Join the DZone community and get the full member experience.
Join For FreeMany of our customers run their environment on Amazon EC2, and a popular question that comes up is the configuration of security groups in EC2.
For a definition, let’s have a look at the EC2 developer guide:
A security group acts as a firewall that controls the traffic allowed into a group of instances. When you launch an Amazon EC2 instance, you can assign it to one or more security groups. For each security group, you add rules that govern the allowed inbound traffic to instances in the group. All other inbound traffic is discarded. You can modify rules for a security group at any time. The new rules are automatically enforced for all existing and future instances in the group.
So, each instance must use a security group. In this post, I’ll detail what values should be given to the different security groups you have.
- Database servers
- Open ports
- TCP: 3306 (unless a different port is used for the database)
- Address
- IP address for every ScaleBase instance
- Open ports
- ScaleBase instances
- Open ports
- TCP: 9000
- Address
- Every application server you have.
- Open ports
- ScaleBase management
- Open ports
- TCP: 2701
- Address
- Your organization’s IP address range (or specific IP for users who use the admin console)
- Open ports
Source: http://www.scalebase.com/amazon-ec2-security-groups/
Topics:
Opinions expressed by DZone contributors are their own.
Comments