Rabadash8820
commented
7 years ago Actually, HTTPS egress is still necessary; not for accessing GitHub user data bash scripts, but for cfn-init to describe resources in a CloudFormation stack. Discovered this while working on the wordpress template.
Canceling this issue...
Bastion hosts only ever needed HTTPS egress rules so that they could access user data bash scripts stored in GitHub. Because we are now using cfn-init for all instance configuration, these rules can be removed to keep things secure.