馃И 诪讟专讜转 讛诇诪讬讚讛
- 讛讘谞转 Security Groups 讜-讛讙讚专转诐 讘-AWS
- 讛讘谞转 Default Security Group 砖谞讜爪专 注诐 讻诇 VPC
- 讛谞讛诇转 Inbound Rules 讜-Outbound Rules
- 砖讬诪讜砖 讘Security Group IDs 诇讛讙讚专转 转注讘讜专讛 讘讬谉 诪砖讗讘讬诐
- 讛爪讙转 EC2 Instance 诇诇讗 explicit Security Group definition
- Uncommented code 诇砖讞讝讜专 EC2 Instance
讞诇拽 1: Security Groups - 诪讛讜 讜讻讬爪讚 讛讜讗 注讜讘讚
讛住讘专
Security Group 讝讛 firewall 诪砖诇讱 注讘讜专 诪砖讗讘讬诐 讘-AWS. 讻诇 AWS resource (讻诪讜 EC2 Instance) 讞讬讬讘 诇讛讬讜转 诪砖讜讬讱 诇-Security Group. 讘诇讬 Security Group, 诪砖讗讘 诇讗 讬讜讻诇 诇拽讘诇 转注讘讜专讛 诪谞讜 讘讗祝 驻专讜讟讜拽讜诇 讜讘讗祝 port.
Security Group 诪讙讚讬专:
- Inbound Rules - 讗讬讝讛 转注讘讜专讛 诪讜转专转 诇讛讬讻谞住 诇诪砖讗讘
- Outbound Rules - 讗讬讝讛 转注讘讜专讛 诪讜转专转 诇爪讗转 诪讛诪砖讗讘
- Sources/Destinations - 诪讗讬驻讛/诇讗谉 诪讜转专转 讛转注讘讜专讛
讻诇 rule 讘-Security Group 讬讻讜诇 诇讛讬讜转 defined 注诇:
- Specific IP addresses (讻诪讜 192.168.1.1/32)
- CIDR blocks (讻诪讜 10.0.0.0/8)
- Security Groups (讗驻砖专 诇讛讙讚讬专 转注讘讜专讛 诪-Security Group 讗讞专)
- Prefixes lists (讻诪讜 managed lists 砖诇 AWS services)