euca-authorize man page

euca-authorize ā€” Add a rule to a security group that allows traffic to pass


euca-authorize [--egress] [-P PROTOCOL] [-p RANGE] [-t TYPE:CODE]

[-s CIDR | -o GROUP] [-u ACCOUNT] [--show-empty-fields]

[-U URL] [--region USER@REGION] [-I KEY_ID] [-S KEY] [--security-token TOKEN] [--debug] [--debugger] [--version] [-h] GROUP


Add a rule to a security group that allows traffic to pass

positional arguments


name or ID of the security group to modify (required)

optional arguments


[VPC only] manage an egress rule, which controls traffic leaving the group


the protocol to affect (Non-VPC: tcp, udp, icmp) (VPC only: tcp, udp, icmp, -1/all, other protocol numbers) (default: tcp)

-p RANGE, --port-range RANGE

range of ports (specified as "from-to") or a single port number (required for tcp and udp)

-t TYPE:CODE, --icmp-type-code TYPE:CODE

ICMP type and code (specified as "type:code") (required for icmp)

-s CIDR, --cidr CIDR

IP range (default:


[Non-VPC only] name of a security group with which to affect network communication


ID of the account that owns the security group specified with -o


show empty values as "(nil)"

-U URL, --url URL

compute service endpoint URL

--region USER@REGION

region and/or user names to search when looking up config file data

-I KEY_ID, --access-key-id KEY_ID

-S KEY, --secret-key KEY

--security-token TOKEN


show debugging output


launch interactive debugger on error


show the program's version and exit

-h, --help

show this help message and exit


December 2016 euca2ools 3.4