A helper module to make managing rules for Security Groups and NACLs less painful.
This module is only a one-stop-shop for network security rule generation. It may stray into the realm of VPC setup, but only the parts directly relating to network security.
Table of Contents
This module requires you to assign every port range, CIDR block, and Security Group a name. Then you provide a set of mappings between source and destination groups, listing the port ranges that are open. All of this is done by referencing the names you gave them earlier. Finally, the module flattens this config and builds the network security rules from it.
Examples are present in the tests/ folder, and one is detailed in the
rendered version of the docs.