Security Group to allow aws cli

0

Hi,

I'm trying to lock down our default security group but need to keep access to run cli commands on the instances, specifically:
aws ec2 describe-tags

What port(s) do I need to allow and to/from where/ip? I can't find it anywhere.

Cheers,
Dave.

asked 5 years ago359 views
2 Answers
0

Hi dgoodbourn,

Are you modifying outgoing rules of your default security group? You generally shouldn't need to do that, as long as you trust the servers this is applied to.

aws cli uses https to talk with the amazon API. You should leave port 443 open. You would most likely want to leave port 80 open as well, to be able to get updates on your server.

Hope this helps,
George

answered 5 years ago
0

Hi George,

Thanks for this. I thought I had done this but obviously not. That fixed it and all is working. Thanks a lot.

Cheers,
Dave.

answered 5 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions