Security Group EFS1
incoming:
--- allow 2049 (NFS) from EFS1
outgoing:
--- allow any
Security Group RDS1
Security Group EFS1
Security Group APP1
incoming:
--- allow 80 from ELB1
--- allow 22 (SSH) from
departmental VPN/subnet
outgoing:
--- allow any
Security Group RDS1
incoming:
--- allow 3306 (MySQL) from RDS1
--- allow 3306 (MySQL) from
departmental VPN subnet
--- allow 6379 (redis) from RDS1
--- allow 6379 (redis) from
departmental VPN subnet
outgoing:
--- allow any
Security Group ELB1
incoming:
--- allow 80, 443 from 0.0.0.0/0
outgoing:
--- allow 80 to APP1
ElastiCache
cluster/node
Elastic Load Balancer
EC2 instances
users
RDS
EFS volume
80/443 HTTP/S
sysadmins
22 SSH
80 HTTP
2049 NFS
3306 MySQL
6379 redis
terminates HTTPS