Restrict EC2 Security Group Ports and IP Addresses

Neil Wheeler June 10, 2015

Hi, 

The default security group that bamboo ondemand creates called elasticbamboo has the following inbound settings;

 

TypeProtocolPort RangeSource

RDP

SSH

Custom 

TCP

TCP

TCP

3389

22

26224

0.0.0.0/0

0.0.0.0/0

0.0.0.0/0

I have a couple of questions;

  1. I understand 26224 is used for communication with bamboo, could we restrict the source ip range to only include the ip address range for the bamboo ondemand servers? If yes, could someone provide the ip address range?
  2. Does a windows server running bamboo agent need to use port 22? Or is that included for SSH to Linux servers?
  3. I presume deleting 3389 is not an issue (assuming we dont want to RDP to the servers ever)?

Thanks. 

 

1 answer

1 accepted

0 votes
Answer accepted
Przemek Bruski
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
June 10, 2015
  1. Yes. https://confluence.atlassian.com/display/Cloud/Database+and+IP+information
  2. Windows 2012 image has SSH. 2008 does not.
  3. You can delete both SSH and RDP if you want to.

 

Neil Wheeler June 10, 2015

Wow thanks for the speedy answer!

Suggest an answer

Log in or Sign up to answer
TAGS
AUG Leaders

Atlassian Community Events