The security group contains the firewall settings for EC2 instances and interfaces (xNICs).
To ensure security groups are set up properly for cloudSwXtch:
Navigate to the VPC console.
Select the "Security Groups" link as shown below. (Note: There are multiple ways to get to the "Security Groups" page.)
Select the Security Group that is normally used to create your EC2 instances for your application. (Note: The names in the example will be different in your environment.)
.png?sv=2022-11-02&spr=https&st=2025-08-01T22%3A56%3A54Z&se=2025-08-01T23%3A07%3A54Z&sr=c&sp=r&sig=onOeJYFSSi71JKUxOmZGxin3Ai6VhekfWT9bag2AMkw%3D "AWS_Security Group List(5).png")
In order for certain features to work in your cloudSwXtch, you will need to add inbound rules to open specific ports originating from that security group. You can find the ports outlined in the cloudSwXtch System Requirements article under "Firewall and Security Group Rules."
If an inbound rule does not exist, create it by selecting "Edit inbound rules."
Select "Add Rule."
Enter the information like the screenshot shown below verifying that the ID of the SG on Source matches the SG you are editing.
Save the rule.
Additional Rules
Mandatory Inbound Rule For Mesh
In order to use the Mesh feature bidirectionally between VPCs, users must also add the following inbound rule to each SG:
Type: Custom UDP
Protocol: UDP
Port Range: 9999
Source: Custom/Anywhere-IPv4 0.0.0.0/0
