When designing infrastructure we should minimize the blast radius. We should be designing for isolation and segmentation and limiting ingress and egress. In an ideal state there will be no entrance. Nothing would be allowed in. So is it possible to design a network where this is possible? The answer is, yes. We can design […]
cloudflare
Using Cloudflare for Public AWS Resources Securely
Using Cloudflare is an easy way to add security and performance improvements without breaking the bank. Plans start for free and provide access to the Cloudflare DNS and CDN https://www.cloudflare.com/plans/application-services/. You generally attach a security group with inbound rule 0.0.0.0/0 after setting up your public AWS resource. When using Cloudflare, there is a more secure […]