**To add an authorization rule for a Client VPN endpoint** The following ``authorize-client-vpn-ingress`` example adds an ingress authorization rule that permits all clients to access the internet (``0.0.0.0/0``). :: aws ec2 authorize-client-vpn-ingress \ --client-vpn-endpoint-id cvpn-endpoint-123456789123abcde \ --target-network-cidr 0.0.0.0/0 \ --authorize-all-groups Output:: { "Status": { "Code": "authorizing" } } For more information, see `Authorization Rules <https://docs.aws.amazon.com/vpn/latest/clientvpn-admin/cvpn-working-rules.html>`__ in the *AWS Client VPN Administrator Guide*.