Questions tagged [security-groups]
164 questions
2
votes
0 answers
AWS EC2 : IAM policy to allow inbound SecurityGroup with PORT Range
I want to allow the access to specific ec2 security group to one of the developer. For that I know that we can use something like this :
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "Stmt1413232782000",
…
![](../../users/profiles/547114.webp)
RKT
- 21
- 1
2
votes
1 answer
Limit public access to AWS ECS Fargate Service
I have a service on AWS ECS deployed using Fargate.
This service uses a Network Load Balancer (NLB) to allow an Elastic IP to be associated with the service.
This is not an http service and is using port 5060
(SIP), hence the choice of an NLB.…
![](../../users/profiles/499288.webp)
Brett Tofel
- 23
- 3
2
votes
2 answers
Does it makes sense to configure iptables when you have configured AWS EC2 security groups?
We are using some Amazon EC2 instances with configured Security Groups (e.g. can SSH only from particular IPs -- sorry I cant post rules).
Some time ago I checked iptables and it looked like there were not configured.
sudo iptables -L -n
Chain INPUT…
![](../../users/profiles/128053.webp)
nothing-special-here
- 121
- 3
2
votes
2 answers
System Account Access Token missing groups
I'm experiencing a weird phenomena regarding Windows SYSTEM Account. Looking at these three different ways to start a process as SYSTEM:
Sysinternals PSExec
Task Scheduler
GPO Startup Script.
Processes started with these methods result in…
![](../../users/profiles/475220.webp)
CounterClockWise
- 21
- 3
2
votes
1 answer
securely connect jenkins and github
we have a Jenkins server running on an ec2 instance. The security groups are very restricted in this server, they only allow traffic from the company office, and the slave nodes. we want to setup github hooks, so everytime someone pushes code to…
![](../../users/profiles/440229.webp)
Simon Ernesto Cardenas Zarate
- 250
- 1
- 3
- 12
2
votes
1 answer
How to allow connection between ec2 instances in different regions?
I have 10 instances with a security group in Oregon and another 10 in Virginia.
How to add edit security group(rules) to allow traffic between them??
![](../../users/profiles/445850.webp)
Siddharth
- 31
- 1
- 2
2
votes
0 answers
Exchange online security groups without email
We're trying to create user groups in Exchange Online in order to group users when applying permissions to specific folder on shared mailboxes.
We don't want to mail-enable those groups, but I don't seem to find way to do it. In Exchange, I can…
![](../../users/profiles/142174.webp)
pedropais
- 21
- 1
2
votes
1 answer
AWS security rules bug?
I'm trying to put online a website with HTTPS. I have double checked AWS Security Groups, and everything looks fine.
I'm running on Node.JS, and this is the app script, so I'm pretty sure it's running on port 443.
https.createServer(options,…
![](../../users/profiles/441251.webp)
Sandro Wiggers
- 121
- 5
2
votes
4 answers
Windows server 2012 Active Directory Groups
Have a quick question.
I work in a large company and i've always been told that if a users needs let's say access his emails on the phone he has to be member of a specific group (apart from activating active sync in the exchange console, of…
![](../../users/profiles/408272.webp)
Yourdaman
- 23
- 3
2
votes
1 answer
Seemingly duplicate logins in local groups
I can’t figure this one out, and it’s vague enough that I can’t determine the appropriate search terms to research it. Apologies if this is frequently asked!
On many servers on our domain, when I check the membership in the Administrators group, I…
![](../../users/profiles/13045.webp)
Philip Kelley
- 253
- 2
- 9
2
votes
2 answers
Source CIDR/IP/Security group setup in Security Groups Inbound Rules
I want to set up security group for an ec2 instance(Linux). There are services running on it like mem cached, python, dhclient, nodejs etc. How do i know which IP/CIDR-block should my server be listening to on a particular port?
Eg. if mysqld is…
![](../../users/profiles/384725.webp)
Aso'K
- 21
- 6
2
votes
1 answer
Whitelist multiple public IPs across security groups in AWS
We have a bunch of 50-odd external (non-AWS) servers that we need to whitelist across many (~50) security groups (vpc). Apart from the constraint on the number of rules, adding and removing entries to/from all the groups one by one is a pain.
I…
![](../../users/profiles/293353.webp)
galactocalypse
- 133
- 1
- 7
2
votes
1 answer
Resetting Windows' File Security Permissions
I'm trying to find the correct commands to reset each of my hard drives permissions to remove all of the incorrect, outdated groups/usernames that have built up on folders over time and reset the permissions to their defaults.
I've tried running…
![](../../users/profiles/281683.webp)
Ryflex
- 139
- 1
- 11
2
votes
1 answer
Is there a way to name Security Group Sources in the AWS Console?
The title kind of says it all but what I want to know is if there is any way to label/name inbound security group sources in the AWS console. i.e.:
We have quite a bit of these rows in our security groups, so it would be awesome if there was a way…
![](../../users/profiles/290076.webp)
julianwyz
- 123
- 4
2
votes
1 answer
Dynamic Mail Enabled Security Groups are being converted to Dynamic Distribution Lists
Problem: the dynamic mail-enabled security groups (DMESG) I create in EAC are being automatically converted to Dynamic distribution lists (DDL) instead.
Use Case: I am attempting to give membership rights to a DMESG for a shared mailbox. You can…
![](../../users/profiles/981613.webp)
Mikey Mike
- 21
- 1