AI CloudAdvisor (Beta)

My Presets

You must be logged in to save or view your saved configuration templates

Security Controls

Service Control PoliciesConfig RulesCloudWatch Alarms and Event RulesCloudFormation Guard RulesLogging & Monitoring ConfigurationsBackups & DRAuto Remediation RulesConformance PacksBilling and Cost ManagementS3 Bucket PoliciesSecurity Groups & NACLsIAM PoliciesVPC Endpoint Policies

AWS Services

Guided Walkthroughs

Configuration Packages

Reference Guides

Other

AI CloudAdvisor (Beta)

Configuration Stack
0

My Presets

Security Controls

AWS Services

Guided Walkthroughs

Configuration Packages

Reference Guides

Other

Security Groups & NACLs

A repository of AWS Security Group and network ACL configurations. Configuration templates are available in AWS CloudFormation, AWS CLI and Terraform

EC2

This template creates two VPC security groups with egress and ingress rules. The `SourceSG` security group allows outbound traffic to the `TargetSG` security group. The `TargetSG` security group allows inbound traffic from the `SourceSG` security group. The outbound rule allows TCP traffic from port 0 to port 65535, and the inbound rule allows TCP traffic from port 0 to port 65535.

CloudFormation
VPC

Build a custom security group.

CloudFormationTerraformAWS CLI

A security group that allows inbound web traffic (TCP ports 80 and 443).

CloudFormationTerraformAWS CLI

A security group that allows inbound RDP traffic (TCP port 3389).

CloudFormationTerraformAWS CLI

A security group that allows inbound SSH traffic (TCP port 22).

CloudFormationTerraformAWS CLI

A security group that allows domain controller services on Microsoft Active Directory servers.

CloudFormationTerraformAWS CLI

A security group that allows inbound DNS traffic (TCP and UDP port 53).

CloudFormationTerraformAWS CLI

A security group that allows inbound ICMP traffic.

CloudFormationTerraformAWS CLI

A security group that allows inbound access to a Maria DB instance.

CloudFormationTerraformAWS CLI

A security group that allows inbound access to a Microsoft SQL server instance.

CloudFormationTerraformAWS CLI

A security group that allows inbound access to a MySQL server instance.

CloudFormationTerraformAWS CLI

A security group that allows inbound access to an Oracle server instance.

CloudFormationTerraformAWS CLI

A security group that allows inbound access to an PostgreSQL server instance.

CloudFormationTerraformAWS CLI

A security group for Amazon EFS that allows inbound NFS access from resources (including the mount target) associated with this security group (TCP 2049).

CloudFormationTerraformAWS CLI

A security group that allows inbound access to an Amazon Redshift cluster (TCP 5439)

CloudFormationTerraformAWS CLI

A security group that allows inbound access to an Amazon OpenSearch (TCP 443 and 80)

CloudFormationTerraformAWS CLI

Build a custom network ACL.

CloudFormationTerraformAWS CLI

A network ACL that blacklist inbound traffic based on IP address(es).

CloudFormationTerraformAWS CLI

A network ACL that blacklist inbound and outbound traffic based on Port(s).

CloudFormationTerraformAWS CLI

A network ACL that whitelists inbound and outbound traffic based on Port(s) and blocks all other traffic.

CloudFormationTerraformAWS CLI
EC2
VPC