Review the available security options, security groups, or network ACLs.
- [Instructor] When we're looking at security at the network level, we really have two options. Now we have to consider what we're doing on the network. We're using instances for web, application and database. Each instance is going to have a network adaptor. That's where the traffic is going to come in. Presuming it got to the subnet and through the route table. Once it's got that far, we have additional protection because we have a security group around that network adaptor and that security group says what's getting in. If the security group doesn't allow that traffic, it's not getting in. What happens before it even gets to the instance is kind of interesting as well. We also have, at the subnet level, a firewall. A network access control layer which is controlling a packet flow at the subnet level before it actually gets to the instance. So this is a pretty big hammer because we can both allow, just like the security group, but we can also deny. We can explicitly deny and say you're not getting in or you're not getting out. So we have two levels of security at the lower level, the subnet firewall, the NACL. If you get through that firewall, then you can attempt to get through the network interface card as long as the allow rules apply to you through the security group.
- Creating a VPC
- Creating subnets
- Default and custom route tables
- IP addressing
- Creating security groups
- Configuring an internet gateway
- Peering VPCs together
- Sharing VPC resources
- Creating flow logs for monitoring
- Controlling access with IAM roles
- Dedicated tenancy
- Using automation for compliance
Skill Level Intermediate
What you should know2m 7s
1. VPC Architecture
2. Creating VPCs
3. Creating Subnets
4. IP Addressing
5. VPC Security
6. VPC Public Connectivity
7. VPC Private Connectivity
8. VPC Compliance
Next steps1m 23s
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.