security-group
devops4me/security-group/aws
This module refactors repetitive security group definitions and can compact 200 lines into 5.
Create Security Group Rules | Terraform Module You avoid hundreds of lines of similar security group definitions by using this rule creation module. In just one line with words like ssh, https, sftp, rabbitmq, openvpn or all-traffic you specify every AWS security group rule that you need. This module always creates a new security group because Terraform cannot correctly adopt the VPC's default security group - it exhibits problems setting the descriptions and fails as it attempts to destroy it. Usage module security_group { source = "devops4me/security-group/aws" version = "~> 1.0.0" in_ingress = [ "ssh", "http", "https" ] in_vpc_id = module.vpc.out_vpc_id } resource aws_instance ec2 { vpc_security_group_ids = [ module.security_group.out_security_group_id ] } out_security_group_id is the f
| Name | Type | Description | Default |
|---|---|---|---|
| in_vpc_id | string | Mandatory umbrella vpc the security group falls under which reverts to the defau | |
| in_ingress | list | 4 element list defining traffic to allow in (see traffic-rules.tf) | [
"ssh"
] |
| in_mandated_tags | map | Optional tags unless your organization mandates that a set of given tags must be | {} |
| in_ingress_cidr_blocks | list | The IPv4 CIDR ranges from which traffic is allowed to originate. | [
"0.0.0.0/0"
] |
| in_egress_cidr_blocks | list | List of IPv4 CIDR ranges to use on all egress rules | [
"0.0.0.0/0"
] |
| in_ecosystem | string | Creational stamp binding all infrastructure components created on behalf of this | "security-grp" |
| in_timestamp | string | A timestamp for resource tags in the format ymmdd-hhmm like 80911-1435 | "timestamp" |
| in_description | string | Ubiquitous note detailing who, when, where and why for every infrastructure comp | "This VPC network was created for an eco |
| rules | map( list( string ) ) | {
"all-traffic": [
"-1",
"-1", | |
| in_egress | list | 4 element list defining traffic to allow out (see traffic-rules.tf) | [
"all-traffic"
] |
out_security_group_id — The string ID of either the default security group or the just created new one.Terraform module to deploy landing zone subscriptions (and much more) in Azure
Terraform Azure Verified Pattern Module for Azure Landing Zone
Terraform Azure Verified Resource Module for Key Vault
Terraform module for building and deploying Next.js apps to AWS. Supports SSR (L