Configure Security Groups
A security group acts as a virtual firewall for your instance to control inbound and outbound traffic. For each security group, you add rules that control the inbound traffic to instances, and a separate set of rules that control the outbound traffic. When you specify a security group as the source for a rule, instances associated with the source security group can access instances in the security group. CloudCheckr offers various reports to keep track of the security groups associated with different services.
Common Searches
The common searches report offers a variety of search options to gather information on the EC2-VPC Security Groups associated with your AWS account. There are six options:
- Find security groups that have no resources assigned to them
- Find security groups that allow inbound internet traffic from all IP address and ports
- Find security groups that allow inbound database-specific access from all IP addresses
- Find security groups that allow SSH access from all inbound IP addresses
- Find security groups that allow more than ports 80 or 443 from all IP addresses
- Find security groups that allow more than inbound port _________ from all IP addresses
EC2-VPC
Cloudcheckr divides your EC2-VPC security group information in to two reports:
- Summary – the EC2-VPC Security Group Summary report gives you a high-level summary of the information regarding the EC2-VPCs associated with your AWS account. CloudCheckr includes a summary table showing the total security groups and the total security groups with no assigned resources. CloudCheckr also provides two charts: Security Groups by Region and Security Groups by VPC.
- List of EC2-VPC Security Groups – the list of security groups report gives you filterable details on the EC2-VPC security groups associated with your AWS account.
EC2-Classic
Cloudcheckr divides your EC2-Classic Security Group information in to two reports. CloudCheckr provide a summary table that has the total number of VPCs and two charts that show Security Groups by Region and Security Groups by VPC.
- Summary – the EC2-Classic Security Group Summary report gives you a high-level summary of the information regarding the EC2-Classic Security Group associated with your AWS account. CloudCheckr includes a summary table showing the total security groups and the total security groups with no assigned resources. CloudCheckr also provides two charts: Security Groups by Region and Security Groups by VPC.
- List of EC2-Classic Security Groups – the list of security groups report gives you details on the EC2-Classic security groups associated with your AWS account.
RDS
- Summary – the DB Security group summary report provides high-level information in your DB security groups including the total number of security groups, as well as the security groups with no DB instances assigned. CloudCheckr also provides charts on DB security groups by region, VPC, and instances.
- List of RDS Security Groups – the list of security groups report gives you filterable details on the RDS security groups associated with your AWS account.
Redshift
- Summary – this report displays the Redshift security groups contained in your AWS account. CloudCheckr provides data on the total security groups, total security groups with no assigned clusters, and a chart on security groups by region.
- List of Redshift Security Groups – the List of Security Groups report gives you filterable details on the Redshift security groups associated with your AWS account.
Elasticache
- Summary – this report displays the ElastiCache security groups contained in your AWS account. CloudCheckr provides data on the total security groups, total security groups with no assigned clusters, and a chart on security groups by region.
- List of Elasticache Security Groups – the list of security groups report gives you filterable details on the Elasticache security groups associated with your AWS account.