Create Security Group
VPC Security Group
A subnet group is a collection of subnets running on Amazon Virtual Private Cloud (VPC) environment, allows you configure inbound and outbound rules
Create VPC Security Groups
In this step, we will create two Security Groups (SGs): one for public subnets (used by EC2 instances) and one for private subnets (used by RDS instances).
- Go to the VPC Service. In the left-hand menu, select Security Groups. Click Create Security Group.
- Create the following two Security Groups:
| Subnet Name | Direction | Protocol | Port Range | Source/Destination |
|---|---|---|---|---|
| public-sg | Inbound | SSH (TCP) | 22 | My IP Address |
| public-sg | Inbound | ICMP | All | 0.0.0.0/0 |
| public-sg | Inbound | TCP | All | 0.0.0.0/0 |
| public-sg | Inbound | HTTP | All | 0.0.0.0/0 |
| public-sg | Inbound | HTTPS | All | 0.0.0.0/0 |
| public-sg | Outbound | All | All | 0.0.0.0/0 |
| private-sg | Inbound | MySQL (TCP) | 3306 | 0.0.0.0/0 |
| private-sg | Outbound | All | All | 0.0.0.0/0 |
2.1. Create Public SG
- In the Create Security Group interface, fill out the Basic Details for public-sg.
- Add the Inbound Rules for public-sg as shown above.
- Allow all Outbound traffic.
- Click Create Security Group.
2.2. Create Private SG
- In the Create Security Group interface, fill out the Basic Details for private-sg.
- Add the Inbound Rules for private-sg as shown above.
- Allow all Outbound traffic.
- Click Create Security Group.
