About PKota1

‎01-12-2022

since

L0 Member

1
Post
0
Likes
0
Solutions
Jan 12, 2022
Last Visited

User Activity

User Profile

RQL Query - Trying to Link Security Groups that are not linked to a particular Transit Gateway ID. but getting Bad Request Error

1066

‎09-17-2021 05:59 AM

User Badges

Community Statistics

Member Since	‎09-17-2021 05:50 AM
Date Last Visited	‎01-12-2022 09:07 PM
Posts	1

Trying to Join 2 API: aws-ec2-describe-security-groups & aws-vpc-transit-gateway-attachment 1. List of Security Groups that allow everything: config from cloud.resource where cloud.type = 'aws' AND api.name= 'aws-ec2-describe-security-groups' AND json.rule = isShared is false and (ipPermissions[?any((ipProtocol equals tcp or ipProtocol equals icmp or ipProtocol equals icmpv6 or ipProtocol equals udp) and (ipRanges[*] contains 0.0.0.0/0 or ipv6Ranges[*].cidrIpv6 contains ::/0))] exists) as X; 2. Extracting List of VPCs that dont have a particular Gateway AttachmentID: config from cloud.resource where cloud.type = 'aws' AND api.name= 'aws-vpc-transit-gateway-attachment' AND json.rule = transitGatewayId does not contain "XXXXXXXXX" as Y; final Join: config from cloud.resource where cloud.type = 'aws' AND api.name= 'aws-ec2-describe-security-groups' AND json.rule = isShared is false and (ipPermissions[?any((ipProtocol equals tcp or ipProtocol equals icmp or ipProtocol equals icmpv6 or ipProtocol equals udp) and (ipRanges[*] contains 0.0.0.0/0 or ipv6Ranges[*].cidrIpv6 contains ::/0))] exists) as X; config from cloud.resource where cloud.type = 'aws' AND api.name= 'aws-vpc-transit-gateway-attachment' AND json.rule = transitGatewayId equals "XXXX" as Y; filter ' $.X.vpcId == $.Y.resourceId'; show X;