| Copyright | (c) 2013-2015 Brendan Hay |
|---|---|
| License | Mozilla Public License, v. 2.0. |
| Maintainer | Brendan Hay <brendan.g.hay@gmail.com> |
| Stability | auto-generated |
| Portability | non-portable (GHC extensions) |
| Safe Haskell | None |
| Language | Haskell2010 |
Network.AWS.EC2.RevokeSecurityGroupIngress
Description
Removes one or more ingress rules from a security group. The values that you specify in the revoke request (for example, ports) must match the existing rule's values for the rule to be removed.
Each rule consists of the protocol and the CIDR range or source security group. For the TCP and UDP protocols, you must also specify the destination port or range of ports. For the ICMP protocol, you must also specify the ICMP type and code.
Rule changes are propagated to instances within the security group as quickly as possible. However, a small delay might occur.
See: AWS API Reference for RevokeSecurityGroupIngress.
- revokeSecurityGroupIngress :: RevokeSecurityGroupIngress
- data RevokeSecurityGroupIngress
- rsgiFromPort :: Lens' RevokeSecurityGroupIngress (Maybe Int)
- rsgiIPPermissions :: Lens' RevokeSecurityGroupIngress [IPPermission]
- rsgiIPProtocol :: Lens' RevokeSecurityGroupIngress (Maybe Text)
- rsgiGroupId :: Lens' RevokeSecurityGroupIngress (Maybe Text)
- rsgiToPort :: Lens' RevokeSecurityGroupIngress (Maybe Int)
- rsgiCIdRIP :: Lens' RevokeSecurityGroupIngress (Maybe Text)
- rsgiSourceSecurityGroupOwnerId :: Lens' RevokeSecurityGroupIngress (Maybe Text)
- rsgiGroupName :: Lens' RevokeSecurityGroupIngress (Maybe Text)
- rsgiSourceSecurityGroupName :: Lens' RevokeSecurityGroupIngress (Maybe Text)
- rsgiDryRun :: Lens' RevokeSecurityGroupIngress (Maybe Bool)
- revokeSecurityGroupIngressResponse :: RevokeSecurityGroupIngressResponse
- data RevokeSecurityGroupIngressResponse
Creating a Request
revokeSecurityGroupIngress :: RevokeSecurityGroupIngress Source
Creates a value of RevokeSecurityGroupIngress with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
data RevokeSecurityGroupIngress Source
See: revokeSecurityGroupIngress smart constructor.
Instances
Request Lenses
rsgiFromPort :: Lens' RevokeSecurityGroupIngress (Maybe Int) Source
The start of port range for the TCP and UDP protocols, or an ICMP type number. For the ICMP type number, use '-1' to specify all ICMP types.
rsgiIPPermissions :: Lens' RevokeSecurityGroupIngress [IPPermission] Source
A set of IP permissions. You can't specify a source security group and a CIDR IP address range.
rsgiIPProtocol :: Lens' RevokeSecurityGroupIngress (Maybe Text) Source
The IP protocol name (tcp, udp, icmp) or number (see
Protocol Numbers).
Use '-1' to specify all.
rsgiGroupId :: Lens' RevokeSecurityGroupIngress (Maybe Text) Source
The ID of the security group. Required for a security group in a nondefault VPC.
rsgiToPort :: Lens' RevokeSecurityGroupIngress (Maybe Int) Source
The end of port range for the TCP and UDP protocols, or an ICMP code number. For the ICMP code number, use '-1' to specify all ICMP codes for the ICMP type.
rsgiCIdRIP :: Lens' RevokeSecurityGroupIngress (Maybe Text) Source
The CIDR IP address range. You can't specify this parameter when specifying a source security group.
rsgiSourceSecurityGroupOwnerId :: Lens' RevokeSecurityGroupIngress (Maybe Text) Source
- EC2-Classic, default VPC
- The AWS account ID of the source security group. For EC2-VPC, the source security group must be in the same VPC. You can't specify this parameter in combination with the following parameters: the CIDR IP address range, the IP protocol, the start of the port range, and the end of the port range. To revoke a specific rule for an IP protocol and port range, use a set of IP permissions instead.
rsgiGroupName :: Lens' RevokeSecurityGroupIngress (Maybe Text) Source
- EC2-Classic, default VPC
- The name of the security group.
rsgiSourceSecurityGroupName :: Lens' RevokeSecurityGroupIngress (Maybe Text) Source
- EC2-Classic, default VPC
- The name of the source security group. You can't specify this parameter in combination with the following parameters: the CIDR IP address range, the start of the port range, the IP protocol, and the end of the port range. For EC2-VPC, the source security group must be in the same VPC.
rsgiDryRun :: Lens' RevokeSecurityGroupIngress (Maybe Bool) Source
Checks whether you have the required permissions for the action, without
actually making the request, and provides an error response. If you have
the required permissions, the error response is DryRunOperation.
Otherwise, it is UnauthorizedOperation.
Destructuring the Response
revokeSecurityGroupIngressResponse :: RevokeSecurityGroupIngressResponse Source
Creates a value of RevokeSecurityGroupIngressResponse with the minimum fields required to make a request.
data RevokeSecurityGroupIngressResponse Source
See: revokeSecurityGroupIngressResponse smart constructor.