I want to create a security group linked to my vpc in aws. But I am not able to figure out, how shall this security group be given access to specific aws services through inbound and outbound rules.
For Ex. Security Group which would have S3 and CloudWatch Access.
Preferably in terraform. Please help here any links or references. Thank you!
CodePudding user response:
Security Group which would have S3 and CloudWatch Access.
You can't do that. You can only allow generic https outbound connections in your SG.
However, if you were to use VPC interface endpoints for S3 and CW, then you could use SG referencing to restrict which SG can connect to the endpoints.