From the course: AWS Certified SysOps Administrator - Associate (SOA-C02) Cert Prep
Join today to access over 24,600 courses taught by industry experts.
Security Group vs. Network ACL - Amazon Web Services (AWS) Tutorial
From the course: AWS Certified SysOps Administrator - Associate (SOA-C02) Cert Prep
Security Group vs. Network ACL
- [Instructor] Security groups and network ACLs are two security features in Amazon VPC. When you create a new VPC, a default security group and a network ACL will automatically be created. The same is true for the default VPC in your AWS account. Both of them act as a virtual firewall that protects your EC2 instances or DS databases and other resources from unauthorized traffic. These two have inbound and outbound rules that you can configure and can accept a single IP address or a CIDR range as a source. You can create an inbound rule to control the incoming traffic to your network and an outbound rule to manage the outgoing traffic. These two features can work together to ensure data security in transit of your VPC. However, you must also know which one of these can explicitly deny traffic, which one uses ephemeral ports on its outbound rules, and which one is stateful or not. The first difference is their scope.…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
AWS services overview5m 18s
-
(Locked)
AWS compute services10m 44s
-
(Locked)
AWS container services6m 4s
-
(Locked)
AWS storage services17m 32s
-
(Locked)
AWS database services11m 51s
-
(Locked)
AWS deployment services14m 25s
-
(Locked)
AWS monitoring services6m 6s
-
(Locked)
AWS audit and compliance services3m 22s
-
(Locked)
AWS networking and content delivery services13m 54s
-
(Locked)
AWS application integration services10m 9s
-
(Locked)
AWS security services12m 56s
-
(Locked)
AWS management and governance services9m 50s
-
(Locked)
AWS identity services4m 32s
-
(Locked)
AWS machine learning services16m 41s
-
(Locked)
AWS transfer and migration services9m 33s
-
(Locked)
AWS analytics services22m 32s
-
-
-
Amazon EC2 overview5m 11s
-
(Locked)
Instance purchasing options3m 40s
-
(Locked)
Spot instances5m 35s
-
(Locked)
On-demand EC2 instances3m
-
(Locked)
Reserved instances3m 50s
-
(Locked)
Dedicated hosts and instances3m 12s
-
(Locked)
Savings plans1m 57s
-
(Locked)
Capacity reservation1m 44s
-
(Locked)
Instance types8m 6s
-
(Locked)
Amazon Machine Image (AMI)7m 29s
-
(Locked)
Instance user data2m 31s
-
(Locked)
Instance metadata6m 13s
-
(Locked)
Amazon EC2 networking14m 20s
-
(Locked)
Amazon EC2 network security16m 12s
-
(Locked)
Hands-on lab - vertically scaling an amazon EC2 instance8m 13s
-
(Locked)
Hands-on lab - using EC2 instance connect to connect to your Instance5m 23s
-
(Locked)
Hands-on Lab - creating an amazon machine image (AMI) from an EBS-backed EC2 instance8m 36s
-
(Locked)
Hands-on lab - creating placement groups5m
-
(Locked)
Hands-on lab - launching an EC2 spot instance6m 19s
-
(Locked)
Hands-on lab - setting up a web server on an EC2 instance5m 52s
-
-
-
Amazon EBS overview11m 10s
-
(Locked)
Amazon EBS types5m 33s
-
(Locked)
Amazon S3 overview9m 22s
-
(Locked)
Amazon S3 storage classes12m 41s
-
(Locked)
Amazon S3 minimum storage duration4m 26s
-
(Locked)
Amazon S3 Event Notifications2m 53s
-
(Locked)
Amazon EFS overview3m 57s
-
(Locked)
Amazon FSx for Lustre4m 17s
-
(Locked)
Amazon FSx for Windows File Server5m 36s
-
(Locked)
Hands-on lab: Creating an EFS file systems storage7m 36s
-
(Locked)
Amazon Data Lifecycle Manager3m 55s
-
(Locked)
AWS Backup5m 28s
-
(Locked)
Hands-on lab: Exploring the Amazon S3 console7m 32s
-
(Locked)
Hands-on lab: Creating an Amazon S3 bucket7m 48s
-
(Locked)
Hands-on lab: Uploading and downloading objects in Amazon S35m 1s
-
-
-
Amazon RDS overview10m 58s
-
(Locked)
Amazon RDS Read Replica13m
-
(Locked)
Amazon RDS Multi-AZ deployments11m 5s
-
(Locked)
Amazon RDS events notification6m 17s
-
(Locked)
Amazon RDS Proxy3m 49s
-
(Locked)
Amazon Aurora overview7m 10s
-
(Locked)
Amazon DynamoDB overview14m 30s
-
(Locked)
Amazon DynamoDB core components7m 32s
-
-
-
(Locked)
CloudFormation overview4m 58s
-
(Locked)
Anatomy of a CloudFormation template9m 2s
-
(Locked)
CloudFormation helper scripts3m 59s
-
(Locked)
DependsOn and WaitCondition2m 43s
-
(Locked)
CloudFormation: StackSets6m 4s
-
(Locked)
CloudFormation: Nested stacks3m 52s
-
(Locked)
CloudFormation: Custom resource4m 56s
-
(Locked)
-
-
(Locked)
Serverless computing overview8m 38s
-
(Locked)
Serverless architectures11m 50s
-
(Locked)
AWS Lambda overview2m 50s
-
(Locked)
Amazon API Gateway overview5m 1s
-
(Locked)
AWS Audit Manager overview6m 51s
-
(Locked)
AWS Config overview4m 59s
-
(Locked)
Amazon Detective overview4m 30s
-
(Locked)
AWS Compute Optimizer overview5m 40s
-
(Locked)
Amazon Directory Service overview7m 23s
-
(Locked)
AWS Organizations overview7m 8s
-
(Locked)
AWS CloudTrail overview3m 13s
-
(Locked)
CloudTrail integrations3m 56s
-
(Locked)
Hands-on lab - Set up an AWS Organization7m 58s
-
(Locked)
-
-
(Locked)
High availability vs. fault tolerance3m 26s
-
(Locked)
RTO vs. RPO2m 29s
-
(Locked)
Security Group vs. Network ACL7m 56s
-
(Locked)
File vs. Volume vs. Tape Storage Gateway4m 5s
-
(Locked)
Storage Gateway vs. DataSync4m 55s
-
(Locked)
Amazon S3 vs. EFS vs. EBS15m 33s
-
(Locked)
SSM Parameter Store vs. AWS Secrets Manager3m 54s
-
(Locked)