CfnVPCBlockPublicAccessExclusionProps

class aws_cdk.aws_ec2.CfnVPCBlockPublicAccessExclusionProps(*, internet_gateway_exclusion_mode, subnet_id=None, tags=None, vpc_id=None)

Bases: object

Properties for defining a CfnVPCBlockPublicAccessExclusion.

Parameters:
  • internet_gateway_exclusion_mode (str) – The desired VPC Block Public Access mode for a specific VPC or subnet exclusion. - allow-bidirectional : Allow all internet traffic to and from the excluded VPCs and subnets. - allow-egress : Allow outbound internet traffic from the excluded VPCs and subnets. Block inbound internet traffic to the excluded VPCs and subnets. Only applies when VPC Block Public Access is set to block-bidirectional .

  • subnet_id (Optional[str]) – The ID of the subnet you want to exclude. Required only if you don’t specify VpcId.

  • tags (Optional[Sequence[Union[CfnTag, Dict[str, Any]]]]) – An array of key-value pairs to apply to this resource.

  • vpc_id (Optional[str]) – The ID of the VPC you want to exclude. Required only if you don’t specify SubnetId.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcblockpublicaccessexclusion.html

ExampleMetadata:

fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk import aws_ec2 as ec2

cfn_vPCBlock_public_access_exclusion_props = ec2.CfnVPCBlockPublicAccessExclusionProps(
    internet_gateway_exclusion_mode="internetGatewayExclusionMode",

    # the properties below are optional
    subnet_id="subnetId",
    tags=[CfnTag(
        key="key",
        value="value"
    )],
    vpc_id="vpcId"
)

Attributes

internet_gateway_exclusion_mode

The desired VPC Block Public Access mode for a specific VPC or subnet exclusion.

  • allow-bidirectional : Allow all internet traffic to and from the excluded VPCs and subnets.

  • allow-egress : Allow outbound internet traffic from the excluded VPCs and subnets. Block inbound internet traffic to the excluded VPCs and subnets. Only applies when VPC Block Public Access is set to block-bidirectional .

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcblockpublicaccessexclusion.html#cfn-ec2-vpcblockpublicaccessexclusion-internetgatewayexclusionmode

subnet_id

The ID of the subnet you want to exclude.

Required only if you don’t specify VpcId.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcblockpublicaccessexclusion.html#cfn-ec2-vpcblockpublicaccessexclusion-subnetid

tags

An array of key-value pairs to apply to this resource.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcblockpublicaccessexclusion.html#cfn-ec2-vpcblockpublicaccessexclusion-tags

vpc_id

The ID of the VPC you want to exclude.

Required only if you don’t specify SubnetId.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcblockpublicaccessexclusion.html#cfn-ec2-vpcblockpublicaccessexclusion-vpcid