使用terraform 创建 aws_flow_log 时出现访问错误 我正在为 VPC 创建一个流日志,将日志发送到 cloudwatch 组。我使用此链接的 CloudWatch Logging 部分中完全相同的代码: https://www.terraform.io/docs/providers/aws/r/flow_log.html,只是将 vpc_id 更改为我的 VPC 的 id。 虽然已创建流日志,但大约 15 分...
aws = aws.af-south-1 } iam_role_arn = aws_iam_role.vpc_flow_log.arn log_destination = aws_s3_bucket.vpc_flow_log.arn log_destination_type = "s3" traffic_type = "REJECT" aws_vpc_ids = data.aws_vpcs.af-south-1.ids depends_on = [ aws_s3_bucket.vpc_flow_log ] } #ap-east-...
subnet, or entire VPC. This module supports enabling or disabling VPC Flow Logs for entire VPC. If you need to have VPC Flow Logs for subnet or ENI, you have to manage it outside of this module withaws_flow_log resource.
resource/aws_flow_log: Add deliver_cross_account_role argument (#29254) resource/aws_grafana_workspace: Add network_access_control argument (#29793) resource/aws_sesv2_configuration_set: Add vdm_options argument (#28812) resource/aws_transfer_server: Add protocol_details argument (#28621) resou...
CEN:alicloud_cen_flowlog、alicloud_cen_instance、alicloud_cen_transit_router_ecr_attachment、alicloud_cen_transit_router_multicast_domain、alicloud_cen_transit_router_peer_attachment、alicloud_cen_transit_router_route_table、alicloud_cen_transit_router_vbr_attachment、alicloud_cen_transit_router_vpc_...
CEN:alicloud_cen_flowlog、alicloud_cen_instance、alicloud_cen_transit_router_ecr_attachment、alicloud_cen_transit_router_multicast_domain、alicloud_cen_transit_router_peer_attachment、alicloud_cen_transit_router_route_table、alicloud_cen_transit_router_vbr_attachment、alicloud_cen_transit_router_vpc_...
│ To work with module.hsm-vpc.aws_flow_log.fl its original provider configuration at module.hsm-vpc.provider["registry.terraform.io/hashicorp/aws"].sharedservices is required, but it has been │ removed. This occurs when a provider configuration is removed whil...
《腾讯云Terraform应用指南》系列文章旨在帮助腾讯云用户借助Terraform,轻松使用简单模板语言来定义、预览和...
Enable AWS Config rules to audit unrestricted common ports in Security Group rules. Enable VPC Flow Logs with the default VPC in all regions. Enable GuardDuty in all regions. Usage data "aws_caller_identity" "current" {} data "aws_region" "current" {} ...