Amazon VPC provides features that you can use to increase and monitor the security for your VPC:
Security groups — Act as a firewall for associated Amazon EC2 instances, controlling both inbound and outbound traffic at the instance level
Network access control lists (ACLs) — Act as a firewall for associated subnets, controlling both inbound and outbound traffic at the subnet level
In this activity, the student will gain experience with using security groups and network access control lists to secure the different layers of a multi-tier application.
Successfully complete this lab by achieving the following learning objectives:
- Configure security groups
Let’s get started and configure our security groups for the DMZLayer, the AppLayer, and the DBLayer.
- Configure Network Access Control Lists (NACLs)
Now that we configured our security groups, let’s now configure our NACLs for each layer.