Step 3: Setting Up Security Groups

 

Before starting the labs, we need to create security groups for our MediaConnect flows and for our switcher.

  1. In the search box, type VPC.

    Alt text Alt text

  2. Click the VPC icon to go to the Amazon VPC service page.

  3. Click on Security Groups on the sidebar or on the main page.

    Alt text Alt text

Contribution Security Group

  1. Click on Create security group on the top right.

    Alt text Alt text

  2. Add a Name for the Security Group. In this example, contribution-security-group.

    Enter a Description for our security group.In this example, security group for contribution flows.

    Choose a VPC for our security group. In this example, we will use the default VPC .

    Alt text Alt text

  3. Leave everything else as default and click Create security group.

    Alt text Alt text

  4. Click on Security Groups on the breadcrumbs to go back to the list of all security groups.

    Alt text Alt text

Switcher Security Group

  1. Click on Create security group on the top right.

    Alt text Alt text

  2. Add a Name for the Security Group. In this example, switcher-security-group.

    Enter a Description for our security group. In this example, security group for switcher ec2 instance.

    Choose a VPC for our security group. In this example, we will use the default VPC .

    Alt text Alt text

  3. Under Inbound rules, click on Add rule to create a security group rule to allow SRT traffic from resources using the contribution-security-group to resources using the switcher-security-group.

    Alt text Alt text

  4. Select Custom UDP for Type.

    Enter a 5001-5002 for Port range.

    Select the box with the magnifying glass to choose the contribution-security-group we created earlier.

    Enter a Description for our security group rule. In this example, inbound srt from contribution flows.

    Alt text Alt text

  5. Click on Add rule again to create a security group rule to allow all traffic from your own IP to resources using the switcher-security-group.

  6. Select All traffic for Type.

    Select the box with the custom to choose My IP.

    Enter a Description for our security group rule. In this example, inbound all traffic from my ip.

    Alt text Alt text

    You should now have two inbound security group rules.

    Alt text Alt text

  7. Leave everything else as default and click Create security group.

    Alt text Alt text

  8. Click on Security Groups on the breadcrumbs to go back to the list of all security groups.

    Alt text Alt text

Distribution Security Group

  1. Click on Create security group on the top right.

    Alt text Alt text

  2. Add a Name for the Security Group. In this example, distribution-security-group.

    Enter a Description for our security group. In this example, security group for distribution flow.

    Choose a VPC for our security group. In this example, we will use the default VPC .

    Alt text Alt text

  3. Under Inbound rules, click on Add rule to create a security group rule to allow SRT traffic from resources using the switcher-security-group to resources using the distribution-security-group.

    Alt text Alt text

  4. Select Custom UDP for Type.

    Enter a 8000 for Port range.

    Select the box with the magnifying glass to choose the switcher-security-group we created earlier.

    Enter a Description for our security group rule. In this example, inbound srt from switcher.

    Alt text Alt text

  5. Leave everything else as default and click Create security group.

    Alt text Alt text

  6. Click on Security Groups on the breadcrumbs to go back to the list of all security groups.

    Alt text Alt text

  7. You should now see your three security groups listed along with the VPC’s default security group.

    Alt text Alt text

 

Click here to advance to the next step »