antonmry · February 3, 2021 15:23
diff --git a/updateAWSecurityGroup.bash b/updateAWSecurityGroup.bash
 #! /bin/bash

 publicIP=`dig +short myip.opendns.com @resolver1.opendns.com`

 ## TODO: move port, description and group-id to variables

 ## Consult previous one
 cidrIP=`aws ec2 describe-security-groups --group-ids sg-XXXXXX | jq -r '.SecurityGroups[0].IpPermissions[] | select(.ToPort==80) | .IpRanges[] | select(.Description == "antonmry") | .CidrIp' | tail -1f`

 ## Delete the previous one
 if [ -n "${cidrIP}" ]; then
  aws ec2 revoke-security-group-ingress --group-id sg-XXXXXX --ip-permissions '[{"IpProtocol": "tcp", "FromPort": 80, "ToPort": 80, "IpRanges": [{"CidrIp":"'$cidrIP'"}]}]'
 fi

 ## Add the new one
 aws ec2 authorize-security-group-ingress --group-id sg-XXXXXX --ip-permissions '[{"IpProtocol": "tcp", "FromPort": 80, "ToPort": 80, "IpRanges": [{"CidrIp": "'$publicIP'/32", "Description": "antonmry"}]}]'
	#! /bin/bash

	publicIP=`dig +short myip.opendns.com @resolver1.opendns.com`

	## TODO: move port, description and group-id to variables

	## Consult previous one
	cidrIP=`aws ec2 describe-security-groups --group-ids sg-XXXXXX \| jq -r '.SecurityGroups[0].IpPermissions[] \| select(.ToPort==80) \| .IpRanges[] \| select(.Description == "antonmry") \| .CidrIp' \| tail -1f`

	## Delete the previous one
	if [ -n "${cidrIP}" ]; then
	aws ec2 revoke-security-group-ingress --group-id sg-XXXXXX --ip-permissions '[{"IpProtocol": "tcp", "FromPort": 80, "ToPort": 80, "IpRanges": [{"CidrIp":"'$cidrIP'"}]}]'
	fi

	## Add the new one
	aws ec2 authorize-security-group-ingress --group-id sg-XXXXXX --ip-permissions '[{"IpProtocol": "tcp", "FromPort": 80, "ToPort": 80, "IpRanges": [{"CidrIp": "'$publicIP'/32", "Description": "antonmry"}]}]'