VPC限制出站访问某些网址

VPC限制出站访问某些网址

本文介绍了AWS VPC限制出站访问某些网址的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!

问题描述

我想限制我出境访问我的VPC。

I am trying to restrict my outbound access for my VPC.

我想限制出站访问某些网址,但安全组只让你设置IP和URL不需要。

I would like to restrict the outbound access to certain URL but the security group only let you set IPs and no URL.

有什么办法来限制网址,而不是IP地址的出站访问?

Is there any way to restrict outbound access by URL instead of IPs?

推荐答案

防火墙不能解决的网址。这将需要一高阶防火墙意识到HTTP协议内容。更多信息OSI模型上: http://en.wikipedia.org/wiki/OSI_model

The firewall does not resolve URLs. That would require a higher order firewall that is aware of the HTTP protocol contents. More Info on the OSI Model: http://en.wikipedia.org/wiki/OSI_model

您将与网络ACL在VPC中得到的最接近,是解决要阻止其IP地址的域。然而,这将阻止整个位点以及其还可以对IP地址托管的其他领域。同时很多网站可能会解决超过1个IP地址。

The closest you will get with the network ACL's in VPC, is to resolve the domains you want to block to its IP addresses. However, this will block the entire site as well as any other domains that may also be hosted on the IP address. Also many sites will likely resolve to more than 1 IP address.

您可能能够直接从那里安装某种类型的代理上的实例/过滤和处理的IP URL过滤。

You may be able to install some kind of proxy/filter on the instances directly and handle the IP url filtering from there.

这篇关于AWS VPC限制出站访问某些网址的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!

08-26 16:47