我正在尝试创建 VPC 起诉 Terraform。这是我的剧本
resource "aws_vpc" "my_vpc" {
cidr_block = "10.10.0.0/24"
instance_tenancy = "default"
tags = {
"Name" = "my-vpc-${var.environment}"
}
}
VPC 创建成功,并且为上面的VPC 创建了默认安全组。我没有为安全组添加任何块,所以我假设安全组是默认创建的,类似于从控制台创建 vpc 时。
默认安全组一入一出规则。我的要求是删除默认入站规则并向默认 VPC 添加两个自定义入站规则。
问题:
aws_default_security_group
resource "aws_default_security_group" "default" {
vpc_id = aws_vpc.shared_services_vpc.id
ingress = [ {
cidr_blocks = [ "<Cidr>","Cidr"]
description = "Allowed security rules"
from_port = 22
ipv6_cidr_blocks = []
prefix_list_ids = []
protocol = "tcp"
security_groups = [ aws_vpc.my_vpc.default_security_group_id ]
self = false
to_port = 22
} ]
egress = [ {
cidr_blocks = [ "0.0.0.0/0" ]
description = "AllowAll"
from_port = 0
ipv6_cidr_blocks = []
prefix_list_ids = []
protocol = "all"
security_groups = [ aws_vpc.my_vpc.default_security_group_id ]
self = false
to_port = 0
} ]
}