› Gareth Oakley

Hi. I’m Gareth Oakley - a cloud architect working at DOCOMO Digital.

If you’re used to setting up classic firewalls, you might be used to having the ability to allow ingress/egress not just from specific IP addresses or CIDR blocks but also from specific FQDNs (hostnames). Whilst there are caveats with these kinds of rules, it can be a useful ability to have - it’s easy to setup and ensure access to resources is kept up to date in instances where the IP address might change semi-frequently. You can’t define FQDN based security group rules in AWS - but there is a way to emulate it.

« Older posts Newer posts »