Day 14: Security Groups: Guardians of Network Security ππ‘οΈ
π Hello! I'm passionate about DevOps and have over 1+ years of experience in the field. I'm proficient in a variety of cutting-edge technologies and always motivated to expand my knowledge and skills. Let's connect and grow together!
SKILLS:
πΉ Languages & Runtimes: Python, Shell Scripting, HCL, YAML πΉ Cloud Technologies: AWS, Microsoft Azure, GCP πΉ Infrastructure Tools: Docker, Terraform, AWS CloudFormation πΉ Other Tools: Linux, Git and GitHub Actions, Jenkins, Jira, GitLab (beginner), Docker, AWS DevOps πΉ Web Development: HTML, CSS, Bootstrap, Python, SQL
Job & Responsibilities:
π Improved development efficiency by implementing CI/CD pipelines, resulting in a 30% reduction in deployment time on the test server. π Strengthened deployment and testing reliability by utilizing Docker containers and optimizing Dockerfile, reducing development issues on the test server by 20%. βοΈ Automated S3 bucket log creation with Shell scripting, eliminating 100% of manual search and saving 2 hours per week. π Scheduled EC2 instance start/stop using Lambda functions and Event Bridge, leading to a 25% decrease in infrastructure costs. π§ Utilized AWS, Linux, Python, Docker, Shell scripting, Terraform, Jenkins Pipelines, and automation to streamline workflows and improve overall system performance.
I'm very detail-oriented and possess strong written and verbal communication skills. As a high performer with a possibility mindset, I strive to solve problems using efficient approaches.
Let's Connect & Grow:
If you find my profile suitable for the role you are searching for, please feel free to reach out to me at sumanprasad9766@gmail.com.
Unveiling Security Groups: Cornerstone of AWS Network Security ππ
Core Functionality:
Definition: Fundamental components governing network security in AWS.
Control: Dictate the flow of traffic into and out of EC2 Instances.
Composition: Solely comprised of rules, referencing IPs or other security groups.
Security Groups in Action: A Closer Look π§π
Acting as a Digital Firewall:
Role: Serve as a virtual firewall for EC2 instances.
Regulation:
Access to Ports.
Authorized IP ranges for both IPv4 and IPv6.
Control of inbound and outbound network traffic.
Deep Dive into Security Groups: An Illustrated Overview ππΌοΈ
Diagram: Understanding Traffic Filtering
Components:
EC2 Instance.
Security Group 1.
Inbound and Outbound Rules.
Authorized and Unauthorized IPs.
Key Insights about Security Groups: Essential Know-How ππ
Critical Points:
Versatility: Attachable to multiple instances.
Scope: Locked down to a specific region and Virtual Private Cloud (VPC) combination.
Location: Operate outside the EC2 β blocked traffic won't reach the instance.
Best Practice: Maintain a separate security group for SSH access.
Troubleshooting Tips:
Timeout Issue: Likely a security group problem.
"Connection Refused" Error: Indicates an application error or non-launched state.
Defaults:
All inbound traffic is blocked by default.
All outbound traffic is authorized by default.
Referencing Other Security Groups: Strengthening Connections π€π
Diagram: Creating Interlinked Security Groups
Components:
EC2 Instances.
Multiple Security Groups.
Inbound Rules Authorizing Other Security Groups.
Classic Ports to Master: Navigating the Digital Highway π’π§
Essential Ports:
22: SSH (Secure Shell) β Linux instance login.
21: FTP (File Transfer Protocol) β File upload into a file share.
22 (again): SFTP (Secure File Transfer Protocol) β File upload using SSH.
80: HTTP β Access unsecured websites.
443: HTTPS β Access secured websites.
3389: RDP (Remote Desktop Protocol) β Windows instance login.
Conclusion: Empowering Your Network Security ππ
Understanding the role and functionality of security groups is pivotal for crafting a secure AWS environment. As the guardians of network security, security groups allow you to finely control traffic, regulate access, and fortify your EC2 instances against potential threats. Dive into the AWS console, configure your security groups, and navigate the digital realm with confidence! ππ‘οΈ
