/** * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. * SPDX-License-Identifier: Apache-2.0. */ #pragma once #include #include #include #include namespace Aws { namespace Utils { namespace Json { class JsonValue; class JsonView; } // namespace Json } // namespace Utils namespace Firehose { namespace Model { /** *

The details of the VPC of the Amazon ES destination.

See Also:

* AWS * API Reference

*/ class AWS_FIREHOSE_API VpcConfiguration { public: VpcConfiguration(); VpcConfiguration(Aws::Utils::Json::JsonView jsonValue); VpcConfiguration& operator=(Aws::Utils::Json::JsonView jsonValue); Aws::Utils::Json::JsonValue Jsonize() const; /** *

The IDs of the subnets that you want Kinesis Data Firehose to use to create * ENIs in the VPC of the Amazon ES destination. Make sure that the routing tables * and inbound and outbound rules allow traffic to flow from the subnets whose IDs * are specified here to the subnets that have the destination Amazon ES endpoints. * Kinesis Data Firehose creates at least one ENI in each of the subnets that are * specified here. Do not delete or modify these ENIs.

The number of ENIs * that Kinesis Data Firehose creates in the subnets specified here scales up and * down automatically based on throughput. To enable Kinesis Data Firehose to scale * up the number of ENIs to match throughput, ensure that you have sufficient * quota. To help you calculate the quota you need, assume that Kinesis Data * Firehose can create up to three ENIs for this delivery stream for each of the * subnets specified here. For more information about ENI quota, see Network * Interfaces in the Amazon VPC Quotas topic.

*/ inline const Aws::Vector& GetSubnetIds() const{ return m_subnetIds; } /** *

The IDs of the subnets that you want Kinesis Data Firehose to use to create * ENIs in the VPC of the Amazon ES destination. Make sure that the routing tables * and inbound and outbound rules allow traffic to flow from the subnets whose IDs * are specified here to the subnets that have the destination Amazon ES endpoints. * Kinesis Data Firehose creates at least one ENI in each of the subnets that are * specified here. Do not delete or modify these ENIs.

The number of ENIs * that Kinesis Data Firehose creates in the subnets specified here scales up and * down automatically based on throughput. To enable Kinesis Data Firehose to scale * up the number of ENIs to match throughput, ensure that you have sufficient * quota. To help you calculate the quota you need, assume that Kinesis Data * Firehose can create up to three ENIs for this delivery stream for each of the * subnets specified here. For more information about ENI quota, see Network * Interfaces in the Amazon VPC Quotas topic.

*/ inline bool SubnetIdsHasBeenSet() const { return m_subnetIdsHasBeenSet; } /** *

The IDs of the subnets that you want Kinesis Data Firehose to use to create * ENIs in the VPC of the Amazon ES destination. Make sure that the routing tables * and inbound and outbound rules allow traffic to flow from the subnets whose IDs * are specified here to the subnets that have the destination Amazon ES endpoints. * Kinesis Data Firehose creates at least one ENI in each of the subnets that are * specified here. Do not delete or modify these ENIs.

The number of ENIs * that Kinesis Data Firehose creates in the subnets specified here scales up and * down automatically based on throughput. To enable Kinesis Data Firehose to scale * up the number of ENIs to match throughput, ensure that you have sufficient * quota. To help you calculate the quota you need, assume that Kinesis Data * Firehose can create up to three ENIs for this delivery stream for each of the * subnets specified here. For more information about ENI quota, see Network * Interfaces in the Amazon VPC Quotas topic.

*/ inline void SetSubnetIds(const Aws::Vector& value) { m_subnetIdsHasBeenSet = true; m_subnetIds = value; } /** *

The IDs of the subnets that you want Kinesis Data Firehose to use to create * ENIs in the VPC of the Amazon ES destination. Make sure that the routing tables * and inbound and outbound rules allow traffic to flow from the subnets whose IDs * are specified here to the subnets that have the destination Amazon ES endpoints. * Kinesis Data Firehose creates at least one ENI in each of the subnets that are * specified here. Do not delete or modify these ENIs.

The number of ENIs * that Kinesis Data Firehose creates in the subnets specified here scales up and * down automatically based on throughput. To enable Kinesis Data Firehose to scale * up the number of ENIs to match throughput, ensure that you have sufficient * quota. To help you calculate the quota you need, assume that Kinesis Data * Firehose can create up to three ENIs for this delivery stream for each of the * subnets specified here. For more information about ENI quota, see Network * Interfaces in the Amazon VPC Quotas topic.

*/ inline void SetSubnetIds(Aws::Vector&& value) { m_subnetIdsHasBeenSet = true; m_subnetIds = std::move(value); } /** *

The IDs of the subnets that you want Kinesis Data Firehose to use to create * ENIs in the VPC of the Amazon ES destination. Make sure that the routing tables * and inbound and outbound rules allow traffic to flow from the subnets whose IDs * are specified here to the subnets that have the destination Amazon ES endpoints. * Kinesis Data Firehose creates at least one ENI in each of the subnets that are * specified here. Do not delete or modify these ENIs.

The number of ENIs * that Kinesis Data Firehose creates in the subnets specified here scales up and * down automatically based on throughput. To enable Kinesis Data Firehose to scale * up the number of ENIs to match throughput, ensure that you have sufficient * quota. To help you calculate the quota you need, assume that Kinesis Data * Firehose can create up to three ENIs for this delivery stream for each of the * subnets specified here. For more information about ENI quota, see Network * Interfaces in the Amazon VPC Quotas topic.

*/ inline VpcConfiguration& WithSubnetIds(const Aws::Vector& value) { SetSubnetIds(value); return *this;} /** *

The IDs of the subnets that you want Kinesis Data Firehose to use to create * ENIs in the VPC of the Amazon ES destination. Make sure that the routing tables * and inbound and outbound rules allow traffic to flow from the subnets whose IDs * are specified here to the subnets that have the destination Amazon ES endpoints. * Kinesis Data Firehose creates at least one ENI in each of the subnets that are * specified here. Do not delete or modify these ENIs.

The number of ENIs * that Kinesis Data Firehose creates in the subnets specified here scales up and * down automatically based on throughput. To enable Kinesis Data Firehose to scale * up the number of ENIs to match throughput, ensure that you have sufficient * quota. To help you calculate the quota you need, assume that Kinesis Data * Firehose can create up to three ENIs for this delivery stream for each of the * subnets specified here. For more information about ENI quota, see Network * Interfaces in the Amazon VPC Quotas topic.

*/ inline VpcConfiguration& WithSubnetIds(Aws::Vector&& value) { SetSubnetIds(std::move(value)); return *this;} /** *

The IDs of the subnets that you want Kinesis Data Firehose to use to create * ENIs in the VPC of the Amazon ES destination. Make sure that the routing tables * and inbound and outbound rules allow traffic to flow from the subnets whose IDs * are specified here to the subnets that have the destination Amazon ES endpoints. * Kinesis Data Firehose creates at least one ENI in each of the subnets that are * specified here. Do not delete or modify these ENIs.

The number of ENIs * that Kinesis Data Firehose creates in the subnets specified here scales up and * down automatically based on throughput. To enable Kinesis Data Firehose to scale * up the number of ENIs to match throughput, ensure that you have sufficient * quota. To help you calculate the quota you need, assume that Kinesis Data * Firehose can create up to three ENIs for this delivery stream for each of the * subnets specified here. For more information about ENI quota, see Network * Interfaces in the Amazon VPC Quotas topic.

*/ inline VpcConfiguration& AddSubnetIds(const Aws::String& value) { m_subnetIdsHasBeenSet = true; m_subnetIds.push_back(value); return *this; } /** *

The IDs of the subnets that you want Kinesis Data Firehose to use to create * ENIs in the VPC of the Amazon ES destination. Make sure that the routing tables * and inbound and outbound rules allow traffic to flow from the subnets whose IDs * are specified here to the subnets that have the destination Amazon ES endpoints. * Kinesis Data Firehose creates at least one ENI in each of the subnets that are * specified here. Do not delete or modify these ENIs.

The number of ENIs * that Kinesis Data Firehose creates in the subnets specified here scales up and * down automatically based on throughput. To enable Kinesis Data Firehose to scale * up the number of ENIs to match throughput, ensure that you have sufficient * quota. To help you calculate the quota you need, assume that Kinesis Data * Firehose can create up to three ENIs for this delivery stream for each of the * subnets specified here. For more information about ENI quota, see Network * Interfaces in the Amazon VPC Quotas topic.

*/ inline VpcConfiguration& AddSubnetIds(Aws::String&& value) { m_subnetIdsHasBeenSet = true; m_subnetIds.push_back(std::move(value)); return *this; } /** *

The IDs of the subnets that you want Kinesis Data Firehose to use to create * ENIs in the VPC of the Amazon ES destination. Make sure that the routing tables * and inbound and outbound rules allow traffic to flow from the subnets whose IDs * are specified here to the subnets that have the destination Amazon ES endpoints. * Kinesis Data Firehose creates at least one ENI in each of the subnets that are * specified here. Do not delete or modify these ENIs.

The number of ENIs * that Kinesis Data Firehose creates in the subnets specified here scales up and * down automatically based on throughput. To enable Kinesis Data Firehose to scale * up the number of ENIs to match throughput, ensure that you have sufficient * quota. To help you calculate the quota you need, assume that Kinesis Data * Firehose can create up to three ENIs for this delivery stream for each of the * subnets specified here. For more information about ENI quota, see Network * Interfaces in the Amazon VPC Quotas topic.

*/ inline VpcConfiguration& AddSubnetIds(const char* value) { m_subnetIdsHasBeenSet = true; m_subnetIds.push_back(value); return *this; } /** *

The ARN of the IAM role that you want the delivery stream to use to create * endpoints in the destination VPC. You can use your existing Kinesis Data * Firehose delivery role or you can specify a new role. In either case, make sure * that the role trusts the Kinesis Data Firehose service principal and that it * grants the following permissions:

  • * ec2:DescribeVpcs

  • * ec2:DescribeVpcAttribute

  • * ec2:DescribeSubnets

  • * ec2:DescribeSecurityGroups

  • * ec2:DescribeNetworkInterfaces

  • * ec2:CreateNetworkInterface

  • * ec2:CreateNetworkInterfacePermission

  • * ec2:DeleteNetworkInterface

If you revoke these * permissions after you create the delivery stream, Kinesis Data Firehose can't * scale out by creating more ENIs when necessary. You might therefore see a * degradation in performance.

*/ inline const Aws::String& GetRoleARN() const{ return m_roleARN; } /** *

The ARN of the IAM role that you want the delivery stream to use to create * endpoints in the destination VPC. You can use your existing Kinesis Data * Firehose delivery role or you can specify a new role. In either case, make sure * that the role trusts the Kinesis Data Firehose service principal and that it * grants the following permissions:

  • * ec2:DescribeVpcs

  • * ec2:DescribeVpcAttribute

  • * ec2:DescribeSubnets

  • * ec2:DescribeSecurityGroups

  • * ec2:DescribeNetworkInterfaces

  • * ec2:CreateNetworkInterface

  • * ec2:CreateNetworkInterfacePermission

  • * ec2:DeleteNetworkInterface

If you revoke these * permissions after you create the delivery stream, Kinesis Data Firehose can't * scale out by creating more ENIs when necessary. You might therefore see a * degradation in performance.

*/ inline bool RoleARNHasBeenSet() const { return m_roleARNHasBeenSet; } /** *

The ARN of the IAM role that you want the delivery stream to use to create * endpoints in the destination VPC. You can use your existing Kinesis Data * Firehose delivery role or you can specify a new role. In either case, make sure * that the role trusts the Kinesis Data Firehose service principal and that it * grants the following permissions:

  • * ec2:DescribeVpcs

  • * ec2:DescribeVpcAttribute

  • * ec2:DescribeSubnets

  • * ec2:DescribeSecurityGroups

  • * ec2:DescribeNetworkInterfaces

  • * ec2:CreateNetworkInterface

  • * ec2:CreateNetworkInterfacePermission

  • * ec2:DeleteNetworkInterface

If you revoke these * permissions after you create the delivery stream, Kinesis Data Firehose can't * scale out by creating more ENIs when necessary. You might therefore see a * degradation in performance.

*/ inline void SetRoleARN(const Aws::String& value) { m_roleARNHasBeenSet = true; m_roleARN = value; } /** *

The ARN of the IAM role that you want the delivery stream to use to create * endpoints in the destination VPC. You can use your existing Kinesis Data * Firehose delivery role or you can specify a new role. In either case, make sure * that the role trusts the Kinesis Data Firehose service principal and that it * grants the following permissions:

  • * ec2:DescribeVpcs

  • * ec2:DescribeVpcAttribute

  • * ec2:DescribeSubnets

  • * ec2:DescribeSecurityGroups

  • * ec2:DescribeNetworkInterfaces

  • * ec2:CreateNetworkInterface

  • * ec2:CreateNetworkInterfacePermission

  • * ec2:DeleteNetworkInterface

If you revoke these * permissions after you create the delivery stream, Kinesis Data Firehose can't * scale out by creating more ENIs when necessary. You might therefore see a * degradation in performance.

*/ inline void SetRoleARN(Aws::String&& value) { m_roleARNHasBeenSet = true; m_roleARN = std::move(value); } /** *

The ARN of the IAM role that you want the delivery stream to use to create * endpoints in the destination VPC. You can use your existing Kinesis Data * Firehose delivery role or you can specify a new role. In either case, make sure * that the role trusts the Kinesis Data Firehose service principal and that it * grants the following permissions:

  • * ec2:DescribeVpcs

  • * ec2:DescribeVpcAttribute

  • * ec2:DescribeSubnets

  • * ec2:DescribeSecurityGroups

  • * ec2:DescribeNetworkInterfaces

  • * ec2:CreateNetworkInterface

  • * ec2:CreateNetworkInterfacePermission

  • * ec2:DeleteNetworkInterface

If you revoke these * permissions after you create the delivery stream, Kinesis Data Firehose can't * scale out by creating more ENIs when necessary. You might therefore see a * degradation in performance.

*/ inline void SetRoleARN(const char* value) { m_roleARNHasBeenSet = true; m_roleARN.assign(value); } /** *

The ARN of the IAM role that you want the delivery stream to use to create * endpoints in the destination VPC. You can use your existing Kinesis Data * Firehose delivery role or you can specify a new role. In either case, make sure * that the role trusts the Kinesis Data Firehose service principal and that it * grants the following permissions:

  • * ec2:DescribeVpcs

  • * ec2:DescribeVpcAttribute

  • * ec2:DescribeSubnets

  • * ec2:DescribeSecurityGroups

  • * ec2:DescribeNetworkInterfaces

  • * ec2:CreateNetworkInterface

  • * ec2:CreateNetworkInterfacePermission

  • * ec2:DeleteNetworkInterface

If you revoke these * permissions after you create the delivery stream, Kinesis Data Firehose can't * scale out by creating more ENIs when necessary. You might therefore see a * degradation in performance.

*/ inline VpcConfiguration& WithRoleARN(const Aws::String& value) { SetRoleARN(value); return *this;} /** *

The ARN of the IAM role that you want the delivery stream to use to create * endpoints in the destination VPC. You can use your existing Kinesis Data * Firehose delivery role or you can specify a new role. In either case, make sure * that the role trusts the Kinesis Data Firehose service principal and that it * grants the following permissions:

  • * ec2:DescribeVpcs

  • * ec2:DescribeVpcAttribute

  • * ec2:DescribeSubnets

  • * ec2:DescribeSecurityGroups

  • * ec2:DescribeNetworkInterfaces

  • * ec2:CreateNetworkInterface

  • * ec2:CreateNetworkInterfacePermission

  • * ec2:DeleteNetworkInterface

If you revoke these * permissions after you create the delivery stream, Kinesis Data Firehose can't * scale out by creating more ENIs when necessary. You might therefore see a * degradation in performance.

*/ inline VpcConfiguration& WithRoleARN(Aws::String&& value) { SetRoleARN(std::move(value)); return *this;} /** *

The ARN of the IAM role that you want the delivery stream to use to create * endpoints in the destination VPC. You can use your existing Kinesis Data * Firehose delivery role or you can specify a new role. In either case, make sure * that the role trusts the Kinesis Data Firehose service principal and that it * grants the following permissions:

  • * ec2:DescribeVpcs

  • * ec2:DescribeVpcAttribute

  • * ec2:DescribeSubnets

  • * ec2:DescribeSecurityGroups

  • * ec2:DescribeNetworkInterfaces

  • * ec2:CreateNetworkInterface

  • * ec2:CreateNetworkInterfacePermission

  • * ec2:DeleteNetworkInterface

If you revoke these * permissions after you create the delivery stream, Kinesis Data Firehose can't * scale out by creating more ENIs when necessary. You might therefore see a * degradation in performance.

*/ inline VpcConfiguration& WithRoleARN(const char* value) { SetRoleARN(value); return *this;} /** *

The IDs of the security groups that you want Kinesis Data Firehose to use * when it creates ENIs in the VPC of the Amazon ES destination. You can use the * same security group that the Amazon ES domain uses or different ones. If you * specify different security groups here, ensure that they allow outbound HTTPS * traffic to the Amazon ES domain's security group. Also ensure that the Amazon ES * domain's security group allows HTTPS traffic from the security groups specified * here. If you use the same security group for both your delivery stream and the * Amazon ES domain, make sure the security group inbound rule allows HTTPS * traffic. For more information about security group rules, see Security * group rules in the Amazon VPC documentation.

*/ inline const Aws::Vector& GetSecurityGroupIds() const{ return m_securityGroupIds; } /** *

The IDs of the security groups that you want Kinesis Data Firehose to use * when it creates ENIs in the VPC of the Amazon ES destination. You can use the * same security group that the Amazon ES domain uses or different ones. If you * specify different security groups here, ensure that they allow outbound HTTPS * traffic to the Amazon ES domain's security group. Also ensure that the Amazon ES * domain's security group allows HTTPS traffic from the security groups specified * here. If you use the same security group for both your delivery stream and the * Amazon ES domain, make sure the security group inbound rule allows HTTPS * traffic. For more information about security group rules, see Security * group rules in the Amazon VPC documentation.

*/ inline bool SecurityGroupIdsHasBeenSet() const { return m_securityGroupIdsHasBeenSet; } /** *

The IDs of the security groups that you want Kinesis Data Firehose to use * when it creates ENIs in the VPC of the Amazon ES destination. You can use the * same security group that the Amazon ES domain uses or different ones. If you * specify different security groups here, ensure that they allow outbound HTTPS * traffic to the Amazon ES domain's security group. Also ensure that the Amazon ES * domain's security group allows HTTPS traffic from the security groups specified * here. If you use the same security group for both your delivery stream and the * Amazon ES domain, make sure the security group inbound rule allows HTTPS * traffic. For more information about security group rules, see Security * group rules in the Amazon VPC documentation.

*/ inline void SetSecurityGroupIds(const Aws::Vector& value) { m_securityGroupIdsHasBeenSet = true; m_securityGroupIds = value; } /** *

The IDs of the security groups that you want Kinesis Data Firehose to use * when it creates ENIs in the VPC of the Amazon ES destination. You can use the * same security group that the Amazon ES domain uses or different ones. If you * specify different security groups here, ensure that they allow outbound HTTPS * traffic to the Amazon ES domain's security group. Also ensure that the Amazon ES * domain's security group allows HTTPS traffic from the security groups specified * here. If you use the same security group for both your delivery stream and the * Amazon ES domain, make sure the security group inbound rule allows HTTPS * traffic. For more information about security group rules, see Security * group rules in the Amazon VPC documentation.

*/ inline void SetSecurityGroupIds(Aws::Vector&& value) { m_securityGroupIdsHasBeenSet = true; m_securityGroupIds = std::move(value); } /** *

The IDs of the security groups that you want Kinesis Data Firehose to use * when it creates ENIs in the VPC of the Amazon ES destination. You can use the * same security group that the Amazon ES domain uses or different ones. If you * specify different security groups here, ensure that they allow outbound HTTPS * traffic to the Amazon ES domain's security group. Also ensure that the Amazon ES * domain's security group allows HTTPS traffic from the security groups specified * here. If you use the same security group for both your delivery stream and the * Amazon ES domain, make sure the security group inbound rule allows HTTPS * traffic. For more information about security group rules, see Security * group rules in the Amazon VPC documentation.

*/ inline VpcConfiguration& WithSecurityGroupIds(const Aws::Vector& value) { SetSecurityGroupIds(value); return *this;} /** *

The IDs of the security groups that you want Kinesis Data Firehose to use * when it creates ENIs in the VPC of the Amazon ES destination. You can use the * same security group that the Amazon ES domain uses or different ones. If you * specify different security groups here, ensure that they allow outbound HTTPS * traffic to the Amazon ES domain's security group. Also ensure that the Amazon ES * domain's security group allows HTTPS traffic from the security groups specified * here. If you use the same security group for both your delivery stream and the * Amazon ES domain, make sure the security group inbound rule allows HTTPS * traffic. For more information about security group rules, see Security * group rules in the Amazon VPC documentation.

*/ inline VpcConfiguration& WithSecurityGroupIds(Aws::Vector&& value) { SetSecurityGroupIds(std::move(value)); return *this;} /** *

The IDs of the security groups that you want Kinesis Data Firehose to use * when it creates ENIs in the VPC of the Amazon ES destination. You can use the * same security group that the Amazon ES domain uses or different ones. If you * specify different security groups here, ensure that they allow outbound HTTPS * traffic to the Amazon ES domain's security group. Also ensure that the Amazon ES * domain's security group allows HTTPS traffic from the security groups specified * here. If you use the same security group for both your delivery stream and the * Amazon ES domain, make sure the security group inbound rule allows HTTPS * traffic. For more information about security group rules, see Security * group rules in the Amazon VPC documentation.

*/ inline VpcConfiguration& AddSecurityGroupIds(const Aws::String& value) { m_securityGroupIdsHasBeenSet = true; m_securityGroupIds.push_back(value); return *this; } /** *

The IDs of the security groups that you want Kinesis Data Firehose to use * when it creates ENIs in the VPC of the Amazon ES destination. You can use the * same security group that the Amazon ES domain uses or different ones. If you * specify different security groups here, ensure that they allow outbound HTTPS * traffic to the Amazon ES domain's security group. Also ensure that the Amazon ES * domain's security group allows HTTPS traffic from the security groups specified * here. If you use the same security group for both your delivery stream and the * Amazon ES domain, make sure the security group inbound rule allows HTTPS * traffic. For more information about security group rules, see Security * group rules in the Amazon VPC documentation.

*/ inline VpcConfiguration& AddSecurityGroupIds(Aws::String&& value) { m_securityGroupIdsHasBeenSet = true; m_securityGroupIds.push_back(std::move(value)); return *this; } /** *

The IDs of the security groups that you want Kinesis Data Firehose to use * when it creates ENIs in the VPC of the Amazon ES destination. You can use the * same security group that the Amazon ES domain uses or different ones. If you * specify different security groups here, ensure that they allow outbound HTTPS * traffic to the Amazon ES domain's security group. Also ensure that the Amazon ES * domain's security group allows HTTPS traffic from the security groups specified * here. If you use the same security group for both your delivery stream and the * Amazon ES domain, make sure the security group inbound rule allows HTTPS * traffic. For more information about security group rules, see Security * group rules in the Amazon VPC documentation.

*/ inline VpcConfiguration& AddSecurityGroupIds(const char* value) { m_securityGroupIdsHasBeenSet = true; m_securityGroupIds.push_back(value); return *this; } private: Aws::Vector m_subnetIds; bool m_subnetIdsHasBeenSet; Aws::String m_roleARN; bool m_roleARNHasBeenSet; Aws::Vector m_securityGroupIds; bool m_securityGroupIdsHasBeenSet; }; } // namespace Model } // namespace Firehose } // namespace Aws