Apply a security group to a target network in AWS Client VPN

When you create a Client VPN endpoint, you can specify the security groups to apply to the target network. When you associate the first target network with a Client VPN endpoint, we automatically apply the default security group of the VPC in which the associated subnet is located. For more information, see Security groups.

You can change the security groups for the Client VPN endpoint. The security group rules that you require depend on the kind of VPN access you want to configure. For more information, see Scenarios and examples for Client VPN.

To apply a security group to a target network (console)

Open the Amazon VPC console at https://console.aws.amazon.com/vpc/.
In the navigation pane, choose Client VPN Endpoints.
Select the Client VPN endpoint to which to apply the security groups.
Choose Security Groups, and then choose Apply Security Groups.
Select the appropriate security group(s) from Security group IDs.
Choose Apply Security Groups.

To apply a security group to a target network (AWS CLI)

Use the apply-security-groups-to-client-vpn-target-network command.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Associate a target network with an endpoint

View target networks