Nested Dynamic Block for security group configuration

nagendrakumar.nainar · June 15, 2023, 12:59am

Hi,

I have the below requirement:

source_ports = [8001, 8002, 8003]
destination_ports = [9001, 9002, 9003]

I have to configure AWS security group with policies allowing from each source port to each destination port (Ex: 8001->9001, 8001->9002, 8001->9003, 8002->9001…so on)

I am trying to understand if there is any nested dynamic block approach to configure the same?

I tried something like below and couldn’t make it work:

variable "ingress_ports" {
    type = list(number)
    default = [9001, 9002, 9003]
}

variable "egress_ports" {
    type = list(number)
    default = [8001, 8002, 8003]
}

resource "aws_security_group" "aws_sg" {
    name = "Terraform_SG_Learning"
    for_each = var.ingress_ports
    dynamic "ingress" {
        for_each = var.egress_ports
        content {
            from_port = ingress.value
            to_port = [for port in var.egress_ports : ${port}]
        }
    }
}

Any help/clarification is much appreciated.

Thanks,
Nagendra

apparentlymart · June 15, 2023, 2:29pm

Hi @nagendrakumar.nainar,

Please share what happened when you tried your solution. Seeing a specific error message or a description of how the behavior differed from what you intended is helpful to those trying to answer to make sure they are focused on the right problem. Thanks!

Topic		Replies	Views
Terraform dynamic block AWS	1	168	October 26, 2023
AWS Security Groups Dynamically with Mulitple IPs and Ports AWS	0	414	July 15, 2022
Dynamic block in v0.11.2 version Terraform	0	249	July 29, 2020
Create AWS security group and rules dynamically Terraform	1	6138	March 11, 2021
Help On Dynamic Blocks Terraform	2	2656	September 21, 2020

Nested Dynamic Block for security group configuration

Related topics