Security Group: is nothing but a set of firewall rules.
How to create a new Security Group in AWS?
Create new
Type: RDP and others
Source: IPs allowed to connect. Custom . . 34.0.0.0/8. You do not want anyone to connect and keep it restricted.
Anywhere 0.0.0.0/0/ . Anyone on the internet can connect to it.you are allowing all ip addresses to connect.
For web server:
Type: HTTP, Port, 80, source everyone.
For more granular filtering on packets, then additional firewall at organisation level can be applied further.
Key pairs are used to connect only to EC2 and cloudfront.
How to create a new Security Group in AWS?
Create new
Type: RDP and others
Source: IPs allowed to connect. Custom . . 34.0.0.0/8. You do not want anyone to connect and keep it restricted.
Anywhere 0.0.0.0/0/ . Anyone on the internet can connect to it.you are allowing all ip addresses to connect.
For web server:
Type: HTTP, Port, 80, source everyone.
For more granular filtering on packets, then additional firewall at organisation level can be applied further.
Key pairs are used to connect only to EC2 and cloudfront.
Network ACL applies to subnet level .
Bocking IP at subnet level, best suitable to use ACL.
* rule if not matches any rule in ACL.
No comments:
Post a Comment