Ends in
00
days
00
hrs
00
mins
00
secs
SHOP NOW

AWS Cloud Practitioner Sale - Get a Chance to Win FREE Access to our new DEA Practice Exams

Find answers, ask questions, and connect with our
community around the world.

  • Denzil77777

    Member
    April 6, 2024 at 10:21 pm

    Good day to you

    When it comes to the VPC, which AWS Services, can be used to protect VPC? Exam questions for SAA – C03 seem to have many cases presented to you, with a combination of AWS Services which are in relation to Security.

    Then AWS seem to test us, mixing the questions related to Security and ALB a lot too.

    Hence, the question

    By the way, I have been posting questions at Slack, dojo, since Monday the 02nd of April 2024. DOJO has not responded so far?

    Kind Regards

    Denzil

  • Neil-TutorialsDojo

    Member
    April 11, 2024 at 12:49 pm

    Hi Denzil,

    Thank you for posting here.

    To my knowledge, these are the few AWS services that can be used to protect resources running within a VPC:

    1. Security Groups—Security groups act as virtual firewalls and allow you to control inbound and outbound traffic to EC2 instances within a VPC.

    2. Network ACLs are similar to security groups but applied at the subnet level instead of the instance level. They allow you to control traffic that enters or leaves a subnet.

    3. AWS Network Firewall – This managed firewall service provides capabilities like stateful packet inspection, intrusion prevention, and web filtering. It allows you to manage firewall rules across multiple VPCs and subnets centrally.

    4. VPC Endpoints – By creating interface or gateway endpoints, resources within the VPC can securely access other AWS services privately without an internet gateway, NAT device, VPN connection, or AWS Direct Connect connection. This eliminates potential security risks of public internet access.

    As for your concern regarding your post on Slack, I apologize for being unable to respond to your queries. We will reply to your queries as soon as we can.

    Thank you for understanding.

    Regards,
    Neil @ Tutorials Dojo

    • Denzil77777

      Member
      April 11, 2024 at 4:45 pm

      Hello Neil,

      Thank you for that.

      However, when it comes to VPC, in which way can a VPC be protected?

      As regards to (1) and (2), which one is the most secured AWS Service?

      Well, the questions which I did post are dating back to 01st of April 2024, in here (TD) as well as Slack. Prior to Easter, the answers were prompt. 🙂

      By the way, in relation to SAA C03 Practice Exams, when can we expect an update?

      Kind Regards,

      Denzil

      • Neil-TutorialsDojo

        Member
        April 12, 2024 at 12:48 pm

        Hi Denzil,

        Since a VPC serves as a secure and isolated environment within your AWS account, ensuring its protection is paramount to safeguarding your resources and data. Thus, my answer above. You can check this AWS documentation to get more of an idea of what Amazon VPC is https://docs.aws.amazon.com/vpc/latest/userguide/what-is-amazon-vpc.html

        Regarding which of Network ACLs(2), and Security Groups(1) are more secure, both Security Groups and Network ACLs play crucial roles in securing a VPC, but they operate at different levels. Security Groups offer instance-level control as virtual firewalls, while Network ACLs operate at the subnet level. Neither is inherently more secure; they complement each other. For finer control, use Security Groups. For broader control, use Network ACLs. Combining both enhances VPC security.

        Regarding updates to the SAA C03 Practice Exams, we are constantly working to improve and update our content to provide the most relevant and up-to-date resources for our users. Rest assured that we are actively working on it.

        Thank you.

        Regards,
        Neil @ Tutorials Dojo


  • Denzil77777

    Member
    April 12, 2024 at 3:09 pm

    Hello Neil,

    Thank you for that.

    Kind Regards,

    Dnzil

Viewing 1 - 3 of 3 replies

Log in to reply.

Original Post
0 of 0 posts June 2018
Now