1 Answer
- Newest
- Most votes
- Most comments
1
Hi, you should limit 0.0.0.0/0 and 0.0.0.0::0 to http(s). ssh should be reserved to controlled addresses: ip of admins.
More importantly, you should probably introduce AWS Web Application Firewall (aka WAF) to better protect your site: see https://aws.amazon.com/waf/
This video is also a good place to start: https://www.youtube.com/watch?v=FdJ4fKMMTIE
Best,
Didier
Relevant content
- asked 3 years ago
- asked a year ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 3 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated a year ago
Thank you for advice. Should I limit 0.0.0.0/0 and 0.0.0.0::0 to http(s) for inbound and outbound rules or just for inbound?