ECLAT-LSSG
NAMESYNOPSIS
DESCRIPTION
OPTIONS
FILTERS
OUTPUT
SEE ALSO
AUTHORS
BUG REPORTS
COPYRIGHT
NAME
eclat-lssg, eclat-describe-security-groups - return information about security groups
SYNOPSIS
eclat lssg [-n] [--name] [FILTER...] [ID]
eclat lssg --help
DESCRIPTION
This command returns information about security groups. By default, all security groups pertaining to your account will be described. Particular groups can be selected by specifying their IDs (or names, if the -n (--name) option is used) in the command line. The set of groups can further be abridged by using filters.
If ID mapping is enabled (see the section MAPS in eclat(1)), this command translates ID supplied in the command line using the GroupId map or GroupName map, if the -n (--name) option is used.
OPTIONS
-n, --name
Treat group identifiers supplied in the command line as group names. By default they are treated as group IDs.
FILTERS
description=string
The description of the security group.
group-id=string
The ID of the security group.
group-name=string
The name of the security group.
ip-permission.cidr=string
The CIDR range that has been granted the permission. See the note below.
ip-permission.from-port=string
For the TCP and UDP, the start of port range, for ICMP -- the ICMP type number.
ip-permission.group-name=string
The name of security group that has been granted the permission.
ip-permission.protocol=value
The IP protocol for the permission. One of: tcp, udp, icmp, or a protocol number.
ip-permission.to-port=string
The end of port range for the TCP and UDP protocols, or an ICMP code.
ip-permission.user-id=string
The ID of an AWS account that has been granted the permission.
owner-id=string
The AWS account ID of the owner of the security group.
tag-key=string
The key of a tag assigned to the security group.
tag-value=string
The value of a tag assigned to the security group.
Notice, that all filters use literal matching only. This means that you cannot use, e.g., ip-permission.cidr to check for a particular IP address. Instead, the argument to ip-permission.cidr must be the CIDR exactly as stored in the group description. The same holds true for other filters as well.
OUTPUT
The output is multi-line. Each group begins with a Group line, containing the group ID, name and description. Following lines describe the VPC ID and tags (if any). Tags are listed in as key=value pairs, each on a separate line and indented by one tabstop. The lines that follow list the rules for incoming and outgoing traffic. E.g.:
Group sg-443d0a12 |
WebServers |
"Web Servers" |
VPC ID:
Incoming:
tcp |
|||||
0.0.0.0/0 |
80 |
Outgoing:
Group sg-5ff8a023 |
RangedPortsBySource |
"Group A" |
VPC ID:
Incoming:
user 111122223333, group sg-99gh4012 ("Group B") |
6000-7000 |
Outgoing:
SEE ALSO
eclat(1), eclat-sg(1), eclat-mksg(1), eclat-rmsg(1).
AUTHORS
Sergey Poznyakoff
BUG REPORTS
Report bugs to <bug-eclat@gnu.org.ua>.
COPYRIGHT
Copyright
© 2012-2018 Sergey Poznyakoff
License GPLv3+: GNU GPL version 3 or later
<http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and
redistribute it. There is NO WARRANTY, to the extent
permitted by law.
Manpage server at man.gnu.org.ua.
Powered by mansrv 1.1