Update Amazon Transit Gateway security group inbound rules
You can update any of the inbound security group rules associated with a transit gateway. You can update security group rules using either the Amazon VPC Console console or by using the command-line or API. For more information about security group referencing, see Security group referencing.
To update your security group rules using the console
Open the Amazon VPC console at https://console.amazonaws.cn/vpc/
. -
In the navigation pane, choose Security groups.
-
Select the security group, and choose Actions, Edit inbound rules to modify the inbound rules.
-
To add a rule, choose Add rule and specify the type, protocol, and port range. For Source (inbound rule), enter the ID of the security group in the VPC connected to the transit gateway.
Note
Security groups in a VPC connected to the transit gateway are not automatically displayed.
-
To edit an existing rule, change its values (for example, the source or the description).
-
To delete a rule, choose Delete next to the rule.
-
Choose Save rules.
To update inbound rules using the command line
-
authorize-security-group-ingress (Amazon CLI)
-
Grant-EC2SecurityGroupIngress (Amazon Tools for Windows PowerShell)
-
Revoke-EC2SecurityGroupIngress (Amazon Tools for Windows PowerShell)
-
revoke-security-group-ingress (Amazon CLI)