Step 2: Create a security group to use in your policy
In this step, you create a security group that you could apply across your organization using Firewall Manager.
Note
For this tutorial, you won't apply your security group policy to the resources in your organization. You'll just create the policy and see what would happen if you applied the policy's security group to your resources. You do this by disabling automatic remediation on the policy.
If you already have a general security group defined, skip this step and go to Step 3: Create and apply a common security group policy.
To create a security group to use in a Firewall Manager common security group policy
-
Create a security group that you could apply to all accounts and resources in your organization, following the guidance under Security Groups for Your VPC in the Amazon VPC User Guide.
For information on the security group rules options, see Security Group Rules Reference.
You are now ready to go to Step 3: Create and apply a common security group policy.