Network Security Basics

Essentials

• Default deny policy for east-west traffic.
• TLS for service-to-service communication.
• Principle of least privilege for ports and CIDRs.

Controls

• Security groups / NACL / firewall rules
• mTLS where trust boundaries require it
• Centralized audit logging for denied traffic