For AI agents: A markdown version of this page is available at https://docs.datadoghq.com/security/code_security/iac_security/iac_rules/terraform-tencentcloud-vpc-flow-log-disabled.md.
A documentation index is available at /llms.txt.
This rule checks tencentcloud_vpc_flow_log_config resources and requires the enable attribute to be set to true. Resources with enable set to false are reported as IncorrectValue.
Compliant Code Examples
data"tencentcloud_availability_zones""zones"{}data"tencentcloud_images""image"{image_type=["PUBLIC_IMAGE"]image_name_regex="Final"}data"tencentcloud_instance_types""instance_types"{filter{name="zone"values=[data.tencentcloud_availability_zones.zones.zones.0.name]}filter{name="instance-family"values=["S5"]}cpu_core_count=2exclude_sold_out=true}resource"tencentcloud_cls_logset""logset"{logset_name="delogsetmo"tags={"test"="test"}}resource"tencentcloud_cls_topic""topic"{topic_name="topic"logset_id=tencentcloud_cls_logset.logset.idauto_split=falsemax_split_partitions=20partition_count=1period=10storage_type="hot"tags={"test"="test",}}resource"tencentcloud_vpc""vpc"{name="vpc-flow-log-vpc"cidr_block="10.0.0.0/16"}resource"tencentcloud_subnet""subnet"{availability_zone=data.tencentcloud_availability_zones.zones.zones.0.namename="vpc-flow-log-subnet"vpc_id=tencentcloud_vpc.vpc.idcidr_block="10.0.0.0/16"is_multicast=false}resource"tencentcloud_eni""example"{name="vpc-flow-log-eni"vpc_id=tencentcloud_vpc.vpc.idsubnet_id=tencentcloud_subnet.subnet.iddescription="eni desc"ipv4_count=1}resource"tencentcloud_instance""example"{instance_name="ci-test-eni-attach"availability_zone=data.tencentcloud_availability_zones.zones.zones.0.nameimage_id=data.tencentcloud_images.image.images.0.image_idinstance_type=data.tencentcloud_instance_types.instance_types.instance_types.0.instance_typesystem_disk_type="CLOUD_PREMIUM"disable_security_service=truedisable_monitor_service=falsevpc_id=tencentcloud_vpc.vpc.idsubnet_id=tencentcloud_subnet.subnet.id}resource"tencentcloud_eni_attachment""example"{eni_id=tencentcloud_eni.example.idinstance_id=tencentcloud_instance.example.id}resource"tencentcloud_vpc_flow_log""example"{flow_log_name="tf-example-vpc-flow-log"resource_type="NETWORKINTERFACE"resource_id=tencentcloud_eni_attachment.example.eni_idtraffic_type="ACCEPT"vpc_id=tencentcloud_vpc.vpc.idflow_log_description="this is a testing flow log"cloud_log_id=tencentcloud_cls_topic.topic.idstorage_type="cls"tags={"testKey"="testValue"}}resource"tencentcloud_vpc_flow_log_config""config"{flow_log_id=tencentcloud_vpc_flow_log.example.idenable=true}
Non-Compliant Code Examples
data"tencentcloud_availability_zones""zones"{}data"tencentcloud_images""image"{image_type=["PUBLIC_IMAGE"]image_name_regex="Final"}data"tencentcloud_instance_types""instance_types"{filter{name="zone"values=[data.tencentcloud_availability_zones.zones.zones.0.name]}filter{name="instance-family"values=["S5"]}cpu_core_count=2exclude_sold_out=true}resource"tencentcloud_cls_logset""logset"{logset_name="delogsetmo"tags={"test"="test"}}resource"tencentcloud_cls_topic""topic"{topic_name="topic"logset_id=tencentcloud_cls_logset.logset.idauto_split=falsemax_split_partitions=20partition_count=1period=10storage_type="hot"tags={"test"="test",}}resource"tencentcloud_vpc""vpc"{name="vpc-flow-log-vpc"cidr_block="10.0.0.0/16"}resource"tencentcloud_subnet""subnet"{availability_zone=data.tencentcloud_availability_zones.zones.zones.0.namename="vpc-flow-log-subnet"vpc_id=tencentcloud_vpc.vpc.idcidr_block="10.0.0.0/16"is_multicast=false}resource"tencentcloud_eni""example"{name="vpc-flow-log-eni"vpc_id=tencentcloud_vpc.vpc.idsubnet_id=tencentcloud_subnet.subnet.iddescription="eni desc"ipv4_count=1}resource"tencentcloud_instance""example"{instance_name="ci-test-eni-attach"availability_zone=data.tencentcloud_availability_zones.zones.zones.0.nameimage_id=data.tencentcloud_images.image.images.0.image_idinstance_type=data.tencentcloud_instance_types.instance_types.instance_types.0.instance_typesystem_disk_type="CLOUD_PREMIUM"disable_security_service=truedisable_monitor_service=falsevpc_id=tencentcloud_vpc.vpc.idsubnet_id=tencentcloud_subnet.subnet.id}resource"tencentcloud_eni_attachment""example"{eni_id=tencentcloud_eni.example.idinstance_id=tencentcloud_instance.example.id}resource"tencentcloud_vpc_flow_log""example"{flow_log_name="tf-example-vpc-flow-log"resource_type="NETWORKINTERFACE"resource_id=tencentcloud_eni_attachment.example.eni_idtraffic_type="ACCEPT"vpc_id=tencentcloud_vpc.vpc.idflow_log_description="this is a testing flow log"cloud_log_id=tencentcloud_cls_topic.topic.idstorage_type="cls"tags={"testKey"="testValue"}}resource"tencentcloud_vpc_flow_log_config""config"{flow_log_id=tencentcloud_vpc_flow_log.example.idenable=false}
1
2
rulesets:- Terraform / TencentCloud # Rules to enforce / TencentCloud.
Request a personalized demo
Get Started with Datadog
Ask AI
AI-generated responses may be inaccurate. Verify important info.
