- 最新
- 投票最多
- 评论最多
To remove all security groups from a launch template version when creating a new version, you need to use the SecurityGroupIds parameter along with the DefaultSecurityGroupIds parameter in the create-launch-template-version command. Here's the command you can use:
aws ec2 create-launch-template-version \
--launch-template-id <launch-template-id> \
--version-description "Remove security groups" \
--source-version <source-version-number> \
--launch-template-data '{"SecurityGroupIds": [], "DefaultSecurityGroupIds": []}' \
--region <region>
Replace the following:
- <launch-template-id> with the ID of your launch template
- <source-version-number> with the version number you want to base the new version on
- <region> with the AWS region where your launch template resides
However, when you create a new EC2 instance using a launch template without any security groups specified, AWS will automatically assign the default security group to the instance.
If your goal is to not allow any inbound/outbound traffic to the instance, I would suggest attaching a security group with no inbound/outbound rules. Alternatively, you could edit the default security group to remove the inbound/outbound rules, but I would not recommend doing this. If you go either of these routes, you will not be able to connect to your instances, and your instances won't be able to connect to anything.
To make sure we're implementing the best solution, may I ask why you want to launch instances without a security group attached?
相关内容
AWS 官方已更新 2 年前
