AWS outposts documentation change
Summary
Updated security group configuration instructions to specify required inbound traffic rules (ICMP, TCP 443, UDP 443) and added a note about both TCP and UDP being required for private connectivity.
Security assessment
This change is identical to the one in the network-userguide version, providing consistent security configuration documentation across guides. No evidence of addressing a specific security issue; appears to be documentation improvement.
Diff
diff --git a/outposts/latest/userguide/private-connectivity.md b/outposts/latest/userguide/private-connectivity.md index d71ab9b5f..996bfb89d 100644 --- a//outposts/latest/userguide/private-connectivity.md +++ b//outposts/latest/userguide/private-connectivity.md @@ -59 +59,11 @@ The following sample SCP prevents the following from deletion: - * Configure the subnet security group to allow traffic for UDP 443 inbound and outbound directions. + * Configure the security group attached to the network interface to allow the following inbound traffic: + + * ICMP from your specified source + + * TCP port 443 from your specified source + + * UDP port 443 from your specified source + +###### Note + +Both TCP and UDP on port 443 are required for private connectivity to function properly.