A repository of AWS Security Group and network ACL configurations. Configuration templates are available in AWS CloudFormation, AWS CLI and Terraform

VPC
Custom Security Group

Build a custom security group.

CloudFormationTerraformAWS CLI
Web Server Security Group

A security group that allows inbound web traffic (TCP ports 80 and 443).

CloudFormationTerraformAWS CLI
Remote Desktop Protocol (RDP) Security Group

A security group that allows inbound RDP traffic (TCP port 3389).

CloudFormationTerraformAWS CLI
SSH Security Group

A security group that allows inbound SSH traffic (TCP port 22).

CloudFormationTerraformAWS CLI
Microsoft Active Directory Security Group

A security group that allows domain controller services on Microsoft Active Directory servers.

CloudFormationTerraformAWS CLI
DNS Server Security Group

A security group that allows inbound DNS traffic (TCP and UDP port 53).

CloudFormationTerraformAWS CLI
ICMP Security Group

A security group that allows inbound ICMP traffic.

CloudFormationTerraformAWS CLI
Maria DB Security Group

A security group that allows inbound access to a Maria DB instance.

CloudFormationTerraformAWS CLI
Microsoft SQL Server Security Group

A security group that allows inbound access to a Microsoft SQL server instance.

CloudFormationTerraformAWS CLI
MySql DB Security Group.

A security group that allows inbound access to a MySQL server instance.

CloudFormationTerraformAWS CLI
Oracle DB Security Group.

A security group that allows inbound access to an Oracle server instance.

CloudFormationTerraformAWS CLI
PostgreSQL DB Security Group.

A security group that allows inbound access to an PostgreSQL server instance.

CloudFormationTerraformAWS CLI
Amazon EFS Security Group

A security group for Amazon EFS that allows inbound NFS access from resources (including the mount target) associated with this security group (TCP 2049).

CloudFormationTerraformAWS CLI
Redshift Cluster Security Group

A security group that allows inbound access to an Amazon Redshift cluster (TCP 5439)

CloudFormationTerraformAWS CLI
Amazon OpenSearch Security Group

A security group that allows inbound access to an Amazon OpenSearch (TCP 443 and 80)

CloudFormationTerraformAWS CLI
Custom Network ACL

Build a custom network ACL.

CloudFormationTerraformAWS CLI
Network ACL: Blacklist IP Address(es)

A network ACL that blacklist inbound traffic based on IP address(es).

CloudFormationTerraformAWS CLI
Network ACL: Blacklist Port(s)

A network ACL that blacklist inbound and outbound traffic based on Port(s).

CloudFormationTerraformAWS CLI
Network ACL: Whitelist Port(s)

A network ACL that whitelists inbound and outbound traffic based on Port(s) and blocks all other traffic.

CloudFormationTerraformAWS CLI
Network ACL Entry for Outbound IPv4 Traffic

This template creates a network ACL and adds an entry to allow all outbound IPv4 traffic. The network ACL is associated with a VPC and has a rule number, protocol, rule action, CIDR block, and egress flag specified.

CloudFormation
Network ACL Entry for Inbound SSH Traffic

This template creates a network ACL and adds an entry to allow inbound SSH traffic from a specified network. The network ACL is associated with a VPC and has a rule number, protocol, rule action, CIDR block, and port range specified.

CloudFormation