The AMI resource allows the creation and management of a completely-custom
Amazon Machine Image (AMI).
The “AMI copy” resource allows duplication of an Amazon Machine Image (AMI),
including cross-region copies.
The “AMI from instance” resource allows the creation of an Amazon Machine
Image (AMI) modeled after an existing EBS-backed EC2 instance.
Adds a launch permission to an Amazon Machine Image (AMI).
Manages an EC2 Availability Zone Group, such as updating its opt-in status.
Provides an EC2 Capacity Block Reservation. This allows you to purchase capacity block for your Amazon EC2 instances in a specific Availability Zone for machine learning (ML) Workloads.
Provides an EC2 Capacity Reservation. This allows you to reserve capacity for your Amazon EC2 instances in a specific Availability Zone for any duration.
Manages an EC2 Carrier Gateway. See the AWS
documentation for more information.
Provides a customer gateway inside a VPC. These objects can be connected to VPN gateways via VPN connections, and allow you to establish tunnels between your network and the VPC.
Provides an EC2 Host resource. This allows Dedicated Hosts to be allocated, modified, and released.
Provides a resource to manage a VPC’s default network ACL. This resource can manage the default network ACL of the default or a non-default VPC.
Provides a resource to manage a default route table of a VPC. This resource can manage the default route table of the default or a non-default VPC.
Provides a resource to manage a default security group. This resource can manage the default security group of the default or a non-default VPC.
Provides a resource to manage the
default AWS VPC
in the current AWS Region.
[IPv6 only] Creates an egress-only Internet gateway for your VPC.
An egress-only Internet gateway is used to enable outbound communication
over IPv6 from instances in your VPC to the Internet, and prevents hosts
outside of your VPC from initiating an IPv6 connection with your instance.
Provides an Elastic IP resource.
Provides an AWS EIP Association as a top level resource, to associate and
disassociate Elastic IPs from AWS Instances and Network Interfaces.
Provides a resource to manage EC2 Fleets.
Provides a VPC/Subnet/ENI/Transit Gateway/Transit Gateway Attachment Flow Log to capture IP traffic for a specific network
interface, subnet, or VPC. Logs are sent to a CloudWatch Log Group, a S3 Bucket, or Amazon Kinesis Data Firehose
Provides a regional public access block for AMIs. This prevents AMIs from being made publicly accessible.
If you already have public AMIs, they will remain publicly available.
Provides an EC2 instance resource. This allows instances to be created, updated, and deleted.
Provides a resource to create a VPC Internet Gateway.
Provides a resource to create a VPC Internet Gateway Attachment.
Provides an
EC2 key pair resource. A key pair is used to control login access to EC2 instances.
Provides a resource to create a new launch configuration, used for autoscaling groups.
Provides an EC2 launch template resource. Can be used to create instances or auto scaling groups.
Manages an EC2 Local Gateway Route Table VPC Association. More information can be found in the
Outposts User Guide.
Provides a resource for managing the main routing table of a VPC.
Provides a managed prefix list resource.
Use the aws_prefix_list_entry resource to manage a managed prefix list entry.
Provides a resource to create a VPC NAT Gateway.
Provides an network ACL resource. You might set up network ACLs with rules similar
to your security groups in order to add an additional layer of security to your VPC.
Provides an network ACL association resource which allows you to associate your network ACL with any subnet(s).
Creates an entry (a rule) in a network ACL with the specified rule number.
Provides a Network Insights Analysis resource. Part of the “Reachability Analyzer” service in the AWS VPC console.
Provides a Network Insights Path resource. Part of the “Reachability Analyzer” service in the AWS VPC console.
Provides an Elastic network interface (ENI) resource.
Attach an Elastic network interface (ENI) resource with EC2 instance.
This resource attaches a security group to an Elastic Network Interface (ENI).
It can be used to attach a security group to any existing ENI, be it a
secondary ENI or one attached as the primary interface on an instance.
Provides a resource to manage VPC peering connection options.
Provides an EC2 placement group. Read more about placement groups
in
AWS Docs.
Provides a proxy protocol policy, which allows an ELB to carry a client connection information to a backend.
Provides a resource to create a routing table entry (a route) in a VPC routing table.
Provides a resource to create a VPC routing table.
Provides a resource to create an association between a route table and a subnet or a route table and an
internet gateway or virtual private gateway.
Provides a security group resource.
Provides a resource to create an association between a VPC endpoint and a security group.
Provides a security group rule resource. Represents a single ingress or egress group rule, which can be added to external Security Groups.
Provides a resource to manage whether serial console access is enabled for your AWS account in the current AWS region.
Adds permission to create volumes off of a given EBS Snapshot.
Note: There is only a single subscription allowed per account.
Provides an EC2 Spot Fleet Request resource. This allows a fleet of Spot
instances to be requested on the Spot market.
Provides an EC2 Spot Instance Request resource. This allows instances to be
requested on the spot market.
Provides an VPC subnet resource.
Provides a subnet CIDR reservation resource.
Manages an individual EC2 resource tag. This resource should only be used in cases where EC2 resources are created outside the provider (e.g. AMIs), being shared via Resource Access Manager (RAM), or implicitly created by other means (e.g. Transit Gateway VPN Attachments).
Provides an AWS EBS Volume Attachment as a top level resource, to attach and
detach volumes from AWS Instances.
Provides a VPC resource.
Resource for managing an AWS EC2 (Elastic Compute Cloud) VPC Block Public Access Exclusion.
Resource for managing an AWS VPC Block Public Access Options.
Provides a VPC DHCP Options resource.
Provides a VPC DHCP Options Association resource.
Provides a VPC Endpoint resource.
Provides a resource to accept a pending VPC Endpoint Connection accept request to VPC Endpoint Service.
Provides a VPC Endpoint connection notification resource.
Connection notifications notify subscribers of VPC Endpoint events.
Provides a VPC Endpoint Policy resource.
Manages a VPC Endpoint Route Table Association
Provides a VPC Endpoint Service resource.
Service consumers can create an Interface VPC Endpoint to connect to the service.
Provides a resource to allow a principal to discover a VPC endpoint service.
Provides a resource to create an association between a VPC endpoint and a subnet.
Provides an IPAM resource.
Enables the IPAM Service and promotes a delegated administrator.
Provides an IP address pool resource for IPAM.
Provisions a CIDR from an IPAM address pool.
Allocates (reserves) a CIDR from an IPAM address pool, preventing usage by IPAM. Only works for private IPv4.
Previews a CIDR from an IPAM address pool. Only works for private IPv4.
Provides an IPAM Resource Discovery resource. IPAM Resource Discoveries are resources meant for multi-organization customers. If you wish to use a single IPAM across multiple orgs, a resource discovery can be created and shared from a subordinate organization to the management organizations IPAM delegated admin account. For a full deployment example, see aws.ec2.VpcIpamResourceDiscoveryAssociation resource.
Provides an association between an Amazon IP Address Manager (IPAM) and a IPAM Resource Discovery. IPAM Resource Discoveries are resources meant for multi-organization customers. If you wish to use a single IPAM across multiple orgs, a resource discovery can be created and shared from a subordinate organization to the management organizations IPAM delegated admin account.
Creates a scope for AWS IPAM.
Provides a resource to associate additional IPv4 CIDR blocks with a VPC.
Provides a resource to associate additional IPv6 CIDR blocks with a VPC.
Provides a resource to manage an Infrastructure Performance subscription.
Provides a resource to manage a VPC peering connection.
Provides a resource to manage the accepter’s side of a VPC Peering Connection.
Manages a Site-to-Site VPN connection. A Site-to-Site VPN connection is an Internet Protocol security (IPsec) VPN connection between a VPC and an on-premises network.
Any new Site-to-Site VPN connection that you create is an
AWS VPN connection.
Provides a static route between a VPN connection and a customer gateway.
Provides a resource to create a VPC VPN Gateway.
Provides a Virtual Private Gateway attachment resource, allowing for an existing
hardware VPN gateway to be attached and/or detached from a VPC.
Requests automatic route propagation between a VPN gateway and a route table.