jprdonnelly/opentf
1
0
Fork 0
mirror of https://github.com/opentffoundation/opentf.git synced 2026-03-15 16:00:26 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
5e282683bfcd819fc3eacd94de424924d14701b5
opentf/website/source/docs/providers/azure/r/security_group_rule.html.markdown
aznashwan c1ac72683d Fixed indentation in Azure documentation.
2015-06-26 15:49:05 +03:00

2.5 KiB
Raw Blame History

layout, page_title, sidebar_current, description
layout page_title sidebar_current description
azure Azure: azure_security_group_rule docs-azure-resource-security-group-rule Creates a new network security rule to be associated with a given security group.

azure_security_group_rule

Creates a new network security rule to be associated with a given security group.

Example Usage

resource "azure_security_group" "web" {
    ...
}

resource "azure_security_group" "apps" {
    ...
}

resource "azure_security_group_rule" "ssh_access" {
    name = "ssh-access-rule"
    security_group_names = ["${azure_security_group.web.name}", "${azure_security_group.apps.name}"]
    type = "Inbound"
    action = "Allow"
    priority = 200
    source_address_prefix = "100.0.0.0/32"
    source_port_range = "*"
    destination_address_prefix = "10.0.0.0/32"
    destination_port_range = "22"
    protocol = "TCP"
}

Argument Reference

The following arguments are supported:

  • name - (Required) The name of the security group rule.

  • security_group_names - (Required) A list of the names of the security groups the rule should be applied to. Changing this list forces the creation of a new resource.

  • type - (Required) The type of the security rule. Valid options are: Inbound and Outbound.

  • priority - (Required) The priority of the network security rule. Rules with lower priority are evaluated first. This value can be between 100 and 4096.

  • action - (Optional) The action that is performed when the security rule is matched. Valid options are: Allow and Deny.

  • source_address_prefix - (Required) The address prefix of packet sources that that should be subjected to the rule. An asterisk (*) can also be used to match all source IPs.

  • source_port_range - (Required) The source port or range. This value can be between 0 and 65535. An asterisk (*) can also be used to match all ports.

  • destination_address_prefix - (Required) The address prefix of packet destinations that should be subjected to the rule. An asterisk (*) can also be used to match all destination IPs.

  • destination_port_range - (Required) The destination port or range. This value can be between 0 and 65535. An asterisk (*) can also be used to match all ports.

  • protocol - (Optional) The protocol of the security rule. Valid options are: TCP, UDP and *.

The following attributes are exported:

  • id - The security group rule ID. Coincides with its given name.
Reference in New Issue View Git Blame Copy Permalink