Traffic mirroring within AWS VPCs
An interesting network tool available within the AWS network VPC is traffic mirroring. Traffic mirroring allows copying traffic from a particular ENIs (Elastic network interface) to a particular destination. A…
My blog about AWS technologies
topics related to AWS security
An interesting network tool available within the AWS network VPC is traffic mirroring. Traffic mirroring allows copying traffic from a particular ENIs (Elastic network interface) to a particular destination. A…
The AWS Route 53 Resolver DNS firewall is a great tool to limit exposure to known malicious domains. Generally for a connection to happen, DNS is used to resolve the…
Log in to the AWS console and go to the VPC services menu. Go to the section AWS Network firewall and choose Firewalls and choose create Firewall 2. The next…
Securing AWS accounts with IAM is very important to ensure the AWS accounts created are safe. The following are recommendations to secure your AWS accounts, especially the root account. 1.…
In the AWS Console search bar, enter Cloudtrail and open the Cloudtrail service 2. The next step is to click Create a trail 3. By default the quick trail create…
A step by step guide to using AWS Secrets Manager to store a new password with RDS 1. In the AWS Console search bar, enter Secrets Manager, and click the…
To setup the Guardduty pre-requisites please refer to the following links (still to be done) Choose Guardduty from the services menu 2. Click the Get started button 3. Click Enable…
AWS WAF now supports an additional action apart from allowing, block and counting. CAPTCHA is now available which will provide a captcha for the block and . Captcha. Allowing –…
Choose the Route 53 services menu and choose rule groups Click Rule groups and choose add Rule group Enter a rule name and optional description if needed and click Next…
Please note activating the AWS Advanced Shield will cost $3,000 per month with a commitment of 1 year. Steps required Subscribe to AWS Advanced Shield Add resources to protect Configure…