From the course: VPC Networking: Designing a Software Defined Data Center on AWS
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Security groups - Amazon Web Services (AWS) Tutorial
From the course: VPC Networking: Designing a Software Defined Data Center on AWS
Security groups
- [Instructor] Security groups are a firewall at the instance level protecting the traffic that gets to the EC2 instance. So let's look at some details about security groups. They allow inbound and outbound traffic. Allow rules can be specified. I can't control explicitly a deny rule, yet I can deny traffic by not allowing it but it's not a specific deny. Security groups are stateful, meaning that the inbound traffic is monitored. The traffic got in; therefore, it can get back out. The default when you define a security group is that it doesn't care. By default, all outbound traffic are allowed, yet the power of a security group is controlling the outbound destination. For example, the traffic arrived inbound to my load balancer. Where does it get to go out? Only to my web servers rather than anywhere it wants. Let's look at some additional details on the security group and how it operates. Every network interface has a security group. At creation, a default security group is attached…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.