Link to home
Start Free TrialLog in
Avatar of M
M

asked on

What is the meaning of "logical network security?"

What is "logical network security?"


Does "logical network security" mean separate subnets?


Does "logical network security" mean a VLAN?


Context, AWS protects data via "logical network security."

ASKER CERTIFIED SOLUTION
Avatar of David Johnson, CD
David Johnson, CD
Flag of Canada image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of M
M

ASKER

Thank you all.

@btan, what is VPC?
For info (:

Amazon Virtual Private Cloud (VPC) gives you complete control over your virtual networking environment, including resource placement, connectivity, and security. The first step is to create your VPC. Then you can add resources to it, such as Amazon Elastic Compute Cloud (EC2) and Amazon Relational Database Service (RDS) instances. Finally, you can define how your VPCs communicate with each other across accounts, Availability Zones (AZs), or Regions. In the example below, network traffic is shared between two VPCs within each region.
User generated image
Consider a VPC to be a cloud-based virtual data center. Using Amazon Web Services as an example, the AWS Virtual Private Cloud, or Amazon VPC, allows you to create a logically isolated Amazon Web Services Cloud area to launch AWS resources in a virtual network of your choosing. You also have complete control over your virtual networking environment, including the ability to choose your own IP address ranges, create subnets, and configure route tables and network gateways. You may also quickly adjust your Amazon Virtual Private Cloud's network settings.
 
You can create a public-facing subnet for your web servers with access to the internet. You can place your backend systems such as your databases, your application servers in a private-facing subnet with no internet access. The web servers are exposed to the internet, but your sensitive application and database servers are not exposed to the internet. And you can leverage multiple layers of security, including security groups and network access control lists, to help you control access to Amazon instances in each subnet. 
 
And additionally, you can create a Hardware Virtual Private Network or VPN connection between your corporate data center and your VPC and leverage the AWS cloud as an extension of your corporate data center.
 
https://docs.aws.amazon.com/vpc/latest/userguide/what-is-amazon-vpc.html
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/networking-services.html