Copyright	(c) 2013-2021 Brendan Hay
License	Mozilla Public License, v. 2.0.
Maintainer	Brendan Hay <brendan.g.hay+amazonka@gmail.com>
Stability	auto-generated
Portability	non-portable (GHC extensions)
Safe Haskell	None

Amazonka.SecurityHub.Types.AwsEc2SecurityGroupIpPermission

Description

Synopsis

Documentation

data AwsEc2SecurityGroupIpPermission Source #

An IP permission for an EC2 security group.

See: newAwsEc2SecurityGroupIpPermission smart constructor.

Constructors

AwsEc2SecurityGroupIpPermission'

Fields

fromPort :: Maybe Int
The start of the port range for the TCP and UDP protocols, or an ICMP/ICMPv6 type number.
A value of -1 indicates all ICMP/ICMPv6 types. If you specify all ICMP/ICMPv6 types, you must specify all codes.
userIdGroupPairs :: Maybe [AwsEc2SecurityGroupUserIdGroupPair]
The security group and Amazon Web Services account ID pairs.
prefixListIds :: Maybe [AwsEc2SecurityGroupPrefixListId]
VPC only
The prefix list IDs for an Amazon Web Services service. With outbound rules, this is the Amazon Web Services service to access through a VPC endpoint from instances associated with the security group.
ipProtocol :: Maybe Text
The IP protocol name (tcp, udp, icmp, icmpv6) or number.
VPC only
Use -1 to specify all protocols.
When authorizing security group rules, specifying -1 or a protocol number other than tcp, udp, icmp, or icmpv6 allows traffic on all ports, regardless of any port range you specify.
For tcp, udp, and icmp, you must specify a port range.
For icmpv6, the port range is optional. If you omit the port range, traffic for all types and codes is allowed.
toPort :: Maybe Int
The end of the port range for the TCP and UDP protocols, or an ICMP/ICMPv6 code.
A value of -1 indicates all ICMP/ICMPv6 codes. If you specify all ICMP/ICMPv6 types, you must specify all codes.
ipv6Ranges :: Maybe [AwsEc2SecurityGroupIpv6Range]
The IPv6 ranges.
ipRanges :: Maybe [AwsEc2SecurityGroupIpRange]
The IPv4 ranges.

Instances

Instances details

Eq AwsEc2SecurityGroupIpPermission Source #
Instance details Defined in Amazonka.SecurityHub.Types.AwsEc2SecurityGroupIpPermission Methods (==) :: AwsEc2SecurityGroupIpPermission -> AwsEc2SecurityGroupIpPermission -> Bool # (/=) :: AwsEc2SecurityGroupIpPermission -> AwsEc2SecurityGroupIpPermission -> Bool #
Read AwsEc2SecurityGroupIpPermission Source #
Instance details Defined in Amazonka.SecurityHub.Types.AwsEc2SecurityGroupIpPermission Methods readsPrec :: Int -> ReadS AwsEc2SecurityGroupIpPermission # readList :: ReadS [AwsEc2SecurityGroupIpPermission] # readPrec :: ReadPrec AwsEc2SecurityGroupIpPermission # readListPrec :: ReadPrec [AwsEc2SecurityGroupIpPermission] #
Show AwsEc2SecurityGroupIpPermission Source #
Instance details Defined in Amazonka.SecurityHub.Types.AwsEc2SecurityGroupIpPermission Methods showsPrec :: Int -> AwsEc2SecurityGroupIpPermission -> ShowS # show :: AwsEc2SecurityGroupIpPermission -> String # showList :: [AwsEc2SecurityGroupIpPermission] -> ShowS #
Generic AwsEc2SecurityGroupIpPermission Source #
Instance details Defined in Amazonka.SecurityHub.Types.AwsEc2SecurityGroupIpPermission Associated Types type Rep AwsEc2SecurityGroupIpPermission :: Type -> Type # Methods from :: AwsEc2SecurityGroupIpPermission -> Rep AwsEc2SecurityGroupIpPermission x # to :: Rep AwsEc2SecurityGroupIpPermission x -> AwsEc2SecurityGroupIpPermission #
NFData AwsEc2SecurityGroupIpPermission Source #
Instance details Defined in Amazonka.SecurityHub.Types.AwsEc2SecurityGroupIpPermission Methods rnf :: AwsEc2SecurityGroupIpPermission -> () #
Hashable AwsEc2SecurityGroupIpPermission Source #
Instance details Defined in Amazonka.SecurityHub.Types.AwsEc2SecurityGroupIpPermission Methods hashWithSalt :: Int -> AwsEc2SecurityGroupIpPermission -> Int # hash :: AwsEc2SecurityGroupIpPermission -> Int #
ToJSON AwsEc2SecurityGroupIpPermission Source #
Instance details Defined in Amazonka.SecurityHub.Types.AwsEc2SecurityGroupIpPermission Methods toJSON :: AwsEc2SecurityGroupIpPermission -> Value # toEncoding :: AwsEc2SecurityGroupIpPermission -> Encoding # toJSONList :: [AwsEc2SecurityGroupIpPermission] -> Value # toEncodingList :: [AwsEc2SecurityGroupIpPermission] -> Encoding #
FromJSON AwsEc2SecurityGroupIpPermission Source #
Instance details Defined in Amazonka.SecurityHub.Types.AwsEc2SecurityGroupIpPermission Methods parseJSON :: Value -> Parser AwsEc2SecurityGroupIpPermission # parseJSONList :: Value -> Parser [AwsEc2SecurityGroupIpPermission] #
type Rep AwsEc2SecurityGroupIpPermission Source #
Instance details Defined in Amazonka.SecurityHub.Types.AwsEc2SecurityGroupIpPermission type Rep AwsEc2SecurityGroupIpPermission = D1 ('MetaData "AwsEc2SecurityGroupIpPermission" "Amazonka.SecurityHub.Types.AwsEc2SecurityGroupIpPermission" "libZSservicesZSamazonka-securityhubZSamazonka-securityhub" 'False) (C1 ('MetaCons "AwsEc2SecurityGroupIpPermission'" 'PrefixI 'True) ((S1 ('MetaSel ('Just "fromPort") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Int)) :: (S1 ('MetaSel ('Just "userIdGroupPairs") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe [AwsEc2SecurityGroupUserIdGroupPair])) :: S1 ('MetaSel ('Just "prefixListIds") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe [AwsEc2SecurityGroupPrefixListId])))) :: ((S1 ('MetaSel ('Just "ipProtocol") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :: S1 ('MetaSel ('Just "toPort") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Int))) :: (S1 ('MetaSel ('Just "ipv6Ranges") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe [AwsEc2SecurityGroupIpv6Range])) :: S1 ('MetaSel ('Just "ipRanges") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe [AwsEc2SecurityGroupIpRange]))))))

newAwsEc2SecurityGroupIpPermission :: AwsEc2SecurityGroupIpPermission Source #

Create a value of AwsEc2SecurityGroupIpPermission with all optional fields omitted.

Use generic-lens or optics to modify other optional fields.

The following record fields are available, with the corresponding lenses provided for backwards compatibility:

$sel:fromPort:AwsEc2SecurityGroupIpPermission', awsEc2SecurityGroupIpPermission_fromPort - The start of the port range for the TCP and UDP protocols, or an ICMP/ICMPv6 type number.

A value of -1 indicates all ICMP/ICMPv6 types. If you specify all ICMP/ICMPv6 types, you must specify all codes.

$sel:userIdGroupPairs:AwsEc2SecurityGroupIpPermission', awsEc2SecurityGroupIpPermission_userIdGroupPairs - The security group and Amazon Web Services account ID pairs.

$sel:prefixListIds:AwsEc2SecurityGroupIpPermission', awsEc2SecurityGroupIpPermission_prefixListIds - [VPC only] The prefix list IDs for an Amazon Web Services service. With outbound rules, this is the Amazon Web Services service to access through a VPC endpoint from instances associated with the security group.

$sel:ipProtocol:AwsEc2SecurityGroupIpPermission', awsEc2SecurityGroupIpPermission_ipProtocol - The IP protocol name (tcp, udp, icmp, icmpv6) or number.

VPC only: Use -1 to specify all protocols.

When authorizing security group rules, specifying -1 or a protocol number other than tcp, udp, icmp, or icmpv6 allows traffic on all ports, regardless of any port range you specify.

For tcp, udp, and icmp, you must specify a port range.

For icmpv6, the port range is optional. If you omit the port range, traffic for all types and codes is allowed.

$sel:toPort:AwsEc2SecurityGroupIpPermission', awsEc2SecurityGroupIpPermission_toPort - The end of the port range for the TCP and UDP protocols, or an ICMP/ICMPv6 code.

A value of -1 indicates all ICMP/ICMPv6 codes. If you specify all ICMP/ICMPv6 types, you must specify all codes.

$sel:ipv6Ranges:AwsEc2SecurityGroupIpPermission', awsEc2SecurityGroupIpPermission_ipv6Ranges - The IPv6 ranges.

$sel:ipRanges:AwsEc2SecurityGroupIpPermission', awsEc2SecurityGroupIpPermission_ipRanges - The IPv4 ranges.

awsEc2SecurityGroupIpPermission_fromPort :: Lens' AwsEc2SecurityGroupIpPermission (Maybe Int) Source #

The start of the port range for the TCP and UDP protocols, or an ICMP/ICMPv6 type number.

A value of -1 indicates all ICMP/ICMPv6 types. If you specify all ICMP/ICMPv6 types, you must specify all codes.

awsEc2SecurityGroupIpPermission_userIdGroupPairs :: Lens' AwsEc2SecurityGroupIpPermission (Maybe [AwsEc2SecurityGroupUserIdGroupPair]) Source #

The security group and Amazon Web Services account ID pairs.

awsEc2SecurityGroupIpPermission_prefixListIds :: Lens' AwsEc2SecurityGroupIpPermission (Maybe [AwsEc2SecurityGroupPrefixListId]) Source #

VPC only: The prefix list IDs for an Amazon Web Services service. With outbound rules, this is the Amazon Web Services service to access through a VPC endpoint from instances associated with the security group.

awsEc2SecurityGroupIpPermission_ipProtocol :: Lens' AwsEc2SecurityGroupIpPermission (Maybe Text) Source #

The IP protocol name (tcp, udp, icmp, icmpv6) or number.

VPC only: Use -1 to specify all protocols.

When authorizing security group rules, specifying -1 or a protocol number other than tcp, udp, icmp, or icmpv6 allows traffic on all ports, regardless of any port range you specify.

For tcp, udp, and icmp, you must specify a port range.

For icmpv6, the port range is optional. If you omit the port range, traffic for all types and codes is allowed.

awsEc2SecurityGroupIpPermission_toPort :: Lens' AwsEc2SecurityGroupIpPermission (Maybe Int) Source #

The end of the port range for the TCP and UDP protocols, or an ICMP/ICMPv6 code.

A value of -1 indicates all ICMP/ICMPv6 codes. If you specify all ICMP/ICMPv6 types, you must specify all codes.

awsEc2SecurityGroupIpPermission_ipv6Ranges :: Lens' AwsEc2SecurityGroupIpPermission (Maybe [AwsEc2SecurityGroupIpv6Range]) Source #

The IPv6 ranges.

awsEc2SecurityGroupIpPermission_ipRanges :: Lens' AwsEc2SecurityGroupIpPermission (Maybe [AwsEc2SecurityGroupIpRange]) Source #

The IPv4 ranges.