Overview
A security group that allows inbound DNS traffic (TCP and UDP port 53).
The template creates the security group into an existing VPC, and requires the following details:
- VPC ID: Provide the VPC ID to create the security group in.
- Security Group Rules: Click on 'Customize Rules' and enter the missing rule information (Source IP or Security Group, Port number, and Protocol) depending on the security group template.
See Related Items section for configuration templates to create a new VPC.
Configuration Templates
Items
1
Size
0.8 KB
Missing Parameters
AWSTemplateFormatVersion: '2010-09-09'
Description: ''
Resources:
SecurityGroup:
Type: 'AWS::EC2::SecurityGroup'
Properties:
GroupDescription: A security group that allows inbound DNS traffic (TCP and UDP port 53).
VpcId: ''
SecurityGroupEgress:
- FromPort: -1
ToPort: -1
IpProtocol: '-1'
Description: ''
CidrIp: 0.0.0.0/0
SecurityGroupIngress:
- FromPort: 53
ToPort: 53
IpProtocol: udp
Description: Allow DNS traffic - UDP 53
CidrIp: ''
- FromPort: 53
ToPort: 53
IpProtocol: tcp
Description: Allow DNS traffic - TCP 53
CidrIp: ''
GroupName: allow-dns-traffic
Parameters: {}
Metadata: {}
Conditions: {}
Actions
* Required field
Sources and Documentation
Configuration Source: Native Feature
Additional Documentation:
- AWS Documentation: Create Security Groups
- AWS Documentation: Security Groups Overview
- CloudFormation Reference Guide: Create a Security Group
- AWS CLI Command Reference Guide: Create a Security Group, add ingress rules and egress rule.