---
title: Getting Started with Datadog
description: Datadog, the leading service for cloud-scale monitoring.
breadcrumbs: Docs > Infrastructure > Datadog Resource Catalog
---

# aws_security_group_rule{% #aws_security_group_rule %}

## `account_id`{% #account_id %}

**Type**: `STRING`

## `cidr_ipv4`{% #cidr_ipv4 %}

**Type**: `STRING`**Provider name**: `CidrIpv4`**Description**: The IPv4 CIDR range.

## `cidr_ipv6`{% #cidr_ipv6 %}

**Type**: `STRING`**Provider name**: `CidrIpv6`**Description**: The IPv6 CIDR range.

## `description`{% #description %}

**Type**: `STRING`**Provider name**: `Description`**Description**: The security group rule description.

## `from_port`{% #from_port %}

**Type**: `INT32`**Provider name**: `FromPort`**Description**: If the protocol is TCP or UDP, this is the start of the port range. If the protocol is ICMP or ICMPv6, this is the ICMP type or -1 (all ICMP types).

## `group_id`{% #group_id %}

**Type**: `STRING`**Provider name**: `GroupId`**Description**: The ID of the security group.

## `group_owner_id`{% #group_owner_id %}

**Type**: `STRING`**Provider name**: `GroupOwnerId`**Description**: The ID of the Amazon Web Services account that owns the security group.

## `ip_protocol`{% #ip_protocol %}

**Type**: `STRING`**Provider name**: `IpProtocol`**Description**: The IP protocol name (`tcp`, `udp`, `icmp`, `icmpv6`) or number (see [Protocol Numbers](http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml)). Use `-1` to specify all protocols.

## `is_egress`{% #is_egress %}

**Type**: `BOOLEAN`**Provider name**: `IsEgress`**Description**: Indicates whether the security group rule is an outbound rule.

## `prefix_list_id`{% #prefix_list_id %}

**Type**: `STRING`**Provider name**: `PrefixListId`**Description**: The ID of the prefix list.

## `referenced_group_info`{% #referenced_group_info %}

**Type**: `STRUCT`**Provider name**: `ReferencedGroupInfo`**Description**: Describes the security group that is referenced in the rule.

- `group_id`**Type**: `STRING`**Provider name**: `GroupId`**Description**: The ID of the security group.
- `peering_status`**Type**: `STRING`**Provider name**: `PeeringStatus`**Description**: The status of a VPC peering connection, if applicable.
- `user_id`**Type**: `STRING`**Provider name**: `UserId`**Description**: The Amazon Web Services account ID.
- `vpc_id`**Type**: `STRING`**Provider name**: `VpcId`**Description**: The ID of the VPC.
- `vpc_peering_connection_id`**Type**: `STRING`**Provider name**: `VpcPeeringConnectionId`**Description**: The ID of the VPC peering connection (if applicable).

## `security_group_rule_arn`{% #security_group_rule_arn %}

**Type**: `STRING`

## `security_group_rule_id`{% #security_group_rule_id %}

**Type**: `STRING`**Provider name**: `SecurityGroupRuleId`**Description**: The ID of the security group rule.

## `tags`{% #tags %}

**Type**: `UNORDERED_LIST_STRING`

## `to_port`{% #to_port %}

**Type**: `INT32`**Provider name**: `ToPort`**Description**: If the protocol is TCP or UDP, this is the end of the port range. If the protocol is ICMP or ICMPv6, this is the ICMP code or -1 (all ICMP codes). If the start port is -1 (all ICMP types), then the end port must be -1 (all ICMP codes).