Overview
A security group for Amazon EFS that allows inbound NFS access from resources (including the mount target) associated with this security group (TCP 2049).
The template creates the security group into an existing VPC, and requires the following details:
- VPC ID: Provide the VPC ID to create the security group in.
- Security Group Rules: Click on 'Customize Rules' and enter the missing rule information (Source IP or Security Group, Port number, and Protocol) depending on the security group template.
See Related Items section for configuration templates to create a new VPC.
Configuration Templates
Items
1
Size
0.7 KB
Missing Parameters
AWSTemplateFormatVersion: '2010-09-09'
Description: ''
Resources:
SecurityGroup:
Type: 'AWS::EC2::SecurityGroup'
Properties:
GroupDescription: >-
A security group for Amazon EFS that allows inbound NFS access from
resources (including the mount target) associated with this security
group (TCP 2049).
VpcId: ''
SecurityGroupEgress:
- FromPort: -1
ToPort: -1
IpProtocol: '-1'
Description: ''
CidrIp: 0.0.0.0/0
SecurityGroupIngress:
- FromPort: 2049
ToPort: 2049
IpProtocol: tcp
Description: Allow NFS traffic - TCP 2049
CidrIp: ''
GroupName: allow-redshift-traffic
Parameters: {}
Metadata: {}
Conditions: {}
Actions
* Required field
Sources and Documentation
Configuration Source: AWS Documentation: Reference Security Groups
Additional Documentation:
- AWS Documentation: Create Security Groups
- AWS Documentation: Security Groups Overview
- CloudFormation Reference Guide: Create a Security Group
- AWS CLI Command Reference Guide: Create a Security Group, add ingress rules and egress rule.