Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

Security Group for EC2 on public subnet for Code Deploy

0

For EC2 on public subnet, my security group is only allow ssh, http, https, and tcp:3000, from vpc local network. Would this security group work with code deploy? My VPC also has an public ALB

Temas
Redes y entrega de contenidoCálculo
Etiquetas
Amazon VPCAmazon EC2Redes y entrega de contenidoGrupo de seguridad
Idioma
English
oodaniel00
preguntada hace 6 meses188 visualizaciones
1 Respuesta
1
Respuesta aceptada

Hello.

It works.
If you confirm that HTTP and HTTPS are allowed in the security group's outbound rules, communication from EC2's CodeDeploy Agent to CodeDeploy is possible, so it should work.
https://docs.aws.amazon.com/codedeploy/latest/userguide/instances-ec2-create.html

In a production environment, we recommend restricting access to the SSH, RDP, and HTTP ports, instead of specifying Anywhere 0.0.0.0/0. CodeDeploy does not require unrestricted port access and does not require HTTP access. For more information, see Tips for securing your Amazon EC2 instance.

profile picture
EXPERTO
Riku_Kobayashi
respondido hace 6 meses
profile pictureAWS
EXPERTO
Didier_Durand
revisado hace 6 meses

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante