turbot/scaleway
steampipe plugin install scaleway

Table: scaleway_instance_security_group - Query Scaleway Instance Security Groups using SQL

A Scaleway Instance Security Group is a virtual firewall that controls inbound and outbound traffic for one or more instances. It acts as a barrier between an instance and the rest of the network, allowing only traffic that matches the defined rules. These security groups are stateful, meaning that any outbound traffic that is permitted will automatically allow the corresponding inbound traffic.

Table Usage Guide

The scaleway_instance_security_group table provides insights into the security groups within Scaleway Instance. As a security analyst, explore security group-specific details through this table, including their configuration, state, and associated rules. Utilize it to uncover information about security groups, such as those with overly permissive rules, the state of each security group, and the verification of inbound and outbound rules.

Examples

Basic info

Explore which security groups were created on a specific date within your Scaleway instance. This can help you identify instances where changes were made to the default project or specific zones, aiding in configuration review and management.

select
name,
id,
creation_date,
project_default,
zone,
project
from
scaleway_instance_security_group;
select
name,
id,
creation_date,
project_default,
zone,
project
from
scaleway_instance_security_group;

List default security groups

Explore which security groups are set as the default in your project to ensure correct configurations and prevent potential security risks. This can be particularly useful in managing access controls and maintaining secure project environments.

select
name,
id,
creation_date,
project_default,
zone,
project
from
scaleway_instance_security_group
where
project_default;
select
name,
id,
creation_date,
project_default,
zone,
project
from
scaleway_instance_security_group
where
project_default = 1;

Schema for scaleway_instance_security_group

NameTypeOperatorsDescription
_ctxjsonbSteampipe context in JSON form.
creation_datetimestamp with time zoneThe time when the security group was created.
descriptiontextThe security group's description.
enable_default_securitybooleanIndicates whether SMTP is blocked on IPv4 and IPv6, or not.
idtext=An unique identifier of the security group.
inbound_default_policytextSpecifies the default inbound policy.
modification_datetimestamp with time zoneThe time when the security group was last modified.
nametext=The user-defined name of the security group.
organizationtextThe ID of the organization where the security group resides.
organization_defaultbooleanIndicates whether it is default security group for this organization ID, or not.
outbound_default_policytextSpecifies the default outbound policy.
projecttextThe ID of the project where the security group resides.
project_defaultbooleanIndicates whether it is default security group for this project ID, or not.
serversjsonbA list of tags associated with the security group.
sp_connection_nametext=, !=, ~~, ~~*, !~~, !~~*Steampipe connection name.
sp_ctxjsonbSteampipe context in JSON form.
statefulbooleanIndicates whether the security group is stateful, or not.
titletextTitle of the resource.
zonetext=Specifies the zone where the security group resides.

Export

This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:

/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- scaleway

You can pass the configuration to the command with the --config argument:

steampipe_export_scaleway --config '<your_config>' scaleway_instance_security_group