Copyright	(c) 2013-2023 Brendan Hay
License	Mozilla Public License, v. 2.0.
Maintainer	Brendan Hay
Stability	auto-generated
Portability	non-portable (GHC extensions)
Safe Haskell	Safe-Inferred
Language	Haskell2010

Amazonka.EC2.RevokeSecurityGroupEgress

Contents

Creating a Request
Request Lenses
Destructuring the Response
Response Lenses

Description

VPC only: Removes the specified outbound (egress) rules from a security group for EC2-VPC. This action does not apply to security groups for use in EC2-Classic.

You can specify rules using either rule IDs or security group rule properties. If you use rule properties, the values that you specify (for example, ports) must match the existing rule's values exactly. Each rule has a protocol, from and to ports, and destination (CIDR range, security group, or prefix list). For the TCP and UDP protocols, you must also specify the destination port or range of ports. For the ICMP protocol, you must also specify the ICMP type and code. If the security group rule has a description, you do not need to specify the description to revoke the rule.

Default VPC: If the values you specify do not match the existing rule's values, no error is returned, and the output describes the security group rules that were not revoked.

Amazon Web Services recommends that you describe the security group to verify that the rules were removed.

Rule changes are propagated to instances within the security group as quickly as possible. However, a small delay might occur.

Synopsis

Creating a Request

data RevokeSecurityGroupEgress Source #

See: newRevokeSecurityGroupEgress smart constructor.

Constructors

RevokeSecurityGroupEgress'

Fields

cidrIp :: Maybe Text
Not supported. Use a set of IP permissions to specify the CIDR.
dryRun :: Maybe Bool
Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
fromPort :: Maybe Int
Not supported. Use a set of IP permissions to specify the port.
ipPermissions :: Maybe [IpPermission]
The sets of IP permissions. You can't specify a destination security group and a CIDR IP address range in the same set of permissions.
ipProtocol :: Maybe Text
Not supported. Use a set of IP permissions to specify the protocol name or number.
securityGroupRuleIds :: Maybe [Text]
The IDs of the security group rules.
sourceSecurityGroupName :: Maybe Text
Not supported. Use a set of IP permissions to specify a destination security group.
sourceSecurityGroupOwnerId :: Maybe Text
Not supported. Use a set of IP permissions to specify a destination security group.
toPort :: Maybe Int
Not supported. Use a set of IP permissions to specify the port.
groupId :: Text
The ID of the security group.

Instances

Instances details

ToHeaders RevokeSecurityGroupEgress Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress Methods toHeaders :: RevokeSecurityGroupEgress -> [Header] #
ToPath RevokeSecurityGroupEgress Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress Methods toPath :: RevokeSecurityGroupEgress -> ByteString #
ToQuery RevokeSecurityGroupEgress Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress Methods toQuery :: RevokeSecurityGroupEgress -> QueryString #
AWSRequest RevokeSecurityGroupEgress Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress Associated Types type AWSResponse RevokeSecurityGroupEgress # Methods request :: (Service -> Service) -> RevokeSecurityGroupEgress -> Request RevokeSecurityGroupEgress # response :: MonadResource m => (ByteStringLazy -> IO ByteStringLazy) -> Service -> Proxy RevokeSecurityGroupEgress -> ClientResponse ClientBody -> m (Either Error (ClientResponse (AWSResponse RevokeSecurityGroupEgress))) #
Generic RevokeSecurityGroupEgress Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress Associated Types type Rep RevokeSecurityGroupEgress :: Type -> Type # Methods from :: RevokeSecurityGroupEgress -> Rep RevokeSecurityGroupEgress x # to :: Rep RevokeSecurityGroupEgress x -> RevokeSecurityGroupEgress #
Read RevokeSecurityGroupEgress Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress Methods readsPrec :: Int -> ReadS RevokeSecurityGroupEgress # readList :: ReadS [RevokeSecurityGroupEgress] # readPrec :: ReadPrec RevokeSecurityGroupEgress # readListPrec :: ReadPrec [RevokeSecurityGroupEgress] #
Show RevokeSecurityGroupEgress Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress Methods showsPrec :: Int -> RevokeSecurityGroupEgress -> ShowS # show :: RevokeSecurityGroupEgress -> String # showList :: [RevokeSecurityGroupEgress] -> ShowS #
NFData RevokeSecurityGroupEgress Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress Methods rnf :: RevokeSecurityGroupEgress -> () #
Eq RevokeSecurityGroupEgress Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress Methods (==) :: RevokeSecurityGroupEgress -> RevokeSecurityGroupEgress -> Bool # (/=) :: RevokeSecurityGroupEgress -> RevokeSecurityGroupEgress -> Bool #
Hashable RevokeSecurityGroupEgress Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress Methods hashWithSalt :: Int -> RevokeSecurityGroupEgress -> Int # hash :: RevokeSecurityGroupEgress -> Int #
type AWSResponse RevokeSecurityGroupEgress Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress type AWSResponse RevokeSecurityGroupEgress = RevokeSecurityGroupEgressResponse
type Rep RevokeSecurityGroupEgress Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress type Rep RevokeSecurityGroupEgress = D1 ('MetaData "RevokeSecurityGroupEgress" "Amazonka.EC2.RevokeSecurityGroupEgress" "amazonka-ec2-2.0-48L9RAJvmvzAdBkRegqWCL" 'False) (C1 ('MetaCons "RevokeSecurityGroupEgress'" 'PrefixI 'True) (((S1 ('MetaSel ('Just "cidrIp") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :: S1 ('MetaSel ('Just "dryRun") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Bool))) :: (S1 ('MetaSel ('Just "fromPort") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Int)) :: (S1 ('MetaSel ('Just "ipPermissions") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe [IpPermission])) :: S1 ('MetaSel ('Just "ipProtocol") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text))))) :: ((S1 ('MetaSel ('Just "securityGroupRuleIds") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe [Text])) :: S1 ('MetaSel ('Just "sourceSecurityGroupName") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text))) :: (S1 ('MetaSel ('Just "sourceSecurityGroupOwnerId") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :: (S1 ('MetaSel ('Just "toPort") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Int)) :*: S1 ('MetaSel ('Just "groupId") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 Text))))))

newRevokeSecurityGroupEgress Source #

Arguments

:: Text	`RevokeSecurityGroupEgress`
-> RevokeSecurityGroupEgress

Create a value of RevokeSecurityGroupEgress with all optional fields omitted.

Use generic-lens or optics to modify other optional fields.

The following record fields are available, with the corresponding lenses provided for backwards compatibility:

RevokeSecurityGroupEgress, revokeSecurityGroupEgress_cidrIp - Not supported. Use a set of IP permissions to specify the CIDR.

$sel:dryRun:RevokeSecurityGroupEgress', revokeSecurityGroupEgress_dryRun - Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.

RevokeSecurityGroupEgress, revokeSecurityGroupEgress_fromPort - Not supported. Use a set of IP permissions to specify the port.

RevokeSecurityGroupEgress, revokeSecurityGroupEgress_ipPermissions - The sets of IP permissions. You can't specify a destination security group and a CIDR IP address range in the same set of permissions.

RevokeSecurityGroupEgress, revokeSecurityGroupEgress_ipProtocol - Not supported. Use a set of IP permissions to specify the protocol name or number.

$sel:securityGroupRuleIds:RevokeSecurityGroupEgress', revokeSecurityGroupEgress_securityGroupRuleIds - The IDs of the security group rules.

$sel:sourceSecurityGroupName:RevokeSecurityGroupEgress', revokeSecurityGroupEgress_sourceSecurityGroupName - Not supported. Use a set of IP permissions to specify a destination security group.

$sel:sourceSecurityGroupOwnerId:RevokeSecurityGroupEgress', revokeSecurityGroupEgress_sourceSecurityGroupOwnerId - Not supported. Use a set of IP permissions to specify a destination security group.

RevokeSecurityGroupEgress, revokeSecurityGroupEgress_toPort - Not supported. Use a set of IP permissions to specify the port.

RevokeSecurityGroupEgress, revokeSecurityGroupEgress_groupId - The ID of the security group.

Request Lenses

revokeSecurityGroupEgress_cidrIp :: Lens' RevokeSecurityGroupEgress (Maybe Text) Source #

Not supported. Use a set of IP permissions to specify the CIDR.

revokeSecurityGroupEgress_dryRun :: Lens' RevokeSecurityGroupEgress (Maybe Bool) Source #

Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.

revokeSecurityGroupEgress_fromPort :: Lens' RevokeSecurityGroupEgress (Maybe Int) Source #

Not supported. Use a set of IP permissions to specify the port.

revokeSecurityGroupEgress_ipPermissions :: Lens' RevokeSecurityGroupEgress (Maybe [IpPermission]) Source #

The sets of IP permissions. You can't specify a destination security group and a CIDR IP address range in the same set of permissions.

revokeSecurityGroupEgress_ipProtocol :: Lens' RevokeSecurityGroupEgress (Maybe Text) Source #

Not supported. Use a set of IP permissions to specify the protocol name or number.

revokeSecurityGroupEgress_securityGroupRuleIds :: Lens' RevokeSecurityGroupEgress (Maybe [Text]) Source #

The IDs of the security group rules.

revokeSecurityGroupEgress_sourceSecurityGroupName :: Lens' RevokeSecurityGroupEgress (Maybe Text) Source #

Not supported. Use a set of IP permissions to specify a destination security group.

revokeSecurityGroupEgress_sourceSecurityGroupOwnerId :: Lens' RevokeSecurityGroupEgress (Maybe Text) Source #

Not supported. Use a set of IP permissions to specify a destination security group.

revokeSecurityGroupEgress_toPort :: Lens' RevokeSecurityGroupEgress (Maybe Int) Source #

Not supported. Use a set of IP permissions to specify the port.

revokeSecurityGroupEgress_groupId :: Lens' RevokeSecurityGroupEgress Text Source #

The ID of the security group.

Destructuring the Response

data RevokeSecurityGroupEgressResponse Source #

See: newRevokeSecurityGroupEgressResponse smart constructor.

Constructors

RevokeSecurityGroupEgressResponse'
Fields return' :: Maybe Bool Returns `true` if the request succeeds; otherwise, returns an error. unknownIpPermissions :: Maybe [IpPermission] The outbound rules that were unknown to the service. In some cases, `unknownIpPermissionSet` might be in a different format from the request parameter. httpStatus :: Int The response's http status code.

Instances

Instances details

Generic RevokeSecurityGroupEgressResponse Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress Associated Types type Rep RevokeSecurityGroupEgressResponse :: Type -> Type # Methods from :: RevokeSecurityGroupEgressResponse -> Rep RevokeSecurityGroupEgressResponse x # to :: Rep RevokeSecurityGroupEgressResponse x -> RevokeSecurityGroupEgressResponse #
Read RevokeSecurityGroupEgressResponse Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress Methods readsPrec :: Int -> ReadS RevokeSecurityGroupEgressResponse # readList :: ReadS [RevokeSecurityGroupEgressResponse] # readPrec :: ReadPrec RevokeSecurityGroupEgressResponse # readListPrec :: ReadPrec [RevokeSecurityGroupEgressResponse] #
Show RevokeSecurityGroupEgressResponse Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress Methods showsPrec :: Int -> RevokeSecurityGroupEgressResponse -> ShowS # show :: RevokeSecurityGroupEgressResponse -> String # showList :: [RevokeSecurityGroupEgressResponse] -> ShowS #
NFData RevokeSecurityGroupEgressResponse Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress Methods rnf :: RevokeSecurityGroupEgressResponse -> () #
Eq RevokeSecurityGroupEgressResponse Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress Methods (==) :: RevokeSecurityGroupEgressResponse -> RevokeSecurityGroupEgressResponse -> Bool # (/=) :: RevokeSecurityGroupEgressResponse -> RevokeSecurityGroupEgressResponse -> Bool #
type Rep RevokeSecurityGroupEgressResponse Source #
Instance details Defined in Amazonka.EC2.RevokeSecurityGroupEgress type Rep RevokeSecurityGroupEgressResponse = D1 ('MetaData "RevokeSecurityGroupEgressResponse" "Amazonka.EC2.RevokeSecurityGroupEgress" "amazonka-ec2-2.0-48L9RAJvmvzAdBkRegqWCL" 'False) (C1 ('MetaCons "RevokeSecurityGroupEgressResponse'" 'PrefixI 'True) (S1 ('MetaSel ('Just "return'") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Bool)) :: (S1 ('MetaSel ('Just "unknownIpPermissions") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe [IpPermission])) :: S1 ('MetaSel ('Just "httpStatus") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 Int))))

newRevokeSecurityGroupEgressResponse Source #

Arguments

:: Int	`$sel:httpStatus:RevokeSecurityGroupEgressResponse'`
-> RevokeSecurityGroupEgressResponse

Create a value of RevokeSecurityGroupEgressResponse with all optional fields omitted.

Use generic-lens or optics to modify other optional fields.

The following record fields are available, with the corresponding lenses provided for backwards compatibility:

$sel:return':RevokeSecurityGroupEgressResponse', revokeSecurityGroupEgressResponse_return - Returns true if the request succeeds; otherwise, returns an error.

$sel:unknownIpPermissions:RevokeSecurityGroupEgressResponse', revokeSecurityGroupEgressResponse_unknownIpPermissions - The outbound rules that were unknown to the service. In some cases, unknownIpPermissionSet might be in a different format from the request parameter.

$sel:httpStatus:RevokeSecurityGroupEgressResponse', revokeSecurityGroupEgressResponse_httpStatus - The response's http status code.

Response Lenses

revokeSecurityGroupEgressResponse_return :: Lens' RevokeSecurityGroupEgressResponse (Maybe Bool) Source #

Returns true if the request succeeds; otherwise, returns an error.

revokeSecurityGroupEgressResponse_unknownIpPermissions :: Lens' RevokeSecurityGroupEgressResponse (Maybe [IpPermission]) Source #

The outbound rules that were unknown to the service. In some cases, unknownIpPermissionSet might be in a different format from the request parameter.

revokeSecurityGroupEgressResponse_httpStatus :: Lens' RevokeSecurityGroupEgressResponse Int Source #

The response's http status code.