security groups are like virtual firewalls which allows
communications from different through desired port numbers.
Few thumb rules in security groups:
1.By default all inbound traffic is blocked.
2.All outbound traffic is allowed based on inbound.
3.You can specify allow rules(0.0.0.0/0),but not deny rules(deny for particular ip address 😊)
4.you cannot block specific ip address using security groups, instead use network access control list.
Practical steps:
1. 1. Login to AWS account.
N 2.Navigate to Services à under compute section à EC2à running instance --> security groups(as highlighted below.
3.Resultant screen looks like below screen. Here we can create, delete & edit security groups.
4.in the inbound tab, can open new ports or close existing old ports.
5.Add,delete,edit the port values, can be done here.
6.Once after saving need to assign the security group to required EC2 instance.
No comments:
Post a Comment