Welcome to OStack Knowledge Sharing Community for programmer and developer-Open, Learning and Share
Welcome To Ask or Share your Answers For Others

Categories

0 votes
437 views
in Technique[技术] by (71.8m points)

amazon web services - At what OSI layer do AWS Security Groups operate?

I've read couple of articles about AWS Security Groups:

but couldn't find at which OSI layer Security Groups operate. Maybe someone can help me understand at which OSI layer they operate?


与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
Welcome To Ask or Share your Answers For Others

1 Answer

0 votes
by (71.8m points)

Security Groups make it possible to create traffic allow rules based on IPs, protocols and optionally ports. IPs are associated with Layer 3 (Network) of the OSI-model and Ports with Layer 4 (Transport). The protocols you can filter on are a little tougher - you can select some from layer 3 (e.g. ICMP), layer 4 (e.g. TCP/UDP) or layer 5+ (HTTP,...) in the console. If you select one of the layer 5+ protocols, it will actually set TCP or UDP for you.

As a result of that, I would say that the security group operates at both layer 3 and layer 4 of the OSI model. I'm not sure if that really fits in the model, but I'm not very dogmatic about the model - as the statisticians say: All models are wrong, but some are useful.


与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
Welcome to OStack Knowledge Sharing Community for programmer and developer-Open, Learning and Share
Click Here to Ask a Question

2.1m questions

2.1m answers

60 comments

57.0k users

...