• Scroll down to security groups under the NACLs section.
• Click on security groups and locate the Create Security Group button.
• Fill in the basic details and make sure to select the existing VPC you created earlier.
• Scroll down to inbound rules and click add rule.
• For the first rule, choose all traffic, then under source, select my IP. This will automatically detect and fill in your current IP address.
• Open port 22 (SSH) specifically for my IP to allow secure access to the server.
• add another rule to open port 80 (http) and set the source to 0.0.0.0/0, allowing public web traffic.
• Finally, make sure your NaCl (network ACL) is configured to allow both inbound and outbound traffic on ports 22 and 80.

security group rules summary:

• ssh (port 22): allowed from my IP
• http (port 80): allowed from 0.0.0.0/0

NACLs

SECURITY GROUPS