Network Security in AWS

1. Network Security in AWS

Networks carry all traffic to and from servers. Good network security is essential for securing data. Let's review some AWS network security practices.

2. Networking basics

Let's go over some networking basics. When two or more computers connect with each other, it forms a subnet. For example, a physics lab at a university may create a subnet. When you connect multiple subnets it becomes a network. For example, a campus network that connects multiple labs. A device called a router is needed to route traffic between subnets and networks. A route table maintains mapping of network addresses that the network links.

3. Virtual private cloud

When working in AWS, we can create a virtual network. We'll start with subnets & route tables and add a few more components such as a firewall and DNS. This virtual network is called Virtual Private Cloud or a VPC. A firewall, similar to a fence, protects from intrusion and DNS helps with domain name to IP address mapping.

4. VPC security

VPCs need to be secured. There are five steps to securing a VPC. First, select an appropriate subnet type. The second step is to isolate environments which separate networks based on business use or team structure. For example, separate subnets for production and testing. Next, create Network Access Control List, or NACLs, which are rules that allow traffic when conditions match. In the fourth step, create a Firewall or use AWS WAF to protect your VPC from external attacks. Finally, create VPC flow logs help with traffic analysis and detection.

5. NACL, firewall, and WAF

Let's compare NACLs, Firewalls, and AWS WAF: three tools to protect your VPC. First, what is the scope of each tool? NACL is a simple rule-matching tool for network traffic management. AWS Firewall is more feature rich solution designed to protect entire VPC. WAF is an application-level software to protect against malicious web traffic. Both Firewall and WAF are stateful - that it, it remembers the state of connections - whereas NACL is a stateless rule-matching solution. By default NACL block traffic unless it is allowed, whereas WAF and Firewall provide customization options. NACL is offered as a free solution whereas WAF and Firewall are paid products. NACL is best for broad network control at the subnet level whereas Firewall is a high-level security solution and WAF a niche security product. If NACL is a compact car, AWS Firewall is a powerful all-wheel drive SUV car and WAF is a golf cart.

6. AWS Marketplace

Finally, you can use the AWS Marketplace to find security solutions. AWS Marketplace is a curated digital catalog that customers can use to find, buy, deploy, and manage third-party software, data, and services. Enterprise software rollout often requires multiple approvals and complex deployment. For example, if you are looking to deploy security software from Cisco or Juniper Networks, the marketplace makes it easy to subscribe to and deploy it.

7. Let's practice!

You now know the basics of how to protect networks. Time to practice!

Create Your Free Account

By continuing, you accept our Terms of Use, our Privacy Policy and that your data is stored in the USA.