Get started Bring yourself up to speed with our introductory content.

Eight tips to roll a service or app into an AWS deployment

7/9

Only permit the AWS traffic you want

Source:  Akindo/Getty Images
Visual Editor: Sarah Evans

When you roll a new service or workload into an AWS deployment, it's important to control and restrict traffic to those new resources. Administrators can perform this task in a variety of ways.

Limit AWS traffic between a workload's constituent components to reduce the potential for malicious activity. For example, a web server should only allow incoming HTTP traffic through port 80, or HTTPS traffic through port 443.

Generally, admins can place a workload behind an Amazon EC2 security group firewall to block unacceptable AWS traffic. Route 53 can also help admins establish traffic policies to redirect end users in the most desired manner.

Similarly, you can secure individual workload components through security groups. For example, a web server rarely operates alone, as it might rely on an application server, database server and storage resource instances to support a workload's needs.

In that case, place the application server into its own security group so that it only accepts Secure Shell connections from a local network and blocks all other outside traffic. You could also configure the application server to only accept connections from the web server, and configure the database server to only accept connections from the application server.

View All Photo Stories
App Architecture
Cloud Computing
Software Quality
  • How to test a predictive model

    Strategies for testing predictive models and analytics emphasize data quality, real-time testing and code redundancy, as well as ...

  • The dos and don'ts of visual testing

    The visual aspect of an application is an important part of UX. Defects can potentially result in lost sales and damaged ...

  • 3 QA testing tools to consider

    QA testers need to be able to put applications and APIs through their paces. Here are some examples of tools that can help with ...

ITOperations
Close