Introducing security group referencing for AWS Transit Gateway

Networking & Content Delivery Blog

This article introduces a new feature for AWS Transit Gateway: security group referencing. This feature allows you to create inbound security rules that reference security groups defined in other Amazon Virtual Private Clouds (Amazon VPCs) attached to the same transit gateway within the same AWS Region.

Specifically, the article covers:

Getting started with enabling/disabling security group referencing at the Transit Gateway level and the Transit Gateway VPC attachment level
Several use cases where security group referencing can enhance security and streamline access control across multiple VPCs:
- Resource sharing between application tiers across different VPCs
- Enhancing access to a centralized shared services VPC
- Resource sharing in a shared VPC model across different AWS accounts
Considerations and limitations of the security group referencing feature

This new feature provides a convenient way to strengthen security access controls on resources across Transit Gateway and facilitates migration from VPC peering to Transit Gateway.

Go to article

The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Sep 25
2024

AWS announces general availability for Security Group Referencing on AWS Transit Gateway

Jun 16
2025

AWS Network Firewall now supports AWS Transit Gateway native integration

May 28
2026

Why and how to migrate to a Transit Gateway-attached AWS Network Firewall

Jun 23
2025

Introducing security group referencing and enhanced DNS support for AWS Cloud WAN

The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Introducing security group referencing for AWS Transit Gateway

Related articles