Channels
pulumi-ai
package-authoring
pulumi-cdk
oracle-cloud-infrastructure
learn-pulumi-events
linen
registry
built-with-pulumi
pulumi-cloud
contribex
testingtesting321
hacktoberfest
cloudengineering
yaml
pulumi-crosscode
content-share
finops
multi-language-hackathon
office-hours
workshops
blog-posts
localstack
welcome
gitlab
pulumi-kubernetes-operator
jobs
aws
pulumi-deployments
dotnet
golang
announcements
java
pulumiverse
python
install
getting-started
cloudengineering-support
testingtesting123
hackathon-03-19-2020
typescript
google-cloud
contribute
azure
kubernetes
docs
automation-api
status
general
Title
l
little-cartoon-10569
06/28/2020, 9:20 PMAre there pre-built security groups with well-known rules and rule groups? Like the Terraform "aws security-group" module? I'd like a shortcut for creating the security group needed for EC2 instances to join an AD domain, and there's about 16 well-known rules needed...
g
gentle-diamond-70147
06/28/2020, 9:32 PMI'm not aware of a community module for this.
This should be really straightforward with something like below:
const adSg = new aws.ec2.SecurityGroup("ad", {
vpcId: vpc.id,
egress: [
// your rules here
]
});I'm curious... what does the Terraform security-group module provide in addition to this?
l
little-cartoon-10569
06/28/2020, 10:08 PMNamed port/protocol combinations (e.g.
activemq-5671-tcpactivemq-61614-tcpactivemqSo you can create things like an ingress activemq security group in about 10 lines.
ActiveMQ only needs (iirc) 5 rules.. AD is much bigger, needs about 16 egress rules for the Domain members. Fortunately, just creating an AD directory creates the equivalent ingress security group for the controller.
Is there a usual way to contribute community modules? I need to create two ComponentResources for AD, and the "member" one might be big enough to save someone else some effort. There's a security group, all the rules, the SSM document and the IAM stuff needed to use it.
l
loud-battery-37784
06/29/2020, 1:36 PMI haven’t looked deeply yet but does the
awsx