Initiates the copy of an AMI. You can copy an AMI from one Region to another, or from a - * Region to an Outpost. You can't copy an AMI from an Outpost to a Region, from one Outpost - * to another, or within the same Outpost. To copy an AMI to another partition, see CreateStoreImageTask.
- *To copy an AMI from one Region to another, specify the source Region using the
- * SourceRegion parameter, and specify the
- * destination Region using its endpoint. Copies of encrypted backing snapshots for
- * the AMI are encrypted. Copies of unencrypted backing snapshots remain unencrypted,
- * unless you set Encrypted during the copy operation. You cannot
- * create an unencrypted copy of an encrypted backing snapshot.
To copy an AMI from a Region to an Outpost, specify the source Region using the - * SourceRegion parameter, and specify the - * ARN of the destination Outpost using DestinationOutpostArn. - * Backing snapshots copied to an Outpost are encrypted by default using the default - * encryption key for the Region, or a different key that you specify in the request using - * KmsKeyId. Outposts do not support unencrypted - * snapshots. For more information, - * Amazon EBS local snapshots on Outposts in the Amazon EBS User Guide.
- *For more information about the prerequisites and limits when copying an AMI, see Copy an AMI in the - * Amazon EC2 User Guide.
+ *Initiates an AMI copy operation. You can copy an AMI from one Region to another, or from a + * Region to an Outpost. You can't copy an AMI from an Outpost to a Region, from one Outpost to + * another, or within the same Outpost. To copy an AMI to another partition, see CreateStoreImageTask.
+ *When you copy an AMI from one Region to another, the destination Region is the + * current Region.
+ *When you copy an AMI from a Region to an Outpost, specify the ARN of the Outpost as + * the destination. Backing snapshots copied to an Outpost are encrypted by default using + * the default encryption key for the Region or the key that you specify. Outposts do not + * support unencrypted snapshots.
+ *For information about the prerequisites when copying an AMI, see Copy an AMI in the Amazon EC2 User Guide.
* @example * Use a bare-bones client and the command you need to make an API call. * ```javascript diff --git a/clients/client-ec2/src/commands/DeleteSecurityGroupCommand.ts b/clients/client-ec2/src/commands/DeleteSecurityGroupCommand.ts index ac162564bb69..3882dfc54f6b 100644 --- a/clients/client-ec2/src/commands/DeleteSecurityGroupCommand.ts +++ b/clients/client-ec2/src/commands/DeleteSecurityGroupCommand.ts @@ -30,7 +30,7 @@ export interface DeleteSecurityGroupCommandOutput extends __MetadataBearer {} /** *Deletes a security group.
*If you attempt to delete a security group that is associated with an instance or network interface or is
- * referenced by another security group, the operation fails with
+ * referenced by another security group in the same VPC, the operation fails with
* DependencyViolation.
Describes the stale security group rules for security groups in a specified VPC. - * Rules are stale when they reference a deleted security group in the same VPC or peered VPC. Rules can also be stale if they reference a security group in a peer VPC for which the VPC peering connection has + * Rules are stale when they reference a deleted security group in a peered VPC. Rules can also be stale if they reference a security group in a peer VPC for which the VPC peering connection has * been deleted.
* @example * Use a bare-bones client and the command you need to make an API call. diff --git a/clients/client-ec2/src/commands/DisableSnapshotBlockPublicAccessCommand.ts b/clients/client-ec2/src/commands/DisableSnapshotBlockPublicAccessCommand.ts index 37c600775d68..2e4d2f0536e4 100644 --- a/clients/client-ec2/src/commands/DisableSnapshotBlockPublicAccessCommand.ts +++ b/clients/client-ec2/src/commands/DisableSnapshotBlockPublicAccessCommand.ts @@ -36,9 +36,15 @@ export interface DisableSnapshotBlockPublicAccessCommandOutput *Disables the block public access for snapshots setting at * the account level for the specified Amazon Web Services Region. After you disable block public * access for snapshots in a Region, users can publicly share snapshots in that Region.
- *If block public access is enabled in block-all-sharing mode, and
- * you disable block public access, all snapshots that were previously publicly shared
- * are no longer treated as private and they become publicly accessible again.
Enabling block public access for snapshots in block-all-sharing + * mode does not change the permissions for snapshots that are already publicly shared. + * Instead, it prevents these snapshots from be publicly visible and publicly accessible. + * Therefore, the attributes for these snapshots still indicate that they are publicly + * shared, even though they are not publicly available.
+ *If you disable block public access , these snapshots will become publicly available + * again.
+ *For more information, see * Block public access for snapshots in the Amazon EBS User Guide .
* diff --git a/clients/client-ec2/src/commands/EnableSnapshotBlockPublicAccessCommand.ts b/clients/client-ec2/src/commands/EnableSnapshotBlockPublicAccessCommand.ts index b9ea2276c5ec..31ac3781b74e 100644 --- a/clients/client-ec2/src/commands/EnableSnapshotBlockPublicAccessCommand.ts +++ b/clients/client-ec2/src/commands/EnableSnapshotBlockPublicAccessCommand.ts @@ -39,10 +39,15 @@ export interface EnableSnapshotBlockPublicAccessCommandOutput * for snapshots in that Region. Snapshots that are already publicly shared are either * treated as private or they remain publicly shared, depending on the * State that you specify. - *If block public access is enabled in block-all-sharing mode, and
- * you change the mode to block-new-sharing, all snapshots that were
- * previously publicly shared are no longer treated as private and they become publicly
- * accessible again.
Enabling block public access for snapshots in block all sharing + * mode does not change the permissions for snapshots that are already publicly shared. + * Instead, it prevents these snapshots from be publicly visible and publicly accessible. + * Therefore, the attributes for these snapshots still indicate that they are publicly + * shared, even though they are not publicly available.
+ *If you later disable block public access or change the mode to block new + * sharing, these snapshots will become publicly available again.
+ *For more information, see * Block public access for snapshots in the Amazon EBS User Guide.
* @example diff --git a/clients/client-ec2/src/commands/GetInstanceMetadataDefaultsCommand.ts b/clients/client-ec2/src/commands/GetInstanceMetadataDefaultsCommand.ts index d81aeef6c791..29bee5f6d1fa 100644 --- a/clients/client-ec2/src/commands/GetInstanceMetadataDefaultsCommand.ts +++ b/clients/client-ec2/src/commands/GetInstanceMetadataDefaultsCommand.ts @@ -6,8 +6,7 @@ import { MetadataBearer as __MetadataBearer } from "@smithy/types"; import { EC2ClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../EC2Client"; import { commonParams } from "../endpoint/EndpointParameters"; -import { GetInstanceMetadataDefaultsRequest } from "../models/models_5"; -import { GetInstanceMetadataDefaultsResult } from "../models/models_6"; +import { GetInstanceMetadataDefaultsRequest, GetInstanceMetadataDefaultsResult } from "../models/models_6"; import { de_GetInstanceMetadataDefaultsCommand, se_GetInstanceMetadataDefaultsCommand } from "../protocols/Aws_ec2"; /** diff --git a/clients/client-ec2/src/commands/ModifyVpnConnectionOptionsCommand.ts b/clients/client-ec2/src/commands/ModifyVpnConnectionOptionsCommand.ts index 66c5157f056d..446349ffa1a1 100644 --- a/clients/client-ec2/src/commands/ModifyVpnConnectionOptionsCommand.ts +++ b/clients/client-ec2/src/commands/ModifyVpnConnectionOptionsCommand.ts @@ -6,11 +6,11 @@ import { MetadataBearer as __MetadataBearer } from "@smithy/types"; import { EC2ClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../EC2Client"; import { commonParams } from "../endpoint/EndpointParameters"; +import { ModifyVpnConnectionOptionsRequest } from "../models/models_6"; import { - ModifyVpnConnectionOptionsRequest, ModifyVpnConnectionOptionsResult, ModifyVpnConnectionOptionsResultFilterSensitiveLog, -} from "../models/models_6"; +} from "../models/models_7"; import { de_ModifyVpnConnectionOptionsCommand, se_ModifyVpnConnectionOptionsCommand } from "../protocols/Aws_ec2"; /** diff --git a/clients/client-ec2/src/commands/ModifyVpnTunnelCertificateCommand.ts b/clients/client-ec2/src/commands/ModifyVpnTunnelCertificateCommand.ts index dea0c0c34f09..14ac14b3d787 100644 --- a/clients/client-ec2/src/commands/ModifyVpnTunnelCertificateCommand.ts +++ b/clients/client-ec2/src/commands/ModifyVpnTunnelCertificateCommand.ts @@ -6,8 +6,8 @@ import { MetadataBearer as __MetadataBearer } from "@smithy/types"; import { EC2ClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../EC2Client"; import { commonParams } from "../endpoint/EndpointParameters"; -import { ModifyVpnTunnelCertificateRequest } from "../models/models_6"; import { + ModifyVpnTunnelCertificateRequest, ModifyVpnTunnelCertificateResult, ModifyVpnTunnelCertificateResultFilterSensitiveLog, } from "../models/models_7"; diff --git a/clients/client-ec2/src/models/models_0.ts b/clients/client-ec2/src/models/models_0.ts index 5880fe666fdf..0be9dc8b6213 100644 --- a/clients/client-ec2/src/models/models_0.ts +++ b/clients/client-ec2/src/models/models_0.ts @@ -7935,8 +7935,8 @@ export interface CopyImageRequest { *Specifies whether the destination snapshots of the copied image should be encrypted. You
* can encrypt a copy of an unencrypted snapshot, but you cannot create an unencrypted copy of an
* encrypted snapshot. The default KMS key for Amazon EBS is used unless you specify a non-default
- * Key Management Service (KMS) KMS key using KmsKeyId. For more information, see Amazon EBS encryption in the
- * Amazon EBS User Guide.
KmsKeyId. For more information, see Use encryption with
+ * EBS-backed AMIs in the Amazon EC2 User Guide.
* @public
*/
Encrypted?: boolean;
diff --git a/clients/client-ec2/src/models/models_1.ts b/clients/client-ec2/src/models/models_1.ts
index 27d958a52e3c..180d8da2d6e3 100644
--- a/clients/client-ec2/src/models/models_1.ts
+++ b/clients/client-ec2/src/models/models_1.ts
@@ -7968,7 +7968,7 @@ export interface RequestLaunchTemplateData {
NetworkInterfaces?: LaunchTemplateInstanceNetworkInterfaceSpecificationRequest[];
/**
- * The ID of the AMI in the format ami-17characters00000.
The ID of the AMI in the format ami-0ac394d6a3example.
Alternatively, you can specify a Systems Manager parameter, using one of the following * formats. The Systems Manager parameter will resolve to an AMI ID on launch.
*To reference a public parameter:
diff --git a/clients/client-ec2/src/models/models_4.ts b/clients/client-ec2/src/models/models_4.ts index 12b1572b2315..42244ce20a05 100644 --- a/clients/client-ec2/src/models/models_4.ts +++ b/clients/client-ec2/src/models/models_4.ts @@ -3473,6 +3473,12 @@ export interface DescribeInstanceStatusRequest { * (ok | impaired | initializing |
* insufficient-data | not-applicable).
*
+ *
+ * attached-ebs-status.status - The status of the attached EBS volume
+ * for the instance (ok | impaired | initializing |
+ * insufficient-data | not-applicable).
Describes the attached EBS status check for an instance.
+ * @public + */ +export interface EbsStatusDetails { + /** + *The date and time when the attached EBS status check failed.
+ * @public + */ + ImpairedSince?: Date; + + /** + *The name of the attached EBS status check.
+ * @public + */ + Name?: StatusName; + + /** + *The result of the attached EBS status check.
+ * @public + */ + Status?: StatusType; +} + +/** + * @public + * @enum + */ +export const SummaryStatus = { + impaired: "impaired", + initializing: "initializing", + insufficient_data: "insufficient-data", + not_applicable: "not-applicable", + ok: "ok", +} as const; + +/** + * @public + */ +export type SummaryStatus = (typeof SummaryStatus)[keyof typeof SummaryStatus]; + +/** + *Provides a summary of the attached EBS volume status for an instance.
+ * @public + */ +export interface EbsStatusSummary { + /** + *Details about the attached EBS status check for an instance.
+ * @public + */ + Details?: EbsStatusDetails[]; + + /** + *The current status.
+ * @public + */ + Status?: SummaryStatus; +} + /** * @public * @enum @@ -3581,35 +3675,6 @@ export interface InstanceStatusEvent { NotBeforeDeadline?: Date; } -/** - * @public - * @enum - */ -export const StatusName = { - reachability: "reachability", -} as const; - -/** - * @public - */ -export type StatusName = (typeof StatusName)[keyof typeof StatusName]; - -/** - * @public - * @enum - */ -export const StatusType = { - failed: "failed", - initializing: "initializing", - insufficient_data: "insufficient-data", - passed: "passed", -} as const; - -/** - * @public - */ -export type StatusType = (typeof StatusType)[keyof typeof StatusType]; - /** *Describes the instance status.
* @public @@ -3635,23 +3700,6 @@ export interface InstanceStatusDetails { Status?: StatusType; } -/** - * @public - * @enum - */ -export const SummaryStatus = { - impaired: "impaired", - initializing: "initializing", - insufficient_data: "insufficient-data", - not_applicable: "not-applicable", - ok: "ok", -} as const; - -/** - * @public - */ -export type SummaryStatus = (typeof SummaryStatus)[keyof typeof SummaryStatus]; - /** *Describes the status of an instance.
* @public @@ -3719,6 +3767,13 @@ export interface InstanceStatus { * @public */ SystemStatus?: InstanceStatusSummary; + + /** + *Reports impaired functionality that stems from an attached Amazon EBS volume that is + * unreachable and unable to complete I/O operations.
+ * @public + */ + AttachedEbsStatus?: EbsStatusSummary; } /** @@ -8538,8 +8593,8 @@ export interface DescribeNetworkInterfacesRequest { * *
- * requester-managed - Indicates whether the network interface is being managed by an Amazon Web Services service
- * (for example, Amazon Web Services Management Console, Auto Scaling, and so on).
requester-managed - Indicates whether the network interface is being managed by an Amazon Web Services
+ * service (for example, Amazon Web Services Management Console, Auto Scaling, and so on).
* @@ -10147,8 +10202,8 @@ export interface DescribeRouteTablesRequest { *
- * route.destination-prefix-list-id - The ID (prefix) of the Amazon Web Services service
- * specified in a route in the table.
route.destination-prefix-list-id - The ID (prefix) of the Amazon Web Services
+ * service specified in a route in the table.
* @@ -12335,39 +12390,6 @@ export interface TargetGroupsConfig { TargetGroups?: TargetGroup[]; } -/** - *
Describes the Classic Load Balancers and target groups to attach to a Spot Fleet - * request.
- * @public - */ -export interface LoadBalancersConfig { - /** - *The Classic Load Balancers.
- * @public - */ - ClassicLoadBalancersConfig?: ClassicLoadBalancersConfig; - - /** - *The target groups.
- * @public - */ - TargetGroupsConfig?: TargetGroupsConfig; -} - -/** - * @public - * @enum - */ -export const OnDemandAllocationStrategy = { - LOWEST_PRICE: "lowestPrice", - PRIORITIZED: "prioritized", -} as const; - -/** - * @public - */ -export type OnDemandAllocationStrategy = (typeof OnDemandAllocationStrategy)[keyof typeof OnDemandAllocationStrategy]; - /** * @internal */ diff --git a/clients/client-ec2/src/models/models_5.ts b/clients/client-ec2/src/models/models_5.ts index 21f636eb8326..e8761aaf38ea 100644 --- a/clients/client-ec2/src/models/models_5.ts +++ b/clients/client-ec2/src/models/models_5.ts @@ -101,20 +101,50 @@ import { import { AttributeBooleanValue, + ClassicLoadBalancersConfig, ExcessCapacityTerminationPolicy, - HttpTokensState, - InstanceMetadataEndpointState, - InstanceMetadataTagsState, InstanceNetworkInterfaceSpecification, LaunchTemplateConfig, - LoadBalancersConfig, - OnDemandAllocationStrategy, RIProductDescription, SpotFleetLaunchSpecification, SpotFleetLaunchSpecificationFilterSensitiveLog, SpotPlacement, + TargetGroupsConfig, } from "./models_4"; +/** + *Describes the Classic Load Balancers and target groups to attach to a Spot Fleet + * request.
+ * @public + */ +export interface LoadBalancersConfig { + /** + *The Classic Load Balancers.
+ * @public + */ + ClassicLoadBalancersConfig?: ClassicLoadBalancersConfig; + + /** + *The target groups.
+ * @public + */ + TargetGroupsConfig?: TargetGroupsConfig; +} + +/** + * @public + * @enum + */ +export const OnDemandAllocationStrategy = { + LOWEST_PRICE: "lowestPrice", + PRIORITIZED: "prioritized", +} as const; + +/** + * @public + */ +export type OnDemandAllocationStrategy = (typeof OnDemandAllocationStrategy)[keyof typeof OnDemandAllocationStrategy]; + /** * @public * @enum @@ -7874,13 +7904,6 @@ export interface EnableSnapshotBlockPublicAccessRequest { * the Region. Users in the account will no longer be able to request new public * sharing. Additionally, snapshots that are already publicly shared are treated as * private and they are no longer publicly available. - *If you enable block public access for snapshots in block-all-sharing
- * mode, it does not change the permissions for snapshots that are already publicly shared.
- * Instead, it prevents these snapshots from be publicly visible and publicly accessible.
- * Therefore, the attributes for these snapshots still indicate that they are publicly
- * shared, even though they are not publicly available.
@@ -8531,13 +8554,15 @@ export interface DataQuery { Destination?: string; /** - *
The metric, aggregation-latency, indicating that network latency is aggregated for the query. This is the only supported metric.
The metric used for the network performance request.
* @public */ Metric?: MetricType; /** - *The metric data aggregation period, p50, between the specified startDate and endDate. For example, a metric of five_minutes is the median of all the data points gathered within those five minutes. p50 is the only supported metric.
The metric data aggregation period, p50, between the specified startDate
+ * and endDate. For example, a metric of five_minutes is the median of all
+ * the data points gathered within those five minutes. p50 is the only supported metric.
The metric used for the network performance request. Only aggregate-latency is supported, which shows network latency during a specified period.
The metric used for the network performance request.
* @public */ Metric?: MetricType; @@ -9446,66 +9471,6 @@ export interface GetImageBlockPublicAccessStateResult { ImageBlockPublicAccessState?: string; } -/** - * @public - */ -export interface GetInstanceMetadataDefaultsRequest { - /** - *Checks whether you have the required permissions for the action, without actually making the request,
- * and provides an error response. If you have the required permissions, the error response is DryRunOperation.
- * Otherwise, it is UnauthorizedOperation.
The default instance metadata service (IMDS) settings that were set at the account - * level in the specified Amazon Web Services Region.
- * @public - */ -export interface InstanceMetadataDefaultsResponse { - /** - *Indicates whether IMDSv2 is required.
- *
- * optional – IMDSv2 is optional, which means that you can
- * use either IMDSv2 or IMDSv1.
- * required – IMDSv2 is required, which means that IMDSv1 is
- * disabled, and you must use IMDSv2.
The maximum number of hops that the metadata token can travel.
- * @public - */ - HttpPutResponseHopLimit?: number; - - /** - *Indicates whether the IMDS endpoint for an instance is enabled or disabled. When disabled, the instance - * metadata can't be accessed.
- * @public - */ - HttpEndpoint?: InstanceMetadataEndpointState; - - /** - *Indicates whether access to instance tags from the instance metadata is enabled or - * disabled. For more information, see Work with - * instance tags using the instance metadata in the - * Amazon EC2 User Guide.
- * @public - */ - InstanceMetadataTags?: InstanceMetadataTagsState; -} - /** * @internal */ diff --git a/clients/client-ec2/src/models/models_6.ts b/clients/client-ec2/src/models/models_6.ts index dbb14e1228f0..caf775fbf0fe 100644 --- a/clients/client-ec2/src/models/models_6.ts +++ b/clients/client-ec2/src/models/models_6.ts @@ -140,7 +140,6 @@ import { import { InstanceFamilyCreditSpecification, - InstanceMetadataDefaultsResponse, SnapshotBlockPublicAccessState, TransitGatewayPropagationState, UnlimitedSupportedInstanceFamily, @@ -148,6 +147,66 @@ import { VolumeModification, } from "./models_5"; +/** + * @public + */ +export interface GetInstanceMetadataDefaultsRequest { + /** + *Checks whether you have the required permissions for the action, without actually making the request,
+ * and provides an error response. If you have the required permissions, the error response is DryRunOperation.
+ * Otherwise, it is UnauthorizedOperation.
The default instance metadata service (IMDS) settings that were set at the account + * level in the specified Amazon Web Services Region.
+ * @public + */ +export interface InstanceMetadataDefaultsResponse { + /** + *Indicates whether IMDSv2 is required.
+ *
+ * optional – IMDSv2 is optional, which means that you can
+ * use either IMDSv2 or IMDSv1.
+ * required – IMDSv2 is required, which means that IMDSv1 is
+ * disabled, and you must use IMDSv2.
The maximum number of hops that the metadata token can travel.
+ * @public + */ + HttpPutResponseHopLimit?: number; + + /** + *Indicates whether the IMDS endpoint for an instance is enabled or disabled. When disabled, the instance + * metadata can't be accessed.
+ * @public + */ + HttpEndpoint?: InstanceMetadataEndpointState; + + /** + *Indicates whether access to instance tags from the instance metadata is enabled or + * disabled. For more information, see Work with + * instance tags using the instance metadata in the + * Amazon EC2 User Guide.
+ * @public + */ + InstanceMetadataTags?: InstanceMetadataTagsState; +} + /** * @public */ @@ -7513,6 +7572,9 @@ export interface ModifySubnetAttributeRequest { /** *Indicates whether DNS queries made to the Amazon-provided DNS Resolver in this subnet * should return synthetic IPv6 addresses for IPv4-only destinations.
+ *You must first configure a NAT gateway in a public subnet (separate from the subnet containing the IPv6-only workloads). For example, the subnet containing the NAT gateway should have a 0.0.0.0/0 route pointing to the internet gateway. For more information, see Configure DNS64 and NAT64 in the Amazon VPC User Guide.
A private Autonomous System Number (ASN) for the Amazon side of a BGP session. * The range is 64512 to 65534 for 16-bit ASNs and 4200000000 to 4294967294 for 32-bit ASNs.
- *The modify ASN operation is not allowed on a transit gateway with active BGP sessions. You must first delete all transit gateway attachments that have BGP configured prior to modifying the ASN on the transit gateway.
+ *The modify ASN operation is not allowed on a transit gateway if it has the following attachments:
+ *Dynamic VPN
+ *Static VPN
+ *Direct Connect Gateway
+ *Connect
+ *You must first delete all transit gateway attachments configured prior to modifying the ASN on + * the transit gateway.
* @public */ AmazonSideAsn?: number; @@ -9398,43 +9476,6 @@ export interface ModifyVpnConnectionOptionsRequest { DryRun?: boolean; } -/** - * @public - */ -export interface ModifyVpnConnectionOptionsResult { - /** - *Information about the VPN connection.
- * @public - */ - VpnConnection?: VpnConnection; -} - -/** - * @public - */ -export interface ModifyVpnTunnelCertificateRequest { - /** - *The ID of the Amazon Web Services Site-to-Site VPN connection.
- * @public - */ - VpnConnectionId: string | undefined; - - /** - *The external IP address of the VPN tunnel.
- * @public - */ - VpnTunnelOutsideIpAddress: string | undefined; - - /** - *Checks whether you have the required permissions for the action, without actually
- * making the request, and provides an error response. If you have the required
- * permissions, the error response is DryRunOperation. Otherwise, it is
- * UnauthorizedOperation.
Information about the VPN connection.
+ * @public + */ + VpnConnection?: VpnConnection; +} + +/** + * @public + */ +export interface ModifyVpnTunnelCertificateRequest { + /** + *The ID of the Amazon Web Services Site-to-Site VPN connection.
+ * @public + */ + VpnConnectionId: string | undefined; + + /** + *The external IP address of the VPN tunnel.
+ * @public + */ + VpnTunnelOutsideIpAddress: string | undefined; + + /** + *Checks whether you have the required permissions for the action, without actually
+ * making the request, and provides an error response. If you have the required
+ * permissions, the error response is DryRunOperation. Otherwise, it is
+ * UnauthorizedOperation.
Initiates the copy of an AMI. You can copy an AMI from one Region to another, or from a\n Region to an Outpost. You can't copy an AMI from an Outpost to a Region, from one Outpost\n to another, or within the same Outpost. To copy an AMI to another partition, see CreateStoreImageTask.
\nTo copy an AMI from one Region to another, specify the source Region using the \n \t\tSourceRegion parameter, and specify the \n \t\tdestination Region using its endpoint. Copies of encrypted backing snapshots for\n \t\tthe AMI are encrypted. Copies of unencrypted backing snapshots remain unencrypted, \n \t\tunless you set Encrypted during the copy operation. You cannot \n \t\tcreate an unencrypted copy of an encrypted backing snapshot.
To copy an AMI from a Region to an Outpost, specify the source Region using the \n \t\tSourceRegion parameter, and specify the \n \t\tARN of the destination Outpost using DestinationOutpostArn. \n \t\tBacking snapshots copied to an Outpost are encrypted by default using the default\n \t\tencryption key for the Region, or a different key that you specify in the request using \n \t\tKmsKeyId. Outposts do not support unencrypted \n \t snapshots. For more information, \n \t\t\tAmazon EBS local snapshots on Outposts in the Amazon EBS User Guide.
\nFor more information about the prerequisites and limits when copying an AMI, see Copy an AMI in the\n Amazon EC2 User Guide.
", + "smithy.api#documentation": "Initiates an AMI copy operation. You can copy an AMI from one Region to another, or from a\n Region to an Outpost. You can't copy an AMI from an Outpost to a Region, from one Outpost to\n another, or within the same Outpost. To copy an AMI to another partition, see CreateStoreImageTask.
\nWhen you copy an AMI from one Region to another, the destination Region is the \n \tcurrent Region.
\nWhen you copy an AMI from a Region to an Outpost, specify the ARN of the Outpost as\n \t the destination. Backing snapshots copied to an Outpost are encrypted by default using \n \t the default encryption key for the Region or the key that you specify. Outposts do not \n \t support unencrypted snapshots.
\nFor information about the prerequisites when copying an AMI, see Copy an AMI in the Amazon EC2 User Guide.
", "smithy.api#examples": [ { "title": "To copy an AMI to another region", @@ -13549,7 +13549,7 @@ "target": "com.amazonaws.ec2#Boolean", "traits": { "aws.protocols#ec2QueryName": "Encrypted", - "smithy.api#documentation": "Specifies whether the destination snapshots of the copied image should be encrypted. You\n can encrypt a copy of an unencrypted snapshot, but you cannot create an unencrypted copy of an\n encrypted snapshot. The default KMS key for Amazon EBS is used unless you specify a non-default\n Key Management Service (KMS) KMS key using KmsKeyId. For more information, see Amazon EBS encryption in the\n Amazon EBS User Guide.
Specifies whether the destination snapshots of the copied image should be encrypted. You\n can encrypt a copy of an unencrypted snapshot, but you cannot create an unencrypted copy of an\n encrypted snapshot. The default KMS key for Amazon EBS is used unless you specify a non-default\n Key Management Service (KMS) KMS key using KmsKeyId. For more information, see Use encryption with \n EBS-backed AMIs in the Amazon EC2 User Guide.
The metric, aggregation-latency, indicating that network latency is aggregated for the query. This is the only supported metric.
The metric used for the network performance request.
" } }, "Statistic": { "target": "com.amazonaws.ec2#StatisticType", "traits": { - "smithy.api#documentation": "The metric data aggregation period, p50, between the specified startDate and endDate. For example, a metric of five_minutes is the median of all the data points gathered within those five minutes. p50 is the only supported metric.
The metric data aggregation period, p50, between the specified startDate \n and endDate. For example, a metric of five_minutes is the median of all \n the data points gathered within those five minutes. p50 is the only supported metric.
The metric used for the network performance request. Only aggregate-latency is supported, which shows network latency during a specified period.
The metric used for the network performance request.
", "smithy.api#xmlName": "metric" } }, @@ -24914,7 +24914,7 @@ "target": "smithy.api#Unit" }, "traits": { - "smithy.api#documentation": "Deletes a security group.
\nIf you attempt to delete a security group that is associated with an instance or network interface or is\n\t\t\t referenced by another security group, the operation fails with\n\t\t\t\tDependencyViolation.
Deletes a security group.
\nIf you attempt to delete a security group that is associated with an instance or network interface or is\n\t\t\t referenced by another security group in the same VPC, the operation fails with\n\t\t\t\tDependencyViolation.
The filters.
\n\n availability-zone - The Availability Zone of the instance.
\n event.code - The code for the scheduled event\n (instance-reboot | system-reboot |\n system-maintenance | instance-retirement |\n instance-stop).
\n event.description - A description of the event.
\n event.instance-event-id - The ID of the event whose date and time\n you are modifying.
\n event.not-after - The latest end time for the scheduled event\n (for example, 2014-09-15T17:15:20.000Z).
\n event.not-before - The earliest start time for the scheduled\n event (for example, 2014-09-15T17:15:20.000Z).
\n event.not-before-deadline - The deadline for starting the event\n (for example, 2014-09-15T17:15:20.000Z).
\n instance-state-code - The code for the instance state, as a\n 16-bit unsigned integer. The high byte is used for internal purposes and should\n be ignored. The low byte is set based on the state represented. The valid values\n are 0 (pending), 16 (running), 32 (shutting-down), 48 (terminated), 64\n (stopping), and 80 (stopped).
\n instance-state-name - The state of the instance\n (pending | running | shutting-down |\n terminated | stopping |\n stopped).
\n instance-status.reachability - Filters on instance status where\n the name is reachability (passed | failed\n | initializing | insufficient-data).
\n instance-status.status - The status of the instance\n (ok | impaired | initializing |\n insufficient-data | not-applicable).
\n system-status.reachability - Filters on system status where the\n name is reachability (passed | failed |\n initializing | insufficient-data).
\n system-status.status - The system status of the instance\n (ok | impaired | initializing |\n insufficient-data | not-applicable).
The filters.
\n\n availability-zone - The Availability Zone of the instance.
\n event.code - The code for the scheduled event\n (instance-reboot | system-reboot |\n system-maintenance | instance-retirement |\n instance-stop).
\n event.description - A description of the event.
\n event.instance-event-id - The ID of the event whose date and time\n you are modifying.
\n event.not-after - The latest end time for the scheduled event\n (for example, 2014-09-15T17:15:20.000Z).
\n event.not-before - The earliest start time for the scheduled\n event (for example, 2014-09-15T17:15:20.000Z).
\n event.not-before-deadline - The deadline for starting the event\n (for example, 2014-09-15T17:15:20.000Z).
\n instance-state-code - The code for the instance state, as a\n 16-bit unsigned integer. The high byte is used for internal purposes and should\n be ignored. The low byte is set based on the state represented. The valid values\n are 0 (pending), 16 (running), 32 (shutting-down), 48 (terminated), 64\n (stopping), and 80 (stopped).
\n instance-state-name - The state of the instance\n (pending | running | shutting-down |\n terminated | stopping |\n stopped).
\n instance-status.reachability - Filters on instance status where\n the name is reachability (passed | failed\n | initializing | insufficient-data).
\n instance-status.status - The status of the instance\n (ok | impaired | initializing |\n insufficient-data | not-applicable).
\n system-status.reachability - Filters on system status where the\n name is reachability (passed | failed |\n initializing | insufficient-data).
\n system-status.status - The system status of the instance\n (ok | impaired | initializing |\n insufficient-data | not-applicable).
\n attached-ebs-status.status - The status of the attached EBS volume \n for the instance (ok | impaired | initializing | \n insufficient-data | not-applicable).
One or more filters.
\n\n association.allocation-id - The allocation ID returned when you\n\t\t allocated the Elastic IP address (IPv4) for your network interface.
\n association.association-id - The association ID returned when the\n\t\t network interface was associated with an IPv4 address.
\n addresses.association.owner-id - The owner ID of the addresses associated with the network interface.
\n addresses.association.public-ip - The association ID returned when\n\t\t the network interface was associated with the Elastic IP address\n\t\t (IPv4).
\n addresses.primary - Whether the private IPv4 address is the primary\n IP address associated with the network interface.
\n addresses.private-ip-address - The private IPv4 addresses\n\t\t associated with the network interface.
\n association.ip-owner-id - The owner of the Elastic IP address\n (IPv4) associated with the network interface.
\n association.public-ip - The address of the Elastic IP address\n (IPv4) bound to the network interface.
\n association.public-dns-name - The public DNS name for the network\n interface (IPv4).
\n attachment.attach-time - The time that the network interface was attached to an instance.
\n attachment.attachment-id - The ID of the interface attachment.
\n attachment.delete-on-termination - Indicates whether the attachment is deleted when an instance is terminated.
\n attachment.device-index - The device index to which the network interface is attached.
\n attachment.instance-id - The ID of the instance to which the network interface is attached.
\n attachment.instance-owner-id - The owner ID of the instance to which the network interface is attached.
\n attachment.status - The status of the attachment (attaching | attached | detaching | detached).
\n availability-zone - The Availability Zone of the network interface.
\n description - The description of the network interface.
\n group-id - The ID of a security group associated with the network interface.
\n ipv6-addresses.ipv6-address - An IPv6 address associated with\n the network interface.
\n interface-type - The type of network interface (api_gateway_managed | \n\t\t aws_codestar_connections_managed | branch | \n\t\t ec2_instance_connect_endpoint | efa | efs | \n\t\t gateway_load_balancer | gateway_load_balancer_endpoint | \n\t\t global_accelerator_managed | \n\t\t interface | iot_rules_managed | \n\t\t lambda | load_balancer | \n\t\t nat_gateway | network_load_balancer | \n\t\t quicksight | \n\t\t transit_gateway | trunk | \n\t\t vpc_endpoint).
\n mac-address - The MAC address of the network interface.
\n network-interface-id - The ID of the network interface.
\n owner-id - The Amazon Web Services account ID of the network interface owner.
\n private-dns-name - The private DNS name of the network interface (IPv4).
\n private-ip-address - The private IPv4 address or addresses of the\n network interface.
\n requester-id - The alias or Amazon Web Services account ID of the principal or service that created the network interface.
\n requester-managed - Indicates whether the network interface is being managed by an Amazon Web Services service \n\t\t (for example, Amazon Web Services Management Console, Auto Scaling, and so on).
\n source-dest-check - Indicates whether the network interface performs source/destination checking. \n\t\t A value of true means checking is enabled, and false means checking is disabled. \n\t\t The value must be false for the network interface to perform network address translation (NAT) in your VPC.
\n status - The status of the network interface. If the network interface is not attached to an instance, the status is available; \n\t\t if a network interface is attached to an instance the status is in-use.
\n subnet-id - The ID of the subnet for the network interface.
\n tag:Owner and the value TeamA, specify tag:Owner for the filter name and TeamA for the filter value.
\n tag-key - The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
\n vpc-id - The ID of the VPC for the network interface.
One or more filters.
\n\n association.allocation-id - The allocation ID returned when you\n\t\t allocated the Elastic IP address (IPv4) for your network interface.
\n association.association-id - The association ID returned when the\n\t\t network interface was associated with an IPv4 address.
\n addresses.association.owner-id - The owner ID of the addresses associated with the network interface.
\n addresses.association.public-ip - The association ID returned when\n\t\t the network interface was associated with the Elastic IP address\n\t\t (IPv4).
\n addresses.primary - Whether the private IPv4 address is the primary\n IP address associated with the network interface.
\n addresses.private-ip-address - The private IPv4 addresses\n\t\t associated with the network interface.
\n association.ip-owner-id - The owner of the Elastic IP address\n (IPv4) associated with the network interface.
\n association.public-ip - The address of the Elastic IP address\n (IPv4) bound to the network interface.
\n association.public-dns-name - The public DNS name for the network\n interface (IPv4).
\n attachment.attach-time - The time that the network interface was attached to an instance.
\n attachment.attachment-id - The ID of the interface attachment.
\n attachment.delete-on-termination - Indicates whether the attachment is deleted when an instance is terminated.
\n attachment.device-index - The device index to which the network interface is attached.
\n attachment.instance-id - The ID of the instance to which the network interface is attached.
\n attachment.instance-owner-id - The owner ID of the instance to which the network interface is attached.
\n attachment.status - The status of the attachment (attaching | attached | detaching | detached).
\n availability-zone - The Availability Zone of the network interface.
\n description - The description of the network interface.
\n group-id - The ID of a security group associated with the network interface.
\n ipv6-addresses.ipv6-address - An IPv6 address associated with\n the network interface.
\n interface-type - The type of network interface (api_gateway_managed | \n\t\t aws_codestar_connections_managed | branch | \n\t\t ec2_instance_connect_endpoint | efa | efs | \n\t\t gateway_load_balancer | gateway_load_balancer_endpoint | \n\t\t global_accelerator_managed | \n\t\t interface | iot_rules_managed | \n\t\t lambda | load_balancer | \n\t\t nat_gateway | network_load_balancer | \n\t\t quicksight | \n\t\t transit_gateway | trunk | \n\t\t vpc_endpoint).
\n mac-address - The MAC address of the network interface.
\n network-interface-id - The ID of the network interface.
\n owner-id - The Amazon Web Services account ID of the network interface owner.
\n private-dns-name - The private DNS name of the network interface (IPv4).
\n private-ip-address - The private IPv4 address or addresses of the\n network interface.
\n requester-id - The alias or Amazon Web Services account ID of the principal or service that created the network interface.
\n requester-managed - Indicates whether the network interface is being managed by an Amazon Web Services \n\t\t service (for example, Amazon Web Services Management Console, Auto Scaling, and so on).
\n source-dest-check - Indicates whether the network interface performs source/destination checking. \n\t\t A value of true means checking is enabled, and false means checking is disabled. \n\t\t The value must be false for the network interface to perform network address translation (NAT) in your VPC.
\n status - The status of the network interface. If the network interface is not attached to an instance, the status is available; \n\t\t if a network interface is attached to an instance the status is in-use.
\n subnet-id - The ID of the subnet for the network interface.
\n tag:Owner and the value TeamA, specify tag:Owner for the filter name and TeamA for the filter value.
\n tag-key - The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
\n vpc-id - The ID of the VPC for the network interface.
The filters.
\n\n association.gateway-id - The ID of the gateway involved in the\n\t\t association.
\n association.route-table-association-id - The ID of an association\n ID for the route table.
\n association.route-table-id - The ID of the route table involved in\n the association.
\n association.subnet-id - The ID of the subnet involved in the\n association.
\n association.main - Indicates whether the route table is the main\n route table for the VPC (true | false). Route tables\n that do not have an association ID are not returned in the response.
\n owner-id - The ID of the Amazon Web Services account that owns the route table.
\n route-table-id - The ID of the route table.
\n route.destination-cidr-block - The IPv4 CIDR range specified in a\n route in the table.
\n route.destination-ipv6-cidr-block - The IPv6 CIDR range specified in a route in the route table.
\n route.destination-prefix-list-id - The ID (prefix) of the Amazon Web Services service\n specified in a route in the table.
\n route.egress-only-internet-gateway-id - The ID of an\n egress-only Internet gateway specified in a route in the route table.
\n route.gateway-id - The ID of a gateway specified in a route in the table.
\n route.instance-id - The ID of an instance specified in a route in the table.
\n route.nat-gateway-id - The ID of a NAT gateway.
\n route.transit-gateway-id - The ID of a transit gateway.
\n route.origin - Describes how the route was created. \n CreateRouteTable indicates that the route was automatically\n created when the route table was created; CreateRoute indicates\n that the route was manually added to the route table;\n EnableVgwRoutePropagation indicates that the route was\n propagated by route propagation.
\n route.state - The state of a route in the route table\n (active | blackhole). The blackhole state\n indicates that the route's target isn't available (for example, the specified\n gateway isn't attached to the VPC, the specified NAT instance has been\n terminated, and so on).
\n route.vpc-peering-connection-id - The ID of a VPC peering\n\t\t connection specified in a route in the table.
\n tag:Owner and the value TeamA, specify tag:Owner for the filter name and TeamA for the filter value.
\n tag-key - The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
\n vpc-id - The ID of the VPC for the route table.
The filters.
\n\n association.gateway-id - The ID of the gateway involved in the\n\t\t association.
\n association.route-table-association-id - The ID of an association\n ID for the route table.
\n association.route-table-id - The ID of the route table involved in\n the association.
\n association.subnet-id - The ID of the subnet involved in the\n association.
\n association.main - Indicates whether the route table is the main\n route table for the VPC (true | false). Route tables\n that do not have an association ID are not returned in the response.
\n owner-id - The ID of the Amazon Web Services account that owns the route table.
\n route-table-id - The ID of the route table.
\n route.destination-cidr-block - The IPv4 CIDR range specified in a\n route in the table.
\n route.destination-ipv6-cidr-block - The IPv6 CIDR range specified in a route in the route table.
\n route.destination-prefix-list-id - The ID (prefix) of the Amazon Web Services \n\t\t\t\t service specified in a route in the table.
\n route.egress-only-internet-gateway-id - The ID of an\n egress-only Internet gateway specified in a route in the route table.
\n route.gateway-id - The ID of a gateway specified in a route in the table.
\n route.instance-id - The ID of an instance specified in a route in the table.
\n route.nat-gateway-id - The ID of a NAT gateway.
\n route.transit-gateway-id - The ID of a transit gateway.
\n route.origin - Describes how the route was created. \n CreateRouteTable indicates that the route was automatically\n created when the route table was created; CreateRoute indicates\n that the route was manually added to the route table;\n EnableVgwRoutePropagation indicates that the route was\n propagated by route propagation.
\n route.state - The state of a route in the route table\n (active | blackhole). The blackhole state\n indicates that the route's target isn't available (for example, the specified\n gateway isn't attached to the VPC, the specified NAT instance has been\n terminated, and so on).
\n route.vpc-peering-connection-id - The ID of a VPC peering\n\t\t connection specified in a route in the table.
\n tag:Owner and the value TeamA, specify tag:Owner for the filter name and TeamA for the filter value.
\n tag-key - The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
\n vpc-id - The ID of the VPC for the route table.
Describes the stale security group rules for security groups in a specified VPC. \n Rules are stale when they reference a deleted security group in the same VPC or peered VPC. Rules can also be stale if they reference a security group in a peer VPC for which the VPC peering connection has \n been deleted.
", + "smithy.api#documentation": "Describes the stale security group rules for security groups in a specified VPC. \n Rules are stale when they reference a deleted security group in a peered VPC. Rules can also be stale if they reference a security group in a peer VPC for which the VPC peering connection has \n been deleted.
", "smithy.api#paginated": { "inputToken": "NextToken", "outputToken": "NextToken", @@ -43910,7 +43910,7 @@ "target": "com.amazonaws.ec2#DisableSnapshotBlockPublicAccessResult" }, "traits": { - "smithy.api#documentation": "Disables the block public access for snapshots setting at \n the account level for the specified Amazon Web Services Region. After you disable block public \n access for snapshots in a Region, users can publicly share snapshots in that Region.
\nIf block public access is enabled in block-all-sharing mode, and \n you disable block public access, all snapshots that were previously publicly shared \n are no longer treated as private and they become publicly accessible again.
For more information, see \n Block public access for snapshots in the Amazon EBS User Guide .
\n " + "smithy.api#documentation": "Disables the block public access for snapshots setting at \n the account level for the specified Amazon Web Services Region. After you disable block public \n access for snapshots in a Region, users can publicly share snapshots in that Region.
\nEnabling block public access for snapshots in block-all-sharing \n mode does not change the permissions for snapshots that are already publicly shared. \n Instead, it prevents these snapshots from be publicly visible and publicly accessible. \n Therefore, the attributes for these snapshots still indicate that they are publicly \n shared, even though they are not publicly available.
\nIf you disable block public access , these snapshots will become publicly available \n again.
\nFor more information, see \n Block public access for snapshots in the Amazon EBS User Guide .
\n " } }, "com.amazonaws.ec2#DisableSnapshotBlockPublicAccessRequest": { @@ -45802,6 +45802,71 @@ } } }, + "com.amazonaws.ec2#EbsStatusDetails": { + "type": "structure", + "members": { + "ImpairedSince": { + "target": "com.amazonaws.ec2#MillisecondDateTime", + "traits": { + "aws.protocols#ec2QueryName": "ImpairedSince", + "smithy.api#documentation": "The date and time when the attached EBS status check failed.
", + "smithy.api#xmlName": "impairedSince" + } + }, + "Name": { + "target": "com.amazonaws.ec2#StatusName", + "traits": { + "aws.protocols#ec2QueryName": "Name", + "smithy.api#documentation": "The name of the attached EBS status check.
", + "smithy.api#xmlName": "name" + } + }, + "Status": { + "target": "com.amazonaws.ec2#StatusType", + "traits": { + "aws.protocols#ec2QueryName": "Status", + "smithy.api#documentation": "The result of the attached EBS status check.
", + "smithy.api#xmlName": "status" + } + } + }, + "traits": { + "smithy.api#documentation": "Describes the attached EBS status check for an instance.
" + } + }, + "com.amazonaws.ec2#EbsStatusDetailsList": { + "type": "list", + "member": { + "target": "com.amazonaws.ec2#EbsStatusDetails", + "traits": { + "smithy.api#xmlName": "item" + } + } + }, + "com.amazonaws.ec2#EbsStatusSummary": { + "type": "structure", + "members": { + "Details": { + "target": "com.amazonaws.ec2#EbsStatusDetailsList", + "traits": { + "aws.protocols#ec2QueryName": "Details", + "smithy.api#documentation": "Details about the attached EBS status check for an instance.
", + "smithy.api#xmlName": "details" + } + }, + "Status": { + "target": "com.amazonaws.ec2#SummaryStatus", + "traits": { + "aws.protocols#ec2QueryName": "Status", + "smithy.api#documentation": "The current status.
", + "smithy.api#xmlName": "status" + } + } + }, + "traits": { + "smithy.api#documentation": "Provides a summary of the attached EBS volume status for an instance.
" + } + }, "com.amazonaws.ec2#Ec2InstanceConnectEndpoint": { "type": "structure", "members": { @@ -47441,7 +47506,7 @@ "target": "com.amazonaws.ec2#EnableSnapshotBlockPublicAccessResult" }, "traits": { - "smithy.api#documentation": "Enables or modifies the block public access for snapshots \n setting at the account level for the specified Amazon Web Services Region. After you enable block \n public access for snapshots in a Region, users can no longer request public sharing \n for snapshots in that Region. Snapshots that are already publicly shared are either \n treated as private or they remain publicly shared, depending on the \n State that you specify.
\nIf block public access is enabled in block-all-sharing mode, and \n you change the mode to block-new-sharing, all snapshots that were \n previously publicly shared are no longer treated as private and they become publicly \n accessible again.
For more information, see \n Block public access for snapshots in the Amazon EBS User Guide.
" + "smithy.api#documentation": "Enables or modifies the block public access for snapshots \n setting at the account level for the specified Amazon Web Services Region. After you enable block \n public access for snapshots in a Region, users can no longer request public sharing \n for snapshots in that Region. Snapshots that are already publicly shared are either \n treated as private or they remain publicly shared, depending on the \n State that you specify.
\nEnabling block public access for snapshots in block all sharing \n mode does not change the permissions for snapshots that are already publicly shared. \n Instead, it prevents these snapshots from be publicly visible and publicly accessible. \n Therefore, the attributes for these snapshots still indicate that they are publicly \n shared, even though they are not publicly available.
\nIf you later disable block public access or change the mode to block new \n sharing, these snapshots will become publicly available again.
\nFor more information, see \n Block public access for snapshots in the Amazon EBS User Guide.
" } }, "com.amazonaws.ec2#EnableSnapshotBlockPublicAccessRequest": { @@ -47451,7 +47516,7 @@ "target": "com.amazonaws.ec2#SnapshotBlockPublicAccessState", "traits": { "smithy.api#clientOptional": {}, - "smithy.api#documentation": "The mode in which to enable block public access for snapshots for the Region. \n Specify one of the following values:
\n\n block-all-sharing - Prevents all public sharing of snapshots in \n the Region. Users in the account will no longer be able to request new public \n sharing. Additionally, snapshots that are already publicly shared are treated as \n private and they are no longer publicly available.
If you enable block public access for snapshots in block-all-sharing \n mode, it does not change the permissions for snapshots that are already publicly shared. \n Instead, it prevents these snapshots from be publicly visible and publicly accessible. \n Therefore, the attributes for these snapshots still indicate that they are publicly \n shared, even though they are not publicly available.
\n block-new-sharing - Prevents only new public sharing of snapshots \n in the Region. Users in the account will no longer be able to request new public \n sharing. However, snapshots that are already publicly shared, remain publicly \n available.
\n unblocked is not a valid value for EnableSnapshotBlockPublicAccess.
The mode in which to enable block public access for snapshots for the Region. \n Specify one of the following values:
\n\n block-all-sharing - Prevents all public sharing of snapshots in \n the Region. Users in the account will no longer be able to request new public \n sharing. Additionally, snapshots that are already publicly shared are treated as \n private and they are no longer publicly available.
\n block-new-sharing - Prevents only new public sharing of snapshots \n in the Region. Users in the account will no longer be able to request new public \n sharing. However, snapshots that are already publicly shared, remain publicly \n available.
\n unblocked is not a valid value for EnableSnapshotBlockPublicAccess.
Reports impaired functionality that stems from issues related to the systems that\n support an instance, such as hardware failures and network connectivity problems.
", "smithy.api#xmlName": "systemStatus" } + }, + "AttachedEbsStatus": { + "target": "com.amazonaws.ec2#EbsStatusSummary", + "traits": { + "aws.protocols#ec2QueryName": "AttachedEbsStatus", + "smithy.api#documentation": "Reports impaired functionality that stems from an attached Amazon EBS volume that is \n unreachable and unable to complete I/O operations.
", + "smithy.api#xmlName": "attachedEbsStatus" + } } }, "traits": { @@ -77777,7 +77850,7 @@ "EnableDns64": { "target": "com.amazonaws.ec2#AttributeBooleanValue", "traits": { - "smithy.api#documentation": "Indicates whether DNS queries made to the Amazon-provided DNS Resolver in this subnet \n should return synthetic IPv6 addresses for IPv4-only destinations.
" + "smithy.api#documentation": "Indicates whether DNS queries made to the Amazon-provided DNS Resolver in this subnet \n should return synthetic IPv6 addresses for IPv4-only destinations.
\nYou must first configure a NAT gateway in a public subnet (separate from the subnet containing the IPv6-only workloads). For example, the subnet containing the NAT gateway should have a 0.0.0.0/0 route pointing to the internet gateway. For more information, see Configure DNS64 and NAT64 in the Amazon VPC User Guide.
A private Autonomous System Number (ASN) for the Amazon side of a BGP session. \n The range is 64512 to 65534 for 16-bit ASNs and 4200000000 to 4294967294 for 32-bit ASNs.
\nThe modify ASN operation is not allowed on a transit gateway with active BGP sessions. You must first delete all transit gateway attachments that have BGP configured prior to modifying the ASN on the transit gateway.
" + "smithy.api#documentation": "A private Autonomous System Number (ASN) for the Amazon side of a BGP session. \n The range is 64512 to 65534 for 16-bit ASNs and 4200000000 to 4294967294 for 32-bit ASNs.
\nThe modify ASN operation is not allowed on a transit gateway if it has the following attachments:
\nDynamic VPN
\nStatic VPN
\nDirect Connect Gateway
\nConnect
\nYou must first delete all transit gateway attachments configured prior to modifying the ASN on\n the transit gateway.
" } } }, @@ -88682,7 +88755,7 @@ "ImageId": { "target": "com.amazonaws.ec2#ImageId", "traits": { - "smithy.api#documentation": "The ID of the AMI in the format ami-17characters00000.
Alternatively, you can specify a Systems Manager parameter, using one of the following\n formats. The Systems Manager parameter will resolve to an AMI ID on launch.
\nTo reference a public parameter:
\n\n resolve:ssm:public-parameter\n \n
To reference a parameter stored in the same account:
\n\n resolve:ssm:parameter-name\n \n
\n resolve:ssm:parameter-name:version-number\n \n
\n resolve:ssm:parameter-name:label\n \n
To reference a parameter shared from another Amazon Web Services account:
\n\n resolve:ssm:parameter-ARN\n \n
\n resolve:ssm:parameter-ARN:version-number\n \n
\n resolve:ssm:parameter-ARN:label\n \n
For more information, see Use a Systems Manager parameter instead of an AMI ID in the Amazon EC2 User Guide.
\nIf the launch template will be used for an EC2 Fleet or Spot Fleet, note the\n following:
\nOnly EC2 Fleets of type instant support specifying a Systems\n Manager parameter.
For EC2 Fleets of type maintain or request, or\n for Spot Fleets, you must specify the AMI ID.
The ID of the AMI in the format ami-0ac394d6a3example.
Alternatively, you can specify a Systems Manager parameter, using one of the following\n formats. The Systems Manager parameter will resolve to an AMI ID on launch.
\nTo reference a public parameter:
\n\n resolve:ssm:public-parameter\n \n
To reference a parameter stored in the same account:
\n\n resolve:ssm:parameter-name\n \n
\n resolve:ssm:parameter-name:version-number\n \n
\n resolve:ssm:parameter-name:label\n \n
To reference a parameter shared from another Amazon Web Services account:
\n\n resolve:ssm:parameter-ARN\n \n
\n resolve:ssm:parameter-ARN:version-number\n \n
\n resolve:ssm:parameter-ARN:label\n \n
For more information, see Use a Systems Manager parameter instead of an AMI ID in the Amazon EC2 User Guide.
\nIf the launch template will be used for an EC2 Fleet or Spot Fleet, note the\n following:
\nOnly EC2 Fleets of type instant support specifying a Systems\n Manager parameter.
For EC2 Fleets of type maintain or request, or\n for Spot Fleets, you must specify the AMI ID.