the transit gateway peering attachment was created. * * @cloudformationAttribute CreationTime */ readonly attrCreationTime: string; /** * The state of the transit gateway peering attachment. Note that the `initiating` state has been deprecated. * * @cloudformationAttribute State */ readonly attrState: string; /** * @cloudformationAttribute Status */ readonly attrStatus: cdk.IResolvable; /** * @cloudformationAttribute Status.Code */ readonly attrStatusCode: string; /** * @cloudformationAttribute Status.Message */ readonly attrStatusMessage: string; /** * The ID of the transit gateway peering attachment. * * @cloudformationAttribute TransitGatewayAttachmentId */ readonly attrTransitGatewayAttachmentId: string; /** * The ID of the AWS account that owns the transit gateway. */ peerAccountId: string; /** * The Region where the transit gateway that you want to create the peer for is located. */ peerRegion: string; /** * The ID of the transit gateway in the PeerRegion. */ peerTransitGatewayId: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags for the transit gateway peering attachment. */ tagsRaw?: Array; /** * The ID of the transit gateway peering attachment. */ transitGatewayId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnTransitGatewayPeeringAttachmentProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnTransitGatewayPeeringAttachment { /** * The status of the transit gateway peering attachment. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewaypeeringattachment-peeringattachmentstatus.html */ interface PeeringAttachmentStatusProperty { /** * The status code. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewaypeeringattachment-peeringattachmentstatus.html#cfn-ec2-transitgatewaypeeringattachment-peeringattachmentstatus-code */ readonly code?: string; /** * The status message, if applicable. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewaypeeringattachment-peeringattachmentstatus.html#cfn-ec2-transitgatewaypeeringattachment-peeringattachmentstatus-message */ readonly message?: string; } } /** * Properties for defining a `CfnTransitGatewayPeeringAttachment` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaypeeringattachment.html */ export interface CfnTransitGatewayPeeringAttachmentProps { /** * The ID of the AWS account that owns the transit gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaypeeringattachment.html#cfn-ec2-transitgatewaypeeringattachment-peeraccountid */ readonly peerAccountId: string; /** * The Region where the transit gateway that you want to create the peer for is located. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaypeeringattachment.html#cfn-ec2-transitgatewaypeeringattachment-peerregion */ readonly peerRegion: string; /** * The ID of the transit gateway in the PeerRegion. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaypeeringattachment.html#cfn-ec2-transitgatewaypeeringattachment-peertransitgatewayid */ readonly peerTransitGatewayId: string; /** * The tags for the transit gateway peering attachment. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaypeeringattachment.html#cfn-ec2-transitgatewaypeeringattachment-tags */ readonly tags?: Array; /** * The ID of the transit gateway peering attachment. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewaypeeringattachment.html#cfn-ec2-transitgatewaypeeringattachment-transitgatewayid */ readonly transitGatewayId: string; } /** * Specifies a static route for a transit gateway route table. * * @cloudformationResource AWS::EC2::TransitGatewayRoute * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroute.html */ export declare class CfnTransitGatewayRoute extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTransitGatewayRoute from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTransitGatewayRoute; /** * Indicates whether to drop traffic that matches this route. */ blackhole?: boolean | cdk.IResolvable; /** * The CIDR block used for destination matches. */ destinationCidrBlock: string; /** * The ID of the attachment. */ transitGatewayAttachmentId?: string; /** * The ID of the transit gateway route table. */ transitGatewayRouteTableId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnTransitGatewayRouteProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnTransitGatewayRoute` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroute.html */ export interface CfnTransitGatewayRouteProps { /** * Indicates whether to drop traffic that matches this route. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroute.html#cfn-ec2-transitgatewayroute-blackhole */ readonly blackhole?: boolean | cdk.IResolvable; /** * The CIDR block used for destination matches. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroute.html#cfn-ec2-transitgatewayroute-destinationcidrblock */ readonly destinationCidrBlock: string; /** * The ID of the attachment. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroute.html#cfn-ec2-transitgatewayroute-transitgatewayattachmentid */ readonly transitGatewayAttachmentId?: string; /** * The ID of the transit gateway route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroute.html#cfn-ec2-transitgatewayroute-transitgatewayroutetableid */ readonly transitGatewayRouteTableId: string; } /** * Specifies a route table for a transit gateway. * * @cloudformationResource AWS::EC2::TransitGatewayRouteTable * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroutetable.html */ export declare class CfnTransitGatewayRouteTable extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTransitGatewayRouteTable from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTransitGatewayRouteTable; /** * The ID of the transit gateway route table. * * @cloudformationAttribute TransitGatewayRouteTableId */ readonly attrTransitGatewayRouteTableId: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * Any tags assigned to the route table. */ tagsRaw?: Array; /** * The ID of the transit gateway. */ transitGatewayId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnTransitGatewayRouteTableProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnTransitGatewayRouteTable` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroutetable.html */ export interface CfnTransitGatewayRouteTableProps { /** * Any tags assigned to the route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroutetable.html#cfn-ec2-transitgatewayroutetable-tags */ readonly tags?: Array; /** * The ID of the transit gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroutetable.html#cfn-ec2-transitgatewayroutetable-transitgatewayid */ readonly transitGatewayId: string; } /** * Associates the specified attachment with the specified transit gateway route table. * * You can associate one route table with an attachment. * * Before you can update the route table associated with an attachment, you must disassociate the transit gateway route table that is currently associated with the attachment. First update the stack to remove the associated transit gateway route table, and then update the stack with the ID of the new transit gateway route table to associate. * * @cloudformationResource AWS::EC2::TransitGatewayRouteTableAssociation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroutetableassociation.html */ export declare class CfnTransitGatewayRouteTableAssociation extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTransitGatewayRouteTableAssociation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTransitGatewayRouteTableAssociation; /** * The ID of the attachment. */ transitGatewayAttachmentId: string; /** * The ID of the route table for the transit gateway. */ transitGatewayRouteTableId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnTransitGatewayRouteTableAssociationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnTransitGatewayRouteTableAssociation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroutetableassociation.html */ export interface CfnTransitGatewayRouteTableAssociationProps { /** * The ID of the attachment. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroutetableassociation.html#cfn-ec2-transitgatewayroutetableassociation-transitgatewayattachmentid */ readonly transitGatewayAttachmentId: string; /** * The ID of the route table for the transit gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroutetableassociation.html#cfn-ec2-transitgatewayroutetableassociation-transitgatewayroutetableid */ readonly transitGatewayRouteTableId: string; } /** * Enables the specified attachment to propagate routes to the specified propagation route table. * * For more information about enabling transit gateway route propagation, see [EnableTransitGatewayRouteTablePropagation](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_EnableTransitGatewayRouteTablePropagation.html) in the *Amazon EC2 API Reference* . * * @cloudformationResource AWS::EC2::TransitGatewayRouteTablePropagation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroutetablepropagation.html */ export declare class CfnTransitGatewayRouteTablePropagation extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTransitGatewayRouteTablePropagation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTransitGatewayRouteTablePropagation; /** * The ID of the attachment. */ transitGatewayAttachmentId: string; /** * The ID of the propagation route table. */ transitGatewayRouteTableId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnTransitGatewayRouteTablePropagationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnTransitGatewayRouteTablePropagation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroutetablepropagation.html */ export interface CfnTransitGatewayRouteTablePropagationProps { /** * The ID of the attachment. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroutetablepropagation.html#cfn-ec2-transitgatewayroutetablepropagation-transitgatewayattachmentid */ readonly transitGatewayAttachmentId: string; /** * The ID of the propagation route table. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayroutetablepropagation.html#cfn-ec2-transitgatewayroutetablepropagation-transitgatewayroutetableid */ readonly transitGatewayRouteTableId: string; } /** * Specifies a VPC attachment. * * @cloudformationResource AWS::EC2::TransitGatewayVpcAttachment * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayvpcattachment.html */ export declare class CfnTransitGatewayVpcAttachment extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnTransitGatewayVpcAttachment from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnTransitGatewayVpcAttachment; /** * The ID of the attachment. * * @cloudformationAttribute Id */ readonly attrId: string; /** * The IDs of one or more subnets to add. */ addSubnetIds?: Array; /** * The VPC attachment options. */ options?: any | cdk.IResolvable; /** * The IDs of one or more subnets to remove. */ removeSubnetIds?: Array; /** * The IDs of the subnets. */ subnetIds: Array; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags for the VPC attachment. */ tagsRaw?: Array; /** * The ID of the transit gateway. */ transitGatewayId: string; /** * The ID of the VPC. */ vpcId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnTransitGatewayVpcAttachmentProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnTransitGatewayVpcAttachment { /** * Describes the VPC attachment options. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewayvpcattachment-options.html */ interface OptionsProperty { /** * Enable or disable appliance mode support. * * The default is `disable` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewayvpcattachment-options.html#cfn-ec2-transitgatewayvpcattachment-options-appliancemodesupport */ readonly applianceModeSupport?: string; /** * Enable or disable DNS support. * * The default is `disable` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewayvpcattachment-options.html#cfn-ec2-transitgatewayvpcattachment-options-dnssupport */ readonly dnsSupport?: string; /** * Enable or disable IPv6 support. * * The default is `disable` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewayvpcattachment-options.html#cfn-ec2-transitgatewayvpcattachment-options-ipv6support */ readonly ipv6Support?: string; /** * Enables you to reference a security group across VPCs attached to a transit gateway (TGW). * * Use this option to simplify security group management and control of instance-to-instance traffic across VPCs that are connected by transit gateway. You can also use this option to migrate from VPC peering (which was the only option that supported security group referencing) to transit gateways (which now also support security group referencing). This option is disabled by default and there are no additional costs to use this feature. * * For important information about this feature, see [Create a transit gateway](https://docs.aws.amazon.com/vpc/latest/tgw/tgw-transit-gateways.html#create-tgw) in the *AWS Transit Gateway Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-transitgatewayvpcattachment-options.html#cfn-ec2-transitgatewayvpcattachment-options-securitygroupreferencingsupport */ readonly securityGroupReferencingSupport?: string; } } /** * Properties for defining a `CfnTransitGatewayVpcAttachment` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayvpcattachment.html */ export interface CfnTransitGatewayVpcAttachmentProps { /** * The IDs of one or more subnets to add. * * You can specify at most one subnet per Availability Zone. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayvpcattachment.html#cfn-ec2-transitgatewayvpcattachment-addsubnetids */ readonly addSubnetIds?: Array; /** * The VPC attachment options. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayvpcattachment.html#cfn-ec2-transitgatewayvpcattachment-options */ readonly options?: any | cdk.IResolvable; /** * The IDs of one or more subnets to remove. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayvpcattachment.html#cfn-ec2-transitgatewayvpcattachment-removesubnetids */ readonly removeSubnetIds?: Array; /** * The IDs of the subnets. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayvpcattachment.html#cfn-ec2-transitgatewayvpcattachment-subnetids */ readonly subnetIds: Array; /** * The tags for the VPC attachment. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayvpcattachment.html#cfn-ec2-transitgatewayvpcattachment-tags */ readonly tags?: Array; /** * The ID of the transit gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayvpcattachment.html#cfn-ec2-transitgatewayvpcattachment-transitgatewayid */ readonly transitGatewayId: string; /** * The ID of the VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-transitgatewayvpcattachment.html#cfn-ec2-transitgatewayvpcattachment-vpcid */ readonly vpcId: string; } /** * Specifies a virtual private cloud (VPC). * * To add an IPv6 CIDR block to the VPC, see [AWS::EC2::VPCCidrBlock](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpccidrblock.html) . * * For more information, see [Virtual private clouds (VPC)](https://docs.aws.amazon.com/vpc/latest/userguide/configure-your-vpc.html) in the *Amazon VPC User Guide* . * * @cloudformationResource AWS::EC2::VPC * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpc.html */ export declare class CfnVPC extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVPC from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVPC; /** * The primary IPv4 CIDR block for the VPC. For example, 10.0.0.0/16. * * @cloudformationAttribute CidrBlock */ readonly attrCidrBlock: string; /** * The association IDs of the IPv4 CIDR blocks for the VPC. For example, [ vpc-cidr-assoc-0280ab6b ]. * * @cloudformationAttribute CidrBlockAssociations */ readonly attrCidrBlockAssociations: Array; /** * The ID of the default network ACL for the VPC. For example, acl-814dafe3. * * @cloudformationAttribute DefaultNetworkAcl */ readonly attrDefaultNetworkAcl: string; /** * The ID of the default security group for the VPC. For example, sg-b178e0d3. * * @cloudformationAttribute DefaultSecurityGroup */ readonly attrDefaultSecurityGroup: string; /** * The IPv6 CIDR blocks for the VPC. For example, [ 2001:db8:1234:1a00::/56 ]. * * @cloudformationAttribute Ipv6CidrBlocks */ readonly attrIpv6CidrBlocks: Array; /** * The ID of the VPC. * * @cloudformationAttribute VpcId */ readonly attrVpcId: string; /** * The IPv4 network range for the VPC, in CIDR notation. */ cidrBlock?: string; /** * Indicates whether the instances launched in the VPC get DNS hostnames. */ enableDnsHostnames?: boolean | cdk.IResolvable; /** * Indicates whether the DNS resolution is supported for the VPC. */ enableDnsSupport?: boolean | cdk.IResolvable; /** * The allowed tenancy of instances launched into the VPC. */ instanceTenancy?: string; /** * The ID of an IPv4 IPAM pool you want to use for allocating this VPC's CIDR. */ ipv4IpamPoolId?: string; /** * The netmask length of the IPv4 CIDR you want to allocate to this VPC from an Amazon VPC IP Address Manager (IPAM) pool. */ ipv4NetmaskLength?: number; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags for the VPC. */ tagsRaw?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnVPCProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnVPC` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpc.html */ export interface CfnVPCProps { /** * The IPv4 network range for the VPC, in CIDR notation. * * For example, `10.0.0.0/16` . We modify the specified CIDR block to its canonical form; for example, if you specify `100.68.0.18/18` , we modify it to `100.68.0.0/18` . * * You must specify either `CidrBlock` or `Ipv4IpamPoolId` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpc.html#cfn-ec2-vpc-cidrblock */ readonly cidrBlock?: string; /** * Indicates whether the instances launched in the VPC get DNS hostnames. * * If enabled, instances in the VPC get DNS hostnames; otherwise, they do not. Disabled by default for nondefault VPCs. For more information, see [DNS attributes in your VPC](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-dns.html#vpc-dns-support) . * * You can only enable DNS hostnames if you've enabled DNS support. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpc.html#cfn-ec2-vpc-enablednshostnames */ readonly enableDnsHostnames?: boolean | cdk.IResolvable; /** * Indicates whether the DNS resolution is supported for the VPC. * * If enabled, queries to the Amazon provided DNS server at the 169.254.169.253 IP address, or the reserved IP address at the base of the VPC network range "plus two" succeed. If disabled, the Amazon provided DNS service in the VPC that resolves public DNS hostnames to IP addresses is not enabled. Enabled by default. For more information, see [DNS attributes in your VPC](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-dns.html#vpc-dns-support) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpc.html#cfn-ec2-vpc-enablednssupport */ readonly enableDnsSupport?: boolean | cdk.IResolvable; /** * The allowed tenancy of instances launched into the VPC. * * - `default` : An instance launched into the VPC runs on shared hardware by default, unless you explicitly specify a different tenancy during instance launch. * - `dedicated` : An instance launched into the VPC runs on dedicated hardware by default, unless you explicitly specify a tenancy of `host` during instance launch. You cannot specify a tenancy of `default` during instance launch. * * Updating `InstanceTenancy` requires no replacement only if you are updating its value from `dedicated` to `default` . Updating `InstanceTenancy` from `default` to `dedicated` requires replacement. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpc.html#cfn-ec2-vpc-instancetenancy */ readonly instanceTenancy?: string; /** * The ID of an IPv4 IPAM pool you want to use for allocating this VPC's CIDR. * * For more information, see [What is IPAM?](https://docs.aws.amazon.com//vpc/latest/ipam/what-is-it-ipam.html) in the *Amazon VPC IPAM User Guide* . * * You must specify either `CidrBlock` or `Ipv4IpamPoolId` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpc.html#cfn-ec2-vpc-ipv4ipampoolid */ readonly ipv4IpamPoolId?: string; /** * The netmask length of the IPv4 CIDR you want to allocate to this VPC from an Amazon VPC IP Address Manager (IPAM) pool. * * For more information about IPAM, see [What is IPAM?](https://docs.aws.amazon.com//vpc/latest/ipam/what-is-it-ipam.html) in the *Amazon VPC IPAM User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpc.html#cfn-ec2-vpc-ipv4netmasklength */ readonly ipv4NetmaskLength?: number; /** * The tags for the VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpc.html#cfn-ec2-vpc-tags */ readonly tags?: Array; } /** * Associates a CIDR block with your VPC. * * You can optionally request an IPv6 CIDR block for the VPC. You can request an Amazon-provided IPv6 CIDR block from Amazon's pool of IPv6 addresses, or an IPv6 CIDR block from an IPv6 address pool that you provisioned through bring your own IP addresses (BYOIP). * * For more information, see [VPC CIDR blocks](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-cidr-blocks.html) in the *Amazon VPC User Guide* . * * @cloudformationResource AWS::EC2::VPCCidrBlock * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpccidrblock.html */ export declare class CfnVPCCidrBlock extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVPCCidrBlock from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVPCCidrBlock; /** * The Id of the VPC associated CIDR Block. * * @cloudformationAttribute Id */ readonly attrId: string; /** * The source that allocated the IP address space. `byoip` or `amazon` indicates public IP address space allocated by Amazon or space that you have allocated with Bring your own IP (BYOIP). `none` indicates private space. * * @cloudformationAttribute IpSource */ readonly attrIpSource: string; /** * Public IPv6 addresses are those advertised on the internet from AWS . Private IP addresses are not and cannot be advertised on the internet from AWS . * * @cloudformationAttribute Ipv6AddressAttribute */ readonly attrIpv6AddressAttribute: string; /** * Requests an Amazon-provided IPv6 CIDR block with a /56 prefix length for the VPC. */ amazonProvidedIpv6CidrBlock?: boolean | cdk.IResolvable; /** * An IPv4 CIDR block to associate with the VPC. */ cidrBlock?: string; /** * Associate a CIDR allocated from an IPv4 IPAM pool to a VPC. */ ipv4IpamPoolId?: string; /** * The netmask length of the IPv4 CIDR you would like to associate from an Amazon VPC IP Address Manager (IPAM) pool. */ ipv4NetmaskLength?: number; /** * An IPv6 CIDR block from the IPv6 address pool. You must also specify `Ipv6Pool` in the request. */ ipv6CidrBlock?: string; /** * The name of the location from which we advertise the IPV6 CIDR block. */ ipv6CidrBlockNetworkBorderGroup?: string; /** * Associates a CIDR allocated from an IPv6 IPAM pool to a VPC. */ ipv6IpamPoolId?: string; /** * The netmask length of the IPv6 CIDR you would like to associate from an Amazon VPC IP Address Manager (IPAM) pool. */ ipv6NetmaskLength?: number; /** * The ID of an IPv6 address pool from which to allocate the IPv6 CIDR block. */ ipv6Pool?: string; /** * The ID of the VPC. */ vpcId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVPCCidrBlockProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnVPCCidrBlock` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpccidrblock.html */ export interface CfnVPCCidrBlockProps { /** * Requests an Amazon-provided IPv6 CIDR block with a /56 prefix length for the VPC. * * You cannot specify the range of IPv6 addresses or the size of the CIDR block. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpccidrblock.html#cfn-ec2-vpccidrblock-amazonprovidedipv6cidrblock */ readonly amazonProvidedIpv6CidrBlock?: boolean | cdk.IResolvable; /** * An IPv4 CIDR block to associate with the VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpccidrblock.html#cfn-ec2-vpccidrblock-cidrblock */ readonly cidrBlock?: string; /** * Associate a CIDR allocated from an IPv4 IPAM pool to a VPC. * * For more information about Amazon VPC IP Address Manager (IPAM), see [What is IPAM?](https://docs.aws.amazon.com//vpc/latest/ipam/what-is-it-ipam.html) in the *Amazon VPC IPAM User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpccidrblock.html#cfn-ec2-vpccidrblock-ipv4ipampoolid */ readonly ipv4IpamPoolId?: string; /** * The netmask length of the IPv4 CIDR you would like to associate from an Amazon VPC IP Address Manager (IPAM) pool. * * For more information about IPAM, see [What is IPAM?](https://docs.aws.amazon.com//vpc/latest/ipam/what-is-it-ipam.html) in the *Amazon VPC IPAM User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpccidrblock.html#cfn-ec2-vpccidrblock-ipv4netmasklength */ readonly ipv4NetmaskLength?: number; /** * An IPv6 CIDR block from the IPv6 address pool. You must also specify `Ipv6Pool` in the request. * * To let Amazon choose the IPv6 CIDR block for you, omit this parameter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpccidrblock.html#cfn-ec2-vpccidrblock-ipv6cidrblock */ readonly ipv6CidrBlock?: string; /** * The name of the location from which we advertise the IPV6 CIDR block. * * Use this parameter to limit the CIDR block to this location. * * You must set `AmazonProvidedIpv6CidrBlock` to `true` to use this parameter. * * You can have one IPv6 CIDR block association per network border group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpccidrblock.html#cfn-ec2-vpccidrblock-ipv6cidrblocknetworkbordergroup */ readonly ipv6CidrBlockNetworkBorderGroup?: string; /** * Associates a CIDR allocated from an IPv6 IPAM pool to a VPC. * * For more information about Amazon VPC IP Address Manager (IPAM), see [What is IPAM?](https://docs.aws.amazon.com//vpc/latest/ipam/what-is-it-ipam.html) in the *Amazon VPC IPAM User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpccidrblock.html#cfn-ec2-vpccidrblock-ipv6ipampoolid */ readonly ipv6IpamPoolId?: string; /** * The netmask length of the IPv6 CIDR you would like to associate from an Amazon VPC IP Address Manager (IPAM) pool. * * For more information about IPAM, see [What is IPAM?](https://docs.aws.amazon.com//vpc/latest/ipam/what-is-it-ipam.html) in the *Amazon VPC IPAM User Guide* . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpccidrblock.html#cfn-ec2-vpccidrblock-ipv6netmasklength */ readonly ipv6NetmaskLength?: number; /** * The ID of an IPv6 address pool from which to allocate the IPv6 CIDR block. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpccidrblock.html#cfn-ec2-vpccidrblock-ipv6pool */ readonly ipv6Pool?: string; /** * The ID of the VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpccidrblock.html#cfn-ec2-vpccidrblock-vpcid */ readonly vpcId: string; } /** * Associates a set of DHCP options with a VPC, or associates no DHCP options with the VPC. * * After you associate the options with the VPC, any existing instances and all new instances that you launch in that VPC use the options. You don't need to restart or relaunch the instances. They automatically pick up the changes within a few hours, depending on how frequently the instance renews its DHCP lease. You can explicitly renew the lease using the operating system on the instance. * * @cloudformationResource AWS::EC2::VPCDHCPOptionsAssociation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcdhcpoptionsassociation.html */ export declare class CfnVPCDHCPOptionsAssociation extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVPCDHCPOptionsAssociation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVPCDHCPOptionsAssociation; /** * The ID of the DHCP options set, or `default` to associate no DHCP options with the VPC. */ dhcpOptionsId: string; /** * The ID of the VPC. */ vpcId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVPCDHCPOptionsAssociationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnVPCDHCPOptionsAssociation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcdhcpoptionsassociation.html */ export interface CfnVPCDHCPOptionsAssociationProps { /** * The ID of the DHCP options set, or `default` to associate no DHCP options with the VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcdhcpoptionsassociation.html#cfn-ec2-vpcdhcpoptionsassociation-dhcpoptionsid */ readonly dhcpOptionsId: string; /** * The ID of the VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcdhcpoptionsassociation.html#cfn-ec2-vpcdhcpoptionsassociation-vpcid */ readonly vpcId: string; } /** * Specifies a VPC endpoint. * * A VPC endpoint provides a private connection between your VPC and an endpoint service. You can use an endpoint service provided by AWS , an AWS Marketplace Partner, or another AWS accounts in your organization. For more information, see the [AWS PrivateLink User Guide](https://docs.aws.amazon.com/vpc/latest/privatelink/) . * * An endpoint of type `Interface` establishes connections between the subnets in your VPC and an AWS service , your own service, or a service hosted by another AWS account . With an interface VPC endpoint, you specify the subnets in which to create the endpoint and the security groups to associate with the endpoint network interfaces. * * An endpoint of type `gateway` serves as a target for a route in your route table for traffic destined for Amazon S3 or DynamoDB . You can specify an endpoint policy for the endpoint, which controls access to the service from your VPC. You can also specify the VPC route tables that use the endpoint. For more information about connectivity to Amazon S3 , see [Why can't I connect to an S3 bucket using a gateway VPC endpoint?](https://docs.aws.amazon.com/premiumsupport/knowledge-center/connect-s3-vpc-endpoint) * * An endpoint of type `GatewayLoadBalancer` provides private connectivity between your VPC and virtual appliances from a service provider. * * @cloudformationResource AWS::EC2::VPCEndpoint * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html */ export declare class CfnVPCEndpoint extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggableV2 { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVPCEndpoint from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVPCEndpoint; /** * The date and time the VPC endpoint was created. For example: `Fri Sep 28 23:34:36 UTC 2018.` * * @cloudformationAttribute CreationTimestamp */ readonly attrCreationTimestamp: string; /** * (Interface endpoints) The DNS entries for the endpoint. Each entry is a combination of the hosted zone ID and the DNS name. The entries are ordered as follows: regional public DNS, zonal public DNS, private DNS, and wildcard DNS. This order is not enforced for AWS Marketplace services. * * The following is an example. In the first entry, the hosted zone ID is Z1HUB23UULQXV and the DNS name is vpce-01abc23456de78f9g-12abccd3.ec2.us-east-1.vpce.amazonaws.com. * * ["Z1HUB23UULQXV:vpce-01abc23456de78f9g-12abccd3.ec2.us-east-1.vpce.amazonaws.com", "Z1HUB23UULQXV:vpce-01abc23456de78f9g-12abccd3-us-east-1a.ec2.us-east-1.vpce.amazonaws.com", "Z1C12344VYDITB0:ec2.us-east-1.amazonaws.com"] * * If you update the `PrivateDnsEnabled` or `SubnetIds` properties, the DNS entries in the list will change. * * @cloudformationAttribute DnsEntries */ readonly attrDnsEntries: Array; /** * The ID of the VPC endpoint. * * @cloudformationAttribute Id */ readonly attrId: string; /** * (Interface endpoints) The network interface IDs. If you update the `PrivateDnsEnabled` or `SubnetIds` properties, the items in this list might change. * * @cloudformationAttribute NetworkInterfaceIds */ readonly attrNetworkInterfaceIds: Array; /** * Tag Manager which manages the tags for this resource */ readonly cdkTagManager: cdk.TagManager; /** * Describes the DNS options for an endpoint. */ dnsOptions?: CfnVPCEndpoint.DnsOptionsSpecificationProperty | cdk.IResolvable; /** * The supported IP address types. */ ipAddressType?: string; /** * An endpoint policy, which controls access to the service from the VPC. */ policyDocument?: any | cdk.IResolvable; /** * Indicate whether to associate a private hosted zone with the specified VPC. */ privateDnsEnabled?: boolean | cdk.IResolvable; /** * The Amazon Resource Name (ARN) of the resource configuration. */ resourceConfigurationArn?: string; /** * The IDs of the route tables. */ routeTableIds?: Array; /** * The IDs of the security groups to associate with the endpoint network interfaces. */ securityGroupIds?: Array; /** * The name of the endpoint service. */ serviceName?: string; /** * The Amazon Resource Name (ARN) of the service network. */ serviceNetworkArn?: string; /** * Describes a Region. */ serviceRegion?: string; /** * The IDs of the subnets in which to create endpoint network interfaces. */ subnetIds?: Array; /** * The tags to associate with the endpoint. */ tags?: Array; /** * The type of endpoint. */ vpcEndpointType?: string; /** * The ID of the VPC. */ vpcId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVPCEndpointProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnVPCEndpoint { /** * Describes the DNS options for an endpoint. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcendpoint-dnsoptionsspecification.html */ interface DnsOptionsSpecificationProperty { /** * The DNS records created for the endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcendpoint-dnsoptionsspecification.html#cfn-ec2-vpcendpoint-dnsoptionsspecification-dnsrecordiptype */ readonly dnsRecordIpType?: string; /** * Indicates whether to enable private DNS only for inbound endpoints. * * This option is available only for services that support both gateway and interface endpoints. It routes traffic that originates from the VPC to the gateway endpoint and traffic that originates from on-premises to the interface endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcendpoint-dnsoptionsspecification.html#cfn-ec2-vpcendpoint-dnsoptionsspecification-privatednsonlyforinboundresolverendpoint */ readonly privateDnsOnlyForInboundResolverEndpoint?: string; } } /** * Properties for defining a `CfnVPCEndpoint` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html */ export interface CfnVPCEndpointProps { /** * Describes the DNS options for an endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html#cfn-ec2-vpcendpoint-dnsoptions */ readonly dnsOptions?: CfnVPCEndpoint.DnsOptionsSpecificationProperty | cdk.IResolvable; /** * The supported IP address types. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html#cfn-ec2-vpcendpoint-ipaddresstype */ readonly ipAddressType?: string; /** * An endpoint policy, which controls access to the service from the VPC. * * The default endpoint policy allows full access to the service. Endpoint policies are supported only for gateway and interface endpoints. * * For CloudFormation templates in YAML, you can provide the policy in JSON or YAML format. For example, if you have a JSON policy, you can convert it to YAML before including it in the YAML template, and AWS CloudFormation converts the policy to JSON format before calling the API actions for AWS PrivateLink . Alternatively, you can include the JSON directly in the YAML, as shown in the following `Properties` section: * * `Properties: VpcEndpointType: 'Interface' ServiceName: !Sub 'com.amazonaws.${AWS::Region}.logs' PolicyDocument: '{ "Version":"2012-10-17", "Statement": [{ "Effect":"Allow", "Principal":"*", "Action":["logs:Describe*","logs:Get*","logs:List*","logs:FilterLogEvents"], "Resource":"*" }] }'` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html#cfn-ec2-vpcendpoint-policydocument */ readonly policyDocument?: any | cdk.IResolvable; /** * Indicate whether to associate a private hosted zone with the specified VPC. * * The private hosted zone contains a record set for the default public DNS name for the service for the Region (for example, `kinesis.us-east-1.amazonaws.com` ), which resolves to the private IP addresses of the endpoint network interfaces in the VPC. This enables you to make requests to the default public DNS name for the service instead of the public DNS names that are automatically generated by the VPC endpoint service. * * To use a private hosted zone, you must set the following VPC attributes to `true` : `enableDnsHostnames` and `enableDnsSupport` . * * This property is supported only for interface endpoints. * * Default: `false` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html#cfn-ec2-vpcendpoint-privatednsenabled */ readonly privateDnsEnabled?: boolean | cdk.IResolvable; /** * The Amazon Resource Name (ARN) of the resource configuration. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html#cfn-ec2-vpcendpoint-resourceconfigurationarn */ readonly resourceConfigurationArn?: string; /** * The IDs of the route tables. * * Routing is supported only for gateway endpoints. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html#cfn-ec2-vpcendpoint-routetableids */ readonly routeTableIds?: Array; /** * The IDs of the security groups to associate with the endpoint network interfaces. * * If this parameter is not specified, we use the default security group for the VPC. Security groups are supported only for interface endpoints. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html#cfn-ec2-vpcendpoint-securitygroupids */ readonly securityGroupIds?: Array; /** * The name of the endpoint service. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html#cfn-ec2-vpcendpoint-servicename */ readonly serviceName?: string; /** * The Amazon Resource Name (ARN) of the service network. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html#cfn-ec2-vpcendpoint-servicenetworkarn */ readonly serviceNetworkArn?: string; /** * Describes a Region. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html#cfn-ec2-vpcendpoint-serviceregion */ readonly serviceRegion?: string; /** * The IDs of the subnets in which to create endpoint network interfaces. * * You must specify this property for an interface endpoint or a Gateway Load Balancer endpoint. You can't specify this property for a gateway endpoint. For a Gateway Load Balancer endpoint, you can specify only one subnet. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html#cfn-ec2-vpcendpoint-subnetids */ readonly subnetIds?: Array; /** * The tags to associate with the endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html#cfn-ec2-vpcendpoint-tags */ readonly tags?: Array; /** * The type of endpoint. * * Default: Gateway * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html#cfn-ec2-vpcendpoint-vpcendpointtype */ readonly vpcEndpointType?: string; /** * The ID of the VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html#cfn-ec2-vpcendpoint-vpcid */ readonly vpcId: string; } /** * Specifies a connection notification for a VPC endpoint or VPC endpoint service. * * A connection notification notifies you of specific endpoint events. You must create an SNS topic to receive notifications. For more information, see [Create a Topic](https://docs.aws.amazon.com/sns/latest/dg/CreateTopic.html) in the *Amazon Simple Notification Service Developer Guide* . * * You can create a connection notification for interface endpoints only. * * @cloudformationResource AWS::EC2::VPCEndpointConnectionNotification * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointconnectionnotification.html */ export declare class CfnVPCEndpointConnectionNotification extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVPCEndpointConnectionNotification from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVPCEndpointConnectionNotification; /** * The ID of the notification. * * @cloudformationAttribute VPCEndpointConnectionNotificationId */ readonly attrVpcEndpointConnectionNotificationId: string; /** * The endpoint events for which to receive notifications. */ connectionEvents: Array; /** * The ARN of the SNS topic for the notifications. */ connectionNotificationArn: string; /** * The ID of the endpoint service. */ serviceId?: string; /** * The ID of the endpoint. */ vpcEndpointId?: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVPCEndpointConnectionNotificationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnVPCEndpointConnectionNotification` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointconnectionnotification.html */ export interface CfnVPCEndpointConnectionNotificationProps { /** * The endpoint events for which to receive notifications. * * Valid values are `Accept` , `Connect` , `Delete` , and `Reject` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointconnectionnotification.html#cfn-ec2-vpcendpointconnectionnotification-connectionevents */ readonly connectionEvents: Array; /** * The ARN of the SNS topic for the notifications. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointconnectionnotification.html#cfn-ec2-vpcendpointconnectionnotification-connectionnotificationarn */ readonly connectionNotificationArn: string; /** * The ID of the endpoint service. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointconnectionnotification.html#cfn-ec2-vpcendpointconnectionnotification-serviceid */ readonly serviceId?: string; /** * The ID of the endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointconnectionnotification.html#cfn-ec2-vpcendpointconnectionnotification-vpcendpointid */ readonly vpcEndpointId?: string; } /** * Creates a VPC endpoint service configuration to which service consumers ( AWS accounts, users, and IAM roles) can connect. * * To create an endpoint service configuration, you must first create one of the following for your service: * * - A [Network Load Balancer](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/introduction.html) . Service consumers connect to your service using an interface endpoint. * - A [Gateway Load Balancer](https://docs.aws.amazon.com/elasticloadbalancing/latest/gateway/introduction.html) . Service consumers connect to your service using a Gateway Load Balancer endpoint. * * For more information, see the [AWS PrivateLink User Guide](https://docs.aws.amazon.com/vpc/latest/privatelink/) . * * @cloudformationResource AWS::EC2::VPCEndpointService * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointservice.html */ export declare class CfnVPCEndpointService extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggableV2 { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVPCEndpointService from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVPCEndpointService; /** * The ID of the endpoint service. * * @cloudformationAttribute ServiceId */ readonly attrServiceId: string; /** * Indicates whether requests from service consumers to create an endpoint to your service must be accepted. */ acceptanceRequired?: boolean | cdk.IResolvable; /** * Tag Manager which manages the tags for this resource */ readonly cdkTagManager: cdk.TagManager; /** * Indicates whether to enable the built-in Contributor Insights rules provided by AWS PrivateLink . */ contributorInsightsEnabled?: boolean | cdk.IResolvable; /** * The Amazon Resource Names (ARNs) of the Gateway Load Balancers. */ gatewayLoadBalancerArns?: Array; /** * The Amazon Resource Names (ARNs) of the Network Load Balancers. */ networkLoadBalancerArns?: Array; /** * The entity that is responsible for the endpoint costs. */ payerResponsibility?: string; /** * The supported IP address types. */ supportedIpAddressTypes?: Array; /** * The Regions from which service consumers can access the service. */ supportedRegions?: Array; /** * The tags to associate with the service. */ tags?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnVPCEndpointServiceProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnVPCEndpointService` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointservice.html */ export interface CfnVPCEndpointServiceProps { /** * Indicates whether requests from service consumers to create an endpoint to your service must be accepted. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointservice.html#cfn-ec2-vpcendpointservice-acceptancerequired */ readonly acceptanceRequired?: boolean | cdk.IResolvable; /** * Indicates whether to enable the built-in Contributor Insights rules provided by AWS PrivateLink . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointservice.html#cfn-ec2-vpcendpointservice-contributorinsightsenabled */ readonly contributorInsightsEnabled?: boolean | cdk.IResolvable; /** * The Amazon Resource Names (ARNs) of the Gateway Load Balancers. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointservice.html#cfn-ec2-vpcendpointservice-gatewayloadbalancerarns */ readonly gatewayLoadBalancerArns?: Array; /** * The Amazon Resource Names (ARNs) of the Network Load Balancers. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointservice.html#cfn-ec2-vpcendpointservice-networkloadbalancerarns */ readonly networkLoadBalancerArns?: Array; /** * The entity that is responsible for the endpoint costs. * * The default is the endpoint owner. If you set the payer responsibility to the service owner, you cannot set it back to the endpoint owner. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointservice.html#cfn-ec2-vpcendpointservice-payerresponsibility */ readonly payerResponsibility?: string; /** * The supported IP address types. * * The possible values are `ipv4` and `ipv6` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointservice.html#cfn-ec2-vpcendpointservice-supportedipaddresstypes */ readonly supportedIpAddressTypes?: Array; /** * The Regions from which service consumers can access the service. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointservice.html#cfn-ec2-vpcendpointservice-supportedregions */ readonly supportedRegions?: Array; /** * The tags to associate with the service. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointservice.html#cfn-ec2-vpcendpointservice-tags */ readonly tags?: Array; } /** * Grant or revoke permissions for service consumers (users, IAM roles, and AWS accounts) to connect to a VPC endpoint service. * * If you grant permissions to all principals, the service is public. Any users who know the name of a public service can send a request to attach an endpoint. If the service does not require manual approval, attachments are automatically approved. * * @cloudformationResource AWS::EC2::VPCEndpointServicePermissions * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointservicepermissions.html */ export declare class CfnVPCEndpointServicePermissions extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVPCEndpointServicePermissions from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVPCEndpointServicePermissions; /** * The Amazon Resource Names (ARN) of one or more principals (for example, users, IAM roles, and AWS accounts ). */ allowedPrincipals?: Array; /** * The ID of the service. */ serviceId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVPCEndpointServicePermissionsProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnVPCEndpointServicePermissions` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointservicepermissions.html */ export interface CfnVPCEndpointServicePermissionsProps { /** * The Amazon Resource Names (ARN) of one or more principals (for example, users, IAM roles, and AWS accounts ). * * Permissions are granted to the principals in this list. To grant permissions to all principals, specify an asterisk (*). Permissions are revoked for principals not in this list. If the list is empty, then all permissions are revoked. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointservicepermissions.html#cfn-ec2-vpcendpointservicepermissions-allowedprincipals */ readonly allowedPrincipals?: Array; /** * The ID of the service. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpointservicepermissions.html#cfn-ec2-vpcendpointservicepermissions-serviceid */ readonly serviceId: string; } /** * Attaches an internet gateway, or a virtual private gateway to a VPC, enabling connectivity between the internet and the VPC. * * @cloudformationResource AWS::EC2::VPCGatewayAttachment * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcgatewayattachment.html */ export declare class CfnVPCGatewayAttachment extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVPCGatewayAttachment from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVPCGatewayAttachment; /** * Used to identify if this resource is an Internet Gateway or Vpn Gateway Attachment * * @cloudformationAttribute AttachmentType */ readonly attrAttachmentType: string; /** * The ID of the internet gateway. */ internetGatewayId?: string; /** * The ID of the VPC. */ vpcId: string; /** * The ID of the virtual private gateway. */ vpnGatewayId?: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVPCGatewayAttachmentProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnVPCGatewayAttachment` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcgatewayattachment.html */ export interface CfnVPCGatewayAttachmentProps { /** * The ID of the internet gateway. * * You must specify either `InternetGatewayId` or `VpnGatewayId` , but not both. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcgatewayattachment.html#cfn-ec2-vpcgatewayattachment-internetgatewayid */ readonly internetGatewayId?: string; /** * The ID of the VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcgatewayattachment.html#cfn-ec2-vpcgatewayattachment-vpcid */ readonly vpcId: string; /** * The ID of the virtual private gateway. * * You must specify either `InternetGatewayId` or `VpnGatewayId` , but not both. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcgatewayattachment.html#cfn-ec2-vpcgatewayattachment-vpngatewayid */ readonly vpnGatewayId?: string; } /** * Requests a VPC peering connection between two VPCs: a requester VPC that you own and an accepter VPC with which to create the connection. * * The accepter VPC can belong to a different AWS account and can be in a different Region than the requester VPC. * * The requester VPC and accepter VPC cannot have overlapping CIDR blocks. If you create a VPC peering connection request between VPCs with overlapping CIDR blocks, the VPC peering connection has a status of `failed` . * * If the VPCs belong to different accounts, the acceptor account must have a role that allows the requester account to accept the VPC peering connection. For an example, see [Walkthrough: Peer with a VPC in another AWS account](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/peer-with-vpc-in-another-account.html) . * * If the requester and acceptor VPCs are in the same account, the peering request is accepted without a peering role. * * @cloudformationResource AWS::EC2::VPCPeeringConnection * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcpeeringconnection.html */ export declare class CfnVPCPeeringConnection extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVPCPeeringConnection from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVPCPeeringConnection; /** * The ID of the peering connection. * * @cloudformationAttribute Id */ readonly attrId: string; /** * The AWS account ID of the owner of the accepter VPC. */ peerOwnerId?: string; /** * The Region code for the accepter VPC, if the accepter VPC is located in a Region other than the Region in which you make the request. */ peerRegion?: string; /** * The Amazon Resource Name (ARN) of the VPC peer role for the peering connection in another AWS account. */ peerRoleArn?: string; /** * The ID of the VPC with which you are creating the VPC peering connection. */ peerVpcId: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * Any tags assigned to the resource. */ tagsRaw?: Array; /** * The ID of the VPC. */ vpcId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVPCPeeringConnectionProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnVPCPeeringConnection` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcpeeringconnection.html */ export interface CfnVPCPeeringConnectionProps { /** * The AWS account ID of the owner of the accepter VPC. * * Default: Your AWS account ID * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcpeeringconnection.html#cfn-ec2-vpcpeeringconnection-peerownerid */ readonly peerOwnerId?: string; /** * The Region code for the accepter VPC, if the accepter VPC is located in a Region other than the Region in which you make the request. * * Default: The Region in which you make the request. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcpeeringconnection.html#cfn-ec2-vpcpeeringconnection-peerregion */ readonly peerRegion?: string; /** * The Amazon Resource Name (ARN) of the VPC peer role for the peering connection in another AWS account. * * This is required when you are peering a VPC in a different AWS account. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcpeeringconnection.html#cfn-ec2-vpcpeeringconnection-peerrolearn */ readonly peerRoleArn?: string; /** * The ID of the VPC with which you are creating the VPC peering connection. * * You must specify this parameter in the request. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcpeeringconnection.html#cfn-ec2-vpcpeeringconnection-peervpcid */ readonly peerVpcId: string; /** * Any tags assigned to the resource. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcpeeringconnection.html#cfn-ec2-vpcpeeringconnection-tags */ readonly tags?: Array; /** * The ID of the VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcpeeringconnection.html#cfn-ec2-vpcpeeringconnection-vpcid */ readonly vpcId: string; } /** * Specifies a VPN connection between a virtual private gateway and a VPN customer gateway or a transit gateway and a VPN customer gateway. * * To specify a VPN connection between a transit gateway and customer gateway, use the `TransitGatewayId` and `CustomerGatewayId` properties. * * To specify a VPN connection between a virtual private gateway and customer gateway, use the `VpnGatewayId` and `CustomerGatewayId` properties. * * For more information, see [AWS Site-to-Site VPN](https://docs.aws.amazon.com/vpn/latest/s2svpn/VPC_VPN.html) in the *AWS Site-to-Site VPN User Guide* . * * @cloudformationResource AWS::EC2::VPNConnection * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html */ export declare class CfnVPNConnection extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVPNConnection from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVPNConnection; /** * The ID of the VPN connection. * * @cloudformationAttribute VpnConnectionId */ readonly attrVpnConnectionId: string; /** * The ID of the customer gateway at your end of the VPN connection. */ customerGatewayId: string; /** * Indicate whether to enable acceleration for the VPN connection. */ enableAcceleration?: boolean | cdk.IResolvable; /** * The IPv4 CIDR on the customer gateway (on-premises) side of the VPN connection. */ localIpv4NetworkCidr?: string; /** * The IPv6 CIDR on the customer gateway (on-premises) side of the VPN connection. */ localIpv6NetworkCidr?: string; /** * The type of IPv4 address assigned to the outside interface of the customer gateway device. */ outsideIpAddressType?: string; /** * The IPv4 CIDR on the AWS side of the VPN connection. */ remoteIpv4NetworkCidr?: string; /** * The IPv6 CIDR on the AWS side of the VPN connection. */ remoteIpv6NetworkCidr?: string; /** * Indicates whether the VPN connection uses static routes only. */ staticRoutesOnly?: boolean | cdk.IResolvable; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * Any tags assigned to the VPN connection. */ tagsRaw?: Array; /** * The ID of the transit gateway associated with the VPN connection. */ transitGatewayId?: string; /** * The transit gateway attachment ID to use for the VPN tunnel. */ transportTransitGatewayAttachmentId?: string; /** * Indicate whether the VPN tunnels process IPv4 or IPv6 traffic. */ tunnelInsideIpVersion?: string; /** * The type of VPN connection. */ type: string; /** * The ID of the virtual private gateway at the AWS side of the VPN connection. */ vpnGatewayId?: string; /** * The tunnel options for the VPN connection. */ vpnTunnelOptionsSpecifications?: Array | cdk.IResolvable; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVPNConnectionProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnVPNConnection { /** * The tunnel options for a single VPN tunnel. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html */ interface VpnTunnelOptionsSpecificationProperty { /** * The action to take after DPD timeout occurs. * * Specify `restart` to restart the IKE initiation. Specify `clear` to end the IKE session. * * Valid Values: `clear` | `none` | `restart` * * Default: `clear` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-dpdtimeoutaction */ readonly dpdTimeoutAction?: string; /** * The number of seconds after which a DPD timeout occurs. * * Constraints: A value greater than or equal to 30. * * Default: `30` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-dpdtimeoutseconds */ readonly dpdTimeoutSeconds?: number; /** * Turn on or off tunnel endpoint lifecycle control feature. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-enabletunnellifecyclecontrol */ readonly enableTunnelLifecycleControl?: boolean | cdk.IResolvable; /** * The IKE versions that are permitted for the VPN tunnel. * * Valid values: `ikev1` | `ikev2` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-ikeversions */ readonly ikeVersions?: Array | cdk.IResolvable; /** * Options for logging VPN tunnel activity. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-logoptions */ readonly logOptions?: cdk.IResolvable | CfnVPNConnection.VpnTunnelLogOptionsSpecificationProperty; /** * One or more Diffie-Hellman group numbers that are permitted for the VPN tunnel for phase 1 IKE negotiations. * * Valid values: `2` | `14` | `15` | `16` | `17` | `18` | `19` | `20` | `21` | `22` | `23` | `24` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-phase1dhgroupnumbers */ readonly phase1DhGroupNumbers?: Array | cdk.IResolvable; /** * One or more encryption algorithms that are permitted for the VPN tunnel for phase 1 IKE negotiations. * * Valid values: `AES128` | `AES256` | `AES128-GCM-16` | `AES256-GCM-16` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-phase1encryptionalgorithms */ readonly phase1EncryptionAlgorithms?: Array | cdk.IResolvable; /** * One or more integrity algorithms that are permitted for the VPN tunnel for phase 1 IKE negotiations. * * Valid values: `SHA1` | `SHA2-256` | `SHA2-384` | `SHA2-512` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-phase1integrityalgorithms */ readonly phase1IntegrityAlgorithms?: Array | cdk.IResolvable; /** * The lifetime for phase 1 of the IKE negotiation, in seconds. * * Constraints: A value between 900 and 28,800. * * Default: `28800` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-phase1lifetimeseconds */ readonly phase1LifetimeSeconds?: number; /** * One or more Diffie-Hellman group numbers that are permitted for the VPN tunnel for phase 2 IKE negotiations. * * Valid values: `2` | `5` | `14` | `15` | `16` | `17` | `18` | `19` | `20` | `21` | `22` | `23` | `24` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-phase2dhgroupnumbers */ readonly phase2DhGroupNumbers?: Array | cdk.IResolvable; /** * One or more encryption algorithms that are permitted for the VPN tunnel for phase 2 IKE negotiations. * * Valid values: `AES128` | `AES256` | `AES128-GCM-16` | `AES256-GCM-16` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-phase2encryptionalgorithms */ readonly phase2EncryptionAlgorithms?: Array | cdk.IResolvable; /** * One or more integrity algorithms that are permitted for the VPN tunnel for phase 2 IKE negotiations. * * Valid values: `SHA1` | `SHA2-256` | `SHA2-384` | `SHA2-512` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-phase2integrityalgorithms */ readonly phase2IntegrityAlgorithms?: Array | cdk.IResolvable; /** * The lifetime for phase 2 of the IKE negotiation, in seconds. * * Constraints: A value between 900 and 3,600. The value must be less than the value for `Phase1LifetimeSeconds` . * * Default: `3600` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-phase2lifetimeseconds */ readonly phase2LifetimeSeconds?: number; /** * The pre-shared key (PSK) to establish initial authentication between the virtual private gateway and customer gateway. * * Constraints: Allowed characters are alphanumeric characters, periods (.), and underscores (_). Must be between 8 and 64 characters in length and cannot start with zero (0). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-presharedkey */ readonly preSharedKey?: string; /** * The percentage of the rekey window (determined by `RekeyMarginTimeSeconds` ) during which the rekey time is randomly selected. * * Constraints: A value between 0 and 100. * * Default: `100` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-rekeyfuzzpercentage */ readonly rekeyFuzzPercentage?: number; /** * The margin time, in seconds, before the phase 2 lifetime expires, during which the AWS side of the VPN connection performs an IKE rekey. * * The exact time of the rekey is randomly selected based on the value for `RekeyFuzzPercentage` . * * Constraints: A value between 60 and half of `Phase2LifetimeSeconds` . * * Default: `270` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-rekeymargintimeseconds */ readonly rekeyMarginTimeSeconds?: number; /** * The number of packets in an IKE replay window. * * Constraints: A value between 64 and 2048. * * Default: `1024` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-replaywindowsize */ readonly replayWindowSize?: number; /** * The action to take when the establishing the tunnel for the VPN connection. * * By default, your customer gateway device must initiate the IKE negotiation and bring up the tunnel. Specify `start` for AWS to initiate the IKE negotiation. * * Valid Values: `add` | `start` * * Default: `add` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-startupaction */ readonly startupAction?: string; /** * The range of inside IP addresses for the tunnel. * * Any specified CIDR blocks must be unique across all VPN connections that use the same virtual private gateway. * * Constraints: A size /30 CIDR block from the `169.254.0.0/16` range. The following CIDR blocks are reserved and cannot be used: * * - `169.254.0.0/30` * - `169.254.1.0/30` * - `169.254.2.0/30` * - `169.254.3.0/30` * - `169.254.4.0/30` * - `169.254.5.0/30` * - `169.254.169.252/30` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-tunnelinsidecidr */ readonly tunnelInsideCidr?: string; /** * The range of inside IPv6 addresses for the tunnel. * * Any specified CIDR blocks must be unique across all VPN connections that use the same transit gateway. * * Constraints: A size /126 CIDR block from the local `fd00::/8` range. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html#cfn-ec2-vpnconnection-vpntunneloptionsspecification-tunnelinsideipv6cidr */ readonly tunnelInsideIpv6Cidr?: string; } /** * Specifies the encryption algorithm for the VPN tunnel for phase 2 IKE negotiations. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-phase2encryptionalgorithmsrequestlistvalue.html */ interface Phase2EncryptionAlgorithmsRequestListValueProperty { /** * The encryption algorithm. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-phase2encryptionalgorithmsrequestlistvalue.html#cfn-ec2-vpnconnection-phase2encryptionalgorithmsrequestlistvalue-value */ readonly value?: string; } /** * Specifies a Diffie-Hellman group number for the VPN tunnel for phase 2 IKE negotiations. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-phase2dhgroupnumbersrequestlistvalue.html */ interface Phase2DHGroupNumbersRequestListValueProperty { /** * The Diffie-Hellmann group number. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-phase2dhgroupnumbersrequestlistvalue.html#cfn-ec2-vpnconnection-phase2dhgroupnumbersrequestlistvalue-value */ readonly value?: number; } /** * The IKE version that is permitted for the VPN tunnel. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-ikeversionsrequestlistvalue.html */ interface IKEVersionsRequestListValueProperty { /** * The IKE version. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-ikeversionsrequestlistvalue.html#cfn-ec2-vpnconnection-ikeversionsrequestlistvalue-value */ readonly value?: string; } /** * Options for logging VPN tunnel activity. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunnellogoptionsspecification.html */ interface VpnTunnelLogOptionsSpecificationProperty { /** * Options for sending VPN tunnel logs to CloudWatch. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunnellogoptionsspecification.html#cfn-ec2-vpnconnection-vpntunnellogoptionsspecification-cloudwatchlogoptions */ readonly cloudwatchLogOptions?: CfnVPNConnection.CloudwatchLogOptionsSpecificationProperty | cdk.IResolvable; } /** * Options for sending VPN tunnel logs to CloudWatch. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-cloudwatchlogoptionsspecification.html */ interface CloudwatchLogOptionsSpecificationProperty { /** * Enable or disable VPN tunnel logging feature. Default value is `False` . * * Valid values: `True` | `False` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-cloudwatchlogoptionsspecification.html#cfn-ec2-vpnconnection-cloudwatchlogoptionsspecification-logenabled */ readonly logEnabled?: boolean | cdk.IResolvable; /** * The Amazon Resource Name (ARN) of the CloudWatch log group to send logs to. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-cloudwatchlogoptionsspecification.html#cfn-ec2-vpnconnection-cloudwatchlogoptionsspecification-loggrouparn */ readonly logGroupArn?: string; /** * Set log format. Default format is `json` . * * Valid values: `json` | `text` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-cloudwatchlogoptionsspecification.html#cfn-ec2-vpnconnection-cloudwatchlogoptionsspecification-logoutputformat */ readonly logOutputFormat?: string; } /** * Specifies a Diffie-Hellman group number for the VPN tunnel for phase 1 IKE negotiations. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-phase1dhgroupnumbersrequestlistvalue.html */ interface Phase1DHGroupNumbersRequestListValueProperty { /** * The Diffie-Hellmann group number. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-phase1dhgroupnumbersrequestlistvalue.html#cfn-ec2-vpnconnection-phase1dhgroupnumbersrequestlistvalue-value */ readonly value?: number; } /** * Specifies the integrity algorithm for the VPN tunnel for phase 2 IKE negotiations. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-phase2integrityalgorithmsrequestlistvalue.html */ interface Phase2IntegrityAlgorithmsRequestListValueProperty { /** * The integrity algorithm. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-phase2integrityalgorithmsrequestlistvalue.html#cfn-ec2-vpnconnection-phase2integrityalgorithmsrequestlistvalue-value */ readonly value?: string; } /** * Specifies the integrity algorithm for the VPN tunnel for phase 1 IKE negotiations. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-phase1integrityalgorithmsrequestlistvalue.html */ interface Phase1IntegrityAlgorithmsRequestListValueProperty { /** * The value for the integrity algorithm. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-phase1integrityalgorithmsrequestlistvalue.html#cfn-ec2-vpnconnection-phase1integrityalgorithmsrequestlistvalue-value */ readonly value?: string; } /** * Specifies the encryption algorithm for the VPN tunnel for phase 1 IKE negotiations. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-phase1encryptionalgorithmsrequestlistvalue.html */ interface Phase1EncryptionAlgorithmsRequestListValueProperty { /** * The value for the encryption algorithm. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-phase1encryptionalgorithmsrequestlistvalue.html#cfn-ec2-vpnconnection-phase1encryptionalgorithmsrequestlistvalue-value */ readonly value?: string; } } /** * Properties for defining a `CfnVPNConnection` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html */ export interface CfnVPNConnectionProps { /** * The ID of the customer gateway at your end of the VPN connection. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html#cfn-ec2-vpnconnection-customergatewayid */ readonly customerGatewayId: string; /** * Indicate whether to enable acceleration for the VPN connection. * * Default: `false` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html#cfn-ec2-vpnconnection-enableacceleration */ readonly enableAcceleration?: boolean | cdk.IResolvable; /** * The IPv4 CIDR on the customer gateway (on-premises) side of the VPN connection. * * Default: `0.0.0.0/0` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html#cfn-ec2-vpnconnection-localipv4networkcidr */ readonly localIpv4NetworkCidr?: string; /** * The IPv6 CIDR on the customer gateway (on-premises) side of the VPN connection. * * Default: `::/0` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html#cfn-ec2-vpnconnection-localipv6networkcidr */ readonly localIpv6NetworkCidr?: string; /** * The type of IPv4 address assigned to the outside interface of the customer gateway device. * * Valid values: `PrivateIpv4` | `PublicIpv4` * * Default: `PublicIpv4` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html#cfn-ec2-vpnconnection-outsideipaddresstype */ readonly outsideIpAddressType?: string; /** * The IPv4 CIDR on the AWS side of the VPN connection. * * Default: `0.0.0.0/0` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html#cfn-ec2-vpnconnection-remoteipv4networkcidr */ readonly remoteIpv4NetworkCidr?: string; /** * The IPv6 CIDR on the AWS side of the VPN connection. * * Default: `::/0` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html#cfn-ec2-vpnconnection-remoteipv6networkcidr */ readonly remoteIpv6NetworkCidr?: string; /** * Indicates whether the VPN connection uses static routes only. * * Static routes must be used for devices that don't support BGP. * * If you are creating a VPN connection for a device that does not support Border Gateway Protocol (BGP), you must specify `true` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html#cfn-ec2-vpnconnection-staticroutesonly */ readonly staticRoutesOnly?: boolean | cdk.IResolvable; /** * Any tags assigned to the VPN connection. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html#cfn-ec2-vpnconnection-tags */ readonly tags?: Array; /** * The ID of the transit gateway associated with the VPN connection. * * You must specify either `TransitGatewayId` or `VpnGatewayId` , but not both. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html#cfn-ec2-vpnconnection-transitgatewayid */ readonly transitGatewayId?: string; /** * The transit gateway attachment ID to use for the VPN tunnel. * * Required if `OutsideIpAddressType` is set to `PrivateIpv4` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html#cfn-ec2-vpnconnection-transporttransitgatewayattachmentid */ readonly transportTransitGatewayAttachmentId?: string; /** * Indicate whether the VPN tunnels process IPv4 or IPv6 traffic. * * Default: `ipv4` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html#cfn-ec2-vpnconnection-tunnelinsideipversion */ readonly tunnelInsideIpVersion?: string; /** * The type of VPN connection. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html#cfn-ec2-vpnconnection-type */ readonly type: string; /** * The ID of the virtual private gateway at the AWS side of the VPN connection. * * You must specify either `TransitGatewayId` or `VpnGatewayId` , but not both. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html#cfn-ec2-vpnconnection-vpngatewayid */ readonly vpnGatewayId?: string; /** * The tunnel options for the VPN connection. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnection.html#cfn-ec2-vpnconnection-vpntunneloptionsspecifications */ readonly vpnTunnelOptionsSpecifications?: Array | cdk.IResolvable; } /** * Specifies a static route for a VPN connection between an existing virtual private gateway and a VPN customer gateway. * * The static route allows traffic to be routed from the virtual private gateway to the VPN customer gateway. * * For more information, see [AWS Site-to-Site VPN](https://docs.aws.amazon.com/vpn/latest/s2svpn/VPC_VPN.html) in the *AWS Site-to-Site VPN User Guide* . * * @cloudformationResource AWS::EC2::VPNConnectionRoute * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnectionroute.html */ export declare class CfnVPNConnectionRoute extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVPNConnectionRoute from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVPNConnectionRoute; /** * The CIDR block associated with the local subnet of the customer network. */ destinationCidrBlock: string; /** * The ID of the VPN connection. */ vpnConnectionId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVPNConnectionRouteProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnVPNConnectionRoute` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnectionroute.html */ export interface CfnVPNConnectionRouteProps { /** * The CIDR block associated with the local subnet of the customer network. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnectionroute.html#cfn-ec2-vpnconnectionroute-destinationcidrblock */ readonly destinationCidrBlock: string; /** * The ID of the VPN connection. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpnconnectionroute.html#cfn-ec2-vpnconnectionroute-vpnconnectionid */ readonly vpnConnectionId: string; } /** * Specifies a virtual private gateway. * * A virtual private gateway is the endpoint on the VPC side of your VPN connection. You can create a virtual private gateway before creating the VPC itself. * * For more information, see [AWS Site-to-Site VPN](https://docs.aws.amazon.com/vpn/latest/s2svpn/VPC_VPN.html) in the *AWS Site-to-Site VPN User Guide* . * * @cloudformationResource AWS::EC2::VPNGateway * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpngateway.html */ export declare class CfnVPNGateway extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVPNGateway from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVPNGateway; /** * The ID of the VPN gateway. * * @cloudformationAttribute VPNGatewayId */ readonly attrVpnGatewayId: string; /** * The private Autonomous System Number (ASN) for the Amazon side of a BGP session. */ amazonSideAsn?: number; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * Any tags assigned to the virtual private gateway. */ tagsRaw?: Array; /** * The type of VPN connection the virtual private gateway supports. */ type: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVPNGatewayProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnVPNGateway` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpngateway.html */ export interface CfnVPNGatewayProps { /** * The private Autonomous System Number (ASN) for the Amazon side of a BGP session. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpngateway.html#cfn-ec2-vpngateway-amazonsideasn */ readonly amazonSideAsn?: number; /** * Any tags assigned to the virtual private gateway. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpngateway.html#cfn-ec2-vpngateway-tags */ readonly tags?: Array; /** * The type of VPN connection the virtual private gateway supports. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpngateway.html#cfn-ec2-vpngateway-type */ readonly type: string; } /** * Enables a virtual private gateway (VGW) to propagate routes to the specified route table of a VPC. * * If you reference a VPN gateway that is in the same template as your VPN gateway route propagation, you must explicitly declare a dependency on the VPN gateway attachment. The `AWS::EC2::VPNGatewayRoutePropagation` resource cannot use the VPN gateway until it has successfully attached to the VPC. Add a [DependsOn Attribute](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-attribute-dependson.html) in the `AWS::EC2::VPNGatewayRoutePropagation` resource to explicitly declare a dependency on the VPN gateway attachment. * * @cloudformationResource AWS::EC2::VPNGatewayRoutePropagation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpngatewayroutepropagation.html */ export declare class CfnVPNGatewayRoutePropagation extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVPNGatewayRoutePropagation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVPNGatewayRoutePropagation; /** * The ID of the VPN gateway. * * @cloudformationAttribute Id */ readonly attrId: string; /** * The ID of the route table. */ routeTableIds: Array; /** * The ID of the virtual private gateway that is attached to a VPC. */ vpnGatewayId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVPNGatewayRoutePropagationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnVPNGatewayRoutePropagation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpngatewayroutepropagation.html */ export interface CfnVPNGatewayRoutePropagationProps { /** * The ID of the route table. * * The routing table must be associated with the same VPC that the virtual private gateway is attached to. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpngatewayroutepropagation.html#cfn-ec2-vpngatewayroutepropagation-routetableids */ readonly routeTableIds: Array; /** * The ID of the virtual private gateway that is attached to a VPC. * * The virtual private gateway must be attached to the same VPC that the routing tables are associated with. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpngatewayroutepropagation.html#cfn-ec2-vpngatewayroutepropagation-vpngatewayid */ readonly vpnGatewayId: string; } /** * An AWS Verified Access endpoint specifies the application that AWS Verified Access provides access to. * * It must be attached to an AWS Verified Access group. An AWS Verified Access endpoint must also have an attached access policy before you attached it to a group. * * @cloudformationResource AWS::EC2::VerifiedAccessEndpoint * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html */ export declare class CfnVerifiedAccessEndpoint extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVerifiedAccessEndpoint from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVerifiedAccessEndpoint; /** * The creation time. * * @cloudformationAttribute CreationTime */ readonly attrCreationTime: string; /** * Use this to construct the redirect URI to add to your OIDC provider's allow list. * * @cloudformationAttribute DeviceValidationDomain */ readonly attrDeviceValidationDomain: string; /** * The DNS name generated for the endpoint. * * @cloudformationAttribute EndpointDomain */ readonly attrEndpointDomain: string; /** * The last updated time. * * @cloudformationAttribute LastUpdatedTime */ readonly attrLastUpdatedTime: string; /** * The endpoint status. * * @cloudformationAttribute Status */ readonly attrStatus: string; /** * The ID of the Verified Access endpoint. * * @cloudformationAttribute VerifiedAccessEndpointId */ readonly attrVerifiedAccessEndpointId: string; /** * The instance identifier. * * @cloudformationAttribute VerifiedAccessInstanceId */ readonly attrVerifiedAccessInstanceId: string; /** * The DNS name for users to reach your application. */ applicationDomain?: string; /** * The type of attachment used to provide connectivity between the AWS Verified Access endpoint and the application. */ attachmentType: string; /** * The options for a CIDR endpoint. */ cidrOptions?: CfnVerifiedAccessEndpoint.CidrOptionsProperty | cdk.IResolvable; /** * A description for the AWS Verified Access endpoint. */ description?: string; /** * The ARN of a public TLS/SSL certificate imported into or created with ACM. */ domainCertificateArn?: string; /** * A custom identifier that is prepended to the DNS name that is generated for the endpoint. */ endpointDomainPrefix?: string; /** * The type of AWS Verified Access endpoint. */ endpointType: string; /** * The load balancer details if creating the AWS Verified Access endpoint as `load-balancer` type. */ loadBalancerOptions?: cdk.IResolvable | CfnVerifiedAccessEndpoint.LoadBalancerOptionsProperty; /** * The options for network-interface type endpoint. */ networkInterfaceOptions?: cdk.IResolvable | CfnVerifiedAccessEndpoint.NetworkInterfaceOptionsProperty; /** * The Verified Access policy document. */ policyDocument?: string; /** * The status of the Verified Access policy. */ policyEnabled?: boolean | cdk.IResolvable; /** * The options for an RDS endpoint. */ rdsOptions?: cdk.IResolvable | CfnVerifiedAccessEndpoint.RdsOptionsProperty; /** * The IDs of the security groups for the endpoint. */ securityGroupIds?: Array; /** * The options for additional server side encryption. */ sseSpecification?: cdk.IResolvable | CfnVerifiedAccessEndpoint.SseSpecificationProperty; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags. */ tagsRaw?: Array; /** * The ID of the AWS Verified Access group. */ verifiedAccessGroupId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVerifiedAccessEndpointProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnVerifiedAccessEndpoint { /** * Describes the load balancer options when creating an AWS Verified Access endpoint using the `load-balancer` type. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-loadbalanceroptions.html */ interface LoadBalancerOptionsProperty { /** * The ARN of the load balancer. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-loadbalanceroptions.html#cfn-ec2-verifiedaccessendpoint-loadbalanceroptions-loadbalancerarn */ readonly loadBalancerArn?: string; /** * The IP port number. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-loadbalanceroptions.html#cfn-ec2-verifiedaccessendpoint-loadbalanceroptions-port */ readonly port?: number; /** * The port ranges. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-loadbalanceroptions.html#cfn-ec2-verifiedaccessendpoint-loadbalanceroptions-portranges */ readonly portRanges?: Array | cdk.IResolvable; /** * The IP protocol. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-loadbalanceroptions.html#cfn-ec2-verifiedaccessendpoint-loadbalanceroptions-protocol */ readonly protocol?: string; /** * The IDs of the subnets. * * You can specify only one subnet per Availability Zone. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-loadbalanceroptions.html#cfn-ec2-verifiedaccessendpoint-loadbalanceroptions-subnetids */ readonly subnetIds?: Array; } /** * Describes the port range for a Verified Access endpoint. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-portrange.html */ interface PortRangeProperty { /** * The start of the port range. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-portrange.html#cfn-ec2-verifiedaccessendpoint-portrange-fromport */ readonly fromPort?: number; /** * The end of the port range. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-portrange.html#cfn-ec2-verifiedaccessendpoint-portrange-toport */ readonly toPort?: number; } /** * Describes the network interface options when creating an AWS Verified Access endpoint using the `network-interface` type. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-networkinterfaceoptions.html */ interface NetworkInterfaceOptionsProperty { /** * The ID of the network interface. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-networkinterfaceoptions.html#cfn-ec2-verifiedaccessendpoint-networkinterfaceoptions-networkinterfaceid */ readonly networkInterfaceId?: string; /** * The IP port number. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-networkinterfaceoptions.html#cfn-ec2-verifiedaccessendpoint-networkinterfaceoptions-port */ readonly port?: number; /** * The port ranges. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-networkinterfaceoptions.html#cfn-ec2-verifiedaccessendpoint-networkinterfaceoptions-portranges */ readonly portRanges?: Array | cdk.IResolvable; /** * The IP protocol. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-networkinterfaceoptions.html#cfn-ec2-verifiedaccessendpoint-networkinterfaceoptions-protocol */ readonly protocol?: string; } /** * Describes the RDS options for a Verified Access endpoint. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-rdsoptions.html */ interface RdsOptionsProperty { /** * The port. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-rdsoptions.html#cfn-ec2-verifiedaccessendpoint-rdsoptions-port */ readonly port?: number; /** * The protocol. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-rdsoptions.html#cfn-ec2-verifiedaccessendpoint-rdsoptions-protocol */ readonly protocol?: string; /** * The ARN of the DB cluster. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-rdsoptions.html#cfn-ec2-verifiedaccessendpoint-rdsoptions-rdsdbclusterarn */ readonly rdsDbClusterArn?: string; /** * The ARN of the RDS instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-rdsoptions.html#cfn-ec2-verifiedaccessendpoint-rdsoptions-rdsdbinstancearn */ readonly rdsDbInstanceArn?: string; /** * The ARN of the RDS proxy. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-rdsoptions.html#cfn-ec2-verifiedaccessendpoint-rdsoptions-rdsdbproxyarn */ readonly rdsDbProxyArn?: string; /** * The RDS endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-rdsoptions.html#cfn-ec2-verifiedaccessendpoint-rdsoptions-rdsendpoint */ readonly rdsEndpoint?: string; /** * The IDs of the subnets. * * You can specify only one subnet per Availability Zone. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-rdsoptions.html#cfn-ec2-verifiedaccessendpoint-rdsoptions-subnetids */ readonly subnetIds?: Array; } /** * Describes the CIDR options for a Verified Access endpoint. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-cidroptions.html */ interface CidrOptionsProperty { /** * The CIDR. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-cidroptions.html#cfn-ec2-verifiedaccessendpoint-cidroptions-cidr */ readonly cidr?: string; /** * The port ranges. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-cidroptions.html#cfn-ec2-verifiedaccessendpoint-cidroptions-portranges */ readonly portRanges?: Array | cdk.IResolvable; /** * The protocol. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-cidroptions.html#cfn-ec2-verifiedaccessendpoint-cidroptions-protocol */ readonly protocol?: string; /** * The IDs of the subnets. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-cidroptions.html#cfn-ec2-verifiedaccessendpoint-cidroptions-subnetids */ readonly subnetIds?: Array; } /** * AWS Verified Access provides server side encryption by default to data at rest using AWS -owned KMS keys. * * You also have the option of using customer managed KMS keys, which can be specified using the options below. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-ssespecification.html */ interface SseSpecificationProperty { /** * Enable or disable the use of customer managed KMS keys for server side encryption. * * Valid values: `True` | `False` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-ssespecification.html#cfn-ec2-verifiedaccessendpoint-ssespecification-customermanagedkeyenabled */ readonly customerManagedKeyEnabled?: boolean | cdk.IResolvable; /** * The ARN of the KMS key. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessendpoint-ssespecification.html#cfn-ec2-verifiedaccessendpoint-ssespecification-kmskeyarn */ readonly kmsKeyArn?: string; } } /** * Properties for defining a `CfnVerifiedAccessEndpoint` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html */ export interface CfnVerifiedAccessEndpointProps { /** * The DNS name for users to reach your application. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html#cfn-ec2-verifiedaccessendpoint-applicationdomain */ readonly applicationDomain?: string; /** * The type of attachment used to provide connectivity between the AWS Verified Access endpoint and the application. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html#cfn-ec2-verifiedaccessendpoint-attachmenttype */ readonly attachmentType: string; /** * The options for a CIDR endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html#cfn-ec2-verifiedaccessendpoint-cidroptions */ readonly cidrOptions?: CfnVerifiedAccessEndpoint.CidrOptionsProperty | cdk.IResolvable; /** * A description for the AWS Verified Access endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html#cfn-ec2-verifiedaccessendpoint-description */ readonly description?: string; /** * The ARN of a public TLS/SSL certificate imported into or created with ACM. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html#cfn-ec2-verifiedaccessendpoint-domaincertificatearn */ readonly domainCertificateArn?: string; /** * A custom identifier that is prepended to the DNS name that is generated for the endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html#cfn-ec2-verifiedaccessendpoint-endpointdomainprefix */ readonly endpointDomainPrefix?: string; /** * The type of AWS Verified Access endpoint. * * Incoming application requests will be sent to an IP address, load balancer or a network interface depending on the endpoint type specified. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html#cfn-ec2-verifiedaccessendpoint-endpointtype */ readonly endpointType: string; /** * The load balancer details if creating the AWS Verified Access endpoint as `load-balancer` type. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html#cfn-ec2-verifiedaccessendpoint-loadbalanceroptions */ readonly loadBalancerOptions?: cdk.IResolvable | CfnVerifiedAccessEndpoint.LoadBalancerOptionsProperty; /** * The options for network-interface type endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html#cfn-ec2-verifiedaccessendpoint-networkinterfaceoptions */ readonly networkInterfaceOptions?: cdk.IResolvable | CfnVerifiedAccessEndpoint.NetworkInterfaceOptionsProperty; /** * The Verified Access policy document. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html#cfn-ec2-verifiedaccessendpoint-policydocument */ readonly policyDocument?: string; /** * The status of the Verified Access policy. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html#cfn-ec2-verifiedaccessendpoint-policyenabled */ readonly policyEnabled?: boolean | cdk.IResolvable; /** * The options for an RDS endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html#cfn-ec2-verifiedaccessendpoint-rdsoptions */ readonly rdsOptions?: cdk.IResolvable | CfnVerifiedAccessEndpoint.RdsOptionsProperty; /** * The IDs of the security groups for the endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html#cfn-ec2-verifiedaccessendpoint-securitygroupids */ readonly securityGroupIds?: Array; /** * The options for additional server side encryption. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html#cfn-ec2-verifiedaccessendpoint-ssespecification */ readonly sseSpecification?: cdk.IResolvable | CfnVerifiedAccessEndpoint.SseSpecificationProperty; /** * The tags. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html#cfn-ec2-verifiedaccessendpoint-tags */ readonly tags?: Array; /** * The ID of the AWS Verified Access group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessendpoint.html#cfn-ec2-verifiedaccessendpoint-verifiedaccessgroupid */ readonly verifiedAccessGroupId: string; } /** * An AWS Verified Access group is a collection of AWS Verified Access endpoints who's associated applications have similar security requirements. * * Each instance within a Verified Access group shares an Verified Access policy. For example, you can group all Verified Access instances associated with "sales" applications together and use one common Verified Access policy. * * @cloudformationResource AWS::EC2::VerifiedAccessGroup * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessgroup.html */ export declare class CfnVerifiedAccessGroup extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVerifiedAccessGroup from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVerifiedAccessGroup; /** * The creation time. * * @cloudformationAttribute CreationTime */ readonly attrCreationTime: string; /** * The last updated time. * * @cloudformationAttribute LastUpdatedTime */ readonly attrLastUpdatedTime: string; /** * The ID of the AWS account that owns the group. * * @cloudformationAttribute Owner */ readonly attrOwner: string; /** * The ARN of the Verified Access group. * * @cloudformationAttribute VerifiedAccessGroupArn */ readonly attrVerifiedAccessGroupArn: string; /** * The ID of the Verified Access group. * * @cloudformationAttribute VerifiedAccessGroupId */ readonly attrVerifiedAccessGroupId: string; /** * A description for the AWS Verified Access group. */ description?: string; /** * The Verified Access policy document. */ policyDocument?: string; /** * The status of the Verified Access policy. */ policyEnabled?: boolean | cdk.IResolvable; /** * The options for additional server side encryption. */ sseSpecification?: cdk.IResolvable | CfnVerifiedAccessGroup.SseSpecificationProperty; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags. */ tagsRaw?: Array; /** * The ID of the AWS Verified Access instance. */ verifiedAccessInstanceId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVerifiedAccessGroupProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnVerifiedAccessGroup { /** * AWS Verified Access provides server side encryption by default to data at rest using AWS -owned KMS keys. * * You also have the option of using customer managed KMS keys, which can be specified using the options below. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessgroup-ssespecification.html */ interface SseSpecificationProperty { /** * Enable or disable the use of customer managed KMS keys for server side encryption. * * Valid values: `True` | `False` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessgroup-ssespecification.html#cfn-ec2-verifiedaccessgroup-ssespecification-customermanagedkeyenabled */ readonly customerManagedKeyEnabled?: boolean | cdk.IResolvable; /** * The ARN of the KMS key. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessgroup-ssespecification.html#cfn-ec2-verifiedaccessgroup-ssespecification-kmskeyarn */ readonly kmsKeyArn?: string; } } /** * Properties for defining a `CfnVerifiedAccessGroup` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessgroup.html */ export interface CfnVerifiedAccessGroupProps { /** * A description for the AWS Verified Access group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessgroup.html#cfn-ec2-verifiedaccessgroup-description */ readonly description?: string; /** * The Verified Access policy document. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessgroup.html#cfn-ec2-verifiedaccessgroup-policydocument */ readonly policyDocument?: string; /** * The status of the Verified Access policy. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessgroup.html#cfn-ec2-verifiedaccessgroup-policyenabled */ readonly policyEnabled?: boolean | cdk.IResolvable; /** * The options for additional server side encryption. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessgroup.html#cfn-ec2-verifiedaccessgroup-ssespecification */ readonly sseSpecification?: cdk.IResolvable | CfnVerifiedAccessGroup.SseSpecificationProperty; /** * The tags. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessgroup.html#cfn-ec2-verifiedaccessgroup-tags */ readonly tags?: Array; /** * The ID of the AWS Verified Access instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessgroup.html#cfn-ec2-verifiedaccessgroup-verifiedaccessinstanceid */ readonly verifiedAccessInstanceId: string; } /** * An AWS Verified Access instance is a regional entity that evaluates application requests and grants access only when your security requirements are met. * * @cloudformationResource AWS::EC2::VerifiedAccessInstance * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessinstance.html */ export declare class CfnVerifiedAccessInstance extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVerifiedAccessInstance from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVerifiedAccessInstance; /** * The name servers. * * @cloudformationAttribute CidrEndpointsCustomSubDomainNameServers */ readonly attrCidrEndpointsCustomSubDomainNameServers: Array; /** * The creation time. * * @cloudformationAttribute CreationTime */ readonly attrCreationTime: string; /** * The last updated time. * * @cloudformationAttribute LastUpdatedTime */ readonly attrLastUpdatedTime: string; /** * The ID of the Verified Access instance. * * @cloudformationAttribute VerifiedAccessInstanceId */ readonly attrVerifiedAccessInstanceId: string; /** * The custom subdomain. */ cidrEndpointsCustomSubDomain?: string; /** * A description for the AWS Verified Access instance. */ description?: string; /** * Indicates whether support for Federal Information Processing Standards (FIPS) is enabled on the instance. */ fipsEnabled?: boolean | cdk.IResolvable; /** * The logging configuration for the Verified Access instances. */ loggingConfigurations?: cdk.IResolvable | CfnVerifiedAccessInstance.VerifiedAccessLogsProperty; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags. */ tagsRaw?: Array; /** * The IDs of the AWS Verified Access trust providers. */ verifiedAccessTrustProviderIds?: Array; /** * The IDs of the AWS Verified Access trust providers. */ verifiedAccessTrustProviders?: Array | cdk.IResolvable; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnVerifiedAccessInstanceProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnVerifiedAccessInstance { /** * A trust provider is a third-party entity that creates, maintains, and manages identity information for users and devices. * * When an application request is made, the identity information sent by the trust provider is evaluated by Verified Access before allowing or denying the application request. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesstrustprovider.html */ interface VerifiedAccessTrustProviderProperty { /** * A description for the AWS Verified Access trust provider. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccessinstance-verifiedaccesstrustprovider-description */ readonly description?: string; /** * The type of device-based trust provider. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccessinstance-verifiedaccesstrustprovider-devicetrustprovidertype */ readonly deviceTrustProviderType?: string; /** * The type of Verified Access trust provider. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccessinstance-verifiedaccesstrustprovider-trustprovidertype */ readonly trustProviderType?: string; /** * The type of user-based trust provider. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccessinstance-verifiedaccesstrustprovider-usertrustprovidertype */ readonly userTrustProviderType?: string; /** * The ID of the AWS Verified Access trust provider. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccessinstance-verifiedaccesstrustprovider-verifiedaccesstrustproviderid */ readonly verifiedAccessTrustProviderId?: string; } /** * Describes the options for Verified Access logs. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesslogs.html */ interface VerifiedAccessLogsProperty { /** * CloudWatch Logs logging destination. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesslogs.html#cfn-ec2-verifiedaccessinstance-verifiedaccesslogs-cloudwatchlogs */ readonly cloudWatchLogs?: CfnVerifiedAccessInstance.CloudWatchLogsProperty | cdk.IResolvable; /** * Indicates whether to include trust data sent by trust providers in the logs. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesslogs.html#cfn-ec2-verifiedaccessinstance-verifiedaccesslogs-includetrustcontext */ readonly includeTrustContext?: boolean | cdk.IResolvable; /** * Kinesis logging destination. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesslogs.html#cfn-ec2-verifiedaccessinstance-verifiedaccesslogs-kinesisdatafirehose */ readonly kinesisDataFirehose?: cdk.IResolvable | CfnVerifiedAccessInstance.KinesisDataFirehoseProperty; /** * The logging version. * * Valid values: `ocsf-0.1` | `ocsf-1.0.0-rc.2` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesslogs.html#cfn-ec2-verifiedaccessinstance-verifiedaccesslogs-logversion */ readonly logVersion?: string; /** * Amazon S3 logging options. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-verifiedaccesslogs.html#cfn-ec2-verifiedaccessinstance-verifiedaccesslogs-s3 */ readonly s3?: cdk.IResolvable | CfnVerifiedAccessInstance.S3Property; } /** * Options for Amazon S3 as a logging destination. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-s3.html */ interface S3Property { /** * The bucket name. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-s3.html#cfn-ec2-verifiedaccessinstance-s3-bucketname */ readonly bucketName?: string; /** * The AWS account number that owns the bucket. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-s3.html#cfn-ec2-verifiedaccessinstance-s3-bucketowner */ readonly bucketOwner?: string; /** * Indicates whether logging is enabled. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-s3.html#cfn-ec2-verifiedaccessinstance-s3-enabled */ readonly enabled?: boolean | cdk.IResolvable; /** * The bucket prefix. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-s3.html#cfn-ec2-verifiedaccessinstance-s3-prefix */ readonly prefix?: string; } /** * Options for Kinesis as a logging destination. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-kinesisdatafirehose.html */ interface KinesisDataFirehoseProperty { /** * The ID of the delivery stream. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-kinesisdatafirehose.html#cfn-ec2-verifiedaccessinstance-kinesisdatafirehose-deliverystream */ readonly deliveryStream?: string; /** * Indicates whether logging is enabled. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-kinesisdatafirehose.html#cfn-ec2-verifiedaccessinstance-kinesisdatafirehose-enabled */ readonly enabled?: boolean | cdk.IResolvable; } /** * Options for CloudWatch Logs as a logging destination. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-cloudwatchlogs.html */ interface CloudWatchLogsProperty { /** * Indicates whether logging is enabled. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-cloudwatchlogs.html#cfn-ec2-verifiedaccessinstance-cloudwatchlogs-enabled */ readonly enabled?: boolean | cdk.IResolvable; /** * The ID of the CloudWatch Logs log group. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccessinstance-cloudwatchlogs.html#cfn-ec2-verifiedaccessinstance-cloudwatchlogs-loggroup */ readonly logGroup?: string; } } /** * Properties for defining a `CfnVerifiedAccessInstance` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessinstance.html */ export interface CfnVerifiedAccessInstanceProps { /** * The custom subdomain. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessinstance.html#cfn-ec2-verifiedaccessinstance-cidrendpointscustomsubdomain */ readonly cidrEndpointsCustomSubDomain?: string; /** * A description for the AWS Verified Access instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessinstance.html#cfn-ec2-verifiedaccessinstance-description */ readonly description?: string; /** * Indicates whether support for Federal Information Processing Standards (FIPS) is enabled on the instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessinstance.html#cfn-ec2-verifiedaccessinstance-fipsenabled */ readonly fipsEnabled?: boolean | cdk.IResolvable; /** * The logging configuration for the Verified Access instances. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessinstance.html#cfn-ec2-verifiedaccessinstance-loggingconfigurations */ readonly loggingConfigurations?: cdk.IResolvable | CfnVerifiedAccessInstance.VerifiedAccessLogsProperty; /** * The tags. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessinstance.html#cfn-ec2-verifiedaccessinstance-tags */ readonly tags?: Array; /** * The IDs of the AWS Verified Access trust providers. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessinstance.html#cfn-ec2-verifiedaccessinstance-verifiedaccesstrustproviderids */ readonly verifiedAccessTrustProviderIds?: Array; /** * The IDs of the AWS Verified Access trust providers. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccessinstance.html#cfn-ec2-verifiedaccessinstance-verifiedaccesstrustproviders */ readonly verifiedAccessTrustProviders?: Array | cdk.IResolvable; } /** * A trust provider is a third-party entity that creates, maintains, and manages identity information for users and devices. * * When an application request is made, the identity information sent by the trust provider is evaluated by Verified Access before allowing or denying the application request. * * @cloudformationResource AWS::EC2::VerifiedAccessTrustProvider * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccesstrustprovider.html */ export declare class CfnVerifiedAccessTrustProvider extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVerifiedAccessTrustProvider from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVerifiedAccessTrustProvider; /** * The creation time. * * @cloudformationAttribute CreationTime */ readonly attrCreationTime: string; /** * The last updated time. * * @cloudformationAttribute LastUpdatedTime */ readonly attrLastUpdatedTime: string; /** * The ID of the Verified Access trust provider. * * @cloudformationAttribute VerifiedAccessTrustProviderId */ readonly attrVerifiedAccessTrustProviderId: string; /** * A description for the AWS Verified Access trust provider. */ description?: string; /** * The options for device-identity trust provider. */ deviceOptions?: CfnVerifiedAccessTrustProvider.DeviceOptionsProperty | cdk.IResolvable; /** * The type of device-based trust provider. */ deviceTrustProviderType?: string; /** * The OpenID Connect (OIDC) options. */ nativeApplicationOidcOptions?: cdk.IResolvable | CfnVerifiedAccessTrustProvider.NativeApplicationOidcOptionsProperty; /** * The options for an OpenID Connect-compatible user-identity trust provider. */ oidcOptions?: cdk.IResolvable | CfnVerifiedAccessTrustProvider.OidcOptionsProperty; /** * The identifier to be used when working with policy rules. */ policyReferenceName: string; /** * The options for additional server side encryption. */ sseSpecification?: cdk.IResolvable | CfnVerifiedAccessTrustProvider.SseSpecificationProperty; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags. */ tagsRaw?: Array; /** * The type of Verified Access trust provider. */ trustProviderType: string; /** * The type of user-based trust provider. */ userTrustProviderType?: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVerifiedAccessTrustProviderProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnVerifiedAccessTrustProvider { /** * Describes the options for an AWS Verified Access device-identity based trust provider. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-deviceoptions.html */ interface DeviceOptionsProperty { /** * The URL AWS Verified Access will use to verify the authenticity of the device tokens. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-deviceoptions.html#cfn-ec2-verifiedaccesstrustprovider-deviceoptions-publicsigningkeyurl */ readonly publicSigningKeyUrl?: string; /** * The ID of the tenant application with the device-identity provider. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-deviceoptions.html#cfn-ec2-verifiedaccesstrustprovider-deviceoptions-tenantid */ readonly tenantId?: string; } /** * Describes the options for an OpenID Connect-compatible user-identity trust provider. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-oidcoptions.html */ interface OidcOptionsProperty { /** * The OIDC authorization endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-oidcoptions.html#cfn-ec2-verifiedaccesstrustprovider-oidcoptions-authorizationendpoint */ readonly authorizationEndpoint?: string; /** * The client identifier. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-oidcoptions.html#cfn-ec2-verifiedaccesstrustprovider-oidcoptions-clientid */ readonly clientId?: string; /** * The client secret. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-oidcoptions.html#cfn-ec2-verifiedaccesstrustprovider-oidcoptions-clientsecret */ readonly clientSecret?: string; /** * The OIDC issuer. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-oidcoptions.html#cfn-ec2-verifiedaccesstrustprovider-oidcoptions-issuer */ readonly issuer?: string; /** * The OpenID Connect (OIDC) scope specified. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-oidcoptions.html#cfn-ec2-verifiedaccesstrustprovider-oidcoptions-scope */ readonly scope?: string; /** * The OIDC token endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-oidcoptions.html#cfn-ec2-verifiedaccesstrustprovider-oidcoptions-tokenendpoint */ readonly tokenEndpoint?: string; /** * The OIDC user info endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-oidcoptions.html#cfn-ec2-verifiedaccesstrustprovider-oidcoptions-userinfoendpoint */ readonly userInfoEndpoint?: string; } /** * AWS Verified Access provides server side encryption by default to data at rest using AWS -owned KMS keys. * * You also have the option of using customer managed KMS keys, which can be specified using the options below. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-ssespecification.html */ interface SseSpecificationProperty { /** * Enable or disable the use of customer managed KMS keys for server side encryption. * * Valid values: `True` | `False` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-ssespecification.html#cfn-ec2-verifiedaccesstrustprovider-ssespecification-customermanagedkeyenabled */ readonly customerManagedKeyEnabled?: boolean | cdk.IResolvable; /** * The ARN of the KMS key. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-ssespecification.html#cfn-ec2-verifiedaccesstrustprovider-ssespecification-kmskeyarn */ readonly kmsKeyArn?: string; } /** * Describes the OpenID Connect (OIDC) options. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions.html */ interface NativeApplicationOidcOptionsProperty { /** * The authorization endpoint of the IdP. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions.html#cfn-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions-authorizationendpoint */ readonly authorizationEndpoint?: string; /** * The OAuth 2.0 client identifier. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions.html#cfn-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions-clientid */ readonly clientId?: string; /** * The OAuth 2.0 client secret. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions.html#cfn-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions-clientsecret */ readonly clientSecret?: string; /** * The OIDC issuer identifier of the IdP. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions.html#cfn-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions-issuer */ readonly issuer?: string; /** * The public signing key endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions.html#cfn-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions-publicsigningkeyendpoint */ readonly publicSigningKeyEndpoint?: string; /** * The set of user claims to be requested from the IdP. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions.html#cfn-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions-scope */ readonly scope?: string; /** * The token endpoint of the IdP. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions.html#cfn-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions-tokenendpoint */ readonly tokenEndpoint?: string; /** * The user info endpoint of the IdP. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions.html#cfn-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions-userinfoendpoint */ readonly userInfoEndpoint?: string; } } /** * Properties for defining a `CfnVerifiedAccessTrustProvider` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccesstrustprovider.html */ export interface CfnVerifiedAccessTrustProviderProps { /** * A description for the AWS Verified Access trust provider. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccesstrustprovider-description */ readonly description?: string; /** * The options for device-identity trust provider. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccesstrustprovider-deviceoptions */ readonly deviceOptions?: CfnVerifiedAccessTrustProvider.DeviceOptionsProperty | cdk.IResolvable; /** * The type of device-based trust provider. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccesstrustprovider-devicetrustprovidertype */ readonly deviceTrustProviderType?: string; /** * The OpenID Connect (OIDC) options. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccesstrustprovider-nativeapplicationoidcoptions */ readonly nativeApplicationOidcOptions?: cdk.IResolvable | CfnVerifiedAccessTrustProvider.NativeApplicationOidcOptionsProperty; /** * The options for an OpenID Connect-compatible user-identity trust provider. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccesstrustprovider-oidcoptions */ readonly oidcOptions?: cdk.IResolvable | CfnVerifiedAccessTrustProvider.OidcOptionsProperty; /** * The identifier to be used when working with policy rules. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccesstrustprovider-policyreferencename */ readonly policyReferenceName: string; /** * The options for additional server side encryption. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccesstrustprovider-ssespecification */ readonly sseSpecification?: cdk.IResolvable | CfnVerifiedAccessTrustProvider.SseSpecificationProperty; /** * The tags. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccesstrustprovider-tags */ readonly tags?: Array; /** * The type of Verified Access trust provider. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccesstrustprovider-trustprovidertype */ readonly trustProviderType: string; /** * The type of user-based trust provider. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-verifiedaccesstrustprovider.html#cfn-ec2-verifiedaccesstrustprovider-usertrustprovidertype */ readonly userTrustProviderType?: string; } /** * Specifies an Amazon Elastic Block Store (Amazon EBS) volume. * * When you use AWS CloudFormation to update an Amazon EBS volume that modifies `Iops` , `Size` , or `VolumeType` , there is a cooldown period before another operation can occur. This can cause your stack to report being in `UPDATE_IN_PROGRESS` or `UPDATE_ROLLBACK_IN_PROGRESS` for long periods of time. * * Amazon EBS does not support sizing down an Amazon EBS volume. AWS CloudFormation does not attempt to modify an Amazon EBS volume to a smaller size on rollback. * * Some common scenarios when you might encounter a cooldown period for Amazon EBS include: * * - You successfully update an Amazon EBS volume and the update succeeds. When you attempt another update within the cooldown window, that update will be subject to a cooldown period. * - You successfully update an Amazon EBS volume and the update succeeds but another change in your `update-stack` call fails. The rollback will be subject to a cooldown period. * * For more information, see [Requirements for EBS volume modifications](https://docs.aws.amazon.com/ebs/latest/userguide/modify-volume-requirements.html) . * * *DeletionPolicy attribute* * * To control how AWS CloudFormation handles the volume when the stack is deleted, set a deletion policy for your volume. You can choose to retain the volume, to delete the volume, or to create a snapshot of the volume. For more information, see [DeletionPolicy attribute](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-attribute-deletionpolicy.html) . * * > If you set a deletion policy that creates a snapshot, all tags on the volume are included in the snapshot. * * @cloudformationResource AWS::EC2::Volume * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html */ export declare class CfnVolume extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVolume from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVolume; /** * The ID of the volume. * * @cloudformationAttribute VolumeId */ readonly attrVolumeId: string; /** * Indicates whether the volume is auto-enabled for I/O operations. */ autoEnableIo?: boolean | cdk.IResolvable; /** * The ID of the Availability Zone in which to create the volume. */ availabilityZone: string; /** * Indicates whether the volume should be encrypted. */ encrypted?: boolean | cdk.IResolvable; /** * The number of I/O operations per second (IOPS). */ iops?: number; /** * The identifier of the AWS KMS key to use for Amazon EBS encryption. */ kmsKeyId?: string; /** * Indicates whether Amazon EBS Multi-Attach is enabled. */ multiAttachEnabled?: boolean | cdk.IResolvable; /** * The Amazon Resource Name (ARN) of the Outpost. */ outpostArn?: string; /** * The size of the volume, in GiBs. */ size?: number; /** * The snapshot from which to create the volume. */ snapshotId?: string; /** * Tag Manager which manages the tags for this resource */ readonly tags: cdk.TagManager; /** * The tags to apply to the volume during creation. */ tagsRaw?: Array; /** * The throughput to provision for a volume, with a maximum of 1,000 MiB/s. */ throughput?: number; /** * Specifies the Amazon EBS Provisioned Rate for Volume Initialization (volume initialization rate), in MiB/s, at which to download the snapshot blocks from Amazon S3 to the volume. */ volumeInitializationRate?: number; /** * The volume type. This parameter can be one of the following values:. */ volumeType?: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVolumeProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnVolume` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html */ export interface CfnVolumeProps { /** * Indicates whether the volume is auto-enabled for I/O operations. * * By default, Amazon EBS disables I/O to the volume from attached EC2 instances when it determines that a volume's data is potentially inconsistent. If the consistency of the volume is not a concern, and you prefer that the volume be made available immediately if it's impaired, you can configure the volume to automatically enable I/O. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html#cfn-ec2-volume-autoenableio */ readonly autoEnableIo?: boolean | cdk.IResolvable; /** * The ID of the Availability Zone in which to create the volume. * * For example, `us-east-1a` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html#cfn-ec2-volume-availabilityzone */ readonly availabilityZone: string; /** * Indicates whether the volume should be encrypted. * * The effect of setting the encryption state to `true` depends on the volume origin (new or from a snapshot), starting encryption state, ownership, and whether encryption by default is enabled. For more information, see [Encryption by default](https://docs.aws.amazon.com/ebs/latest/userguide/work-with-ebs-encr.html#encryption-by-default) in the *Amazon EBS User Guide* . * * Encrypted Amazon EBS volumes must be attached to instances that support Amazon EBS encryption. For more information, see [Supported instance types](https://docs.aws.amazon.com/ebs/latest/userguide/ebs-encryption-requirements.html#ebs-encryption_supported_instances) . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html#cfn-ec2-volume-encrypted */ readonly encrypted?: boolean | cdk.IResolvable; /** * The number of I/O operations per second (IOPS). * * For `gp3` , `io1` , and `io2` volumes, this represents the number of IOPS that are provisioned for the volume. For `gp2` volumes, this represents the baseline performance of the volume and the rate at which the volume accumulates I/O credits for bursting. * * The following are the supported values for each volume type: * * - `gp3` : 3,000 - 16,000 IOPS * - `io1` : 100 - 64,000 IOPS * - `io2` : 100 - 256,000 IOPS * * For `io2` volumes, you can achieve up to 256,000 IOPS on [instances built on the Nitro System](https://docs.aws.amazon.com/ec2/latest/instancetypes/ec2-nitro-instances.html) . On other instances, you can achieve performance up to 32,000 IOPS. * * This parameter is required for `io1` and `io2` volumes. The default for `gp3` volumes is 3,000 IOPS. This parameter is not supported for `gp2` , `st1` , `sc1` , or `standard` volumes. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html#cfn-ec2-volume-iops */ readonly iops?: number; /** * The identifier of the AWS KMS key to use for Amazon EBS encryption. * * If `KmsKeyId` is specified, the encrypted state must be `true` . * * If you omit this property and your account is enabled for encryption by default, or *Encrypted* is set to `true` , then the volume is encrypted using the default key specified for your account. If your account does not have a default key, then the volume is encrypted using the AWS managed key . * * Alternatively, if you want to specify a different key, you can specify one of the following: * * - Key ID. For example, 1234abcd-12ab-34cd-56ef-1234567890ab. * - Key alias. Specify the alias for the key, prefixed with `alias/` . For example, for a key with the alias `my_cmk` , use `alias/my_cmk` . Or to specify the AWS managed key , use `alias/aws/ebs` . * - Key ARN. For example, arn:aws:kms:us-east-1:012345678910:key/1234abcd-12ab-34cd-56ef-1234567890ab. * - Alias ARN. For example, arn:aws:kms:us-east-1:012345678910:alias/ExampleAlias. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html#cfn-ec2-volume-kmskeyid */ readonly kmsKeyId?: string; /** * Indicates whether Amazon EBS Multi-Attach is enabled. * * AWS CloudFormation does not currently support updating a single-attach volume to be multi-attach enabled, updating a multi-attach enabled volume to be single-attach, or updating the size or number of I/O operations per second (IOPS) of a multi-attach enabled volume. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html#cfn-ec2-volume-multiattachenabled */ readonly multiAttachEnabled?: boolean | cdk.IResolvable; /** * The Amazon Resource Name (ARN) of the Outpost. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html#cfn-ec2-volume-outpostarn */ readonly outpostArn?: string; /** * The size of the volume, in GiBs. * * You must specify either a snapshot ID or a volume size. If you specify a snapshot, the default is the snapshot size. You can specify a volume size that is equal to or larger than the snapshot size. * * The following are the supported volumes sizes for each volume type: * * - `gp2` and `gp3` : 1 - 16,384 GiB * - `io1` : 4 - 16,384 GiB * - `io2` : 4 - 65,536 GiB * - `st1` and `sc1` : 125 - 16,384 GiB * - `standard` : 1 - 1024 GiB * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html#cfn-ec2-volume-size */ readonly size?: number; /** * The snapshot from which to create the volume. * * You must specify either a snapshot ID or a volume size. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html#cfn-ec2-volume-snapshotid */ readonly snapshotId?: string; /** * The tags to apply to the volume during creation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html#cfn-ec2-volume-tags */ readonly tags?: Array; /** * The throughput to provision for a volume, with a maximum of 1,000 MiB/s. * * This parameter is valid only for `gp3` volumes. The default value is 125. * * Valid Range: Minimum value of 125. Maximum value of 1000. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html#cfn-ec2-volume-throughput */ readonly throughput?: number; /** * Specifies the Amazon EBS Provisioned Rate for Volume Initialization (volume initialization rate), in MiB/s, at which to download the snapshot blocks from Amazon S3 to the volume. * * This is also known as *volume initialization* . Specifying a volume initialization rate ensures that the volume is initialized at a predictable and consistent rate after creation. * * This parameter is supported only for volumes created from snapshots. Omit this parameter if: * * - You want to create the volume using fast snapshot restore. You must specify a snapshot that is enabled for fast snapshot restore. In this case, the volume is fully initialized at creation. * * > If you specify a snapshot that is enabled for fast snapshot restore and a volume initialization rate, the volume will be initialized at the specified rate instead of fast snapshot restore. * - You want to create a volume that is initialized at the default rate. * * For more information, see [Initialize Amazon EBS volumes](https://docs.aws.amazon.com/ebs/latest/userguide/initalize-volume.html) in the *Amazon EC2 User Guide* . * * Valid range: 100 - 300 MiB/s * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html#cfn-ec2-volume-volumeinitializationrate */ readonly volumeInitializationRate?: number; /** * The volume type. This parameter can be one of the following values:. * * - General Purpose SSD: `gp2` | `gp3` * - Provisioned IOPS SSD: `io1` | `io2` * - Throughput Optimized HDD: `st1` * - Cold HDD: `sc1` * - Magnetic: `standard` * * For more information, see [Amazon EBS volume types](https://docs.aws.amazon.com/ebs/latest/userguide/ebs-volume-types.html) . * * Default: `gp2` * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html#cfn-ec2-volume-volumetype */ readonly volumeType?: string; } /** * Attaches an Amazon EBS volume to a running instance and exposes it to the instance with the specified device name. * * Before this resource can be deleted (and therefore the volume detached), you must first unmount the volume in the instance. Failure to do so results in the volume being stuck in the busy state while it is trying to detach, which could possibly damage the file system or the data it contains. * * If an Amazon EBS volume is the root device of an instance, it cannot be detached while the instance is in the "running" state. To detach the root volume, stop the instance first. * * If the root volume is detached from an instance with an AWS Marketplace product code, then the product codes from that volume are no longer associated with the instance. * * @cloudformationResource AWS::EC2::VolumeAttachment * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volumeattachment.html */ export declare class CfnVolumeAttachment extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVolumeAttachment from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVolumeAttachment; /** * The device name (for example, `/dev/sdh` or `xvdh` ). */ device?: string; /** * The ID of the instance to which the volume attaches. */ instanceId: string; /** * The ID of the Amazon EBS volume. */ volumeId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVolumeAttachmentProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnVolumeAttachment` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volumeattachment.html */ export interface CfnVolumeAttachmentProps { /** * The device name (for example, `/dev/sdh` or `xvdh` ). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volumeattachment.html#cfn-ec2-volumeattachment-device */ readonly device?: string; /** * The ID of the instance to which the volume attaches. * * This value can be a reference to an [`AWS::EC2::Instance`](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) resource, or it can be the physical ID of an existing EC2 instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volumeattachment.html#cfn-ec2-volumeattachment-instanceid */ readonly instanceId: string; /** * The ID of the Amazon EBS volume. * * The volume and instance must be within the same Availability Zone. This value can be a reference to an [`AWS::EC2::Volume`](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-ebs-volume.html) resource, or it can be the volume ID of an existing Amazon EBS volume. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volumeattachment.html#cfn-ec2-volumeattachment-volumeid */ readonly volumeId: string; } /** * Specifies a route server to manage dynamic routing in a VPC. * * Amazon VPC Route Server simplifies routing for traffic between workloads that are deployed within a VPC and its internet gateways. With this feature, VPC Route Server dynamically updates VPC and internet gateway route tables with your preferred routes to achieve routing fault tolerance for those workloads. This enables you to automatically reroute traffic within a VPC, which increases the manageability of VPC routing and interoperability with third-party workloads. * * For more information see [Dynamic routing in your VPC with VPC Route Server](https://docs.aws.amazon.com/vpc/latest/userguide/dynamic-routing-route-server.html) in the *Amazon VPC User Guide* . * * @cloudformationResource AWS::EC2::RouteServer * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserver.html */ export declare class CfnRouteServer extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggableV2 { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnRouteServer from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnRouteServer; /** * The ARN of the route server. * * @cloudformationAttribute Arn */ readonly attrArn: string; /** * The ID of the route server. * * @cloudformationAttribute Id */ readonly attrId: string; /** * The Border Gateway Protocol (BGP) Autonomous System Number (ASN) for the appliance. */ amazonSideAsn: number; /** * Tag Manager which manages the tags for this resource */ readonly cdkTagManager: cdk.TagManager; /** * Indicates whether routes should be persisted after all BGP sessions are terminated. */ persistRoutes?: string; /** * The number of minutes a route server will wait after BGP is re-established to unpersist the routes in the FIB and RIB. */ persistRoutesDuration?: number; /** * Indicates whether SNS notifications are enabled for the route server. */ snsNotificationsEnabled?: boolean | cdk.IResolvable; /** * Any tags assigned to the route server. */ tags?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnRouteServerProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnRouteServer` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserver.html */ export interface CfnRouteServerProps { /** * The Border Gateway Protocol (BGP) Autonomous System Number (ASN) for the appliance. * * Valid values are from 1 to 4294967295. We recommend using a private ASN in the 64512–65534 (16-bit ASN) or 4200000000–4294967294 (32-bit ASN) range. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserver.html#cfn-ec2-routeserver-amazonsideasn */ readonly amazonSideAsn: number; /** * Indicates whether routes should be persisted after all BGP sessions are terminated. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserver.html#cfn-ec2-routeserver-persistroutes */ readonly persistRoutes?: string; /** * The number of minutes a route server will wait after BGP is re-established to unpersist the routes in the FIB and RIB. * * Value must be in the range of 1-5. The default value is 1. Only valid if `persistRoutesState` is 'enabled'. * * If you set the duration to 1 minute, then when your network appliance re-establishes BGP with route server, it has 1 minute to relearn it's adjacent network and advertise those routes to route server before route server resumes normal functionality. In most cases, 1 minute is probably sufficient. If, however, you have concerns that your BGP network may not be capable of fully re-establishing and re-learning everything in 1 minute, you can increase the duration up to 5 minutes. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserver.html#cfn-ec2-routeserver-persistroutesduration */ readonly persistRoutesDuration?: number; /** * Indicates whether SNS notifications are enabled for the route server. * * Enabling SNS notifications persists BGP status changes to an SNS topic provisioned by AWS . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserver.html#cfn-ec2-routeserver-snsnotificationsenabled */ readonly snsNotificationsEnabled?: boolean | cdk.IResolvable; /** * Any tags assigned to the route server. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserver.html#cfn-ec2-routeserver-tags */ readonly tags?: Array; } /** * Specifies the association between a route server and a VPC. * * A route server association is the connection established between a route server and a VPC. * * @cloudformationResource AWS::EC2::RouteServerAssociation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverassociation.html */ export declare class CfnRouteServerAssociation extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnRouteServerAssociation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnRouteServerAssociation; /** * The ID of the associated route server. */ routeServerId: string; /** * The ID of the associated VPC. */ vpcId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnRouteServerAssociationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnRouteServerAssociation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverassociation.html */ export interface CfnRouteServerAssociationProps { /** * The ID of the associated route server. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverassociation.html#cfn-ec2-routeserverassociation-routeserverid */ readonly routeServerId: string; /** * The ID of the associated VPC. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverassociation.html#cfn-ec2-routeserverassociation-vpcid */ readonly vpcId: string; } /** * Creates a new endpoint for a route server in a specified subnet. * * A route server endpoint is an AWS -managed component inside a subnet that facilitates [BGP (Border Gateway Protocol)](https://docs.aws.amazon.com/https://en.wikipedia.org/wiki/Border_Gateway_Protocol) connections between your route server and your BGP peers. * * For more information see [Dynamic routing in your VPC with VPC Route Server](https://docs.aws.amazon.com/vpc/latest/userguide/dynamic-routing-route-server.html) in the *Amazon VPC User Guide* . * * @cloudformationResource AWS::EC2::RouteServerEndpoint * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverendpoint.html */ export declare class CfnRouteServerEndpoint extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggableV2 { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnRouteServerEndpoint from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnRouteServerEndpoint; /** * The ARN for the endpoint. * * @cloudformationAttribute Arn */ readonly attrArn: string; /** * The IP address of the Elastic network interface for the endpoint. * * @cloudformationAttribute EniAddress */ readonly attrEniAddress: string; /** * The ID of the Elastic network interface for the endpoint. * * @cloudformationAttribute EniId */ readonly attrEniId: string; /** * The unique identifier of the route server endpoint. * * @cloudformationAttribute Id */ readonly attrId: string; /** * The ID of the VPC containing the endpoint. * * @cloudformationAttribute VpcId */ readonly attrVpcId: string; /** * Tag Manager which manages the tags for this resource */ readonly cdkTagManager: cdk.TagManager; /** * The ID of the route server associated with this endpoint. */ routeServerId: string; /** * The ID of the subnet to place the route server endpoint into. */ subnetId: string; /** * Any tags assigned to the route server endpoint. */ tags?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnRouteServerEndpointProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnRouteServerEndpoint` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverendpoint.html */ export interface CfnRouteServerEndpointProps { /** * The ID of the route server associated with this endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverendpoint.html#cfn-ec2-routeserverendpoint-routeserverid */ readonly routeServerId: string; /** * The ID of the subnet to place the route server endpoint into. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverendpoint.html#cfn-ec2-routeserverendpoint-subnetid */ readonly subnetId: string; /** * Any tags assigned to the route server endpoint. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverendpoint.html#cfn-ec2-routeserverendpoint-tags */ readonly tags?: Array; } /** * Specifies a BGP peer configuration for a route server endpoint. * * A route server peer is a session between a route server endpoint and the device deployed in AWS (such as a firewall appliance or other network security function running on an EC2 instance). * * @cloudformationResource AWS::EC2::RouteServerPeer * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverpeer.html */ export declare class CfnRouteServerPeer extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggableV2 { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnRouteServerPeer from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnRouteServerPeer; /** * The ARN of the route server peer. * * @cloudformationAttribute Arn */ readonly attrArn: string; /** * The IP address of the Elastic network interface for the route server endpoint. * * @cloudformationAttribute EndpointEniAddress */ readonly attrEndpointEniAddress: string; /** * The ID of the Elastic network interface for the route server endpoint. * * @cloudformationAttribute EndpointEniId */ readonly attrEndpointEniId: string; /** * The ID of the route server peer. * * @cloudformationAttribute Id */ readonly attrId: string; /** * The ID of the route server associated with this peer. * * @cloudformationAttribute RouteServerId */ readonly attrRouteServerId: string; /** * The ID of the subnet containing the route server peer. * * @cloudformationAttribute SubnetId */ readonly attrSubnetId: string; /** * The ID of the VPC containing the route server peer. * * @cloudformationAttribute VpcId */ readonly attrVpcId: string; /** * The BGP configuration options for this peer, including ASN (Autonomous System Number) and BFD (Bidrectional Forwarding Detection) settings. */ bgpOptions: CfnRouteServerPeer.BgpOptionsProperty | cdk.IResolvable; /** * Tag Manager which manages the tags for this resource */ readonly cdkTagManager: cdk.TagManager; /** * The IPv4 address of the peer device. */ peerAddress: string; /** * The ID of the route server endpoint associated with this peer. */ routeServerEndpointId: string; /** * Any tags assigned to the route server peer. */ tags?: Array; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnRouteServerPeerProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnRouteServerPeer { /** * The BGP configuration options for this peer, including ASN (Autonomous System Number) and BFD (Bidrectional Forwarding Detection) settings. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-routeserverpeer-bgpoptions.html */ interface BgpOptionsProperty { /** * The Border Gateway Protocol (BGP) Autonomous System Number (ASN) for the appliance. * * Valid values are from 1 to 4294967295. We recommend using a private ASN in the 64512–65534 (16-bit ASN) or 4200000000–4294967294 (32-bit ASN) range. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-routeserverpeer-bgpoptions.html#cfn-ec2-routeserverpeer-bgpoptions-peerasn */ readonly peerAsn?: number; /** * The liveness detection protocol used for the BGP peer. * * The requested liveness detection protocol for the BGP peer. * * - `bgp-keepalive` : The standard BGP keep alive mechanism ( [RFC4271](https://docs.aws.amazon.com/https://www.rfc-editor.org/rfc/rfc4271#page-21) ) that is stable but may take longer to fail-over in cases of network impact or router failure. * - `bfd` : An additional Bidirectional Forwarding Detection (BFD) protocol ( [RFC5880](https://docs.aws.amazon.com/https://www.rfc-editor.org/rfc/rfc5880) ) that enables fast failover by using more sensitive liveness detection. * * Defaults to `bgp-keepalive` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-routeserverpeer-bgpoptions.html#cfn-ec2-routeserverpeer-bgpoptions-peerlivenessdetection */ readonly peerLivenessDetection?: string; } } /** * Properties for defining a `CfnRouteServerPeer` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverpeer.html */ export interface CfnRouteServerPeerProps { /** * The BGP configuration options for this peer, including ASN (Autonomous System Number) and BFD (Bidrectional Forwarding Detection) settings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverpeer.html#cfn-ec2-routeserverpeer-bgpoptions */ readonly bgpOptions: CfnRouteServerPeer.BgpOptionsProperty | cdk.IResolvable; /** * The IPv4 address of the peer device. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverpeer.html#cfn-ec2-routeserverpeer-peeraddress */ readonly peerAddress: string; /** * The ID of the route server endpoint associated with this peer. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverpeer.html#cfn-ec2-routeserverpeer-routeserverendpointid */ readonly routeServerEndpointId: string; /** * Any tags assigned to the route server peer. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverpeer.html#cfn-ec2-routeserverpeer-tags */ readonly tags?: Array; } /** * Specifies route propagation from a route server to a route table. * * For more information see [Dynamic routing in your VPC with VPC Route Server](https://docs.aws.amazon.com/vpc/latest/userguide/dynamic-routing-route-server.html) in the *Amazon VPC User Guide* . * * @cloudformationResource AWS::EC2::RouteServerPropagation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverpropagation.html */ export declare class CfnRouteServerPropagation extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnRouteServerPropagation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnRouteServerPropagation; /** * The ID of the route server configured for route propagation. */ routeServerId: string; /** * The ID of the route table configured for route server propagation. */ routeTableId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnRouteServerPropagationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnRouteServerPropagation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverpropagation.html */ export interface CfnRouteServerPropagationProps { /** * The ID of the route server configured for route propagation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverpropagation.html#cfn-ec2-routeserverpropagation-routeserverid */ readonly routeServerId: string; /** * The ID of the route table configured for route server propagation. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-routeserverpropagation.html#cfn-ec2-routeserverpropagation-routetableid */ readonly routeTableId: string; } /** * A security group association with a VPC. * * @cloudformationResource AWS::EC2::SecurityGroupVpcAssociation * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupvpcassociation.html */ export declare class CfnSecurityGroupVpcAssociation extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnSecurityGroupVpcAssociation from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnSecurityGroupVpcAssociation; /** * The association's state. * * @cloudformationAttribute State */ readonly attrState: string; /** * The association's state reason. * * @cloudformationAttribute StateReason */ readonly attrStateReason: string; /** * The AWS account ID of the owner of the VPC. * * @cloudformationAttribute VpcOwnerId */ readonly attrVpcOwnerId: string; /** * The association's security group ID. */ groupId: string; /** * The association's VPC ID. */ vpcId: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnSecurityGroupVpcAssociationProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnSecurityGroupVpcAssociation` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupvpcassociation.html */ export interface CfnSecurityGroupVpcAssociationProps { /** * The association's security group ID. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupvpcassociation.html#cfn-ec2-securitygroupvpcassociation-groupid */ readonly groupId: string; /** * The association's VPC ID. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupvpcassociation.html#cfn-ec2-securitygroupvpcassociation-vpcid */ readonly vpcId: string; } /** * Specifies the state of the *block public access for snapshots* setting for the Region. * * For more information, see [Block public access for snapshots](https://docs.aws.amazon.com/ebs/latest/userguide/block-public-access-snapshots.html) . * * @cloudformationResource AWS::EC2::SnapshotBlockPublicAccess * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-snapshotblockpublicaccess.html */ export declare class CfnSnapshotBlockPublicAccess extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnSnapshotBlockPublicAccess from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnSnapshotBlockPublicAccess; /** * `Ref` returns the ID of the AWS account. * * @cloudformationAttribute AccountId */ readonly attrAccountId: string; /** * The mode in which to enable block public access for snapshots for the Region. */ state: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnSnapshotBlockPublicAccessProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnSnapshotBlockPublicAccess` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-snapshotblockpublicaccess.html */ export interface CfnSnapshotBlockPublicAccessProps { /** * The mode in which to enable block public access for snapshots for the Region. * * Specify one of the following values: * * - `block-all-sharing` - Prevents all public sharing of snapshots in the Region. Users in the account will no longer be able to request new public sharing. Additionally, snapshots that are already publicly shared are treated as private and they are no longer publicly available. * * > If you enable block public access for snapshots in `block-all-sharing` mode, it does not change the permissions for snapshots that are already publicly shared. Instead, it prevents these snapshots from be publicly visible and publicly accessible. Therefore, the attributes for these snapshots still indicate that they are publicly shared, even though they are not publicly available. * - `block-new-sharing` - Prevents only new public sharing of snapshots in the Region. Users in the account will no longer be able to request new public sharing. However, snapshots that are already publicly shared, remain publicly available. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-snapshotblockpublicaccess.html#cfn-ec2-snapshotblockpublicaccess-state */ readonly state: string; } /** * Create a VPC Block Public Access (BPA) exclusion. * * A VPC BPA exclusion is a mode that can be applied to a single VPC or subnet that exempts it from the account’s BPA mode and will allow bidirectional or egress-only access. You can create BPA exclusions for VPCs and subnets even when BPA is not enabled on the account to ensure that there is no traffic disruption to the exclusions when VPC BPA is turned on. To learn more about VPC BPA, see [Block public access to VPCs and subnets](https://docs.aws.amazon.com/vpc/latest/userguide/security-vpc-bpa.html) in the *Amazon VPC User Guide* . * * @cloudformationResource AWS::EC2::VPCBlockPublicAccessExclusion * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcblockpublicaccessexclusion.html */ export declare class CfnVPCBlockPublicAccessExclusion extends cdk.CfnResource implements cdk.IInspectable, cdk.ITaggableV2 { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVPCBlockPublicAccessExclusion from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVPCBlockPublicAccessExclusion; /** * The ID of the exclusion. * * @cloudformationAttribute ExclusionId */ readonly attrExclusionId: string; /** * Tag Manager which manages the tags for this resource */ readonly cdkTagManager: cdk.TagManager; /** * The desired VPC Block Public Access mode for a specific VPC or subnet exclusion. */ internetGatewayExclusionMode: string; /** * The ID of the subnet you want to exclude. */ subnetId?: string; /** * An array of key-value pairs to apply to this resource. */ tags?: Array; /** * The ID of the VPC you want to exclude. */ vpcId?: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVPCBlockPublicAccessExclusionProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnVPCBlockPublicAccessExclusion` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcblockpublicaccessexclusion.html */ export interface CfnVPCBlockPublicAccessExclusionProps { /** * The desired VPC Block Public Access mode for a specific VPC or subnet exclusion. * * - `allow-bidirectional` : Allow all internet traffic to and from the excluded VPCs and subnets. * - `allow-egress` : Allow outbound internet traffic from the excluded VPCs and subnets. Block inbound internet traffic to the excluded VPCs and subnets. Only applies when VPC Block Public Access is set to `block-bidirectional` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcblockpublicaccessexclusion.html#cfn-ec2-vpcblockpublicaccessexclusion-internetgatewayexclusionmode */ readonly internetGatewayExclusionMode: string; /** * The ID of the subnet you want to exclude. * * Required only if you don't specify VpcId. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcblockpublicaccessexclusion.html#cfn-ec2-vpcblockpublicaccessexclusion-subnetid */ readonly subnetId?: string; /** * An array of key-value pairs to apply to this resource. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcblockpublicaccessexclusion.html#cfn-ec2-vpcblockpublicaccessexclusion-tags */ readonly tags?: Array; /** * The ID of the VPC you want to exclude. * * Required only if you don't specify SubnetId. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcblockpublicaccessexclusion.html#cfn-ec2-vpcblockpublicaccessexclusion-vpcid */ readonly vpcId?: string; } /** * VPC Block Public Access (BPA) enables you to block resources in VPCs and subnets that you own in a Region from reaching or being reached from the internet through internet gateways and egress-only internet gateways. * * To learn more about VPC BPA, see [Block public access to VPCs and subnets](https://docs.aws.amazon.com/vpc/latest/userguide/security-vpc-bpa.html) in the *Amazon VPC User Guide* . * * @cloudformationResource AWS::EC2::VPCBlockPublicAccessOptions * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcblockpublicaccessoptions.html */ export declare class CfnVPCBlockPublicAccessOptions extends cdk.CfnResource implements cdk.IInspectable { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnVPCBlockPublicAccessOptions from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnVPCBlockPublicAccessOptions; /** * The ID of the AWS account. * * @cloudformationAttribute AccountId */ readonly attrAccountId: string; /** * The desired VPC Block Public Access mode for internet gateways in your account. */ internetGatewayBlockMode: string; /** * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnVPCBlockPublicAccessOptionsProps); protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } /** * Properties for defining a `CfnVPCBlockPublicAccessOptions` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcblockpublicaccessoptions.html */ export interface CfnVPCBlockPublicAccessOptionsProps { /** * The desired VPC Block Public Access mode for internet gateways in your account. * * We do not allow you to create this resource type in an "off" mode since off is the default value. * * - `block-bidirectional` : Block all traffic to and from internet gateways and egress-only internet gateways in this Region (except for excluded VPCs and subnets). * - `block-ingress` : Block all internet traffic to the VPCs in this Region (except for VPCs or subnets which are excluded). Only traffic to and from NAT gateways and egress-only internet gateways is allowed because these gateways only allow outbound connections to be established. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcblockpublicaccessoptions.html#cfn-ec2-vpcblockpublicaccessoptions-internetgatewayblockmode */ readonly internetGatewayBlockMode: string; }