How to Control Traffic with Security Groups in AWS
Вставка
- Опубліковано 12 вер 2024
- Courses: www.aosnote.co...
Website: www.aosnote.com/
How to Control Traffic with Security Groups in AWS
----------------------------------------------------------------------------
AWS Hands-on Projects for Beginners👇
----------------------------------------------------------------------------
✔ Getting Started on AWS Cloud: www.aosnote.co...
✔ Deploy a Static Website: www.aosnote.co...
✔ Deploy a WordPress Website: www.aosnote.co...
✔ Deploy a Dynamic E-commerce Website: www.aosnote.co...
✔ Deploy a Dynamic Website with Terraform: www.aosnote.co...
✔ Deploy a Static Website with Ansible: www.aosnote.co...
✔ Deploy a Website Docker, AWS ECR, and AWS ECS: www.aosnote.co...
✔ Deploy a Dynamic Website with CloudFormation: www.aosnote.co...
----------------------------------------------------------------------------
Projects Coming Soon 👇
----------------------------------------------------------------------------
✔ Deploy a Website with Terraform Modules, AWS ECR, and AWS ECS
✔ Create CICD to Deploy a Dynamic Website
✔ Python and AWS Lambda Project
----------------------------------------------------------------------------
Bootcamp 👇
----------------------------------------------------------------------------
6 Months Cloud/DevOps Bootcamp: www.aosnote.co...
----------------------------------------------------------------------------
Courses: www.aosnote.co...
Website: www.aosnote.com/
----------------------------------------------------------------------------
Thank you🙏. If you find this video valuable, please don't forget to like, subscribe, and share to support this channel 👍
In this AWS tutorial video, we will create security groups to control traffic to our WordPress application.
According to AWS documentation, a security group acts as a virtual firewall for your instance to control inbound and outbound traffic. When you launch an instance in a VPC, you can assign up to five security groups to the instance. Security groups act at the instance level, not the subnet level. Therefore, each instance in a subnet in your VPC can be assigned to different security groups.
For each security group, you add rules that control the inbound traffic to instances, and a separate set of rules that control the outbound traffic. This section describes the basic things that you need to know about security groups for your VPC and their rules.
How to Control Traffic with Security Groups in AWS
#security groups #wordpressonaws #vpc
Thanks, this has really helped me have a good understanding with how security group works
You are welcome.
I randomly searched this video, But this coms out to the best video on security group. Thanks
Nice tutorial, keep going friend. Thank you so much 💯
2 Questions :
1. Why Traffic to EFS through EC2, whereas in the diagram shown link between DB-EFS ?
2. Why EFS Secuirty group inbound has its own Security group ID linked ?
please response.
Why did you include EFS SG itself with EFS SG inbound rules? Could you please clarify.
Good job bro,but I have a question,the first security group that was created is ALB and its source is anywhere(10.0.0.0/0),so this implies anyone can access it and every other security groups created is dependent on ALB,so how are the security groups secure?
Hello Louis, that's a great question. We open internet traffic (0.0.0.0/0) on the load balancer. When the load balancer receives the internet traffic, it will forward the end user's request to the EC2 servers. With the way we set up our security groups, the EC2 servers will only accept the request if it is coming from the load balancer, not the end user. For the other security groups, we are following the same concept. The RDS will only allow the request if it is coming from the EC2 server. Basically, we are using the principle of least privilege and only allowing the right resource to access other resources.
@@AOSNote Thanks for timely response,please I have a last question,after hosting the wordpress,how do I link it to a flask web app that is currently running from my local server?yes I already saw one of your videos where you you created s3 bucket and sync the files to wordpress html folder,but right now am finding it difficult to find that video on youtube,please help with the link to that tutorial.However,If i decide to use the method of s3 bucket then I must not terminate the setup server ec2 instance?
Thanks bro
This is very helpful. Can you please do another video on running wordpress in AWS?
Thank you Phil. Yes I have made the full video and you can watch it here: www.udemy.com/course/how-to-build-a-wordpress-website-on-aws/?referralCode=AFEA59BEE571B7B2E957
Do a similar video for NACL
Great video, however why is EFS security group allowing connection to the EFS Security group itslef? I do not understand this part.
Why is EFS security group allowing connection to the EFS Security group itslef?
When a security group is configured to allow connections to itself, it means that any EC2 instance or service that is associated with that security group is allowed to communicate with other instances or services in the same security group. This is particularly useful in scenarios like this project where multiple instances need to access the same EFS file system.
wordpress + php + mysql is installed in the websever , my question and confusion is : why do you have it the public subnet ( see diagram min 1:04 ) isnt supposed to be in the public subnet then we secure with ACM ?
Hello, sure I can explain, but please, I don't understand your question. I mean this question "why do you have it the public subnet." Which service are you referring to?