Loading...
 

Network Access Control Lists


To add a further layer of security within VPCs, customers can configure Network ACLs. These are stateless traffic filters that apply to all traffic inbound or outbound from a subnet within a VPC. These ACLs can contain ordered rules to allow or deny traffic based upon IP protocol, by service port, as well as source/destination IP address. Like security groups, network ACLs are managed through VPC APIs, adding an additional layer of protection and enabling additional security through separation of duties.