Comments on: Tagging EC2 Instances Using Security Groups

By: Configuring and Hardening a New Server to Replace Compromised Machine

Configuring and Hardening a New Server to Replace Compromised Machine — Wed, 20 Jul 2011 00:25:38 +0000

[...] DENY policy" kind of way: only what traffic you ALLOW will access your instances (1|2|3) so for now you could confine access to them from only your management IP range (but watch [...]

By: Liquidicity » Using AWS tags for instance identification

Liquidicity » Using AWS tags for instance identification — Mon, 28 Feb 2011 11:17:02 +0000

[...] a clear instance nomenclature, forcing you to implement a vague approach using security groups. Since there is also a full API surrounding tags, they can be put to work in many useful [...]

By: Track Changes to your Dynamic Cloud Services Automatically

Track Changes to your Dynamic Cloud Services Automatically — Sun, 20 Jun 2010 00:13:16 +0000

[...] running on a regular schedule.The central repository can be S3 or SimpleDB, or a database, or security group tags . If you’re concerned about storing your AWS access credentials on each client (and if these [...]

By: Five Easy Steps to Tag EC2 Instance Using mr.awsome

Five Easy Steps to Tag EC2 Instance Using mr.awsome — Wed, 26 May 2010 14:21:51 +0000

[...] Existing posts about How-are-admins-managing-their-ec2-ebss-and-snapshots and answers like Tagging-ec2-instances-using-security. [...]

By: List Poster

List Poster — Sat, 13 Feb 2010 01:28:22 +0000

Good tip, thanks!!

By: Copying ElasticFox Tags from One Browser to Another

Copying ElasticFox Tags from One Browser to Another — Sun, 07 Feb 2010 20:53:37 +0000

[...] article about Tagging EC2 Instances Using Security Groups shows a brief walkthrough of using ElasticFox to tag instances. Under the hood, ElasticFox stores [...]

By: jtriley

jtriley — Wed, 02 Dec 2009 21:25:42 +0000

Extremely useful! This just gave me a great way to correctly account for multiple clusters in StarCluster (http://web.mit.edu/starcluster)

By: Christofer Hoff

Christofer Hoff — Tue, 22 Sep 2009 23:25:46 +0000

Very useful, thanks.

By: shlomo

shlomo — Thu, 30 Jul 2009 09:54:03 +0000

@Eric J.:

No problem: just create the tag security groups #AppServer1 and #AppServer2 without any permissions. Then launch app server 1 in the groups AppServer and #AppServer1, and launch app server 2 in the groups AppServer and #AppServer2. As explained above, the net effect will be the same as the permissions of the AppServer group, since the tag groups grant nothing.

By: Eric J.

Eric J. — Thu, 30 Jul 2009 00:27:29 +0000

This is great for smaller setups, but doesn't work if you have several instances that need to be in the same security group. In our case, we have a number of application servers in the AppServer security group. If we setup security groups like AppServer1, AppServer2, etc. we lose the "group" aspect of security groups.

It would be great if there were a facility to share tags in an XML structure that could be configured to load either from a URL or file path.