get the app get the app       get the app       get the app
Explain how you would simulate perimeter security using Amazon Web Services model?


  • : 253
  • : 0
    Previous Next

    Traditional perimeter security that we’re already familiar with using firewalls and so forth is not supported in the Amazon EC2 world. AWS supports security groups. One can create a security group for a jump box with ssh access – only port 22 open. From there a webserver group and database group are created. The webserver group allows 80 and 443 from the world, but port 22 *only* from the jump box group. Further the database group allows port 3306 from the webserver group and port 22 from the jump box group. Add any machines to the webserver group and they can all hit the database. No one from the world can, and no one can directly ssh to any of your boxes.

    Want to further lock this configuration down? Only allow ssh access from specific IP addresses on your network, or allow just your subnet.

    you can suggest other answer in comment box


  • Exam: AWS Interview QUESTIONS





    Close(X)
    Subscribe here for free mock test on IAS PCS SSC and other competitive exam. Signup here to get SSC CGL Solution and main exam study material