2개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
1
You don't need to define any inbound rules in the security group. The SSM agent initiates the communication with the service so you only need TCP port 443 open on the outbound as security groups are stateful. You can also use VPC Endpoints within the VPC to communicate with the SSM services. See: Step 4: Create VPC endpoints.
1
Adding inbound rules to the security group associated with the EC2 managed by Systems Manager is not necessary.
No additional inbound rules are required in the security group created for the EC2 instances in the private subnets.
답변함 일 년 전
Thank you!
관련 콘텐츠
- AWS 공식업데이트됨 일 년 전
- AWS 공식업데이트됨 일 년 전
- AWS 공식업데이트됨 일 년 전
- AWS 공식업데이트됨 10달 전
Thank you!