AwsEc2SecurityGroupIpPermission
import type { AwsEc2SecurityGroupIpPermission } from "https://aws-api.deno.dev/v0.4/services/securityhub.ts?docs=full";
An IP permission for an EC2 security group.
§Properties
The start of the port range for the TCP and UDP protocols, or an ICMP/ICMPv6 type number.
A value of -1 indicates all ICMP/ICMPv6 types. If you specify all ICMP/ICMPv6 types, you must specify all codes.
The IP protocol name (tcp
, udp
, icmp
, icmpv6
) or number.
[VPC only] Use -1
to specify all protocols.
When authorizing security group rules, specifying -1
or a protocol number other than tcp
, udp
, icmp
, or icmpv6
allows traffic on all ports, regardless of any port range you specify.
For tcp
, udp
, and icmp
, you must specify a port range.
For icmpv6
, the port range is optional.
If you omit the port range, traffic for all types and codes is allowed.
The IPv4 ranges.
The IPv6 ranges.
[VPC only] The prefix list IDs for an Amazon Web Services service. With outbound rules, this is the Amazon Web Services service to access through a VPC endpoint from instances associated with the security group.
The end of the port range for the TCP and UDP protocols, or an ICMP/ICMPv6 code.
A value of -1
indicates all ICMP/ICMPv6 codes.
If you specify all ICMP/ICMPv6 types, you must specify all codes.
The security group and Amazon Web Services account ID pairs.