Section 3: Key Concepts and Terminologies
- Rule Number: Rules can be numbered starting from 1 to 32766. It is evaluated in ascending order, which means from lower to higher. If a lower numbered rule is matched with the traffic, it is applied regardless of any higher numbered rule, contradicting it.
- Protocol: You can specify the protocol of the traffic that should match (EX: ICMP,TCP).
- Port Number: To specify the listening port.(Ex: Port 80 for HTTP)
- Source: This is for inbound rules only to specify the source with what CIDR value is allowed.
- Destination: This is for outbound rules only to specify the destination with what CIDR value is allowed.
- Type: The type of traffic can be All traffic or specific such as “SSH”.
- Allow/Deny: To Specify whether to allow or deny the traffic.
AWS NACL (Network Access Control List)
Amazon web services provide a wide list of services and makes sure that these services do not have to compromise with security. AWS takes security with highest priority and provides a comprehensive set of tools and features to help the users protect their data and applications in the cloud.