         | Did this page help you? Yes No Tell us about it... |
rds-revoke-db-security-group-ingress
Description
Revokes ingress to a DBSecurityGroup for previously authorized IP ranges or EC2 Security Groups.
Syntax
rds-revoke-db-security-group-ingress
DBSecurityGroupName
[-s
(--ec2-security-group-id) ] value
[-g
(--ec2-security-group-name) ] value [-i
(--cidr-ip) value ] [-o
(--ec2-security-group-owner) value ] [General
Options]
Options
| Name | Description | Required |
|---|---|---|
|
|
The name of the DB security group. This can also be passed
as a named parameter using Type: String Default: None Example: |
Yes |
|
|
Identifier of the EC2 Security Group to authorize. Type: String Default: None Constraints: This parameter must be specified if the DB Security Group is for a VPC. Example: |
No |
|
|
The name of the EC2 security group. Type: String Default: None Example: |
No |
|
|
The IP range to allow access. Type: String Constraints: Must be a valid Classless Inter-Domain Routing (CIDR) range, in the format ddd.ddd.ddd.ddd/dd. For more information, see CIDR Notation. Default: None Example: |
No |
Output
The command returns a table with the following information:
Name—the security group name
Description—the security group description
EC2 Group Name—the name of the EC2 security group/
EC2 Group Id—Identifier of the EC2 security group./
EC2 Owner ID—the owner of the EC2 security group
IP Range—the CIDR range for the authorized Amazon RDS DB security group
Status—the status of the authorization
Examples
Authorizing Access to an EC2 Security Group
This example revokes authorization for an IP range
PROMPT> rds-revoke-db-security-group-ingress Default --cidr-ip 192.168.100.100/0
Authorizing Access to a CIDR range
This example revokes authorization for an Amazon EC2 security group.
PROMPT> rds-revoke-db-security-group-ingress Default --ec2-security-group-name secgrp --owner-id 666666666666
