Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Free Learning

You're reading from Effective DevOps with AWS Implement continuous delivery and integration in the AWS environment

Product type Paperback

Published in Sep 2018

Publisher Packt

ISBN-13 9781789539974

Length 384 pages

Edition 2nd Edition

Tools

AWS

Concepts

Continuous Delivery

Authors (3):

Giuseppe Borgese

Nathaniel Felsen

Yogesh Raheja

View More author details

Table of Contents (11) Chapters

Preface

1. The Cloud and DevOps Revolution FREE CHAPTER

2. Deploying Your First Web Application

3. Treating Your Infrastructure as Code

4. Infrastructure as Code with Terraform

5. Adding Continuous Integration and Continuous Deployment

6. Scaling Your Infrastructure

7. Running Containers in AWS

8. Hardening the Security of Your AWS Environment

9. Assessment

10. Other Books You May Enjoy

Leave a review - let other readers know what you think

Chapter 8: Hardening the Security of Your AWS Environment

Before starting to build your infrastructure, it is strongly recommended that you lock in your root account (that is, the account bound to your registration email). Then, create IAM users and groups with the necessary privileges, and use MFA (instead of just usernames and passwords) for root and IAM users.
You should enable CloudTrail for registering IAM users and role actions, and VPC Flow Logs for monitoring and logging network traffic.
No; there is also WAF, an application firewall that works at level 7 of the TPC/IP protocol.
You have to follow some best practices to configure your application, expose the least possible surface of the app to the internet and scale up and down. There are also WAF rate rules that help to limit malicious DDoS attacks.
In theory, you can, but it is convenient...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (3)

Raheja

Yogesh Raheja - - DevOps, Automation and Cloud Coach and Consultant Yogesh Raheja is a certified DevOps and cloud expert with a decade of IT experience. He has expertise in technologies such as OS, source code management, build & release tools, continuous integration/deployment/delivery tools, containers, configuration management tools, monitoring, logging tools, and public/private clouds. He loves to share his technical expertise with audience worldwide at various forums, conferences, webinars, blogs, and LinkedIn. He has written books on IT automation named "Effective DevOps with AWS", "Automation with Puppet 5" and "Automation with Ansible" which has been published by "John & Wiley" and "Packt Publisher". He has also reviewed some of the DevOps books for multiple Publishers.

See other products by Raheja

Felsen

Nathaniel Felsen is a DevOps engineer who started working on DevOps engineering concepts over 10 years ago, before the term was even coined. He worked in several companies ranging from small start-ups to enterprises, including Qualys, Square, and more recently, Medium. Outside of work, Nathaniel lives a fabulous life where he enjoys running after his very active kids and spending a fortune on occasional date nights with his wife. Although Nathaniel is French, he prefers exploring local stout beers with friends than drinking wine. He holds a MS degree in system, network, and security from Ecole Pour l'Informatique et les Techniques Avances (EPITA), a top CS engineering school in France.

See other products by Felsen

Giuseppe Borgese

Giuseppe Borgese is currently working as a DevOps AWS Specialist for Siemens. He possesses a master's degree in Internet Technology and is a certified AWS DevOps Engineer Professional holding 4 certifications. His contributions to the AWS community include a Youtube channel featuring a series of AWS Tutorials and numerous articles for renowned blogs such as LinuxAcademy. He also holds VMware and Cisco certifications. This is his second book and the first book published with Packt. In this book, the chapters, Scaling Your Infrastructure and Hardening the Security of Your AWS Environment have been contributed by him.

See other products by Giuseppe Borgese