简体繁体中英

How to add a beanstalk app to a security group as a inbound rule

原文 2022-03-10 19:06:24 5 1 amazon-web-services/ amazon-ec2/ amazon-elastic-beanstalk/ aws-security-group

I have two Elastic Beanstalk applications "a" and "b". Anyone should be able to talk to (a) over http, but only (a) should be able to talk to (b). Ie

inte.net -> a -> b

Right now, everything works if both apps are fully open to the inte.net. But as soon as I try to restrict the security group for (b)'s ELB, (a) can't seem to connect anymore.

Ie If I allow (b)'s load balancer security group to allow http:0.0.0.0/0, everything works. But if I set that same security group to allow only http:[(a)'s security group], (a) can no longer communicate with (b).

Both apps are in the same VPC. What am I missing?

1 answers

This is because your second environment has an external load balancer. That means the traffic from environment A to environment B will exit the VPC and come back in, at which point the association with environment A's security group is lost.

You need to convert environment B to use an internal load balancer. The Elastic Beanstalk setting for that is:

Namespace: aws:ec2:vpc

Name: ELBScheme

Value: internal

Add a Security Group to the Inbound Rule of another Security Group as a Source with Terraform (AWS)

How do I add a cloudformation security group ingress rule that refers to another security group?

Set AWS Security Group inbound rule to let Gilabci pipeline make changes in RDS

Add an aws_security_group_rule that contains self and a security group id to a security group

AWS Cloudformation - Add condition to security group egress rule

Security group inbound rules wiped out and added 0.0.0.0/0 by eksclusterrole automatically

AWS Security Group: What is needed in inbound and outbound rules?

How to add a Firebase security rule for checking if logged in users email is in a list

terraform wants to replace ec2 instances when i simply want to add a rule to a security group

Adding rule to the security group which is created automatically

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Add a Security Group to the Inbound Rule of another Security Group as a Source with Terraform (AWS) How do I add a cloudformation security group ingress rule that refers to another security group? Set AWS Security Group inbound rule to let Gilabci pipeline make changes in RDS Add an aws_security_group_rule that contains self and a security group id to a security group AWS Cloudformation - Add condition to security group egress rule Security group inbound rules wiped out and added 0.0.0.0/0 by eksclusterrole automatically AWS Security Group: What is needed in inbound and outbound rules? How to add a Firebase security rule for checking if logged in users email is in a list terraform wants to replace ec2 instances when i simply want to add a rule to a security group Adding rule to the security group which is created automatically

Related Tags

How to add a beanstalk app to a security group as a inbound rule

Question

1 answers

solution1 1 ACCPTED 2022-03-10 19:19:31

solution1
1 ACCPTED 2022-03-10 19:19:31