Getting started with NACL | Scribe

Getting started with NACL

  • Hafeez Baig |
  • 15 steps |
  • 2 minutes
  • Amazon Web ServicesAmazon Web Services
information ordinal icon
Refer to the following guide to learn how to use IAM in the cloud\ <https://scribehow.com/shared/Creating_an_IAM_User_and_User_Group_in_AWS_Management_Console__hWNiiXlcRJKFqYZZEJD-cg>
1
Sign in to **AWS Management Console** as an **IAM User** **Pre-requisite** - Ensure you have selected the AWS region closest to your location\ For this guide, we will be using us-east-2 (Ohio) as a preferred choice
2
Type **VPC** in the search bar and click on **VPC** to view the VPC Dashboard
3
On the VPC dashboard click on the **Network ACLs** from the left side bar
4
On the Network ACLs dashboard select the Network ACLs
5
Scroll to the overview section and click on the **Details** tab, to view the basic Details of Network Access Control List
6
Click on the **Inbound rules** tab to view the Inbound rules associated with the selected Network Access Control List
7
Click on the **Edit inbound rules** button on the right side to edit Inbound rules
8
Edit inbound rules wizard will open. To add a new rule, click on the **Add new rule** button
9
Provide the **Rule number** for example "99" and from the **Type** dropdown select **Custom TCP**
10
Provide the **Source** IP address and choose whether to **Allow/Deny** the specified traffic to enter your VPC and click on the **Save changes** button
11
Click on the **Onbound rules** tab to view the outbound rules associated with the selected Network Access Control List
12
Click on the **Edit outbound rules** button on the right side to edit outbound rules
13
**Edit outbound rules** wizard will open. To add a new rule, click on the **Add new rule** button
14
Provide the **Rule number** and from the **Type** dropdown select **Custom TCP**
15
Provide the **Destination** IP address and choose whether to **Allow/Deny** the specified traffic to leave your VPC and click on **Save changes** button
information ordinal icon
In conclusion, Network Access Control Lists (NACLs) provide a stateless firewall at the subnet level within a Virtual Private Cloud (VPC), allowing control over inbound and outbound traffic. By configuring NACL rules with priorities, one can selectively allow or deny traffic based on source, destination, and protocol. NACLs are essential for enforcing security policies and restricting access to resources within the VPC.
information ordinal icon
Congratulations on completing the lab and getting started with NACL (Network Access Control Lists)! Well done!