1. Packages
  2. Dome9 Provider
  3. API Docs
  4. AwsSecurityGroup
dome9 1.40.3 published on Monday, Apr 14, 2025 by dome9

dome9.AwsSecurityGroup

Explore with Pulumi AI

This resource has methods to add and manage Security Groups in a cloud account that is managed by Dome9.

Example Usage

Basic usage:

Coming soon!
Coming soon!
Coming soon!
Coming soon!
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.dome9.AwsSecurityGroup;
import com.pulumi.dome9.AwsSecurityGroupArgs;
import com.pulumi.dome9.inputs.AwsSecurityGroupServiceArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var awsSg = new AwsSecurityGroup("awsSg", AwsSecurityGroupArgs.builder()
            .awsRegionId("aws_region_id")
            .description("description")
            .dome9CloudAccountId("dome9_cloud_account_id")
            .dome9SecurityGroupName("dome9_security_group_name")
            .services(AwsSecurityGroupServiceArgs.builder()
                .inbounds(AwsSecurityGroupServiceInboundArgs.builder()
                    .description("DESCRIPTION")
                    .name("FIRST_INBOUND_SERVICE_NAME")
                    .openForAll(false)
                    .port("PORT")
                    .protocolType("PROTOCOL_TYPE")
                    .scope(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
                    .build())
                .outbounds(AwsSecurityGroupServiceOutboundArgs.builder()
                    .description("DESCRIPTION")
                    .name("NAME")
                    .openForAll(true)
                    .port("")
                    .protocolType("PROTOCOL_TYPE")
                    .build())
                .build())
            .tags(Map.of("tag-key", "TAG-VALUE"))
            .build());

    }
}
Copy
resources:
  awsSg:
    type: dome9:AwsSecurityGroup
    properties:
      awsRegionId: aws_region_id
      description: description
      dome9CloudAccountId: dome9_cloud_account_id
      dome9SecurityGroupName: dome9_security_group_name
      services:
        - inbounds:
            - description: DESCRIPTION
              name: FIRST_INBOUND_SERVICE_NAME
              openForAll: false
              port: PORT
              protocolType: PROTOCOL_TYPE
              scope:
                - data:
                    cidr: CIDR
                    note: NOTE
                  type: TYPE
          outbounds:
            - description: DESCRIPTION
              name: NAME
              openForAll: true
              port: ""
              protocolType: PROTOCOL_TYPE
      tags:
        tag-key: TAG-VALUE
Copy

Example for security group circular dependencies

Coming soon!
Coming soon!
Coming soon!
Coming soon!
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.dome9.AwsSecurityGroup;
import com.pulumi.dome9.AwsSecurityGroupArgs;
import com.pulumi.dome9.CloudSecurityGroupRule;
import com.pulumi.dome9.CloudSecurityGroupRuleArgs;
import com.pulumi.dome9.inputs.CloudSecurityGroupRuleServiceArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var awsSg1AwsSecurityGroup = new AwsSecurityGroup("awsSg1AwsSecurityGroup", AwsSecurityGroupArgs.builder()
            .awsRegionId("aws_region_id")
            .description("description")
            .dome9CloudAccountId("dome9_cloud_account_id")
            .dome9SecurityGroupName("dome9_security_group_name")
            .build());

        var awsSg2AwsSecurityGroup = new AwsSecurityGroup("awsSg2AwsSecurityGroup", AwsSecurityGroupArgs.builder()
            .awsRegionId("aws_region_id")
            .description("description")
            .dome9CloudAccountId("dome9_cloud_account_id")
            .dome9SecurityGroupName("dome9_security_group_name")
            .build());

        var awsSg1CloudSecurityGroupRule = new CloudSecurityGroupRule("awsSg1CloudSecurityGroupRule", CloudSecurityGroupRuleArgs.builder()
            .dome9SecurityGroupId(awsSg1AwsSecurityGroup.awsSecurityGroupId())
            .services(CloudSecurityGroupRuleServiceArgs.builder()
                .outbounds(CloudSecurityGroupRuleServiceOutboundArgs.builder()
                    .description("HTTPS (TCP)")
                    .name("HTTPS")
                    .openForAll(false)
                    .port("8443")
                    .protocolType("TCP")
                    .scope(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
                    .build())
                .build())
            .build());

        var awsSg2CloudSecurityGroupRule = new CloudSecurityGroupRule("awsSg2CloudSecurityGroupRule", CloudSecurityGroupRuleArgs.builder()
            .dome9SecurityGroupId(awsSg2AwsSecurityGroup.awsSecurityGroupId())
            .services(CloudSecurityGroupRuleServiceArgs.builder()
                .outbounds(CloudSecurityGroupRuleServiceOutboundArgs.builder()
                    .description("HTTPS (TCP)")
                    .name("HTTPS")
                    .openForAll(false)
                    .port("8443")
                    .protocolType("TCP")
                    .scope(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
                    .build())
                .build())
            .build());

    }
}
Copy
resources:
  awsSg1AwsSecurityGroup:
    type: dome9:AwsSecurityGroup
    properties:
      awsRegionId: aws_region_id
      description: description
      dome9CloudAccountId: dome9_cloud_account_id
      dome9SecurityGroupName: dome9_security_group_name
  awsSg1CloudSecurityGroupRule:
    type: dome9:CloudSecurityGroupRule
    properties:
      dome9SecurityGroupId: ${awsSg1AwsSecurityGroup.awsSecurityGroupId}
      services:
        - outbounds:
            - description: HTTPS (TCP)
              name: HTTPS
              openForAll: false
              port: '8443'
              protocolType: TCP
              scope:
                - data:
                    extid: ${awsSg2AwsSecurityGroup.externalId}
                    note: ${awsSg2AwsSecurityGroup.externalId}
                  type: AWS
  awsSg2AwsSecurityGroup:
    type: dome9:AwsSecurityGroup
    properties:
      awsRegionId: aws_region_id
      description: description
      dome9CloudAccountId: dome9_cloud_account_id
      dome9SecurityGroupName: dome9_security_group_name
  awsSg2CloudSecurityGroupRule:
    type: dome9:CloudSecurityGroupRule
    properties:
      dome9SecurityGroupId: ${awsSg2AwsSecurityGroup.awsSecurityGroupId}
      services:
        - outbounds:
            - description: HTTPS (TCP)
              name: HTTPS
              openForAll: false
              port: '8443'
              protocolType: TCP
              scope:
                - data:
                    extid: ${awsSg1AwsSecurityGroup.externalId}
                    note: ${awsSg1AwsSecurityGroup.externalId}
                  type: AWS
Copy

Create AwsSecurityGroup Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new AwsSecurityGroup(name: string, args: AwsSecurityGroupArgs, opts?: CustomResourceOptions);
@overload
def AwsSecurityGroup(resource_name: str,
                     args: AwsSecurityGroupArgs,
                     opts: Optional[ResourceOptions] = None)

@overload
def AwsSecurityGroup(resource_name: str,
                     opts: Optional[ResourceOptions] = None,
                     dome9_cloud_account_id: Optional[str] = None,
                     dome9_security_group_name: Optional[str] = None,
                     aws_region_id: Optional[str] = None,
                     aws_security_group_id: Optional[str] = None,
                     description: Optional[str] = None,
                     is_protected: Optional[bool] = None,
                     services: Optional[Sequence[AwsSecurityGroupServiceArgs]] = None,
                     tags: Optional[Mapping[str, str]] = None,
                     vpc_id: Optional[str] = None,
                     vpc_name: Optional[str] = None)
func NewAwsSecurityGroup(ctx *Context, name string, args AwsSecurityGroupArgs, opts ...ResourceOption) (*AwsSecurityGroup, error)
public AwsSecurityGroup(string name, AwsSecurityGroupArgs args, CustomResourceOptions? opts = null)
public AwsSecurityGroup(String name, AwsSecurityGroupArgs args)
public AwsSecurityGroup(String name, AwsSecurityGroupArgs args, CustomResourceOptions options)
type: dome9:AwsSecurityGroup
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name This property is required. string
The unique name of the resource.
args This property is required. AwsSecurityGroupArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name This property is required. str
The unique name of the resource.
args This property is required. AwsSecurityGroupArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name This property is required. string
The unique name of the resource.
args This property is required. AwsSecurityGroupArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name This property is required. string
The unique name of the resource.
args This property is required. AwsSecurityGroupArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name This property is required. String
The unique name of the resource.
args This property is required. AwsSecurityGroupArgs
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var awsSecurityGroupResource = new Dome9.AwsSecurityGroup("awsSecurityGroupResource", new()
{
    Dome9CloudAccountId = "string",
    Dome9SecurityGroupName = "string",
    AwsRegionId = "string",
    AwsSecurityGroupId = "string",
    Description = "string",
    IsProtected = false,
    Services = new[]
    {
        new Dome9.Inputs.AwsSecurityGroupServiceArgs
        {
            Inbounds = new[]
            {
                new Dome9.Inputs.AwsSecurityGroupServiceInboundArgs
                {
                    Description = "string",
                    Name = "string",
                    OpenForAll = false,
                    Port = "string",
                    ProtocolType = "string",
                    Scopes = new[]
                    {
                        new Dome9.Inputs.AwsSecurityGroupServiceInboundScopeArgs
                        {
                            Data = 
                            {
                                { "string", "string" },
                            },
                            Type = "string",
                        },
                    },
                },
            },
            Outbounds = new[]
            {
                new Dome9.Inputs.AwsSecurityGroupServiceOutboundArgs
                {
                    Description = "string",
                    Name = "string",
                    OpenForAll = false,
                    Port = "string",
                    ProtocolType = "string",
                    Scopes = new[]
                    {
                        new Dome9.Inputs.AwsSecurityGroupServiceOutboundScopeArgs
                        {
                            Data = 
                            {
                                { "string", "string" },
                            },
                            Type = "string",
                        },
                    },
                },
            },
        },
    },
    Tags = 
    {
        { "string", "string" },
    },
    VpcId = "string",
    VpcName = "string",
});
Copy
example, err := dome9.NewAwsSecurityGroup(ctx, "awsSecurityGroupResource", &dome9.AwsSecurityGroupArgs{
Dome9CloudAccountId: pulumi.String("string"),
Dome9SecurityGroupName: pulumi.String("string"),
AwsRegionId: pulumi.String("string"),
AwsSecurityGroupId: pulumi.String("string"),
Description: pulumi.String("string"),
IsProtected: pulumi.Bool(false),
Services: .AwsSecurityGroupServiceArray{
&.AwsSecurityGroupServiceArgs{
Inbounds: .AwsSecurityGroupServiceInboundArray{
&.AwsSecurityGroupServiceInboundArgs{
Description: pulumi.String("string"),
Name: pulumi.String("string"),
OpenForAll: pulumi.Bool(false),
Port: pulumi.String("string"),
ProtocolType: pulumi.String("string"),
Scopes: .AwsSecurityGroupServiceInboundScopeArray{
&.AwsSecurityGroupServiceInboundScopeArgs{
Data: pulumi.StringMap{
"string": pulumi.String("string"),
},
Type: pulumi.String("string"),
},
},
},
},
Outbounds: .AwsSecurityGroupServiceOutboundArray{
&.AwsSecurityGroupServiceOutboundArgs{
Description: pulumi.String("string"),
Name: pulumi.String("string"),
OpenForAll: pulumi.Bool(false),
Port: pulumi.String("string"),
ProtocolType: pulumi.String("string"),
Scopes: .AwsSecurityGroupServiceOutboundScopeArray{
&.AwsSecurityGroupServiceOutboundScopeArgs{
Data: pulumi.StringMap{
"string": pulumi.String("string"),
},
Type: pulumi.String("string"),
},
},
},
},
},
},
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
VpcId: pulumi.String("string"),
VpcName: pulumi.String("string"),
})
Copy
var awsSecurityGroupResource = new AwsSecurityGroup("awsSecurityGroupResource", AwsSecurityGroupArgs.builder()
    .dome9CloudAccountId("string")
    .dome9SecurityGroupName("string")
    .awsRegionId("string")
    .awsSecurityGroupId("string")
    .description("string")
    .isProtected(false)
    .services(AwsSecurityGroupServiceArgs.builder()
        .inbounds(AwsSecurityGroupServiceInboundArgs.builder()
            .description("string")
            .name("string")
            .openForAll(false)
            .port("string")
            .protocolType("string")
            .scopes(AwsSecurityGroupServiceInboundScopeArgs.builder()
                .data(Map.of("string", "string"))
                .type("string")
                .build())
            .build())
        .outbounds(AwsSecurityGroupServiceOutboundArgs.builder()
            .description("string")
            .name("string")
            .openForAll(false)
            .port("string")
            .protocolType("string")
            .scopes(AwsSecurityGroupServiceOutboundScopeArgs.builder()
                .data(Map.of("string", "string"))
                .type("string")
                .build())
            .build())
        .build())
    .tags(Map.of("string", "string"))
    .vpcId("string")
    .vpcName("string")
    .build());
Copy
aws_security_group_resource = dome9.AwsSecurityGroup("awsSecurityGroupResource",
    dome9_cloud_account_id="string",
    dome9_security_group_name="string",
    aws_region_id="string",
    aws_security_group_id="string",
    description="string",
    is_protected=False,
    services=[{
        "inbounds": [{
            "description": "string",
            "name": "string",
            "open_for_all": False,
            "port": "string",
            "protocol_type": "string",
            "scopes": [{
                "data": {
                    "string": "string",
                },
                "type": "string",
            }],
        }],
        "outbounds": [{
            "description": "string",
            "name": "string",
            "open_for_all": False,
            "port": "string",
            "protocol_type": "string",
            "scopes": [{
                "data": {
                    "string": "string",
                },
                "type": "string",
            }],
        }],
    }],
    tags={
        "string": "string",
    },
    vpc_id="string",
    vpc_name="string")
Copy
const awsSecurityGroupResource = new dome9.AwsSecurityGroup("awsSecurityGroupResource", {
    dome9CloudAccountId: "string",
    dome9SecurityGroupName: "string",
    awsRegionId: "string",
    awsSecurityGroupId: "string",
    description: "string",
    isProtected: false,
    services: [{
        inbounds: [{
            description: "string",
            name: "string",
            openForAll: false,
            port: "string",
            protocolType: "string",
            scopes: [{
                data: {
                    string: "string",
                },
                type: "string",
            }],
        }],
        outbounds: [{
            description: "string",
            name: "string",
            openForAll: false,
            port: "string",
            protocolType: "string",
            scopes: [{
                data: {
                    string: "string",
                },
                type: "string",
            }],
        }],
    }],
    tags: {
        string: "string",
    },
    vpcId: "string",
    vpcName: "string",
});
Copy
type: dome9:AwsSecurityGroup
properties:
    awsRegionId: string
    awsSecurityGroupId: string
    description: string
    dome9CloudAccountId: string
    dome9SecurityGroupName: string
    isProtected: false
    services:
        - inbounds:
            - description: string
              name: string
              openForAll: false
              port: string
              protocolType: string
              scopes:
                - data:
                    string: string
                  type: string
          outbounds:
            - description: string
              name: string
              openForAll: false
              port: string
              protocolType: string
              scopes:
                - data:
                    string: string
                  type: string
    tags:
        string: string
    vpcId: string
    vpcName: string
Copy

AwsSecurityGroup Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The AwsSecurityGroup resource accepts the following input properties:

Dome9CloudAccountId This property is required. string
Cloud account id in Dome9.
Dome9SecurityGroupName This property is required. string
Name of the Security Group.
AwsRegionId string
AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
AwsSecurityGroupId string
Description string
Security Group description.
IsProtected bool
Indicates the Security Group is in Protected mode.

  • Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
Services List<AwsSecurityGroupService>
Security Group services.
Tags Dictionary<string, string>
Security Group tags.
VpcId string
VPC id for VPC containing the Security Group.
VpcName string
Security Group VPC name.
Dome9CloudAccountId This property is required. string
Cloud account id in Dome9.
Dome9SecurityGroupName This property is required. string
Name of the Security Group.
AwsRegionId string
AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
AwsSecurityGroupId string
Description string
Security Group description.
IsProtected bool
Indicates the Security Group is in Protected mode.

  • Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
Services []AwsSecurityGroupServiceArgs
Security Group services.
Tags map[string]string
Security Group tags.
VpcId string
VPC id for VPC containing the Security Group.
VpcName string
Security Group VPC name.
dome9CloudAccountId This property is required. String
Cloud account id in Dome9.
dome9SecurityGroupName This property is required. String
Name of the Security Group.
awsRegionId String
AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
awsSecurityGroupId String
description String
Security Group description.
isProtected Boolean
Indicates the Security Group is in Protected mode.

  • Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
services List<AwsSecurityGroupService>
Security Group services.
tags Map<String,String>
Security Group tags.
vpcId String
VPC id for VPC containing the Security Group.
vpcName String
Security Group VPC name.
dome9CloudAccountId This property is required. string
Cloud account id in Dome9.
dome9SecurityGroupName This property is required. string
Name of the Security Group.
awsRegionId string
AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
awsSecurityGroupId string
description string
Security Group description.
isProtected boolean
Indicates the Security Group is in Protected mode.

  • Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
services AwsSecurityGroupService[]
Security Group services.
tags {[key: string]: string}
Security Group tags.
vpcId string
VPC id for VPC containing the Security Group.
vpcName string
Security Group VPC name.
dome9_cloud_account_id This property is required. str
Cloud account id in Dome9.
dome9_security_group_name This property is required. str
Name of the Security Group.
aws_region_id str
AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
aws_security_group_id str
description str
Security Group description.
is_protected bool
Indicates the Security Group is in Protected mode.

  • Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
services Sequence[AwsSecurityGroupServiceArgs]
Security Group services.
tags Mapping[str, str]
Security Group tags.
vpc_id str
VPC id for VPC containing the Security Group.
vpc_name str
Security Group VPC name.
dome9CloudAccountId This property is required. String
Cloud account id in Dome9.
dome9SecurityGroupName This property is required. String
Name of the Security Group.
awsRegionId String
AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
awsSecurityGroupId String
description String
Security Group description.
isProtected Boolean
Indicates the Security Group is in Protected mode.

  • Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
services List<Property Map>
Security Group services.
tags Map<String>
Security Group tags.
vpcId String
VPC id for VPC containing the Security Group.
vpcName String
Security Group VPC name.

Outputs

All input properties are implicitly available as output properties. Additionally, the AwsSecurityGroup resource produces the following output properties:

CloudAccountName string
AWS cloud account name.
ExternalId string
Security Group external id.
Id string
The provider-assigned unique ID for this managed resource.
CloudAccountName string
AWS cloud account name.
ExternalId string
Security Group external id.
Id string
The provider-assigned unique ID for this managed resource.
cloudAccountName String
AWS cloud account name.
externalId String
Security Group external id.
id String
The provider-assigned unique ID for this managed resource.
cloudAccountName string
AWS cloud account name.
externalId string
Security Group external id.
id string
The provider-assigned unique ID for this managed resource.
cloud_account_name str
AWS cloud account name.
external_id str
Security Group external id.
id str
The provider-assigned unique ID for this managed resource.
cloudAccountName String
AWS cloud account name.
externalId String
Security Group external id.
id String
The provider-assigned unique ID for this managed resource.

Look up Existing AwsSecurityGroup Resource

Get an existing AwsSecurityGroup resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: AwsSecurityGroupState, opts?: CustomResourceOptions): AwsSecurityGroup
@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        aws_region_id: Optional[str] = None,
        aws_security_group_id: Optional[str] = None,
        cloud_account_name: Optional[str] = None,
        description: Optional[str] = None,
        dome9_cloud_account_id: Optional[str] = None,
        dome9_security_group_name: Optional[str] = None,
        external_id: Optional[str] = None,
        is_protected: Optional[bool] = None,
        services: Optional[Sequence[AwsSecurityGroupServiceArgs]] = None,
        tags: Optional[Mapping[str, str]] = None,
        vpc_id: Optional[str] = None,
        vpc_name: Optional[str] = None) -> AwsSecurityGroup
func GetAwsSecurityGroup(ctx *Context, name string, id IDInput, state *AwsSecurityGroupState, opts ...ResourceOption) (*AwsSecurityGroup, error)
public static AwsSecurityGroup Get(string name, Input<string> id, AwsSecurityGroupState? state, CustomResourceOptions? opts = null)
public static AwsSecurityGroup get(String name, Output<String> id, AwsSecurityGroupState state, CustomResourceOptions options)
resources:  _:    type: dome9:AwsSecurityGroup    get:      id: ${id}
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
resource_name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
The following state arguments are supported:
AwsRegionId string
AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
AwsSecurityGroupId string
CloudAccountName string
AWS cloud account name.
Description string
Security Group description.
Dome9CloudAccountId string
Cloud account id in Dome9.
Dome9SecurityGroupName string
Name of the Security Group.
ExternalId string
Security Group external id.
IsProtected bool
Indicates the Security Group is in Protected mode.

  • Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
Services List<AwsSecurityGroupService>
Security Group services.
Tags Dictionary<string, string>
Security Group tags.
VpcId string
VPC id for VPC containing the Security Group.
VpcName string
Security Group VPC name.
AwsRegionId string
AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
AwsSecurityGroupId string
CloudAccountName string
AWS cloud account name.
Description string
Security Group description.
Dome9CloudAccountId string
Cloud account id in Dome9.
Dome9SecurityGroupName string
Name of the Security Group.
ExternalId string
Security Group external id.
IsProtected bool
Indicates the Security Group is in Protected mode.

  • Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
Services []AwsSecurityGroupServiceArgs
Security Group services.
Tags map[string]string
Security Group tags.
VpcId string
VPC id for VPC containing the Security Group.
VpcName string
Security Group VPC name.
awsRegionId String
AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
awsSecurityGroupId String
cloudAccountName String
AWS cloud account name.
description String
Security Group description.
dome9CloudAccountId String
Cloud account id in Dome9.
dome9SecurityGroupName String
Name of the Security Group.
externalId String
Security Group external id.
isProtected Boolean
Indicates the Security Group is in Protected mode.

  • Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
services List<AwsSecurityGroupService>
Security Group services.
tags Map<String,String>
Security Group tags.
vpcId String
VPC id for VPC containing the Security Group.
vpcName String
Security Group VPC name.
awsRegionId string
AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
awsSecurityGroupId string
cloudAccountName string
AWS cloud account name.
description string
Security Group description.
dome9CloudAccountId string
Cloud account id in Dome9.
dome9SecurityGroupName string
Name of the Security Group.
externalId string
Security Group external id.
isProtected boolean
Indicates the Security Group is in Protected mode.

  • Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
services AwsSecurityGroupService[]
Security Group services.
tags {[key: string]: string}
Security Group tags.
vpcId string
VPC id for VPC containing the Security Group.
vpcName string
Security Group VPC name.
aws_region_id str
AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
aws_security_group_id str
cloud_account_name str
AWS cloud account name.
description str
Security Group description.
dome9_cloud_account_id str
Cloud account id in Dome9.
dome9_security_group_name str
Name of the Security Group.
external_id str
Security Group external id.
is_protected bool
Indicates the Security Group is in Protected mode.

  • Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
services Sequence[AwsSecurityGroupServiceArgs]
Security Group services.
tags Mapping[str, str]
Security Group tags.
vpc_id str
VPC id for VPC containing the Security Group.
vpc_name str
Security Group VPC name.
awsRegionId String
AWS region, in AWS format (e.g., "us-east-1"); default is us_east_1.
awsSecurityGroupId String
cloudAccountName String
AWS cloud account name.
description String
Security Group description.
dome9CloudAccountId String
Cloud account id in Dome9.
dome9SecurityGroupName String
Name of the Security Group.
externalId String
Security Group external id.
isProtected Boolean
Indicates the Security Group is in Protected mode.

  • Note: to set the protection mode, first create the Security Group, then update it with the desired protection mode value ('true' for Protected).
services List<Property Map>
Security Group services.
tags Map<String>
Security Group tags.
vpcId String
VPC id for VPC containing the Security Group.
vpcName String
Security Group VPC name.

Supporting Types

AwsSecurityGroupService
, AwsSecurityGroupServiceArgs

Inbounds List<AwsSecurityGroupServiceInbound>
inbound service.
Outbounds List<AwsSecurityGroupServiceOutbound>

outbound service.

The configuration of inbound and outbound is:

Inbounds []AwsSecurityGroupServiceInbound
inbound service.
Outbounds []AwsSecurityGroupServiceOutbound

outbound service.

The configuration of inbound and outbound is:

inbounds List<AwsSecurityGroupServiceInbound>
inbound service.
outbounds List<AwsSecurityGroupServiceOutbound>

outbound service.

The configuration of inbound and outbound is:

inbounds AwsSecurityGroupServiceInbound[]
inbound service.
outbounds AwsSecurityGroupServiceOutbound[]

outbound service.

The configuration of inbound and outbound is:

inbounds Sequence[AwsSecurityGroupServiceInbound]
inbound service.
outbounds Sequence[AwsSecurityGroupServiceOutbound]

outbound service.

The configuration of inbound and outbound is:

inbounds List<Property Map>
inbound service.
outbounds List<Property Map>

outbound service.

The configuration of inbound and outbound is:

AwsSecurityGroupServiceInbound
, AwsSecurityGroupServiceInboundArgs

Description string
Security Group description.
Name string
Service name.
OpenForAll bool
Is open for all.
Port string
Service type (port).
ProtocolType string
Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
Scopes List<AwsSecurityGroupServiceInboundScope>
Service scope which has the following configuration:
Description string
Security Group description.
Name string
Service name.
OpenForAll bool
Is open for all.
Port string
Service type (port).
ProtocolType string
Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
Scopes []AwsSecurityGroupServiceInboundScope
Service scope which has the following configuration:
description String
Security Group description.
name String
Service name.
openForAll Boolean
Is open for all.
port String
Service type (port).
protocolType String
Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
scopes List<AwsSecurityGroupServiceInboundScope>
Service scope which has the following configuration:
description string
Security Group description.
name string
Service name.
openForAll boolean
Is open for all.
port string
Service type (port).
protocolType string
Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
scopes AwsSecurityGroupServiceInboundScope[]
Service scope which has the following configuration:
description str
Security Group description.
name str
Service name.
open_for_all bool
Is open for all.
port str
Service type (port).
protocol_type str
Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
scopes Sequence[AwsSecurityGroupServiceInboundScope]
Service scope which has the following configuration:
description String
Security Group description.
name String
Service name.
openForAll Boolean
Is open for all.
port String
Service type (port).
protocolType String
Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
scopes List<Property Map>
Service scope which has the following configuration:

AwsSecurityGroupServiceInboundScope
, AwsSecurityGroupServiceInboundScopeArgs

Data This property is required. Dictionary<string, string>
scope data.
Type This property is required. string
scope type.
Data This property is required. map[string]string
scope data.
Type This property is required. string
scope type.
data This property is required. Map<String,String>
scope data.
type This property is required. String
scope type.
data This property is required. {[key: string]: string}
scope data.
type This property is required. string
scope type.
data This property is required. Mapping[str, str]
scope data.
type This property is required. str
scope type.
data This property is required. Map<String>
scope data.
type This property is required. String
scope type.

AwsSecurityGroupServiceOutbound
, AwsSecurityGroupServiceOutboundArgs

Description string
Security Group description.
Name string
Service name.
OpenForAll bool
Is open for all.
Port string
Service type (port).
ProtocolType string
Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
Scopes List<AwsSecurityGroupServiceOutboundScope>
Service scope which has the following configuration:
Description string
Security Group description.
Name string
Service name.
OpenForAll bool
Is open for all.
Port string
Service type (port).
ProtocolType string
Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
Scopes []AwsSecurityGroupServiceOutboundScope
Service scope which has the following configuration:
description String
Security Group description.
name String
Service name.
openForAll Boolean
Is open for all.
port String
Service type (port).
protocolType String
Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
scopes List<AwsSecurityGroupServiceOutboundScope>
Service scope which has the following configuration:
description string
Security Group description.
name string
Service name.
openForAll boolean
Is open for all.
port string
Service type (port).
protocolType string
Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
scopes AwsSecurityGroupServiceOutboundScope[]
Service scope which has the following configuration:
description str
Security Group description.
name str
Service name.
open_for_all bool
Is open for all.
port str
Service type (port).
protocol_type str
Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
scopes Sequence[AwsSecurityGroupServiceOutboundScope]
Service scope which has the following configuration:
description String
Security Group description.
name String
Service name.
openForAll Boolean
Is open for all.
port String
Service type (port).
protocolType String
Service protocol type. Select from "ALL", "HOPOPT", "ICMP", "IGMP", "GGP", "IPV4", "ST", "TCP", "CBT", "EGP", "IGP", "BBN_RCC_MON", "NVP2", "PUP", "ARGUS", "EMCON", "XNET", "CHAOS", "UDP", "MUX", "DCN_MEAS", "HMP", "PRM", "XNS_IDP", "TRUNK1", "TRUNK2", "LEAF1", "LEAF2", "RDP", "IRTP", "ISO_TP4", "NETBLT", "MFE_NSP", "MERIT_INP", "DCCP", "ThreePC", "IDPR", "XTP", "DDP", "IDPR_CMTP", "TPplusplus", "IL", "IPV6", "SDRP", "IPV6_ROUTE", "IPV6_FRAG", "IDRP", "RSVP", "GRE", "DSR", "BNA", "ESP", "AH", "I_NLSP", "SWIPE", "NARP", "MOBILE", "TLSP", "SKIP", "ICMPV6", "IPV6_NONXT", "IPV6_OPTS", "CFTP", "SAT_EXPAK", "KRYPTOLAN", "RVD", "IPPC", "SAT_MON", "VISA", "IPCV", "CPNX", "CPHB", "WSN", "PVP", "BR_SAT_MON", "SUN_ND", "WB_MON", "WB_EXPAK", "ISO_IP", "VMTP", "SECURE_VMTP", "VINES", "TTP", "NSFNET_IGP", "DGP", "TCF", "EIGRP", "OSPFIGP", "SPRITE_RPC", "LARP", "MTP", "AX25", "IPIP", "MICP", "SCC_SP", "ETHERIP", "ENCAP", "GMTP", "IFMP", "PNNI", "PIM", "ARIS", "SCPS", "QNX", "AN", "IPCOMP", "SNP", "COMPAQ_PEER", "IPX_IN_IP", "VRRP", "PGM", "L2TP", "DDX", "IATP", "STP", "SRP", "UTI", "SMP", "SM", "PTP", "ISIS", "FIRE", "CRTP", "CRUDP", "SSCOPMCE", "IPLT", "SPS", "PIPE", "SCTP", "FC", "RSVP_E2E_IGNORE", "MOBILITY_HEADER", "UDPLITE", "MPLS_IN_IP", "MANET", "HIP", "SHIM6", "WESP" or "ROHC".
scopes List<Property Map>
Service scope which has the following configuration:

AwsSecurityGroupServiceOutboundScope
, AwsSecurityGroupServiceOutboundScopeArgs

Data Dictionary<string, string>
scope data.
Type string
scope type.
Data map[string]string
scope data.
Type string
scope type.
data Map<String,String>
scope data.
type String
scope type.
data {[key: string]: string}
scope data.
type string
scope type.
data Mapping[str, str]
scope data.
type str
scope type.
data Map<String>
scope data.
type String
scope type.

Import

The security group can be imported; use <SESCURITY GROUP ID> as the import ID.

For example:

$ pulumi import dome9:index/awsSecurityGroup:AwsSecurityGroup test 00000000-0000-0000-0000-000000000000
Copy

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository
dome9 dome9/terraform-provider-dome9
License
Notes
This Pulumi package is based on the dome9 Terraform Provider.