-
Notifications
You must be signed in to change notification settings - Fork 210
/
ec2_networkaclentry_reused_ports.yml
65 lines (65 loc) · 1.47 KB
/
ec2_networkaclentry_reused_ports.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
---
Resources:
VPC:
Type: AWS::EC2::VPC
Properties:
CidrBlock: "10.0.0.0/16"
EnableDnsSupport: true
EnableDnsHostnames: true
InstanceTenancy: "default"
myNetworkAcl:
Type: AWS::EC2::NetworkAcl
Properties:
VpcId: !Ref VPC
myNetworkAcl2:
Type: AWS::EC2::NetworkAcl
Properties:
VpcId: !Ref VPC
myNetworkAclEntry:
Type: AWS::EC2::NetworkAclEntry
Properties:
NetworkAclId: !Ref myNetworkAcl
Protocol: "6"
RuleAction: "allow"
RuleNumber: "100"
CidrBlock: "10.0.0.0/16"
Egress: false
PortRange:
From: '443'
To: '443'
myNetworkAclEntry2:
Type: AWS::EC2::NetworkAclEntry
Properties:
NetworkAclId: !Ref myNetworkAcl
Protocol: "6"
RuleAction: "deny"
RuleNumber: "200"
CidrBlock: "0.0.0.0/0"
Egress: false
PortRange:
From: '443'
To: '443'
myNetworkAclEntry3:
Type: AWS::EC2::NetworkAclEntry
Properties:
NetworkAclId: !Ref myNetworkAcl2
Protocol: "6"
RuleAction: "allow"
RuleNumber: "200"
CidrBlock: "10.0.0.0/16"
Egress: false
PortRange:
From: '443'
To: '443'
myNetworkAclEntry4:
Type: AWS::EC2::NetworkAclEntry
Properties:
NetworkAclId: !Ref myNetworkAcl2
Protocol: "6"
RuleAction: "deny"
RuleNumber: "100"
CidrBlock: "0.0.0.0/0"
Egress: false
PortRange:
From: '443'
To: '443'