DEV Community

loading...

Network ACL vs Security Groups

viv profile image Vivek Siva ・1 min read
Network ACL Security Group
At subnet level At instance level
First level for ingress 1st level for egress
This can have both allow and deny rules This can have only allow rules
Ordered rules ( processed in a order) not ordered
default - allow all and deny all in that order default deny all in bound, allow all outbound
stateless(rule should be applied both ingress & egrees) stateful (applied automatically)

Discussion

pic
Editor guide