Merge branch 'CD-246' of github.com:clouddrove/terraform-aws-security-group into CD-246

Author: dhyanio

main.tf

@@ -23,6 +23,7 @@ locals {
   enable_cidr_rules              = var.enable_security_group && (length(var.allowed_ip) > 0)
   enable_source_sec_group_rules  = var.enable_security_group && (length(var.security_groups) > 0)
   ports_source_sec_group_product = setproduct(compact(var.allowed_ports), compact(var.security_groups))
+  enable_cidr_rules_ipv6         = var.enable_security_group && (length(var.allowed_ipv6) > 0)
 }
 
 #Module      : SECURITY GROUP
@@ -55,7 +56,7 @@ resource "aws_security_group_rule" "egress" {
   prefix_list_ids   = var.prefix_list
 }
 resource "aws_security_group_rule" "egress_ipv6" {
-  count = var.enable_security_group == true ? 1 : 0
+  count = var.enable_security_group == true && local.enable_cidr_rules_ipv6 == true ? length(compact(var.allowed_ports)) : 0
 
   type              = "egress"
   from_port         = 0
@@ -80,7 +81,7 @@ resource "aws_security_group_rule" "ingress" {
   security_group_id = join("", aws_security_group.default.*.id)
 }
 resource "aws_security_group_rule" "ingress_ipv6" {
-  count = var.enable_security_group == true && local.enable_cidr_rules == true ? length(compact(var.allowed_ports)) : 0
+  count = var.enable_security_group == true && local.enable_cidr_rules_ipv6 == true ? length(compact(var.allowed_ports)) : 0
 
   type              = "ingress"
   from_port         = element(var.allowed_ports, count.index)