Study Guides/AWS Cybersecurity Notes/VPC Security

From Cramsession

< Study Guides‎ | AWS Cybersecurity Notes

Revision as of 00:42, 13 June 2026 by Mflavell (talk | contribs) (Created page with "= VPC Security = == Important terms == ::* Subnets - Remember each subnet must stay within its AZ. No Multiple AZ's or regions. ::* Security groups - Think of them as firewalls assigned to the EC2 instance. ::: You can have up to 5 per instance ::: These are stateful - they will remember. ::* NACL - Network Access Control Lists ::: Remember these are stateless - so you need to enable both directions. ::: They are evaluated in order from low to high. ::* NAT - Fo...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to navigation Jump to search

✍️ Verified Author: Mflavell • Click to view professional profile & credentials

VPC Security

Important terms

Subnets - Remember each subnet must stay within its AZ. No Multiple AZ's or regions.

Security groups - Think of them as firewalls assigned to the EC2 instance.

You can have up to 5 per instance

These are stateful - they will remember.

NACL - Network Access Control Lists

Remember these are stateless - so you need to enable both directions.

They are evaluated in order from low to high.

NAT - Forwards traffic from a private subnet ot the internet or other AWS service.

These are not secure - never use in production.

VPC Endpoint

Allows a resounce to connect you AWS VPC or AWS services without the public internet.

AWS Direct Connect

A direct connection to AWS - no public internet.

Elastic network interface - A virtual network card.

Retrieved from "https://cramsession.net/index.php?title=Study_Guides/AWS_Cybersecurity_Notes/VPC_Security&oldid=1699"

Navigation menu