-
Notifications
You must be signed in to change notification settings - Fork 5
/
security.group-variables.tf
103 lines (71 loc) · 2.2 KB
/
security.group-variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
### ########## ###
### in_ingress ###
### ########## ###
variable in_ingress {
description = "4 element list defining traffic to allow in (see traffic-rules.tf)"
type = list
default = [ "ssh" ]
}
### ######### ###
### in_egress ###
### ######### ###
variable in_egress {
description = "4 element list defining traffic to allow out (see traffic-rules.tf)"
type = list
default = [ "all-traffic" ]
}
### ######### ###
### in_vpc_id ###
### ######### ###
variable in_vpc_id {
description = "Mandatory umbrella vpc the security group falls under which reverts to the default VPC if not set."
type = string
}
### ###################### ###
### in_ingress_cidr_blocks ###
### ###################### ###
variable in_ingress_cidr_blocks {
description = "The IPv4 CIDR ranges from which traffic is allowed to originate."
type = list
default = [ "0.0.0.0/0" ]
}
### ##################### ###
### in_egress_cidr_blocks ###
### ##################### ###
variable in_egress_cidr_blocks {
description = "List of IPv4 CIDR ranges to use on all egress rules"
type = list
default = [ "0.0.0.0/0" ]
}
### ################ ###
### in_mandated_tags ###
### ################ ###
variable in_mandated_tags {
description = "Optional tags unless your organization mandates that a set of given tags must be set."
type = map
default = { }
}
### ############ ###
### in_ecosystem ###
### ############ ###
variable in_ecosystem {
description = "Creational stamp binding all infrastructure components created on behalf of this ecosystem instance."
default = "security-grp"
type = string
}
### ############ ###
### in_timestamp ###
### ############ ###
variable in_timestamp {
description = "A timestamp for resource tags in the format ymmdd-hhmm like 80911-1435"
default = "timestamp"
type = string
}
### ############## ###
### in_description ###
### ############## ###
variable in_description {
description = "Ubiquitous note detailing who, when, where and why for every infrastructure component."
default = "This VPC network was created for an ecosystem."
type = string
}