amazonka-ec2-0.3.6: Amazon Elastic Compute Cloud SDK.

Safe HaskellNone
LanguageHaskell2010

Network.AWS.EC2.AuthorizeSecurityGroupIngress

Contents

Description

Adds one or more ingress rules to a security group.

EC2-Classic: You can have up to 100 rules per group.

EC2-VPC: You can have up to 50 rules per group (covering both ingress and egress rules).

Rule changes are propagated to instances within the security group as quickly as possible. However, a small delay might occur.

EC2-Classic
This action gives one or more CIDR IP address ranges permission to access a security group in your account, or gives one or more security groups (called the source groups) permission to access a security group for your account. A source group can be for your own AWS account, or another.
EC2-VPC
This action gives one or more CIDR IP address ranges permission to access a security group in your VPC, or gives one or more other security groups (called the source groups) permission to access a security group for your VPC. The security groups must all be for the same VPC.

http://docs.aws.amazon.com/AWSEC2/latest/APIReference/ApiReference-query-AuthorizeSecurityGroupIngress.html

Synopsis

Request

Request constructor

Request lenses

asgiCidrIp :: Lens' AuthorizeSecurityGroupIngress (Maybe Text) Source

The CIDR IP address range. You can't specify this parameter when specifying a source security group.

asgiDryRun :: Lens' AuthorizeSecurityGroupIngress (Maybe Bool) Source

Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.

asgiFromPort :: Lens' AuthorizeSecurityGroupIngress (Maybe Int) Source

The start of port range for the TCP and UDP protocols, or an ICMP type number. For the ICMP type number, use '-1' to specify all ICMP types.

asgiGroupId :: Lens' AuthorizeSecurityGroupIngress (Maybe Text) Source

The ID of the security group. Required for a nondefault VPC.

asgiGroupName :: Lens' AuthorizeSecurityGroupIngress (Maybe Text) Source

EC2-Classic, default VPC
The name of the security group.

asgiIpPermissions :: Lens' AuthorizeSecurityGroupIngress [IpPermission] Source

A set of IP permissions. Can be used to specify multiple rules in a single command.

asgiIpProtocol :: Lens' AuthorizeSecurityGroupIngress (Maybe Text) Source

The IP protocol name (tcp, udp, icmp) or number (see Protocol Numbers). (VPC only) Use '-1' to specify all.

asgiSourceSecurityGroupName :: Lens' AuthorizeSecurityGroupIngress (Maybe Text) Source

EC2-Classic, default VPC
The name of the source security group. You can't specify a source security group and a CIDR IP address range.

asgiSourceSecurityGroupOwnerId :: Lens' AuthorizeSecurityGroupIngress (Maybe Text) Source

The ID of the source security group. You can't specify a source security group and a CIDR IP address range.

asgiToPort :: Lens' AuthorizeSecurityGroupIngress (Maybe Int) Source

The end of port range for the TCP and UDP protocols, or an ICMP code number. For the ICMP code number, use '-1' to specify all ICMP codes for the ICMP type.

Response

Response constructor