From the course: VPC Networking on AWS: Configuration, Security, and Connectivity
Join today to access over 25,600 courses taught by industry experts.
Security groups - Amazon Web Services (AWS) Tutorial
From the course: VPC Networking on AWS: Configuration, Security, and Connectivity
Security groups
- [Instructor] In this lesson, we're going to look at security groups. It's a badly named utility. It's a firewall, but that's what they call it. You have to have a security group protecting every EC2 instance. So the purpose of the security group is protection. You define and enforce the access required to each EC2 instance, whether it's a web server, database server, application server, appliance, you define what traffic gets through this firewall, i.e., the security group, to the resource. Now, the security group is polite. It allows you to access a resource. Doesn't like to use the word deny. It only uses allow rules. So it allows you to go to port 80 because it didn't mention port 81. Port 81 is denied. It allows us to protect from unauthorized access, but permit what is necessary, the communication with the web server, application server, or database server. And as we'll see, even load balancers because they run internally on EC2 instances, we can use security groups to protect…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.