AWS AmazonElastiCache medium security documentation change
Summary
Updated security group references in network configuration examples (corrected security group names/IPs and inbound/outbound rules).
Security assessment
Changes correct security group configurations for NAT and cluster instances. Incorrect security group references could lead to misconfigured access controls, potentially exposing resources. Specific evidence includes updates to inbound/outbound rules referencing proper security groups.
Diff
diff --git a/AmazonElastiCache/latest/dg/accessing-elasticache.md b/AmazonElastiCache/latest/dg/accessing-elasticache.md index 1b1495e93..5a1377647 100644 --- a//AmazonElastiCache/latest/dg/accessing-elasticache.md +++ b//AmazonElastiCache/latest/dg/accessing-elasticache.md @@ -145 +145 @@ You also need to enable IP forwarding, which is disabled by default: - * AWS instance IP address – _sg-bd56b7da_ + * AWS instance IP address – _198.99.100.27_ @@ -190 +190 @@ NAT instance security group - outbound rule Type | Protocol | Port range | -Custom TCP Rule | TCP | 11211 | sg-ce56b7a9 (Cluster instance Security Group) +Custom TCP Rule | TCP | 11211 | sg-ce56b7a9 (NAT Security Group) @@ -196 +196 @@ NAT instance security group - outbound rule Type | Protocol | Port range | -Custom TCP Rule | TCP | 6379 | sg-ce56b7a9 (Cluster instance Security Group) +Custom TCP Rule | TCP | 6379 | sg-ce56b7a9 (NAT Security Group) @@ -202 +202 @@ Cluster instance security group - inbound rule Type | Protocol | Port range -Custom TCP Rule | TCP | 11211 | sg-bd56b7da (NAT Security Group) +Custom TCP Rule | TCP | 11211 | sg-ce56b7a9 (NAT Security Group) @@ -208 +208 @@ Cluster instance security group - inbound rule Type | Protocol | Port range -Custom TCP Rule | TCP | 6379 | sg-bd56b7da (Cluster Security Group) +Custom TCP Rule | TCP | 6379 | sg-ce56b7a9 (NAT Security Group)