Docs Home
dome9 1.40.3 published on Monday, Apr 14, 2025 by dome9
dome9.AwsSecurityGroup
Explore with Pulumi AI
This resource has methods to add and manage Security Groups in a cloud account that is managed by Dome9.
Example Usage
Basic usage:
Coming soon!
Coming soon!
Coming soon!
Coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.dome9.AwsSecurityGroup;
import com.pulumi.dome9.AwsSecurityGroupArgs;
import com.pulumi.dome9.inputs.AwsSecurityGroupServiceArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var awsSg = new AwsSecurityGroup("awsSg", AwsSecurityGroupArgs.builder()
.awsRegionId("aws_region_id")
.description("description")
.dome9CloudAccountId("dome9_cloud_account_id")
.dome9SecurityGroupName("dome9_security_group_name")
.services(AwsSecurityGroupServiceArgs.builder()
.inbounds(AwsSecurityGroupServiceInboundArgs.builder()
.description("DESCRIPTION")
.name("FIRST_INBOUND_SERVICE_NAME")
.openForAll(false)
.port("PORT")
.protocolType("PROTOCOL_TYPE")
.scope(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
.build())
.outbounds(AwsSecurityGroupServiceOutboundArgs.builder()
.description("DESCRIPTION")
.name("NAME")
.openForAll(true)
.port("")
.protocolType("PROTOCOL_TYPE")
.build())
.build())
.tags(Map.of("tag-key", "TAG-VALUE"))
.build());
}
}
resources:
awsSg:
type: dome9:AwsSecurityGroup
properties:
awsRegionId: aws_region_id
description: description
dome9CloudAccountId: dome9_cloud_account_id
dome9SecurityGroupName: dome9_security_group_name
services:
- inbounds:
- description: DESCRIPTION
name: FIRST_INBOUND_SERVICE_NAME
openForAll: false
port: PORT
protocolType: PROTOCOL_TYPE
scope:
- data:
cidr: CIDR
note: NOTE
type: TYPE
outbounds:
- description: DESCRIPTION
name: NAME
openForAll: true
port: ""
protocolType: PROTOCOL_TYPE
tags:
tag-key: TAG-VALUE
Example for security group circular dependencies
Coming soon!
Coming soon!
Coming soon!
Coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.dome9.AwsSecurityGroup;
import com.pulumi.dome9.AwsSecurityGroupArgs;
import com.pulumi.dome9.CloudSecurityGroupRule;
import com.pulumi.dome9.CloudSecurityGroupRuleArgs;
import com.pulumi.dome9.inputs.CloudSecurityGroupRuleServiceArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var awsSg1AwsSecurityGroup = new AwsSecurityGroup("awsSg1AwsSecurityGroup", AwsSecurityGroupArgs.builder()
.awsRegionId("aws_region_id")
.description("description")
.dome9CloudAccountId("dome9_cloud_account_id")
.dome9SecurityGroupName("dome9_security_group_name")
.build());
var awsSg2AwsSecurityGroup = new AwsSecurityGroup("awsSg2AwsSecurityGroup", AwsSecurityGroupArgs.builder()
.awsRegionId("aws_region_id")
.description("description")
.dome9CloudAccountId("dome9_cloud_account_id")
.dome9SecurityGroupName("dome9_security_group_name")
.build());
var awsSg1CloudSecurityGroupRule = new CloudSecurityGroupRule("awsSg1CloudSecurityGroupRule", CloudSecurityGroupRuleArgs.builder()
.dome9SecurityGroupId(awsSg1AwsSecurityGroup.awsSecurityGroupId())
.services(CloudSecurityGroupRuleServiceArgs.builder()
.outbounds(CloudSecurityGroupRuleServiceOutboundArgs.builder()
.description("HTTPS (TCP)")
.name("HTTPS")
.openForAll(false)
.port("8443")
.protocolType("TCP")
.scope(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
.build())
.build())
.build());
var awsSg2CloudSecurityGroupRule = new CloudSecurityGroupRule("awsSg2CloudSecurityGroupRule", CloudSecurityGroupRuleArgs.builder()
.dome9SecurityGroupId(awsSg2AwsSecurityGroup.awsSecurityGroupId())
.services(CloudSecurityGroupRuleServiceArgs.builder()
.outbounds(CloudSecurityGroupRuleServiceOutboundArgs.builder()
.description("HTTPS (TCP)")
.name("HTTPS")
.openForAll(false)
.port("8443")
.protocolType("TCP")
.scope(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
.build())
.build())
.build());
}
}
resources:
awsSg1AwsSecurityGroup:
type: dome9:AwsSecurityGroup
properties:
awsRegionId: aws_region_id
description: description
dome9CloudAccountId: dome9_cloud_account_id
dome9SecurityGroupName: dome9_security_group_name
awsSg1CloudSecurityGroupRule:
type: dome9:CloudSecurityGroupRule
properties:
dome9SecurityGroupId: ${awsSg1AwsSecurityGroup.awsSecurityGroupId}
services:
- outbounds:
- description: HTTPS (TCP)
name: HTTPS
openForAll: false
port: '8443'
protocolType: TCP
scope:
- data:
extid: ${awsSg2AwsSecurityGroup.externalId}
note: ${awsSg2AwsSecurityGroup.externalId}
type: AWS
awsSg2AwsSecurityGroup:
type: dome9:AwsSecurityGroup
properties:
awsRegionId: aws_region_id
description: description
dome9CloudAccountId: dome9_cloud_account_id
dome9SecurityGroupName: dome9_security_group_name
awsSg2CloudSecurityGroupRule:
type: dome9:CloudSecurityGroupRule
properties:
dome9SecurityGroupId: ${awsSg2AwsSecurityGroup.awsSecurityGroupId}
services:
- outbounds:
- description: HTTPS (TCP)
name: HTTPS
openForAll: false
port: '8443'
protocolType: TCP
scope:
- data:
extid: ${awsSg1AwsSecurityGroup.externalId}
note: ${awsSg1AwsSecurityGroup.externalId}
type: AWS
Create AwsSecurityGroup Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new AwsSecurityGroup(name: string, args: AwsSecurityGroupArgs, opts?: CustomResourceOptions);@overload
def AwsSecurityGroup(resource_name: str,
args: AwsSecurityGroupArgs,
opts: Optional[ResourceOptions] = None)
@overload
def AwsSecurityGroup(resource_name: str,
opts: Optional[ResourceOptions] = None,
dome9_cloud_account_id: Optional[str] = None,
dome9_security_group_name: Optional[str] = None,
aws_region_id: Optional[str] = None,
aws_security_group_id: Optional[str] = None,
description: Optional[str] = None,
is_protected: Optional[bool] = None,
services: Optional[Sequence[AwsSecurityGroupServiceArgs]] = None,
tags: Optional[Mapping[str, str]] = None,
vpc_id: Optional[str] = None,
vpc_name: Optional[str] = None)func NewAwsSecurityGroup(ctx *Context, name string, args AwsSecurityGroupArgs, opts ...ResourceOption) (*AwsSecurityGroup, error)public AwsSecurityGroup(string name, AwsSecurityGroupArgs args, CustomResourceOptions? opts = null)
public AwsSecurityGroup(String name, AwsSecurityGroupArgs args)
public AwsSecurityGroup(String name, AwsSecurityGroupArgs args, CustomResourceOptions options)
type: dome9:AwsSecurityGroup
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args AwsSecurityGroupArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args AwsSecurityGroupArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args AwsSecurityGroupArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AwsSecurityGroupArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args AwsSecurityGroupArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var awsSecurityGroupResource = new Dome9.AwsSecurityGroup("awsSecurityGroupResource", new()
{
Dome9CloudAccountId = "string",
Dome9SecurityGroupName = "string",
AwsRegionId = "string",
AwsSecurityGroupId = "string",
Description = "string",
IsProtected = false,
Services = new[]
{
new Dome9.Inputs.AwsSecurityGroupServiceArgs
{
Inbounds = new[]
{
new Dome9.Inputs.AwsSecurityGroupServiceInboundArgs
{
Description = "string",
Name = "string",
OpenForAll = false,
Port = "string",
ProtocolType = "string",
Scopes = new[]
{
new Dome9.Inputs.AwsSecurityGroupServiceInboundScopeArgs
{
Data =
{
{ "string", "string" },
},
Type = "string",
},
},
},
},
Outbounds = new[]
{
new Dome9.Inputs.AwsSecurityGroupServiceOutboundArgs
{
Description = "string",
Name = "string",
OpenForAll = false,
Port = "string",
ProtocolType = "string",
Scopes = new[]
{
new Dome9.Inputs.AwsSecurityGroupServiceOutboundScopeArgs
{
Data =
{
{ "string", "string" },
},
Type = "string",
},
},
},
},
},
},
Tags =
{
{ "string", "string" },
},
VpcId = "string",
VpcName = "string",
});
example, err := dome9.NewAwsSecurityGroup(ctx, "awsSecurityGroupResource", &dome9.AwsSecurityGroupArgs{
Dome9CloudAccountId: pulumi.String("string"),
Dome9SecurityGroupName: pulumi.String("string"),
AwsRegionId: pulumi.String("string"),
AwsSecurityGroupId: pulumi.String("string"),
Description: pulumi.String("string"),
IsProtected: pulumi.Bool(false),
Services: dome9.AwsSecurityGroupServiceArray{
&dome9.AwsSecurityGroupServiceArgs{
Inbounds: dome9.AwsSecurityGroupServiceInboundArray{
&dome9.AwsSecurityGroupServiceInboundArgs{
Description: pulumi.String("string"),
Name: pulumi.String("string"),
OpenForAll: pulumi.Bool(false),
Port: pulumi.String("string"),
ProtocolType: pulumi.String("string"),
Scopes: dome9.AwsSecurityGroupServiceInboundScopeArray{
&dome9.AwsSecurityGroupServiceInboundScopeArgs{
Data: pulumi.StringMap{
"string": pulumi.String("string"),
},
Type: pulumi.String("string"),
},
},
},
},
Outbounds: dome9.AwsSecurityGroupServiceOutboundArray{
&dome9.AwsSecurityGroupServiceOutboundArgs{
Description: pulumi.String("string"),
Name: pulumi.String("string"),
OpenForAll: pulumi.Bool(false),
Port: pulumi.String("string"),
ProtocolType: pulumi.String("string"),
Scopes: dome9.AwsSecurityGroupServiceOutboundScopeArray{
&dome9.AwsSecurityGroupServiceOutboundScopeArgs{
Data: pulumi.StringMap{
"string": pulumi.String("string"),
},
Type: pulumi.String("string"),
},
},
},
},
},
},
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
VpcId: pulumi.String("string"),
VpcName: pulumi.String("string"),
})
var awsSecurityGroupResource = new AwsSecurityGroup("awsSecurityGroupResource", AwsSecurityGroupArgs.builder()
.dome9CloudAccountId("string")
.dome9SecurityGroupName("string")
.awsRegionId("string")
.awsSecurityGroupId("string")
.description("string")
.isProtected(false)
.services(AwsSecurityGroupServiceArgs.builder()
.inbounds(AwsSecurityGroupServiceInboundArgs.builder()
.description("string")
.name("string")
.openForAll(false)
.port("string")
.protocolType("string")
.scopes(AwsSecurityGroupServiceInboundScopeArgs.builder()
.data(Map.of("string", "string"))
.type("string")
.build())
.build())
.outbounds(AwsSecurityGroupServiceOutboundArgs.builder()
.description("string")
.name("string")
.openForAll(false)
.port("string")
.protocolType("string")
.scopes(AwsSecurityGroupServiceOutboundScopeArgs.builder()
.data(Map.of("string", "string"))
.type("string")
.build())
.build())
.build())
.tags(Map.of("string", "string"))
.vpcId("string")
.vpcName("string")
.build());
aws_security_group_resource = dome9.AwsSecurityGroup("awsSecurityGroupResource",
dome9_cloud_account_id="string",
dome9_security_group_name="string",
aws_region_id="string",
aws_security_group_id="string",
description="string",
is_protected=False,
services=[{
"inbounds": [{
"description": "string",
"name": "string",
"open_for_all": False,
"port": "string",
"protocol_type": "string",
"scopes": [{
"data": {
"string": "string",
},
"type": "string",
}],
}],
"outbounds": [{
"description": "string",
"name": "string",
"open_for_all": False,
"port": "string",
"protocol_type": "string",
"scopes": [{
"data": {
"string": "string",
},
"type": "string",
}],
}],
}],
tags={
"string": "string",
},
vpc_id="string",
vpc_name="string")
const awsSecurityGroupResource = new dome9.AwsSecurityGroup("awsSecurityGroupResource", {
dome9CloudAccountId: "string",
dome9SecurityGroupName: "string",
awsRegionId: "string",
awsSecurityGroupId: "string",
description: "string",
isProtected: false,
services: [{
inbounds: [{
description: "string",
name: "string",
openForAll: false,
port: "string",
protocolType: "string",
scopes: [{
data: {
string: "string",
},
type: "string",
}],
}],
outbounds: [{
description: "string",
name: "string",
openForAll: false,
port: "string",
protocolType: "string",
scopes: [{
data: {
string: "string",
},
type: "string",
}],
}],
}],
tags: {
string: "string",
},
vpcId: "string",
vpcName: "string",
});
type: dome9:AwsSecurityGroup
properties:
awsRegionId: string
awsSecurityGroupId: string
description: string
dome9CloudAccountId: string
dome9SecurityGroupName: string
isProtected: false
services:
- inbounds:
- description: string
name: string
openForAll: false
port: string
protocolType: string
scopes:
- data:
string: string
type: string
outbounds:
- description: string
name: string
openForAll: false
port: string
protocolType: string
scopes:
- data:
string: string
type: string
tags:
string: string
vpcId: string
vpcName: string
AwsSecurityGroup Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The AwsSecurityGroup resource accepts the following input properties:
- Dome9Cloud
Account stringId - Cloud account id in Dome9.
- Dome9Security
Group stringName - Name of the Security Group.
- Aws
Region stringId - AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
- Aws
Security stringGroup Id - Description string
- Security Group description.
- Is
Protected bool - Indicates the Security Group is in Protected mode.
- Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
- Services
List<Aws
Security Group Service> - Security Group services.
- Dictionary<string, string>
- Security Group tags.
- Vpc
Id string - VPC id for VPC containing the Security Group.
- Vpc
Name string - Security Group VPC name.
- Dome9Cloud
Account stringId - Cloud account id in Dome9.
- Dome9Security
Group stringName - Name of the Security Group.
- Aws
Region stringId - AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
- Aws
Security stringGroup Id - Description string
- Security Group description.
- Is
Protected bool - Indicates the Security Group is in Protected mode.
- Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
- Services
[]Aws
Security Group Service Args - Security Group services.
- map[string]string
- Security Group tags.
- Vpc
Id string - VPC id for VPC containing the Security Group.
- Vpc
Name string - Security Group VPC name.
- dome9Cloud
Account StringId - Cloud account id in Dome9.
- dome9Security
Group StringName - Name of the Security Group.
- aws
Region StringId - AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
- aws
Security StringGroup Id - description String
- Security Group description.
- is
Protected Boolean - Indicates the Security Group is in Protected mode.
- Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
- services
List<Aws
Security Group Service> - Security Group services.
- Map<String,String>
- Security Group tags.
- vpc
Id String - VPC id for VPC containing the Security Group.
- vpc
Name String - Security Group VPC name.
- dome9Cloud
Account stringId - Cloud account id in Dome9.
- dome9Security
Group stringName - Name of the Security Group.
- aws
Region stringId - AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
- aws
Security stringGroup Id - description string
- Security Group description.
- is
Protected boolean - Indicates the Security Group is in Protected mode.
- Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
- services
Aws
Security Group Service[] - Security Group services.
- {[key: string]: string}
- Security Group tags.
- vpc
Id string - VPC id for VPC containing the Security Group.
- vpc
Name string - Security Group VPC name.
- dome9_
cloud_ straccount_ id - Cloud account id in Dome9.
- dome9_
security_ strgroup_ name - Name of the Security Group.
- aws_
region_ strid - AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
- aws_
security_ strgroup_ id - description str
- Security Group description.
- is_
protected bool - Indicates the Security Group is in Protected mode.
- Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
- services
Sequence[Aws
Security Group Service Args] - Security Group services.
- Mapping[str, str]
- Security Group tags.
- vpc_
id str - VPC id for VPC containing the Security Group.
- vpc_
name str - Security Group VPC name.
- dome9Cloud
Account StringId - Cloud account id in Dome9.
- dome9Security
Group StringName - Name of the Security Group.
- aws
Region StringId - AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
- aws
Security StringGroup Id - description String
- Security Group description.
- is
Protected Boolean - Indicates the Security Group is in Protected mode.
- Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
- services List<Property Map>
- Security Group services.
- Map<String>
- Security Group tags.
- vpc
Id String - VPC id for VPC containing the Security Group.
- vpc
Name String - Security Group VPC name.
Outputs
All input properties are implicitly available as output properties. Additionally, the AwsSecurityGroup resource produces the following output properties:
- Cloud
Account stringName - AWS cloud account name.
- External
Id string - Security Group external id.
- Id string
- The provider-assigned unique ID for this managed resource.
- Cloud
Account stringName - AWS cloud account name.
- External
Id string - Security Group external id.
- Id string
- The provider-assigned unique ID for this managed resource.
- cloud
Account StringName - AWS cloud account name.
- external
Id String - Security Group external id.
- id String
- The provider-assigned unique ID for this managed resource.
- cloud
Account stringName - AWS cloud account name.
- external
Id string - Security Group external id.
- id string
- The provider-assigned unique ID for this managed resource.
- cloud_
account_ strname - AWS cloud account name.
- external_
id str - Security Group external id.
- id str
- The provider-assigned unique ID for this managed resource.
- cloud
Account StringName - AWS cloud account name.
- external
Id String - Security Group external id.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing AwsSecurityGroup Resource
Get an existing AwsSecurityGroup resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: AwsSecurityGroupState, opts?: CustomResourceOptions): AwsSecurityGroup@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
aws_region_id: Optional[str] = None,
aws_security_group_id: Optional[str] = None,
cloud_account_name: Optional[str] = None,
description: Optional[str] = None,
dome9_cloud_account_id: Optional[str] = None,
dome9_security_group_name: Optional[str] = None,
external_id: Optional[str] = None,
is_protected: Optional[bool] = None,
services: Optional[Sequence[AwsSecurityGroupServiceArgs]] = None,
tags: Optional[Mapping[str, str]] = None,
vpc_id: Optional[str] = None,
vpc_name: Optional[str] = None) -> AwsSecurityGroupfunc GetAwsSecurityGroup(ctx *Context, name string, id IDInput, state *AwsSecurityGroupState, opts ...ResourceOption) (*AwsSecurityGroup, error)public static AwsSecurityGroup Get(string name, Input<string> id, AwsSecurityGroupState? state, CustomResourceOptions? opts = null)public static AwsSecurityGroup get(String name, Output<String> id, AwsSecurityGroupState state, CustomResourceOptions options)resources: _: type: dome9:AwsSecurityGroup get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Aws
Region stringId - AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
- Aws
Security stringGroup Id - Cloud
Account stringName - AWS cloud account name.
- Description string
- Security Group description.
- Dome9Cloud
Account stringId - Cloud account id in Dome9.
- Dome9Security
Group stringName - Name of the Security Group.
- External
Id string - Security Group external id.
- Is
Protected bool - Indicates the Security Group is in Protected mode.
- Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
- Services
List<Aws
Security Group Service> - Security Group services.
- Dictionary<string, string>
- Security Group tags.
- Vpc
Id string - VPC id for VPC containing the Security Group.
- Vpc
Name string - Security Group VPC name.
- Aws
Region stringId - AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
- Aws
Security stringGroup Id - Cloud
Account stringName - AWS cloud account name.
- Description string
- Security Group description.
- Dome9Cloud
Account stringId - Cloud account id in Dome9.
- Dome9Security
Group stringName - Name of the Security Group.
- External
Id string - Security Group external id.
- Is
Protected bool - Indicates the Security Group is in Protected mode.
- Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
- Services
[]Aws
Security Group Service Args - Security Group services.
- map[string]string
- Security Group tags.
- Vpc
Id string - VPC id for VPC containing the Security Group.
- Vpc
Name string - Security Group VPC name.
- aws
Region StringId - AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
- aws
Security StringGroup Id - cloud
Account StringName - AWS cloud account name.
- description String
- Security Group description.
- dome9Cloud
Account StringId - Cloud account id in Dome9.
- dome9Security
Group StringName - Name of the Security Group.
- external
Id String - Security Group external id.
- is
Protected Boolean - Indicates the Security Group is in Protected mode.
- Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
- services
List<Aws
Security Group Service> - Security Group services.
- Map<String,String>
- Security Group tags.
- vpc
Id String - VPC id for VPC containing the Security Group.
- vpc
Name String - Security Group VPC name.
- aws
Region stringId - AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
- aws
Security stringGroup Id - cloud
Account stringName - AWS cloud account name.
- description string
- Security Group description.
- dome9Cloud
Account stringId - Cloud account id in Dome9.
- dome9Security
Group stringName - Name of the Security Group.
- external
Id string - Security Group external id.
- is
Protected boolean - Indicates the Security Group is in Protected mode.
- Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
- services
Aws
Security Group Service[] - Security Group services.
- {[key: string]: string}
- Security Group tags.
- vpc
Id string - VPC id for VPC containing the Security Group.
- vpc
Name string - Security Group VPC name.
- aws_
region_ strid - AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
- aws_
security_ strgroup_ id - cloud_
account_ strname - AWS cloud account name.
- description str
- Security Group description.
- dome9_
cloud_ straccount_ id - Cloud account id in Dome9.
- dome9_
security_ strgroup_ name - Name of the Security Group.
- external_
id str - Security Group external id.
- is_
protected bool - Indicates the Security Group is in Protected mode.
- Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
- services
Sequence[Aws
Security Group Service Args] - Security Group services.
- Mapping[str, str]
- Security Group tags.
- vpc_
id str - VPC id for VPC containing the Security Group.
- vpc_
name str - Security Group VPC name.
- aws
Region StringId - AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
- aws
Security StringGroup Id - cloud
Account StringName - AWS cloud account name.
- description String
- Security Group description.
- dome9Cloud
Account StringId - Cloud account id in Dome9.
- dome9Security
Group StringName - Name of the Security Group.
- external
Id String - Security Group external id.
- is
Protected Boolean - Indicates the Security Group is in Protected mode.
- Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
- services List<Property Map>
- Security Group services.
- Map<String>
- Security Group tags.
- vpc
Id String - VPC id for VPC containing the Security Group.
- vpc
Name String - Security Group VPC name.
Supporting Types
AwsSecurityGroupService, AwsSecurityGroupServiceArgs
- Inbounds
List<Aws
Security Group Service Inbound> - inbound service.
- Outbounds
List<Aws
Security Group Service Outbound> outbound service.
The configuration of inbound and outbound is:
- Inbounds
[]Aws
Security Group Service Inbound - inbound service.
- Outbounds
[]Aws
Security Group Service Outbound outbound service.
The configuration of inbound and outbound is:
- inbounds
List<Aws
Security Group Service Inbound> - inbound service.
- outbounds
List<Aws
Security Group Service Outbound> outbound service.
The configuration of inbound and outbound is:
- inbounds
Aws
Security Group Service Inbound[] - inbound service.
- outbounds
Aws
Security Group Service Outbound[] outbound service.
The configuration of inbound and outbound is:
- inbounds
Sequence[Aws
Security Group Service Inbound] - inbound service.
- outbounds
Sequence[Aws
Security Group Service Outbound] outbound service.
The configuration of inbound and outbound is:
- inbounds List<Property Map>
- inbound service.
- outbounds List<Property Map>
outbound service.
The configuration of inbound and outbound is:
AwsSecurityGroupServiceInbound, AwsSecurityGroupServiceInboundArgs
- Description string
- Security Group description.
- Name string
- Service name.
- Open
For boolAll - Is open for all.
- Port string
- Service type (port).
- Protocol
Type string - Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
- Scopes
List<Aws
Security Group Service Inbound Scope> - Service scope which has the following configuration:
- Description string
- Security Group description.
- Name string
- Service name.
- Open
For boolAll - Is open for all.
- Port string
- Service type (port).
- Protocol
Type string - Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
- Scopes
[]Aws
Security Group Service Inbound Scope - Service scope which has the following configuration:
- description String
- Security Group description.
- name String
- Service name.
- open
For BooleanAll - Is open for all.
- port String
- Service type (port).
- protocol
Type String - Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
- scopes
List<Aws
Security Group Service Inbound Scope> - Service scope which has the following configuration:
- description string
- Security Group description.
- name string
- Service name.
- open
For booleanAll - Is open for all.
- port string
- Service type (port).
- protocol
Type string - Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
- scopes
Aws
Security Group Service Inbound Scope[] - Service scope which has the following configuration:
- description str
- Security Group description.
- name str
- Service name.
- open_
for_ boolall - Is open for all.
- port str
- Service type (port).
- protocol_
type str - Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
- scopes
Sequence[Aws
Security Group Service Inbound Scope] - Service scope which has the following configuration:
- description String
- Security Group description.
- name String
- Service name.
- open
For BooleanAll - Is open for all.
- port String
- Service type (port).
- protocol
Type String - Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
- scopes List<Property Map>
- Service scope which has the following configuration:
AwsSecurityGroupServiceInboundScope, AwsSecurityGroupServiceInboundScopeArgs
AwsSecurityGroupServiceOutbound, AwsSecurityGroupServiceOutboundArgs
- Description string
- Security Group description.
- Name string
- Service name.
- Open
For boolAll - Is open for all.
- Port string
- Service type (port).
- Protocol
Type string - Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
- Scopes
List<Aws
Security Group Service Outbound Scope> - Service scope which has the following configuration:
- Description string
- Security Group description.
- Name string
- Service name.
- Open
For boolAll - Is open for all.
- Port string
- Service type (port).
- Protocol
Type string - Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
- Scopes
[]Aws
Security Group Service Outbound Scope - Service scope which has the following configuration:
- description String
- Security Group description.
- name String
- Service name.
- open
For BooleanAll - Is open for all.
- port String
- Service type (port).
- protocol
Type String - Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
- scopes
List<Aws
Security Group Service Outbound Scope> - Service scope which has the following configuration:
- description string
- Security Group description.
- name string
- Service name.
- open
For booleanAll - Is open for all.
- port string
- Service type (port).
- protocol
Type string - Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
- scopes
Aws
Security Group Service Outbound Scope[] - Service scope which has the following configuration:
- description str
- Security Group description.
- name str
- Service name.
- open_
for_ boolall - Is open for all.
- port str
- Service type (port).
- protocol_
type str - Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
- scopes
Sequence[Aws
Security Group Service Outbound Scope] - Service scope which has the following configuration:
- description String
- Security Group description.
- name String
- Service name.
- open
For BooleanAll - Is open for all.
- port String
- Service type (port).
- protocol
Type String - Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
- scopes List<Property Map>
- Service scope which has the following configuration:
AwsSecurityGroupServiceOutboundScope, AwsSecurityGroupServiceOutboundScopeArgs
Import
The security group can be imported; use <SESCURITY GROUP ID> as the import ID.
For example:
$ pulumi import dome9:index/awsSecurityGroup:AwsSecurityGroup test 00000000-0000-0000-0000-000000000000
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- dome9 dome9/terraform-provider-dome9
- License
- Notes
- This Pulumi package is based on the
dome9Terraform Provider.