AWS Ec2

Question 1

What is NACL

Answer 1

Security at Subnet level,Multiple ec2

Question 2

What is security at Ec2

Answer 2

Security Groups

Question 3

what is private subnet

Answer 3

group ec2 without out internet access

Question 4

what is public subnet

Answer 4

common to all private subnets and entry point to request from outside

Question 5

How request flows into ec2

Answer 5

user->Internetgateway–>public subnet–>elb>routetable–>security group–>ec2

Question 6

What is internet gateway or natgateway

Answer 6

A way where request comes from internet to vpc and then to public subnet

Question 7

last point of security is served by

Answer 7

security group and NACL

Question 8

Will aws by deafult create a security group and VPC

Answer 8

yes

Question 9

Are there any defaults for security groups

Answer 9

complete outbound traffic is allowed excepts port 25 and full inbound is blocked

Question 10

why port 25 is blocked in outbound security group rules

Answer 10

because port 25 is used by mailing service.To avoid spam activity

Question 11

What is the practical use of NAcl

Answer 11

By default if Apllication teams allows any access which is not supposed to be ,Admins can block it at NACL level

Question 12

how rules work in nacl

Answer 12

less rule number will be excueted first if executed then others are ignored

Question 13

login to ec2 from local termins ssh -i

Answer 13

ssh -i pem file ubuntu@ip

Question 14

Secure copy

Answer 14

scp -i pem file of bastion pem file ec2 in private subnet ubuntu@ ipof bastion :path where it should be copied