tencentcloud.security-group

security-group

Docs on security-group https://www.tencentcloud.com/document/product/215/38750

example

policies:
- name: security_group_default_restrict
  resource: tencentcloud.security-group
  filters:
    - or:
        - SecurityGroupName: ccsTest
        - SecurityGroupName: base-ritch
    - or:
        - IpPermissions: not-null
        - IpPermissionsEgress: not-null

Filters

egress

Parent base class for filters and actions.

properties:
  AnyPortsExcept:
    items:
      type: integer
    type: array
  Cidr: {}
  CidrV6: {}
  Ports:
    items:
      type: integer
    type: array
  type:
    enum:
    - egress
required:
- type

ingress

example

policies:
- name: cidr_not_limit_filter
  resource: tencentcloud.security-group
  filters:
    - or:
        - type: ingress
          Cidr:
            value: 0.0.0.0/0
        - type: ingress
          CidrV6:
            value: '::/0'
properties:
  AnyPortsExcept:
    items:
      type: integer
    type: array
  Cidr: {}
  CidrV6: {}
  Ports:
    items:
      type: integer
    type: array
  type:
    enum:
    - ingress
required:
- type

Actions

  • mark-for-op

  • remove-tag

  • rename-tag

  • tag

  • webhook