AWS::EC2::VPCBlockPublicAccessExclusion

EC2 VPCBlockPublicAccessExclusion

Resource Type definition for AWS::EC2::VPCBlockPublicAccessExclusion.

Properties

4 configurable properties. 1 required. Click a row to see details.

Filter:

Property	Type	Flags
`InternetGatewayExclusionMode`	`string`	Required
`SubnetId`	`string`	Create-only
`Tags`	`Array<Tag>`
`VpcId`	`string`	Create-only

Return Values

Values returned after the resource is created. Access these with Fn::GetAtt.

Attribute	Type	Description
`ExclusionId`	`string`	The ID of the exclusion

Sample CloudFormation Template

A minimal template with required properties and common optional ones.

template.yaml

AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::EC2::VPCBlockPublicAccessExclusion

Resources:
  MyResource:
    Type: AWS::EC2::VPCBlockPublicAccessExclusion
    Properties:
      InternetGatewayExclusionMode: "allow-bidirectional"
      Tags:
        - Key: Environment
          Value: Production

Required IAM Permissions

Permissions CloudFormation needs in your IAM role to manage this resource.

create

ec2:DescribeVpcBlockPublicAccessExclusionsec2:CreateVpcBlockPublicAccessExclusionec2:CreateTags

read

ec2:DescribeVpcBlockPublicAccessExclusions

update

ec2:DescribeVpcBlockPublicAccessExclusionsec2:ModifyVpcBlockPublicAccessExclusionec2:CreateTagsec2:DeleteTags

delete

ec2:DescribeVpcBlockPublicAccessExclusionsec2:DeleteVpcBlockPublicAccessExclusion

list

ec2:DescribeVpcBlockPublicAccessExclusions

Get the EC2 Cheat Sheet

Everything you need to know about EC2 on one page. HD quality, print-friendly.

Download Free Infographic

Quick Facts

ServiceEC2

Properties5

Required1

TaggingSupported

Primary IDExclusionId

Supported Operations

CreateReadUpdateDeleteList

Immutable After Creation

These properties cannot be changed after the resource is created. Updating them triggers a replacement.

VpcIdSubnetId

Related Resources

External Links

AWS Documentation