Table: ibm_is_security_group - Query IBM Cloud Infrastructure Security Groups using SQL
IBM Cloud Infrastructure Security Groups are a set of IP filter rules that define how to handle inbound and outbound IP traffic to both the virtual server instance and the network interfaces on the virtual server instance. These groups act as a virtual firewall for your virtual server instances to control inbound and outbound traffic. Security groups in a VPC specify which traffic is allowed to or from resources connected to the VPC.
Table Usage Guide
The ibm_is_security_group table provides insights into Security Groups within IBM Cloud Infrastructure. As a network administrator or security analyst, you can explore security group-specific details through this table, including the attached network interfaces, associated rules, and other metadata. Utilize it to uncover information about security groups, such as their configuration, the resources they are protecting, and the rules that govern their behavior.
Examples
Basic info
Explore the basic details of security groups within your IBM cloud infrastructure. This can help you understand the security configurations and rules applied, and identify any potential vulnerabilities or misconfigurations.
select id, name, crn, rules, targets, vpcfrom ibm_is_security_group;select id, name, crn, rules, targets, vpcfrom ibm_is_security_group;Query examples
- ibm_is_security_group_1_year_count
- ibm_is_security_group_24_hours_count
- ibm_is_security_group_30_90_days_count
- ibm_is_security_group_30_days_count
- ibm_is_security_group_90_365_days_count
- ibm_is_security_group_attached_enis_count
- ibm_is_security_group_by_acount
- ibm_is_security_group_by_creation_month
- ibm_is_security_group_by_region
- ibm_is_security_group_by_vpc
- ibm_is_security_group_count
- ibm_is_security_group_inbound_rules
- ibm_is_security_group_inbound_rules_count
- ibm_is_security_group_input
- ibm_is_security_group_outbound_rules
- ibm_is_security_group_outbound_rules_count
- ibm_is_security_group_tags
- ibm_is_security_group_unassociated_count
- ibm_is_security_group_unrestricted_inbound
- ibm_is_security_group_unrestricted_inbound_count
- ibm_is_security_group_unrestricted_outbound
- ibm_is_security_group_unrestricted_outbound_count
- ibm_is_vpc_security_groups
Control examples
Schema for ibm_is_security_group
| Name | Type | Operators | Description |
|---|---|---|---|
| _ctx | jsonb | Steampipe context in JSON form, e.g. connection_name. | |
| account_id | text | The account ID of this security group. | |
| akas | jsonb | Array of globally unique identifier strings (also known as) for the resource. | |
| created_at | timestamp with time zone | The date and time that the security group was created. | |
| crn | text | The CRN for this security group. | |
| href | text | The URL for this security group. | |
| id | text | = | The unique identifier for this security group. |
| name | text | The unique user-defined name for this security group. | |
| network_interfaces | jsonb | Array of references to network interfaces. | |
| region | text | The region of this security group. | |
| resource_group | jsonb | The resource group for this security group. | |
| rules | jsonb | Array of rules for this security group. If no rules exist, all traffic will be denied. | |
| tags | jsonb | A map of tags for the resource. | |
| targets | jsonb | Array of references to targets. | |
| title | text | Title of the resource. | |
| vpc | jsonb | The VPC this security group is a part of. |
Export
This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.
You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:
/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- ibmYou can pass the configuration to the command with the --config argument:
steampipe_export_ibm --config '<your_config>' ibm_is_security_group