April 2018
Intermediate to advanced
280 pages
8h 37m
English
The AWS Security Group provides a firewall between the external network and the AWS Cloud. Security Groups rules should be carefully configured to allow and disallow respective protocols and network ports.
For example, consider a three-tier web application that has a database tier, an application tier, and a web server tier. Since the external users will only need access to the web server, via HTTP or HTTPS, it would be ideal to open only ports 80 for HTTP or 447 for HTTPS in the security group configured for the web server instance. This prevents the web server from being exposed to the external networks. Moreover, you may also want to allow access to the application tier only for a specific set of IP addresses. For ...