IPv6 Security Groups

Like for IPv4, by default, ingress traffic is filtered, and egress traffic is open. To authorize ingress traffic, you need to add IPv6-specific rules. For example, if you want to authorize SSH access from anywhere, use ::/0 as the source. ::/0 means any IPv6 host, while 0.0.0.0/0 means any IPv4 host.

Ingress SSH security rule

If you already have IPv4 egress rules, outgoing IPv6 traffic is filtered, and you need to specify additional rules to allow IPv6 outbound flows. The reverse is also true: if you add IPv6 egress rules without any IPv4 egress rule, IPv4 traffic is filtered.