- A Cloud Guru
Configuring NACLs Using AWS
Securing an AWS Virtual Private Cloud (VPC) is an important cloud security skill. In this lab scenario, it's your responsibility to implement two network access control lists (NACLs) for the VPC's public and private subnets. By controlling network access of the two subnets, you can ensure that unused protocols are denied access to properly secure the VPC.
Table of Contents
Create NACL for Public Subnet
- Create a NACL called Public.
- Allow inbound and outbound traffic for the following protocols: SSH, DNS, HTTP, and HTTPS.
- Deny all other traffic.
- Associate Public NACL with the public subnet.
Create NACL for Private Subnet
- Create a NACL called Private.
- Deny inbound and outbound traffic for the following protocols: FTP (port 21), SMB, and RDP.
- Allow all other traffic.
- Associate Private NACL with private subnet.
What's a lab?
Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.