From 1c2b5a931040a2ff429bc9b4a7a9a94f603112b4 Mon Sep 17 00:00:00 2001
From: erikrichter8 <79526081+erikrichter8@users.noreply.github.com>
Date: Sun, 24 Aug 2025 11:52:35 -0500
Subject: [PATCH] create sec grp

---
 main.tf | 45 ++++++++++++++++++++++++++++++++++++++++++++-
 1 file changed, 44 insertions(+), 1 deletion(-)

diff --git a/main.tf b/main.tf
index 9b32ce06bb..4f8695dd79 100644
--- a/main.tf
+++ b/main.tf
@@ -14,11 +14,54 @@ data "aws_ami" "app_ami" {
   owners = ["979382823631"] # Bitnami
 }
 
-resource "aws_instance" "web" {
+data "aws_vpc" "default" {
+  default = true
+}
+
+resource "aws_instance" "blog" {
   ami           = data.aws_ami.app_ami.id
   instance_type = "t3.nano"
 
+vpc_security_group_ids = [aws_security_group.blog.id]
+
   tags = {
     Name = "HelloWorld"
   }
 }
+
+resource "aws_security_group" "blog" {
+  name       = "blog"
+  descrition = "Alow http and htts in. Aloowi everything out"
+
+  vpc_id = data.aws_vcp.default.id
+}
+
+resource "aws_security_group_rule" "blog_http_in" {
+  type      = "ingress"
+  from_port = 80
+  to_port   = 80
+  protocol    = "tcp"
+  cidr_blocks = [0.0.0.0./0]
+
+  security_group_id = aws_security_group.blog.id
+}
+
+resource "aws_security_group_rule" "blog_https_in" {
+  type      = "ingress"
+  from_port = 443
+  to_port   = 443
+  protocol    = "tcp"
+  cidr_blocks = [0.0.0.0./0]
+
+  security_group_id = aws_security_group.blog.id
+}
+
+resource "aws_security_group_rule" "blog_everything_out" {
+  type      = "egress"
+  from_port = 0
+  to_port   = 0
+  protocol    = "-1"
+  cidr_blocks = [0.0.0.0./0]
+
+  security_group_id = aws_security_group.blog.id
+}
\ No newline at end of file