Table: scaleway_instance_security_group - Query Scaleway Instance Security Groups using SQL
A Scaleway Instance Security Group is a virtual firewall that controls inbound and outbound traffic for one or more instances. It acts as a barrier between an instance and the rest of the network, allowing only traffic that matches the defined rules. These security groups are stateful, meaning that any outbound traffic that is permitted will automatically allow the corresponding inbound traffic.
Table Usage Guide
The scaleway_instance_security_group table provides insights into the security groups within Scaleway Instance. As a security analyst, explore security group-specific details through this table, including their configuration, state, and associated rules. Utilize it to uncover information about security groups, such as those with overly permissive rules, the state of each security group, and the verification of inbound and outbound rules.
Examples
Basic info
Explore which security groups were created on a specific date within your Scaleway instance. This can help you identify instances where changes were made to the default project or specific zones, aiding in configuration review and management.
select name, id, creation_date, project_default, zone, projectfrom scaleway_instance_security_group;select name, id, creation_date, project_default, zone, projectfrom scaleway_instance_security_group;List default security groups
Explore which security groups are set as the default in your project to ensure correct configurations and prevent potential security risks. This can be particularly useful in managing access controls and maintaining secure project environments.
select name, id, creation_date, project_default, zone, projectfrom scaleway_instance_security_groupwhere project_default;select name, id, creation_date, project_default, zone, projectfrom scaleway_instance_security_groupwhere project_default = 1;Schema for scaleway_instance_security_group
| Name | Type | Operators | Description |
|---|---|---|---|
| _ctx | jsonb | Steampipe context in JSON form, e.g. connection_name. | |
| creation_date | timestamp with time zone | The time when the security group was created. | |
| description | text | The security group's description. | |
| enable_default_security | boolean | Indicates whether SMTP is blocked on IPv4 and IPv6, or not. | |
| id | text | = | An unique identifier of the security group. |
| inbound_default_policy | text | Specifies the default inbound policy. | |
| modification_date | timestamp with time zone | The time when the security group was last modified. | |
| name | text | = | The user-defined name of the security group. |
| organization | text | The ID of the organization where the security group resides. | |
| organization_default | boolean | Indicates whether it is default security group for this organization ID, or not. | |
| outbound_default_policy | text | Specifies the default outbound policy. | |
| project | text | The ID of the project where the security group resides. | |
| project_default | boolean | Indicates whether it is default security group for this project ID, or not. | |
| servers | jsonb | A list of tags associated with the security group. | |
| stateful | boolean | Indicates whether the security group is stateful, or not. | |
| title | text | Title of the resource. | |
| zone | text | = | Specifies the zone where the security group resides. |
Export
This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.
You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:
/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- scalewayYou can pass the configuration to the command with the --config argument:
steampipe_export_scaleway --config '<your_config>' scaleway_instance_security_group