{"id":84257,"date":"2024-11-17T14:20:29","date_gmt":"2024-11-17T10:50:29","guid":{"rendered":"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/"},"modified":"2024-11-17T14:20:29","modified_gmt":"2024-11-17T10:50:29","slug":"in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk","status":"publish","type":"post","link":"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/","title":{"rendered":"\ud83d\udd12 \u0631\u0627\u0647\u0646\u0645\u0627\u06cc \u0639\u0645\u06cc\u0642 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc AWS \u0628\u0627 Terraform: Ingress\u060c Egress\u060c \u067e\u0648\u0631\u062a \u0647\u0627 \u0648 \u067e\u0631\u0648\u062a\u06a9\u0644 \u0647\u0627"},"content":{"rendered":"<p>Summarize this content to 400 words in Persian Lang <\/p>\n<p>  1. \u0645\u0642\u062f\u0645\u0647 \u0627\u06cc \u0628\u0631 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc AWS<\/p>\n<p>\ud83d\udd10 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 \u0647\u0627\u06cc \u0645\u062c\u0627\u0632\u06cc \u0628\u0631\u0627\u06cc \u0646\u0645\u0648\u0646\u0647 \u0647\u0627\u06cc EC2 \u06a9\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0634\u0628\u06a9\u0647 \u0631\u0627 \u06a9\u0646\u062a\u0631\u0644 \u0645\u06cc \u06a9\u0646\u062f.<br \/>\n\u0645\u062f\u06cc\u0631\u06cc\u062a \u0645\u06cc \u06a9\u0646\u0646\u062f \u0648\u0631\u0648\u062f (\u0648\u0631\u0648\u062f\u06cc) \u0648 \u062e\u0631\u0648\u062c \u062a\u0631\u0627\u0641\u06cc\u06a9 (\u062e\u0631\u0648\u062c\u06cc)\u060c \u062a\u0636\u0645\u06cc\u0646 \u0627\u0631\u062a\u0628\u0627\u0637 \u0627\u06cc\u0645\u0646 \u0628\u0631\u0627\u06cc \u0646\u0645\u0648\u0646\u0647 \u0647\u0627\u06cc EC2 \u0634\u0645\u0627.<\/p>\n<p>  \u0645\u0641\u0627\u0647\u06cc\u0645 \u06a9\u0644\u06cc\u062f\u06cc:<\/p>\n<p>\u26a1 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0648\u0631\u0648\u062f: \u06a9\u0646\u062a\u0631\u0644 \u0648\u0631\u0648\u062f\u06cc \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0628\u0647 \u0646\u0645\u0648\u0646\u0647 \u0647\u0627\u06cc EC2<\/p>\n<p>\ud83d\udeaa \u0642\u0648\u0627\u0646\u06cc\u0646 \u062e\u0631\u0648\u062c: \u06a9\u0646\u062a\u0631\u0644 \u062e\u0631\u0648\u062c\u06cc \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0627\u0632 \u0646\u0645\u0648\u0646\u0647 \u0647\u0627\u06cc EC2<\/p>\n<p>\ud83c\udf10 \u062f\u0648\u0644\u062a\u06cc: \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u062d\u0627\u0644\u062a \u062f\u0627\u0631 \u0647\u0633\u062a\u0646\u062f\u060c \u0628\u0647 \u0627\u06cc\u0646 \u0645\u0639\u0646\u06cc \u06a9\u0647 \u0627\u06af\u0631 \u0628\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0648\u0631\u0648\u062f\u06cc \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u06cc\u062f\u060c \u067e\u0627\u0633\u062e \u062e\u0631\u0648\u062c\u06cc \u0645\u0631\u0628\u0648\u0637\u0647 \u0628\u0647 \u0637\u0648\u0631 \u062e\u0648\u062f\u06a9\u0627\u0631 \u0645\u062c\u0627\u0632 \u0627\u0633\u062a.<\/p>\n<p>\ud83d\udee1\ufe0f \u0686\u0646\u062f\u06cc\u0646 \u06af\u0631\u0648\u0647 \u0627\u0645\u0646\u06cc\u062a\u06cc: \u0645\u06cc \u062a\u0648\u0627\u0646\u06cc\u062f \u0686\u0646\u062f\u06cc\u0646 \u06af\u0631\u0648\u0647 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0631\u0627 \u0628\u0647 \u06cc\u06a9 \u0646\u0645\u0648\u0646\u0647 EC2 \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0647\u06cc\u062f \u0648 \u0642\u0648\u0627\u0646\u06cc\u0646\u06cc \u0631\u0627 \u0628\u0631\u0627\u06cc \u0647\u0631 \u06a9\u062f\u0627\u0645 \u062a\u0639\u0631\u06cc\u0641 \u06a9\u0646\u06cc\u062f.<\/p>\n<p>  2. \u067e\u0648\u0631\u062a \u0647\u0627 \u0648 \u067e\u0631\u0648\u062a\u06a9\u0644 \u0647\u0627 \u062f\u0631 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc AWS<\/p>\n<p>  \ud83d\udd11 \u067e\u0648\u0631\u062a \u0647\u0627:<\/p>\n<p>\ud83d\udda5\ufe0f \u0634\u0645\u0627\u0631\u0647 \u067e\u0648\u0631\u062a \u0633\u0631\u0648\u06cc\u0633 \u0647\u0627 \u0648 \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc\u06cc \u0631\u0627 \u06a9\u0647 \u0645\u06cc \u062a\u0648\u0627\u0646\u0646\u062f \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0646\u0645\u0648\u0646\u0647 \u0647\u0627\u06cc EC2 \u0634\u0645\u0627 \u0627\u0631\u062a\u0628\u0627\u0637 \u0628\u0631\u0642\u0631\u0627\u0631 \u06a9\u0646\u0646\u062f\u060c \u062a\u0639\u0631\u06cc\u0641 \u06a9\u0646\u06cc\u062f.<\/p>\n<p>\u067e\u0648\u0631\u062a 80: HTTP (\u062a\u0631\u0627\u0641\u06cc\u06a9 \u0648\u0628)<\/p>\n<p>\u067e\u0648\u0631\u062a 443: HTTPS (\u062a\u0631\u0627\u0641\u06cc\u06a9 \u0648\u0628 \u0627\u0645\u0646)<\/p>\n<p>\u067e\u0648\u0631\u062a 22: SSH (\u0648\u0631\u0648\u062f \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631)<\/p>\n<p>\u067e\u0648\u0631\u062a 3389: RDP (\u062f\u0633\u06a9\u062a\u0627\u067e \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631)<\/p>\n<p>  \ud83d\udce1 \u067e\u0631\u0648\u062a\u06a9\u0644 \u0647\u0627:<\/p>\n<p>\ud83d\udd01 TCP: \u0642\u0627\u0628\u0644 \u0627\u0639\u062a\u0645\u0627\u062f \u067e\u0631\u0648\u062a\u06a9\u0644 \u0645\u0628\u062a\u0646\u06cc \u0628\u0631 \u0627\u062a\u0635\u0627\u0644\u060c \u06a9\u0647 \u062a\u0648\u0633\u0637 \u0627\u06a9\u062b\u0631 \u0633\u0631\u0648\u06cc\u0633 \u0647\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc \u0634\u0648\u062f (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c HTTP\u060c SSH\u060c \u0627\u062a\u0635\u0627\u0644\u0627\u062a \u067e\u0627\u06cc\u06af\u0627\u0647 \u062f\u0627\u062f\u0647).<\/p>\n<p>\ud83d\ude80 UDP: \u0633\u0631\u06cc\u0639\u062a\u0631\u060c \u0628\u062f\u0648\u0646 \u0627\u062a\u0635\u0627\u0644 \u067e\u0631\u0648\u062a\u06a9\u0644\u060c \u0628\u0631\u0627\u06cc \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc\u06cc \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc \u0634\u0648\u062f \u06a9\u0647 \u062f\u0631 \u0622\u0646 \u0633\u0631\u0639\u062a \u0628\u0631 \u0642\u0627\u0628\u0644\u06cc\u062a \u0627\u0637\u0645\u06cc\u0646\u0627\u0646 \u0627\u0648\u0644\u0648\u06cc\u062a \u062f\u0627\u0631\u062f (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c DNS\u060c \u067e\u062e\u0634 \u0648\u06cc\u062f\u0626\u0648).<\/p>\n<p>\u26a1 ICMP: \u0628\u062f\u0648\u0646 \u0627\u062a\u0635\u0627\u0644 \u067e\u0631\u0648\u062a\u06a9\u0644 \u0645\u0648\u0631\u062f \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0628\u0631\u0627\u06cc \u062a\u0634\u062e\u06cc\u0635 \u0634\u0628\u06a9\u0647 (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c \u067e\u06cc\u0646\u06af\u060c traceroute).<\/p>\n<p>  3. \u0642\u0648\u0627\u0646\u06cc\u0646 \u0648\u0631\u0648\u062f \u0648 \u062e\u0631\u0648\u062c<\/p>\n<p>  \ud83d\uded1 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0648\u0631\u0648\u062f:<\/p>\n<p>\u0627\u06cc\u0646 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0645\u0634\u062e\u0635 \u0645\u06cc \u06a9\u0646\u0646\u062f \u06a9\u0647 \u06a9\u062f\u0627\u0645 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0648\u0631\u0648\u062f\u06cc \u0628\u0647 \u0646\u0645\u0648\u0646\u0647 EC2 \u0634\u0645\u0627 \u0645\u062c\u0627\u0632 \u0627\u0633\u062a.<\/p>\n<p>  \u0645\u062b\u0627\u0644: \u0627\u062c\u0627\u0632\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 HTTP (\u067e\u0648\u0631\u062a 80)<\/p>\n<p>resource &#8220;aws_security_group_rule&#8221; &#8220;allow_http&#8221; {<br \/>\n  type              = &#8220;ingress&#8221;   # \ud83d\udd25 Inbound traffic<br \/>\n  from_port         = 80          # \ud83d\udd11 Port 80 for HTTP<br \/>\n  to_port           = 80          # \ud83d\udd11 Allow to Port 80<br \/>\n  protocol          = &#8220;tcp&#8221;       # \ud83d\udce1 TCP Protocol<br \/>\n  cidr_blocks       = [&#8220;0.0.0.0\/0&#8221;]  # \ud83c\udf0d Any IP<br \/>\n  security_group_id = &#8220;sg-123456&#8221;   # \ud83d\udee1\ufe0f Security Group ID<br \/>\n}<\/p>\n<p>    \u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/p>\n<p>    \u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/p>\n<p>\ud83c\udfaf from_port = 80: \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0648\u0631\u0648\u062f\u06cc \u0631\u0627 \u0645\u0634\u062e\u0635 \u0645\u06cc \u06a9\u0646\u062f \u067e\u0648\u0631\u062a 80 (HTTP).<\/p>\n<p>\ud83c\udf10 \u067e\u0631\u0648\u062a\u06a9\u0644 = tcp: \u0646\u0634\u0627\u0646 \u0645\u06cc \u062f\u0647\u062f TCP \u067e\u0631\u0648\u062a\u06a9\u0644<\/p>\n<p>\ud83c\udf0d cidr_blocks = [&#8220;0.0.0.0\/0&#8221;]: \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u0627\u0632 \u0647\u0631 IP \u0631\u0627 \u0645\u06cc \u062f\u0647\u062f.<\/p>\n<p>  \ud83d\udeaa \u0642\u0648\u0627\u0646\u06cc\u0646 \u062e\u0631\u0648\u062c:<\/p>\n<p>\u0627\u06cc\u0646 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0645\u0634\u062e\u0635 \u0645\u06cc \u06a9\u0646\u0646\u062f \u06a9\u0647 \u06a9\u062f\u0627\u0645 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u062e\u0631\u0648\u062c\u06cc \u0627\u0632 \u0646\u0645\u0648\u0646\u0647 EC2 \u0634\u0645\u0627 \u0645\u062c\u0627\u0632 \u0627\u0633\u062a.<\/p>\n<p>  \u0645\u062b\u0627\u0644: \u0628\u0647 \u0647\u0645\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u062e\u0631\u0648\u062c\u06cc \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u06cc\u062f<\/p>\n<p>resource &#8220;aws_security_group_rule&#8221; &#8220;allow_all_egress&#8221; {<br \/>\n  type              = &#8220;egress&#8221;    # \ud83d\udd04 Outbound traffic<br \/>\n  from_port         = 0           # \ud83d\udd11 Any Port<br \/>\n  to_port           = 65535       # \ud83d\udd11 Any Port<br \/>\n  protocol          = &#8220;-1&#8221;        # \ud83c\udf10 Any Protocol<br \/>\n  cidr_blocks       = [&#8220;0.0.0.0\/0&#8221;]  # \ud83c\udf0d Any IP<br \/>\n  security_group_id = &#8220;sg-123456&#8221;   # \ud83d\udee1\ufe0f Security Group ID<br \/>\n}<\/p>\n<p>    \u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/p>\n<p>    \u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/p>\n<p>\ud83c\udfaf from_port = 0 \u0648 to_port = 65535: \u0628\u0647 \u0647\u0645\u0647 \u0634\u0645\u0627\u0631\u0647 \u067e\u0648\u0631\u062a \u0647\u0627 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f.<\/p>\n<p>\ud83c\udf10 \u067e\u0631\u0648\u062a\u06a9\u0644 = &#8220;-1&#8221;: \u0647\u0631 \u067e\u0631\u0648\u062a\u06a9\u0644 \u0645\u062c\u0627\u0632 \u0631\u0627 \u0645\u0634\u062e\u0635 \u0645\u06cc \u06a9\u0646\u062f.<\/p>\n<p>\ud83c\udf0d cidr_blocks = [&#8220;0.0.0.0\/0&#8221;]: \u0628\u0647 \u062a\u0645\u0627\u0645 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u062e\u0631\u0648\u062c\u06cc \u0628\u0647 \u0647\u0631 \u0645\u0642\u0635\u062f\u06cc \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f.<\/p>\n<p>  4. \u062a\u0648\u0636\u06cc\u062d \u0645\u0641\u0635\u0644 \u067e\u0631\u0648\u062a\u06a9\u0644 \u0647\u0627<\/p>\n<p>  \ud83d\udd01 TCP (\u067e\u0631\u0648\u062a\u06a9\u0644 \u06a9\u0646\u062a\u0631\u0644 \u0627\u0646\u062a\u0642\u0627\u0644):<\/p>\n<p>\ud83d\udd12 \u0627\u062a\u0635\u0627\u0644 \u06af\u0631\u0627 \u067e\u0631\u0648\u062a\u06a9\u0644\u06cc \u06a9\u0647 \u0627\u0631\u062a\u0628\u0627\u0637 \u0642\u0627\u0628\u0644 \u0627\u0639\u062a\u0645\u0627\u062f \u0631\u0627 \u062a\u0636\u0645\u06cc\u0646 \u0645\u06cc \u06a9\u0646\u062f.<br \/>\n\u0627\u06cc\u0646 \u062a\u0636\u0645\u06cc\u0646 \u0645\u06cc \u06a9\u0646\u062f \u06a9\u0647 \u062f\u0627\u062f\u0647 \u0647\u0627 \u0628\u0647 \u062a\u0631\u062a\u06cc\u0628 \u0635\u062d\u06cc\u062d \u062f\u0631\u06cc\u0627\u0641\u062a \u0645\u06cc \u0634\u0648\u0646\u062f \u0648 \u062f\u0633\u062a \u0646\u062e\u0648\u0631\u062f\u0647 \u0647\u0633\u062a\u0646\u062f.<\/p>\n<p>  \u0645\u062b\u0627\u0644: \u0628\u0631\u0627\u06cc \u0648\u0631\u0648\u062f \u0627\u06cc\u0645\u0646 \u0628\u0647 SSH (\u067e\u0648\u0631\u062a 22) \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u06cc\u062f<\/p>\n<p>resource &#8220;aws_security_group_rule&#8221; &#8220;allow_ssh&#8221; {<br \/>\n  type              = &#8220;ingress&#8221;<br \/>\n  from_port         = 22          # \ud83d\udd11 Port 22 for SSH<br \/>\n  to_port           = 22<br \/>\n  protocol          = &#8220;tcp&#8221;<br \/>\n  cidr_blocks       = [&#8220;0.0.0.0\/0&#8221;]  # \ud83c\udf0d Any IP address<br \/>\n  security_group_id = &#8220;sg-123456&#8221;<br \/>\n}<\/p>\n<p>    \u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/p>\n<p>    \u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/p>\n<p>  \ud83d\ude80 UDP (\u067e\u0631\u0648\u062a\u06a9\u0644 \u062f\u06cc\u062a\u0627\u06af\u0631\u0627\u0645 \u06a9\u0627\u0631\u0628\u0631):<\/p>\n<p>\u26a1 \u0628\u062f\u0648\u0646 \u0627\u062a\u0635\u0627\u0644 \u067e\u0631\u0648\u062a\u06a9\u0644 \u0645\u0648\u0631\u062f \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u062f\u0631 \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc\u06cc \u06a9\u0647 \u0633\u0631\u0639\u062a \u0628\u0631 \u0642\u0627\u0628\u0644\u06cc\u062a \u0627\u0637\u0645\u06cc\u0646\u0627\u0646 \u0627\u0648\u0644\u0648\u06cc\u062a \u062f\u0627\u0631\u062f (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c \u067e\u062e\u0634 \u0648\u06cc\u062f\u06cc\u0648\u060c \u0628\u0627\u0632\u06cc \u0622\u0646\u0644\u0627\u06cc\u0646).<br \/>\n\u062a\u062d\u0648\u06cc\u0644 \u06cc\u0627 \u0633\u0641\u0627\u0631\u0634 \u062f\u0627\u062f\u0647 \u0631\u0627 \u062a\u0636\u0645\u06cc\u0646 \u0646\u0645\u06cc \u06a9\u0646\u062f.<\/p>\n<p>  \u0645\u062b\u0627\u0644: \u062f\u0631\u062e\u0648\u0627\u0633\u062a\u200c\u0647\u0627\u06cc DNS (\u067e\u0648\u0631\u062a 53) \u0631\u0627 \u0645\u062c\u0627\u0632 \u06a9\u0646\u06cc\u062f<\/p>\n<p>resource &#8220;aws_security_group_rule&#8221; &#8220;allow_dns&#8221; {<br \/>\n  type              = &#8220;ingress&#8221;<br \/>\n  from_port         = 53          # \ud83d\udd11 Port 53 for DNS<br \/>\n  to_port           = 53<br \/>\n  protocol          = &#8220;udp&#8221;       # \ud83d\udce1 UDP Protocol<br \/>\n  cidr_blocks       = [&#8220;0.0.0.0\/0&#8221;]  # \ud83c\udf0d Any IP address<br \/>\n  security_group_id = &#8220;sg-123456&#8221;<br \/>\n}<\/p>\n<p>    \u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/p>\n<p>    \u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/p>\n<p>  \u26a1 ICMP (\u067e\u0631\u0648\u062a\u06a9\u0644 \u067e\u06cc\u0627\u0645 \u06a9\u0646\u062a\u0631\u0644 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a):<\/p>\n<p>\ud83c\udf10 \u0628\u062f\u0648\u0646 \u0627\u062a\u0635\u0627\u0644 \u067e\u0631\u0648\u062a\u06a9\u0644 \u0628\u0631\u0627\u06cc \u062a\u0634\u062e\u06cc\u0635 \u0634\u0628\u06a9\u0647 (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c \u067e\u06cc\u0646\u06af\u060c traceroute).<br \/>\n\u0627\u0632 \u067e\u0648\u0631\u062a \u0647\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0646\u0645\u06cc \u06a9\u0646\u062f. \u062f\u0631 \u0639\u0648\u0636\u060c \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc \u06a9\u0646\u062f \u0627\u0646\u0648\u0627\u0639 ICMP (\u0645\u062b\u0644\u0627 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0627\u06a9\u0648\u060c \u067e\u0627\u0633\u062e \u0627\u06a9\u0648).<\/p>\n<p>  \u0645\u062b\u0627\u0644: \u0627\u062c\u0627\u0632\u0647 \u067e\u06cc\u0646\u06af (\u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0627\u06a9\u0648 ICMP)<\/p>\n<p>resource &#8220;aws_security_group_rule&#8221; &#8220;allow_ping&#8221; {<br \/>\n  type              = &#8220;ingress&#8221;<br \/>\n  from_port         = -1          # ICMP doesn\u2019t use ports<br \/>\n  to_port           = -1<br \/>\n  protocol          = &#8220;icmp&#8221;      # \ud83d\udce1 ICMP Protocol<br \/>\n  cidr_blocks       = [&#8220;0.0.0.0\/0&#8221;]  # \ud83c\udf0d Any IP<br \/>\n  security_group_id = &#8220;sg-123456&#8221;<br \/>\n}<\/p>\n<p>    \u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/p>\n<p>    \u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/p>\n<p>\ud83c\udfaf from_port = -1 \u0648 to_port = -1: \u0646\u0634\u0627\u0646 \u0645\u06cc \u062f\u0647\u062f ICMP (\u0628\u062f\u0648\u0646 \u067e\u0648\u0631\u062a).<\/p>\n<p>\ud83d\udce1 \u067e\u0631\u0648\u062a\u06a9\u0644 = &#8220;icmp&#8221;: \u0645\u0634\u062e\u0635 \u0645\u06cc \u06a9\u0646\u062f ICMP \u067e\u0631\u0648\u062a\u06a9\u0644<\/p>\n<p>  5. \u0627\u0631\u062a\u0628\u0627\u0637 \u0632\u06cc\u0631\u0634\u0628\u06a9\u0647 \u062e\u0635\u0648\u0635\u06cc \u0628\u0627 \u0632\u06cc\u0631\u0634\u0628\u06a9\u0647 \u0639\u0645\u0648\u0645\u06cc<\/p>\n<p>\u0628\u0631\u0627\u06cc \u0641\u0639\u0627\u0644 \u06a9\u0631\u062f\u0646 \u0627\u0631\u062a\u0628\u0627\u0637 \u0628\u06cc\u0646 a \u0632\u06cc\u0631 \u0634\u0628\u06a9\u0647 \u062e\u0635\u0648\u0635\u06cc \u0648 \u0627\u0644\u0641 \u0632\u06cc\u0631 \u0634\u0628\u06a9\u0647 \u0639\u0645\u0648\u0645\u06cc\u060c \u0631\u0627\u0647 \u0627\u0646\u062f\u0627\u0632\u06cc \u06cc\u06a9 \u062f\u0631\u0648\u0627\u0632\u0647 NAT \u06cc\u0627 \u0646\u0645\u0648\u0646\u0647 NAT \u062f\u0631 \u0632\u06cc\u0631 \u0634\u0628\u06a9\u0647 \u0639\u0645\u0648\u0645\u06cc. \u0632\u06cc\u0631\u0634\u0628\u06a9\u0647 \u062e\u0635\u0648\u0635\u06cc \u062a\u0631\u0627\u0641\u06cc\u06a9 \u062e\u0648\u062f \u0631\u0627 \u0627\u0632 \u0637\u0631\u06cc\u0642 NAT \u062c\u0647\u062a \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a \u0647\u062f\u0627\u06cc\u062a \u0645\u06cc \u06a9\u0646\u062f\u060c \u062f\u0631 \u062d\u0627\u0644\u06cc \u06a9\u0647 \u0632\u06cc\u0631\u0634\u0628\u06a9\u0647 \u0639\u0645\u0648\u0645\u06cc \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0645\u0633\u062a\u0642\u06cc\u0645\u0627\u064b \u0628\u0627 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a \u0627\u0631\u062a\u0628\u0627\u0637 \u0628\u0631\u0642\u0631\u0627\u0631 \u06a9\u0646\u062f.<\/p>\n<p>  \u0646\u06a9\u0627\u062a \u06a9\u0644\u06cc\u062f\u06cc:<\/p>\n<p>\u0632\u06cc\u0631\u0634\u0628\u06a9\u0647 \u0639\u0645\u0648\u0645\u06cc: \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0637\u0648\u0631 \u0645\u0633\u062a\u0642\u06cc\u0645 \u0628\u0647 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a \u062f\u0633\u062a\u0631\u0633\u06cc \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u062f.<\/p>\n<p>\u0632\u06cc\u0631\u0634\u0628\u06a9\u0647 \u062e\u0635\u0648\u0635\u06cc: \u0646\u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0645\u0633\u062a\u0642\u06cc\u0645\u0627\u064b \u0628\u0647 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a \u062f\u0633\u062a\u0631\u0633\u06cc \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u062f\u060c \u0627\u0645\u0627 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0622\u0646 \u0631\u0627 \u0627\u0632 \u0637\u0631\u06cc\u0642 a \u0647\u062f\u0627\u06cc\u062a \u0645\u06cc \u06a9\u0646\u062f \u062f\u0631\u0648\u0627\u0632\u0647 NAT \u062f\u0631 \u0632\u06cc\u0631 \u0634\u0628\u06a9\u0647 \u0639\u0645\u0648\u0645\u06cc.<\/p>\n<p>\u062f\u0631\u0648\u0627\u0632\u0647 NAT: \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a \u062e\u0631\u0648\u062c\u06cc \u0631\u0627 \u0628\u0631\u0627\u06cc \u0646\u0645\u0648\u0646\u0647 \u0647\u0627\u06cc \u062e\u0635\u0648\u0635\u06cc \u0648 \u062f\u0631 \u0639\u06cc\u0646 \u062d\u0627\u0644 \u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0627\u0632 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0648\u0631\u0648\u062f\u06cc \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f.<\/p>\n<p>  6. \u0628\u0647\u062a\u0631\u06cc\u0646 \u0631\u0648\u0634 \u0647\u0627 \u0628\u0631\u0627\u06cc \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u062f\u0631 AWS<\/p>\n<p>\ud83d\udd12 \u06a9\u0645\u062a\u0631\u06cc\u0646 \u0627\u0645\u062a\u06cc\u0627\u0632: \u0641\u0642\u0637 \u0628\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0636\u0631\u0648\u0631\u06cc \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u06cc\u062f. \u0645\u062b\u0644\u0627 \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u06cc\u062f SSH (\u067e\u0648\u0631\u062a 22) \u0641\u0642\u0637 \u0627\u0632 \u0622\u062f\u0631\u0633 \u0647\u0627\u06cc IP \u0642\u0627\u0628\u0644 \u0627\u0639\u062a\u0645\u0627\u062f.<\/p>\n<p>\ud83d\udee1\ufe0f \u0628\u0644\u0648\u06a9 \u0647\u0627\u06cc \u062e\u0627\u0635 CIDR: \u0627\u0632 \u0645\u0635\u0631\u0641 \u062e\u0648\u062f\u062f\u0627\u0631\u06cc \u06a9\u0646\u06cc\u062f 0.0.0.0\/0- \u0627\u0632 \u0645\u062d\u062f\u0648\u062f\u0647 \u0647\u0627\u06cc IP \u062e\u0627\u0635 \u062a\u0631 \u0628\u0631\u0627\u06cc \u0628\u0647\u0628\u0648\u062f \u0627\u0645\u0646\u06cc\u062a \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u062f.<\/p>\n<p>\ud83c\udfaf \u0627\u0632 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0645\u0628\u062a\u0646\u06cc \u0628\u0631 \u0646\u0642\u0634 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u062f: \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0645\u062e\u062a\u0644\u0641 \u0631\u0627 \u0628\u0631 \u0627\u0633\u0627\u0633 \u0646\u0642\u0634 \u0647\u0627 \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0647\u06cc\u062f (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c \u0648\u0628 \u0633\u0631\u0648\u0631\u060c \u0633\u0631\u0648\u0631 \u067e\u0627\u06cc\u06af\u0627\u0647 \u062f\u0627\u062f\u0647).<\/p>\n<p>\ud83d\udd04 \u0628\u0631\u0631\u0633\u06cc \u062f\u0648\u0631\u0647 \u0627\u06cc: \u0628\u0647 \u0637\u0648\u0631 \u0645\u0646\u0638\u0645 \u0642\u0648\u0627\u0646\u06cc\u0646 \u06af\u0631\u0648\u0647 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0631\u0627 \u0628\u0631\u0631\u0633\u06cc \u0648 \u0628\u0647 \u0631\u0648\u0632 \u06a9\u0646\u06cc\u062f \u062a\u0627 \u0645\u0637\u0645\u0626\u0646 \u0634\u0648\u06cc\u062f \u06a9\u0647 \u0622\u0646\u0647\u0627 \u0628\u0627 \u0646\u06cc\u0627\u0632\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0634\u0645\u0627 \u0645\u0637\u0627\u0628\u0642\u062a \u062f\u0627\u0631\u0646\u062f.<\/p>\n<p>\ud83d\udca1 \u0637\u0631\u0627\u062d\u06cc \u062f\u0648\u0644\u062a\u06cc: \u0627\u0632 \u0622\u0646\u062c\u0627\u06cc\u06cc \u06a9\u0647 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u062d\u0627\u0644\u062a \u062f\u0627\u0631 \u0647\u0633\u062a\u0646\u062f\u060c \u0627\u062c\u0627\u0632\u0647 \u062f\u0627\u062f\u0646 \u0628\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0648\u0631\u0648\u062f\u06cc \u0628\u0647 \u0637\u0648\u0631 \u062e\u0648\u062f\u06a9\u0627\u0631 \u0628\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u062e\u0631\u0648\u062c\u06cc \u0645\u0631\u0628\u0648\u0637\u0647 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f.<\/p>\n<p>  7. \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc Terraform \u0628\u0631\u0627\u06cc \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc (Ingress &#038; Egress)<\/p>\n<p>\u0627\u06cc\u0646\u062c\u0627 \u06cc\u06a9 \u0627\u0633\u062a \u0645\u062b\u0627\u0644 \u06a9\u0627\u0645\u0644 \u0627\u0632 \u06cc\u06a9 \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc Terraform \u0628\u0631\u0627\u06cc \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc AWS\u060c \u0627\u0632 \u062c\u0645\u0644\u0647 \u0647\u0645 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0648\u0631\u0648\u062f \u0648 \u0647\u0645 \u062e\u0631\u0648\u062c:<\/p>\n<p>resource &#8220;aws_security_group&#8221; &#8220;example&#8221; {<br \/>\n  name        = &#8220;example-security-group&#8221;<br \/>\n  description = &#8220;Allow HTTP and HTTPS access, restrict SSH to specific IP&#8221;<\/p>\n<p>  # Ingress rule: Allow HTTP (Port 80) from anywhere<br \/>\n  resource &#8220;aws_security_group_rule&#8221; &#8220;allow_http&#8221; {<br \/>\n    type              = &#8220;ingress&#8221;   # \ud83d\udd25 Inbound traffic<br \/>\n    from_port         = 80          # \ud83d\udd11 Port 80 for HTTP<br \/>\n    to_port           = 80          # \ud83d\udd11 Allow to Port 80<br \/>\n    protocol          = &#8220;tcp&#8221;       # \ud83d\udce1 TCP Protocol<br \/>\n    cidr_blocks       = [&#8220;0.0.0.0\/0&#8221;]  # \ud83c\udf0d Any IP<br \/>\n    security_group_id = aws_security_group.example.id<br \/>\n  }<\/p>\n<p>  # Egress rule: Allow all outbound traffic<br \/>\n  resource &#8220;aws_security_group_rule&#8221; &#8220;allow_all_egress&#8221; {<br \/>\n    type              = &#8220;egress&#8221;    # \ud83d\udd04 Outbound traffic<br \/>\n    from_port         = 0           # \ud83d\udd11 Any Port<br \/>\n    to_port           = 65535       # \ud83d\udd11 Any Port<br \/>\n    protocol          = &#8220;-1&#8221;        # \ud83c\udf10 Any Protocol<br \/>\n    cidr_blocks       = [&#8220;0.0.0.<\/p>\n<p>0\/0&#8221;]  # \ud83c\udf0d Any IP<br \/>\n    security_group_id = aws_security_group.example.id<br \/>\n  }<br \/>\n}<\/p>\n<p>    \u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/p>\n<p>    \u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/p>\n<p>  8. \u0646\u062a\u06cc\u062c\u0647 \u06af\u06cc\u0631\u06cc<\/p>\n<p>\u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc AWS \u0647\u0633\u062a\u0646\u062f \u0628\u0631\u0627\u06cc \u0645\u062f\u06cc\u0631\u06cc\u062a \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0634\u0628\u06a9\u0647 \u0636\u0631\u0648\u0631\u06cc \u0627\u0633\u062a \u0628\u0647 \u0646\u0645\u0648\u0646\u0647 \u0647\u0627\u06cc EC2 \u0634\u0645\u0627.<\/p>\n<p>\u0642\u0648\u0627\u0646\u06cc\u0646 \u0648\u0631\u0648\u062f \u06a9\u0646\u062a\u0631\u0644 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0648\u0631\u0648\u062f\u06cc\u060c \u062f\u0631 \u062d\u0627\u0644\u06cc \u06a9\u0647 \u0642\u0648\u0627\u0646\u06cc\u0646 \u062e\u0631\u0648\u062c \u062a\u0631\u0627\u0641\u06cc\u06a9 \u062e\u0631\u0648\u062c\u06cc \u0631\u0627 \u0645\u062f\u06cc\u0631\u06cc\u062a \u06a9\u0646\u06cc\u062f<br \/>\n\u0628\u0627 \u062f\u0631\u06a9 \u0686\u06af\u0648\u0646\u06af\u06cc \u067e\u0648\u0631\u062a \u0647\u0627\u060c \u067e\u0631\u0648\u062a\u06a9\u0644 \u0647\u0627\u060c \u0648 \u0628\u0644\u0648\u06a9 \u0647\u0627\u06cc CIDR \u0628\u0627 \u0647\u0645\u06a9\u0627\u0631\u06cc \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc\u060c \u0645\u06cc \u062a\u0648\u0627\u0646\u06cc\u062f \u0627\u0637\u0645\u06cc\u0646\u0627\u0646 \u062d\u0627\u0635\u0644 \u06a9\u0646\u06cc\u062f \u06a9\u0647 \u0632\u06cc\u0631\u0633\u0627\u062e\u062a AWS \u0634\u0645\u0627 \u0648\u062c\u0648\u062f \u062f\u0627\u0631\u062f \u0627\u0645\u0646 \u0648 \u0628\u0647 \u062e\u0648\u0628\u06cc \u0645\u062f\u06cc\u0631\u06cc\u062a \u0645\u06cc \u0634\u0648\u062f.<\/p>\n<p>\u0627\u06cc\u0646 \u06cc\u0627\u062f\u062f\u0627\u0634\u062a \u0647\u0627 \u0628\u0627\u06cc\u062f \u0628\u0647 \u0631\u0648\u0634\u0646 \u0634\u062f\u0646 \u0645\u0641\u0627\u0647\u06cc\u0645 \u06a9\u0645\u06a9 \u06a9\u0646\u0646\u062f \u0642\u0648\u0627\u0646\u06cc\u0646 \u0648\u0631\u0648\u062f \u0648 \u062e\u0631\u0648\u062c\u060c \u067e\u0648\u0631\u062a \u0647\u0627\u060c \u0648 \u067e\u0631\u0648\u062a\u06a9\u0644 \u0647\u0627 \u062f\u0631 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc AWS. \u0628\u0627 \u062e\u06cc\u0627\u0644 \u0631\u0627\u062d\u062a \u0627\u06cc\u0646 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0648 \u062a\u0646\u0638\u06cc\u0645\u0627\u062a \u0631\u0627 \u062f\u0631 Terraform \u0628\u0631\u0627\u06cc \u0645\u0648\u0627\u0631\u062f \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u062e\u0648\u062f \u0622\u0632\u0645\u0627\u06cc\u0634 \u06a9\u0646\u06cc\u062f!<\/p>\n<div data-article-id=\"2107955\" id=\"article-body\">\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_85 counter-hierarchy ez-toc-counter-rtl ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">\u0641\u0647\u0631\u0633\u062a \u0645\u0637\u0627\u0644\u0628<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"\u062a\u063a\u06cc\u06cc\u0631 \u0648\u0636\u0639\u06cc\u062a \u0641\u0647\u0631\u0633\u062a \u0645\u0637\u0627\u0644\u0628\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#1_%D9%85%D9%82%D8%AF%D9%85%D9%87_%D8%A7%DB%8C_%D8%A8%D8%B1_%DA%AF%D8%B1%D9%88%D9%87_%D9%87%D8%A7%DB%8C_%D8%A7%D9%85%D9%86%DB%8C%D8%AA%DB%8C_AWS\" >1. \u0645\u0642\u062f\u0645\u0647 \u0627\u06cc \u0628\u0631 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc AWS<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#%D9%85%D9%81%D8%A7%D9%87%DB%8C%D9%85_%DA%A9%D9%84%DB%8C%D8%AF%DB%8C\" >\u0645\u0641\u0627\u0647\u06cc\u0645 \u06a9\u0644\u06cc\u062f\u06cc:<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#2_%D9%BE%D9%88%D8%B1%D8%AA_%D9%87%D8%A7_%D9%88_%D9%BE%D8%B1%D9%88%D8%AA%DA%A9%D9%84_%D9%87%D8%A7_%D8%AF%D8%B1_%DA%AF%D8%B1%D9%88%D9%87_%D9%87%D8%A7%DB%8C_%D8%A7%D9%85%D9%86%DB%8C%D8%AA%DB%8C_AWS\" >2. \u067e\u0648\u0631\u062a \u0647\u0627 \u0648 \u067e\u0631\u0648\u062a\u06a9\u0644 \u0647\u0627 \u062f\u0631 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc AWS<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#%F0%9F%94%91_%D9%BE%D9%88%D8%B1%D8%AA_%D9%87%D8%A7\" >\ud83d\udd11 \u067e\u0648\u0631\u062a \u0647\u0627:<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#%F0%9F%93%A1_%D9%BE%D8%B1%D9%88%D8%AA%DA%A9%D9%84_%D9%87%D8%A7\" >\ud83d\udce1 \u067e\u0631\u0648\u062a\u06a9\u0644 \u0647\u0627:<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#3_%D9%82%D9%88%D8%A7%D9%86%DB%8C%D9%86_%D9%88%D8%B1%D9%88%D8%AF_%D9%88_%D8%AE%D8%B1%D9%88%D8%AC\" >3. \u0642\u0648\u0627\u0646\u06cc\u0646 \u0648\u0631\u0648\u062f \u0648 \u062e\u0631\u0648\u062c<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#%F0%9F%9B%91_%D9%82%D9%88%D8%A7%D9%86%DB%8C%D9%86_%D9%88%D8%B1%D9%88%D8%AF\" >\ud83d\uded1 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0648\u0631\u0648\u062f:<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#%D9%85%D8%AB%D8%A7%D9%84_%D8%A7%D8%AC%D8%A7%D8%B2%D9%87_%D8%AA%D8%B1%D8%A7%D9%81%DB%8C%DA%A9_HTTP_%D9%BE%D9%88%D8%B1%D8%AA_80\" >\u0645\u062b\u0627\u0644: \u0627\u062c\u0627\u0632\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 HTTP (\u067e\u0648\u0631\u062a 80)<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#%F0%9F%9A%AA_%D9%82%D9%88%D8%A7%D9%86%DB%8C%D9%86_%D8%AE%D8%B1%D9%88%D8%AC\" >\ud83d\udeaa \u0642\u0648\u0627\u0646\u06cc\u0646 \u062e\u0631\u0648\u062c:<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#%D9%85%D8%AB%D8%A7%D9%84_%D8%A8%D9%87_%D9%87%D9%85%D9%87_%D8%AA%D8%B1%D8%A7%D9%81%DB%8C%DA%A9_%D8%AE%D8%B1%D9%88%D8%AC%DB%8C_%D8%A7%D8%AC%D8%A7%D8%B2%D9%87_%D8%AF%D9%87%DB%8C%D8%AF\" >\u0645\u062b\u0627\u0644: \u0628\u0647 \u0647\u0645\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u062e\u0631\u0648\u062c\u06cc \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u06cc\u062f<\/a><\/li><\/ul><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#4_%D8%AA%D9%88%D8%B6%DB%8C%D8%AD_%D9%85%D9%81%D8%B5%D9%84_%D9%BE%D8%B1%D9%88%D8%AA%DA%A9%D9%84_%D9%87%D8%A7\" >4. \u062a\u0648\u0636\u06cc\u062d \u0645\u0641\u0635\u0644 \u067e\u0631\u0648\u062a\u06a9\u0644 \u0647\u0627<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-12\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#%F0%9F%94%81_TCP_%D9%BE%D8%B1%D9%88%D8%AA%DA%A9%D9%84_%DA%A9%D9%86%D8%AA%D8%B1%D9%84_%D8%A7%D9%86%D8%AA%D9%82%D8%A7%D9%84\" >\ud83d\udd01 TCP (\u067e\u0631\u0648\u062a\u06a9\u0644 \u06a9\u0646\u062a\u0631\u0644 \u0627\u0646\u062a\u0642\u0627\u0644):<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-13\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#%D9%85%D8%AB%D8%A7%D9%84_%D8%A8%D8%B1%D8%A7%DB%8C_%D9%88%D8%B1%D9%88%D8%AF_%D8%A7%DB%8C%D9%85%D9%86_%D8%A8%D9%87_SSH_%D9%BE%D9%88%D8%B1%D8%AA_22_%D8%A7%D8%AC%D8%A7%D8%B2%D9%87_%D8%AF%D9%87%DB%8C%D8%AF\" >\u0645\u062b\u0627\u0644: \u0628\u0631\u0627\u06cc \u0648\u0631\u0648\u062f \u0627\u06cc\u0645\u0646 \u0628\u0647 SSH (\u067e\u0648\u0631\u062a 22) \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u06cc\u062f<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-14\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#%F0%9F%9A%80_UDP_%D9%BE%D8%B1%D9%88%D8%AA%DA%A9%D9%84_%D8%AF%DB%8C%D8%AA%D8%A7%DA%AF%D8%B1%D8%A7%D9%85_%DA%A9%D8%A7%D8%B1%D8%A8%D8%B1\" >\ud83d\ude80 UDP (\u067e\u0631\u0648\u062a\u06a9\u0644 \u062f\u06cc\u062a\u0627\u06af\u0631\u0627\u0645 \u06a9\u0627\u0631\u0628\u0631):<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-15\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#%D9%85%D8%AB%D8%A7%D9%84_%D8%AF%D8%B1%D8%AE%D9%88%D8%A7%D8%B3%D8%AA%E2%80%8C%D9%87%D8%A7%DB%8C_DNS_%D9%BE%D9%88%D8%B1%D8%AA_53_%D8%B1%D8%A7_%D9%85%D8%AC%D8%A7%D8%B2_%DA%A9%D9%86%DB%8C%D8%AF\" >\u0645\u062b\u0627\u0644: \u062f\u0631\u062e\u0648\u0627\u0633\u062a\u200c\u0647\u0627\u06cc DNS (\u067e\u0648\u0631\u062a 53) \u0631\u0627 \u0645\u062c\u0627\u0632 \u06a9\u0646\u06cc\u062f<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-16\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#%E2%9A%A1_ICMP_%D9%BE%D8%B1%D9%88%D8%AA%DA%A9%D9%84_%D9%BE%DB%8C%D8%A7%D9%85_%DA%A9%D9%86%D8%AA%D8%B1%D9%84_%D8%A7%DB%8C%D9%86%D8%AA%D8%B1%D9%86%D8%AA\" >\u26a1 ICMP (\u067e\u0631\u0648\u062a\u06a9\u0644 \u067e\u06cc\u0627\u0645 \u06a9\u0646\u062a\u0631\u0644 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a):<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-17\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#%D9%85%D8%AB%D8%A7%D9%84_%D8%A7%D8%AC%D8%A7%D8%B2%D9%87_%D9%BE%DB%8C%D9%86%DA%AF_%D8%AF%D8%B1%D8%AE%D9%88%D8%A7%D8%B3%D8%AA_%D8%A7%DA%A9%D9%88_ICMP\" >\u0645\u062b\u0627\u0644: \u0627\u062c\u0627\u0632\u0647 \u067e\u06cc\u0646\u06af (\u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0627\u06a9\u0648 ICMP)<\/a><\/li><\/ul><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-18\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#5_%D8%A7%D8%B1%D8%AA%D8%A8%D8%A7%D8%B7_%D8%B2%DB%8C%D8%B1%D8%B4%D8%A8%DA%A9%D9%87_%D8%AE%D8%B5%D9%88%D8%B5%DB%8C_%D8%A8%D8%A7_%D8%B2%DB%8C%D8%B1%D8%B4%D8%A8%DA%A9%D9%87_%D8%B9%D9%85%D9%88%D9%85%DB%8C\" >5. \u0627\u0631\u062a\u0628\u0627\u0637 \u0632\u06cc\u0631\u0634\u0628\u06a9\u0647 \u062e\u0635\u0648\u0635\u06cc \u0628\u0627 \u0632\u06cc\u0631\u0634\u0628\u06a9\u0647 \u0639\u0645\u0648\u0645\u06cc<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-19\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#%D9%86%DA%A9%D8%A7%D8%AA_%DA%A9%D9%84%DB%8C%D8%AF%DB%8C\" >\u0646\u06a9\u0627\u062a \u06a9\u0644\u06cc\u062f\u06cc:<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-20\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#6_%D8%A8%D9%87%D8%AA%D8%B1%DB%8C%D9%86_%D8%B1%D9%88%D8%B4_%D9%87%D8%A7_%D8%A8%D8%B1%D8%A7%DB%8C_%DA%AF%D8%B1%D9%88%D9%87_%D9%87%D8%A7%DB%8C_%D8%A7%D9%85%D9%86%DB%8C%D8%AA%DB%8C_%D8%AF%D8%B1_AWS\" >6. \u0628\u0647\u062a\u0631\u06cc\u0646 \u0631\u0648\u0634 \u0647\u0627 \u0628\u0631\u0627\u06cc \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u062f\u0631 AWS<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-21\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#7_%D9%BE%DB%8C%DA%A9%D8%B1%D8%A8%D9%86%D8%AF%DB%8C_Terraform_%D8%A8%D8%B1%D8%A7%DB%8C_%DA%AF%D8%B1%D9%88%D9%87_%D9%87%D8%A7%DB%8C_%D8%A7%D9%85%D9%86%DB%8C%D8%AA%DB%8C_Ingress_Egress\" >7. \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc Terraform \u0628\u0631\u0627\u06cc \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc (Ingress &#038; Egress)<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-22\" href=\"https:\/\/nabfollower.com\/blog\/in-depth-guide-to-aws-security-groups-with-terraform-ingress-egress-ports-and-protocols-21mk\/#8_%D9%86%D8%AA%DB%8C%D8%AC%D9%87_%DA%AF%DB%8C%D8%B1%DB%8C\" >8. \u0646\u062a\u06cc\u062c\u0647 \u06af\u06cc\u0631\u06cc<\/a><\/li><\/ul><\/nav><\/div>\n<h2><span class=\"ez-toc-section\" id=\"1_%D9%85%D9%82%D8%AF%D9%85%D9%87_%D8%A7%DB%8C_%D8%A8%D8%B1_%DA%AF%D8%B1%D9%88%D9%87_%D9%87%D8%A7%DB%8C_%D8%A7%D9%85%D9%86%DB%8C%D8%AA%DB%8C_AWS\"><\/span>\n<p>  <strong>1. \u0645\u0642\u062f\u0645\u0647 \u0627\u06cc \u0628\u0631 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc AWS<\/strong><br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<ul>\n<li>\n<strong>\ud83d\udd10 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc<\/strong> \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 \u0647\u0627\u06cc \u0645\u062c\u0627\u0632\u06cc \u0628\u0631\u0627\u06cc <strong>\u0646\u0645\u0648\u0646\u0647 \u0647\u0627\u06cc EC2<\/strong> \u06a9\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0634\u0628\u06a9\u0647 \u0631\u0627 \u06a9\u0646\u062a\u0631\u0644 \u0645\u06cc \u06a9\u0646\u062f.<\/li>\n<li>\u0645\u062f\u06cc\u0631\u06cc\u062a \u0645\u06cc \u06a9\u0646\u0646\u062f <strong>\u0648\u0631\u0648\u062f<\/strong> (\u0648\u0631\u0648\u062f\u06cc) \u0648 <strong>\u062e\u0631\u0648\u062c<\/strong> \u062a\u0631\u0627\u0641\u06cc\u06a9 (\u062e\u0631\u0648\u062c\u06cc)\u060c \u062a\u0636\u0645\u06cc\u0646 \u0627\u0631\u062a\u0628\u0627\u0637 \u0627\u06cc\u0645\u0646 \u0628\u0631\u0627\u06cc \u0646\u0645\u0648\u0646\u0647 \u0647\u0627\u06cc EC2 \u0634\u0645\u0627.<\/li>\n<\/ul>\n<h3><span class=\"ez-toc-section\" id=\"%D9%85%D9%81%D8%A7%D9%87%DB%8C%D9%85_%DA%A9%D9%84%DB%8C%D8%AF%DB%8C\"><\/span>\n<p>  <strong>\u0645\u0641\u0627\u0647\u06cc\u0645 \u06a9\u0644\u06cc\u062f\u06cc<\/strong>:<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<ul>\n<li>\n<strong>\u26a1 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0648\u0631\u0648\u062f<\/strong>: \u06a9\u0646\u062a\u0631\u0644 <strong>\u0648\u0631\u0648\u062f\u06cc<\/strong> \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0628\u0647 \u0646\u0645\u0648\u0646\u0647 \u0647\u0627\u06cc EC2<\/li>\n<li>\n<strong>\ud83d\udeaa \u0642\u0648\u0627\u0646\u06cc\u0646 \u062e\u0631\u0648\u062c<\/strong>: \u06a9\u0646\u062a\u0631\u0644 <strong>\u062e\u0631\u0648\u062c\u06cc<\/strong> \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0627\u0632 \u0646\u0645\u0648\u0646\u0647 \u0647\u0627\u06cc EC2<\/li>\n<li>\n<strong>\ud83c\udf10 \u062f\u0648\u0644\u062a\u06cc<\/strong>: \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u062d\u0627\u0644\u062a \u062f\u0627\u0631 \u0647\u0633\u062a\u0646\u062f\u060c \u0628\u0647 \u0627\u06cc\u0646 \u0645\u0639\u0646\u06cc \u06a9\u0647 \u0627\u06af\u0631 \u0628\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0648\u0631\u0648\u062f\u06cc \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u06cc\u062f\u060c \u067e\u0627\u0633\u062e \u062e\u0631\u0648\u062c\u06cc \u0645\u0631\u0628\u0648\u0637\u0647 \u0628\u0647 \u0637\u0648\u0631 \u062e\u0648\u062f\u06a9\u0627\u0631 \u0645\u062c\u0627\u0632 \u0627\u0633\u062a.<\/li>\n<li>\n<strong>\ud83d\udee1\ufe0f \u0686\u0646\u062f\u06cc\u0646 \u06af\u0631\u0648\u0647 \u0627\u0645\u0646\u06cc\u062a\u06cc<\/strong>: \u0645\u06cc \u062a\u0648\u0627\u0646\u06cc\u062f \u0686\u0646\u062f\u06cc\u0646 \u06af\u0631\u0648\u0647 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0631\u0627 \u0628\u0647 \u06cc\u06a9 \u0646\u0645\u0648\u0646\u0647 EC2 \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0647\u06cc\u062f \u0648 \u0642\u0648\u0627\u0646\u06cc\u0646\u06cc \u0631\u0627 \u0628\u0631\u0627\u06cc \u0647\u0631 \u06a9\u062f\u0627\u0645 \u062a\u0639\u0631\u06cc\u0641 \u06a9\u0646\u06cc\u062f.<\/li>\n<\/ul>\n<hr\/>\n<h2><span class=\"ez-toc-section\" id=\"2_%D9%BE%D9%88%D8%B1%D8%AA_%D9%87%D8%A7_%D9%88_%D9%BE%D8%B1%D9%88%D8%AA%DA%A9%D9%84_%D9%87%D8%A7_%D8%AF%D8%B1_%DA%AF%D8%B1%D9%88%D9%87_%D9%87%D8%A7%DB%8C_%D8%A7%D9%85%D9%86%DB%8C%D8%AA%DB%8C_AWS\"><\/span>\n<p>  <strong>2. \u067e\u0648\u0631\u062a \u0647\u0627 \u0648 \u067e\u0631\u0648\u062a\u06a9\u0644 \u0647\u0627 \u062f\u0631 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc AWS<\/strong><br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<h3><span class=\"ez-toc-section\" id=\"%F0%9F%94%91_%D9%BE%D9%88%D8%B1%D8%AA_%D9%87%D8%A7\"><\/span>\n<p>  <strong>\ud83d\udd11 \u067e\u0648\u0631\u062a \u0647\u0627<\/strong>:<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<ul>\n<li>\n<strong>\ud83d\udda5\ufe0f \u0634\u0645\u0627\u0631\u0647 \u067e\u0648\u0631\u062a<\/strong> \u0633\u0631\u0648\u06cc\u0633 \u0647\u0627 \u0648 \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc\u06cc \u0631\u0627 \u06a9\u0647 \u0645\u06cc \u062a\u0648\u0627\u0646\u0646\u062f \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0646\u0645\u0648\u0646\u0647 \u0647\u0627\u06cc EC2 \u0634\u0645\u0627 \u0627\u0631\u062a\u0628\u0627\u0637 \u0628\u0631\u0642\u0631\u0627\u0631 \u06a9\u0646\u0646\u062f\u060c \u062a\u0639\u0631\u06cc\u0641 \u06a9\u0646\u06cc\u062f.<\/p>\n<ul>\n<li>\n<strong>\u067e\u0648\u0631\u062a 80<\/strong>: HTTP (\u062a\u0631\u0627\u0641\u06cc\u06a9 \u0648\u0628)<\/li>\n<li>\n<strong>\u067e\u0648\u0631\u062a 443<\/strong>: HTTPS (\u062a\u0631\u0627\u0641\u06cc\u06a9 \u0648\u0628 \u0627\u0645\u0646)<\/li>\n<li>\n<strong>\u067e\u0648\u0631\u062a 22<\/strong>: SSH (\u0648\u0631\u0648\u062f \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631)<\/li>\n<li>\n<strong>\u067e\u0648\u0631\u062a 3389<\/strong>: RDP (\u062f\u0633\u06a9\u062a\u0627\u067e \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631)<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<h3><span class=\"ez-toc-section\" id=\"%F0%9F%93%A1_%D9%BE%D8%B1%D9%88%D8%AA%DA%A9%D9%84_%D9%87%D8%A7\"><\/span>\n<p>  <strong>\ud83d\udce1 \u067e\u0631\u0648\u062a\u06a9\u0644 \u0647\u0627<\/strong>:<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<ul>\n<li>\n<strong>\ud83d\udd01 TCP<\/strong>: <strong>\u0642\u0627\u0628\u0644 \u0627\u0639\u062a\u0645\u0627\u062f<\/strong> \u067e\u0631\u0648\u062a\u06a9\u0644 \u0645\u0628\u062a\u0646\u06cc \u0628\u0631 \u0627\u062a\u0635\u0627\u0644\u060c \u06a9\u0647 \u062a\u0648\u0633\u0637 \u0627\u06a9\u062b\u0631 \u0633\u0631\u0648\u06cc\u0633 \u0647\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc \u0634\u0648\u062f (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c HTTP\u060c SSH\u060c \u0627\u062a\u0635\u0627\u0644\u0627\u062a \u067e\u0627\u06cc\u06af\u0627\u0647 \u062f\u0627\u062f\u0647).<\/li>\n<li>\n<strong>\ud83d\ude80 UDP<\/strong>: <strong>\u0633\u0631\u06cc\u0639\u062a\u0631<\/strong>\u060c <strong>\u0628\u062f\u0648\u0646 \u0627\u062a\u0635\u0627\u0644<\/strong> \u067e\u0631\u0648\u062a\u06a9\u0644\u060c \u0628\u0631\u0627\u06cc \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc\u06cc \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc \u0634\u0648\u062f \u06a9\u0647 \u062f\u0631 \u0622\u0646 \u0633\u0631\u0639\u062a \u0628\u0631 \u0642\u0627\u0628\u0644\u06cc\u062a \u0627\u0637\u0645\u06cc\u0646\u0627\u0646 \u0627\u0648\u0644\u0648\u06cc\u062a \u062f\u0627\u0631\u062f (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c DNS\u060c \u067e\u062e\u0634 \u0648\u06cc\u062f\u0626\u0648).<\/li>\n<li>\n<strong>\u26a1 ICMP<\/strong>: <strong>\u0628\u062f\u0648\u0646 \u0627\u062a\u0635\u0627\u0644<\/strong> \u067e\u0631\u0648\u062a\u06a9\u0644 \u0645\u0648\u0631\u062f \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0628\u0631\u0627\u06cc <strong>\u062a\u0634\u062e\u06cc\u0635 \u0634\u0628\u06a9\u0647<\/strong> (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c \u067e\u06cc\u0646\u06af\u060c traceroute).<\/li>\n<\/ul>\n<hr\/>\n<h2><span class=\"ez-toc-section\" id=\"3_%D9%82%D9%88%D8%A7%D9%86%DB%8C%D9%86_%D9%88%D8%B1%D9%88%D8%AF_%D9%88_%D8%AE%D8%B1%D9%88%D8%AC\"><\/span>\n<p>  <strong>3. \u0642\u0648\u0627\u0646\u06cc\u0646 \u0648\u0631\u0648\u062f \u0648 \u062e\u0631\u0648\u062c<\/strong><br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<h3><span class=\"ez-toc-section\" id=\"%F0%9F%9B%91_%D9%82%D9%88%D8%A7%D9%86%DB%8C%D9%86_%D9%88%D8%B1%D9%88%D8%AF\"><\/span>\n<p>  <strong>\ud83d\uded1 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0648\u0631\u0648\u062f<\/strong>:<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>\u0627\u06cc\u0646 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0645\u0634\u062e\u0635 \u0645\u06cc \u06a9\u0646\u0646\u062f \u06a9\u0647 \u06a9\u062f\u0627\u0645 <strong>\u062a\u0631\u0627\u0641\u06cc\u06a9 \u0648\u0631\u0648\u062f\u06cc<\/strong> \u0628\u0647 \u0646\u0645\u0648\u0646\u0647 EC2 \u0634\u0645\u0627 \u0645\u062c\u0627\u0632 \u0627\u0633\u062a.<\/p>\n<h4><span class=\"ez-toc-section\" id=\"%D9%85%D8%AB%D8%A7%D9%84_%D8%A7%D8%AC%D8%A7%D8%B2%D9%87_%D8%AA%D8%B1%D8%A7%D9%81%DB%8C%DA%A9_HTTP_%D9%BE%D9%88%D8%B1%D8%AA_80\"><\/span>\n<p>  \u0645\u062b\u0627\u0644: \u0627\u062c\u0627\u0632\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 HTTP (\u067e\u0648\u0631\u062a 80)<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight hcl\"><code><span class=\"nx\">resource<\/span> <span class=\"s2\">\"aws_security_group_rule\"<\/span> <span class=\"s2\">\"allow_http\"<\/span> <span class=\"p\">{<\/span>\n  <span class=\"nx\">type<\/span>              <span class=\"p\">=<\/span> <span class=\"s2\">\"ingress\"<\/span>   <span class=\"c1\"># \ud83d\udd25 Inbound traffic<\/span>\n  <span class=\"nx\">from_port<\/span>         <span class=\"p\">=<\/span> <span class=\"mi\">80<\/span>          <span class=\"c1\"># \ud83d\udd11 Port 80 for HTTP<\/span>\n  <span class=\"nx\">to_port<\/span>           <span class=\"p\">=<\/span> <span class=\"mi\">80<\/span>          <span class=\"c1\"># \ud83d\udd11 Allow to Port 80<\/span>\n  <span class=\"nx\">protocol<\/span>          <span class=\"p\">=<\/span> <span class=\"s2\">\"tcp\"<\/span>       <span class=\"c1\"># \ud83d\udce1 TCP Protocol<\/span>\n  <span class=\"nx\">cidr_blocks<\/span>       <span class=\"p\">=<\/span> <span class=\"p\">[<\/span><span class=\"s2\">\"0.0.0.0\/0\"<\/span><span class=\"p\">]<\/span>  <span class=\"c1\"># \ud83c\udf0d Any IP<\/span>\n  <span class=\"nx\">security_group_id<\/span> <span class=\"p\">=<\/span> <span class=\"s2\">\"sg-123456\"<\/span>   <span class=\"c1\"># \ud83d\udee1\ufe0f Security Group ID<\/span>\n<span class=\"p\">}<\/span>\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<ul>\n<li>\n<strong>\ud83c\udfaf from_port = 80<\/strong>: \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0648\u0631\u0648\u062f\u06cc \u0631\u0627 \u0645\u0634\u062e\u0635 \u0645\u06cc \u06a9\u0646\u062f <strong>\u067e\u0648\u0631\u062a 80<\/strong> (HTTP).<\/li>\n<li>\n<strong>\ud83c\udf10 \u067e\u0631\u0648\u062a\u06a9\u0644 = tcp<\/strong>: \u0646\u0634\u0627\u0646 \u0645\u06cc \u062f\u0647\u062f <strong>TCP<\/strong> \u067e\u0631\u0648\u062a\u06a9\u0644<\/li>\n<li>\n<strong>\ud83c\udf0d cidr_blocks = [&#8220;0.0.0.0\/0&#8221;]<\/strong>: \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u0627\u0632 \u0647\u0631 IP \u0631\u0627 \u0645\u06cc \u062f\u0647\u062f.<\/li>\n<\/ul>\n<h3><span class=\"ez-toc-section\" id=\"%F0%9F%9A%AA_%D9%82%D9%88%D8%A7%D9%86%DB%8C%D9%86_%D8%AE%D8%B1%D9%88%D8%AC\"><\/span>\n<p>  <strong>\ud83d\udeaa \u0642\u0648\u0627\u0646\u06cc\u0646 \u062e\u0631\u0648\u062c<\/strong>:<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>\u0627\u06cc\u0646 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0645\u0634\u062e\u0635 \u0645\u06cc \u06a9\u0646\u0646\u062f \u06a9\u0647 \u06a9\u062f\u0627\u0645 <strong>\u062a\u0631\u0627\u0641\u06cc\u06a9 \u062e\u0631\u0648\u062c\u06cc<\/strong> \u0627\u0632 \u0646\u0645\u0648\u0646\u0647 EC2 \u0634\u0645\u0627 \u0645\u062c\u0627\u0632 \u0627\u0633\u062a.<\/p>\n<h4><span class=\"ez-toc-section\" id=\"%D9%85%D8%AB%D8%A7%D9%84_%D8%A8%D9%87_%D9%87%D9%85%D9%87_%D8%AA%D8%B1%D8%A7%D9%81%DB%8C%DA%A9_%D8%AE%D8%B1%D9%88%D8%AC%DB%8C_%D8%A7%D8%AC%D8%A7%D8%B2%D9%87_%D8%AF%D9%87%DB%8C%D8%AF\"><\/span>\n<p>  \u0645\u062b\u0627\u0644: \u0628\u0647 \u0647\u0645\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u062e\u0631\u0648\u062c\u06cc \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u06cc\u062f<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight hcl\"><code><span class=\"nx\">resource<\/span> <span class=\"s2\">\"aws_security_group_rule\"<\/span> <span class=\"s2\">\"allow_all_egress\"<\/span> <span class=\"p\">{<\/span>\n  <span class=\"nx\">type<\/span>              <span class=\"p\">=<\/span> <span class=\"s2\">\"egress\"<\/span>    <span class=\"c1\"># \ud83d\udd04 Outbound traffic<\/span>\n  <span class=\"nx\">from_port<\/span>         <span class=\"p\">=<\/span> <span class=\"mi\">0<\/span>           <span class=\"c1\"># \ud83d\udd11 Any Port<\/span>\n  <span class=\"nx\">to_port<\/span>           <span class=\"p\">=<\/span> <span class=\"mi\">65535<\/span>       <span class=\"c1\"># \ud83d\udd11 Any Port<\/span>\n  <span class=\"nx\">protocol<\/span>          <span class=\"p\">=<\/span> <span class=\"s2\">\"-1\"<\/span>        <span class=\"c1\"># \ud83c\udf10 Any Protocol<\/span>\n  <span class=\"nx\">cidr_blocks<\/span>       <span class=\"p\">=<\/span> <span class=\"p\">[<\/span><span class=\"s2\">\"0.0.0.0\/0\"<\/span><span class=\"p\">]<\/span>  <span class=\"c1\"># \ud83c\udf0d Any IP<\/span>\n  <span class=\"nx\">security_group_id<\/span> <span class=\"p\">=<\/span> <span class=\"s2\">\"sg-123456\"<\/span>   <span class=\"c1\"># \ud83d\udee1\ufe0f Security Group ID<\/span>\n<span class=\"p\">}<\/span>\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<ul>\n<li>\n<strong>\ud83c\udfaf from_port = 0 \u0648 to_port = 65535<\/strong>: \u0628\u0647 \u0647\u0645\u0647 \u0634\u0645\u0627\u0631\u0647 \u067e\u0648\u0631\u062a \u0647\u0627 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f.<\/li>\n<li>\n<strong>\ud83c\udf10 \u067e\u0631\u0648\u062a\u06a9\u0644 = &#8220;-1&#8221;<\/strong>: \u0647\u0631 \u067e\u0631\u0648\u062a\u06a9\u0644 \u0645\u062c\u0627\u0632 \u0631\u0627 \u0645\u0634\u062e\u0635 \u0645\u06cc \u06a9\u0646\u062f.<\/li>\n<li>\n<strong>\ud83c\udf0d cidr_blocks = [&#8220;0.0.0.0\/0&#8221;]<\/strong>: \u0628\u0647 \u062a\u0645\u0627\u0645 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u062e\u0631\u0648\u062c\u06cc \u0628\u0647 \u0647\u0631 \u0645\u0642\u0635\u062f\u06cc \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f.<\/li>\n<\/ul>\n<hr\/>\n<h2><span class=\"ez-toc-section\" id=\"4_%D8%AA%D9%88%D8%B6%DB%8C%D8%AD_%D9%85%D9%81%D8%B5%D9%84_%D9%BE%D8%B1%D9%88%D8%AA%DA%A9%D9%84_%D9%87%D8%A7\"><\/span>\n<p>  <strong>4. \u062a\u0648\u0636\u06cc\u062d \u0645\u0641\u0635\u0644 \u067e\u0631\u0648\u062a\u06a9\u0644 \u0647\u0627<\/strong><br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<h3><span class=\"ez-toc-section\" id=\"%F0%9F%94%81_TCP_%D9%BE%D8%B1%D9%88%D8%AA%DA%A9%D9%84_%DA%A9%D9%86%D8%AA%D8%B1%D9%84_%D8%A7%D9%86%D8%AA%D9%82%D8%A7%D9%84\"><\/span>\n<p>  <strong>\ud83d\udd01 TCP (\u067e\u0631\u0648\u062a\u06a9\u0644 \u06a9\u0646\u062a\u0631\u0644 \u0627\u0646\u062a\u0642\u0627\u0644)<\/strong>:<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<ul>\n<li>\n<strong>\ud83d\udd12 \u0627\u062a\u0635\u0627\u0644 \u06af\u0631\u0627<\/strong> \u067e\u0631\u0648\u062a\u06a9\u0644\u06cc \u06a9\u0647 \u0627\u0631\u062a\u0628\u0627\u0637 \u0642\u0627\u0628\u0644 \u0627\u0639\u062a\u0645\u0627\u062f \u0631\u0627 \u062a\u0636\u0645\u06cc\u0646 \u0645\u06cc \u06a9\u0646\u062f.<\/li>\n<li>\u0627\u06cc\u0646 \u062a\u0636\u0645\u06cc\u0646 \u0645\u06cc \u06a9\u0646\u062f \u06a9\u0647 \u062f\u0627\u062f\u0647 \u0647\u0627 \u0628\u0647 \u062a\u0631\u062a\u06cc\u0628 \u0635\u062d\u06cc\u062d \u062f\u0631\u06cc\u0627\u0641\u062a \u0645\u06cc \u0634\u0648\u0646\u062f \u0648 \u062f\u0633\u062a \u0646\u062e\u0648\u0631\u062f\u0647 \u0647\u0633\u062a\u0646\u062f.<\/li>\n<\/ul>\n<h4><span class=\"ez-toc-section\" id=\"%D9%85%D8%AB%D8%A7%D9%84_%D8%A8%D8%B1%D8%A7%DB%8C_%D9%88%D8%B1%D9%88%D8%AF_%D8%A7%DB%8C%D9%85%D9%86_%D8%A8%D9%87_SSH_%D9%BE%D9%88%D8%B1%D8%AA_22_%D8%A7%D8%AC%D8%A7%D8%B2%D9%87_%D8%AF%D9%87%DB%8C%D8%AF\"><\/span>\n<p>  \u0645\u062b\u0627\u0644: \u0628\u0631\u0627\u06cc \u0648\u0631\u0648\u062f \u0627\u06cc\u0645\u0646 \u0628\u0647 SSH (\u067e\u0648\u0631\u062a 22) \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u06cc\u062f<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight hcl\"><code><span class=\"nx\">resource<\/span> <span class=\"s2\">\"aws_security_group_rule\"<\/span> <span class=\"s2\">\"allow_ssh\"<\/span> <span class=\"p\">{<\/span>\n  <span class=\"nx\">type<\/span>              <span class=\"p\">=<\/span> <span class=\"s2\">\"ingress\"<\/span>\n  <span class=\"nx\">from_port<\/span>         <span class=\"p\">=<\/span> <span class=\"mi\">22<\/span>          <span class=\"c1\"># \ud83d\udd11 Port 22 for SSH<\/span>\n  <span class=\"nx\">to_port<\/span>           <span class=\"p\">=<\/span> <span class=\"mi\">22<\/span>\n  <span class=\"nx\">protocol<\/span>          <span class=\"p\">=<\/span> <span class=\"s2\">\"tcp\"<\/span>\n  <span class=\"nx\">cidr_blocks<\/span>       <span class=\"p\">=<\/span> <span class=\"p\">[<\/span><span class=\"s2\">\"0.0.0.0\/0\"<\/span><span class=\"p\">]<\/span>  <span class=\"c1\"># \ud83c\udf0d Any IP address<\/span>\n  <span class=\"nx\">security_group_id<\/span> <span class=\"p\">=<\/span> <span class=\"s2\">\"sg-123456\"<\/span>\n<span class=\"p\">}<\/span>\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<h3><span class=\"ez-toc-section\" id=\"%F0%9F%9A%80_UDP_%D9%BE%D8%B1%D9%88%D8%AA%DA%A9%D9%84_%D8%AF%DB%8C%D8%AA%D8%A7%DA%AF%D8%B1%D8%A7%D9%85_%DA%A9%D8%A7%D8%B1%D8%A8%D8%B1\"><\/span>\n<p>  <strong>\ud83d\ude80 UDP (\u067e\u0631\u0648\u062a\u06a9\u0644 \u062f\u06cc\u062a\u0627\u06af\u0631\u0627\u0645 \u06a9\u0627\u0631\u0628\u0631)<\/strong>:<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<ul>\n<li>\n<strong>\u26a1 \u0628\u062f\u0648\u0646 \u0627\u062a\u0635\u0627\u0644<\/strong> \u067e\u0631\u0648\u062a\u06a9\u0644 \u0645\u0648\u0631\u062f \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u062f\u0631 \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc\u06cc \u06a9\u0647 \u0633\u0631\u0639\u062a \u0628\u0631 \u0642\u0627\u0628\u0644\u06cc\u062a \u0627\u0637\u0645\u06cc\u0646\u0627\u0646 \u0627\u0648\u0644\u0648\u06cc\u062a \u062f\u0627\u0631\u062f (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c \u067e\u062e\u0634 \u0648\u06cc\u062f\u06cc\u0648\u060c \u0628\u0627\u0632\u06cc \u0622\u0646\u0644\u0627\u06cc\u0646).<\/li>\n<li>\u062a\u062d\u0648\u06cc\u0644 \u06cc\u0627 \u0633\u0641\u0627\u0631\u0634 \u062f\u0627\u062f\u0647 \u0631\u0627 \u062a\u0636\u0645\u06cc\u0646 \u0646\u0645\u06cc \u06a9\u0646\u062f.<\/li>\n<\/ul>\n<h4><span class=\"ez-toc-section\" id=\"%D9%85%D8%AB%D8%A7%D9%84_%D8%AF%D8%B1%D8%AE%D9%88%D8%A7%D8%B3%D8%AA%E2%80%8C%D9%87%D8%A7%DB%8C_DNS_%D9%BE%D9%88%D8%B1%D8%AA_53_%D8%B1%D8%A7_%D9%85%D8%AC%D8%A7%D8%B2_%DA%A9%D9%86%DB%8C%D8%AF\"><\/span>\n<p>  \u0645\u062b\u0627\u0644: \u062f\u0631\u062e\u0648\u0627\u0633\u062a\u200c\u0647\u0627\u06cc DNS (\u067e\u0648\u0631\u062a 53) \u0631\u0627 \u0645\u062c\u0627\u0632 \u06a9\u0646\u06cc\u062f<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight hcl\"><code><span class=\"nx\">resource<\/span> <span class=\"s2\">\"aws_security_group_rule\"<\/span> <span class=\"s2\">\"allow_dns\"<\/span> <span class=\"p\">{<\/span>\n  <span class=\"nx\">type<\/span>              <span class=\"p\">=<\/span> <span class=\"s2\">\"ingress\"<\/span>\n  <span class=\"nx\">from_port<\/span>         <span class=\"p\">=<\/span> <span class=\"mi\">53<\/span>          <span class=\"c1\"># \ud83d\udd11 Port 53 for DNS<\/span>\n  <span class=\"nx\">to_port<\/span>           <span class=\"p\">=<\/span> <span class=\"mi\">53<\/span>\n  <span class=\"nx\">protocol<\/span>          <span class=\"p\">=<\/span> <span class=\"s2\">\"udp\"<\/span>       <span class=\"c1\"># \ud83d\udce1 UDP Protocol<\/span>\n  <span class=\"nx\">cidr_blocks<\/span>       <span class=\"p\">=<\/span> <span class=\"p\">[<\/span><span class=\"s2\">\"0.0.0.0\/0\"<\/span><span class=\"p\">]<\/span>  <span class=\"c1\"># \ud83c\udf0d Any IP address<\/span>\n  <span class=\"nx\">security_group_id<\/span> <span class=\"p\">=<\/span> <span class=\"s2\">\"sg-123456\"<\/span>\n<span class=\"p\">}<\/span>\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<h3><span class=\"ez-toc-section\" id=\"%E2%9A%A1_ICMP_%D9%BE%D8%B1%D9%88%D8%AA%DA%A9%D9%84_%D9%BE%DB%8C%D8%A7%D9%85_%DA%A9%D9%86%D8%AA%D8%B1%D9%84_%D8%A7%DB%8C%D9%86%D8%AA%D8%B1%D9%86%D8%AA\"><\/span>\n<p>  <strong>\u26a1 ICMP (\u067e\u0631\u0648\u062a\u06a9\u0644 \u067e\u06cc\u0627\u0645 \u06a9\u0646\u062a\u0631\u0644 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a)<\/strong>:<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<ul>\n<li>\n<strong>\ud83c\udf10 \u0628\u062f\u0648\u0646 \u0627\u062a\u0635\u0627\u0644<\/strong> \u067e\u0631\u0648\u062a\u06a9\u0644 \u0628\u0631\u0627\u06cc \u062a\u0634\u062e\u06cc\u0635 \u0634\u0628\u06a9\u0647 (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c \u067e\u06cc\u0646\u06af\u060c traceroute).<\/li>\n<li>\u0627\u0632 \u067e\u0648\u0631\u062a \u0647\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0646\u0645\u06cc \u06a9\u0646\u062f. \u062f\u0631 \u0639\u0648\u0636\u060c \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc \u06a9\u0646\u062f <strong>\u0627\u0646\u0648\u0627\u0639 ICMP<\/strong> (\u0645\u062b\u0644\u0627 <strong>\u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0627\u06a9\u0648<\/strong>\u060c <strong>\u067e\u0627\u0633\u062e \u0627\u06a9\u0648<\/strong>).<\/li>\n<\/ul>\n<h4><span class=\"ez-toc-section\" id=\"%D9%85%D8%AB%D8%A7%D9%84_%D8%A7%D8%AC%D8%A7%D8%B2%D9%87_%D9%BE%DB%8C%D9%86%DA%AF_%D8%AF%D8%B1%D8%AE%D9%88%D8%A7%D8%B3%D8%AA_%D8%A7%DA%A9%D9%88_ICMP\"><\/span>\n<p>  \u0645\u062b\u0627\u0644: \u0627\u062c\u0627\u0632\u0647 \u067e\u06cc\u0646\u06af (\u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0627\u06a9\u0648 ICMP)<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight hcl\"><code><span class=\"nx\">resource<\/span> <span class=\"s2\">\"aws_security_group_rule\"<\/span> <span class=\"s2\">\"allow_ping\"<\/span> <span class=\"p\">{<\/span>\n  <span class=\"nx\">type<\/span>              <span class=\"p\">=<\/span> <span class=\"s2\">\"ingress\"<\/span>\n  <span class=\"nx\">from_port<\/span>         <span class=\"p\">=<\/span> <span class=\"nx\">-1<\/span>          <span class=\"c1\"># ICMP doesn\u2019t use ports<\/span>\n  <span class=\"nx\">to_port<\/span>           <span class=\"p\">=<\/span> <span class=\"nx\">-1<\/span>\n  <span class=\"nx\">protocol<\/span>          <span class=\"p\">=<\/span> <span class=\"s2\">\"icmp\"<\/span>      <span class=\"c1\"># \ud83d\udce1 ICMP Protocol<\/span>\n  <span class=\"nx\">cidr_blocks<\/span>       <span class=\"p\">=<\/span> <span class=\"p\">[<\/span><span class=\"s2\">\"0.0.0.0\/0\"<\/span><span class=\"p\">]<\/span>  <span class=\"c1\"># \ud83c\udf0d Any IP<\/span>\n  <span class=\"nx\">security_group_id<\/span> <span class=\"p\">=<\/span> <span class=\"s2\">\"sg-123456\"<\/span>\n<span class=\"p\">}<\/span>\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<ul>\n<li>\n<strong>\ud83c\udfaf from_port = -1 \u0648 to_port = -1<\/strong>: \u0646\u0634\u0627\u0646 \u0645\u06cc \u062f\u0647\u062f <strong>ICMP<\/strong> (\u0628\u062f\u0648\u0646 \u067e\u0648\u0631\u062a).<\/li>\n<li>\n<strong>\ud83d\udce1 \u067e\u0631\u0648\u062a\u06a9\u0644 = &#8220;icmp&#8221;<\/strong>: \u0645\u0634\u062e\u0635 \u0645\u06cc \u06a9\u0646\u062f <strong>ICMP<\/strong> \u067e\u0631\u0648\u062a\u06a9\u0644<\/li>\n<\/ul>\n<hr\/>\n<h2><span class=\"ez-toc-section\" id=\"5_%D8%A7%D8%B1%D8%AA%D8%A8%D8%A7%D8%B7_%D8%B2%DB%8C%D8%B1%D8%B4%D8%A8%DA%A9%D9%87_%D8%AE%D8%B5%D9%88%D8%B5%DB%8C_%D8%A8%D8%A7_%D8%B2%DB%8C%D8%B1%D8%B4%D8%A8%DA%A9%D9%87_%D8%B9%D9%85%D9%88%D9%85%DB%8C\"><\/span>\n<p>  <strong>5. \u0627\u0631\u062a\u0628\u0627\u0637 \u0632\u06cc\u0631\u0634\u0628\u06a9\u0647 \u062e\u0635\u0648\u0635\u06cc \u0628\u0627 \u0632\u06cc\u0631\u0634\u0628\u06a9\u0647 \u0639\u0645\u0648\u0645\u06cc<\/strong><br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>\u0628\u0631\u0627\u06cc \u0641\u0639\u0627\u0644 \u06a9\u0631\u062f\u0646 \u0627\u0631\u062a\u0628\u0627\u0637 \u0628\u06cc\u0646 a <strong>\u0632\u06cc\u0631 \u0634\u0628\u06a9\u0647 \u062e\u0635\u0648\u0635\u06cc<\/strong> \u0648 \u0627\u0644\u0641 <strong>\u0632\u06cc\u0631 \u0634\u0628\u06a9\u0647 \u0639\u0645\u0648\u0645\u06cc<\/strong>\u060c \u0631\u0627\u0647 \u0627\u0646\u062f\u0627\u0632\u06cc \u06cc\u06a9 <strong>\u062f\u0631\u0648\u0627\u0632\u0647 NAT<\/strong> \u06cc\u0627 <strong>\u0646\u0645\u0648\u0646\u0647 NAT<\/strong> \u062f\u0631 <strong>\u0632\u06cc\u0631 \u0634\u0628\u06a9\u0647 \u0639\u0645\u0648\u0645\u06cc<\/strong>. \u0632\u06cc\u0631\u0634\u0628\u06a9\u0647 \u062e\u0635\u0648\u0635\u06cc \u062a\u0631\u0627\u0641\u06cc\u06a9 \u062e\u0648\u062f \u0631\u0627 \u0627\u0632 \u0637\u0631\u06cc\u0642 NAT \u062c\u0647\u062a \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a \u0647\u062f\u0627\u06cc\u062a \u0645\u06cc \u06a9\u0646\u062f\u060c \u062f\u0631 \u062d\u0627\u0644\u06cc \u06a9\u0647 \u0632\u06cc\u0631\u0634\u0628\u06a9\u0647 \u0639\u0645\u0648\u0645\u06cc \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0645\u0633\u062a\u0642\u06cc\u0645\u0627\u064b \u0628\u0627 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a \u0627\u0631\u062a\u0628\u0627\u0637 \u0628\u0631\u0642\u0631\u0627\u0631 \u06a9\u0646\u062f.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"%D9%86%DA%A9%D8%A7%D8%AA_%DA%A9%D9%84%DB%8C%D8%AF%DB%8C\"><\/span>\n<p>  <strong>\u0646\u06a9\u0627\u062a \u06a9\u0644\u06cc\u062f\u06cc<\/strong>:<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<ul>\n<li>\n<strong>\u0632\u06cc\u0631\u0634\u0628\u06a9\u0647 \u0639\u0645\u0648\u0645\u06cc<\/strong>: \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0637\u0648\u0631 \u0645\u0633\u062a\u0642\u06cc\u0645 \u0628\u0647 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a \u062f\u0633\u062a\u0631\u0633\u06cc \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u062f.<\/li>\n<li>\n<strong>\u0632\u06cc\u0631\u0634\u0628\u06a9\u0647 \u062e\u0635\u0648\u0635\u06cc<\/strong>: \u0646\u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0645\u0633\u062a\u0642\u06cc\u0645\u0627\u064b \u0628\u0647 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a \u062f\u0633\u062a\u0631\u0633\u06cc \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u062f\u060c \u0627\u0645\u0627 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0622\u0646 \u0631\u0627 \u0627\u0632 \u0637\u0631\u06cc\u0642 a \u0647\u062f\u0627\u06cc\u062a \u0645\u06cc \u06a9\u0646\u062f <strong>\u062f\u0631\u0648\u0627\u0632\u0647 NAT<\/strong> \u062f\u0631 <strong>\u0632\u06cc\u0631 \u0634\u0628\u06a9\u0647 \u0639\u0645\u0648\u0645\u06cc<\/strong>.<\/li>\n<li>\n<strong>\u062f\u0631\u0648\u0627\u0632\u0647 NAT<\/strong>: \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a \u062e\u0631\u0648\u062c\u06cc \u0631\u0627 \u0628\u0631\u0627\u06cc \u0646\u0645\u0648\u0646\u0647 \u0647\u0627\u06cc \u062e\u0635\u0648\u0635\u06cc \u0648 \u062f\u0631 \u0639\u06cc\u0646 \u062d\u0627\u0644 \u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0627\u0632 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0648\u0631\u0648\u062f\u06cc \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f.<\/li>\n<\/ul>\n<hr\/>\n<h2><span class=\"ez-toc-section\" id=\"6_%D8%A8%D9%87%D8%AA%D8%B1%DB%8C%D9%86_%D8%B1%D9%88%D8%B4_%D9%87%D8%A7_%D8%A8%D8%B1%D8%A7%DB%8C_%DA%AF%D8%B1%D9%88%D9%87_%D9%87%D8%A7%DB%8C_%D8%A7%D9%85%D9%86%DB%8C%D8%AA%DB%8C_%D8%AF%D8%B1_AWS\"><\/span>\n<p>  <strong>6. \u0628\u0647\u062a\u0631\u06cc\u0646 \u0631\u0648\u0634 \u0647\u0627 \u0628\u0631\u0627\u06cc \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u062f\u0631 AWS<\/strong><br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<ol>\n<li>\n<strong>\ud83d\udd12 \u06a9\u0645\u062a\u0631\u06cc\u0646 \u0627\u0645\u062a\u06cc\u0627\u0632<\/strong>: \u0641\u0642\u0637 \u0628\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0636\u0631\u0648\u0631\u06cc \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u06cc\u062f. \u0645\u062b\u0644\u0627 \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u06cc\u062f <strong>SSH<\/strong> (\u067e\u0648\u0631\u062a 22) \u0641\u0642\u0637 \u0627\u0632 \u0622\u062f\u0631\u0633 \u0647\u0627\u06cc IP \u0642\u0627\u0628\u0644 \u0627\u0639\u062a\u0645\u0627\u062f.<\/li>\n<li>\n<strong>\ud83d\udee1\ufe0f \u0628\u0644\u0648\u06a9 \u0647\u0627\u06cc \u062e\u0627\u0635 CIDR<\/strong>: \u0627\u0632 \u0645\u0635\u0631\u0641 \u062e\u0648\u062f\u062f\u0627\u0631\u06cc \u06a9\u0646\u06cc\u062f <code>0.0.0.0\/0<\/code>&#8211; \u0627\u0632 \u0645\u062d\u062f\u0648\u062f\u0647 \u0647\u0627\u06cc IP \u062e\u0627\u0635 \u062a\u0631 \u0628\u0631\u0627\u06cc \u0628\u0647\u0628\u0648\u062f \u0627\u0645\u0646\u06cc\u062a \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u062f.<\/li>\n<li>\n<strong>\ud83c\udfaf \u0627\u0632 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0645\u0628\u062a\u0646\u06cc \u0628\u0631 \u0646\u0642\u0634 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u062f<\/strong>: \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0645\u062e\u062a\u0644\u0641 \u0631\u0627 \u0628\u0631 \u0627\u0633\u0627\u0633 \u0646\u0642\u0634 \u0647\u0627 \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0647\u06cc\u062f (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c \u0648\u0628 \u0633\u0631\u0648\u0631\u060c \u0633\u0631\u0648\u0631 \u067e\u0627\u06cc\u06af\u0627\u0647 \u062f\u0627\u062f\u0647).<\/li>\n<li>\n<strong>\ud83d\udd04 \u0628\u0631\u0631\u0633\u06cc \u062f\u0648\u0631\u0647 \u0627\u06cc<\/strong>: \u0628\u0647 \u0637\u0648\u0631 \u0645\u0646\u0638\u0645 \u0642\u0648\u0627\u0646\u06cc\u0646 \u06af\u0631\u0648\u0647 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0631\u0627 \u0628\u0631\u0631\u0633\u06cc \u0648 \u0628\u0647 \u0631\u0648\u0632 \u06a9\u0646\u06cc\u062f \u062a\u0627 \u0645\u0637\u0645\u0626\u0646 \u0634\u0648\u06cc\u062f \u06a9\u0647 \u0622\u0646\u0647\u0627 \u0628\u0627 \u0646\u06cc\u0627\u0632\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0634\u0645\u0627 \u0645\u0637\u0627\u0628\u0642\u062a \u062f\u0627\u0631\u0646\u062f.<\/li>\n<li>\n<strong>\ud83d\udca1 \u0637\u0631\u0627\u062d\u06cc \u062f\u0648\u0644\u062a\u06cc<\/strong>: \u0627\u0632 \u0622\u0646\u062c\u0627\u06cc\u06cc \u06a9\u0647 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u062d\u0627\u0644\u062a \u062f\u0627\u0631 \u0647\u0633\u062a\u0646\u062f\u060c \u0627\u062c\u0627\u0632\u0647 \u062f\u0627\u062f\u0646 \u0628\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0648\u0631\u0648\u062f\u06cc \u0628\u0647 \u0637\u0648\u0631 \u062e\u0648\u062f\u06a9\u0627\u0631 \u0628\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u062e\u0631\u0648\u062c\u06cc \u0645\u0631\u0628\u0648\u0637\u0647 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f.<\/li>\n<\/ol>\n<hr\/>\n<h2><span class=\"ez-toc-section\" id=\"7_%D9%BE%DB%8C%DA%A9%D8%B1%D8%A8%D9%86%D8%AF%DB%8C_Terraform_%D8%A8%D8%B1%D8%A7%DB%8C_%DA%AF%D8%B1%D9%88%D9%87_%D9%87%D8%A7%DB%8C_%D8%A7%D9%85%D9%86%DB%8C%D8%AA%DB%8C_Ingress_Egress\"><\/span>\n<p>  <strong>7. \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc Terraform \u0628\u0631\u0627\u06cc \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc (Ingress &#038; Egress)<\/strong><br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>\u0627\u06cc\u0646\u062c\u0627 \u06cc\u06a9 \u0627\u0633\u062a <strong>\u0645\u062b\u0627\u0644 \u06a9\u0627\u0645\u0644<\/strong> \u0627\u0632 \u06cc\u06a9 <strong>\u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc Terraform<\/strong> \u0628\u0631\u0627\u06cc \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc AWS\u060c \u0627\u0632 \u062c\u0645\u0644\u0647 <strong>\u0647\u0645 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0648\u0631\u0648\u062f \u0648 \u0647\u0645 \u062e\u0631\u0648\u062c<\/strong>:<\/p>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight hcl\"><code><span class=\"nx\">resource<\/span> <span class=\"s2\">\"aws_security_group\"<\/span> <span class=\"s2\">\"example\"<\/span> <span class=\"p\">{<\/span>\n  <span class=\"nx\">name<\/span>        <span class=\"p\">=<\/span> <span class=\"s2\">\"example-security-group\"<\/span>\n  <span class=\"nx\">description<\/span> <span class=\"p\">=<\/span> <span class=\"s2\">\"Allow HTTP and HTTPS access, restrict SSH to specific IP\"<\/span>\n\n  <span class=\"c1\"># Ingress rule: Allow HTTP (Port 80) from anywhere<\/span>\n  <span class=\"nx\">resource<\/span> <span class=\"s2\">\"aws_security_group_rule\"<\/span> <span class=\"s2\">\"allow_http\"<\/span> <span class=\"p\">{<\/span>\n    <span class=\"nx\">type<\/span>              <span class=\"p\">=<\/span> <span class=\"s2\">\"ingress\"<\/span>   <span class=\"c1\"># \ud83d\udd25 Inbound traffic<\/span>\n    <span class=\"nx\">from_port<\/span>         <span class=\"p\">=<\/span> <span class=\"mi\">80<\/span>          <span class=\"c1\"># \ud83d\udd11 Port 80 for HTTP<\/span>\n    <span class=\"nx\">to_port<\/span>           <span class=\"p\">=<\/span> <span class=\"mi\">80<\/span>          <span class=\"c1\"># \ud83d\udd11 Allow to Port 80<\/span>\n    <span class=\"nx\">protocol<\/span>          <span class=\"p\">=<\/span> <span class=\"s2\">\"tcp\"<\/span>       <span class=\"c1\"># \ud83d\udce1 TCP Protocol<\/span>\n    <span class=\"nx\">cidr_blocks<\/span>       <span class=\"p\">=<\/span> <span class=\"p\">[<\/span><span class=\"s2\">\"0.0.0.0\/0\"<\/span><span class=\"p\">]<\/span>  <span class=\"c1\"># \ud83c\udf0d Any IP<\/span>\n    <span class=\"nx\">security_group_id<\/span> <span class=\"p\">=<\/span> <span class=\"nx\">aws_security_group<\/span><span class=\"p\">.<\/span><span class=\"nx\">example<\/span><span class=\"p\">.<\/span><span class=\"nx\">id<\/span>\n  <span class=\"p\">}<\/span>\n\n  <span class=\"c1\"># Egress rule: Allow all outbound traffic<\/span>\n  <span class=\"nx\">resource<\/span> <span class=\"s2\">\"aws_security_group_rule\"<\/span> <span class=\"s2\">\"allow_all_egress\"<\/span> <span class=\"p\">{<\/span>\n    <span class=\"nx\">type<\/span>              <span class=\"p\">=<\/span> <span class=\"s2\">\"egress\"<\/span>    <span class=\"c1\"># \ud83d\udd04 Outbound traffic<\/span>\n    <span class=\"nx\">from_port<\/span>         <span class=\"p\">=<\/span> <span class=\"mi\">0<\/span>           <span class=\"c1\"># \ud83d\udd11 Any Port<\/span>\n    <span class=\"nx\">to_port<\/span>           <span class=\"p\">=<\/span> <span class=\"mi\">65535<\/span>       <span class=\"c1\"># \ud83d\udd11 Any Port<\/span>\n    <span class=\"nx\">protocol<\/span>          <span class=\"p\">=<\/span> <span class=\"s2\">\"-1\"<\/span>        <span class=\"c1\"># \ud83c\udf10 Any Protocol<\/span>\n    <span class=\"nx\">cidr_blocks<\/span>       <span class=\"p\">=<\/span> <span class=\"p\">[<\/span><span class=\"s2\">\"0.0.0.\n\n0\/0\"<\/span><span class=\"p\">]<\/span>  <span class=\"c1\"># \ud83c\udf0d Any IP<\/span>\n    <span class=\"nx\">security_group_id<\/span> <span class=\"p\">=<\/span> <span class=\"nx\">aws_security_group<\/span><span class=\"p\">.<\/span><span class=\"nx\">example<\/span><span class=\"p\">.<\/span><span class=\"nx\">id<\/span>\n  <span class=\"p\">}<\/span>\n<span class=\"p\">}<\/span>\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<hr\/>\n<h2><span class=\"ez-toc-section\" id=\"8_%D9%86%D8%AA%DB%8C%D8%AC%D9%87_%DA%AF%DB%8C%D8%B1%DB%8C\"><\/span>\n<p>  <strong>8. \u0646\u062a\u06cc\u062c\u0647 \u06af\u06cc\u0631\u06cc<\/strong><br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<ul>\n<li>\u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc AWS \u0647\u0633\u062a\u0646\u062f <strong>\u0628\u0631\u0627\u06cc \u0645\u062f\u06cc\u0631\u06cc\u062a \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0634\u0628\u06a9\u0647 \u0636\u0631\u0648\u0631\u06cc \u0627\u0633\u062a<\/strong> \u0628\u0647 \u0646\u0645\u0648\u0646\u0647 \u0647\u0627\u06cc EC2 \u0634\u0645\u0627.<\/li>\n<li>\n<strong>\u0642\u0648\u0627\u0646\u06cc\u0646 \u0648\u0631\u0648\u062f<\/strong> \u06a9\u0646\u062a\u0631\u0644 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0648\u0631\u0648\u062f\u06cc\u060c \u062f\u0631 \u062d\u0627\u0644\u06cc \u06a9\u0647 <strong>\u0642\u0648\u0627\u0646\u06cc\u0646 \u062e\u0631\u0648\u062c<\/strong> \u062a\u0631\u0627\u0641\u06cc\u06a9 \u062e\u0631\u0648\u062c\u06cc \u0631\u0627 \u0645\u062f\u06cc\u0631\u06cc\u062a \u06a9\u0646\u06cc\u062f<\/li>\n<li>\u0628\u0627 \u062f\u0631\u06a9 \u0686\u06af\u0648\u0646\u06af\u06cc <strong>\u067e\u0648\u0631\u062a \u0647\u0627<\/strong>\u060c <strong>\u067e\u0631\u0648\u062a\u06a9\u0644 \u0647\u0627<\/strong>\u060c \u0648 <strong>\u0628\u0644\u0648\u06a9 \u0647\u0627\u06cc CIDR<\/strong> \u0628\u0627 \u0647\u0645\u06a9\u0627\u0631\u06cc \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc\u060c \u0645\u06cc \u062a\u0648\u0627\u0646\u06cc\u062f \u0627\u0637\u0645\u06cc\u0646\u0627\u0646 \u062d\u0627\u0635\u0644 \u06a9\u0646\u06cc\u062f \u06a9\u0647 \u0632\u06cc\u0631\u0633\u0627\u062e\u062a AWS \u0634\u0645\u0627 \u0648\u062c\u0648\u062f \u062f\u0627\u0631\u062f <strong>\u0627\u0645\u0646<\/strong> \u0648 \u0628\u0647 \u062e\u0648\u0628\u06cc \u0645\u062f\u06cc\u0631\u06cc\u062a \u0645\u06cc \u0634\u0648\u062f.<\/li>\n<\/ul>\n<hr\/>\n<p>\u0627\u06cc\u0646 \u06cc\u0627\u062f\u062f\u0627\u0634\u062a \u0647\u0627 \u0628\u0627\u06cc\u062f \u0628\u0647 \u0631\u0648\u0634\u0646 \u0634\u062f\u0646 \u0645\u0641\u0627\u0647\u06cc\u0645 \u06a9\u0645\u06a9 \u06a9\u0646\u0646\u062f <strong>\u0642\u0648\u0627\u0646\u06cc\u0646 \u0648\u0631\u0648\u062f \u0648 \u062e\u0631\u0648\u062c<\/strong>\u060c <strong>\u067e\u0648\u0631\u062a \u0647\u0627<\/strong>\u060c \u0648 <strong>\u067e\u0631\u0648\u062a\u06a9\u0644 \u0647\u0627<\/strong> \u062f\u0631 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc AWS. \u0628\u0627 \u062e\u06cc\u0627\u0644 \u0631\u0627\u062d\u062a \u0627\u06cc\u0646 \u0642\u0648\u0627\u0646\u06cc\u0646 \u0648 \u062a\u0646\u0638\u06cc\u0645\u0627\u062a \u0631\u0627 \u062f\u0631 Terraform \u0628\u0631\u0627\u06cc \u0645\u0648\u0627\u0631\u062f \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u062e\u0648\u062f \u0622\u0632\u0645\u0627\u06cc\u0634 \u06a9\u0646\u06cc\u062f!<\/p>\n<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<p>Summarize this content to 400 words in Persian Lang 1. \u0645\u0642\u062f\u0645\u0647 \u0627\u06cc \u0628\u0631 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc AWS \ud83d\udd10 \u06af\u0631\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 \u0647\u0627\u06cc \u0645\u062c\u0627\u0632\u06cc \u0628\u0631\u0627\u06cc \u0646\u0645\u0648\u0646\u0647 \u0647\u0627\u06cc EC2 \u06a9\u0647 \u062a\u0631\u0627\u0641\u06cc\u06a9 \u0634\u0628\u06a9\u0647 \u0631\u0627 \u06a9\u0646\u062a\u0631\u0644 \u0645\u06cc \u06a9\u0646\u062f. \u0645\u062f\u06cc\u0631\u06cc\u062a \u0645\u06cc \u06a9\u0646\u0646\u062f \u0648\u0631\u0648\u062f (\u0648\u0631\u0648\u062f\u06cc) \u0648 \u062e\u0631\u0648\u062c \u062a\u0631\u0627\u0641\u06cc\u06a9 (\u062e\u0631\u0648\u062c\u06cc)\u060c \u062a\u0636\u0645\u06cc\u0646 \u0627\u0631\u062a\u0628\u0627\u0637 \u0627\u06cc\u0645\u0646 \u0628\u0631\u0627\u06cc \u0646\u0645\u0648\u0646\u0647 \u0647\u0627\u06cc EC2 \u0634\u0645\u0627. \u0645\u0641\u0627\u0647\u06cc\u0645 \u06a9\u0644\u06cc\u062f\u06cc: \u26a1 &hellip;<\/p>\n","protected":false},"author":2,"featured_media":84258,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"","fifu_image_alt":"","footnotes":""},"categories":[339],"tags":[],"class_list":["post-84257","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-dev"],"_links":{"self":[{"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/posts\/84257","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/comments?post=84257"}],"version-history":[{"count":0,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/posts\/84257\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/media\/84258"}],"wp:attachment":[{"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/media?parent=84257"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/categories?post=84257"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/tags?post=84257"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}