Book Image

Designing AWS Environments

By : Mitesh Soni, Wayde Gilchrist
Book Image

Designing AWS Environments

By: Mitesh Soni, Wayde Gilchrist

Overview of this book

Amazon Web Services (AWS) provides trusted,cloud-based solutions to help you meet your business needs. Running your solutions in the AWS Cloud can help you get your applications up and running faster while providing the security to meet your compliance requirements. This book begins by familiarizing you with the key capabilities to architect and host applications, websites, and services on AWS. We explain the available options for AWS free tier with virtual instances and demonstrate how you can launch and connect them. Using practical examples, you’ll be able to design and deploy networking and hosting solutions for large deployments. Finally, the book focuses on security and important elements of scalability and high availability using AWS VPC, Elastic Load Balancing, and Auto scaling. By the end of this book, you will have handson experience of working with AWS instances,VPC, Elastic Load Balancing, and Auto scalingrelated tasks on Amazon Web Services.
Table of Contents (12 chapters)

Security groups


In the previous section, we discussed the available storage options for EC2 instances. The next step to launching our instance is to create a security group. In this section, we're going to show you how to create a security group, add rules, and complete the launch of our instance.

Now we've reached step 6 of launching our instance: configuring the security group.

Security groups allow us to protect our instance with firewall rules. We can allow traffic into our instance by protocol and source. Note that we have to have a security group associated with our instance. A security group could be associated with more than one instance.

So, for example, we can create a single security group for all of our web server instances if we would like. All traffic is implicitly denied by default. So, if you don't specify a rule for a particular protocol, then that traffic is going to be blocked. On the screen, we are adding rules for the inbound traffic. We don't need to worry about outbound...