{"id":13505682,"url":"https://github.com/terraform-aws-modules/terraform-aws-security-group","last_synced_at":"2025-05-14T10:02:11.015Z","repository":{"id":25794995,"uuid":"104858225","full_name":"terraform-aws-modules/terraform-aws-security-group","owner":"terraform-aws-modules","description":"Terraform module to create AWS Security Group resources πŸ‡ΊπŸ‡¦","archived":false,"fork":false,"pushed_at":"2025-01-08T00:42:18.000Z","size":585,"stargazers_count":576,"open_issues_count":3,"forks_count":1112,"subscribers_count":16,"default_branch":"master","last_synced_at":"2025-04-11T04:11:53.700Z","etag":null,"topics":["aws","aws-security-group","aws-vpc","security-group","terraform-module"],"latest_commit_sha":null,"homepage":"https://registry.terraform.io/modules/terraform-aws-modules/security-group/aws","language":"HCL","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/terraform-aws-modules.png","metadata":{"funding":{"github":["antonbabenko"],"custom":"https://www.paypal.me/antonbabenko"},"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2017-09-26T08:33:11.000Z","updated_at":"2025-04-08T12:07:38.000Z","dependencies_parsed_at":"2023-02-14T01:45:20.515Z","dependency_job_id":"4a86a993-3528-4715-b7fd-93bda545ff46","html_url":"https://github.com/terraform-aws-modules/terraform-aws-security-group","commit_stats":{"total_commits":197,"total_committers":62,"mean_commits":"3.1774193548387095","dds":0.5532994923857868,"last_synced_commit":"43798eab255616bd23ef4140f50252d585c9c51b"},"previous_names":[],"tags_count":102,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/terraform-aws-modules%2Fterraform-aws-security-group","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/terraform-aws-modules%2Fterraform-aws-security-group/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/terraform-aws-modules%2Fterraform-aws-security-group/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/terraform-aws-modules%2Fterraform-aws-security-group/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/terraform-aws-modules","download_url":"https://codeload.github.com/terraform-aws-modules/terraform-aws-security-group/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":254119449,"owners_count":22017947,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aws","aws-security-group","aws-vpc","security-group","terraform-module"],"created_at":"2024-08-01T00:01:11.545Z","updated_at":"2025-05-14T10:02:10.946Z","avatar_url":"https://github.com/terraform-aws-modules.png","language":"HCL","funding_links":["https://github.com/sponsors/antonbabenko","https://www.paypal.me/antonbabenko"],"categories":["Community Modules","HCL"],"sub_categories":["Miscellaneous"],"readme":"# AWS EC2-VPC Security Group Terraform module\n\nTerraform module which creates [EC2 security group within VPC](http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_SecurityGroups.html) on AWS.\n\n[![SWUbanner](https://raw.githubusercontent.com/vshymanskyy/StandWithUkraine/main/banner2-direct.svg)](https://github.com/vshymanskyy/StandWithUkraine/blob/main/docs/README.md)\n\n## Features\n\nThis module aims to implement **ALL** combinations of arguments supported by AWS and latest stable version of Terraform:\n* IPv4/IPv6 CIDR blocks\n* [VPC endpoint prefix lists](http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/vpc-endpoints.html) (use data source [aws_prefix_list](https://www.terraform.io/docs/providers/aws/d/prefix_list.html))\n* Access from source security groups\n* Access from self\n* Named rules ([see the rules here](https://github.com/terraform-aws-modules/terraform-aws-security-group/blob/master/rules.tf))\n* Named groups of rules with ingress (inbound) and egress (outbound) ports open for common scenarios (eg, [ssh](https://github.com/terraform-aws-modules/terraform-aws-security-group/tree/master/modules/ssh), [http-80](https://github.com/terraform-aws-modules/terraform-aws-security-group/tree/master/modules/http-80), [mysql](https://github.com/terraform-aws-modules/terraform-aws-security-group/tree/master/modules/mysql), see the whole list [here](https://github.com/terraform-aws-modules/terraform-aws-security-group/blob/master/modules/README.md))\n* Conditionally create security group and/or all required security group rules.\n\nIngress and egress rules can be configured in a variety of ways. See [inputs section](#inputs) for all supported arguments and [complete example](https://github.com/terraform-aws-modules/terraform-aws-security-group/tree/master/examples/complete) for the complete use-case.\n\nIf there is a missing feature or a bug - [open an issue](https://github.com/terraform-aws-modules/terraform-aws-security-group/issues/new).\n\n## Terraform versions\n\nFor Terraform 0.13 or later use any version from `v4.5.0` of this module or newer.\n\nFor Terraform 0.12 use any version from `v3.*` to `v4.4.0`.\n\nIf you are using Terraform 0.11 you can use versions `v2.*`.\n\n## Usage\n\nThere are two ways to create security groups using this module:\n\n1. [Specifying predefined rules (HTTP, SSH, etc)](https://github.com/terraform-aws-modules/terraform-aws-security-group#security-group-with-predefined-rules)\n1. [Specifying custom rules](https://github.com/terraform-aws-modules/terraform-aws-security-group#security-group-with-custom-rules)\n\n### Security group with predefined rules\n\n```hcl\nmodule \"web_server_sg\" {\n source = \"terraform-aws-modules/security-group/aws//modules/http-80\"\n\n name = \"web-server\"\n description = \"Security group for web-server with HTTP ports open within VPC\"\n vpc_id = \"vpc-12345678\"\n\n ingress_cidr_blocks = [\"10.10.0.0/16\"]\n}\n```\n\n### Security group with custom rules\n\n```hcl\nmodule \"vote_service_sg\" {\n source = \"terraform-aws-modules/security-group/aws\"\n\n name = \"user-service\"\n description = \"Security group for user-service with custom ports open within VPC, and PostgreSQL publicly open\"\n vpc_id = \"vpc-12345678\"\n\n ingress_cidr_blocks = [\"10.10.0.0/16\"]\n ingress_rules = [\"https-443-tcp\"]\n ingress_with_cidr_blocks = [\n {\n from_port = 8080\n to_port = 8090\n protocol = \"tcp\"\n description = \"User-service ports\"\n cidr_blocks = \"10.10.0.0/16\"\n },\n {\n rule = \"postgresql-tcp\"\n cidr_blocks = \"0.0.0.0/0\"\n },\n ]\n}\n```\n\n### Note about \"value of 'count' cannot be computed\"\n\nTerraform 0.11 has a limitation which does not allow **computed** values inside `count` attribute on resources (issues: [#16712](https://github.com/hashicorp/terraform/issues/16712), [#18015](https://github.com/hashicorp/terraform/issues/18015), ...)\n\nComputed values are values provided as outputs from `module`. Non-computed values are all others - static values, values referenced as `variable` and from data-sources.\n\nWhen you need to specify computed value inside security group rule argument you need to specify it using an argument which starts with `computed_` and provide a number of elements in the argument which starts with `number_of_computed_`. See these examples:\n\n```hcl\nmodule \"http_sg\" {\n source = \"terraform-aws-modules/security-group/aws\"\n # omitted for brevity\n}\n\nmodule \"db_computed_source_sg\" {\n # omitted for brevity\n\n vpc_id = \"vpc-12345678\" # these are valid values also - `module.vpc.vpc_id` and `local.vpc_id`\n\n computed_ingress_with_source_security_group_id = [\n {\n rule = \"mysql-tcp\"\n source_security_group_id = module.http_sg.security_group_id\n }\n ]\n number_of_computed_ingress_with_source_security_group_id = 1\n}\n\nmodule \"db_computed_sg\" {\n # omitted for brevity\n\n ingress_cidr_blocks = [\"10.10.0.0/16\", data.aws_security_group.default.id]\n\n computed_ingress_cidr_blocks = [module.vpc.vpc_cidr_block]\n number_of_computed_ingress_cidr_blocks = 1\n}\n\nmodule \"db_computed_merged_sg\" {\n # omitted for brevity\n\n computed_ingress_cidr_blocks = [\"10.10.0.0/16\", module.vpc.vpc_cidr_block]\n number_of_computed_ingress_cidr_blocks = 2\n}\n```\n\nNote that `db_computed_sg` and `db_computed_merged_sg` are equal, because it is possible to put both computed and non-computed values in arguments starting with `computed_`.\n\n## Conditional creation\n\nSometimes you need a way to conditionally create a security group. If you're using Terraform \u003c 0.13 which lacks module support for [count](https://www.terraform.io/docs/language/meta-arguments/count.html), you can instead specify the argument `create`.\n\n```hcl\n# This security group will not be created\nmodule \"vote_service_sg\" {\n source = \"terraform-aws-modules/security-group/aws\"\n\n create = false\n # ... omitted\n}\n```\n\n## Examples\n\n* [Complete Security Group example](https://github.com/terraform-aws-modules/terraform-aws-security-group/tree/master/examples/complete) shows all available parameters to configure security group.\n* [Security Group \"Rules Only\" example](https://github.com/terraform-aws-modules/terraform-aws-security-group/tree/master/examples/rules-only) shows how to manage just rules of a security group that is created outside.\n* [HTTP Security Group example](https://github.com/terraform-aws-modules/terraform-aws-security-group/tree/master/examples/http) shows more applicable security groups for common web-servers.\n* [Disable creation of Security Group example](https://github.com/terraform-aws-modules/terraform-aws-security-group/tree/master/examples/disabled) shows how to disable creation of security group.\n* [Dynamic values inside Security Group rules example](https://github.com/terraform-aws-modules/terraform-aws-security-group/tree/master/examples/dynamic) shows how to specify values inside security group rules (data-sources and variables are allowed).\n* [Computed values inside Security Group rules example](https://github.com/terraform-aws-modules/terraform-aws-security-group/tree/master/examples/computed) shows how to specify computed values inside security group rules (solution for `value of 'count' cannot be computed` problem).\n\n## How to add/update rules/groups?\n\nRules and groups are defined in [rules.tf](https://github.com/terraform-aws-modules/terraform-aws-security-group/blob/master/rules.tf). Run `update_groups.sh` when content of that file has changed to recreate content of all automatic modules.\n\n## Known issues\n\nNo issue is creating limit on this module.\n\n\u003c!-- BEGIN_TF_DOCS --\u003e\n## Requirements\n\n| Name | Version |\n|------|---------|\n| \u003ca name=\"requirement_terraform\"\u003e\u003c/a\u003e [terraform](#requirement\\_terraform) | \u003e= 1.0 |\n| \u003ca name=\"requirement_aws\"\u003e\u003c/a\u003e [aws](#requirement\\_aws) | \u003e= 3.29 |\n\n## Providers\n\n| Name | Version |\n|------|---------|\n| \u003ca name=\"provider_aws\"\u003e\u003c/a\u003e [aws](#provider\\_aws) | \u003e= 3.29 |\n\n## Modules\n\nNo modules.\n\n## Resources\n\n| Name | Type |\n|------|------|\n| [aws_security_group.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group) | resource |\n| [aws_security_group.this_name_prefix](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group) | resource |\n| [aws_security_group_rule.computed_egress_rules](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.computed_egress_with_cidr_blocks](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.computed_egress_with_ipv6_cidr_blocks](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.computed_egress_with_prefix_list_ids](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.computed_egress_with_self](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.computed_egress_with_source_security_group_id](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.computed_ingress_rules](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.computed_ingress_with_cidr_blocks](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.computed_ingress_with_ipv6_cidr_blocks](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.computed_ingress_with_prefix_list_ids](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.computed_ingress_with_self](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.computed_ingress_with_source_security_group_id](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.egress_rules](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.egress_with_cidr_blocks](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.egress_with_ipv6_cidr_blocks](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.egress_with_prefix_list_ids](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.egress_with_self](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.egress_with_source_security_group_id](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.ingress_rules](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.ingress_with_cidr_blocks](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.ingress_with_ipv6_cidr_blocks](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.ingress_with_prefix_list_ids](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.ingress_with_self](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n| [aws_security_group_rule.ingress_with_source_security_group_id](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group_rule) | resource |\n\n## Inputs\n\n| Name | Description | Type | Default | Required |\n|------|-------------|------|---------|:--------:|\n| \u003ca name=\"input_auto_groups\"\u003e\u003c/a\u003e [auto\\_groups](#input\\_auto\\_groups) | Map of groups of security group rules to use to generate modules (see update\\_groups.sh) | `map(map(list(string)))` | \u003cpre\u003e{\u003cbr/\u003e \"activemq\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"activemq-5671-tcp\",\u003cbr/\u003e \"activemq-8883-tcp\",\u003cbr/\u003e \"activemq-61614-tcp\",\u003cbr/\u003e \"activemq-61617-tcp\",\u003cbr/\u003e \"activemq-61619-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"alertmanager\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"alertmanager-9093-tcp\",\u003cbr/\u003e \"alertmanager-9094-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"carbon-relay-ng\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"carbon-line-in-tcp\",\u003cbr/\u003e \"carbon-line-in-udp\",\u003cbr/\u003e \"carbon-pickle-tcp\",\u003cbr/\u003e \"carbon-pickle-udp\",\u003cbr/\u003e \"carbon-gui-udp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"cassandra\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"cassandra-clients-tcp\",\u003cbr/\u003e \"cassandra-thrift-clients-tcp\",\u003cbr/\u003e \"cassandra-jmx-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"consul\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"consul-tcp\",\u003cbr/\u003e \"consul-grpc-tcp\",\u003cbr/\u003e \"consul-grpc-tcp-tls\",\u003cbr/\u003e \"consul-webui-http-tcp\",\u003cbr/\u003e \"consul-webui-https-tcp\",\u003cbr/\u003e \"consul-dns-tcp\",\u003cbr/\u003e \"consul-dns-udp\",\u003cbr/\u003e \"consul-serf-lan-tcp\",\u003cbr/\u003e \"consul-serf-lan-udp\",\u003cbr/\u003e \"consul-serf-wan-tcp\",\u003cbr/\u003e \"consul-serf-wan-udp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"dax-cluster\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"dax-cluster-unencrypted-tcp\",\u003cbr/\u003e \"dax-cluster-encrypted-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"docker-swarm\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"docker-swarm-mngmt-tcp\",\u003cbr/\u003e \"docker-swarm-node-tcp\",\u003cbr/\u003e \"docker-swarm-node-udp\",\u003cbr/\u003e \"docker-swarm-overlay-udp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"elasticsearch\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"elasticsearch-rest-tcp\",\u003cbr/\u003e \"elasticsearch-java-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"etcd\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"etcd-client-tcp\",\u003cbr/\u003e \"etcd-peer-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"grafana\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"grafana-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"graphite-statsd\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"graphite-webui\",\u003cbr/\u003e \"graphite-2003-tcp\",\u003cbr/\u003e \"graphite-2004-tcp\",\u003cbr/\u003e \"graphite-2023-tcp\",\u003cbr/\u003e \"graphite-2024-tcp\",\u003cbr/\u003e \"graphite-8080-tcp\",\u003cbr/\u003e \"graphite-8125-tcp\",\u003cbr/\u003e \"graphite-8125-udp\",\u003cbr/\u003e \"graphite-8126-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"http-80\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"http-80-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"http-8080\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"http-8080-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"https-443\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"https-443-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"https-8443\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"https-8443-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"ipsec-4500\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"ipsec-4500-udp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"ipsec-500\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"ipsec-500-udp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"kafka\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"kafka-broker-tcp\",\u003cbr/\u003e \"kafka-broker-tls-tcp\",\u003cbr/\u003e \"kafka-broker-tls-public-tcp\",\u003cbr/\u003e \"kafka-broker-sasl-scram-tcp\",\u003cbr/\u003e \"kafka-broker-sasl-scram-tcp\",\u003cbr/\u003e \"kafka-broker-sasl-iam-tcp\",\u003cbr/\u003e \"kafka-broker-sasl-iam-public-tcp\",\u003cbr/\u003e \"kafka-jmx-exporter-tcp\",\u003cbr/\u003e \"kafka-node-exporter-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"kibana\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"kibana-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"kubernetes-api\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"kubernetes-api-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"ldap\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"ldap-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"ldaps\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"ldaps-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"logstash\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"logstash-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"loki\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"loki-grafana\",\u003cbr/\u003e \"loki-grafana-grpc\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"memcached\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"memcached-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"minio\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"minio-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"mongodb\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"mongodb-27017-tcp\",\u003cbr/\u003e \"mongodb-27018-tcp\",\u003cbr/\u003e \"mongodb-27019-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"mssql\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"mssql-tcp\",\u003cbr/\u003e \"mssql-udp\",\u003cbr/\u003e \"mssql-analytics-tcp\",\u003cbr/\u003e \"mssql-broker-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"mysql\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"mysql-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"nfs\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"nfs-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"nomad\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"nomad-http-tcp\",\u003cbr/\u003e \"nomad-rpc-tcp\",\u003cbr/\u003e \"nomad-serf-tcp\",\u003cbr/\u003e \"nomad-serf-udp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"ntp\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"ntp-udp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"openvpn\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"openvpn-udp\",\u003cbr/\u003e \"openvpn-tcp\",\u003cbr/\u003e \"openvpn-https-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"oracle-db\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"oracle-db-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"postgresql\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"postgresql-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"prometheus\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"prometheus-http-tcp\",\u003cbr/\u003e \"prometheus-pushgateway-http-tcp\",\u003cbr/\u003e \"prometheus-node-exporter-http-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"promtail\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"promtail-http\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"puppet\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"puppet-tcp\",\u003cbr/\u003e \"puppetdb-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"rabbitmq\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"rabbitmq-4369-tcp\",\u003cbr/\u003e \"rabbitmq-5671-tcp\",\u003cbr/\u003e \"rabbitmq-5672-tcp\",\u003cbr/\u003e \"rabbitmq-15672-tcp\",\u003cbr/\u003e \"rabbitmq-25672-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"rdp\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"rdp-tcp\",\u003cbr/\u003e \"rdp-udp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"redis\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"redis-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"redshift\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"redshift-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"smtp\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"smtp-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"smtp-submission\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"smtp-submission-587-tcp\",\u003cbr/\u003e \"smtp-submission-2587-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"smtps\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"smtps-465-tcp\",\u003cbr/\u003e \"smtps-2465-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"solr\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"solr-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"splunk\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"splunk-indexer-tcp\",\u003cbr/\u003e \"splunk-web-tcp\",\u003cbr/\u003e \"splunk-splunkd-tcp\",\u003cbr/\u003e \"splunk-hec-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"squid\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"squid-proxy-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"ssh\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"ssh-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"storm\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"storm-nimbus-tcp\",\u003cbr/\u003e \"storm-ui-tcp\",\u003cbr/\u003e \"storm-supervisor-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"vault\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"vault-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"wazuh\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"wazuh-server-agent-connection-tcp\",\u003cbr/\u003e \"wazuh-server-agent-connection-udp\",\u003cbr/\u003e \"wazuh-server-agent-enrollment\",\u003cbr/\u003e \"wazuh-server-agent-cluster-daemon\",\u003cbr/\u003e \"wazuh-server-syslog-collector-tcp\",\u003cbr/\u003e \"wazuh-server-syslog-collector-udp\",\u003cbr/\u003e \"wazuh-server-restful-api\",\u003cbr/\u003e \"wazuh-indexer-restful-api\",\u003cbr/\u003e \"wazuh-dashboard\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"web\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"http-80-tcp\",\u003cbr/\u003e \"http-8080-tcp\",\u003cbr/\u003e \"https-443-tcp\",\u003cbr/\u003e \"web-jmx-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"winrm\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"winrm-http-tcp\",\u003cbr/\u003e \"winrm-https-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"zabbix\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"zabbix-server\",\u003cbr/\u003e \"zabbix-proxy\",\u003cbr/\u003e \"zabbix-agent\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"zipkin\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"zipkin-admin-tcp\",\u003cbr/\u003e \"zipkin-admin-query-tcp\",\u003cbr/\u003e \"zipkin-admin-web-tcp\",\u003cbr/\u003e \"zipkin-query-tcp\",\u003cbr/\u003e \"zipkin-web-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e },\u003cbr/\u003e \"zookeeper\": {\u003cbr/\u003e \"egress_rules\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_rules\": [\u003cbr/\u003e \"zookeeper-2181-tcp\",\u003cbr/\u003e \"zookeeper-2182-tls-tcp\",\u003cbr/\u003e \"zookeeper-2888-tcp\",\u003cbr/\u003e \"zookeeper-3888-tcp\",\u003cbr/\u003e \"zookeeper-jmx-tcp\"\u003cbr/\u003e ],\u003cbr/\u003e \"ingress_with_self\": [\u003cbr/\u003e \"all-all\"\u003cbr/\u003e ]\u003cbr/\u003e }\u003cbr/\u003e}\u003c/pre\u003e | no |\n| \u003ca name=\"input_computed_egress_rules\"\u003e\u003c/a\u003e [computed\\_egress\\_rules](#input\\_computed\\_egress\\_rules) | List of computed egress rules to create by name | `list(string)` | `[]` | no |\n| \u003ca name=\"input_computed_egress_with_cidr_blocks\"\u003e\u003c/a\u003e [computed\\_egress\\_with\\_cidr\\_blocks](#input\\_computed\\_egress\\_with\\_cidr\\_blocks) | List of computed egress rules to create where 'cidr\\_blocks' is used | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_computed_egress_with_ipv6_cidr_blocks\"\u003e\u003c/a\u003e [computed\\_egress\\_with\\_ipv6\\_cidr\\_blocks](#input\\_computed\\_egress\\_with\\_ipv6\\_cidr\\_blocks) | List of computed egress rules to create where 'ipv6\\_cidr\\_blocks' is used | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_computed_egress_with_prefix_list_ids\"\u003e\u003c/a\u003e [computed\\_egress\\_with\\_prefix\\_list\\_ids](#input\\_computed\\_egress\\_with\\_prefix\\_list\\_ids) | List of computed egress rules to create where 'prefix\\_list\\_ids' is used only | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_computed_egress_with_self\"\u003e\u003c/a\u003e [computed\\_egress\\_with\\_self](#input\\_computed\\_egress\\_with\\_self) | List of computed egress rules to create where 'self' is defined | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_computed_egress_with_source_security_group_id\"\u003e\u003c/a\u003e [computed\\_egress\\_with\\_source\\_security\\_group\\_id](#input\\_computed\\_egress\\_with\\_source\\_security\\_group\\_id) | List of computed egress rules to create where 'source\\_security\\_group\\_id' is used | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_computed_ingress_rules\"\u003e\u003c/a\u003e [computed\\_ingress\\_rules](#input\\_computed\\_ingress\\_rules) | List of computed ingress rules to create by name | `list(string)` | `[]` | no |\n| \u003ca name=\"input_computed_ingress_with_cidr_blocks\"\u003e\u003c/a\u003e [computed\\_ingress\\_with\\_cidr\\_blocks](#input\\_computed\\_ingress\\_with\\_cidr\\_blocks) | List of computed ingress rules to create where 'cidr\\_blocks' is used | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_computed_ingress_with_ipv6_cidr_blocks\"\u003e\u003c/a\u003e [computed\\_ingress\\_with\\_ipv6\\_cidr\\_blocks](#input\\_computed\\_ingress\\_with\\_ipv6\\_cidr\\_blocks) | List of computed ingress rules to create where 'ipv6\\_cidr\\_blocks' is used | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_computed_ingress_with_prefix_list_ids\"\u003e\u003c/a\u003e [computed\\_ingress\\_with\\_prefix\\_list\\_ids](#input\\_computed\\_ingress\\_with\\_prefix\\_list\\_ids) | List of computed ingress rules to create where 'prefix\\_list\\_ids' is used | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_computed_ingress_with_self\"\u003e\u003c/a\u003e [computed\\_ingress\\_with\\_self](#input\\_computed\\_ingress\\_with\\_self) | List of computed ingress rules to create where 'self' is defined | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_computed_ingress_with_source_security_group_id\"\u003e\u003c/a\u003e [computed\\_ingress\\_with\\_source\\_security\\_group\\_id](#input\\_computed\\_ingress\\_with\\_source\\_security\\_group\\_id) | List of computed ingress rules to create where 'source\\_security\\_group\\_id' is used | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_create\"\u003e\u003c/a\u003e [create](#input\\_create) | Whether to create security group and all rules | `bool` | `true` | no |\n| \u003ca name=\"input_create_sg\"\u003e\u003c/a\u003e [create\\_sg](#input\\_create\\_sg) | Whether to create security group | `bool` | `true` | no |\n| \u003ca name=\"input_create_timeout\"\u003e\u003c/a\u003e [create\\_timeout](#input\\_create\\_timeout) | Time to wait for a security group to be created | `string` | `\"10m\"` | no |\n| \u003ca name=\"input_delete_timeout\"\u003e\u003c/a\u003e [delete\\_timeout](#input\\_delete\\_timeout) | Time to wait for a security group to be deleted | `string` | `\"15m\"` | no |\n| \u003ca name=\"input_description\"\u003e\u003c/a\u003e [description](#input\\_description) | Description of security group | `string` | `\"Security Group managed by Terraform\"` | no |\n| \u003ca name=\"input_egress_cidr_blocks\"\u003e\u003c/a\u003e [egress\\_cidr\\_blocks](#input\\_egress\\_cidr\\_blocks) | List of IPv4 CIDR ranges to use on all egress rules | `list(string)` | \u003cpre\u003e[\u003cbr/\u003e \"0.0.0.0/0\"\u003cbr/\u003e]\u003c/pre\u003e | no |\n| \u003ca name=\"input_egress_ipv6_cidr_blocks\"\u003e\u003c/a\u003e [egress\\_ipv6\\_cidr\\_blocks](#input\\_egress\\_ipv6\\_cidr\\_blocks) | List of IPv6 CIDR ranges to use on all egress rules | `list(string)` | \u003cpre\u003e[\u003cbr/\u003e \"::/0\"\u003cbr/\u003e]\u003c/pre\u003e | no |\n| \u003ca name=\"input_egress_prefix_list_ids\"\u003e\u003c/a\u003e [egress\\_prefix\\_list\\_ids](#input\\_egress\\_prefix\\_list\\_ids) | List of prefix list IDs (for allowing access to VPC endpoints) to use on all egress rules | `list(string)` | `[]` | no |\n| \u003ca name=\"input_egress_rules\"\u003e\u003c/a\u003e [egress\\_rules](#input\\_egress\\_rules) | List of egress rules to create by name | `list(string)` | `[]` | no |\n| \u003ca name=\"input_egress_with_cidr_blocks\"\u003e\u003c/a\u003e [egress\\_with\\_cidr\\_blocks](#input\\_egress\\_with\\_cidr\\_blocks) | List of egress rules to create where 'cidr\\_blocks' is used | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_egress_with_ipv6_cidr_blocks\"\u003e\u003c/a\u003e [egress\\_with\\_ipv6\\_cidr\\_blocks](#input\\_egress\\_with\\_ipv6\\_cidr\\_blocks) | List of egress rules to create where 'ipv6\\_cidr\\_blocks' is used | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_egress_with_prefix_list_ids\"\u003e\u003c/a\u003e [egress\\_with\\_prefix\\_list\\_ids](#input\\_egress\\_with\\_prefix\\_list\\_ids) | List of egress rules to create where 'prefix\\_list\\_ids' is used only | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_egress_with_self\"\u003e\u003c/a\u003e [egress\\_with\\_self](#input\\_egress\\_with\\_self) | List of egress rules to create where 'self' is defined | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_egress_with_source_security_group_id\"\u003e\u003c/a\u003e [egress\\_with\\_source\\_security\\_group\\_id](#input\\_egress\\_with\\_source\\_security\\_group\\_id) | List of egress rules to create where 'source\\_security\\_group\\_id' is used | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_ingress_cidr_blocks\"\u003e\u003c/a\u003e [ingress\\_cidr\\_blocks](#input\\_ingress\\_cidr\\_blocks) | List of IPv4 CIDR ranges to use on all ingress rules | `list(string)` | `[]` | no |\n| \u003ca name=\"input_ingress_ipv6_cidr_blocks\"\u003e\u003c/a\u003e [ingress\\_ipv6\\_cidr\\_blocks](#input\\_ingress\\_ipv6\\_cidr\\_blocks) | List of IPv6 CIDR ranges to use on all ingress rules | `list(string)` | `[]` | no |\n| \u003ca name=\"input_ingress_prefix_list_ids\"\u003e\u003c/a\u003e [ingress\\_prefix\\_list\\_ids](#input\\_ingress\\_prefix\\_list\\_ids) | List of prefix list IDs (for allowing access to VPC endpoints) to use on all ingress rules | `list(string)` | `[]` | no |\n| \u003ca name=\"input_ingress_rules\"\u003e\u003c/a\u003e [ingress\\_rules](#input\\_ingress\\_rules) | List of ingress rules to create by name | `list(string)` | `[]` | no |\n| \u003ca name=\"input_ingress_with_cidr_blocks\"\u003e\u003c/a\u003e [ingress\\_with\\_cidr\\_blocks](#input\\_ingress\\_with\\_cidr\\_blocks) | List of ingress rules to create where 'cidr\\_blocks' is used | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_ingress_with_ipv6_cidr_blocks\"\u003e\u003c/a\u003e [ingress\\_with\\_ipv6\\_cidr\\_blocks](#input\\_ingress\\_with\\_ipv6\\_cidr\\_blocks) | List of ingress rules to create where 'ipv6\\_cidr\\_blocks' is used | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_ingress_with_prefix_list_ids\"\u003e\u003c/a\u003e [ingress\\_with\\_prefix\\_list\\_ids](#input\\_ingress\\_with\\_prefix\\_list\\_ids) | List of ingress rules to create where 'prefix\\_list\\_ids' is used only | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_ingress_with_self\"\u003e\u003c/a\u003e [ingress\\_with\\_self](#input\\_ingress\\_with\\_self) | List of ingress rules to create where 'self' is defined | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_ingress_with_source_security_group_id\"\u003e\u003c/a\u003e [ingress\\_with\\_source\\_security\\_group\\_id](#input\\_ingress\\_with\\_source\\_security\\_group\\_id) | List of ingress rules to create where 'source\\_security\\_group\\_id' is used | `list(map(string))` | `[]` | no |\n| \u003ca name=\"input_name\"\u003e\u003c/a\u003e [name](#input\\_name) | Name of security group - not required if create\\_sg is false | `string` | `null` | no |\n| \u003ca name=\"input_number_of_computed_egress_rules\"\u003e\u003c/a\u003e [number\\_of\\_computed\\_egress\\_rules](#input\\_number\\_of\\_computed\\_egress\\_rules) | Number of computed egress rules to create by name | `number` | `0` | no |\n| \u003ca name=\"input_number_of_computed_egress_with_cidr_blocks\"\u003e\u003c/a\u003e [number\\_of\\_computed\\_egress\\_with\\_cidr\\_blocks](#input\\_number\\_of\\_computed\\_egress\\_with\\_cidr\\_blocks) | Number of computed egress rules to create where 'cidr\\_blocks' is used | `number` | `0` | no |\n| \u003ca name=\"input_number_of_computed_egress_with_ipv6_cidr_blocks\"\u003e\u003c/a\u003e [number\\_of\\_computed\\_egress\\_with\\_ipv6\\_cidr\\_blocks](#input\\_number\\_of\\_computed\\_egress\\_with\\_ipv6\\_cidr\\_blocks) | Number of computed egress rules to create where 'ipv6\\_cidr\\_blocks' is used | `number` | `0` | no |\n| \u003ca name=\"input_number_of_computed_egress_with_prefix_list_ids\"\u003e\u003c/a\u003e [number\\_of\\_computed\\_egress\\_with\\_prefix\\_list\\_ids](#input\\_number\\_of\\_computed\\_egress\\_with\\_prefix\\_list\\_ids) | Number of computed egress rules to create where 'prefix\\_list\\_ids' is used only | `number` | `0` | no |\n| \u003ca name=\"input_number_of_computed_egress_with_self\"\u003e\u003c/a\u003e [number\\_of\\_computed\\_egress\\_with\\_self](#input\\_number\\_of\\_computed\\_egress\\_with\\_self) | Number of computed egress rules to create where 'self' is defined | `number` | `0` | no |\n| \u003ca name=\"input_number_of_computed_egress_with_source_security_group_id\"\u003e\u003c/a\u003e [number\\_of\\_computed\\_egress\\_with\\_source\\_security\\_group\\_id](#input\\_number\\_of\\_computed\\_egress\\_with\\_source\\_security\\_group\\_id) | Number of computed egress rules to create where 'source\\_security\\_group\\_id' is used | `number` | `0` | no |\n| \u003ca name=\"input_number_of_computed_ingress_rules\"\u003e\u003c/a\u003e [number\\_of\\_computed\\_ingress\\_rules](#input\\_number\\_of\\_computed\\_ingress\\_rules) | Number of computed ingress rules to create by name | `number` | `0` | no |\n| \u003ca name=\"input_number_of_computed_ingress_with_cidr_blocks\"\u003e\u003c/a\u003e [number\\_of\\_computed\\_ingress\\_with\\_cidr\\_blocks](#input\\_number\\_of\\_computed\\_ingress\\_with\\_cidr\\_blocks) | Number of computed ingress rules to create where 'cidr\\_blocks' is used | `number` | `0` | no |\n| \u003ca name=\"input_number_of_computed_ingress_with_ipv6_cidr_blocks\"\u003e\u003c/a\u003e [number\\_of\\_computed\\_ingress\\_with\\_ipv6\\_cidr\\_blocks](#input\\_number\\_of\\_computed\\_ingress\\_with\\_ipv6\\_cidr\\_blocks) | Number of computed ingress rules to create where 'ipv6\\_cidr\\_blocks' is used | `number` | `0` | no |\n| \u003ca name=\"input_number_of_computed_ingress_with_prefix_list_ids\"\u003e\u003c/a\u003e [number\\_of\\_computed\\_ingress\\_with\\_prefix\\_list\\_ids](#input\\_number\\_of\\_computed\\_ingress\\_with\\_prefix\\_list\\_ids) | Number of computed ingress rules to create where 'prefix\\_list\\_ids' is used | `number` | `0` | no |\n| \u003ca name=\"input_number_of_computed_ingress_with_self\"\u003e\u003c/a\u003e [number\\_of\\_computed\\_ingress\\_with\\_self](#input\\_number\\_of\\_computed\\_ingress\\_with\\_self) | Number of computed ingress rules to create where 'self' is defined | `number` | `0` | no |\n| \u003ca name=\"input_number_of_computed_ingress_with_source_security_group_id\"\u003e\u003c/a\u003e [number\\_of\\_computed\\_ingress\\_with\\_source\\_security\\_group\\_id](#input\\_number\\_of\\_computed\\_ingress\\_with\\_source\\_security\\_group\\_id) | Number of computed ingress rules to create where 'source\\_security\\_group\\_id' is used | `number` | `0` | no |\n| \u003ca name=\"input_putin_khuylo\"\u003e\u003c/a\u003e [putin\\_khuylo](#input\\_putin\\_khuylo) | Do you agree that Putin doesn't respect Ukrainian sovereignty and territorial integrity? More info: https://en.wikipedia.org/wiki/Putin_khuylo! | `bool` | `true` | no |\n| \u003ca name=\"input_revoke_rules_on_delete\"\u003e\u003c/a\u003e [revoke\\_rules\\_on\\_delete](#input\\_revoke\\_rules\\_on\\_delete) | Instruct Terraform to revoke all of the Security Groups attached ingress and egress rules before deleting the rule itself. Enable for EMR. | `bool` | `false` | no |\n| \u003ca name=\"input_rules\"\u003e\u003c/a\u003e [rules](#input\\_rules) | Map of known security group rules (define as 'name' = ['from port', 'to port', 'protocol', 'description']) | `map(list(any))` | \u003cpre\u003e{\u003cbr/\u003e \"_\": [\u003cbr/\u003e \"\",\u003cbr/\u003e \"\",\u003cbr/\u003e \"\"\u003cbr/\u003e ],\u003cbr/\u003e \"activemq-5671-tcp\": [\u003cbr/\u003e 5671,\u003cbr/\u003e 5671,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"ActiveMQ AMQP\"\u003cbr/\u003e ],\u003cbr/\u003e \"activemq-61614-tcp\": [\u003cbr/\u003e 61614,\u003cbr/\u003e 61614,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"ActiveMQ STOMP\"\u003cbr/\u003e ],\u003cbr/\u003e \"activemq-61617-tcp\": [\u003cbr/\u003e 61617,\u003cbr/\u003e 61617,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"ActiveMQ OpenWire\"\u003cbr/\u003e ],\u003cbr/\u003e \"activemq-61619-tcp\": [\u003cbr/\u003e 61619,\u003cbr/\u003e 61619,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"ActiveMQ WebSocket\"\u003cbr/\u003e ],\u003cbr/\u003e \"activemq-8883-tcp\": [\u003cbr/\u003e 8883,\u003cbr/\u003e 8883,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"ActiveMQ MQTT\"\u003cbr/\u003e ],\u003cbr/\u003e \"alertmanager-9093-tcp\": [\u003cbr/\u003e 9093,\u003cbr/\u003e 9093,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Alert Manager\"\u003cbr/\u003e ],\u003cbr/\u003e \"alertmanager-9094-tcp\": [\u003cbr/\u003e 9094,\u003cbr/\u003e 9094,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Alert Manager Cluster\"\u003cbr/\u003e ],\u003cbr/\u003e \"all-all\": [\u003cbr/\u003e -1,\u003cbr/\u003e -1,\u003cbr/\u003e \"-1\",\u003cbr/\u003e \"All protocols\"\u003cbr/\u003e ],\u003cbr/\u003e \"all-icmp\": [\u003cbr/\u003e -1,\u003cbr/\u003e -1,\u003cbr/\u003e \"icmp\",\u003cbr/\u003e \"All IPV4 ICMP\"\u003cbr/\u003e ],\u003cbr/\u003e \"all-ipv6-icmp\": [\u003cbr/\u003e -1,\u003cbr/\u003e -1,\u003cbr/\u003e 58,\u003cbr/\u003e \"All IPV6 ICMP\"\u003cbr/\u003e ],\u003cbr/\u003e \"all-tcp\": [\u003cbr/\u003e 0,\u003cbr/\u003e 65535,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"All TCP ports\"\u003cbr/\u003e ],\u003cbr/\u003e \"all-udp\": [\u003cbr/\u003e 0,\u003cbr/\u003e 65535,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"All UDP ports\"\u003cbr/\u003e ],\u003cbr/\u003e \"carbon-admin-tcp\": [\u003cbr/\u003e 2004,\u003cbr/\u003e 2004,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Carbon admin\"\u003cbr/\u003e ],\u003cbr/\u003e \"carbon-gui-udp\": [\u003cbr/\u003e 8081,\u003cbr/\u003e 8081,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Carbon GUI\"\u003cbr/\u003e ],\u003cbr/\u003e \"carbon-line-in-tcp\": [\u003cbr/\u003e 2003,\u003cbr/\u003e 2003,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Carbon line-in\"\u003cbr/\u003e ],\u003cbr/\u003e \"carbon-line-in-udp\": [\u003cbr/\u003e 2003,\u003cbr/\u003e 2003,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"Carbon line-in\"\u003cbr/\u003e ],\u003cbr/\u003e \"carbon-pickle-tcp\": [\u003cbr/\u003e 2013,\u003cbr/\u003e 2013,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Carbon pickle\"\u003cbr/\u003e ],\u003cbr/\u003e \"carbon-pickle-udp\": [\u003cbr/\u003e 2013,\u003cbr/\u003e 2013,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"Carbon pickle\"\u003cbr/\u003e ],\u003cbr/\u003e \"cassandra-clients-tcp\": [\u003cbr/\u003e 9042,\u003cbr/\u003e 9042,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Cassandra clients\"\u003cbr/\u003e ],\u003cbr/\u003e \"cassandra-jmx-tcp\": [\u003cbr/\u003e 7199,\u003cbr/\u003e 7199,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"JMX\"\u003cbr/\u003e ],\u003cbr/\u003e \"cassandra-thrift-clients-tcp\": [\u003cbr/\u003e 9160,\u003cbr/\u003e 9160,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Cassandra Thrift clients\"\u003cbr/\u003e ],\u003cbr/\u003e \"consul-dns-tcp\": [\u003cbr/\u003e 8600,\u003cbr/\u003e 8600,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Consul DNS\"\u003cbr/\u003e ],\u003cbr/\u003e \"consul-dns-udp\": [\u003cbr/\u003e 8600,\u003cbr/\u003e 8600,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"Consul DNS\"\u003cbr/\u003e ],\u003cbr/\u003e \"consul-grpc-tcp\": [\u003cbr/\u003e 8502,\u003cbr/\u003e 8502,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Consul gRPC\"\u003cbr/\u003e ],\u003cbr/\u003e \"consul-grpc-tcp-tls\": [\u003cbr/\u003e 8503,\u003cbr/\u003e 8503,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Consul gRPC TLS\"\u003cbr/\u003e ],\u003cbr/\u003e \"consul-serf-lan-tcp\": [\u003cbr/\u003e 8301,\u003cbr/\u003e 8301,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Serf LAN\"\u003cbr/\u003e ],\u003cbr/\u003e \"consul-serf-lan-udp\": [\u003cbr/\u003e 8301,\u003cbr/\u003e 8301,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"Serf LAN\"\u003cbr/\u003e ],\u003cbr/\u003e \"consul-serf-wan-tcp\": [\u003cbr/\u003e 8302,\u003cbr/\u003e 8302,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Serf WAN\"\u003cbr/\u003e ],\u003cbr/\u003e \"consul-serf-wan-udp\": [\u003cbr/\u003e 8302,\u003cbr/\u003e 8302,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"Serf WAN\"\u003cbr/\u003e ],\u003cbr/\u003e \"consul-tcp\": [\u003cbr/\u003e 8300,\u003cbr/\u003e 8300,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Consul server\"\u003cbr/\u003e ],\u003cbr/\u003e \"consul-webui-http-tcp\": [\u003cbr/\u003e 8500,\u003cbr/\u003e 8500,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Consul web UI HTTP\"\u003cbr/\u003e ],\u003cbr/\u003e \"consul-webui-https-tcp\": [\u003cbr/\u003e 8501,\u003cbr/\u003e 8501,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Consul web UI HTTPS\"\u003cbr/\u003e ],\u003cbr/\u003e \"dax-cluster-encrypted-tcp\": [\u003cbr/\u003e 9111,\u003cbr/\u003e 9111,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"DAX Cluster encrypted\"\u003cbr/\u003e ],\u003cbr/\u003e \"dax-cluster-unencrypted-tcp\": [\u003cbr/\u003e 8111,\u003cbr/\u003e 8111,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"DAX Cluster unencrypted\"\u003cbr/\u003e ],\u003cbr/\u003e \"dns-tcp\": [\u003cbr/\u003e 53,\u003cbr/\u003e 53,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"DNS\"\u003cbr/\u003e ],\u003cbr/\u003e \"dns-udp\": [\u003cbr/\u003e 53,\u003cbr/\u003e 53,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"DNS\"\u003cbr/\u003e ],\u003cbr/\u003e \"docker-swarm-mngmt-tcp\": [\u003cbr/\u003e 2377,\u003cbr/\u003e 2377,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Docker Swarm cluster management\"\u003cbr/\u003e ],\u003cbr/\u003e \"docker-swarm-node-tcp\": [\u003cbr/\u003e 7946,\u003cbr/\u003e 7946,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Docker Swarm node\"\u003cbr/\u003e ],\u003cbr/\u003e \"docker-swarm-node-udp\": [\u003cbr/\u003e 7946,\u003cbr/\u003e 7946,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"Docker Swarm node\"\u003cbr/\u003e ],\u003cbr/\u003e \"docker-swarm-overlay-udp\": [\u003cbr/\u003e 4789,\u003cbr/\u003e 4789,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"Docker Swarm Overlay Network Traffic\"\u003cbr/\u003e ],\u003cbr/\u003e \"elasticsearch-java-tcp\": [\u003cbr/\u003e 9300,\u003cbr/\u003e 9300,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Elasticsearch Java interface\"\u003cbr/\u003e ],\u003cbr/\u003e \"elasticsearch-rest-tcp\": [\u003cbr/\u003e 9200,\u003cbr/\u003e 9200,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Elasticsearch REST interface\"\u003cbr/\u003e ],\u003cbr/\u003e \"etcd-client-tcp\": [\u003cbr/\u003e 2379,\u003cbr/\u003e 2379,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Etcd Client\"\u003cbr/\u003e ],\u003cbr/\u003e \"etcd-peer-tcp\": [\u003cbr/\u003e 2380,\u003cbr/\u003e 2380,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Etcd Peer\"\u003cbr/\u003e ],\u003cbr/\u003e \"grafana-tcp\": [\u003cbr/\u003e 3000,\u003cbr/\u003e 3000,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Grafana Dashboard\"\u003cbr/\u003e ],\u003cbr/\u003e \"graphite-2003-tcp\": [\u003cbr/\u003e 2003,\u003cbr/\u003e 2003,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Carbon receiver plain text\"\u003cbr/\u003e ],\u003cbr/\u003e \"graphite-2004-tcp\": [\u003cbr/\u003e 2004,\u003cbr/\u003e 2004,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Carbon receiver pickle\"\u003cbr/\u003e ],\u003cbr/\u003e \"graphite-2023-tcp\": [\u003cbr/\u003e 2023,\u003cbr/\u003e 2023,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Carbon aggregator plaintext\"\u003cbr/\u003e ],\u003cbr/\u003e \"graphite-2024-tcp\": [\u003cbr/\u003e 2024,\u003cbr/\u003e 2024,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Carbon aggregator pickle\"\u003cbr/\u003e ],\u003cbr/\u003e \"graphite-8080-tcp\": [\u003cbr/\u003e 8080,\u003cbr/\u003e 8080,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Graphite gunicorn port\"\u003cbr/\u003e ],\u003cbr/\u003e \"graphite-8125-tcp\": [\u003cbr/\u003e 8125,\u003cbr/\u003e 8125,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Statsd TCP\"\u003cbr/\u003e ],\u003cbr/\u003e \"graphite-8125-udp\": [\u003cbr/\u003e 8125,\u003cbr/\u003e 8125,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"Statsd UDP default\"\u003cbr/\u003e ],\u003cbr/\u003e \"graphite-8126-tcp\": [\u003cbr/\u003e 8126,\u003cbr/\u003e 8126,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Statsd admin\"\u003cbr/\u003e ],\u003cbr/\u003e \"graphite-webui\": [\u003cbr/\u003e 80,\u003cbr/\u003e 80,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Graphite admin interface\"\u003cbr/\u003e ],\u003cbr/\u003e \"http-80-tcp\": [\u003cbr/\u003e 80,\u003cbr/\u003e 80,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"HTTP\"\u003cbr/\u003e ],\u003cbr/\u003e \"http-8080-tcp\": [\u003cbr/\u003e 8080,\u003cbr/\u003e 8080,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"HTTP\"\u003cbr/\u003e ],\u003cbr/\u003e \"https-443-tcp\": [\u003cbr/\u003e 443,\u003cbr/\u003e 443,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"HTTPS\"\u003cbr/\u003e ],\u003cbr/\u003e \"https-8443-tcp\": [\u003cbr/\u003e 8443,\u003cbr/\u003e 8443,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"HTTPS\"\u003cbr/\u003e ],\u003cbr/\u003e \"ipsec-4500-udp\": [\u003cbr/\u003e 4500,\u003cbr/\u003e 4500,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"IPSEC NAT-T\"\u003cbr/\u003e ],\u003cbr/\u003e \"ipsec-500-udp\": [\u003cbr/\u003e 500,\u003cbr/\u003e 500,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"IPSEC ISAKMP\"\u003cbr/\u003e ],\u003cbr/\u003e \"kafka-broker-sasl-iam-public-tcp\": [\u003cbr/\u003e 9198,\u003cbr/\u003e 9198,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Kafka SASL/IAM Public access control enabled (MSK specific)\"\u003cbr/\u003e ],\u003cbr/\u003e \"kafka-broker-sasl-iam-tcp\": [\u003cbr/\u003e 9098,\u003cbr/\u003e 9098,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Kafka SASL/IAM access control enabled (MSK specific)\"\u003cbr/\u003e ],\u003cbr/\u003e \"kafka-broker-sasl-scram-public-tcp\": [\u003cbr/\u003e 9196,\u003cbr/\u003e 9196,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Kafka SASL/SCRAM Public enabled broker (MSK specific)\"\u003cbr/\u003e ],\u003cbr/\u003e \"kafka-broker-sasl-scram-tcp\": [\u003cbr/\u003e 9096,\u003cbr/\u003e 9096,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Kafka SASL/SCRAM enabled broker (MSK specific)\"\u003cbr/\u003e ],\u003cbr/\u003e \"kafka-broker-tcp\": [\u003cbr/\u003e 9092,\u003cbr/\u003e 9092,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Kafka PLAINTEXT enable broker 0.8.2+\"\u003cbr/\u003e ],\u003cbr/\u003e \"kafka-broker-tls-public-tcp\": [\u003cbr/\u003e 9194,\u003cbr/\u003e 9194,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Kafka TLS Public enabled broker 0.8.2+ (MSK specific)\"\u003cbr/\u003e ],\u003cbr/\u003e \"kafka-broker-tls-tcp\": [\u003cbr/\u003e 9094,\u003cbr/\u003e 9094,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Kafka TLS enabled broker 0.8.2+\"\u003cbr/\u003e ],\u003cbr/\u003e \"kafka-jmx-exporter-tcp\": [\u003cbr/\u003e 11001,\u003cbr/\u003e 11001,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Kafka JMX Exporter\"\u003cbr/\u003e ],\u003cbr/\u003e \"kafka-node-exporter-tcp\": [\u003cbr/\u003e 11002,\u003cbr/\u003e 11002,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Kafka Node Exporter\"\u003cbr/\u003e ],\u003cbr/\u003e \"kibana-tcp\": [\u003cbr/\u003e 5601,\u003cbr/\u003e 5601,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Kibana Web Interface\"\u003cbr/\u003e ],\u003cbr/\u003e \"kubernetes-api-tcp\": [\u003cbr/\u003e 6443,\u003cbr/\u003e 6443,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Kubernetes API Server\"\u003cbr/\u003e ],\u003cbr/\u003e \"ldap-tcp\": [\u003cbr/\u003e 389,\u003cbr/\u003e 389,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"LDAP\"\u003cbr/\u003e ],\u003cbr/\u003e \"ldaps-tcp\": [\u003cbr/\u003e 636,\u003cbr/\u003e 636,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"LDAPS\"\u003cbr/\u003e ],\u003cbr/\u003e \"logstash-tcp\": [\u003cbr/\u003e 5044,\u003cbr/\u003e 5044,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Logstash\"\u003cbr/\u003e ],\u003cbr/\u003e \"loki-grafana\": [\u003cbr/\u003e 3100,\u003cbr/\u003e 3100,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Grafana Loki endpoint\"\u003cbr/\u003e ],\u003cbr/\u003e \"loki-grafana-grpc\": [\u003cbr/\u003e 9095,\u003cbr/\u003e 9095,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Grafana Loki GRPC\"\u003cbr/\u003e ],\u003cbr/\u003e \"memcached-tcp\": [\u003cbr/\u003e 11211,\u003cbr/\u003e 11211,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Memcached\"\u003cbr/\u003e ],\u003cbr/\u003e \"minio-tcp\": [\u003cbr/\u003e 9000,\u003cbr/\u003e 9000,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"MinIO\"\u003cbr/\u003e ],\u003cbr/\u003e \"mongodb-27017-tcp\": [\u003cbr/\u003e 27017,\u003cbr/\u003e 27017,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"MongoDB\"\u003cbr/\u003e ],\u003cbr/\u003e \"mongodb-27018-tcp\": [\u003cbr/\u003e 27018,\u003cbr/\u003e 27018,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"MongoDB shard\"\u003cbr/\u003e ],\u003cbr/\u003e \"mongodb-27019-tcp\": [\u003cbr/\u003e 27019,\u003cbr/\u003e 27019,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"MongoDB config server\"\u003cbr/\u003e ],\u003cbr/\u003e \"mssql-analytics-tcp\": [\u003cbr/\u003e 2383,\u003cbr/\u003e 2383,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"MSSQL Analytics\"\u003cbr/\u003e ],\u003cbr/\u003e \"mssql-broker-tcp\": [\u003cbr/\u003e 4022,\u003cbr/\u003e 4022,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"MSSQL Broker\"\u003cbr/\u003e ],\u003cbr/\u003e \"mssql-tcp\": [\u003cbr/\u003e 1433,\u003cbr/\u003e 1433,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"MSSQL Server\"\u003cbr/\u003e ],\u003cbr/\u003e \"mssql-udp\": [\u003cbr/\u003e 1434,\u003cbr/\u003e 1434,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"MSSQL Browser\"\u003cbr/\u003e ],\u003cbr/\u003e \"mysql-tcp\": [\u003cbr/\u003e 3306,\u003cbr/\u003e 3306,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"MySQL/Aurora\"\u003cbr/\u003e ],\u003cbr/\u003e \"nfs-tcp\": [\u003cbr/\u003e 2049,\u003cbr/\u003e 2049,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"NFS/EFS\"\u003cbr/\u003e ],\u003cbr/\u003e \"nomad-http-tcp\": [\u003cbr/\u003e 4646,\u003cbr/\u003e 4646,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Nomad HTTP\"\u003cbr/\u003e ],\u003cbr/\u003e \"nomad-rpc-tcp\": [\u003cbr/\u003e 4647,\u003cbr/\u003e 4647,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Nomad RPC\"\u003cbr/\u003e ],\u003cbr/\u003e \"nomad-serf-tcp\": [\u003cbr/\u003e 4648,\u003cbr/\u003e 4648,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Serf\"\u003cbr/\u003e ],\u003cbr/\u003e \"nomad-serf-udp\": [\u003cbr/\u003e 4648,\u003cbr/\u003e 4648,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"Serf\"\u003cbr/\u003e ],\u003cbr/\u003e \"ntp-udp\": [\u003cbr/\u003e 123,\u003cbr/\u003e 123,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"NTP\"\u003cbr/\u003e ],\u003cbr/\u003e \"octopus-tentacle-tcp\": [\u003cbr/\u003e 10933,\u003cbr/\u003e 10933,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Octopus Tentacle\"\u003cbr/\u003e ],\u003cbr/\u003e \"openvpn-https-tcp\": [\u003cbr/\u003e 443,\u003cbr/\u003e 443,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"OpenVPN\"\u003cbr/\u003e ],\u003cbr/\u003e \"openvpn-tcp\": [\u003cbr/\u003e 943,\u003cbr/\u003e 943,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"OpenVPN\"\u003cbr/\u003e ],\u003cbr/\u003e \"openvpn-udp\": [\u003cbr/\u003e 1194,\u003cbr/\u003e 1194,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"OpenVPN\"\u003cbr/\u003e ],\u003cbr/\u003e \"oracle-db-tcp\": [\u003cbr/\u003e 1521,\u003cbr/\u003e 1521,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Oracle\"\u003cbr/\u003e ],\u003cbr/\u003e \"postgresql-tcp\": [\u003cbr/\u003e 5432,\u003cbr/\u003e 5432,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"PostgreSQL\"\u003cbr/\u003e ],\u003cbr/\u003e \"prometheus-http-tcp\": [\u003cbr/\u003e 9090,\u003cbr/\u003e 9090,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Prometheus\"\u003cbr/\u003e ],\u003cbr/\u003e \"prometheus-node-exporter-http-tcp\": [\u003cbr/\u003e 9100,\u003cbr/\u003e 9100,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Prometheus Node Exporter\"\u003cbr/\u003e ],\u003cbr/\u003e \"prometheus-pushgateway-http-tcp\": [\u003cbr/\u003e 9091,\u003cbr/\u003e 9091,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Prometheus Pushgateway\"\u003cbr/\u003e ],\u003cbr/\u003e \"promtail-http\": [\u003cbr/\u003e 9080,\u003cbr/\u003e 9080,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Promtail endpoint\"\u003cbr/\u003e ],\u003cbr/\u003e \"puppet-tcp\": [\u003cbr/\u003e 8140,\u003cbr/\u003e 8140,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Puppet\"\u003cbr/\u003e ],\u003cbr/\u003e \"puppetdb-tcp\": [\u003cbr/\u003e 8081,\u003cbr/\u003e 8081,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"PuppetDB\"\u003cbr/\u003e ],\u003cbr/\u003e \"rabbitmq-15672-tcp\": [\u003cbr/\u003e 15672,\u003cbr/\u003e 15672,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"RabbitMQ\"\u003cbr/\u003e ],\u003cbr/\u003e \"rabbitmq-25672-tcp\": [\u003cbr/\u003e 25672,\u003cbr/\u003e 25672,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"RabbitMQ\"\u003cbr/\u003e ],\u003cbr/\u003e \"rabbitmq-4369-tcp\": [\u003cbr/\u003e 4369,\u003cbr/\u003e 4369,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"RabbitMQ epmd\"\u003cbr/\u003e ],\u003cbr/\u003e \"rabbitmq-5671-tcp\": [\u003cbr/\u003e 5671,\u003cbr/\u003e 5671,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"RabbitMQ\"\u003cbr/\u003e ],\u003cbr/\u003e \"rabbitmq-5672-tcp\": [\u003cbr/\u003e 5672,\u003cbr/\u003e 5672,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"RabbitMQ\"\u003cbr/\u003e ],\u003cbr/\u003e \"rdp-tcp\": [\u003cbr/\u003e 3389,\u003cbr/\u003e 3389,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Remote Desktop\"\u003cbr/\u003e ],\u003cbr/\u003e \"rdp-udp\": [\u003cbr/\u003e 3389,\u003cbr/\u003e 3389,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"Remote Desktop\"\u003cbr/\u003e ],\u003cbr/\u003e \"redis-tcp\": [\u003cbr/\u003e 6379,\u003cbr/\u003e 6379,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Redis\"\u003cbr/\u003e ],\u003cbr/\u003e \"redshift-tcp\": [\u003cbr/\u003e 5439,\u003cbr/\u003e 5439,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Redshift\"\u003cbr/\u003e ],\u003cbr/\u003e \"saltstack-tcp\": [\u003cbr/\u003e 4505,\u003cbr/\u003e 4506,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"SaltStack\"\u003cbr/\u003e ],\u003cbr/\u003e \"smtp-submission-2587-tcp\": [\u003cbr/\u003e 2587,\u003cbr/\u003e 2587,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"SMTP Submission\"\u003cbr/\u003e ],\u003cbr/\u003e \"smtp-submission-587-tcp\": [\u003cbr/\u003e 587,\u003cbr/\u003e 587,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"SMTP Submission\"\u003cbr/\u003e ],\u003cbr/\u003e \"smtp-tcp\": [\u003cbr/\u003e 25,\u003cbr/\u003e 25,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"SMTP\"\u003cbr/\u003e ],\u003cbr/\u003e \"smtps-2456-tcp\": [\u003cbr/\u003e 2465,\u003cbr/\u003e 2465,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"SMTPS\"\u003cbr/\u003e ],\u003cbr/\u003e \"smtps-465-tcp\": [\u003cbr/\u003e 465,\u003cbr/\u003e 465,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"SMTPS\"\u003cbr/\u003e ],\u003cbr/\u003e \"solr-tcp\": [\u003cbr/\u003e 8983,\u003cbr/\u003e 8987,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Solr\"\u003cbr/\u003e ],\u003cbr/\u003e \"splunk-hec-tcp\": [\u003cbr/\u003e 8088,\u003cbr/\u003e 8088,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Splunk HEC\"\u003cbr/\u003e ],\u003cbr/\u003e \"splunk-indexer-tcp\": [\u003cbr/\u003e 9997,\u003cbr/\u003e 9997,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Splunk indexer\"\u003cbr/\u003e ],\u003cbr/\u003e \"splunk-splunkd-tcp\": [\u003cbr/\u003e 8089,\u003cbr/\u003e 8089,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Splunkd\"\u003cbr/\u003e ],\u003cbr/\u003e \"splunk-web-tcp\": [\u003cbr/\u003e 8000,\u003cbr/\u003e 8000,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Splunk Web\"\u003cbr/\u003e ],\u003cbr/\u003e \"squid-proxy-tcp\": [\u003cbr/\u003e 3128,\u003cbr/\u003e 3128,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Squid default proxy\"\u003cbr/\u003e ],\u003cbr/\u003e \"ssh-tcp\": [\u003cbr/\u003e 22,\u003cbr/\u003e 22,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"SSH\"\u003cbr/\u003e ],\u003cbr/\u003e \"storm-nimbus-tcp\": [\u003cbr/\u003e 6627,\u003cbr/\u003e 6627,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Nimbus\"\u003cbr/\u003e ],\u003cbr/\u003e \"storm-supervisor-tcp\": [\u003cbr/\u003e 6700,\u003cbr/\u003e 6703,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Supervisor\"\u003cbr/\u003e ],\u003cbr/\u003e \"storm-ui-tcp\": [\u003cbr/\u003e 8080,\u003cbr/\u003e 8080,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Storm UI\"\u003cbr/\u003e ],\u003cbr/\u003e \"vault-tcp\": [\u003cbr/\u003e 8200,\u003cbr/\u003e 8200,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Vault\"\u003cbr/\u003e ],\u003cbr/\u003e \"wazuh-dashboard\": [\u003cbr/\u003e 443,\u003cbr/\u003e 443,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Wazuh web user interface\"\u003cbr/\u003e ],\u003cbr/\u003e \"wazuh-indexer-restful-api\": [\u003cbr/\u003e 9200,\u003cbr/\u003e 9200,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Wazuh indexer RESTful API\"\u003cbr/\u003e ],\u003cbr/\u003e \"wazuh-server-agent-cluster-daemon\": [\u003cbr/\u003e 1516,\u003cbr/\u003e 1516,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Wazuh cluster daemon\"\u003cbr/\u003e ],\u003cbr/\u003e \"wazuh-server-agent-connection-tcp\": [\u003cbr/\u003e 1514,\u003cbr/\u003e 1514,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Agent connection service(TCP)\"\u003cbr/\u003e ],\u003cbr/\u003e \"wazuh-server-agent-connection-udp\": [\u003cbr/\u003e 1514,\u003cbr/\u003e 1514,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"Agent connection service(UDP)\"\u003cbr/\u003e ],\u003cbr/\u003e \"wazuh-server-agent-enrollment\": [\u003cbr/\u003e 1515,\u003cbr/\u003e 1515,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Agent enrollment service\"\u003cbr/\u003e ],\u003cbr/\u003e \"wazuh-server-restful-api\": [\u003cbr/\u003e 55000,\u003cbr/\u003e 55000,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Wazuh server RESTful API\"\u003cbr/\u003e ],\u003cbr/\u003e \"wazuh-server-syslog-collector-tcp\": [\u003cbr/\u003e 514,\u003cbr/\u003e 514,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Wazuh Syslog collector(TCP)\"\u003cbr/\u003e ],\u003cbr/\u003e \"wazuh-server-syslog-collector-udp\": [\u003cbr/\u003e 514,\u003cbr/\u003e 514,\u003cbr/\u003e \"udp\",\u003cbr/\u003e \"Wazuh Syslog collector(UDP)\"\u003cbr/\u003e ],\u003cbr/\u003e \"web-jmx-tcp\": [\u003cbr/\u003e 1099,\u003cbr/\u003e 1099,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"JMX\"\u003cbr/\u003e ],\u003cbr/\u003e \"winrm-http-tcp\": [\u003cbr/\u003e 5985,\u003cbr/\u003e 5985,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"WinRM HTTP\"\u003cbr/\u003e ],\u003cbr/\u003e \"winrm-https-tcp\": [\u003cbr/\u003e 5986,\u003cbr/\u003e 5986,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"WinRM HTTPS\"\u003cbr/\u003e ],\u003cbr/\u003e \"zabbix-agent\": [\u003cbr/\u003e 10050,\u003cbr/\u003e 10050,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Zabbix Agent\"\u003cbr/\u003e ],\u003cbr/\u003e \"zabbix-proxy\": [\u003cbr/\u003e 10051,\u003cbr/\u003e 10051,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Zabbix Proxy\"\u003cbr/\u003e ],\u003cbr/\u003e \"zabbix-server\": [\u003cbr/\u003e 10051,\u003cbr/\u003e 10051,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Zabbix Server\"\u003cbr/\u003e ],\u003cbr/\u003e \"zipkin-admin-query-tcp\": [\u003cbr/\u003e 9901,\u003cbr/\u003e 9901,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Zipkin Admin port query\"\u003cbr/\u003e ],\u003cbr/\u003e \"zipkin-admin-tcp\": [\u003cbr/\u003e 9990,\u003cbr/\u003e 9990,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Zipkin Admin port collector\"\u003cbr/\u003e ],\u003cbr/\u003e \"zipkin-admin-web-tcp\": [\u003cbr/\u003e 9991,\u003cbr/\u003e 9991,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Zipkin Admin port web\"\u003cbr/\u003e ],\u003cbr/\u003e \"zipkin-query-tcp\": [\u003cbr/\u003e 9411,\u003cbr/\u003e 9411,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Zipkin query port\"\u003cbr/\u003e ],\u003cbr/\u003e \"zipkin-web-tcp\": [\u003cbr/\u003e 8080,\u003cbr/\u003e 8080,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Zipkin web port\"\u003cbr/\u003e ],\u003cbr/\u003e \"zookeeper-2181-tcp\": [\u003cbr/\u003e 2181,\u003cbr/\u003e 2181,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Zookeeper\"\u003cbr/\u003e ],\u003cbr/\u003e \"zookeeper-2182-tls-tcp\": [\u003cbr/\u003e 2182,\u003cbr/\u003e 2182,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Zookeeper TLS (MSK specific)\"\u003cbr/\u003e ],\u003cbr/\u003e \"zookeeper-2888-tcp\": [\u003cbr/\u003e 2888,\u003cbr/\u003e 2888,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Zookeeper\"\u003cbr/\u003e ],\u003cbr/\u003e \"zookeeper-3888-tcp\": [\u003cbr/\u003e 3888,\u003cbr/\u003e 3888,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"Zookeeper\"\u003cbr/\u003e ],\u003cbr/\u003e \"zookeeper-jmx-tcp\": [\u003cbr/\u003e 7199,\u003cbr/\u003e 7199,\u003cbr/\u003e \"tcp\",\u003cbr/\u003e \"JMX\"\u003cbr/\u003e ]\u003cbr/\u003e}\u003c/pre\u003e | no |\n| \u003ca name=\"input_security_group_id\"\u003e\u003c/a\u003e [security\\_group\\_id](#input\\_security\\_group\\_id) | ID of existing security group whose rules we will manage | `string` | `null` | no |\n| \u003ca name=\"input_tags\"\u003e\u003c/a\u003e [tags](#input\\_tags) | A mapping of tags to assign to security group | `map(string)` | `{}` | no |\n| \u003ca name=\"input_use_name_prefix\"\u003e\u003c/a\u003e [use\\_name\\_prefix](#input\\_use\\_name\\_prefix) | Whether to use name\\_prefix or fixed name. Should be true to able to update security group name after initial creation | `bool` | `true` | no |\n| \u003ca name=\"input_vpc_id\"\u003e\u003c/a\u003e [vpc\\_id](#input\\_vpc\\_id) | ID of the VPC where to create security group | `string` | `null` | no |\n\n## Outputs\n\n| Name | Description |\n|------|-------------|\n| \u003ca name=\"output_security_group_arn\"\u003e\u003c/a\u003e [security\\_group\\_arn](#output\\_security\\_group\\_arn) | The ARN of the security group |\n| \u003ca name=\"output_security_group_description\"\u003e\u003c/a\u003e [security\\_group\\_description](#output\\_security\\_group\\_description) | The description of the security group |\n| \u003ca name=\"output_security_group_id\"\u003e\u003c/a\u003e [security\\_group\\_id](#output\\_security\\_group\\_id) | The ID of the security group |\n| \u003ca name=\"output_security_group_name\"\u003e\u003c/a\u003e [security\\_group\\_name](#output\\_security\\_group\\_name) | The name of the security group |\n| \u003ca name=\"output_security_group_owner_id\"\u003e\u003c/a\u003e [security\\_group\\_owner\\_id](#output\\_security\\_group\\_owner\\_id) | The owner ID |\n| \u003ca name=\"output_security_group_vpc_id\"\u003e\u003c/a\u003e [security\\_group\\_vpc\\_id](#output\\_security\\_group\\_vpc\\_id) | The VPC ID |\n\u003c!-- END_TF_DOCS --\u003e\n\n## Authors\n\nModule managed by [Anton Babenko](https://github.com/antonbabenko).\n\n## License\n\nApache 2 Licensed. See LICENSE for full details.\n\n## Additional information for users from Russia and Belarus\n\n* Russia has [illegally annexed Crimea in 2014](https://en.wikipedia.org/wiki/Annexation_of_Crimea_by_the_Russian_Federation) and [brought the war in Donbas](https://en.wikipedia.org/wiki/War_in_Donbas) followed by [full-scale invasion of Ukraine in 2022](https://en.wikipedia.org/wiki/2022_Russian_invasion_of_Ukraine).\n* Russia has brought sorrow and devastations to millions of Ukrainians, killed hundreds of innocent people, damaged thousands of buildings, and forced several million people to flee.\n* [Putin khuylo!](https://en.wikipedia.org/wiki/Putin_khuylo!)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fterraform-aws-modules%2Fterraform-aws-security-group","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fterraform-aws-modules%2Fterraform-aws-security-group","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fterraform-aws-modules%2Fterraform-aws-security-group/lists"}