The report below gives back a list of AWS security group permissions.
The report will only list permissions when the following criteria are met:
- You have Lansweeper 7.1 or higher.
- There is AWS VPC and Instance data scanned.
Code:
Select Top 1000000 tblAWSSecurityGroup.GroupId As SecurityGroupId,
tblAWSSecurityGroup.Name,
tblAWSContainer.Region,
tblAWSSecurityGroup.OwnerId,
tblAWSSecurityGroup.Description,
tblAWSSecurityGroupPermission.FromPort,
tblAWSSecurityGroupPermission.ToPort,
tblAWSSecurityGroupPermission.IpProtocol,
tblAWSSecurityGroupPermissionIpRange.CidrIp,
tblAWSSecurityGroupPermissionIpRange.Description As IpRangeDescription
From tblAWSSecurityGroup
Left Join tblAWSContainer On tblAWSContainer.AWSContainerId =
tblAWSSecurityGroup.AWSContainerId
Inner Join tblAWSSecurityGroupPermission On
tblAWSSecurityGroupPermission.AWSSecurityGroupId =
tblAWSSecurityGroup.AWSSecurityGroupId
Inner Join tblAWSSecurityGroupPermissionIpRange On
tblAWSSecurityGroupPermissionIpRange.AWSSecurityGroupPermissionId =
tblAWSSecurityGroupPermission.AWSSecurityGroupPermissionId
Order By tblAWSContainer.Region,
SecurityGroupId,
tblAWSSecurityGroupPermission.FromPort