Adding security group

main.tf

@@ -175,6 +175,34 @@ resource "aws_route53_record" "private_rds_read-replica" {
   count       = "${length(split(",", "var.route53_zone")) * var.read_replica_count}"
 }
 
+#############################################################################################################
+# QuickSight to RDS Security Group
+#############################################################################################################
+
+resource "aws_security_group" "quicksight_rds" {
+  name        = "QuickSight-RDS"
+  description = "Allow QuickSight to RDS"
+  vpc_id      = "${module.vpc.vpc_id}"
+}
+
+resource "aws_security_group_rule" "quicksight_rds_ingress" {
+  type                     = "ingress"
+  from_port                = "3306"
+  to_port                  = "3306"
+  protocol                 = "tcp"
+  source_security_group_id = "${aws_security_group.quicksight.id}"
+  security_group_id        = "${aws_security_group.quicksight_rds.id}"
+}
+
+resource "aws_security_group_rule" "quicksight_rds_egress" {
+  type                     = "egress"
+  from_port                = "3306"
+  to_port                  = "3306"
+  protocol                 = "tcp"
+  source_security_group_id = "${aws_security_group.quicksight.id}"
+  security_group_id        = "${aws_security_group.quicksight_rds.id}"
+}
+
 #############################################################################################################
 # Outputs
 #############################################################################################################
@@ -197,7 +225,3 @@ output "read_replica_rds_instance_address" {
 output "subnet_group_id" {
     value = "${aws_db_subnet_group.default.id}"
 }
-
-output "rds_quicksight_security_group" {
-     value = "${aws_security_group.quicksight_rds.id}"
-}