Security Groups & NACLs - Blacklist Port(s)

A network ACL that blacklist inbound and outbound traffic based on Port(s).

Source

Native Feature

How-to |CloudFormation |AWS CLI

Items

Size

1.2 KB

Missing Parameters

YAML/JSON

AWSTemplateFormatVersion: '2010-09-09'
Resources:
  NetworkAcl:
    Type: 'AWS::EC2::NetworkAcl'
    Properties:
      VpcId: ''
  IngressRule0:
    Type: 'AWS::EC2::NetworkAclEntry'
    Properties:
      Egress: false
      NetworkAclId:
        Ref: NetworkAcl
      CidrBlock: 0.0.0.0/0
      Protocol: tcp
      PortRange:
        From: ''
        To: ''
      RuleNumber: '100'
      RuleAction: deny
  IngressRule1:
    Type: 'AWS::EC2::NetworkAclEntry'
    Properties:
      Egress: false
      NetworkAclId:
        Ref: NetworkAcl
      CidrBlock: 0.0.0.0/0
      Protocol: '-1'
      RuleNumber: '200'
      RuleAction: allow
  EgressRule0:
    Type: 'AWS::EC2::NetworkAclEntry'
    Properties:
      Egress: true
      NetworkAclId:
        Ref: NetworkAcl
      CidrBlock: 0.0.0.0/0
      Protocol: tcp
      PortRange:
        From: ''
        To: ''
      RuleNumber: '100'
      RuleAction: deny
  EgressRule1:
    Type: 'AWS::EC2::NetworkAclEntry'
    Properties:
      Egress: true
      NetworkAclId:
        Ref: NetworkAcl
      CidrBlock: 0.0.0.0/0
      Protocol: '-1'
      RuleNumber: '200'
      RuleAction: allow
Parameters: {}
Metadata: {}
Conditions: {}

* Required field