113 CloudFormation resource types available for EC2.
AWS::EC2::CapacityManagerDataExportResource Type definition for AWS::EC2::CapacityManagerDataExport
AWS::EC2::CapacityReservationResource Type definition for AWS::EC2::CapacityReservation
AWS::EC2::CapacityReservationFleetResource Type definition for AWS::EC2::CapacityReservationFleet
AWS::EC2::CarrierGatewayResource Type definition for Carrier Gateway which describes the Carrier Gateway resource
AWS::EC2::ClientVpnAuthorizationRuleResource Type definition for AWS::EC2::ClientVpnAuthorizationRule
AWS::EC2::ClientVpnEndpointResource Type definition for AWS::EC2::ClientVpnEndpoint
AWS::EC2::ClientVpnRouteResource Type definition for AWS::EC2::ClientVpnRoute
AWS::EC2::ClientVpnTargetNetworkAssociationResource Type definition for AWS::EC2::ClientVpnTargetNetworkAssociation
AWS::EC2::CustomerGatewaySpecifies a customer gateway.
AWS::EC2::DHCPOptionsResource Type definition for AWS::EC2::DHCPOptions
AWS::EC2::EC2FleetResource Type definition for AWS::EC2::EC2Fleet
AWS::EC2::EgressOnlyInternetGatewayResource Type definition for AWS::EC2::EgressOnlyInternetGateway
AWS::EC2::EIPSpecifies an Elastic IP (EIP) address and can, optionally, associate it with an Amazon EC2 instance. You can allocate an Elastic IP address from an address pool owned by AWS or from an address pool c
AWS::EC2::EIPAssociationAssociates an Elastic IP address with an instance or a network interface. Before you can use an Elastic IP address, you must allocate it to your account. For more information about working with Elasti
AWS::EC2::EnclaveCertificateIamRoleAssociationAssociates an AWS Identity and Access Management (IAM) role with an AWS Certificate Manager (ACM) certificate. This association is based on Amazon Resource Names and it enables the certificate to be u
AWS::EC2::FlowLogSpecifies a VPC flow log, which enables you to capture IP traffic for a specific network interface, subnet, or VPC.
AWS::EC2::GatewayRouteTableAssociationAssociates a gateway with a route table. The gateway and route table must be in the same VPC. This association causes the incoming traffic to the gateway to be routed according to the routes in the ro
AWS::EC2::HostResource Type definition for AWS::EC2::Host
AWS::EC2::InstanceResource Type definition for AWS::EC2::Instance
AWS::EC2::InstanceConnectEndpointResource Type definition for AWS::EC2::InstanceConnectEndpoint
AWS::EC2::InternetGatewayAllocates an internet gateway for use with a VPC. After creating the Internet gateway, you then attach it to a VPC.
AWS::EC2::IPAMResource Schema of AWS::EC2::IPAM Type
AWS::EC2::IPAMAllocationResource Schema of AWS::EC2::IPAMAllocation Type
AWS::EC2::IPAMPoolResource Schema of AWS::EC2::IPAMPool Type
AWS::EC2::IPAMPoolCidrResource Schema of AWS::EC2::IPAMPoolCidr Type
AWS::EC2::IPAMPrefixListResolverResource Type definition for AWS::EC2::IPAMPrefixListResolver
AWS::EC2::IPAMPrefixListResolverTargetResource Type definition for AWS::EC2::IPAMPrefixListResolverTarget
AWS::EC2::IPAMResourceDiscoveryResource Schema of AWS::EC2::IPAMResourceDiscovery Type
AWS::EC2::IPAMResourceDiscoveryAssociationResource Schema of AWS::EC2::IPAMResourceDiscoveryAssociation Type
AWS::EC2::IPAMScopeResource Schema of AWS::EC2::IPAMScope Type
AWS::EC2::IpPoolRouteTableAssociationResource Type definition for AWS::EC2::IpPoolRouteTableAssociation
AWS::EC2::KeyPairSpecifies a key pair for use with an EC2long instance as follows: + To import an existing key pair, include the PublicKeyMaterial property. + To create a new key pair, omit the PublicKeyMa
AWS::EC2::LaunchTemplateSpecifies the properties for creating a launch template. The minimum required properties for specifying a launch template are as follows: + You must specify at least one property for the launch te
AWS::EC2::LocalGatewayRouteResource Type definition for Local Gateway Route which describes a route for a local gateway route table.
AWS::EC2::LocalGatewayRouteTableResource Type definition for Local Gateway Route Table which describes a route table for a local gateway.
AWS::EC2::LocalGatewayRouteTableVirtualInterfaceGroupAssociationResource Type definition for Local Gateway Route Table Virtual Interface Group Association which describes a local gateway route table virtual interface group association for a local gateway.
AWS::EC2::LocalGatewayRouteTableVPCAssociationResource Type definition for Local Gateway Route Table VPC Association which describes an association between a local gateway route table and a VPC.
AWS::EC2::LocalGatewayVirtualInterfaceResource Type definition for Local Gateway Virtual Interface which describes a virtual interface for AWS Outposts local gateways.
AWS::EC2::LocalGatewayVirtualInterfaceGroupResource Type definition for LocalGatewayVirtualInterfaceGroup which describes a group of LocalGateway VirtualInterfaces
AWS::EC2::NatGatewaySpecifies a network address translation (NAT) gateway in the specified subnet. You can create either a public NAT gateway or a private NAT gateway. The default is a public NAT gateway. If you create a
AWS::EC2::NetworkAclSpecifies a network ACL for your VPC. To add a network ACL entry, see [AWS::EC2::NetworkAclEntry](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkaclentry.html)
AWS::EC2::NetworkAclEntryResource Type definition for AWS::EC2::NetworkAclEntry
AWS::EC2::NetworkInsightsAccessScopeResource schema for AWS::EC2::NetworkInsightsAccessScope
AWS::EC2::NetworkInsightsAccessScopeAnalysisResource schema for AWS::EC2::NetworkInsightsAccessScopeAnalysis
AWS::EC2::NetworkInsightsAnalysisResource schema for AWS::EC2::NetworkInsightsAnalysis
AWS::EC2::NetworkInsightsPathResource schema for AWS::EC2::NetworkInsightsPath
AWS::EC2::NetworkInterfaceThe AWS::EC2::NetworkInterface resource creates network interface
AWS::EC2::NetworkInterfaceAttachmentAttaches an elastic network interface (ENI) to an Amazon EC2 instance. You can use this resource type to attach additional network interfaces to an instance without interruption.
AWS::EC2::NetworkInterfacePermissionResource Type definition for AWS::EC2::NetworkInterfacePermission
AWS::EC2::NetworkPerformanceMetricSubscriptionResource Type definition for AWS::EC2::NetworkPerformanceMetricSubscription
AWS::EC2::PlacementGroupResource Type definition for AWS::EC2::PlacementGroup
AWS::EC2::PrefixListResource schema of AWS::EC2::PrefixList Type
AWS::EC2::RouteSpecifies a route in a route table. For more information, see [Routes](https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Route_Tables.html#route-table-routes) in the *Amazon VPC User Guide*. You m
AWS::EC2::RouteServerVPC Route Server
AWS::EC2::RouteServerAssociationVPC Route Server Association
AWS::EC2::RouteServerEndpointVPC Route Server Endpoint
AWS::EC2::RouteServerPeerVPC Route Server Peer
AWS::EC2::RouteServerPropagationVPC Route Server Propagation
AWS::EC2::RouteTableSpecifies a route table for the specified VPC. After you create a route table, you can add routes and associate the table with a subnet. For more information, see [Route tables](https://docs.aws.amaz
AWS::EC2::SecurityGroupResource Type definition for AWS::EC2::SecurityGroup
AWS::EC2::SecurityGroupEgressAdds the specified outbound (egress) rule to a security group. An outbound rule permits instances to send traffic to the specified IPv4 or IPv6 address range, the IP addresses that are specified by a
AWS::EC2::SecurityGroupIngressResource Type definition for AWS::EC2::SecurityGroupIngress
AWS::EC2::SecurityGroupVpcAssociationResource type definition for the AWS::EC2::SecurityGroupVpcAssociation resource
AWS::EC2::SnapshotBlockPublicAccessResource Type definition for AWS::EC2::SnapshotBlockPublicAccess
AWS::EC2::SpotFleetResource Type definition for AWS::EC2::SpotFleet
AWS::EC2::SqlHaStandbyDetectedInstanceResource Type definition for AWS::EC2::SqlHaStandbyDetectedInstance
AWS::EC2::SubnetSpecifies a subnet for the specified VPC. For an IPv4 only subnet, specify an IPv4 CIDR block. If the VPC has an IPv6 CIDR block, you can create an IPv6 only subnet or a dual stack subnet instead. Fo
AWS::EC2::SubnetCidrBlockThe AWS::EC2::SubnetCidrBlock resource creates association between subnet and IPv6 CIDR
AWS::EC2::SubnetNetworkAclAssociationResource Type definition for AWS::EC2::SubnetNetworkAclAssociation
AWS::EC2::SubnetRouteTableAssociationAssociates a subnet with a route table. The subnet and route table must be in the same VPC. This association causes traffic originating from the subnet to be routed according to the routes in the rout
AWS::EC2::TrafficMirrorFilterResource schema for AWS::EC2::TrafficMirrorFilter
AWS::EC2::TrafficMirrorFilterRuleResource Type definition for for AWS::EC2::TrafficMirrorFilterRule
AWS::EC2::TrafficMirrorSessionResource schema for AWS::EC2::TrafficMirrorSession
AWS::EC2::TrafficMirrorTargetThe description of the Traffic Mirror target.
AWS::EC2::TransitGatewayResource Type definition for AWS::EC2::TransitGateway
AWS::EC2::TransitGatewayAttachmentResource Type definition for AWS::EC2::TransitGatewayAttachment
AWS::EC2::TransitGatewayConnectThe AWS::EC2::TransitGatewayConnect type
AWS::EC2::TransitGatewayConnectPeerResource Type definition for AWS::EC2::TransitGatewayConnectPeer
AWS::EC2::TransitGatewayMeteringPolicyAWS::EC2::TransitGatewayMeteringPolicy Resource Definition
AWS::EC2::TransitGatewayMeteringPolicyEntryAWS::EC2::TransitGatewayMeteringPolicyEntry Resource Definition
AWS::EC2::TransitGatewayMulticastDomainThe AWS::EC2::TransitGatewayMulticastDomain type
AWS::EC2::TransitGatewayMulticastDomainAssociationThe AWS::EC2::TransitGatewayMulticastDomainAssociation type
AWS::EC2::TransitGatewayMulticastGroupMemberThe AWS::EC2::TransitGatewayMulticastGroupMember registers and deregisters members and sources (network interfaces) with the transit gateway multicast group
AWS::EC2::TransitGatewayMulticastGroupSourceThe AWS::EC2::TransitGatewayMulticastGroupSource registers and deregisters members and sources (network interfaces) with the transit gateway multicast group
AWS::EC2::TransitGatewayPeeringAttachmentThe AWS::EC2::TransitGatewayPeeringAttachment type
AWS::EC2::TransitGatewayRouteResource Type definition for AWS::EC2::TransitGatewayRoute
AWS::EC2::TransitGatewayRouteTableResource Type definition for AWS::EC2::TransitGatewayRouteTable
AWS::EC2::TransitGatewayRouteTableAssociationResource Type definition for AWS::EC2::TransitGatewayRouteTableAssociation
AWS::EC2::TransitGatewayRouteTablePropagationAWS::EC2::TransitGatewayRouteTablePropagation Type
AWS::EC2::TransitGatewayVpcAttachmentResource Type definition for AWS::EC2::TransitGatewayVpcAttachment
AWS::EC2::VerifiedAccessEndpointThe AWS::EC2::VerifiedAccessEndpoint resource creates an AWS EC2 Verified Access Endpoint.
AWS::EC2::VerifiedAccessGroupThe AWS::EC2::VerifiedAccessGroup resource creates an AWS EC2 Verified Access Group.
AWS::EC2::VerifiedAccessInstanceThe AWS::EC2::VerifiedAccessInstance resource creates an AWS EC2 Verified Access Instance.
AWS::EC2::VerifiedAccessTrustProviderThe AWS::EC2::VerifiedAccessTrustProvider type describes a verified access trust provider
AWS::EC2::VolumeSpecifies an Amazon Elastic Block Store (Amazon EBS) volume. You can create an empty volume, a volume from a snapshot, or a volume copy from an existing source volume. + When you use CFNlong to up
AWS::EC2::VolumeAttachmentAttaches an Amazon EBS volume to a running instance and exposes it to the instance with the specified device name. Before this resource can be deleted (and therefore the volume detached), you must fi
AWS::EC2::VPCSpecifies a virtual private cloud (VPC). To add an IPv6 CIDR block to the VPC, see [AWS::EC2::VPCCidrBlock](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpccidrbloc
AWS::EC2::VPCBlockPublicAccessExclusionResource Type definition for AWS::EC2::VPCBlockPublicAccessExclusion.
AWS::EC2::VPCBlockPublicAccessOptionsResource Type definition for AWS::EC2::VPCBlockPublicAccessOptions
AWS::EC2::VPCCidrBlockResource Type definition for AWS::EC2::VPCCidrBlock
AWS::EC2::VPCDHCPOptionsAssociationAssociates a set of DHCP options with a VPC, or associates no DHCP options with the VPC.
AWS::EC2::VPCEncryptionControlResource Type definition for AWS::EC2::VPCEncryptionControl
AWS::EC2::VPCEndpointSpecifies a VPC endpoint. A VPC endpoint provides a private connection between your VPC and an endpoint service. You can use an endpoint service provided by AWS, an MKT Partner, or another AWS account
AWS::EC2::VPCEndpointConnectionNotificationResource Type definition for AWS::EC2::VPCEndpointConnectionNotification
AWS::EC2::VPCEndpointServiceResource Type definition for AWS::EC2::VPCEndpointService
AWS::EC2::VPCEndpointServicePermissionsResource Type definition for AWS::EC2::VPCEndpointServicePermissions
AWS::EC2::VPCGatewayAttachmentResource Type definition for AWS::EC2::VPCGatewayAttachment
AWS::EC2::VPCPeeringConnectionResource Type definition for AWS::EC2::VPCPeeringConnection
AWS::EC2::VPNConcentratorDescribes a VPN concentrator.
AWS::EC2::VPNConnectionSpecifies a VPN connection between a virtual private gateway and a VPN customer gateway or a transit gateway and a VPN customer gateway. To specify a VPN connection between a transit gateway and cust
AWS::EC2::VPNConnectionRouteSpecifies a static route for a VPN connection between an existing virtual private gateway and a VPN customer gateway. The static route allows traffic to be routed from the virtual private gateway to t
AWS::EC2::VPNGatewaySpecifies a virtual private gateway. A virtual private gateway is the endpoint on the VPC side of your VPN connection. You can create a virtual private gateway before creating the VPC itself. For mor
AWS::EC2::VPNGatewayRoutePropagationResource Type definition for AWS::EC2::VPNGatewayRoutePropagation
Everything you need to know about EC2 on one page. HD quality, print-friendly.
Download Free Infographic