EC2 outbound ports for SES, SNS, Cloudwatch

I have an EC2 running Node.js. Using the aws-sdk + winston-cloudwatch + nodemailer dependencies, I am using AWS SES, SNS, and Cloudwatch.

In my EC2 security group, my outbound is currently setup for All-traffic; however, I would limit them to a few ports required for the services mentioned above.

What outbound ports in my EC2 security group do I need to enable to use the following AWS services: SES SNS Cloudwatch?

Thanks!

주제

컴퓨팅 관리 및 거버넌스 애플리케이션 통합 프론트엔드 웹 및 모바일 비즈니스 애플리케이션

태그

아마존 EC2 아마존 CloudWatch 아마존 심플 알림 서비스(SNS)아마존 심플 이메일 서비스 네트워크 보안

언어

English

User-1053589

질문됨 2년 전534회 조회

1개 답변

최신
최다 투표
가장 많은 댓글

The only port you need is 443.

But a better (although there are cost involved) solution is to create service endpoint for these services in your VPC.

https://docs.aws.amazon.com/vpc/latest/privatelink/create-interface-endpoint.html

This way the urls for the services are resolving inside your vpc. (way faster and efficient).

You need one per service

JaccoPK

답변함 2년 전

EC2 outbound ports for SES, SNS, Cloudwatch

관련 콘텐츠