Please enable JavaScript.
Coggle requires JavaScript to display documents.
Explain the use of Security Group in aws - Coggle Diagram
Explain the use of Security Group in aws
What is Security Groups in AWS
A security group is an AWS firewall solution that performs one primary function: to filter incoming and outgoing traffic from an EC2 instance
It accomplishes this filtering function at the TCP and IP layers, via their respective ports, and source/destination IP
addresses
Function of Security Groups
Every Security Group works in a similar fashion to a firewall as it carries a set of rules that filter traffic entering and leaving the EC2 instances.
When creating a security group, each group will be assigned to a particular virtual private cloud VPC.
It’s also an excellent approach to give each group a name and description for easy access from the account menus.
It’s also important to note that when creating a security group, you should ensure that it is assigned to the VPC it’s meant to protect to avoid errors.
AWS security groups: rules
Each rule is comprised of five field
Port Range
This value will also usually be pre-filled, reflecting the default port or port range for your chosen protocol. However, there might be times when you prefer to use custom ports
Source
This can be a network subnet range, a specific IP address, or another AWS security group. You can also leave access open to the entire internet using the “Anywhere (0.0.0.0/0)” value
Protocol
This is typically grayed out, as it’s covered by most “Type” choices. However, if you create a custom rule, you can specify your protocol (TCP/UDP, etc.) here
Description
This field allows you to add a description for the rule that has been added
Type
The drop-down list allows you to select common protocols like SSH, RDP, or HTTP. You can also choose custom protocols
Creating a security group
Enter a name for the security group (for example, my-security-group), and then provide a description
From VPC, select the ID of your VPC
Choose Create security group
(Optional) Add or remove a tag
In the navigation pane, choose Security Groups
Choose Create
Open the Amazon VPC console
How AWS Security Groups Work
AWS Security Groups help you secure your cloud environment by controlling how traffic will be allowed into your EC2 machines
you can ensure that all the traffic that flows at the instance level is only through your established ports and protocols