Using cloudformation, I want to give default security group and SSH security group as the security group of the instance

amazon-web-services amazon-ec2 amazon-cloudformation amazon-vpc

Solution 1:

You just need to add the security group's ID in the list of attached SGs on the EC2's definition, you can do this by exporting the ID of the security group from the security.yaml and importing it from the application.yaml

Network.yaml

  SampleVPC:
    Type: AWS::EC2::VPC
    Properties:
      CidrBlock: 10.0.0.0/16
      EnableDnsSupport: true
      Tags:
        - Key: Name
          Value: sample-vpc
Outputs:
  DefaultNetworkSG:
    Value:
     !GetAtt SampleVPC.DefaultSecurityGroup

Security.yaml

Outputs:
  BastionSecurityGroupID:
    Value:
      Ref: BastionSecurityGroup

Application.yaml

  BastionEC2Instance:
    Type: AWS::EC2::Instance
    Properties:
      SecurityGroupIds:
      - !ImportValue: BastionSecurityGroupID
      - !ImportValue: DefaultNetworkSG

Related

Is class variable initialization from an imported module thread safe in Python?
MySql stored procedure rows issue
How to build a vector of marginal probabilities, given a tensor in PyTorch
Why is numpy slower than for loop
Regex - extract all headers from markdown string
How to add brackets into group_concat using knex
TypeScript keyof returning specific type
How show loading spinner in Jetpack Compose while Google Maps load?
FailedScheduling: 0/3 nodes are available: 3 Insufficient pods
accessing inverse hasmany in controller laravel
NodeJS: Failed to fetch image every 6th attempt
Is a conditional function definition allowed in POSIX compliant shell scripts?