# AWS VPC ## Step 1 In AWS go to **Network & Security** > **Security Groups** > **Create security group**. ![](/files/ikFALbogAAnop2uRxgOJ) ## Step 2 **Name** the Security group, select the appropriate **VPC**, and fill out the **Inbound rules** section with the information provided below. Finally, click **Create security group**. * **Type** - All traffic * **Source** - **Custom** - GoodAccess Gateway IP**/32** (example: 11.22.33.44/32) {% hint style="warning" %} **Please note:** If you are using VPC peering, you can later update the rules for your VPC security groups to[ reference security groups in the peered VPC](https://docs.aws.amazon.com/vpc/latest/peering/vpc-peering-security-groups.html). In case you are using a Transit Gateway, note that spoke Amazon VPCs cannot reference security groups in other spokes connected to the same AWS Transit Gateway. {% endhint %} ![](/files/uHQBxJzioPc4en6JFTrD) ## Step 3 #### **Attach resources to the security group** * Return to the EC2 dashboard, go to **Instances** > **Instances** * Select the instance you would like to apply the Security Group to (**Actions** > **Networking** > **Change Security Groups**) * Select the newly created security group and **Assign security group** --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://support.goodaccess.com/configuration-guides/ip-whitelisting/aws-vpc.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.