Properties

description

  • Description of the security group.

    Can be updated without replacement.

  • Optional property.
  • Type: String

name

  • A string specifying a symbolic name for the security group, which is not required to be unique.

    Can be updated without replacement.

  • Optional property.
  • Type: String

availability_zone

  • The Availability Zone name.

    This parameter has been deprecated. If it is specified, it will be ignored.

    Updates cause replacement.

  • Optional property.
  • Type: String

rules

  • List of security group rules.

    Can be updated without replacement.

  • Optional property, defaults to "[]".
  • Type: List

  • List contents:

    • * : Map
    • Updates cause replacement.
    • Optional property.

    • Map properties:

      • direction

        • The direction in which the security group rule is applied. For a compute instance, an ingress security group rule matches traffic that is incoming (ingress) for that instance. An egress rule is applied to traffic leaving the instance.

          Updates cause replacement.

        • Optional property, defaults to "ingress".
        • Type: String
        • Allowed values: ingress, egress

      • ethertype

        • Ethertype of the traffic.

          Updates cause replacement.

        • Optional property, defaults to "IPv4".
        • Allowed values: IPv4, IPv6
        • Type: String

      • port_range_max

        • The maximum port number in the range that is matched by the security group rule. The port_range_min attribute constrains the port_range_max attribute. If the protocol is ICMP, this value must be an ICMP type.

          Updates cause replacement.

        • Optional property.
        • Type: Integer

      • port_range_min

        • The minimum port number in the range that is matched by the security group rule. If the protocol is TCP or UDP, this value must be less than or equal to the value of the port_range_max attribute. If the protocol is ICMP, this value must be an ICMP type.

          Updates cause replacement.

        • Optional property.
        • Type: Integer

      • protocol

        • The protocol that is matched by the security group rule. Valid values include tcp, udp, and icmp.

          Updates cause replacement.

        • Optional property.
        • Type: String

      • remote_group_id

        • The remote group ID to be associated with this security group rule. If no value is specified then this rule will use this security group for the remote_group_id.

          Updates cause replacement.

        • Optional property.
        • Type: String

      • remote_ip_prefix

        • The remote IP prefix (CIDR) to be associated with this security group rule.

          Updates cause replacement.

        • Optional property.
        • Type: String

      • remote_mode

        • Whether to specify a remote group or a remote IP prefix.

          Updates cause replacement.

        • Optional property, defaults to "remote_ip_prefix".
        • Type: String
        • Allowed values: remote_ip_prefix, remote_group_id

      • availability_zone

        • The Availability Zone name.

          This parameter has been deprecated. If it is specified, it will be ignored.

          Updates cause replacement.

        • Optional property.
        • Type: String