CfnVPCBlockPublicAccessExclusionProps
- class aws_cdk.aws_ec2.CfnVPCBlockPublicAccessExclusionProps(*, internet_gateway_exclusion_mode, subnet_id=None, tags=None, vpc_id=None)
Bases:
object
Properties for defining a
CfnVPCBlockPublicAccessExclusion
.- Parameters:
internet_gateway_exclusion_mode (
str
) – The desired VPC Block Public Access mode for a specific VPC or subnet exclusion. -allow-bidirectional
: Allow all internet traffic to and from the excluded VPCs and subnets. -allow-egress
: Allow outbound internet traffic from the excluded VPCs and subnets. Block inbound internet traffic to the excluded VPCs and subnets. Only applies when VPC Block Public Access is set toblock-bidirectional
.subnet_id (
Optional
[str
]) – The ID of the subnet you want to exclude. Required only if you don’t specify VpcId.tags (
Optional
[Sequence
[Union
[CfnTag
,Dict
[str
,Any
]]]]) – An array of key-value pairs to apply to this resource.vpc_id (
Optional
[str
]) – The ID of the VPC you want to exclude. Required only if you don’t specify SubnetId.
- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk import aws_ec2 as ec2 cfn_vPCBlock_public_access_exclusion_props = ec2.CfnVPCBlockPublicAccessExclusionProps( internet_gateway_exclusion_mode="internetGatewayExclusionMode", # the properties below are optional subnet_id="subnetId", tags=[CfnTag( key="key", value="value" )], vpc_id="vpcId" )
Attributes
- internet_gateway_exclusion_mode
The desired VPC Block Public Access mode for a specific VPC or subnet exclusion.
allow-bidirectional
: Allow all internet traffic to and from the excluded VPCs and subnets.allow-egress
: Allow outbound internet traffic from the excluded VPCs and subnets. Block inbound internet traffic to the excluded VPCs and subnets. Only applies when VPC Block Public Access is set toblock-bidirectional
.
- subnet_id
The ID of the subnet you want to exclude.
Required only if you don’t specify VpcId.
- tags
An array of key-value pairs to apply to this resource.
- vpc_id
The ID of the VPC you want to exclude.
Required only if you don’t specify SubnetId.