Copyright | (c) 2013-2016 Brendan Hay |
---|---|
License | Mozilla Public License, v. 2.0. |
Maintainer | Brendan Hay <brendan.g.hay@gmail.com> |
Stability | auto-generated |
Portability | non-portable (GHC extensions) |
Safe Haskell | None |
Language | Haskell2010 |
Adds one or more ingress rules to a security group.
EC2-Classic: You can have up to 100 rules per group.
EC2-VPC: You can have up to 50 rules per group (covering both ingress and egress rules).
Rule changes are propagated to instances within the security group as quickly as possible. However, a small delay might occur.
- EC2-Classic
- This action gives one or more CIDR IP address ranges permission to access a security group in your account, or gives one or more security groups (called the source groups) permission to access a security group for your account. A source group can be for your own AWS account, or another.
- EC2-VPC
- This action gives one or more CIDR IP address ranges permission to access a security group in your VPC, or gives one or more other security groups (called the source groups) permission to access a security group for your VPC. The security groups must all be for the same VPC.
- authorizeSecurityGroupIngress :: AuthorizeSecurityGroupIngress
- data AuthorizeSecurityGroupIngress
- asgiFromPort :: Lens' AuthorizeSecurityGroupIngress (Maybe Int)
- asgiIPPermissions :: Lens' AuthorizeSecurityGroupIngress [IPPermission]
- asgiIPProtocol :: Lens' AuthorizeSecurityGroupIngress (Maybe Text)
- asgiGroupId :: Lens' AuthorizeSecurityGroupIngress (Maybe Text)
- asgiToPort :: Lens' AuthorizeSecurityGroupIngress (Maybe Int)
- asgiCIdRIP :: Lens' AuthorizeSecurityGroupIngress (Maybe Text)
- asgiSourceSecurityGroupOwnerId :: Lens' AuthorizeSecurityGroupIngress (Maybe Text)
- asgiGroupName :: Lens' AuthorizeSecurityGroupIngress (Maybe Text)
- asgiSourceSecurityGroupName :: Lens' AuthorizeSecurityGroupIngress (Maybe Text)
- asgiDryRun :: Lens' AuthorizeSecurityGroupIngress (Maybe Bool)
- authorizeSecurityGroupIngressResponse :: AuthorizeSecurityGroupIngressResponse
- data AuthorizeSecurityGroupIngressResponse
Creating a Request
authorizeSecurityGroupIngress :: AuthorizeSecurityGroupIngress Source
Creates a value of AuthorizeSecurityGroupIngress
with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
data AuthorizeSecurityGroupIngress Source
See: authorizeSecurityGroupIngress
smart constructor.
Request Lenses
asgiFromPort :: Lens' AuthorizeSecurityGroupIngress (Maybe Int) Source
The start of port range for the TCP and UDP protocols, or an ICMP type number. For the ICMP type number, use '-1' to specify all ICMP types.
asgiIPPermissions :: Lens' AuthorizeSecurityGroupIngress [IPPermission] Source
A set of IP permissions. Can be used to specify multiple rules in a single command.
asgiIPProtocol :: Lens' AuthorizeSecurityGroupIngress (Maybe Text) Source
The IP protocol name (tcp
, udp
, icmp
) or number (see
Protocol Numbers).
(VPC only) Use '-1' to specify all.
asgiGroupId :: Lens' AuthorizeSecurityGroupIngress (Maybe Text) Source
The ID of the security group. Required for a nondefault VPC.
asgiToPort :: Lens' AuthorizeSecurityGroupIngress (Maybe Int) Source
The end of port range for the TCP and UDP protocols, or an ICMP code number. For the ICMP code number, use '-1' to specify all ICMP codes for the ICMP type.
asgiCIdRIP :: Lens' AuthorizeSecurityGroupIngress (Maybe Text) Source
The CIDR IP address range. You can't specify this parameter when specifying a source security group.
asgiSourceSecurityGroupOwnerId :: Lens' AuthorizeSecurityGroupIngress (Maybe Text) Source
- EC2-Classic, default VPC
- The AWS account number for the source security group. For EC2-VPC, the source security group must be in the same VPC. You can't specify this parameter in combination with the following parameters: the CIDR IP address range, the IP protocol, the start of the port range, and the end of the port range. Creates rules that grant full ICMP, UDP, and TCP access. To create a rule with a specific IP protocol and port range, use a set of IP permissions instead.
asgiGroupName :: Lens' AuthorizeSecurityGroupIngress (Maybe Text) Source
- EC2-Classic, default VPC
- The name of the security group.
asgiSourceSecurityGroupName :: Lens' AuthorizeSecurityGroupIngress (Maybe Text) Source
- EC2-Classic, default VPC
- The name of the source security group. You can't specify this parameter in combination with the following parameters: the CIDR IP address range, the start of the port range, the IP protocol, and the end of the port range. For EC2-VPC, the source security group must be in the same VPC.
asgiDryRun :: Lens' AuthorizeSecurityGroupIngress (Maybe Bool) Source
Checks whether you have the required permissions for the action, without
actually making the request, and provides an error response. If you have
the required permissions, the error response is DryRunOperation
.
Otherwise, it is UnauthorizedOperation
.
Destructuring the Response
authorizeSecurityGroupIngressResponse :: AuthorizeSecurityGroupIngressResponse Source
Creates a value of AuthorizeSecurityGroupIngressResponse
with the minimum fields required to make a request.
data AuthorizeSecurityGroupIngressResponse Source
See: authorizeSecurityGroupIngressResponse
smart constructor.