Book Image

Mastering AWS Security

By : Albert Anthony
Book Image

Mastering AWS Security

By: Albert Anthony

Overview of this book

Mastering AWS Security starts with a deep dive into the fundamentals of the shared security responsibility model. This book tells you how you can enable continuous security, continuous auditing, and continuous compliance by automating your security in AWS with the tools, services, and features it provides. Moving on, you will learn about access control in AWS for all resources. You will also learn about the security of your network, servers, data and applications in the AWS cloud using native AWS security services. By the end of this book, you will understand the complete AWS Security landscape, covering all aspects of end - to -end software and hardware security along with logging, auditing, and compliance of your entire IT environment in the AWS cloud. Lastly, the book will wrap up with AWS best practices for security.
Table of Contents (10 chapters)

VPC limits

AWS VPC has limits for various components in a region. Most of these are soft limits and can be increased by contacting AWS support from the AWS console and submitting a request by filling the Amazon VPC limits form available in the AWS console.

Let's look at these limits:

Resource

Default limit

VPCs per region

5

Subnets per VPC

200

Elastic IP addresses per region

5

Flow logs per resource in a region

2

Customer gateways per region

50

Internet gateways per region

5

NAT gateways per availability zone

5

Virtual private gateways per region

5

Network ACLs per VPC

200

Rules per network ACL

20

Network interfaces per region

350

Route tables per VPC

200

Routes per route table

50

Security groups per VPC (per region)

500

Rules per security group

50

Security groups per network interface...