文章目录
Security Group (安全组)【★考点】
- fundamental of netwoek security in AWS
- Control how traffic is allowed into or out of EC2 Instacne
特点
- only contain allow rules
- can reference by IP or by security group
Regulate: - Access to Port
- Authorised IP ranges - IPV4 and IPV6
- Control of inbound network (from other to the instance)
- Control of outbound network (from the instance to other)
安全组的工作原理
参考上图:
- Security Group like firewall (防火墙)
- 在入站时,只有被安全组允许访问的IP可以访问EC2实例。(其他ip访问会超时无法访问)
- 在出站时&#