DEV Community

Vivek Siva
Vivek Siva

Posted on

Network ACL vs Security Groups

Network ACL Security Group
At subnet level At instance level
First level for ingress 1st level for egress
This can have both allow and deny rules This can have only allow rules
Ordered rules ( processed in a order) not ordered
default - allow all and deny all in that order default deny all in bound, allow all outbound
stateless(rule should be applied both ingress & egrees) stateful (applied automatically)

Discussion (0)