security-group
devops-workflow/security-group/aws
Terraform module which creates EC2-VPC security groups on AWS
 AWS EC2-VPC Security Group Terraform module =========================================== Terraform module which creates EC2 security group within VPC on AWS. These types of resources are supported: EC2-VPC Security Group EC2-VPC Security Group Rule Features -------- This module aims to implement ALL combinations of arguments supported by AWS and latest stable version of Terraform: IPv4/IPv6 CIDR blocks VPC endpoint prefix lists (use data source aws_prefix_list) Access from source security groups Access from self Named rules (see the rules here) Named groups of rules with ingress (inbound) and egress (outbound) ports open for common scenarios (eg, ssh, http-80, mysql, see the whole list here) Conditionally crea
| Name | Type | Description | Default |
|---|---|---|---|
| environment | any | Environment (ex: `dev`, `qa`, `stage`, `prod`). (Second or top level namespace. | |
| vpc_id | any | ID of the VPC where to create security group | |
| name | any | Base name for resource | |
| egress_with_cidr_blocks | any | List of egress rules to create where 'cidr_blocks' is used | [] |
| description | any | Description of security group | "Security Group managed by Terraform" |
| ingress_with_source_security_group_id | any | List of ingress rules to create where 'source_security_group_id' is used | [] |
| enabled | any | Set to false to prevent the module from creating anything | true |
| tags | any | A map of additional tags | {} |
| team | any | TAG: Department/team of people responsible for service | "UNDEF-SG" |
| ingress_cidr_blocks | any | List of IPv4 CIDR ranges to use on all ingress rules | [] |
| auto_groups | any | Map of groups of security group rules to use to generate modules (see update_gro | {
"carbon-relay-ng": {
"egress_rul |
| delimiter | any | Delimiter to be used between `name`, `namespaces`, `attributes`, etc. | "-" |
| rules | any | Map of known security group rules (define as 'name' = ['from port', 'to port', ' | {
"_": [
"",
"",
"",
" |
| ingress_ipv6_cidr_blocks | any | List of IPv6 CIDR ranges to use on all ingress rules | [] |
| ingress_prefix_list_ids | any | List of prefix list IDs (for allowing access to VPC endpoints) to use on all ing | [] |
| egress_prefix_list_ids | any | List of prefix list IDs (for allowing access to VPC endpoints) to use on all egr | [] |
| namespace-env | any | Prefix name with the environment. If true, format is: <env>-<name> | true |
| ingress_with_cidr_blocks | any | List of ingress rules to create where 'cidr_blocks' is used | [] |
| egress_with_self | any | List of egress rules to create where 'self' is defined | [] |
| service | any | TAG: Application (microservice) name | "UNDEF-SG" |
| ingress_with_ipv6_cidr_blocks | any | List of ingress rules to create where 'ipv6_cidr_blocks' is used | [] |
| egress_cidr_blocks | any | List of IPv4 CIDR ranges to use on all egress rules | [
"0.0.0.0/0"
] |
| egress_ipv6_cidr_blocks | any | List of IPv6 CIDR ranges to use on all egress rules | [
"::/0"
] |
egress — The egress rulesingress_rules_ids — Ingress rule IDsvpc_id — The VPC IDowner_id — The owner IDingress — The ingress rulesegress_rules_ids — Egress rule IDsid — The ID of the security groupname — The name of the security groupdescription — The description of the security groupAzure landing zones Terraform module
Terraform supermodule for the Terraform platform engineering for Azure
Terraform module to deploy landing zone subscriptions (and much more) in Azure
Terraform Module to define a consistent naming convention by (namespace, stage,