william williamhub

## ec2-instance.yml
InstanceSecurityGroup:
  Type: AWS::EC2::SecurityGroup
   Properties:
      GroupDescription: Allow traffic from the security group assigned to the load balancer
      VpcId: !Ref Vpc
      SecurityGroupIngress:
      - SourceSecurityGroupId: !Ref PublicLoadBalancerSG
        IpProtocol: -1

## load-balancer.yml
 PrivateLoadBalancerSG:
  Type: AWS::EC2::SecurityGroup
  Properties:
    GroupDescription: Access to the private facing load balancer
    VpcId: !Ref Vpc
    SecurityGroupIngress:
      - SourceSecurityGroupId: !Ref 'PublicEC2InstanceSecurityGroup' # only accept traffic from public accessible instances in the security group
        IpProtocol: -1
    SecurityGroupEgress:
      - CidrIp: 0.0.0.0/0
	InstanceSecurityGroup:
	Type: AWS::EC2::SecurityGroup
	Properties:
	GroupDescription: Allow traffic from the security group assigned to the load balancer
	VpcId: !Ref Vpc
	SecurityGroupIngress:
	- SourceSecurityGroupId: !Ref PublicLoadBalancerSG
	IpProtocol: -1
	PrivateLoadBalancerSG:
	Type: AWS::EC2::SecurityGroup
	Properties:
	GroupDescription: Access to the private facing load balancer
	VpcId: !Ref Vpc
	SecurityGroupIngress:
	- SourceSecurityGroupId: !Ref 'PublicEC2InstanceSecurityGroup' # only accept traffic from public accessible instances in the security group
	IpProtocol: -1
	SecurityGroupEgress:
	- CidrIp: 0.0.0.0/0