6 Network access protection beyond the VPC

This chapter covers

Connecting to AWS services via VPC endpoints
Creating custom VPC endpoint services
Writing custom firewall rules
Understanding AWS Shield protections
Integrating third-party firewalls

In the last chapter we examined the networking primitives available in AWS, including VPCs, subnets, and security groups. We saw how we can use these to limit the traffic we allow to our EC2 instances and other networked resources. In this chapter we’ll take that even further, looking at more advanced ways of securing networks.

One of the benefits of VPC peering, which we talked about in chapter 5, is that it allows you to route traffic between resources without going over the public internet. In this ...

Get AWS Security now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

AWS Security by Dylan Shields

6 Network access protection beyond the VPC

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly