No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

<https://www.pulumi.com/registry/packages/aws/api-docs/ec2/securitygrouprule/>

you can either add it inline to the `ingress` or `egress` array, or define a rule for each

```sg = aws.ec2.SecurityGroup("dev-sg",
    description = "Allow web traffic for cluster",
    vpc_id = vpc.vpc_id,
    ingress = [aws.ec2.SecurityGroupIngressArgs(
        description = "Allow port 80 inbound from Internet",
        from_port = 80,
        to_port = 80,
        protocol = "TCP",
        cidr_blocks = ["0.0.0.0/0"]
    ),
        description = "Allow port 3000 in from the SG",
        from_port = 3000,
        to_port = 3000,
        protocol = "TCP",
        self = True
    ],
    egress = [aws.ec2.SecurityGroupEgressArgs(
        description = "Allow all traffic out from cluster",
        from_port = 0,
        to_port = 0,
        protocol = "-1",
        cidr_blocks = ["0.0.0.0/0"],
        description = "Allow port 3000 out to the SG",
        from_port = 3000,
        to_prot = 3000,
        protocol = "TCP",
        self = True
    )]
)```

```sg = aws.ec2.SecurityGroup("dev-sg",
    description = "Allow web traffic for cluster",
    vpc_id = vpc.vpc_id,
    ingress = [aws.ec2.SecurityGroupIngressArgs(
        description = "Allow port 80 inbound from Internet",
        from_port = 80,
        to_port = 80,
        protocol = "TCP",
        cidr_blocks = ["0.0.0.0/0"]
    ),
        aws.ec2.SecurityGroupIngressArgs(
        description = "Allow port 3000 in from the SG",
        from_port = 3000,
        to_port = 3000,
        protocol = "TCP",
        self = True)
    ],
)```

Thankyou I forgot the Args...

Working now
```sg = aws.ec2.SecurityGroup("dev-sg",
    description = "Allow web traffic for cluster",
    vpc_id = vpc.vpc_id,
    ingress = [aws.ec2.SecurityGroupIngressArgs(
        description = "Allow port 80 inbound from Internet",
        from_port = 80,
        to_port = 80,
        protocol = "TCP",
        cidr_blocks = ["0.0.0.0/0"]
    ),
    aws.ec2.SecurityGroupIngressArgs(
        description = "Allow port 3000 in from the SG",
        from_port = 3000,
        to_port = 3000,
        protocol = "TCP",
        self = True
    )],
    egress = [aws.ec2.SecurityGroupEgressArgs(
        description = "Allow all traffic out from cluster",
        from_port = 0,
        to_port = 0,
        protocol = "-1",
        cidr_blocks = ["0.0.0.0/0"],
    ),
    aws.ec2.SecurityGroupIngressArgs(
        description = "Allow port 3000 out to the SG",
        from_port = 3000,
        to_port = 3000,
        protocol = "TCP",
        self = True
    )]
)```