Reputation: 131
AWS: Configuring Security Groups using hostname
Let's say I've a private subnet with bunch of EC2 instances. These EC2 instances make API calls with external partner, say api.somevendor.com, whose IP address might/will change. How do I configure my AWS security group to communicate to only this partner host?
Upvotes: 0
Views: 2014
Answers (1)
Reputation: 13638
You have to open the security group to the IPs and ports provided by the vendor service. They should provide you with that information, of course.
If you are concerned about what happens if the vendor later changes those IPs, you will have to change them again. Manually. It would be difficult if not impossible to script anything here.
A reputable vendor will provide you with notice of any upcoming changes to their service ips. Make sure you are on their email or technical notification list.
Upvotes: 1
Related Questions
- How to set "Name" of security group (AWS EC2)
- self referencing aws security groups
- Naming an AWS EC2 Security group
- AWS Security group include another Security Group
- AWS security groups not working as expected
- Why AWS Security Groups can not be configured on domain name
- AWS Security Groups -- Name vs. Group Name
- AWS EC2 Security group access itself via HTTP
- AWS VPC Security Group Naming Convention
- How do you configure security groups inside of security groups in AWS?