ernw/openstack

GitHub
steampipe plugin install ernw/openstacksteampipe plugin install ernw/openstack

Table: openstack_security_group_rule

A security group rule allows ingress or egress traffic to and from certain instances to a specified IP address or IP range.

Examples

Basic security group rule info

select
id,
description,
ether_type,
port_range_min,
port_range_max,
protocol,
remote_ip_prefix
from
openstack_security_group_rule;

Security group rule by ID

select
id,
description,
ether_type,
port_range_min,
port_range_max,
protocol,
remote_ip_prefix
from
openstack_security_group_rule
where
id = 'ef7884e6-9ee7-4547-932f-a65b4d1d5e8e';

All security group rules with TCP protocol

select
id,
description,
ether_type,
port_range_min,
port_range_max,
protocol,
remote_ip_prefix
from
openstack_security_group_rule
where
protocol = 'tcp';

All IPv4 security group rules

select
id,
description,
ether_type,
port_range_min,
port_range_max,
protocol,
remote_ip_prefix
from
openstack_security_group_rule
where
ether_type = 'IPv4';

All security group rules with specified port range

select
id,
description,
ether_type,
port_range_min,
port_range_max,
protocol,
remote_ip_prefix
from
openstack_security_group_rule
where
port_range_min is not null;

.inspect openstack_security_group_rule

Table of all security group rules.

NameTypeDescription
_ctxjsonbSteampipe context in JSON form, e.g. connection_name.
descriptiontextDescription of the rule.
directiontextThe direction in which the security group rule is applied. The only values allowed are 'ingress' or 'egress'.
ether_typetextMust be IPv4 or IPv6, and addresses represented in CIDR must match the ingress or egress rules.
idtextThe UUID for the security group.
port_range_maxbigintThe maximum port number in the range that is matched by the security group rule.
port_range_minbigintThe minimum port number in the range that is matched by the security group rule.
project_idtextProjectID is the project owner of this security group rule.
protocoltextThe protocol that is matched by the security group rule. Valid values are 'tcp', 'udp', 'icmp' or an empty string.
remote_group_idtextThe remote group ID to be associated with this security group rule. You can specify either RemoteGroupID or RemoteIPPrefix.
remote_ip_prefixtextThe remote IP prefix to be associated with this security group rule. You can specify either RemoteGroupID or RemoteIPPrefix. This attribute matches the specified IP prefix as the source IP address of the IP packet.
sec_group_idtextThe security group ID to associate with this security group rule.
tenant_idtextTenantID is the project owner of this security group rule.