// Code generated by software.amazon.smithy.rust.codegen.smithy-rs. DO NOT EDIT.
#[allow(missing_docs)] // documentation missing in model
#[non_exhaustive]
#[derive(::std::clone::Clone, ::std::cmp::PartialEq, ::std::fmt::Debug)]
pub struct CreateResolverEndpointInput {
/// <p>A unique string that identifies the request and that allows failed requests to be retried without the risk of running the operation twice. <code>CreatorRequestId</code> can be any unique string, for example, a date/time stamp.</p>
pub creator_request_id: ::std::option::Option<::std::string::String>,
/// <p>A friendly name that lets you easily find a configuration in the Resolver dashboard in the Route 53 console.</p>
pub name: ::std::option::Option<::std::string::String>,
/// <p>The ID of one or more security groups that you want to use to control access to this VPC. The security group that you specify must include one or more inbound rules (for inbound Resolver endpoints) or outbound rules (for outbound Resolver endpoints). Inbound and outbound rules must allow TCP and UDP access. For inbound access, open port 53. For outbound access, open the port that you're using for DNS queries on your network.</p>
/// <p>Some security group rules will cause your connection to be tracked. For outbound resolver endpoint, it can potentially impact the maximum queries per second from outbound endpoint to your target name server. For inbound resolver endpoint, it can bring down the overall maximum queries per second per IP address to as low as 1500. To avoid connection tracking caused by security group, see <a href="https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/security-group-connection-tracking.html#untracked-connectionsl">Untracked connections</a>.</p>
pub security_group_ids: ::std::option::Option<::std::vec::Vec<::std::string::String>>,
/// <p>Specify the applicable value:</p>
/// <ul>
/// <li>
/// <p><code>INBOUND</code>: Resolver forwards DNS queries to the DNS service for a VPC from your network.</p></li>
/// <li>
/// <p><code>OUTBOUND</code>: Resolver forwards DNS queries from the DNS service for a VPC to your network.</p></li>
/// <li>
/// <p><code>INBOUND_DELEGATION</code>: Resolver delegates queries to Route 53 private hosted zones from your network.</p></li>
/// </ul>
pub direction: ::std::option::Option<crate::types::ResolverEndpointDirection>,
/// <p>The subnets and IP addresses in your VPC that DNS queries originate from (for outbound endpoints) or that you forward DNS queries to (for inbound endpoints). The subnet ID uniquely identifies a VPC.</p><note>
/// <p>Even though the minimum is 1, Route 53 requires that you create at least two.</p>
/// </note>
pub ip_addresses: ::std::option::Option<::std::vec::Vec<crate::types::IpAddressRequest>>,
/// <p>The Amazon Resource Name (ARN) of the Outpost. If you specify this, you must also specify a value for the <code>PreferredInstanceType</code>.</p>
pub outpost_arn: ::std::option::Option<::std::string::String>,
/// <p>The instance type. If you specify this, you must also specify a value for the <code>OutpostArn</code>.</p>
pub preferred_instance_type: ::std::option::Option<::std::string::String>,
/// <p>A list of the tag keys and values that you want to associate with the endpoint.</p>
pub tags: ::std::option::Option<::std::vec::Vec<crate::types::Tag>>,
/// <p>For the endpoint type you can choose either IPv4, IPv6, or dual-stack. A dual-stack endpoint means that it will resolve via both IPv4 and IPv6. This endpoint type is applied to all IP addresses.</p>
pub resolver_endpoint_type: ::std::option::Option<crate::types::ResolverEndpointType>,
/// <p>The protocols you want to use for the endpoint. DoH-FIPS is applicable for default inbound endpoints only.</p>
/// <p>For a default inbound endpoint you can apply the protocols as follows:</p>
/// <ul>
/// <li>
/// <p>Do53 and DoH in combination.</p></li>
/// <li>
/// <p>Do53 and DoH-FIPS in combination.</p></li>
/// <li>
/// <p>Do53 alone.</p></li>
/// <li>
/// <p>DoH alone.</p></li>
/// <li>
/// <p>DoH-FIPS alone.</p></li>
/// <li>
/// <p>None, which is treated as Do53.</p></li>
/// </ul>
/// <p>For a delegation inbound endpoint you can use Do53 only.</p>
/// <p>For an outbound endpoint you can apply the protocols as follows:</p>
/// <ul>
/// <li>
/// <p>Do53 and DoH in combination.</p></li>
/// <li>
/// <p>Do53 alone.</p></li>
/// <li>
/// <p>DoH alone.</p></li>
/// <li>
/// <p>None, which is treated as Do53.</p></li>
/// </ul>
pub protocols: ::std::option::Option<::std::vec::Vec<crate::types::Protocol>>,
/// <p>Specifies whether RNI enhanced metrics are enabled for the Resolver endpoints. When set to true, one-minute granular metrics are published in CloudWatch for each RNI associated with this endpoint. When set to false, metrics are not published. Default is false.</p><note>
/// <p>Standard CloudWatch pricing and charges are applied for using the Route 53 Resolver endpoint RNI enhanced metrics. For more information, see <a href="https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/monitoring-resolver-with-cloudwatch.html">Detailed metrics</a>.</p>
/// </note>
pub rni_enhanced_metrics_enabled: ::std::option::Option<bool>,
/// <p>Specifies whether target name server metrics are enabled for the outbound Resolver endpoints. When set to true, one-minute granular metrics are published in CloudWatch for each target name server associated with this endpoint. When set to false, metrics are not published. Default is false. This is not supported for inbound Resolver endpoints.</p><note>
/// <p>Standard CloudWatch pricing and charges are applied for using the Route 53 Resolver endpoint target name server metrics. For more information, see <a href="https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/monitoring-resolver-with-cloudwatch.html">Detailed metrics</a>.</p>
/// </note>
pub target_name_server_metrics_enabled: ::std::option::Option<bool>,
/// <p>Specifies whether DNS64 is enabled for the inbound Resolver endpoint. When set to <code>true</code>, Route 53 Resolver synthesizes AAAA (IPv6) records for IPv4-only services by prepending the <code>64:ff9b::/96</code> prefix to the IPv4 address. This enables IPv6-only clients that send queries through the inbound endpoint to reach IPv4-only services. DNS64 works with NAT64 to provide complete IPv6-to-IPv4 translation. Default is false.</p>
pub dns64_enabled: ::std::option::Option<bool>,
/// <p>Specifies whether IPv6 internet access is enabled for the outbound Resolver endpoint. When set to <code>true</code>, the endpoint elastic network interfaces (ENIs) can forward DNS queries to public IPv6 targets through an internet gateway. Default is false.</p><important>
/// <p>When you enable IPv6 internet access, use network controls like security groups, NACLs, or egress-only internet gateways to protect the endpoint ENIs from unsolicited ingress traffic. Be aware that some network controls can affect DNS query throughput due to connection tracking. For more information, see <a href="https://docs.aws.amazon.com/ec2/latest/userguide/security-group-connection-tracking.html">Amazon EC2 security group connection tracking</a> and <a href="https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/best-practices-resolver-endpoint-scaling.html">Resolver endpoint scaling</a>.</p>
/// </important>
pub ipv6_internet_access_enabled: ::std::option::Option<bool>,
}
impl CreateResolverEndpointInput {
/// <p>A unique string that identifies the request and that allows failed requests to be retried without the risk of running the operation twice. <code>CreatorRequestId</code> can be any unique string, for example, a date/time stamp.</p>
pub fn creator_request_id(&self) -> ::std::option::Option<&str> {
self.creator_request_id.as_deref()
}
/// <p>A friendly name that lets you easily find a configuration in the Resolver dashboard in the Route 53 console.</p>
pub fn name(&self) -> ::std::option::Option<&str> {
self.name.as_deref()
}
/// <p>The ID of one or more security groups that you want to use to control access to this VPC. The security group that you specify must include one or more inbound rules (for inbound Resolver endpoints) or outbound rules (for outbound Resolver endpoints). Inbound and outbound rules must allow TCP and UDP access. For inbound access, open port 53. For outbound access, open the port that you're using for DNS queries on your network.</p>
/// <p>Some security group rules will cause your connection to be tracked. For outbound resolver endpoint, it can potentially impact the maximum queries per second from outbound endpoint to your target name server. For inbound resolver endpoint, it can bring down the overall maximum queries per second per IP address to as low as 1500. To avoid connection tracking caused by security group, see <a href="https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/security-group-connection-tracking.html#untracked-connectionsl">Untracked connections</a>.</p>
///
/// If no value was sent for this field, a default will be set. If you want to determine if no value was sent, use `.security_group_ids.is_none()`.
pub fn security_group_ids(&self) -> &[::std::string::String] {
self.security_group_ids.as_deref().unwrap_or_default()
}
/// <p>Specify the applicable value:</p>
/// <ul>
/// <li>
/// <p><code>INBOUND</code>: Resolver forwards DNS queries to the DNS service for a VPC from your network.</p></li>
/// <li>
/// <p><code>OUTBOUND</code>: Resolver forwards DNS queries from the DNS service for a VPC to your network.</p></li>
/// <li>
/// <p><code>INBOUND_DELEGATION</code>: Resolver delegates queries to Route 53 private hosted zones from your network.</p></li>
/// </ul>
pub fn direction(&self) -> ::std::option::Option<&crate::types::ResolverEndpointDirection> {
self.direction.as_ref()
}
/// <p>The subnets and IP addresses in your VPC that DNS queries originate from (for outbound endpoints) or that you forward DNS queries to (for inbound endpoints). The subnet ID uniquely identifies a VPC.</p><note>
/// <p>Even though the minimum is 1, Route 53 requires that you create at least two.</p>
/// </note>
///
/// If no value was sent for this field, a default will be set. If you want to determine if no value was sent, use `.ip_addresses.is_none()`.
pub fn ip_addresses(&self) -> &[crate::types::IpAddressRequest] {
self.ip_addresses.as_deref().unwrap_or_default()
}
/// <p>The Amazon Resource Name (ARN) of the Outpost. If you specify this, you must also specify a value for the <code>PreferredInstanceType</code>.</p>
pub fn outpost_arn(&self) -> ::std::option::Option<&str> {
self.outpost_arn.as_deref()
}
/// <p>The instance type. If you specify this, you must also specify a value for the <code>OutpostArn</code>.</p>
pub fn preferred_instance_type(&self) -> ::std::option::Option<&str> {
self.preferred_instance_type.as_deref()
}
/// <p>A list of the tag keys and values that you want to associate with the endpoint.</p>
///
/// If no value was sent for this field, a default will be set. If you want to determine if no value was sent, use `.tags.is_none()`.
pub fn tags(&self) -> &[crate::types::Tag] {
self.tags.as_deref().unwrap_or_default()
}
/// <p>For the endpoint type you can choose either IPv4, IPv6, or dual-stack. A dual-stack endpoint means that it will resolve via both IPv4 and IPv6. This endpoint type is applied to all IP addresses.</p>
pub fn resolver_endpoint_type(&self) -> ::std::option::Option<&crate::types::ResolverEndpointType> {
self.resolver_endpoint_type.as_ref()
}
/// <p>The protocols you want to use for the endpoint. DoH-FIPS is applicable for default inbound endpoints only.</p>
/// <p>For a default inbound endpoint you can apply the protocols as follows:</p>
/// <ul>
/// <li>
/// <p>Do53 and DoH in combination.</p></li>
/// <li>
/// <p>Do53 and DoH-FIPS in combination.</p></li>
/// <li>
/// <p>Do53 alone.</p></li>
/// <li>
/// <p>DoH alone.</p></li>
/// <li>
/// <p>DoH-FIPS alone.</p></li>
/// <li>
/// <p>None, which is treated as Do53.</p></li>
/// </ul>
/// <p>For a delegation inbound endpoint you can use Do53 only.</p>
/// <p>For an outbound endpoint you can apply the protocols as follows:</p>
/// <ul>
/// <li>
/// <p>Do53 and DoH in combination.</p></li>
/// <li>
/// <p>Do53 alone.</p></li>
/// <li>
/// <p>DoH alone.</p></li>
/// <li>
/// <p>None, which is treated as Do53.</p></li>
/// </ul>
///
/// If no value was sent for this field, a default will be set. If you want to determine if no value was sent, use `.protocols.is_none()`.
pub fn protocols(&self) -> &[crate::types::Protocol] {
self.protocols.as_deref().unwrap_or_default()
}
/// <p>Specifies whether RNI enhanced metrics are enabled for the Resolver endpoints. When set to true, one-minute granular metrics are published in CloudWatch for each RNI associated with this endpoint. When set to false, metrics are not published. Default is false.</p><note>
/// <p>Standard CloudWatch pricing and charges are applied for using the Route 53 Resolver endpoint RNI enhanced metrics. For more information, see <a href="https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/monitoring-resolver-with-cloudwatch.html">Detailed metrics</a>.</p>
/// </note>
pub fn rni_enhanced_metrics_enabled(&self) -> ::std::option::Option<bool> {
self.rni_enhanced_metrics_enabled
}
/// <p>Specifies whether target name server metrics are enabled for the outbound Resolver endpoints. When set to true, one-minute granular metrics are published in CloudWatch for each target name server associated with this endpoint. When set to false, metrics are not published. Default is false. This is not supported for inbound Resolver endpoints.</p><note>
/// <p>Standard CloudWatch pricing and charges are applied for using the Route 53 Resolver endpoint target name server metrics. For more information, see <a href="https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/monitoring-resolver-with-cloudwatch.html">Detailed metrics</a>.</p>
/// </note>
pub fn target_name_server_metrics_enabled(&self) -> ::std::option::Option<bool> {
self.target_name_server_metrics_enabled
}
/// <p>Specifies whether DNS64 is enabled for the inbound Resolver endpoint. When set to <code>true</code>, Route 53 Resolver synthesizes AAAA (IPv6) records for IPv4-only services by prepending the <code>64:ff9b::/96</code> prefix to the IPv4 address. This enables IPv6-only clients that send queries through the inbound endpoint to reach IPv4-only services. DNS64 works with NAT64 to provide complete IPv6-to-IPv4 translation. Default is false.</p>
pub fn dns64_enabled(&self) -> ::std::option::Option<bool> {
self.dns64_enabled
}
/// <p>Specifies whether IPv6 internet access is enabled for the outbound Resolver endpoint. When set to <code>true</code>, the endpoint elastic network interfaces (ENIs) can forward DNS queries to public IPv6 targets through an internet gateway. Default is false.</p><important>
/// <p>When you enable IPv6 internet access, use network controls like security groups, NACLs, or egress-only internet gateways to protect the endpoint ENIs from unsolicited ingress traffic. Be aware that some network controls can affect DNS query throughput due to connection tracking. For more information, see <a href="https://docs.aws.amazon.com/ec2/latest/userguide/security-group-connection-tracking.html">Amazon EC2 security group connection tracking</a> and <a href="https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/best-practices-resolver-endpoint-scaling.html">Resolver endpoint scaling</a>.</p>
/// </important>
pub fn ipv6_internet_access_enabled(&self) -> ::std::option::Option<bool> {
self.ipv6_internet_access_enabled
}
}
impl CreateResolverEndpointInput {
/// Creates a new builder-style object to manufacture [`CreateResolverEndpointInput`](crate::operation::create_resolver_endpoint::CreateResolverEndpointInput).
pub fn builder() -> crate::operation::create_resolver_endpoint::builders::CreateResolverEndpointInputBuilder {
crate::operation::create_resolver_endpoint::builders::CreateResolverEndpointInputBuilder::default()
}
}
/// A builder for [`CreateResolverEndpointInput`](crate::operation::create_resolver_endpoint::CreateResolverEndpointInput).
#[derive(::std::clone::Clone, ::std::cmp::PartialEq, ::std::default::Default, ::std::fmt::Debug)]
#[non_exhaustive]
pub struct CreateResolverEndpointInputBuilder {
pub(crate) creator_request_id: ::std::option::Option<::std::string::String>,
pub(crate) name: ::std::option::Option<::std::string::String>,
pub(crate) security_group_ids: ::std::option::Option<::std::vec::Vec<::std::string::String>>,
pub(crate) direction: ::std::option::Option<crate::types::ResolverEndpointDirection>,
pub(crate) ip_addresses: ::std::option::Option<::std::vec::Vec<crate::types::IpAddressRequest>>,
pub(crate) outpost_arn: ::std::option::Option<::std::string::String>,
pub(crate) preferred_instance_type: ::std::option::Option<::std::string::String>,
pub(crate) tags: ::std::option::Option<::std::vec::Vec<crate::types::Tag>>,
pub(crate) resolver_endpoint_type: ::std::option::Option<crate::types::ResolverEndpointType>,
pub(crate) protocols: ::std::option::Option<::std::vec::Vec<crate::types::Protocol>>,
pub(crate) rni_enhanced_metrics_enabled: ::std::option::Option<bool>,
pub(crate) target_name_server_metrics_enabled: ::std::option::Option<bool>,
pub(crate) dns64_enabled: ::std::option::Option<bool>,
pub(crate) ipv6_internet_access_enabled: ::std::option::Option<bool>,
}
impl CreateResolverEndpointInputBuilder {
/// <p>A unique string that identifies the request and that allows failed requests to be retried without the risk of running the operation twice. <code>CreatorRequestId</code> can be any unique string, for example, a date/time stamp.</p>
/// This field is required.
pub fn creator_request_id(mut self, input: impl ::std::convert::Into<::std::string::String>) -> Self {
self.creator_request_id = ::std::option::Option::Some(input.into());
self
}
/// <p>A unique string that identifies the request and that allows failed requests to be retried without the risk of running the operation twice. <code>CreatorRequestId</code> can be any unique string, for example, a date/time stamp.</p>
pub fn set_creator_request_id(mut self, input: ::std::option::Option<::std::string::String>) -> Self {
self.creator_request_id = input;
self
}
/// <p>A unique string that identifies the request and that allows failed requests to be retried without the risk of running the operation twice. <code>CreatorRequestId</code> can be any unique string, for example, a date/time stamp.</p>
pub fn get_creator_request_id(&self) -> &::std::option::Option<::std::string::String> {
&self.creator_request_id
}
/// <p>A friendly name that lets you easily find a configuration in the Resolver dashboard in the Route 53 console.</p>
pub fn name(mut self, input: impl ::std::convert::Into<::std::string::String>) -> Self {
self.name = ::std::option::Option::Some(input.into());
self
}
/// <p>A friendly name that lets you easily find a configuration in the Resolver dashboard in the Route 53 console.</p>
pub fn set_name(mut self, input: ::std::option::Option<::std::string::String>) -> Self {
self.name = input;
self
}
/// <p>A friendly name that lets you easily find a configuration in the Resolver dashboard in the Route 53 console.</p>
pub fn get_name(&self) -> &::std::option::Option<::std::string::String> {
&self.name
}
/// Appends an item to `security_group_ids`.
///
/// To override the contents of this collection use [`set_security_group_ids`](Self::set_security_group_ids).
///
/// <p>The ID of one or more security groups that you want to use to control access to this VPC. The security group that you specify must include one or more inbound rules (for inbound Resolver endpoints) or outbound rules (for outbound Resolver endpoints). Inbound and outbound rules must allow TCP and UDP access. For inbound access, open port 53. For outbound access, open the port that you're using for DNS queries on your network.</p>
/// <p>Some security group rules will cause your connection to be tracked. For outbound resolver endpoint, it can potentially impact the maximum queries per second from outbound endpoint to your target name server. For inbound resolver endpoint, it can bring down the overall maximum queries per second per IP address to as low as 1500. To avoid connection tracking caused by security group, see <a href="https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/security-group-connection-tracking.html#untracked-connectionsl">Untracked connections</a>.</p>
pub fn security_group_ids(mut self, input: impl ::std::convert::Into<::std::string::String>) -> Self {
let mut v = self.security_group_ids.unwrap_or_default();
v.push(input.into());
self.security_group_ids = ::std::option::Option::Some(v);
self
}
/// <p>The ID of one or more security groups that you want to use to control access to this VPC. The security group that you specify must include one or more inbound rules (for inbound Resolver endpoints) or outbound rules (for outbound Resolver endpoints). Inbound and outbound rules must allow TCP and UDP access. For inbound access, open port 53. For outbound access, open the port that you're using for DNS queries on your network.</p>
/// <p>Some security group rules will cause your connection to be tracked. For outbound resolver endpoint, it can potentially impact the maximum queries per second from outbound endpoint to your target name server. For inbound resolver endpoint, it can bring down the overall maximum queries per second per IP address to as low as 1500. To avoid connection tracking caused by security group, see <a href="https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/security-group-connection-tracking.html#untracked-connectionsl">Untracked connections</a>.</p>
pub fn set_security_group_ids(mut self, input: ::std::option::Option<::std::vec::Vec<::std::string::String>>) -> Self {
self.security_group_ids = input;
self
}
/// <p>The ID of one or more security groups that you want to use to control access to this VPC. The security group that you specify must include one or more inbound rules (for inbound Resolver endpoints) or outbound rules (for outbound Resolver endpoints). Inbound and outbound rules must allow TCP and UDP access. For inbound access, open port 53. For outbound access, open the port that you're using for DNS queries on your network.</p>
/// <p>Some security group rules will cause your connection to be tracked. For outbound resolver endpoint, it can potentially impact the maximum queries per second from outbound endpoint to your target name server. For inbound resolver endpoint, it can bring down the overall maximum queries per second per IP address to as low as 1500. To avoid connection tracking caused by security group, see <a href="https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/security-group-connection-tracking.html#untracked-connectionsl">Untracked connections</a>.</p>
pub fn get_security_group_ids(&self) -> &::std::option::Option<::std::vec::Vec<::std::string::String>> {
&self.security_group_ids
}
/// <p>Specify the applicable value:</p>
/// <ul>
/// <li>
/// <p><code>INBOUND</code>: Resolver forwards DNS queries to the DNS service for a VPC from your network.</p></li>
/// <li>
/// <p><code>OUTBOUND</code>: Resolver forwards DNS queries from the DNS service for a VPC to your network.</p></li>
/// <li>
/// <p><code>INBOUND_DELEGATION</code>: Resolver delegates queries to Route 53 private hosted zones from your network.</p></li>
/// </ul>
/// This field is required.
pub fn direction(mut self, input: crate::types::ResolverEndpointDirection) -> Self {
self.direction = ::std::option::Option::Some(input);
self
}
/// <p>Specify the applicable value:</p>
/// <ul>
/// <li>
/// <p><code>INBOUND</code>: Resolver forwards DNS queries to the DNS service for a VPC from your network.</p></li>
/// <li>
/// <p><code>OUTBOUND</code>: Resolver forwards DNS queries from the DNS service for a VPC to your network.</p></li>
/// <li>
/// <p><code>INBOUND_DELEGATION</code>: Resolver delegates queries to Route 53 private hosted zones from your network.</p></li>
/// </ul>
pub fn set_direction(mut self, input: ::std::option::Option<crate::types::ResolverEndpointDirection>) -> Self {
self.direction = input;
self
}
/// <p>Specify the applicable value:</p>
/// <ul>
/// <li>
/// <p><code>INBOUND</code>: Resolver forwards DNS queries to the DNS service for a VPC from your network.</p></li>
/// <li>
/// <p><code>OUTBOUND</code>: Resolver forwards DNS queries from the DNS service for a VPC to your network.</p></li>
/// <li>
/// <p><code>INBOUND_DELEGATION</code>: Resolver delegates queries to Route 53 private hosted zones from your network.</p></li>
/// </ul>
pub fn get_direction(&self) -> &::std::option::Option<crate::types::ResolverEndpointDirection> {
&self.direction
}
/// Appends an item to `ip_addresses`.
///
/// To override the contents of this collection use [`set_ip_addresses`](Self::set_ip_addresses).
///
/// <p>The subnets and IP addresses in your VPC that DNS queries originate from (for outbound endpoints) or that you forward DNS queries to (for inbound endpoints). The subnet ID uniquely identifies a VPC.</p><note>
/// <p>Even though the minimum is 1, Route 53 requires that you create at least two.</p>
/// </note>
pub fn ip_addresses(mut self, input: crate::types::IpAddressRequest) -> Self {
let mut v = self.ip_addresses.unwrap_or_default();
v.push(input);
self.ip_addresses = ::std::option::Option::Some(v);
self
}
/// <p>The subnets and IP addresses in your VPC that DNS queries originate from (for outbound endpoints) or that you forward DNS queries to (for inbound endpoints). The subnet ID uniquely identifies a VPC.</p><note>
/// <p>Even though the minimum is 1, Route 53 requires that you create at least two.</p>
/// </note>
pub fn set_ip_addresses(mut self, input: ::std::option::Option<::std::vec::Vec<crate::types::IpAddressRequest>>) -> Self {
self.ip_addresses = input;
self
}
/// <p>The subnets and IP addresses in your VPC that DNS queries originate from (for outbound endpoints) or that you forward DNS queries to (for inbound endpoints). The subnet ID uniquely identifies a VPC.</p><note>
/// <p>Even though the minimum is 1, Route 53 requires that you create at least two.</p>
/// </note>
pub fn get_ip_addresses(&self) -> &::std::option::Option<::std::vec::Vec<crate::types::IpAddressRequest>> {
&self.ip_addresses
}
/// <p>The Amazon Resource Name (ARN) of the Outpost. If you specify this, you must also specify a value for the <code>PreferredInstanceType</code>.</p>
pub fn outpost_arn(mut self, input: impl ::std::convert::Into<::std::string::String>) -> Self {
self.outpost_arn = ::std::option::Option::Some(input.into());
self
}
/// <p>The Amazon Resource Name (ARN) of the Outpost. If you specify this, you must also specify a value for the <code>PreferredInstanceType</code>.</p>
pub fn set_outpost_arn(mut self, input: ::std::option::Option<::std::string::String>) -> Self {
self.outpost_arn = input;
self
}
/// <p>The Amazon Resource Name (ARN) of the Outpost. If you specify this, you must also specify a value for the <code>PreferredInstanceType</code>.</p>
pub fn get_outpost_arn(&self) -> &::std::option::Option<::std::string::String> {
&self.outpost_arn
}
/// <p>The instance type. If you specify this, you must also specify a value for the <code>OutpostArn</code>.</p>
pub fn preferred_instance_type(mut self, input: impl ::std::convert::Into<::std::string::String>) -> Self {
self.preferred_instance_type = ::std::option::Option::Some(input.into());
self
}
/// <p>The instance type. If you specify this, you must also specify a value for the <code>OutpostArn</code>.</p>
pub fn set_preferred_instance_type(mut self, input: ::std::option::Option<::std::string::String>) -> Self {
self.preferred_instance_type = input;
self
}
/// <p>The instance type. If you specify this, you must also specify a value for the <code>OutpostArn</code>.</p>
pub fn get_preferred_instance_type(&self) -> &::std::option::Option<::std::string::String> {
&self.preferred_instance_type
}
/// Appends an item to `tags`.
///
/// To override the contents of this collection use [`set_tags`](Self::set_tags).
///
/// <p>A list of the tag keys and values that you want to associate with the endpoint.</p>
pub fn tags(mut self, input: crate::types::Tag) -> Self {
let mut v = self.tags.unwrap_or_default();
v.push(input);
self.tags = ::std::option::Option::Some(v);
self
}
/// <p>A list of the tag keys and values that you want to associate with the endpoint.</p>
pub fn set_tags(mut self, input: ::std::option::Option<::std::vec::Vec<crate::types::Tag>>) -> Self {
self.tags = input;
self
}
/// <p>A list of the tag keys and values that you want to associate with the endpoint.</p>
pub fn get_tags(&self) -> &::std::option::Option<::std::vec::Vec<crate::types::Tag>> {
&self.tags
}
/// <p>For the endpoint type you can choose either IPv4, IPv6, or dual-stack. A dual-stack endpoint means that it will resolve via both IPv4 and IPv6. This endpoint type is applied to all IP addresses.</p>
pub fn resolver_endpoint_type(mut self, input: crate::types::ResolverEndpointType) -> Self {
self.resolver_endpoint_type = ::std::option::Option::Some(input);
self
}
/// <p>For the endpoint type you can choose either IPv4, IPv6, or dual-stack. A dual-stack endpoint means that it will resolve via both IPv4 and IPv6. This endpoint type is applied to all IP addresses.</p>
pub fn set_resolver_endpoint_type(mut self, input: ::std::option::Option<crate::types::ResolverEndpointType>) -> Self {
self.resolver_endpoint_type = input;
self
}
/// <p>For the endpoint type you can choose either IPv4, IPv6, or dual-stack. A dual-stack endpoint means that it will resolve via both IPv4 and IPv6. This endpoint type is applied to all IP addresses.</p>
pub fn get_resolver_endpoint_type(&self) -> &::std::option::Option<crate::types::ResolverEndpointType> {
&self.resolver_endpoint_type
}
/// Appends an item to `protocols`.
///
/// To override the contents of this collection use [`set_protocols`](Self::set_protocols).
///
/// <p>The protocols you want to use for the endpoint. DoH-FIPS is applicable for default inbound endpoints only.</p>
/// <p>For a default inbound endpoint you can apply the protocols as follows:</p>
/// <ul>
/// <li>
/// <p>Do53 and DoH in combination.</p></li>
/// <li>
/// <p>Do53 and DoH-FIPS in combination.</p></li>
/// <li>
/// <p>Do53 alone.</p></li>
/// <li>
/// <p>DoH alone.</p></li>
/// <li>
/// <p>DoH-FIPS alone.</p></li>
/// <li>
/// <p>None, which is treated as Do53.</p></li>
/// </ul>
/// <p>For a delegation inbound endpoint you can use Do53 only.</p>
/// <p>For an outbound endpoint you can apply the protocols as follows:</p>
/// <ul>
/// <li>
/// <p>Do53 and DoH in combination.</p></li>
/// <li>
/// <p>Do53 alone.</p></li>
/// <li>
/// <p>DoH alone.</p></li>
/// <li>
/// <p>None, which is treated as Do53.</p></li>
/// </ul>
pub fn protocols(mut self, input: crate::types::Protocol) -> Self {
let mut v = self.protocols.unwrap_or_default();
v.push(input);
self.protocols = ::std::option::Option::Some(v);
self
}
/// <p>The protocols you want to use for the endpoint. DoH-FIPS is applicable for default inbound endpoints only.</p>
/// <p>For a default inbound endpoint you can apply the protocols as follows:</p>
/// <ul>
/// <li>
/// <p>Do53 and DoH in combination.</p></li>
/// <li>
/// <p>Do53 and DoH-FIPS in combination.</p></li>
/// <li>
/// <p>Do53 alone.</p></li>
/// <li>
/// <p>DoH alone.</p></li>
/// <li>
/// <p>DoH-FIPS alone.</p></li>
/// <li>
/// <p>None, which is treated as Do53.</p></li>
/// </ul>
/// <p>For a delegation inbound endpoint you can use Do53 only.</p>
/// <p>For an outbound endpoint you can apply the protocols as follows:</p>
/// <ul>
/// <li>
/// <p>Do53 and DoH in combination.</p></li>
/// <li>
/// <p>Do53 alone.</p></li>
/// <li>
/// <p>DoH alone.</p></li>
/// <li>
/// <p>None, which is treated as Do53.</p></li>
/// </ul>
pub fn set_protocols(mut self, input: ::std::option::Option<::std::vec::Vec<crate::types::Protocol>>) -> Self {
self.protocols = input;
self
}
/// <p>The protocols you want to use for the endpoint. DoH-FIPS is applicable for default inbound endpoints only.</p>
/// <p>For a default inbound endpoint you can apply the protocols as follows:</p>
/// <ul>
/// <li>
/// <p>Do53 and DoH in combination.</p></li>
/// <li>
/// <p>Do53 and DoH-FIPS in combination.</p></li>
/// <li>
/// <p>Do53 alone.</p></li>
/// <li>
/// <p>DoH alone.</p></li>
/// <li>
/// <p>DoH-FIPS alone.</p></li>
/// <li>
/// <p>None, which is treated as Do53.</p></li>
/// </ul>
/// <p>For a delegation inbound endpoint you can use Do53 only.</p>
/// <p>For an outbound endpoint you can apply the protocols as follows:</p>
/// <ul>
/// <li>
/// <p>Do53 and DoH in combination.</p></li>
/// <li>
/// <p>Do53 alone.</p></li>
/// <li>
/// <p>DoH alone.</p></li>
/// <li>
/// <p>None, which is treated as Do53.</p></li>
/// </ul>
pub fn get_protocols(&self) -> &::std::option::Option<::std::vec::Vec<crate::types::Protocol>> {
&self.protocols
}
/// <p>Specifies whether RNI enhanced metrics are enabled for the Resolver endpoints. When set to true, one-minute granular metrics are published in CloudWatch for each RNI associated with this endpoint. When set to false, metrics are not published. Default is false.</p><note>
/// <p>Standard CloudWatch pricing and charges are applied for using the Route 53 Resolver endpoint RNI enhanced metrics. For more information, see <a href="https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/monitoring-resolver-with-cloudwatch.html">Detailed metrics</a>.</p>
/// </note>
pub fn rni_enhanced_metrics_enabled(mut self, input: bool) -> Self {
self.rni_enhanced_metrics_enabled = ::std::option::Option::Some(input);
self
}
/// <p>Specifies whether RNI enhanced metrics are enabled for the Resolver endpoints. When set to true, one-minute granular metrics are published in CloudWatch for each RNI associated with this endpoint. When set to false, metrics are not published. Default is false.</p><note>
/// <p>Standard CloudWatch pricing and charges are applied for using the Route 53 Resolver endpoint RNI enhanced metrics. For more information, see <a href="https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/monitoring-resolver-with-cloudwatch.html">Detailed metrics</a>.</p>
/// </note>
pub fn set_rni_enhanced_metrics_enabled(mut self, input: ::std::option::Option<bool>) -> Self {
self.rni_enhanced_metrics_enabled = input;
self
}
/// <p>Specifies whether RNI enhanced metrics are enabled for the Resolver endpoints. When set to true, one-minute granular metrics are published in CloudWatch for each RNI associated with this endpoint. When set to false, metrics are not published. Default is false.</p><note>
/// <p>Standard CloudWatch pricing and charges are applied for using the Route 53 Resolver endpoint RNI enhanced metrics. For more information, see <a href="https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/monitoring-resolver-with-cloudwatch.html">Detailed metrics</a>.</p>
/// </note>
pub fn get_rni_enhanced_metrics_enabled(&self) -> &::std::option::Option<bool> {
&self.rni_enhanced_metrics_enabled
}
/// <p>Specifies whether target name server metrics are enabled for the outbound Resolver endpoints. When set to true, one-minute granular metrics are published in CloudWatch for each target name server associated with this endpoint. When set to false, metrics are not published. Default is false. This is not supported for inbound Resolver endpoints.</p><note>
/// <p>Standard CloudWatch pricing and charges are applied for using the Route 53 Resolver endpoint target name server metrics. For more information, see <a href="https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/monitoring-resolver-with-cloudwatch.html">Detailed metrics</a>.</p>
/// </note>
pub fn target_name_server_metrics_enabled(mut self, input: bool) -> Self {
self.target_name_server_metrics_enabled = ::std::option::Option::Some(input);
self
}
/// <p>Specifies whether target name server metrics are enabled for the outbound Resolver endpoints. When set to true, one-minute granular metrics are published in CloudWatch for each target name server associated with this endpoint. When set to false, metrics are not published. Default is false. This is not supported for inbound Resolver endpoints.</p><note>
/// <p>Standard CloudWatch pricing and charges are applied for using the Route 53 Resolver endpoint target name server metrics. For more information, see <a href="https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/monitoring-resolver-with-cloudwatch.html">Detailed metrics</a>.</p>
/// </note>
pub fn set_target_name_server_metrics_enabled(mut self, input: ::std::option::Option<bool>) -> Self {
self.target_name_server_metrics_enabled = input;
self
}
/// <p>Specifies whether target name server metrics are enabled for the outbound Resolver endpoints. When set to true, one-minute granular metrics are published in CloudWatch for each target name server associated with this endpoint. When set to false, metrics are not published. Default is false. This is not supported for inbound Resolver endpoints.</p><note>
/// <p>Standard CloudWatch pricing and charges are applied for using the Route 53 Resolver endpoint target name server metrics. For more information, see <a href="https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/monitoring-resolver-with-cloudwatch.html">Detailed metrics</a>.</p>
/// </note>
pub fn get_target_name_server_metrics_enabled(&self) -> &::std::option::Option<bool> {
&self.target_name_server_metrics_enabled
}
/// <p>Specifies whether DNS64 is enabled for the inbound Resolver endpoint. When set to <code>true</code>, Route 53 Resolver synthesizes AAAA (IPv6) records for IPv4-only services by prepending the <code>64:ff9b::/96</code> prefix to the IPv4 address. This enables IPv6-only clients that send queries through the inbound endpoint to reach IPv4-only services. DNS64 works with NAT64 to provide complete IPv6-to-IPv4 translation. Default is false.</p>
pub fn dns64_enabled(mut self, input: bool) -> Self {
self.dns64_enabled = ::std::option::Option::Some(input);
self
}
/// <p>Specifies whether DNS64 is enabled for the inbound Resolver endpoint. When set to <code>true</code>, Route 53 Resolver synthesizes AAAA (IPv6) records for IPv4-only services by prepending the <code>64:ff9b::/96</code> prefix to the IPv4 address. This enables IPv6-only clients that send queries through the inbound endpoint to reach IPv4-only services. DNS64 works with NAT64 to provide complete IPv6-to-IPv4 translation. Default is false.</p>
pub fn set_dns64_enabled(mut self, input: ::std::option::Option<bool>) -> Self {
self.dns64_enabled = input;
self
}
/// <p>Specifies whether DNS64 is enabled for the inbound Resolver endpoint. When set to <code>true</code>, Route 53 Resolver synthesizes AAAA (IPv6) records for IPv4-only services by prepending the <code>64:ff9b::/96</code> prefix to the IPv4 address. This enables IPv6-only clients that send queries through the inbound endpoint to reach IPv4-only services. DNS64 works with NAT64 to provide complete IPv6-to-IPv4 translation. Default is false.</p>
pub fn get_dns64_enabled(&self) -> &::std::option::Option<bool> {
&self.dns64_enabled
}
/// <p>Specifies whether IPv6 internet access is enabled for the outbound Resolver endpoint. When set to <code>true</code>, the endpoint elastic network interfaces (ENIs) can forward DNS queries to public IPv6 targets through an internet gateway. Default is false.</p><important>
/// <p>When you enable IPv6 internet access, use network controls like security groups, NACLs, or egress-only internet gateways to protect the endpoint ENIs from unsolicited ingress traffic. Be aware that some network controls can affect DNS query throughput due to connection tracking. For more information, see <a href="https://docs.aws.amazon.com/ec2/latest/userguide/security-group-connection-tracking.html">Amazon EC2 security group connection tracking</a> and <a href="https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/best-practices-resolver-endpoint-scaling.html">Resolver endpoint scaling</a>.</p>
/// </important>
pub fn ipv6_internet_access_enabled(mut self, input: bool) -> Self {
self.ipv6_internet_access_enabled = ::std::option::Option::Some(input);
self
}
/// <p>Specifies whether IPv6 internet access is enabled for the outbound Resolver endpoint. When set to <code>true</code>, the endpoint elastic network interfaces (ENIs) can forward DNS queries to public IPv6 targets through an internet gateway. Default is false.</p><important>
/// <p>When you enable IPv6 internet access, use network controls like security groups, NACLs, or egress-only internet gateways to protect the endpoint ENIs from unsolicited ingress traffic. Be aware that some network controls can affect DNS query throughput due to connection tracking. For more information, see <a href="https://docs.aws.amazon.com/ec2/latest/userguide/security-group-connection-tracking.html">Amazon EC2 security group connection tracking</a> and <a href="https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/best-practices-resolver-endpoint-scaling.html">Resolver endpoint scaling</a>.</p>
/// </important>
pub fn set_ipv6_internet_access_enabled(mut self, input: ::std::option::Option<bool>) -> Self {
self.ipv6_internet_access_enabled = input;
self
}
/// <p>Specifies whether IPv6 internet access is enabled for the outbound Resolver endpoint. When set to <code>true</code>, the endpoint elastic network interfaces (ENIs) can forward DNS queries to public IPv6 targets through an internet gateway. Default is false.</p><important>
/// <p>When you enable IPv6 internet access, use network controls like security groups, NACLs, or egress-only internet gateways to protect the endpoint ENIs from unsolicited ingress traffic. Be aware that some network controls can affect DNS query throughput due to connection tracking. For more information, see <a href="https://docs.aws.amazon.com/ec2/latest/userguide/security-group-connection-tracking.html">Amazon EC2 security group connection tracking</a> and <a href="https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/best-practices-resolver-endpoint-scaling.html">Resolver endpoint scaling</a>.</p>
/// </important>
pub fn get_ipv6_internet_access_enabled(&self) -> &::std::option::Option<bool> {
&self.ipv6_internet_access_enabled
}
/// Consumes the builder and constructs a [`CreateResolverEndpointInput`](crate::operation::create_resolver_endpoint::CreateResolverEndpointInput).
pub fn build(
self,
) -> ::std::result::Result<
crate::operation::create_resolver_endpoint::CreateResolverEndpointInput,
::aws_smithy_types::error::operation::BuildError,
> {
::std::result::Result::Ok(crate::operation::create_resolver_endpoint::CreateResolverEndpointInput {
creator_request_id: self.creator_request_id,
name: self.name,
security_group_ids: self.security_group_ids,
direction: self.direction,
ip_addresses: self.ip_addresses,
outpost_arn: self.outpost_arn,
preferred_instance_type: self.preferred_instance_type,
tags: self.tags,
resolver_endpoint_type: self.resolver_endpoint_type,
protocols: self.protocols,
rni_enhanced_metrics_enabled: self.rni_enhanced_metrics_enabled,
target_name_server_metrics_enabled: self.target_name_server_metrics_enabled,
dns64_enabled: self.dns64_enabled,
ipv6_internet_access_enabled: self.ipv6_internet_access_enabled,
})
}
}