{"id":2305,"date":"2025-03-24T08:47:44","date_gmt":"2025-03-23T23:47:44","guid":{"rendered":"https:\/\/dexall.co.jp\/articles\/?p=2305"},"modified":"2025-03-24T08:48:08","modified_gmt":"2025-03-23T23:48:08","slug":"%e3%80%90%e4%bf%9d%e5%ae%88%e6%80%a7%e6%8a%9c%e7%be%a4%e3%80%91terraform%e3%83%80%e3%82%a4%e3%83%8a%e3%83%9f%e3%83%83%e3%82%af%e3%83%96%e3%83%ad%e3%83%83%e3%82%af%e5%ae%8c%e5%85%a8%e3%82%ac%e3%82%a4","status":"publish","type":"post","link":"https:\/\/dexall.co.jp\/articles\/?p=2305","title":{"rendered":"\u3010\u4fdd\u5b88\u6027\u629c\u7fa4\u3011Terraform\u30c0\u30a4\u30ca\u30df\u30c3\u30af\u30d6\u30ed\u30c3\u30af\u5b8c\u5168\u30ac\u30a4\u30c9\uff01\u5b9f\u8df5\u7684\u306a7\u3064\u306e\u6d3b\u7528\u4f8b\u3068\u5b9f\u8df5\u306e\u30b3\u30c4"},"content":{"rendered":"\n<div class=\"toc\"><br \/>\n<b>Warning<\/b>:  Undefined array key \"is_admin\" in <b>\/home\/xs392991\/dexall.co.jp\/public_html\/articles\/wp-content\/themes\/sango-theme\/library\/gutenberg\/dist\/classes\/Toc.php<\/b> on line <b>116<\/b><br \/>\n<br \/>\n<b>Warning<\/b>:  Undefined array key \"is_category_top\" in <b>\/home\/xs392991\/dexall.co.jp\/public_html\/articles\/wp-content\/themes\/sango-theme\/library\/gutenberg\/dist\/classes\/Toc.php<\/b> on line <b>121<\/b><br \/>\n<br \/>\n<b>Warning<\/b>:  Undefined array key \"is_top\" in <b>\/home\/xs392991\/dexall.co.jp\/public_html\/articles\/wp-content\/themes\/sango-theme\/library\/gutenberg\/dist\/classes\/Toc.php<\/b> on line <b>128<\/b><br \/>\n    <div id=\"toc_container\" class=\"sgb-toc--bullets js-smooth-scroll\" data-dialog-title=\"\u76ee\u6b21\">\n      <p class=\"toc_title\">\u76ee\u6b21 <\/p>\n      <ul class=\"toc_list\">  <li class=\"first\">    <a href=\"#i-0\">Terraform \u52d5\u7684\u30d6\u30ed\u30c3\u30af\u3068\u306f\uff1f \u57fa\u790e\u304b\u3089\u5fb9\u5e95\u89e3\u8aac<\/a>    <ul class=\"menu_level_1\">      <li class=\"first\">        <a href=\"#i-1\">\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u304c\u89e3\u6c7a\u3059\u308b3\u3064\u306e\u8ab2\u984c<\/a>      <\/li>      <li>        <a href=\"#i-2\">\u57fa\u672c\u7684\u306a\u6587\u6cd5\u3068\u52d5\u4f5c\u306e\u4ed5\u7d44\u307f<\/a>      <\/li>      <li class=\"last\">        <a href=\"#i-3\">\u5f93\u6765\u306e\u8a18\u8ff0\u65b9\u6cd5\u3068\u306e\u6bd4\u8f03<\/a>      <\/li>    <\/ul>  <\/li>  <li>    <a href=\"#i-4\">\u5b9f\u8df5\u3067\u4f7f\u3048\u308b\u30c0\u30a4\u30ca\u30df\u30c3\u30af\u30d6\u30ed\u30c3\u30af\u306e\u6d3b\u7528\u4f8b7\u9078<\/a>    <ul class=\"menu_level_1\">      <li class=\"first\">        <a href=\"#i-5\">\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30b0\u30eb\u30fc\u30d7\u306e\u30eb\u30fc\u30eb\u5b9a\u7fa9\u3092\u30b9\u30de\u30fc\u30c8\u306b\u7ba1\u7406<\/a>      <\/li>      <li>        <a href=\"#i-6\">\u8907\u6570\u306eIAM\u30dd\u30ea\u30b7\u30fc\u3092\u52b9\u7387\u7684\u306b\u8a2d\u5b9a<\/a>      <\/li>      <li>        <a href=\"#i-7\">S3\u30d0\u30b1\u30c3\u30c8\u306e\u30e9\u30a4\u30d5\u30b5\u30a4\u30af\u30eb\u30eb\u30fc\u30eb\u3092\u52d5\u7684\u306b\u5236\u5fa1<\/a>      <\/li>      <li>        <a href=\"#i-8\">\u30bf\u30b0\u4ed8\u3051\u3092\u4e00\u5143\u7ba1\u7406<\/a>      <\/li>      <li>        <a href=\"#i-9\">VPC\u306e\u30b5\u30d6\u30cd\u30c3\u30c8\u8a2d\u5b9a\u3092\u67d4\u8edf\u306b\u7ba1\u7406<\/a>      <\/li>      <li>        <a href=\"#i-10\">ECS\u30bf\u30b9\u30af\u5b9a\u7fa9\u3067\u30b3\u30f3\u30c6\u30ca\u8a2d\u5b9a\u3092\u52d5\u7684\u306b\u751f\u6210<\/a>      <\/li>      <li class=\"last\">        <a href=\"#i-11\">CloudWatch\u30a2\u30e9\u30fc\u30e0\u306e\u95be\u5024\u8a2d\u5b9a\u3092\u4e00\u62ec\u7ba1\u7406<\/a>      <\/li>    <\/ul>  <\/li>  <li>    <a href=\"#i-12\">dynamicblock \u6d3b\u7528\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9<\/a>    <ul class=\"menu_level_1\">      <li class=\"first\">        <a href=\"#i-13\">\u5909\u6570\u5b9a\u7fa9\u306e\u305f\u3081\u306e\u6700\u9069\u306a\u69cb\u9020\u5316\u30c7\u30fc\u30bf\u306e\u8a2d\u8a08\u65b9\u6cd5<\/a>      <\/li>      <li>        <a href=\"#i-14\">\u30b3\u30fc\u30c9\u306e\u53ef\u8aad\u6027\u3092\u7dad\u6301\u3059\u308b\u305f\u3081\u306e\u30d2\u30f3\u30c8<\/a>      <\/li>      <li class=\"last\">        <a href=\"#i-15\">\u30c7\u30d0\u30c3\u30b0\u3068\u30c8\u30e9\u30d6\u30eb\u30b7\u30e5\u30fc\u30c6\u30a3\u30f3\u30b0\u306e\u30a2\u30d7\u30ed\u30fc\u30c1<\/a>      <\/li>    <\/ul>  <\/li>  <li>    <a href=\"#i-16\">\u5b9f\u73fe\u6642\u306e\u6ce8\u610f\u70b9\u3068\u56de\u907f\u3059\u3079\u304d\u53cd\u30a2\u30f3\u30c1\u30d1\u30bf\u30fc\u30f3<\/a>    <ul class=\"menu_level_1\">      <li class=\"first\">        <a href=\"#i-17\">\u904e\u5ea6\u306a\u52d5\u7684\u751f\u6210\u3092\u8003\u616e\u3059\u308b\u305f\u3081\u306e\u30ac\u30a4\u30c9\u30e9\u30a4\u30f3<\/a>      <\/li>      <li>        <a href=\"#i-18\">\u30c6\u30b9\u30c8\u6642\u306e\u91cd\u8981\u4e8b\u9805<\/a>      <\/li>      <li class=\"last\">        <a href=\"#i-19\">\u30d1\u30d5\u30a9\u30fc\u30de\u30f3\u30b9\u3078\u306e\u5f71\u97ff\u3068\u6700\u9069\u5316\u65b9\u6cd5<\/a>      <\/li>    <\/ul>  <\/li>  <li class=\"last\">    <a href=\"#i-20\">\u5fdc\u7528\uff1a\u3088\u308a\u9ad8\u5ea6\u306a\u30c0\u30a4\u30ca\u30df\u30c3\u30af\u30d6\u30ed\u30c3\u30af\u306e\u4f7f\u3044\u65b9<\/a>    <ul class=\"menu_level_1\">      <li class=\"first\">        <a href=\"#i-21\">\u30cd\u30b9\u30c8\u5316\u3055\u308c\u305f\u30d6\u30ed\u30c3\u30af\u306e\u53d6\u308a\u6271\u3044<\/a>      <\/li>      <li>        <a href=\"#i-22\">\u6761\u4ef6\u4ed8\u304d\u30ea\u30bd\u30fc\u30b9\u751f\u6210\u3068\u306e\u7d44\u307f\u5408\u308f\u305b<\/a>      <\/li>      <li class=\"last\">        <a href=\"#i-23\">\u30e2\u30b8\u30e5\u30fc\u30eb\u5316\u306b\u304a\u3051\u308b\u6d3b\u7528\u6226\u7565<\/a>      <\/li>    <\/ul>  <\/li><\/ul>\n      <a href=\"#\" class=\"sgb-toc-button js-toc-button\" rel=\"nofollow\" data-open-dialog=\"true\"><i class=\"fa fa-list\"><\/i><span class=\"sgb-toc-button__text\">\u76ee\u6b21\u3078<\/span><\/a>\n    <\/div><\/div><h2 class=\"wp-block-heading\" id=\"i-0\">Terraform \u52d5\u7684\u30d6\u30ed\u30c3\u30af\u3068\u306f\uff1f \u57fa\u790e\u304b\u3089\u5fb9\u5e95\u89e3\u8aac<\/h2>\n\n\n\n<p>Terraform\u306e\u52d5\u7684\u30d6\u30ed\u30c3\u30af\uff08dynamic block\uff09\u306f\u3001\u4f3c\u305f\u3088\u3046\u306a\u69cb\u9020\u3092\u6301\u3064\u8907\u6570\u306e\u30d6\u30ed\u30c3\u30af\u3092\u52b9\u7387\u7684\u306b\u751f\u6210\u3059\u308b\u305f\u3081\u306e\u6a5f\u80fd\u3067\u3059\u3002\u7279\u306b\u5927\u898f\u6a21\u306a\u30a4\u30f3\u30d5\u30e9\u74b0\u5883\u3067\u306f\u3001\u540c\u3058\u3088\u3046\u306a\u8a2d\u5b9a\u3092\u4f55\u5ea6\u3082\u8a18\u8ff0\u3059\u308b\u5fc5\u8981\u304c\u3042\u308a\u3001\u305d\u308c\u304c\u30b3\u30fc\u30c9\u306e\u80a5\u5927\u5316\u3084\u4fdd\u5b88\u6027\u306e\u4f4e\u4e0b\u3092\u62db\u304d\u307e\u3059\u3002\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u3092\u4f7f\u7528\u3059\u308b\u3053\u3068\u3067\u3001\u3053\u306e\u3088\u3046\u306a\u8ab2\u984c\u3092\u52b9\u679c\u7684\u306b\u89e3\u6c7a\u3067\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-1\">\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u304c\u89e3\u6c7a\u3059\u308b3\u3064\u306e\u8ab2\u984c<\/h3>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u30b3\u30fc\u30c9\u306e\u91cd\u8907\u524a\u6e1b<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u5f93\u6765\u306e\u65b9\u6cd5\u3067\u306f\u3001\u4f3c\u305f\u3088\u3046\u306a\u8a2d\u5b9a\u30d6\u30ed\u30c3\u30af\u3092\u4f55\u5ea6\u3082\u8a18\u8ff0\u3059\u308b\u5fc5\u8981\u304c\u3042\u308a\u307e\u3057\u305f<\/li>\n\n\n\n<li>\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u3092\u4f7f\u7528\u3059\u308b\u3053\u3068\u3067\u3001\u8a2d\u5b9a\u3092\u30c7\u30fc\u30bf\u3068\u3057\u3066\u7ba1\u7406\u3057\u3001\u7e70\u308a\u8fd4\u3057\u751f\u6210\u3067\u304d\u307e\u3059<\/li>\n\n\n\n<li>\u3053\u308c\u306b\u3088\u308a\u3001\u30b3\u30fc\u30c9\u306e\u884c\u6570\u304c\u5927\u5e45\u306b\u524a\u6e1b\u3055\u308c\u3001\u53ef\u8aad\u6027\u304c\u5411\u4e0a\u3057\u307e\u3059<\/li>\n<\/ul>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u4fdd\u5b88\u6027\u306e\u5411\u4e0a<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u8a2d\u5b9a\u5909\u66f4\u6642\u306b\u8907\u6570\u7b87\u6240\u3092\u4fee\u6b63\u3059\u308b\u5fc5\u8981\u304c\u306a\u304f\u306a\u308a\u307e\u3059<\/li>\n\n\n\n<li>\u30c7\u30fc\u30bf\u99c6\u52d5\u306e\u8a2d\u5b9a\u7ba1\u7406\u306b\u3088\u308a\u3001\u5909\u66f4\u306e\u30ea\u30b9\u30af\u304c\u4f4e\u6e1b\u3057\u307e\u3059<\/li>\n\n\n\n<li>\u30d0\u30fc\u30b8\u30e7\u30f3\u7ba1\u7406\u304c\u3057\u3084\u3059\u304f\u306a\u308a\u307e\u3059<\/li>\n<\/ul>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u67d4\u8edf\u306a\u8a2d\u5b9a\u7ba1\u7406<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u74b0\u5883\u5909\u6570\u3084\u5916\u90e8\u30c7\u30fc\u30bf\u306b\u57fa\u3065\u3044\u3066\u8a2d\u5b9a\u3092\u52d5\u7684\u306b\u751f\u6210\u3067\u304d\u307e\u3059<\/li>\n\n\n\n<li>\u6761\u4ef6\u5206\u5c90\u3068\u306e\u7d44\u307f\u5408\u308f\u305b\u304c\u5bb9\u6613\u3067\u3059<\/li>\n\n\n\n<li>\u30e2\u30b8\u30e5\u30fc\u30eb\u5316\u3068\u306e\u76f8\u6027\u304c\u826f\u304f\u3001\u518d\u5229\u7528\u6027\u304c\u9ad8\u307e\u308a\u307e\u3059<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-2\">\u57fa\u672c\u7684\u306a\u6587\u6cd5\u3068\u52d5\u4f5c\u306e\u4ed5\u7d44\u307f<\/h3>\n\n\n\n<p>\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u306e\u57fa\u672c\u7684\u306a\u69cb\u6587\u306f\u4ee5\u4e0b\u306e\u901a\u308a\u3067\u3059\uff1a<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">dynamic \"\u30d6\u30ed\u30c3\u30af\u540d\" {\n  for_each = \u7e70\u308a\u8fd4\u3057\u5bfe\u8c61\u306e\u30c7\u30fc\u30bf\n  content {\n    # \u5404\u8981\u7d20\u306b\u5bfe\u3059\u308b\u8a2d\u5b9a\n    \u8a2d\u5b9a\u9805\u76ee = each.value.\u9805\u76ee\u540d\n  }\n}<\/pre>\n\n\n\n<p>\u5177\u4f53\u7684\u306a\u4f8b\u3068\u3057\u3066\u3001\u8907\u6570\u306e\u30a4\u30f3\u30d0\u30a6\u30f3\u30c9\u30eb\u30fc\u30eb\u3092\u6301\u3064\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30b0\u30eb\u30fc\u30d7\u306e\u5b9a\u7fa9\u3092\u898b\u3066\u307f\u307e\u3057\u3087\u3046\uff1a<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u8a2d\u5b9a\u30c7\u30fc\u30bf\u306e\u5b9a\u7fa9\nvariable \"sg_rules\" {\n  default = [\n    {\n      port        = 80\n      protocol    = \"tcp\"\n      cidr_blocks = [\"0.0.0.0\/0\"]\n    },\n    {\n      port        = 443\n      protocol    = \"tcp\"\n      cidr_blocks = [\"0.0.0.0\/0\"]\n    }\n  ]\n}\n\n# \u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30b0\u30eb\u30fc\u30d7\u306e\u5b9a\u7fa9\nresource \"aws_security_group\" \"example\" {\n  name = \"example-sg\"\n\n  # \u52d5\u7684\u30d6\u30ed\u30c3\u30af\u3092\u4f7f\u7528\u3057\u305f\u30eb\u30fc\u30eb\u5b9a\u7fa9\n  dynamic \"ingress\" {\n    for_each = var.sg_rules\n    content {\n      from_port   = ingress.value.port\n      to_port     = ingress.value.port\n      protocol    = ingress.value.protocol\n      cidr_blocks = ingress.value.cidr_blocks\n    }\n  }\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-3\">\u5f93\u6765\u306e\u8a18\u8ff0\u65b9\u6cd5\u3068\u306e\u6bd4\u8f03<\/h3>\n\n\n\n<p>\u5f93\u6765\u306e\u9759\u7684\u306a\u8a18\u8ff0\u65b9\u6cd5\u3068\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u3092\u4f7f\u7528\u3057\u305f\u65b9\u6cd5\u3092\u6bd4\u8f03\u3057\u3066\u307f\u307e\u3057\u3087\u3046\uff1a<\/p>\n\n\n\n<p><strong>\u5f93\u6765\u306e\u65b9\u6cd5\uff1a<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">resource \"aws_security_group\" \"example\" {\n  name = \"example-sg\"\n\n  ingress {\n    from_port   = 80\n    to_port     = 80\n    protocol    = \"tcp\"\n    cidr_blocks = [\"0.0.0.0\/0\"]\n  }\n\n  ingress {\n    from_port   = 443\n    to_port     = 443\n    protocol    = \"tcp\"\n    cidr_blocks = [\"0.0.0.0\/0\"]\n  }\n\n  # \u65b0\u3057\u3044\u30eb\u30fc\u30eb\u3092\u8ffd\u52a0\u3059\u308b\u5834\u5408\u3001\n  # \u3053\u3053\u306b\u540c\u3058\u3088\u3046\u306a\u69cb\u9020\u306e\u30d6\u30ed\u30c3\u30af\u3092\u8ffd\u52a0\n}<\/pre>\n\n\n\n<p><strong>\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u3092\u4f7f\u7528\u3057\u305f\u65b9\u6cd5\u306e\u30e1\u30ea\u30c3\u30c8\uff1a<\/strong><\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u8a2d\u5b9a\u306e\u4e00\u5143\u7ba1\u7406<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u30eb\u30fc\u30eb\u306e\u8ffd\u52a0\u30fb\u5909\u66f4\u30fb\u524a\u9664\u304c\u5909\u6570\u306e\u4fee\u6b63\u3060\u3051\u3067\u5b8c\u7d50<\/li>\n\n\n\n<li>\u30c7\u30fc\u30bf\u3068\u30ed\u30b8\u30c3\u30af\u306e\u5206\u96e2\u306b\u3088\u308a\u3001\u7ba1\u7406\u304c\u5bb9\u6613\u306b<\/li>\n<\/ul>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u30b3\u30fc\u30c9\u306e\u7c21\u6f54\u3055<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u91cd\u8907\u3059\u308b\u30b3\u30fc\u30c9\u304c\u5927\u5e45\u306b\u524a\u6e1b<\/li>\n\n\n\n<li>\u5909\u66f4\u7b87\u6240\u304c\u96c6\u4e2d\u3059\u308b\u305f\u3081\u3001\u30df\u30b9\u306e\u30ea\u30b9\u30af\u304c\u4f4e\u4e0b<\/li>\n<\/ul>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u62e1\u5f35\u6027\u306e\u5411\u4e0a<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u65b0\u3057\u3044\u30eb\u30fc\u30eb\u306e\u8ffd\u52a0\u304c\u5bb9\u6613<\/li>\n\n\n\n<li>\u74b0\u5883\u3054\u3068\u306e\u8a2d\u5b9a\u5909\u66f4\u304c\u5909\u6570\u5b9a\u7fa9\u306e\u5909\u66f4\u3060\u3051\u3067\u53ef\u80fd<\/li>\n<\/ul>\n\n\n\n<p>\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u306f\u3001\u7279\u306b\u4ee5\u4e0b\u306e\u3088\u3046\u306a\u5834\u5408\u306b\u52b9\u679c\u3092\u767a\u63ee\u3057\u307e\u3059\uff1a<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u540c\u3058\u69cb\u9020\u306e\u8a2d\u5b9a\u3092\u8907\u6570\u56de\u8a18\u8ff0\u3059\u308b\u5fc5\u8981\u304c\u3042\u308b\u5834\u5408<\/li>\n\n\n\n<li>\u74b0\u5883\u3084\u30b3\u30f3\u30c6\u30ad\u30b9\u30c8\u306b\u5fdc\u3058\u3066\u8a2d\u5b9a\u5185\u5bb9\u304c\u5909\u5316\u3059\u308b\u5834\u5408<\/li>\n\n\n\n<li>\u30c1\u30fc\u30e0\u9593\u3067\u8a2d\u5b9a\u3092\u5171\u6709\u30fb\u518d\u5229\u7528\u3059\u308b\u5fc5\u8981\u304c\u3042\u308b\u5834\u5408<\/li>\n<\/ul>\n\n\n\n<p>\u3053\u308c\u3089\u306e\u7279\u5fb4\u3092\u6d3b\u304b\u3059\u3053\u3068\u3067\u3001\u3088\u308a\u4fdd\u5b88\u6027\u306e\u9ad8\u3044Terraform\u30b3\u30fc\u30c9\u3092\u5b9f\u73fe\u3067\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"i-4\">\u5b9f\u8df5\u3067\u4f7f\u3048\u308b\u30c0\u30a4\u30ca\u30df\u30c3\u30af\u30d6\u30ed\u30c3\u30af\u306e\u6d3b\u7528\u4f8b7\u9078<\/h2>\n\n\n\n<p>\u5b9f\u969b\u306eAWS\u74b0\u5883\u69cb\u7bc9\u3067\u3088\u304f\u906d\u9047\u3059\u308b\u5834\u9762\u3067\u306e\u3001\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u306e\u52b9\u679c\u7684\u306a\u6d3b\u7528\u4f8b\u3092\u7d39\u4ecb\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-5\">\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30b0\u30eb\u30fc\u30d7\u306e\u30eb\u30fc\u30eb\u5b9a\u7fa9\u3092\u30b9\u30de\u30fc\u30c8\u306b\u7ba1\u7406<\/h3>\n\n\n\n<p>\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30b0\u30eb\u30fc\u30d7\u306e\u8a2d\u5b9a\u306f\u3001\u8907\u6570\u306e\u30dd\u30fc\u30c8\u3084\u30d7\u30ed\u30c8\u30b3\u30eb\u3092\u7ba1\u7406\u3059\u308b\u5fc5\u8981\u304c\u3042\u308a\u3001\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u306e\u6d3b\u7528\u304c\u7279\u306b\u52b9\u679c\u7684\u3067\u3059\u3002<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">locals {\n  sg_rules = {\n    http = {\n      port     = 80\n      protocol = \"tcp\"\n      cidrs    = [\"0.0.0.0\/0\"]\n    },\n    https = {\n      port     = 443\n      protocol = \"tcp\"\n      cidrs    = [\"0.0.0.0\/0\"]\n    },\n    monitoring = {\n      port     = 9090\n      protocol = \"tcp\"\n      cidrs    = [\"10.0.0.0\/8\"]\n    }\n  }\n}\n\nresource \"aws_security_group\" \"web\" {\n  name        = \"web-sg\"\n  description = \"Security group for web servers\"\n  vpc_id      = aws_vpc.main.id\n\n  dynamic \"ingress\" {\n    for_each = local.sg_rules\n    content {\n      description = each.key\n      from_port   = each.value.port\n      to_port     = each.value.port\n      protocol    = each.value.protocol\n      cidr_blocks = each.value.cidrs\n    }\n  }\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-6\">\u8907\u6570\u306eIAM\u30dd\u30ea\u30b7\u30fc\u3092\u52b9\u7387\u7684\u306b\u8a2d\u5b9a<\/h3>\n\n\n\n<p>IAM\u30dd\u30ea\u30b7\u30fc\u306e\u7ba1\u7406\u306f\u3001\u7279\u306b\u8907\u6570\u306e\u30b5\u30fc\u30d3\u30b9\u3084\u30ea\u30bd\u30fc\u30b9\u3078\u306e\u30a2\u30af\u30bb\u30b9\u6a29\u9650\u3092\u8a2d\u5b9a\u3059\u308b\u969b\u306b\u8907\u96d1\u306b\u306a\u308a\u304c\u3061\u3067\u3059\u3002<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">locals {\n  s3_permissions = {\n    read = {\n      actions   = [\"s3:GetObject\", \"s3:ListBucket\"]\n      resources = [\"arn:aws:s3:::my-bucket\/*\"]\n    },\n    write = {\n      actions   = [\"s3:PutObject\", \"s3:DeleteObject\"]\n      resources = [\"arn:aws:s3:::my-bucket\/*\"]\n    }\n  }\n}\n\nresource \"aws_iam_policy\" \"s3_access\" {\n  name = \"s3-access-policy\"\n\n  policy = jsonencode({\n    Version = \"2012-10-17\"\n    Statement = [\n      dynamic \"statement\" {\n        for_each = local.s3_permissions\n        content {\n          Sid      = each.key\n          Effect   = \"Allow\"\n          Action   = each.value.actions\n          Resource = each.value.resources\n        }\n      }\n    ]\n  })\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-7\">S3\u30d0\u30b1\u30c3\u30c8\u306e\u30e9\u30a4\u30d5\u30b5\u30a4\u30af\u30eb\u30eb\u30fc\u30eb\u3092\u52d5\u7684\u306b\u5236\u5fa1<\/h3>\n\n\n\n<p>\u8907\u6570\u306e\u30e9\u30a4\u30d5\u30b5\u30a4\u30af\u30eb\u30eb\u30fc\u30eb\u3092\u6301\u3064S3\u30d0\u30b1\u30c3\u30c8\u306e\u8a2d\u5b9a\u3092\u52b9\u7387\u7684\u306b\u7ba1\u7406\u3067\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">locals {\n  lifecycle_rules = [\n    {\n      prefix  = \"logs\/\"\n      enabled = true\n      transitions = [\n        {\n          days          = 30\n          storage_class = \"STANDARD_IA\"\n        },\n        {\n          days          = 90\n          storage_class = \"GLACIER\"\n        }\n      ]\n      expiration = 365\n    },\n    {\n      prefix  = \"tmp\/\"\n      enabled = true\n      transitions = [\n        {\n          days          = 7\n          storage_class = \"GLACIER\"\n        }\n      ]\n      expiration = 30\n    }\n  ]\n}\n\nresource \"aws_s3_bucket\" \"example\" {\n  bucket = \"my-bucket\"\n\n  dynamic \"lifecycle_rule\" {\n    for_each = local.lifecycle_rules\n    content {\n      prefix  = lifecycle_rule.value.prefix\n      enabled = lifecycle_rule.value.enabled\n\n      dynamic \"transition\" {\n        for_each = lifecycle_rule.value.transitions\n        content {\n          days          = transition.value.days\n          storage_class = transition.value.storage_class\n        }\n      }\n\n      expiration {\n        days = lifecycle_rule.value.expiration\n      }\n    }\n  }\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-8\">\u30bf\u30b0\u4ed8\u3051\u3092\u4e00\u5143\u7ba1\u7406<\/h3>\n\n\n\n<p>\u8907\u6570\u306e\u30ea\u30bd\u30fc\u30b9\u306b\u5bfe\u3059\u308b\u4e00\u8cab\u3057\u305f\u30bf\u30b0\u4ed8\u3051\u3092\u5b9f\u73fe\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">locals {\n  common_tags = {\n    Environment = \"Production\"\n    Department  = \"DevOps\"\n    Project     = \"Infrastructure\"\n    ManagedBy   = \"Terraform\"\n  }\n}\n\nresource \"aws_instance\" \"web\" {\n  ami           = \"ami-12345678\"\n  instance_type = \"t3.micro\"\n\n  dynamic \"tags\" {\n    for_each = local.common_tags\n    content {\n      key   = tags.key\n      value = tags.value\n    }\n  }\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-9\">VPC\u306e\u30b5\u30d6\u30cd\u30c3\u30c8\u8a2d\u5b9a\u3092\u67d4\u8edf\u306b\u7ba1\u7406<\/h3>\n\n\n\n<p>\u8907\u6570\u306e\u30a2\u30d9\u30a4\u30e9\u30d3\u30ea\u30c6\u30a3\u30fc\u30be\u30fc\u30f3\u306b\u307e\u305f\u304c\u308b\u30b5\u30d6\u30cd\u30c3\u30c8\u8a2d\u5b9a\u3092\u52b9\u7387\u7684\u306b\u7ba1\u7406\u3067\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">locals {\n  azs = [\"ap-northeast-1a\", \"ap-northeast-1c\", \"ap-northeast-1d\"]\n  subnets = {\n    public = {\n      cidr_offset = 0\n      tags = {\n        Type = \"Public\"\n      }\n    }\n    private = {\n      cidr_offset = 3\n      tags = {\n        Type = \"Private\"\n      }\n    }\n  }\n}\n\nresource \"aws_vpc\" \"main\" {\n  cidr_block = \"10.0.0.0\/16\"\n\n  dynamic \"subnet\" {\n    for_each = {\n      for pair in setproduct(keys(local.subnets), local.azs) :\n      \"${pair[0]}-${pair[1]}\" =&gt; {\n        name   = pair[0]\n        az     = pair[1]\n        config = local.subnets[pair[0]]\n      }\n    }\n\n    content {\n      cidr_block = cidrsubnet(\n        aws_vpc.main.cidr_block,\n        8,\n        subnet.value.config.cidr_offset + index(local.azs, subnet.value.az)\n      )\n      availability_zone = subnet.value.az\n      tags             = merge(\n        subnet.value.config.tags,\n        {\n          Name = \"${subnet.key}-subnet\"\n        }\n      )\n    }\n  }\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-10\">ECS\u30bf\u30b9\u30af\u5b9a\u7fa9\u3067\u30b3\u30f3\u30c6\u30ca\u8a2d\u5b9a\u3092\u52d5\u7684\u306b\u751f\u6210<\/h3>\n\n\n\n<p>\u8907\u6570\u306e\u30b3\u30f3\u30c6\u30ca\u3092\u542b\u3080ECS\u30bf\u30b9\u30af\u5b9a\u7fa9\u3092\u52b9\u7387\u7684\u306b\u7ba1\u7406\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">locals {\n  containers = {\n    app = {\n      image     = \"app:latest\"\n      cpu       = 256\n      memory    = 512\n      essential = true\n      portMappings = [\n        {\n          containerPort = 80\n          hostPort     = 80\n        }\n      ]\n    },\n    sidecar = {\n      image     = \"sidecar:latest\"\n      cpu       = 128\n      memory    = 256\n      essential = false\n    }\n  }\n}\n\nresource \"aws_ecs_task_definition\" \"service\" {\n  family                   = \"service\"\n  network_mode             = \"awsvpc\"\n  requires_compatibilities = [\"FARGATE\"]\n  cpu                      = 512\n  memory                   = 1024\n\n  dynamic \"container_definitions\" {\n    for_each = local.containers\n    content {\n      name       = container_definitions.key\n      image      = container_definitions.value.image\n      cpu        = container_definitions.value.cpu\n      memory     = container_definitions.value.memory\n      essential  = container_definitions.value.essential\n\n      dynamic \"portMappings\" {\n        for_each = try(container_definitions.value.portMappings, [])\n        content {\n          containerPort = portMappings.value.containerPort\n          hostPort     = portMappings.value.hostPort\n        }\n      }\n    }\n  }\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-11\">CloudWatch\u30a2\u30e9\u30fc\u30e0\u306e\u95be\u5024\u8a2d\u5b9a\u3092\u4e00\u62ec\u7ba1\u7406<\/h3>\n\n\n\n<p>\u8907\u6570\u306e\u30e1\u30c8\u30ea\u30af\u30b9\u306b\u5bfe\u3059\u308b\u30a2\u30e9\u30fc\u30e0\u8a2d\u5b9a\u3092\u52b9\u7387\u7684\u306b\u7ba1\u7406\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">locals {\n  alarms = {\n    cpu_high = {\n      metric_name = \"CPUUtilization\"\n      threshold   = 80\n      period     = 300\n      statistic  = \"Average\"\n    },\n    memory_high = {\n      metric_name = \"MemoryUtilization\"\n      threshold   = 75\n      period     = 300\n      statistic  = \"Average\"\n    }\n  }\n}\n\nresource \"aws_cloudwatch_metric_alarm\" \"monitoring\" {\n  dynamic \"metric_alarm\" {\n    for_each = local.alarms\n    content {\n      alarm_name          = \"${metric_alarm.key}-alarm\"\n      comparison_operator = \"GreaterThanThreshold\"\n      evaluation_periods  = \"2\"\n      metric_name        = metric_alarm.value.metric_name\n      namespace          = \"AWS\/ECS\"\n      period            = metric_alarm.value.period\n      statistic         = metric_alarm.value.statistic\n      threshold         = metric_alarm.value.threshold\n      alarm_description = \"Alarm when ${metric_alarm.key} exceeds threshold\"\n    }\n  }\n}<\/pre>\n\n\n\n<p>\u5404\u4f8b\u3067\u793a\u3057\u305f\u3088\u3046\u306b\u3001\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u306f\u8a2d\u5b9a\u306e\u7e70\u308a\u8fd4\u3057\u304c\u5fc5\u8981\u306a\u5834\u9762\u3067\u7279\u306b\u5a01\u529b\u3092\u767a\u63ee\u3057\u307e\u3059\u3002\u3053\u308c\u3089\u306e\u30d1\u30bf\u30fc\u30f3\u3092\u57fa\u306b\u3001\u81ea\u8eab\u306e\u74b0\u5883\u306b\u5408\u308f\u305b\u3066\u30ab\u30b9\u30bf\u30de\u30a4\u30ba\u3059\u308b\u3053\u3068\u3067\u3001\u3088\u308a\u52b9\u7387\u7684\u306a\u30a4\u30f3\u30d5\u30e9\u7ba1\u7406\u304c\u53ef\u80fd\u306b\u306a\u308a\u307e\u3059\u3002<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"i-12\">dynamicblock \u6d3b\u7528\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9<\/h2>\n\n\n\n<p>\u52b9\u679c\u7684\u306a\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u306e\u6d3b\u7528\u306b\u306f\u3001\u9069\u5207\u306a\u8a2d\u8a08\u3068\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9\u306e\u9075\u5b88\u304c\u4e0d\u53ef\u6b20\u3067\u3059\u3002\u3053\u3053\u3067\u306f\u3001\u5b9f\u8df5\u7684\u306a\u89b3\u70b9\u304b\u3089\u91cd\u8981\u306a\u30dd\u30a4\u30f3\u30c8\u3092\u89e3\u8aac\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-13\">\u5909\u6570\u5b9a\u7fa9\u306e\u305f\u3081\u306e\u6700\u9069\u306a\u69cb\u9020\u5316\u30c7\u30fc\u30bf\u306e\u8a2d\u8a08\u65b9\u6cd5<\/h3>\n\n\n\n<p>\u52b9\u7387\u7684\u306a\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u904b\u7528\u306e\u9375\u306f\u3001\u9069\u5207\u306a\u30c7\u30fc\u30bf\u69cb\u9020\u306e\u8a2d\u8a08\u306b\u3042\u308a\u307e\u3059\u3002<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u968e\u5c64\u69cb\u9020\u306e\u9069\u5207\u306a\u8a2d\u8a08<\/strong><\/li>\n<\/ol>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u826f\u3044\u4f8b\uff1a\u610f\u5473\u306e\u3042\u308b\u968e\u5c64\u69cb\u9020\nlocals {\n  security_rules = {\n    web = {\n      description = \"Web traffic\"\n      rules = {\n        http  = { port = 80, protocol = \"tcp\", cidr = [\"0.0.0.0\/0\"] }\n        https = { port = 443, protocol = \"tcp\", cidr = [\"0.0.0.0\/0\"] }\n      }\n    }\n    monitoring = {\n      description = \"Monitoring traffic\"\n      rules = {\n        prometheus = { port = 9090, protocol = \"tcp\", cidr = [\"10.0.0.0\/8\"] }\n        grafana    = { port = 3000, protocol = \"tcp\", cidr = [\"10.0.0.0\/8\"] }\n      }\n    }\n  }\n}\n\n# \u60aa\u3044\u4f8b\uff1a\u30d5\u30e9\u30c3\u30c8\u3059\u304e\u308b\u69cb\u9020\nlocals {\n  security_rules_flat = {\n    http_port       = 80\n    http_protocol   = \"tcp\"\n    http_cidr       = [\"0.0.0.0\/0\"]\n    https_port      = 443\n    https_protocol  = \"tcp\"\n    https_cidr      = [\"0.0.0.0\/0\"]\n  }\n}<\/pre>\n\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li><strong>\u30c7\u30fc\u30bf\u578b\u306e\u4e00\u8cab\u6027\u7dad\u6301<\/strong><\/li>\n<\/ol>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u826f\u3044\u4f8b\uff1a\u4e00\u8cab\u3057\u305f\u30c7\u30fc\u30bf\u69cb\u9020\nlocals {\n  lifecycle_rules = [\n    {\n      prefix = \"logs\/\"\n      transitions = [\n        { days = 30, storage_class = \"STANDARD_IA\" },\n        { days = 90, storage_class = \"GLACIER\" }\n      ]\n    }\n  ]\n}\n\n# \u60aa\u3044\u4f8b\uff1a\u4e0d\u6574\u5408\u306a\u30c7\u30fc\u30bf\u69cb\u9020\nlocals {\n  lifecycle_rules_bad = [\n    {\n      prefix = \"logs\/\"\n      transition_days = [30, 90]  # \u4e00\u90e8\u306e\u60c5\u5831\u304c\u6b20\u843d\n      storage_class = [\"STANDARD_IA\", \"GLACIER\"]\n    }\n  ]\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-14\">\u30b3\u30fc\u30c9\u306e\u53ef\u8aad\u6027\u3092\u7dad\u6301\u3059\u308b\u305f\u3081\u306e\u30d2\u30f3\u30c8<\/h3>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u9069\u5207\u306a\u30b3\u30e1\u30f3\u30c8\u3068\u30c9\u30ad\u30e5\u30e1\u30f3\u30c6\u30fc\u30b7\u30e7\u30f3<\/strong><\/li>\n<\/ol>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">locals {\n  # \u5404\u74b0\u5883\u306eVPC\u3068\u30b5\u30d6\u30cd\u30c3\u30c8\u8a2d\u5b9a\n  # format: {\u74b0\u5883\u540d = {VPC\u306eCIDR, \u30b5\u30d6\u30cd\u30c3\u30c8\u6570, \u30bf\u30b0\u8a2d\u5b9a}}\n  vpc_configs = {\n    staging = {\n      cidr = \"10.0.0.0\/16\"\n      subnets = {\n        public  = { count = 2, offset = 0 }\n        private = { count = 2, offset = 2 }\n      }\n      tags = {\n        Environment = \"Staging\"\n        ManagedBy  = \"Terraform\"\n      }\n    }\n  }\n}\n\nresource \"aws_vpc\" \"main\" {\n  # VPC\u8a2d\u5b9a\u306edynamic\u30d6\u30ed\u30c3\u30af\n  dynamic \"vpc_config\" {\n    for_each = local.vpc_configs\n    content {\n      cidr_block = vpc_config.value.cidr\n\n      # \u30b5\u30d6\u30cd\u30c3\u30c8\u8a2d\u5b9a\u306e\u52d5\u7684\u751f\u6210\n      dynamic \"subnet\" {\n        for_each = vpc_config.value.subnets\n        content {\n          # ...\u30b5\u30d6\u30cd\u30c3\u30c8\u8a2d\u5b9a\u306e\u8a73\u7d30...\n        }\n      }\n\n      # \u5171\u901a\u30bf\u30b0\u306e\u9069\u7528\n      tags = vpc_config.value.tags\n    }\n  }\n}<\/pre>\n\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li><strong>\u30e2\u30b8\u30e5\u30fc\u30eb\u5316\u306b\u3088\u308b\u6574\u7406<\/strong><\/li>\n<\/ol>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u30e2\u30b8\u30e5\u30fc\u30eb: security_group\/main.tf\nvariable \"rules\" {\n  description = \"Security group rules configuration\"\n  type = map(object({\n    description = string\n    port        = number\n    protocol    = string\n    cidr_blocks = list(string)\n  }))\n}\n\nresource \"aws_security_group\" \"this\" {\n  dynamic \"ingress\" {\n    for_each = var.rules\n    content {\n      description = ingress.value.description\n      from_port   = ingress.value.port\n      to_port     = ingress.value.port\n      protocol    = ingress.value.protocol\n      cidr_blocks = ingress.value.cidr_blocks\n    }\n  }\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-15\">\u30c7\u30d0\u30c3\u30b0\u3068\u30c8\u30e9\u30d6\u30eb\u30b7\u30e5\u30fc\u30c6\u30a3\u30f3\u30b0\u306e\u30a2\u30d7\u30ed\u30fc\u30c1<\/h3>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u8a08\u753b\u30d5\u30a7\u30fc\u30ba\u3067\u306e\u691c\u8a3c<\/strong><\/li>\n<\/ol>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u30c7\u30d0\u30c3\u30b0\u7528\u306eoutput\u5b9a\u7fa9\noutput \"generated_config\" {\n  value = [\n    for rule in aws_security_group.example.ingress : {\n      port        = rule.from_port\n      protocol    = rule.protocol\n      cidr_blocks = rule.cidr_blocks\n    }\n  ]\n}\n\n# \u5909\u6570\u306e\u5024\u3092\u78ba\u8a8d\u3059\u308b\u305f\u3081\u306elocal\u5024\nlocals {\n  debug_view = {\n    input_rules = var.security_rules\n    processed_rules = [\n      for name, rule in var.security_rules : {\n        name     = name\n        port     = rule.port\n        protocol = rule.protocol\n      }\n    ]\n  }\n}<\/pre>\n\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li><strong>\u30a8\u30e9\u30fc\u51e6\u7406\u3068\u30d0\u30ea\u30c7\u30fc\u30b7\u30e7\u30f3<\/strong><\/li>\n<\/ol>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">locals {\n  # \u5165\u529b\u5024\u306e\u691c\u8a3c\n  validate_ports = [\n    for name, rule in var.security_rules :\n    rule.port &gt;= 0 &amp;&amp; rule.port &lt;= 65535 ?\n    null : \"Invalid port ${rule.port} for rule ${name}\"\n  ]\n\n  # \u30a8\u30e9\u30fc\u304c\u3042\u308b\u5834\u5408\u306f\u5b9f\u884c\u3092\u505c\u6b62\n  validate_check = length(compact(local.validate_ports)) == 0 ?\n    null : file(\"ERROR: Invalid security rules configuration\")\n}<\/pre>\n\n\n\n<p>\u3053\u308c\u3089\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9\u3092\u9069\u7528\u3059\u308b\u3053\u3068\u3067\u3001\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u3092\u4f7f\u7528\u3057\u305fTerraform\u30b3\u30fc\u30c9\u306e\u4fdd\u5b88\u6027\u3068\u4fe1\u983c\u6027\u3092\u5927\u5e45\u306b\u5411\u4e0a\u3055\u305b\u308b\u3053\u3068\u304c\u3067\u304d\u307e\u3059\u3002\u7279\u306b\u5927\u898f\u6a21\u306a\u30a4\u30f3\u30d5\u30e9\u30b9\u30c8\u30e9\u30af\u30c1\u30e3\u3092\u7ba1\u7406\u3059\u308b\u5834\u5408\u3001\u3053\u308c\u3089\u306e\u539f\u5247\u306b\u5f93\u3046\u3053\u3068\u3067\u9577\u671f\u7684\u306a\u30e1\u30f3\u30c6\u30ca\u30f3\u30b9\u6027\u3092\u78ba\u4fdd\u3067\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"i-16\">\u5b9f\u73fe\u6642\u306e\u6ce8\u610f\u70b9\u3068\u56de\u907f\u3059\u3079\u304d\u53cd\u30a2\u30f3\u30c1\u30d1\u30bf\u30fc\u30f3<\/h2>\n\n\n\n<p>\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u306f\u5f37\u529b\u306a\u6a5f\u80fd\u3067\u3059\u304c\u3001\u9069\u5207\u306b\u4f7f\u7528\u3057\u306a\u3044\u3068\u304b\u3048\u3063\u3066\u4fdd\u5b88\u6027\u3092\u4f4e\u4e0b\u3055\u305b\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002\u3053\u3053\u3067\u306f\u3001\u5b9f\u88c5\u6642\u306e\u6ce8\u610f\u70b9\u3068\u30a2\u30f3\u30c1\u30d1\u30bf\u30fc\u30f3\u3092\u89e3\u8aac\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-17\">\u904e\u5ea6\u306a\u52d5\u7684\u751f\u6210\u3092\u8003\u616e\u3059\u308b\u305f\u3081\u306e\u30ac\u30a4\u30c9\u30e9\u30a4\u30f3<\/h3>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u904e\u5ea6\u306a\u5165\u308c\u5b50\u69cb\u9020\u306e\u56de\u907f<\/strong><\/li>\n<\/ol>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u30a2\u30f3\u30c1\u30d1\u30bf\u30fc\u30f3\uff1a\u6df1\u3059\u304e\u308b\u5165\u308c\u5b50\u69cb\u9020\nresource \"aws_security_group\" \"complex\" {\n  dynamic \"ingress\" {\n    for_each = var.security_rules\n    content {\n      from_port = ingress.value.port\n      to_port   = ingress.value.port\n\n      dynamic \"cidr_blocks\" {  # \u4e0d\u5fc5\u8981\u306a\u52d5\u7684\u30d6\u30ed\u30c3\u30af\n        for_each = ingress.value.cidrs\n        content {\n          cidr_block = cidr_blocks.value\n        }\n      }\n\n      dynamic \"description\" {  # \u5358\u7d14\u306a\u5024\u306b\u5bfe\u3059\u308b\u4e0d\u8981\u306a\u52d5\u7684\u30d6\u30ed\u30c3\u30af\n        for_each = [ingress.value.description]\n        content {\n          value = description.value\n        }\n      }\n    }\n  }\n}\n\n# \u63a8\u5968\u30d1\u30bf\u30fc\u30f3\uff1a\u9069\u5207\u306a\u69cb\u9020\u5316\nresource \"aws_security_group\" \"simple\" {\n  dynamic \"ingress\" {\n    for_each = var.security_rules\n    content {\n      from_port   = ingress.value.port\n      to_port     = ingress.value.port\n      cidr_blocks = ingress.value.cidrs  # \u76f4\u63a5\u30ea\u30b9\u30c8\u3092\u6307\u5b9a\n      description = ingress.value.description  # \u76f4\u63a5\u5024\u3092\u6307\u5b9a\n    }\n  }\n}<\/pre>\n\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li><strong>\u8907\u96d1\u306a\u6761\u4ef6\u5206\u5c90\u306e\u5236\u9650<\/strong><\/li>\n<\/ol>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u30a2\u30f3\u30c1\u30d1\u30bf\u30fc\u30f3\uff1a\u904e\u5ea6\u306b\u8907\u96d1\u306a\u6761\u4ef6\u5206\u5c90\nlocals {\n  complex_rules = {\n    for env, config in var.environments : env =&gt; {\n      for service, rules in config.services : service =&gt; {\n        for port in rules.ports : port =&gt; {\n          enabled = try(rules.enabled, true) &amp;&amp; \n                   try(var.global_config.services[service].enabled, true) &amp;&amp;\n                   contains(var.allowed_ports, port)\n        }\n      }\n    }\n  }\n}\n\n# \u63a8\u5968\u30d1\u30bf\u30fc\u30f3\uff1a\u30b7\u30f3\u30d7\u30eb\u306a\u69cb\u9020\u5316\nlocals {\n  simplified_rules = {\n    for service, config in var.services : service =&gt; {\n      enabled = try(config.enabled, true)\n      ports   = config.ports\n    }\n  }\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-18\">\u30c6\u30b9\u30c8\u6642\u306e\u91cd\u8981\u4e8b\u9805<\/h3>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u8a08\u753b\u30d5\u30a7\u30fc\u30ba\u3067\u306e\u691c\u8a3c<\/strong><\/li>\n<\/ol>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u30c6\u30b9\u30c8\u7528\u306e\u30c1\u30a7\u30c3\u30af\u30dd\u30a4\u30f3\u30c8\nlocals {\n  # \u8a2d\u5b9a\u5024\u306e\u691c\u8a3c\n  validation_checks = {\n    port_ranges = [\n      for rule in var.security_rules :\n      rule.port &gt;= 0 &amp;&amp; rule.port &lt;= 65535\n    ]\n    unique_ports = length(distinct([\n      for rule in var.security_rules : rule.port\n    ])) == length(var.security_rules)\n  }\n\n  # \u691c\u8a3c\u30a8\u30e9\u30fc\u306e\u96c6\u7d04\n  validation_errors = concat(\n    [\n      for i, valid in local.validation_checks.port_ranges :\n      valid ? null : \"Invalid port range in rule ${i}\"\n    ],\n    local.validation_checks.unique_ports ?\n    [] : [\"Duplicate ports detected\"]\n  )\n}\n\n# \u691c\u8a3c\u7d50\u679c\u306e\u51fa\u529b\noutput \"validation_result\" {\n  value = length(compact(local.validation_errors)) == 0 ?\n    \"All validations passed\" : local.validation_errors\n}<\/pre>\n\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li><strong>\u30c6\u30b9\u30c8\u7528\u306e\u30ef\u30fc\u30af\u30b9\u30da\u30fc\u30b9\u8a2d\u5b9a<\/strong><\/li>\n<\/ol>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u30c6\u30b9\u30c8\u74b0\u5883\u7528\u306e\u8a2d\u5b9a\nlocals {\n  test_configs = {\n    minimal = {\n      rules = {\n        http = {\n          port        = 80\n          protocol    = \"tcp\"\n          cidr_blocks = [\"0.0.0.0\/0\"]\n        }\n      }\n    }\n    complete = {\n      rules = {\n        http = {\n          port        = 80\n          protocol    = \"tcp\"\n          cidr_blocks = [\"0.0.0.0\/0\"]\n        }\n        https = {\n          port        = 443\n          protocol    = \"tcp\"\n          cidr_blocks = [\"0.0.0.0\/0\"]\n        }\n      }\n    }\n  }\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-19\">\u30d1\u30d5\u30a9\u30fc\u30de\u30f3\u30b9\u3078\u306e\u5f71\u97ff\u3068\u6700\u9069\u5316\u65b9\u6cd5<\/h3>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u30ea\u30bd\u30fc\u30b9\u751f\u6210\u6570\u306e\u6700\u9069\u5316<\/strong><\/li>\n<\/ol>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u30a2\u30f3\u30c1\u30d1\u30bf\u30fc\u30f3\uff1a\u4e0d\u5fc5\u8981\u306a\u30ea\u30bd\u30fc\u30b9\u751f\u6210\nresource \"aws_security_group_rule\" \"inefficient\" {\n  count = length(local.all_combinations)  # \u5927\u91cf\u306e\u30eb\u30fc\u30eb\u3092\u500b\u5225\u306b\u751f\u6210\n\n  type        = \"ingress\"\n  from_port   = local.all_combinations[count.index].port\n  to_port     = local.all_combinations[count.index].port\n  protocol    = local.all_combinations[count.index].protocol\n  cidr_blocks = local.all_combinations[count.index].cidrs\n}\n\n# \u63a8\u5968\u30d1\u30bf\u30fc\u30f3\uff1a\u52b9\u7387\u7684\u306a\u30ea\u30bd\u30fc\u30b9\u751f\u6210\nresource \"aws_security_group\" \"efficient\" {\n  dynamic \"ingress\" {\n    for_each = {\n      for rule in local.security_rules :\n      \"${rule.port}-${rule.protocol}\" =&gt; rule\n    }\n\n    content {\n      from_port   = ingress.value.port\n      to_port     = ingress.value.port\n      protocol    = ingress.value.protocol\n      cidr_blocks = ingress.value.cidrs\n    }\n  }\n}<\/pre>\n\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li><strong>\u30c7\u30fc\u30bf\u69cb\u9020\u306e\u6700\u9069\u5316<\/strong><\/li>\n<\/ol>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u30a2\u30f3\u30c1\u30d1\u30bf\u30fc\u30f3\uff1a\u975e\u52b9\u7387\u306a\u30c7\u30fc\u30bf\u51e6\u7406\nlocals {\n  processed_rules = flatten([\n    for group in var.security_groups : [\n      for rule in group.rules : {\n        port     = rule.port\n        protocol = rule.protocol\n        cidrs    = rule.cidrs\n      }\n    ]\n  ])\n}\n\n# \u63a8\u5968\u30d1\u30bf\u30fc\u30f3\uff1a\u52b9\u7387\u7684\u306a\u30c7\u30fc\u30bf\u69cb\u9020\nlocals {\n  optimized_rules = merge([\n    for group_name, group in var.security_groups : {\n      for rule_name, rule in group.rules : \n      \"${group_name}-${rule_name}\" =&gt; {\n        port     = rule.port\n        protocol = rule.protocol\n        cidrs    = rule.cidrs\n      }\n    }\n  ]...)\n}<\/pre>\n\n\n\n<p>\u3053\u308c\u3089\u306e\u6ce8\u610f\u70b9\u3068\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9\u3092\u610f\u8b58\u3059\u308b\u3053\u3068\u3067\u3001\u3088\u308a\u4fdd\u5b88\u6027\u304c\u9ad8\u304f\u3001\u52b9\u7387\u7684\u306a\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u306e\u5b9f\u88c5\u304c\u53ef\u80fd\u306b\u306a\u308a\u307e\u3059\u3002\u7279\u306b\u5927\u898f\u6a21\u306a\u74b0\u5883\u3067\u306f\u3001\u3053\u308c\u3089\u306e\u30ac\u30a4\u30c9\u30e9\u30a4\u30f3\u306b\u5f93\u3046\u3053\u3068\u3067\u3001\u9577\u671f\u7684\u306a\u30e1\u30f3\u30c6\u30ca\u30f3\u30b9\u6027\u3068\u5b89\u5b9a\u6027\u3092\u78ba\u4fdd\u3067\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"i-20\">\u5fdc\u7528\uff1a\u3088\u308a\u9ad8\u5ea6\u306a\u30c0\u30a4\u30ca\u30df\u30c3\u30af\u30d6\u30ed\u30c3\u30af\u306e\u4f7f\u3044\u65b9<\/h2>\n\n\n\n<p>\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u306e\u57fa\u672c\u3092\u7406\u89e3\u3057\u305f\u3089\u3001\u3088\u308a\u9ad8\u5ea6\u306a\u4f7f\u3044\u65b9\u3092\u7fd2\u5f97\u3059\u308b\u3053\u3068\u3067\u3001\u3055\u3089\u306b\u67d4\u8edf\u3067\u4fdd\u5b88\u6027\u306e\u9ad8\u3044\u30a4\u30f3\u30d5\u30e9\u30b9\u30c8\u30e9\u30af\u30c1\u30e3\u30b3\u30fc\u30c9\u3092\u5b9f\u73fe\u3067\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-21\">\u30cd\u30b9\u30c8\u5316\u3055\u308c\u305f\u30d6\u30ed\u30c3\u30af\u306e\u53d6\u308a\u6271\u3044<\/h3>\n\n\n\n<p>\u8907\u96d1\u306a\u8a2d\u5b9a\u304c\u5fc5\u8981\u306a\u5834\u5408\u3001\u30cd\u30b9\u30c8\u5316\u3055\u308c\u305f\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u3092\u52b9\u679c\u7684\u306b\u6d3b\u7528\u3067\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># ECS\u30bf\u30b9\u30af\u5b9a\u7fa9\u3067\u306e\u9ad8\u5ea6\u306a\u8a2d\u5b9a\u4f8b\nlocals {\n  container_definitions = {\n    app = {\n      image = \"app:latest\"\n      portMappings = [\n        { containerPort = 80, protocol = \"tcp\" },\n        { containerPort = 443, protocol = \"tcp\" }\n      ]\n      environment = {\n        DATABASE_URL = \"db:\/\/localhost:5432\"\n        API_KEY      = \"secret\"\n      }\n      mountPoints = [\n        {\n          sourceVolume  = \"data\"\n          containerPath = \"\/data\"\n          readOnly     = false\n        }\n      ]\n    }\n    sidecar = {\n      image = \"sidecar:latest\"\n      portMappings = [\n        { containerPort = 9090, protocol = \"tcp\" }\n      ]\n      environment = {\n        METRICS_PATH = \"\/metrics\"\n      }\n    }\n  }\n}\n\nresource \"aws_ecs_task_definition\" \"advanced\" {\n  family = \"service\"\n\n  dynamic \"container_definitions\" {\n    for_each = local.container_definitions\n    content {\n      name  = container_definitions.key\n      image = container_definitions.value.image\n\n      dynamic \"portMappings\" {\n        for_each = container_definitions.value.portMappings\n        content {\n          containerPort = portMappings.value.containerPort\n          protocol     = portMappings.value.protocol\n        }\n      }\n\n      dynamic \"environment\" {\n        for_each = container_definitions.value.environment\n        content {\n          name  = environment.key\n          value = environment.value\n        }\n      }\n\n      dynamic \"mountPoints\" {\n        for_each = try(container_definitions.value.mountPoints, [])\n        content {\n          sourceVolume  = mountPoints.value.sourceVolume\n          containerPath = mountPoints.value.containerPath\n          readOnly     = mountPoints.value.readOnly\n        }\n      }\n    }\n  }\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-22\">\u6761\u4ef6\u4ed8\u304d\u30ea\u30bd\u30fc\u30b9\u751f\u6210\u3068\u306e\u7d44\u307f\u5408\u308f\u305b<\/h3>\n\n\n\n<p>\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u3068\u6761\u4ef6\u4ed8\u304d\u30ea\u30bd\u30fc\u30b9\u751f\u6210\u3092\u7d44\u307f\u5408\u308f\u305b\u308b\u3053\u3068\u3067\u3001\u3088\u308a\u67d4\u8edf\u306a\u8a2d\u5b9a\u304c\u53ef\u80fd\u306b\u306a\u308a\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u74b0\u5883\u306b\u5fdc\u3058\u305f\u6761\u4ef6\u4ed8\u304d\u30ea\u30bd\u30fc\u30b9\u751f\u6210\nlocals {\n  environments = {\n    dev = {\n      enable_monitoring = false\n      instance_count   = 1\n      alarms = {}\n    }\n    staging = {\n      enable_monitoring = true\n      instance_count   = 2\n      alarms = {\n        cpu = {\n          threshold = 80\n          period    = 300\n        }\n        memory = {\n          threshold = 75\n          period    = 300\n        }\n      }\n    }\n    prod = {\n      enable_monitoring = true\n      instance_count   = 3\n      alarms = {\n        cpu = {\n          threshold = 70\n          period    = 180\n        }\n        memory = {\n          threshold = 65\n          period    = 180\n        }\n        disk = {\n          threshold = 85\n          period    = 300\n        }\n      }\n    }\n  }\n}\n\nresource \"aws_cloudwatch_metric_alarm\" \"conditional\" {\n  for_each = local.environments[var.environment].enable_monitoring ? local.environments[var.environment].alarms : {}\n\n  alarm_name = \"${var.environment}-${each.key}-alarm\"\n\n  dynamic \"metric_query\" {\n    for_each = each.value\n    content {\n      id          = \"m1\"\n      metric {\n        namespace  = \"AWS\/EC2\"\n        metric_name = upper(each.key)\n        period     = each.value.period\n        stat       = \"Average\"\n        dimensions = {\n          InstanceId = aws_instance.example[count.index].id\n        }\n      }\n    }\n  }\n\n  threshold         = each.value.threshold\n  comparison_operator = \"GreaterThanThreshold\"\n  evaluation_periods  = \"2\"\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-23\">\u30e2\u30b8\u30e5\u30fc\u30eb\u5316\u306b\u304a\u3051\u308b\u6d3b\u7528\u6226\u7565<\/h3>\n\n\n\n<p>\u52d5\u7684\u30d6\u30ed\u30c3\u30af\u3092\u52b9\u679c\u7684\u306b\u30e2\u30b8\u30e5\u30fc\u30eb\u5316\u3059\u308b\u3053\u3068\u3067\u3001\u518d\u5229\u7528\u6027\u3068\u4fdd\u5b88\u6027\u3092\u5411\u4e0a\u3055\u305b\u308b\u3053\u3068\u304c\u3067\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># modules\/security_group\/variables.tf\nvariable \"rules\" {\n  description = \"Map of security group rules\"\n  type = map(object({\n    type        = string\n    from_port   = number\n    to_port     = number\n    protocol    = string\n    cidr_blocks = list(string)\n    description = string\n  }))\n}\n\nvariable \"tags\" {\n  description = \"Resource tags\"\n  type        = map(string)\n  default     = {}\n}\n\n# modules\/security_group\/main.tf\nresource \"aws_security_group\" \"this\" {\n  name_prefix = var.name_prefix\n  vpc_id      = var.vpc_id\n\n  dynamic \"ingress\" {\n    for_each = {\n      for k, v in var.rules : k =&gt; v\n      if v.type == \"ingress\"\n    }\n    content {\n      from_port   = ingress.value.from_port\n      to_port     = ingress.value.to_port\n      protocol    = ingress.value.protocol\n      cidr_blocks = ingress.value.cidr_blocks\n      description = ingress.value.description\n    }\n  }\n\n  dynamic \"egress\" {\n    for_each = {\n      for k, v in var.rules : k =&gt; v\n      if v.type == \"egress\"\n    }\n    content {\n      from_port   = egress.value.from_port\n      to_port     = egress.value.to_port\n      protocol    = egress.value.protocol\n      cidr_blocks = egress.value.cidr_blocks\n      description = egress.value.description\n    }\n  }\n\n  dynamic \"tags\" {\n    for_each = var.tags\n    content {\n      key   = tags.key\n      value = tags.value\n    }\n  }\n}\n\n# \u4f7f\u7528\u4f8b\nmodule \"web_security_group\" {\n  source = \".\/modules\/security_group\"\n\n  name_prefix = \"web\"\n  vpc_id      = aws_vpc.main.id\n\n  rules = {\n    http = {\n      type        = \"ingress\"\n      from_port   = 80\n      to_port     = 80\n      protocol    = \"tcp\"\n      cidr_blocks = [\"0.0.0.0\/0\"]\n      description = \"HTTP access\"\n    }\n    https = {\n      type        = \"ingress\"\n      from_port   = 443\n      to_port     = 443\n      protocol    = \"tcp\"\n      cidr_blocks = [\"0.0.0.0\/0\"]\n      description = \"HTTPS access\"\n    }\n    egress = {\n      type        = \"egress\"\n      from_port   = 0\n      to_port     = 0\n      protocol    = \"-1\"\n      cidr_blocks = [\"0.0.0.0\/0\"]\n      description = \"Allow all outbound traffic\"\n    }\n  }\n\n  tags = {\n    Environment = \"Production\"\n    ManagedBy   = \"Terraform\"\n  }\n}<\/pre>\n\n\n\n<p>\u3053\u308c\u3089\u306e\u9ad8\u5ea6\u306a\u4f7f\u7528\u65b9\u6cd5\u3092\u7406\u89e3\u3057\u9069\u5207\u306b\u6d3b\u7528\u3059\u308b\u3053\u3068\u3067\u3001\u3088\u308a\u67d4\u8edf\u3067\u4fdd\u5b88\u6027\u306e\u9ad8\u3044\u30a4\u30f3\u30d5\u30e9\u30b9\u30c8\u30e9\u30af\u30c1\u30e3\u30b3\u30fc\u30c9\u3092\u5b9f\u73fe\u3067\u304d\u307e\u3059\u3002\u7279\u306b\u5927\u898f\u6a21\u306a\u74b0\u5883\u3084\u8907\u96d1\u306a\u8981\u4ef6\u304c\u3042\u308b\u5834\u5408\u3001\u3053\u308c\u3089\u306e\u30d1\u30bf\u30fc\u30f3\u3092\u7d44\u307f\u5408\u308f\u305b\u308b\u3053\u3068\u3067\u52b9\u679c\u7684\u306a\u89e3\u6c7a\u7b56\u3092\u63d0\u4f9b\u3067\u304d\u307e\u3059\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Warning: Undefined array key &#8220;is_admin&#8221; in \/home\/xs392991\/dexall.co.jp\/public_html\/articles\/wp-content\/themes\/ &#8230; <\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8],"tags":[],"class_list":{"0":"post-2305","1":"post","2":"type-post","3":"status-publish","4":"format-standard","6":"category-aws","7":"nothumb"},"_links":{"self":[{"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/posts\/2305","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2305"}],"version-history":[{"count":1,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/posts\/2305\/revisions"}],"predecessor-version":[{"id":2306,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/posts\/2305\/revisions\/2306"}],"wp:attachment":[{"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2305"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2305"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2305"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}