By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

EC2 outbound ports for SES, SNS, Cloudwatch

0

I have an EC2 running Node.js. Using the aws-sdk + winston-cloudwatch + nodemailer dependencies, I am using AWS SES, SNS, and Cloudwatch.

In my EC2 security group, my outbound is currently setup for All-traffic; however, I would limit them to a few ports required for the services mentioned above.

What outbound ports in my EC2 security group do I need to enable to use the following AWS services: SES SNS Cloudwatch?

Thanks!

Topics
ComputeManagement & GovernanceApplication IntegrationFront-End Web & MobileBusiness Applications
Tags
Amazon EC2Amazon CloudWatchAmazon Simple Notification Service (SNS)Amazon Simple Email ServiceNetwork Security
Language
English
User-1053589
asked 2 years ago525 views
1 Answer
1

The only port you need is 443.

But a better (although there are cost involved) solution is to create service endpoint for these services in your VPC.

https://docs.aws.amazon.com/vpc/latest/privatelink/create-interface-endpoint.html

This way the urls for the services are resolving inside your vpc. (way faster and efficient).

You need one per service

profile picture
JaccoPK
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content