By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Security Group to allow aws cli

0

Hi,

I'm trying to lock down our default security group but need to keep access to run cli commands on the instances, specifically:
aws ec2 describe-tags

What port(s) do I need to allow and to/from where/ip? I can't find it anywhere.

Cheers,
Dave.

Topics
Compute
Tags
Amazon EC2
Language
English
dgoodbourn
asked 6 years ago722 views
2 Answers
0

Hi dgoodbourn,

Are you modifying outgoing rules of your default security group? You generally shouldn't need to do that, as long as you trust the servers this is applied to.

aws cli uses https to talk with the amazon API. You should leave port 443 open. You would most likely want to leave port 80 open as well, to be able to get updates on your server.

Hope this helps,
George

George-NG
answered 6 years ago
profile picture
EXPERT
Gary Mclean
reviewed 3 months ago
0

Hi George,

Thanks for this. I thought I had done this but obviously not. That fixed it and all is working. Thanks a lot.

Cheers,
Dave.

dgoodbourn
answered 6 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content