---
title: Getting Started with Datadog
description: Datadog, the leading service for cloud-scale monitoring.
breadcrumbs: Docs > Infrastructure > Datadog Resource Catalog
---

# aws_security_group_rule{% #aws_security_group_rule %}

## `account_id`{% #account_id %}

**Type**: `STRING` 

## `cidr_ipv4`{% #cidr_ipv4 %}

**Type**: `STRING` **Provider name**: `CidrIpv4` **Description**: The IPv4 CIDR range. 

## `cidr_ipv6`{% #cidr_ipv6 %}

**Type**: `STRING` **Provider name**: `CidrIpv6` **Description**: The IPv6 CIDR range. 

## `description`{% #description %}

**Type**: `STRING` **Provider name**: `Description` **Description**: The security group rule description. 

## `from_port`{% #from_port %}

**Type**: `INT32` **Provider name**: `FromPort` **Description**: If the protocol is TCP or UDP, this is the start of the port range. If the protocol is ICMP or ICMPv6, this is the ICMP type or -1 (all ICMP types). 

## `group_id`{% #group_id %}

**Type**: `STRING` **Provider name**: `GroupId` **Description**: The ID of the security group. 

## `group_owner_id`{% #group_owner_id %}

**Type**: `STRING` **Provider name**: `GroupOwnerId` **Description**: The ID of the Amazon Web Services account that owns the security group. 

## `ip_protocol`{% #ip_protocol %}

**Type**: `STRING` **Provider name**: `IpProtocol` **Description**: The IP protocol name (`tcp`, `udp`, `icmp`, `icmpv6`) or number (see [Protocol Numbers](http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml)). Use `-1` to specify all protocols. 

## `is_egress`{% #is_egress %}

**Type**: `BOOLEAN` **Provider name**: `IsEgress` **Description**: Indicates whether the security group rule is an outbound rule. 

## `prefix_list_id`{% #prefix_list_id %}

**Type**: `STRING` **Provider name**: `PrefixListId` **Description**: The ID of the prefix list. 

## `referenced_group_info`{% #referenced_group_info %}

**Type**: `STRUCT` **Provider name**: `ReferencedGroupInfo` **Description**: Describes the security group that is referenced in the rule. 

- `group_id`**Type**: `STRING`**Provider name**: `GroupId`**Description**: The ID of the security group.
- `peering_status`**Type**: `STRING`**Provider name**: `PeeringStatus`**Description**: The status of a VPC peering connection, if applicable.
- `user_id`**Type**: `STRING`**Provider name**: `UserId`**Description**: The Amazon Web Services account ID.
- `vpc_id`**Type**: `STRING`**Provider name**: `VpcId`**Description**: The ID of the VPC.
- `vpc_peering_connection_id`**Type**: `STRING`**Provider name**: `VpcPeeringConnectionId`**Description**: The ID of the VPC peering connection (if applicable).

## `security_group_rule_arn`{% #security_group_rule_arn %}

**Type**: `STRING` 

## `security_group_rule_id`{% #security_group_rule_id %}

**Type**: `STRING` **Provider name**: `SecurityGroupRuleId` **Description**: The ID of the security group rule. 

## `tags`{% #tags %}

**Type**: `UNORDERED_LIST_STRING` 

## `to_port`{% #to_port %}

**Type**: `INT32` **Provider name**: `ToPort` **Description**: If the protocol is TCP or UDP, this is the end of the port range. If the protocol is ICMP or ICMPv6, this is the ICMP code or -1 (all ICMP codes). If the start port is -1 (all ICMP types), then the end port must be -1 (all ICMP codes).