All geek questions in one place

Is there a way to add a description of AWS Security Group rule rules

I have 5 different security groups that I tried to organize as far as I can.

Sometimes I need to open SSH access to some instances, depending on where I enter, so I add rules from my current IP address for incoming port 22. I can normally, but in order to keep things okay, I would like to indicate that this IP address is from an office in Glasgow, this is from London, New York, etc., but I see no way to post this small or additional information.

We are a few guys updating the security group, and after a while some of them forget to remove the temporary rules, which can become a little messy and make it harder when we want to clear the security group and delete these temporary rules, while maintaining the permanent ones.

I do not see anything in the documents that would allow me to add this small description next to each rule; Did I miss something?

+4
source share
4 answers

The answer to this question has recently changed.

Security group rules now have a Description field

AWS (31 2017 ) https://aws.amazon.com/about-aws/whats-new/2017/08/simplify-management-of-security-groups-with-security-group-rule-descriptions/

Amazon EC2 . , , , . , .

+4

, , IP- . , , - . IP-.

+1

, ( ) .

description .

, EC2 , owner, function environment.

, SSH SG , :

owner=rodrigo m
function=secure ssh access
environment=production
description=Glasgow office IP x.x.x.x London Office IP y.y.y.y
updated_on=8/9/2016
0

,

aws ec2 describe-security-groups --generate-cli-skeleton


{
    "DryRun": true, 
    "GroupNames": [
        ""
    ], 
    "GroupIds": [
        ""
    ], 
    "Filters": [
        {
            "Name": "", 
            "Values": [
                ""
            ]
        }
    ]
}

, , , aws cli .

, , VPN, IP-, , , VPN, .

0

Source: https://habr.com/ru/post/1650659/

More articles:


All Articles