- Description
- Usage - Configuration options and additional functionality
- Reference - An under-the-hood peek at what the module is doing and how
- Limitations - OS compatibility, etc.
- Development - Guide for contributing to the module
- Changelog
This module generates granular iptables rules to restrict access to Amazon Web Services.
aws_firewall::ipset { 'ap-south-1-s3':
regions => ['ap-south-1'],
services => ['S3'],
}
aws_firewall::rule::ipset { '200 Allow access to S3 in us-east-1':
ipset => 'ap-south-1-s3',
}
aws_firewall::rule::metadata { '200 Allow access to EC2 instance metadata':
uid => 'someone',
}
See reference
- Only tested on RedHat-like Linux distributions
- IPv6 prefixes are not yet supported
See development
See CHANGELOG