AWS Ec2 Flashcards
learn Aws
What is NACL
Security at Subnet level,Multiple ec2
What is security at Ec2
Security Groups
what is private subnet
group ec2 without out internet access
what is public subnet
common to all private subnets and entry point to request from outside
How request flows into ec2
user->Internetgateway–>public subnet–>elb>routetable–>security group–>ec2
What is internet gateway or natgateway
A way where request comes from internet to vpc and then to public subnet
last point of security is served by
security group and NACL
Will aws by deafult create a security group and VPC
yes
Are there any defaults for security groups
complete outbound traffic is allowed excepts port 25 and full inbound is blocked
why port 25 is blocked in outbound security group rules
because port 25 is used by mailing service.To avoid spam activity
What is the practical use of NAcl
By default if Apllication teams allows any access which is not supposed to be ,Admins can block it at NACL level
how rules work in nacl
less rule number will be excueted first if executed then others are ignored
login to ec2 from local termins ssh -i
ssh -i pem file ubuntu@ip
Secure copy
scp -i pem file of bastion pem file ec2 in private subnet ubuntu@ ipof bastion :path where it should be copied