Security Groups & NACLs - Whitelist Port(s)

A network ACL that whitelists inbound and outbound traffic based on Port(s) and blocks all other traffic.

Items

Size

1.2 KB

Missing Parameters

AWSTemplateFormatVersion: '2010-09-09'
Description: ''
Resources:
  NetworkAcl:
    Type: 'AWS::EC2::NetworkAcl'
    Properties:
      VpcId: ''
  IngressRule0:
    Type: 'AWS::EC2::NetworkAclEntry'
    Properties:
      Egress: false
      NetworkAclId:
        Ref: NetworkAcl
      CidrBlock: 0.0.0.0/0
      Protocol: tcp
      PortRange:
        From: ''
        To: ''
      RuleNumber: '100'
      RuleAction: allow
  IngressRule1:
    Type: 'AWS::EC2::NetworkAclEntry'
    Properties:
      Egress: false
      NetworkAclId:
        Ref: NetworkAcl
      CidrBlock: 0.0.0.0/0
      Protocol: '-1'
      RuleNumber: '200'
      RuleAction: deny
  EgressRule0:
    Type: 'AWS::EC2::NetworkAclEntry'
    Properties:
      Egress: true
      NetworkAclId:
        Ref: NetworkAcl
      CidrBlock: 0.0.0.0/0
      Protocol: tcp
      PortRange:
        From: ''
        To: ''
      RuleNumber: '100'
      RuleAction: allow
  EgressRule1:
    Type: 'AWS::EC2::NetworkAclEntry'
    Properties:
      Egress: true
      NetworkAclId:
        Ref: NetworkAcl
      CidrBlock: 0.0.0.0/0
      Protocol: '-1'
      RuleNumber: '200'
      RuleAction: deny
Parameters: {}
Metadata: {}
Conditions: {}

* Required field

Configuration Source: Native Feature

A configuration package to deploy an Amazon VPC with predefined presets to select: Subnet Tiers (Public and Private), Availability Zones, and Internet Connectivity. Configuration includes Subnets, Routing Tables, Internet Gateway, Nat Gateways, and Security Groups

Configuration Package

Security Control

Domain

Configuration Packages

Solutions, Guides & Tools

Overview

Configuration Templates

Actions

Sources and Documentation