From 230a389b1ae041d576b7f26ebba52bd777347ae4 Mon Sep 17 00:00:00 2001
From: clint shryock <clint@ctshryock.com>
Date: Thu, 3 Nov 2016 09:38:12 -0500
Subject: [PATCH] provider/aws: Fix documenation regarding default resources

---
 .../docs/providers/aws/r/default_network_acl.html.markdown | 5 +++++
 .../providers/aws/r/default_security_group.html.markdown   | 7 ++++++-
 2 files changed, 11 insertions(+), 1 deletion(-)

diff --git a/website/source/docs/providers/aws/r/default_network_acl.html.markdown b/website/source/docs/providers/aws/r/default_network_acl.html.markdown
index e50a786b79..092271d52e 100644
--- a/website/source/docs/providers/aws/r/default_network_acl.html.markdown
+++ b/website/source/docs/providers/aws/r/default_network_acl.html.markdown
@@ -25,6 +25,11 @@ rules in the ACL**. It then proceeds to create any rules specified in the
 configuration. This step is required so that only the rules specified in the 
 configuration are created.
 
+This resource treats it's inline rules as absolute; only the rules defined
+inline are created, and any additions/removals external to this resource will
+result in diff shown. For these reasons, this resource is incompatible with the 
+`aws_network_acl_rule` resource.
+
 For more information about Network ACLs, see the AWS Documentation on 
 [Network ACLs][aws-network-acls].
 
diff --git a/website/source/docs/providers/aws/r/default_security_group.html.markdown b/website/source/docs/providers/aws/r/default_security_group.html.markdown
index 00a39cdb8a..3a8fe58c3f 100644
--- a/website/source/docs/providers/aws/r/default_security_group.html.markdown
+++ b/website/source/docs/providers/aws/r/default_security_group.html.markdown
@@ -22,10 +22,15 @@ into management. We can do this because these default security groups cannot be
 destroyed, and are created with a known set of default ingress/egress rules. 
 
 When Terraform first adopts the Default Security Group, it **immediately removes all
-ingress and egress rules in the ACL**. It then proceeds to create any rules specified in the 
+ingress and egress rules in the Security Group**. It then proceeds to create any rules specified in the 
 configuration. This step is required so that only the rules specified in the 
 configuration are created.
 
+This resource treats it's inline rules as absolute; only the rules defined
+inline are created, and any additions/removals external to this resource will
+result in diff shown. For these reasons, this resource is incompatible with the 
+`aws_security_group_rule` resource.
+
 For more information about Default Security Groups, see the AWS Documentation on 
 [Default Security Groups][aws-default-security-groups].