- Lab
-
Libraries: If you want this lab, consider one of these libraries.
- Cloud

Configuring NACLs Using AWS
Securing an AWS Virtual Private Cloud (VPC) is an important cloud security skill. In this lab scenario, it's your responsibility to implement two network access control lists (NACLs) for the VPC's public and private subnets. By controlling network access of the two subnets, you can ensure that unused protocols are denied access to properly secure the VPC.

Lab Info
Table of Contents
-
Challenge
Create NACL for Public Subnet
- Create a NACL called Public.
- Allow inbound and outbound traffic for the following protocols: SSH, DNS, HTTP, and HTTPS.
- Deny all other traffic.
- Associate Public NACL with the public subnet.
-
Challenge
Create NACL for Private Subnet
- Create a NACL called Private.
- Deny inbound and outbound traffic for the following protocols: FTP (port 21), SMB, and RDP.
- Allow all other traffic.
- Associate Private NACL with private subnet.
About the author
Real skill practice before real-world application
Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.
Learn by doing
Engage hands-on with the tools and technologies you’re learning. You pick the skill, we provide the credentials and environment.
Follow your guide
All labs have detailed instructions and objectives, guiding you through the learning process and ensuring you understand every step.
Turn time into mastery
On average, you retain 75% more of your learning if you take time to practice. Hands-on labs set you up for success to make those skills stick.