New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

VPC, subnetのセキュリティの見直しに伴うアーキテクチャ再設計 #2

Open

murawakimitsuhiro opened this issue May 8, 2020 · 0 comments

murawakimitsuhiro commented May 8, 2020

直したい部分

RDSへの外部からのアクセスを禁じる
ECSのポート開放部分の見直し
ALBの配置場所の再検討

修正アイデア (雑案)

ALB以外はpublicなsubnetの中にはおかないようにする
サービス間の連携を全てIAMでしか行わないようにする(これはサーバの実装にも影響するため結構面倒)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment