BlockPublicAccessStates - Amazon Elastic Compute Cloud
ContentsSee Also
This documentation is a draft for private preview for regions in the AWS European Sovereign Cloud. Documentation content will continue to evolve. Published: December 30, 2025.

BlockPublicAccessStates

The state of VPC Block Public Access (BPA).

Contents

internetGatewayBlockMode

The mode of VPC BPA.

  • off: VPC BPA is not enabled and traffic is allowed to and from internet gateways and egress-only internet gateways in this Region.

  • block-bidirectional: Block all traffic to and from internet gateways and egress-only internet gateways in this Region (except for excluded VPCs and subnets).

  • block-ingress: Block all internet traffic to the VPCs in this Region (except for VPCs or subnets which are excluded). Only traffic to and from NAT gateways and egress-only internet gateways is allowed because these gateways only allow outbound connections to be established.

Type: String

Valid Values: off | block-bidirectional | block-ingress

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: