How to Add Rules to the Default Security Group
Before you can log in to an instance, you must authorize access.
This section describes how to add rules that allow HTTP access on port 80, SSH access on port 22, and Remote Desktop (RDP) access on port 3389. This enables the instance to be reached on port 80 from the Internet and enables you to administer the instance over SSH or RDP.
How To
To authorize access to your instance
-
If you are using SOAP, construct the following request:
<AuthorizeSecurityGroupIngress xmlns="http://ec2.amazonaws.com/doc/2009-10-31/"> <![CDATA[ <userId/> <groupName>default</groupName> <ipPermissions> <item> <ipProtocol>tcp</ipProtocol> <fromPort>80</fromPort> <toPort>80</toPort> <groups/> <ipRanges> <item> <cidrIp>0.0.0.0/0</cidrIp> </item> </ipRanges> </item> <item> <ipProtocol>tcp</ipProtocol> <fromPort>3389</fromPort> <toPort>3389</toPort> <groups/> <ipRanges> <item> <cidrIp>your-public-ip-address/32</cidrIp> </item> </ipRanges> </item> <item> <ipProtocol>tcp</ipProtocol> <fromPort>22</fromPort> <toPort>22</toPort> <groups/> <ipRanges> <item> <cidrIp>your-public-ip-address/32</cidrIp> </item> </ipRanges> </item> </ipPermissions> </AuthorizeSecurityGroupIngress> -
If you are using Query, construct the following requests:
https://ec2.amazonaws.com/ ?Action=AuthorizeSecurityGroupIngress &GroupName=default &IpProtocol=tcp &FromPort=80 &ToPort=80 &CidrIp=0.0.0.0/0 &...auth parameters... https://ec2.amazonaws.com/ ?Action=AuthorizeSecurityGroupIngress &GroupName=default &IpProtocol=tcp &FromPort=3389 &ToPort=3389 &CidrIp=
your-public-ip-address/32 &...auth parameters... https://ec2.amazonaws.com/ ?Action=AuthorizeSecurityGroupIngress &GroupName=default &IpProtocol=tcp &FromPort=22 &ToPort=22 &CidrIp=your-public-ip-address/32 &...auth parameters... -
View output similar to the following:
<AuthorizeSecurityGroupIngressResponse xmlns="http://ec2.amazonaws.com/doc/2009-10-31/"> <return>true</return> </AuthorizeSecurityGroupIngressResponse>