Security groups - AWS Elastic Disaster Recovery

Security groups

A security group acts as a virtual firewall, which controls the inbound and outbound traffic of the staging area. The best practice is to have AWS Elastic Disaster Recovery automatically attach and monitor the default AWS Elastic Disaster Recovery security group. This group opens inbound TCP Port 1500 for receiving the transferred replicated data.

Choose whether you would like to Always use the AWS Elastic Disaster Recovery security group.

The best practice is to have AWS Elastic Disaster Recovery automatically attach and monitor the default AWS Elastic Disaster Recovery security group. This group opens inbound TCP Port 1500 for receiving the transferred replicated data. When the default AWS Elastic Disaster Recovery security group is used, AWS Elastic Disaster Recovery will constantly monitor whether the rules within this security group are enforced, in order to maintain uninterrupted data replication. If these rules are altered, AWS Elastic Disaster Recovery will automatically fix the issue.

Choose the box next to the Always use AWS Elastic Disaster Recovery security group option to allow data to flow from your source servers to the replication servers, and that the replication servers can communicate their state to the AWS Elastic Disaster Recovery servers.

Otherwise, deselect the box next to the Always use AWS Elastic Disaster Recovery security group option. Doing this is not recommended.

Click the drop-down menu to select from additional security groups. The list of available security groups changes according to the Staging area subnet you selected.

To search for a specific security group, use the search box.

If you add security groups via the AWS Console, they will appear on the Security group drop-down list in the AWS Elastic Disaster Recovery Console. Learn more about AWS security groups in this VPC article.

You can use the default AWS Elastic Disaster Recovery security group or select a different one. However, take into consideration that any selected security group that is not the AWS Elastic Disaster Recovery default will be added to the Default group, since the default security group is essential for the operation of AWS Elastic Disaster Recovery.