|
| 1 | +# Terraform AWS ARC Security Group Module Usage Guide |
| 2 | + |
| 3 | +## Introduction |
| 4 | + |
| 5 | +### Purpose of the Document |
| 6 | + |
| 7 | +This document provides guidelines and instructions for users looking to create and manage Security Groups |
| 8 | + |
| 9 | +### Module Overview |
| 10 | + |
| 11 | +The Terraform AWS ARC Security Group module create and manage AWS security groups with customizable ingress and egress rules for secure network traffic control. |
| 12 | + |
| 13 | +### Prerequisites |
| 14 | + |
| 15 | +Before using this module, ensure you have the following: |
| 16 | + |
| 17 | +- AWS credentials configured. |
| 18 | +- Terraform installed. |
| 19 | +- A working knowledge of AWS VPC, security grouo, and Terraform concepts. |
| 20 | + |
| 21 | +## Getting Started |
| 22 | + |
| 23 | +### Module Source |
| 24 | + |
| 25 | +To use the module in your Terraform configuration, include the following source block: |
| 26 | + |
| 27 | +```hcl |
| 28 | +module "arc-sg" { |
| 29 | + source = "sourcefuse/arc-security-group/aws" |
| 30 | + version = "0.0.1" |
| 31 | + # insert the required variables here |
| 32 | +} |
| 33 | +``` |
| 34 | + |
| 35 | +Refer to the [Terraform Registry](https://registry.terraform.io/modules/sourcefuse/arc-security-group/aws/latest) for the latest version. |
| 36 | + |
| 37 | +### Integration with Existing Terraform Configurations |
| 38 | + |
| 39 | +Refer to the Terraform Registry for the latest version. |
| 40 | + |
| 41 | +## Integration with Existing Terraform Configurations |
| 42 | +Integrate the module with your existing Terraform mono repo configuration, follow the steps below: |
| 43 | + |
| 44 | +- Create a new folder in terraform/ named security-group. |
| 45 | +- Create the required files, see the examples to base off of. |
| 46 | +- Configure with your backend: |
| 47 | + - Create the environment backend configuration file: config.<environment>.hcl |
| 48 | + - region: Where the backend resides |
| 49 | + - key: <working_directory>/terraform.tfstate |
| 50 | + - bucket: Bucket name where the terraform state will reside |
| 51 | + - dynamodb_table: Lock table so there are not duplicate tfplans in the mix |
| 52 | + - encrypt: Encrypt all traffic to and from the backend |
| 53 | + |
| 54 | +### Required AWS Permissions |
| 55 | + |
| 56 | +Ensure that the AWS credentials used to execute Terraform have the necessary permissions to create, list and modify: |
| 57 | + |
| 58 | +## Module Configuration |
| 59 | + |
| 60 | +### Input Variables |
| 61 | + |
| 62 | +For a list of input variables, see the README [Inputs](https://github.com/sourcefuse/terraform-aws-arc-security-group?tab=readme-ov-file#inputs) section. |
| 63 | + |
| 64 | +### Output Values |
| 65 | + |
| 66 | +For a list of outputs, see the README [Outputs](https://github.com/sourcefuse/terraform-aws-arc-security-group?tab=readme-ov-file#outputs) section. |
| 67 | + |
| 68 | +## Module Usage |
| 69 | + |
| 70 | +### Basic Usage |
| 71 | + |
| 72 | +For basic usage, see the [example](https://github.com/sourcefuse/terraform-aws-arc-security-group/tree/main/example) folder. |
| 73 | + |
| 74 | +This example will create: |
| 75 | + |
| 76 | +This Terraform module creates a security group with the following configurations: |
| 77 | + |
| 78 | +Ingress Rules: |
| 79 | + |
| 80 | +- VPC Traffic: Allows all TCP traffic within the VPC (0-65535) based on the VPC CIDR block. |
| 81 | +- Self-Traffic: Allows all TCP traffic (0-65535) within the same security group for self-referencing communication. |
| 82 | +- Source Security Group: Permits TCP traffic (0-65535) from a specific source security group. |
| 83 | + |
| 84 | +Egress Rules: |
| 85 | + |
| 86 | +- Outbound Traffic: Allows unrestricted outbound traffic (0.0.0.0/0) for all protocols and ports. |
| 87 | + |
| 88 | +### Tips and Recommendations |
| 89 | + |
| 90 | +The module can manage egress rules to security groups, S3 endpoints, and more. |
| 91 | + |
| 92 | +## Troubleshooting |
| 93 | + |
| 94 | +### Reporting Issues |
| 95 | + |
| 96 | +If you encounter a bug or issue, please report it on the [GitHub repository](https://github.com/sourcefuse/terraform-aws-arc-security-group/issues). |
| 97 | + |
| 98 | +## Security Considerations |
| 99 | + |
| 100 | +### AWS VPC |
| 101 | + |
| 102 | +Understand the security considerations related to Security Group |
| 103 | + |
| 104 | +## Contributing and Community Support |
| 105 | + |
| 106 | +### Contributing Guidelines |
| 107 | + |
| 108 | +Contribute to the module by following the guidelines outlined in the [CONTRIBUTING.md](https://github.com/sourcefuse/terraform-aws-arc-security-group/blob/main/CONTRIBUTING.md) file. |
| 109 | + |
| 110 | +### Reporting Bugs and Issues |
| 111 | + |
| 112 | +If you find a bug or issue, report it on the [GitHub repository](https://github.com/sourcefuse/terraform-aws-arc-security-group/issues). |
| 113 | + |
| 114 | +## License |
| 115 | + |
| 116 | +### License Information |
| 117 | + |
| 118 | +This module is licensed under the Apache 2.0 license. Refer to the [LICENSE](https://github.com/sourcefuse/terraform-aws-arc-security-group/blob/main/LICENSE) file for more details. |
| 119 | + |
| 120 | +### Open Source Contribution |
| 121 | + |
| 122 | +Contribute to open source by using and enhancing this module. Your contributions are welcome! |
0 commit comments