in post_scripts/CleanUpScript.py [0:0]
def clean_vpc_sg(vpc_id):
security_groups_response = ec2_client.describe_security_groups(Filters=[
{
'Name': 'vpc-id',
'Values': [
vpc_id
]
}
])
ec2_resource = boto3.resource('ec2')
for security_group in security_groups_response["SecurityGroups"]:
security_group_name = security_group["GroupName"]
security_group_id = security_group["GroupId"]
if security_group_name != "default":
print(f"Cleaning SG = {security_group_name}, ID: {security_group_id}")
security_group = ec2_resource.SecurityGroup(security_group_id)
security_group.revoke_ingress(IpPermissions=security_group.ip_permissions)
security_group.revoke_egress(IpPermissions=security_group.ip_permissions_egress)
for security_group in security_groups_response["SecurityGroups"]:
security_group_name = security_group["GroupName"]
security_group_id = security_group["GroupId"]
if security_group_name != "default":
print(f"Deleting SG = {security_group_name}, ID: {security_group_id}")
ec2_client.delete_security_group(GroupId=security_group_id, DryRun=DRY_RUN)