Security Group Generator

What it does

The security-group-generator skill creates AWS Security Group configurations based on user-defined criteria. It can generate rules for inbound and outbound traffic, specifying protocols (TCP, UDP, ICMP), ports, and source/destination IP ranges or CIDR blocks. This helps automate the creation of secure network environments within AWS.

When to use it

• Setting up a new application: Quickly define security group rules when deploying a new application into an AWS environment.
• Creating development/staging environments: Generate temporary, isolated security groups for testing and development purposes.
• Automating infrastructure provisioning: Integrate the skill into automated scripts or pipelines to ensure consistent security configurations.
• Responding to security audit findings: Easily generate updated security group rules based on recommendations from a security audit.

Key capabilities

• Generates inbound and outbound security group rules.
• Supports TCP, UDP, and ICMP protocols.
• Allows specification of port ranges.
• Accepts IP addresses or CIDR blocks as source/destination.

Example prompts

• "Create a security group allowing SSH access from my home IP address."
• "Generate a security group for a web server, allowing HTTP and HTTPS traffic from anywhere."
• "Create a security group that allows all outbound traffic but only inbound TCP port 80 from the CIDR block 192.168.1.0/24."

Tips & gotchas

The skill requires familiarity with AWS Security Group concepts and terminology, including protocols, ports, and IP addressing. Be mindful of overly permissive rules (e.g., allowing all traffic) which can compromise security.