public interface SecurityGroupApi
Modifier and Type | Method and Description |
---|---|
void |
authorizeSecurityGroupIngressInRegion(String region,
String groupName,
IpProtocol ipProtocol,
int fromPort,
int toPort,
String cidrIp)
Adds permissions to a security group.
|
void |
authorizeSecurityGroupIngressInRegion(String region,
String groupName,
UserIdGroupPair sourceSecurityGroup)
Adds permissions to a security group based on another group.
|
void |
createSecurityGroupInRegion(String region,
String name,
String description)
Creates a new security group.
|
void |
deleteSecurityGroupInRegion(String region,
String name)
Deletes a security group that you own.
|
Set<SecurityGroup> |
describeSecurityGroupsInRegion(String region,
String... securityGroupNames)
Returns information about security groups that you own.
|
Set<SecurityGroup> |
describeSecurityGroupsInRegionWithFilter(String region,
com.google.common.collect.Multimap<String,String> filter)
Returns information about security groups that you own.
|
void |
revokeSecurityGroupIngressInRegion(String region,
String groupName,
IpProtocol ipProtocol,
int fromPort,
int toPort,
String cidrIp)
Revokes permissions from a security group.
|
void |
revokeSecurityGroupIngressInRegion(String region,
String groupName,
UserIdGroupPair sourceSecurityGroup)
Revokes permissions from a security group.
|
@Named(value="CreateSecurityGroup") void createSecurityGroupInRegion(@Nullable String region, String name, String description)
region
- Security groups are not copied across Regions. Instances within the Region cannot
communicate with instances outside the Region using group-based firewall rules.
Traffic from instances in another Region is seen as WAN bandwidth.name
- Name of the security group. Accepts alphanumeric characters, spaces, dashes, and
underscores.description
- Description of the group. This is informational only. If the description contains
spaces, you must enc lose it in single quotes (') or URL-encode it. Accepts
alphanumeric characters, spaces, dashes, and underscores.#runInstances
,
#describeSecurityGroups
,
#authorizeSecurityGroupIngress
,
#revokeSecurityGroupIngress
,
#deleteSecurityGroup
,
@Named(value="DeleteSecurityGroup") void deleteSecurityGroupInRegion(@Nullable String region, String name)
region
- Security groups are not copied across Regions. Instances within the Region cannot
communicate with instances outside the Region using group-based firewall rules.
Traffic from instances in another Region is seen as WAN bandwidth.name
- Name of the security group to delete.#describeSecurityGroups
,
#authorizeSecurityGroupIngress
,
#revokeSecurityGroupIngress
,
#createSecurityGroup
,
@Named(value="DescribeSecurityGroups") Set<SecurityGroup> describeSecurityGroupsInRegion(@Nullable String region, String... securityGroupNames)
region
- Security groups are not copied across Regions. Instances within the Region cannot
communicate with instances outside the Region using group-based firewall rules.
Traffic from instances in another Region is seen as WAN bandwidth.securityGroupNames
- Name of the security groups#createSecurityGroup
,
#authorizeSecurityGroupIngress
,
#revokeSecurityGroupIngress
,
#deleteSecurityGroup
,
@Named(value="DescribeSecurityGroups") Set<SecurityGroup> describeSecurityGroupsInRegionWithFilter(@Nullable String region, com.google.common.collect.Multimap<String,String> filter)
region
- Security groups are not copied across Regions. Instances within the Region cannot
communicate with instances outside the Region using group-based firewall rules.
Traffic from instances in another Region is seen as WAN bandwidth.filter
- Multimap of filter key/values.#createSecurityGroup
,
#authorizeSecurityGroupIngress
,
#revokeSecurityGroupIngress
,
#deleteSecurityGroup
,
@Named(value="AuthorizeSecurityGroupIngress") void authorizeSecurityGroupIngressInRegion(@Nullable String region, String groupName, UserIdGroupPair sourceSecurityGroup)
region
- Security groups are not copied across Regions. Instances within the Region cannot
communicate with instances outside the Region using group-based firewall rules.
Traffic from instances in another Region is seen as WAN bandwidth.groupName
- Name of the group to modify. The name must be valid and belong to the identitysourceSecurityGroup
- group to associate with this group.#createSecurityGroup
,
#describeSecurityGroups
,
#revokeSecurityGroupIngress
,
#deleteSecurityGroup
,
@Named(value="AuthorizeSecurityGroupIngress") void authorizeSecurityGroupIngressInRegion(@Nullable String region, String groupName, IpProtocol ipProtocol, int fromPort, int toPort, String cidrIp)
Permissions are specified by the IP protocol (TCP, UDP or ICMP), the source of the request (by IP range or an Amazon EC2 user-group pair), the source and destination port ranges (for TCP and UDP), and the ICMP codes and types (for ICMP). When authorizing ICMP, -1 can be used as a wildcard in the type and code fields. Permission changes are propagated to instances within the security group as quickly as possible. However, depending on the number of instances, a small delay might occur.
region
- Security groups are not copied across Regions. Instances within the Region cannot
communicate with instances outside the Region using group-based firewall rules.
Traffic from instances in another Region is seen as WAN bandwidth.groupName
- Name of the group to modify. The name must be valid and belong to the identityipProtocol
- IP protocol.fromPort
- Start of port range for the TCP and UDP protocols, or an ICMP type number. An ICMP
type number of -1 indicates a wildcard (i.e., any ICMP type number).toPort
- End of port range for the TCP and UDP protocols, or an ICMP code. An ICMP code of -1
indicates a wildcard (i.e., any ICMP code).cidrIp
- CIDR range.#createSecurityGroup
,
#describeSecurityGroups
,
#revokeSecurityGroupIngress
,
#deleteSecurityGroup
,
@Named(value="RevokeSecurityGroupIngress") void revokeSecurityGroupIngressInRegion(@Nullable String region, String groupName, UserIdGroupPair sourceSecurityGroup)
region
- Security groups are not copied across Regions. Instances within the Region cannot
communicate with instances outside the Region using group-based firewall rules.
Traffic from instances in another Region is seen as WAN bandwidth.groupName
- Name of the group to modify. The name must be valid and belong to the identitysourceSecurityGroup
- group to associate with this group.#createSecurityGroup
,
#describeSecurityGroups
,
#authorizeSecurityGroupIngress
,
#deleteSecurityGroup
,
@Named(value="RevokeSecurityGroupIngress") void revokeSecurityGroupIngressInRegion(@Nullable String region, String groupName, IpProtocol ipProtocol, int fromPort, int toPort, String cidrIp)
Permissions are specified by IP protocol (TCP, UDP, or ICMP), the source of the request (by IP range or an Amazon EC2 user-group pair), the source and destination port ranges (for TCP and UDP), and the ICMP codes and types (for ICMP). Permission changes are quickly propagated to instances within the security group. However, depending on the number of instances in the group, a small delay is might occur.
region
- Security groups are not copied across Regions. Instances within the Region cannot
communicate with instances outside the Region using group-based firewall rules.
Traffic from instances in another Region is seen as WAN bandwidth.groupName
- Name of the group to modify. The name must be valid and belong to the identityipProtocol
- IP protocol.fromPort
- Start of port range for the TCP and UDP protocols, or an ICMP type number. An ICMP
type number of -1 indicates a wildcard (i.e., any ICMP type number).toPort
- End of port range for the TCP and UDP protocols, or an ICMP code. An ICMP code of -1
indicates a wildcard (i.e., any ICMP code).cidrIp
- CIDR range.#createSecurityGroup
,
#describeSecurityGroups
,
#authorizeSecurityGroupIngress
,
#deleteSecurityGroup
,
Copyright © 2009-2014 The Apache Software Foundation. All Rights Reserved.