| Copyright | (c) 2013-2015 Brendan Hay |
|---|---|
| License | Mozilla Public License, v. 2.0. |
| Maintainer | Brendan Hay <brendan.g.hay@gmail.com> |
| Stability | auto-generated |
| Portability | non-portable (GHC extensions) |
| Safe Haskell | None |
| Language | Haskell2010 |
Network.AWS.EC2.AuthorizeSecurityGroupEgress
Description
Adds one or more egress rules to a security group for use with a VPC. Specifically, this action permits instances to send traffic to one or more destination CIDR IP address ranges, or to one or more destination security groups for the same VPC.
You can have up to 50 rules per security group (covering both ingress and egress rules).
A security group is for use with instances either in the EC2-Classic platform or in a specific VPC. This action doesn't apply to security groups for use in EC2-Classic. For more information, see Security Groups for Your VPC in the Amazon Virtual Private Cloud User Guide.
Each rule consists of the protocol (for example, TCP), plus either a CIDR range or a source group. For the TCP and UDP protocols, you must also specify the destination port or port range. For the ICMP protocol, you must also specify the ICMP type and code. You can use -1 for the type or code to mean all types or all codes.
Rule changes are propagated to affected instances as quickly as possible. However, a small delay might occur.
See: AWS API Reference for AuthorizeSecurityGroupEgress.
- authorizeSecurityGroupEgress :: Text -> AuthorizeSecurityGroupEgress
- data AuthorizeSecurityGroupEgress
- asgeFromPort :: Lens' AuthorizeSecurityGroupEgress (Maybe Int)
- asgeIPPermissions :: Lens' AuthorizeSecurityGroupEgress [IPPermission]
- asgeIPProtocol :: Lens' AuthorizeSecurityGroupEgress (Maybe Text)
- asgeToPort :: Lens' AuthorizeSecurityGroupEgress (Maybe Int)
- asgeCIdRIP :: Lens' AuthorizeSecurityGroupEgress (Maybe Text)
- asgeSourceSecurityGroupOwnerId :: Lens' AuthorizeSecurityGroupEgress (Maybe Text)
- asgeSourceSecurityGroupName :: Lens' AuthorizeSecurityGroupEgress (Maybe Text)
- asgeDryRun :: Lens' AuthorizeSecurityGroupEgress (Maybe Bool)
- asgeGroupId :: Lens' AuthorizeSecurityGroupEgress Text
- authorizeSecurityGroupEgressResponse :: AuthorizeSecurityGroupEgressResponse
- data AuthorizeSecurityGroupEgressResponse
Creating a Request
authorizeSecurityGroupEgress Source
Arguments
| :: Text | |
| -> AuthorizeSecurityGroupEgress |
Creates a value of AuthorizeSecurityGroupEgress with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
data AuthorizeSecurityGroupEgress Source
See: authorizeSecurityGroupEgress smart constructor.
Instances
Request Lenses
asgeFromPort :: Lens' AuthorizeSecurityGroupEgress (Maybe Int) Source
The start of port range for the TCP and UDP protocols, or an ICMP type number. For the ICMP type number, use '-1' to specify all ICMP types.
asgeIPPermissions :: Lens' AuthorizeSecurityGroupEgress [IPPermission] Source
A set of IP permissions. You can't specify a destination security group and a CIDR IP address range.
asgeIPProtocol :: Lens' AuthorizeSecurityGroupEgress (Maybe Text) Source
The IP protocol name (tcp, udp, icmp) or number (see
Protocol Numbers).
Use '-1' to specify all.
asgeToPort :: Lens' AuthorizeSecurityGroupEgress (Maybe Int) Source
The end of port range for the TCP and UDP protocols, or an ICMP code number. For the ICMP code number, use '-1' to specify all ICMP codes for the ICMP type.
asgeCIdRIP :: Lens' AuthorizeSecurityGroupEgress (Maybe Text) Source
The CIDR IP address range. You can't specify this parameter when specifying a source security group.
asgeSourceSecurityGroupOwnerId :: Lens' AuthorizeSecurityGroupEgress (Maybe Text) Source
The AWS account number for a destination security group. To authorize outbound access to a destination security group, we recommend that you use a set of IP permissions instead.
asgeSourceSecurityGroupName :: Lens' AuthorizeSecurityGroupEgress (Maybe Text) Source
The name of a destination security group. To authorize outbound access to a destination security group, we recommend that you use a set of IP permissions instead.
asgeDryRun :: Lens' AuthorizeSecurityGroupEgress (Maybe Bool) Source
Checks whether you have the required permissions for the action, without
actually making the request, and provides an error response. If you have
the required permissions, the error response is DryRunOperation.
Otherwise, it is UnauthorizedOperation.
asgeGroupId :: Lens' AuthorizeSecurityGroupEgress Text Source
The ID of the security group.
Destructuring the Response
authorizeSecurityGroupEgressResponse :: AuthorizeSecurityGroupEgressResponse Source
Creates a value of AuthorizeSecurityGroupEgressResponse with the minimum fields required to make a request.
data AuthorizeSecurityGroupEgressResponse Source
See: authorizeSecurityGroupEgressResponse smart constructor.
Instances