AWS Security ChangesHomeSearch

AWS AWSCloudFormation documentation change

Service: AWSCloudFormation · 2026-04-25 · Documentation low

File: AWSCloudFormation/latest/TemplateReference/aws-resource-ec2-clientvpnroute.md

Summary

Added markdown link and clarified TargetVpcSubnetId requirements for VPC-based vs Transit Gateway-based Client VPN endpoints

Security assessment

This change clarifies documentation about when TargetVpcSubnetId is required for different VPN endpoint types. No security vulnerabilities or security features are addressed.

Diff

diff --git a/AWSCloudFormation/latest/TemplateReference/aws-resource-ec2-clientvpnroute.md b/AWSCloudFormation/latest/TemplateReference/aws-resource-ec2-clientvpnroute.md
index 624a8efb8..900733fb3 100644
--- a//AWSCloudFormation/latest/TemplateReference/aws-resource-ec2-clientvpnroute.md
+++ b//AWSCloudFormation/latest/TemplateReference/aws-resource-ec2-clientvpnroute.md
@@ -0,0 +1,2 @@
+[View a markdown version of this page](aws-resource-ec2-clientvpnroute.md)
+
@@ -94,0 +97,2 @@ Alternatively, if you're adding a route for the local network, specify `local`.
+This parameter is required for VPC-based Client VPN endpoints. For Transit Gateway-based endpoints, this parameter is not required.
+
@@ -152 +156 @@ To use the Amazon Web Services Documentation, Javascript must be enabled. Please
-TagSpecification
+TransitGatewayConfiguration