EC2 / Client / replace_network_acl_association

replace_network_acl_association#

EC2.Client.replace_network_acl_association(**kwargs)#

Changes which network ACL a subnet is associated with. By default when you create a subnet, it’s automatically associated with the default network ACL. For more information, see Network ACLs in the Amazon VPC User Guide.

This is an idempotent operation.

See also: AWS API Documentation

Request Syntax

response = client.replace_network_acl_association(
    DryRun=True|False,
    AssociationId='string',
    NetworkAclId='string'
)
Parameters:
  • DryRun (boolean) – Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.

  • AssociationId (string) –

    [REQUIRED]

    The ID of the current association between the original network ACL and the subnet.

  • NetworkAclId (string) –

    [REQUIRED]

    The ID of the new network ACL to associate with the subnet.

Return type:

dict

Returns:

Response Syntax

{
    'NewAssociationId': 'string'
}

Response Structure

  • (dict) –

    • NewAssociationId (string) –

      The ID of the new association.

Examples

This example associates the specified network ACL with the subnet for the specified network ACL association.

response = client.replace_network_acl_association(
    AssociationId='aclassoc-e5b95c8c',
    NetworkAclId='acl-5fb85d36',
)

print(response)

Expected Output:

{
    'NewAssociationId': 'aclassoc-3999875b',
    'ResponseMetadata': {
        '...': '...',
    },
}