onigra · August 29, 2015 14:17
diff --git a/gistfile1.json b/gistfile1.json
 {
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "ec2:AuthorizeSecurityGroupIngress",
                "ec2:RevokeSecurityGroupIngress"
            ],
            "Resource": [
                "arn:aws:ec2:ap-northeast-1:12345:security-group/sg-example"
            ]
        }
    ]
 }
diff --git a/gistfile2.sh b/gistfile2.sh
 #!/bin/bash

 global_ip=$(curl -s inet-ip.info)

 # IP制限追加
 aws ec2 authorize-security-group-ingress --group-id $SG_GROUP_ID --protocol tcp --port 80 --cidr "$global_ip/32"
 aws ec2 authorize-security-group-ingress --group-id $SG_GROUP_ID --protocol tcp --port 443 --cidr "$global_ip/32"

 # IP制限削除
 aws ec2 revoke-security-group-ingress --group-id $SG_GROUP_ID --protocol tcp --port 80 --cidr "$global_ip/32"
 aws ec2 revoke-security-group-ingress --group-id $SG_GROUP_ID --protocol tcp --port 443 --cidr "$global_ip/32"
	{
	"Version": "2012-10-17",
	"Statement": [
	{
	"Effect": "Allow",
	"Action": [
	"ec2:AuthorizeSecurityGroupIngress",
	"ec2:RevokeSecurityGroupIngress"
	],
	"Resource": [
	"arn:aws:ec2:ap-northeast-1:12345:security-group/sg-example"
	]
	}
	]
	}
	#!/bin/bash

	global_ip=$(curl -s inet-ip.info)

	# IP制限追加
	aws ec2 authorize-security-group-ingress --group-id $SG_GROUP_ID --protocol tcp --port 80 --cidr "$global_ip/32"
	aws ec2 authorize-security-group-ingress --group-id $SG_GROUP_ID --protocol tcp --port 443 --cidr "$global_ip/32"

	# IP制限削除
	aws ec2 revoke-security-group-ingress --group-id $SG_GROUP_ID --protocol tcp --port 80 --cidr "$global_ip/32"
	aws ec2 revoke-security-group-ingress --group-id $SG_GROUP_ID --protocol tcp --port 443 --cidr "$global_ip/32"