Modify Vpc Encryption Control
| ec2_modify_vpc_encryption_control | R Documentation |
Modifies the encryption control configuration for a VPC¶
Description¶
Modifies the encryption control configuration for a VPC. You can update the encryption mode and exclusion settings for various gateway types and peering connections.
For more information, see Enforce VPC encryption in transit in the Amazon VPC User Guide.
Usage¶
ec2_modify_vpc_encryption_control(DryRun, VpcEncryptionControlId, Mode,
InternetGatewayExclusion, EgressOnlyInternetGatewayExclusion,
NatGatewayExclusion, VirtualPrivateGatewayExclusion,
VpcPeeringExclusion, LambdaExclusion, VpcLatticeExclusion,
ElasticFileSystemExclusion)
Arguments¶
DryRun |
Checks whether you have the required permissions for the action,
without actually making the request, and provides an error response. If
you have the required permissions, the error response is
|
VpcEncryptionControlId |
[required] The ID of the VPC Encryption Control resource to modify. |
Mode |
The encryption mode for the VPC Encryption Control configuration. |
InternetGatewayExclusion |
Specifies whether to exclude internet gateway traffic from encryption enforcement. |
EgressOnlyInternetGatewayExclusion |
Specifies whether to exclude egress-only internet gateway traffic from encryption enforcement. |
NatGatewayExclusion |
Specifies whether to exclude NAT gateway traffic from encryption enforcement. |
VirtualPrivateGatewayExclusion |
Specifies whether to exclude virtual private gateway traffic from encryption enforcement. |
VpcPeeringExclusion |
Specifies whether to exclude VPC peering connection traffic from encryption enforcement. |
LambdaExclusion |
Specifies whether to exclude Lambda function traffic from encryption enforcement. |
VpcLatticeExclusion |
Specifies whether to exclude VPC Lattice traffic from encryption enforcement. |
ElasticFileSystemExclusion |
Specifies whether to exclude Elastic File System traffic from encryption enforcement. |
Value¶
A list with the following syntax:
list(
VpcEncryptionControl = list(
VpcId = "string",
VpcEncryptionControlId = "string",
Mode = "monitor"|"enforce",
State = "enforce-in-progress"|"monitor-in-progress"|"enforce-failed"|"monitor-failed"|"deleting"|"deleted"|"available"|"creating"|"delete-failed",
StateMessage = "string",
ResourceExclusions = list(
InternetGateway = list(
State = "enabling"|"enabled"|"disabling"|"disabled",
StateMessage = "string"
),
EgressOnlyInternetGateway = list(
State = "enabling"|"enabled"|"disabling"|"disabled",
StateMessage = "string"
),
NatGateway = list(
State = "enabling"|"enabled"|"disabling"|"disabled",
StateMessage = "string"
),
VirtualPrivateGateway = list(
State = "enabling"|"enabled"|"disabling"|"disabled",
StateMessage = "string"
),
VpcPeering = list(
State = "enabling"|"enabled"|"disabling"|"disabled",
StateMessage = "string"
),
Lambda = list(
State = "enabling"|"enabled"|"disabling"|"disabled",
StateMessage = "string"
),
VpcLattice = list(
State = "enabling"|"enabled"|"disabling"|"disabled",
StateMessage = "string"
),
ElasticFileSystem = list(
State = "enabling"|"enabled"|"disabling"|"disabled",
StateMessage = "string"
)
),
Tags = list(
list(
Key = "string",
Value = "string"
)
)
)
)
Request syntax¶
svc$modify_vpc_encryption_control(
DryRun = TRUE|FALSE,
VpcEncryptionControlId = "string",
Mode = "monitor"|"enforce",
InternetGatewayExclusion = "enable"|"disable",
EgressOnlyInternetGatewayExclusion = "enable"|"disable",
NatGatewayExclusion = "enable"|"disable",
VirtualPrivateGatewayExclusion = "enable"|"disable",
VpcPeeringExclusion = "enable"|"disable",
LambdaExclusion = "enable"|"disable",
VpcLatticeExclusion = "enable"|"disable",
ElasticFileSystemExclusion = "enable"|"disable"
)