AWS Security Groups vs Network ACLs

Поделиться
HTML-код
  • Опубликовано: 27 янв 2025

Комментарии • 46

  • @robertlainhart7301
    @robertlainhart7301 Год назад +2

    I finished up my course and am doing practice tests for CLF-C01 exam and needed further clarification on this. To the point and explained it well. Liked and subscribed. I appreciate it!

  • @comradejames451
    @comradejames451 Год назад +1

    Thanks!

  • @rinku-blogadmin
    @rinku-blogadmin 2 года назад +2

    short and to the point , and presentation with smile , great

  • @kickbackattack
    @kickbackattack 2 года назад +3

    Great video, straight to the point. ENI to SG and Subnet to ACL. From individual instances to the overall VPC network.

  • @priyankadhanasekaran7086
    @priyankadhanasekaran7086 Год назад +2

    Must watch video who doesn't understand security groups and network ACLs

  • @craigraynor4993
    @craigraynor4993 11 месяцев назад +1

    Thanks Anthony, great video. Quick and concise explanation delivered in an engaging way.

  • @asraotuni
    @asraotuni 3 года назад +4

    Excellent. Precise and clear explanation.

  • @Dash277
    @Dash277 5 месяцев назад +1

    Extremely helpful, thanks so much.

    • @AnthonySequeira15626
      @AnthonySequeira15626  5 месяцев назад

      I'm so glad you found it helpful! Your support means a lot to me!

  • @thelesls
    @thelesls Год назад +1

    I'm studying for the CLF-C01 exam, and in the materials, they state that the Security Group should be used at the instance level and NACL at the subnet level.
    Doing a practice exam, I've got this question: "How can a user block a suspicious IP address from connecting to an Amazon EC2 instance?"
    The appointed correct answer was: "Block the IP on the inbound rule of a network ACL"
    If the question mentions the EC2 instance, why then should an NACL be used instead of a Security Group? Thanks!

    • @AnthonySequeira15626
      @AnthonySequeira15626  Год назад +1

      Hello my friend! Thank you for watching and thank you for the excellent question. You should imagine the Security Group attached to the virtual network interface of an EC2 machine. You should imagine the NACL attached to the subnet. Now - if you want to block an IP address from reaching an EC2 resource - you actually do have two options - you can do it at the virtual network card level (security group) or you could do it at the NACL level (the subnet). Notice something interesting about the subnet NACL approach - it only works to block traffic that is OUTSIDE of the subnet. If the "bad IP address" is already in the subnet - it would not be blocked by the NACL.

    • @thelesls
      @thelesls Год назад

      ​@@AnthonySequeira15626 Hi, and thank you for your answer! Continuing with my study, I came up with a different approach and understanding of the question. Since security groups only have "allow" rules and the question asks for "how to block access", it would be necessary to use NACL. Is this correct? Thank you again!

  • @MrPraveen123321
    @MrPraveen123321 3 года назад +3

    Short and to the point... Thanks.

  • @greygoose82t.16
    @greygoose82t.16 2 года назад +1

    Thanks for this brief explanation in 2022.

  • @MahmoudMohamed-si3by
    @MahmoudMohamed-si3by Год назад

    How it is virtual FW and allow traffic? i know you are correct that it is allow traffic, but how we can on it FW if it is allowing traffic? so what is the idea of it?

    • @AnthonySequeira15626
      @AnthonySequeira15626  Год назад

      I am struggling to understand your question - I am sorry. Both AWS Security Groups and NACLs can permit or deny traffic based on your settings.

  • @yethu-itknowledgesharing884
    @yethu-itknowledgesharing884 3 года назад +4

    Thanks so much, I am clear now difference between them. 👍

    • @AnthonySequeira15626
      @AnthonySequeira15626  2 года назад

      Thank you so much for watching and commenting! And so sorry I missed the comment for so long!

  • @fbsoul1
    @fbsoul1 4 года назад +3

    thanks Dear Anthony, you made it very clear.

    • @AnthonySequeira15626
      @AnthonySequeira15626  4 года назад

      You're very welcome

    • @casonmohammed108
      @casonmohammed108 3 года назад

      i know it's pretty off topic but does anybody know a good place to watch newly released series online?

    • @ericluis2290
      @ericluis2290 3 года назад

      @Cason Mohammed i would suggest flixzone. You can find it on google :)

  • @comradejames451
    @comradejames451 Год назад +1

    👏👏👏 thank you so much it's so simple now!

  • @اللغةالعربيةفقط-ب9ض
    @اللغةالعربيةفقط-ب9ض 8 месяцев назад +1

    awesome!!

  • @donjuanw
    @donjuanw 3 года назад +1

    Thank you for this!

  • @simranbanwait
    @simranbanwait 5 месяцев назад +1

    Sir you look very similar to David bombal,
    are you like... cousins ?

  • @LemmeSayThis...
    @LemmeSayThis... 2 года назад +1

    excellent - Thanks new subscriber

  • @smartchocolate6503
    @smartchocolate6503 3 года назад +1

    Rubbish - could have given examples to better understand

  • @truenaraku
    @truenaraku 2 года назад +1

    Great video but your eyes are telling me to run away as fast as I can!

    • @AnthonySequeira15626
      @AnthonySequeira15626  2 года назад

      At least I am not banned from school zones yet. Shrug.

    • @comradejames451
      @comradejames451 Год назад

      U got a sick mind, but you can still understand ACLs and SGs thanks to this man. I'd trust him more than you.