AWS efs medium security documentation change
Summary
Added explicit NFS port 2049 requirement in security group rule documentation
Security assessment
Explicit port specification prevents overly broad network access in security group configurations
Diff
diff --git a/efs/latest/ug/mounting-fs-mount-cmd-ip-addr.md b/efs/latest/ug/mounting-fs-mount-cmd-ip-addr.md index 59fc33ecc..686aeb2e0 100644 --- a//efs/latest/ug/mounting-fs-mount-cmd-ip-addr.md +++ b//efs/latest/ug/mounting-fs-mount-cmd-ip-addr.md @@ -17 +17 @@ You can view and copy the exact commands to mount your file system in the **Atta -Prior to mounting your file system, you need to add a rule for the mount target security group to allow inbound NFS access from the EC2 security group. For more information, see [Using VPC security groups](./network-access.html). +Prior to mounting your file system, you need to add a rule for the mount target security group to allow inbound NFS access on port 2049 from the EC2 security group. For more information, see [Using VPC security groups](./network-access.html).