How To Configure Amazon EC2 Security Groups
1 like1,791 views
This document provides instructions for configuring security groups on an Amazon EC2 Linux instance. It describes adding inbound rules to allow specific traffic types like SSH, HTTP, and custom TCP ports from selected IP addresses or security groups. Outbound traffic rules are by default open for all traffic to all destinations. The document also provides an example of accessing the Linux instance via SSH using its public IP address.
How To Configure Amazon EC2 Security Groups
- 1. How To Configure Amazon EC2 Security Groups Table of Contents Overview.......................................................................................................................................................2 Applies To......................................................................................................................................................2 Security Groups.............................................................................................................................................2 Add Inbound Rules....................................................................................................................................2 Inbound Rules – Add Rule.....................................................................................................................2 Inbound Rules – Edit Rule.....................................................................................................................3 Inbound Rules – SSH Rule .....................................................................................................................3 Inbound Rules – HTTP Rule...................................................................................................................3 Inbound Rules – All Traffic Rule ............................................................................................................3 Inbound Rules – Custom TCP Rule........................................................................................................4 Inbound Rules – List..................................................................................................................................4 Outbound Rules – List...............................................................................................................................5 Access – Linux Instance.................................................................................................................................5
- 2. How To Configure Amazon EC2 Security Groups Overview The purpose of this document is to configure inbound and outbound firewall rules on Amazon EC2 Instance in the Amazon Console. Applies To Amazon EC2 Linux Instance; with IP address 52.0.154.97. Security Groups A security group acts as a virtual firewall that controls the traffic for one or more instances. When you launch an instance, you associate one or more security groups with the instance. You add rules to each security group that allow traffic to or from its associated instances. Add Inbound Rules To access the inbound rules for a instance have to added. Inbound Rules – Add Rule To add a new rule, click on “Add Rule” button.
- 3. How To Configure Amazon EC2 Security Groups Inbound Rules – Edit Rule New rule added to configure the rule, from the “Type” chose the type of Inbound Rules – SSH Rule To add and enable SSH communication for the server, choose the type as “SSH”. Optionally you can choose the source IP, IP Range, My IP (auto-populated) upon choosing. Inbound Rules – HTTP Rule To add and enable HTTP communication for the server, choose the type as “HTTP”. Optionally you can choose the source IP, IP Range, My IP (will auto-populated) upon choosing. Note: To know the IP of you network, search for what is my IP on web search engine. Inbound Rules – All Traffic Rule To add and enable “All Traffic” communication for the server, choose the type as “All Traffic”. Optionally you can choose the source IP, IP Range, My IP (auto-populated) upon choosing.
- 4. How To Configure Amazon EC2 Security Groups Most of the times “Custom IP” and Security group should be selected, because the traffic is restricted to internal network. Inbound Rules – Custom TCP Rule To add and enable “Custom TCP Rule” communication for the server, choose the type as “Custom TCP Rule”. Optionally you can choose the source IP, IP Range, My IP (auto-populated) upon choosing. After adding all the rules, click on “Save” button. To apply the rules. In this case we are opening TCP Port “2265” and source is set to “Anywhere”. Inbound Rules – List To list the inbound rules list, click on “Inbound” of the security group “sg-236c347”.
- 5. How To Configure Amazon EC2 Security Groups Outbound Rules – List To list the inbound rules list, click on “outbound” of the security group “sg-236c347”. In this case, “All traffic” is open to all destination. Access – Linux Instance In the document we are trying to access IP address “52.0.154.97” via putty SSH protocol.