feat: new nacl module improved with Qoder

2026-04-10 23:43:10 +08:00
parent 998636f079
commit ebdbd19d28
6 changed files with 142 additions and 54 deletions
@@ -0,0 +1,21 @@
+module "nacl" {
+  source = "../"
+
+  # comma-separated values with this field definition
+  # protocol,from_port,to_port,source_cidr,action
+  egress_rules = [
+    "-1,0,0,10.29.0.0/16,allow",       # IPv4 - All traffic
+    "tcp,443,443,10.35.32.0/22,allow", # IPv4 - HTTPS
+    "udp,53,53,10.35.67.0/24,allow"    # IPv4 - DNS
+  ]
+  # comma-separated values with this field definition
+  # protocol,from_port,to_port,source_cidr,action
+  ingress_rules = [
+    "-1,0,0,10.29.0.0/16,allow",      # IPv4 - All traffic
+    "tcp,22,22,10.0.0.0/8,allow",     # IPv4 - SSH
+    "tcp,443,443,2001:db8::/32,allow" # IPv6 - HTTPS
+  ]
+  subnet_ids = ["subnet-0927ba1b06ccfe6c5", "subnet-0551e96ffd016192a"]
+  vpc_id     = "vpc-01a10b033169f89a8"
+  acl_name   = "test-nacl"
+}