A Lambda function for updating the cloudfront EC2 security group ingress rules with the CloudFront IP range changes.
This Lambda uses AWS Serverless Application Model Command Line Interface (SAM CLI) as a method of deployment. To start off, set yourself up with a Python 3.7 Virtual Environment and then run the following:
pip install -r requirements.txtDeployment templates and the function itself can then be found in the sam-cloudfront-sg-manager directory.
This Project is an evolution of the Update Security Groups Lambda provided by AWS. I've taken that work as both inspiration and methodology, updating for Python 3.6+ and integrating AWS SAM as a deployment method.