By using AWS re:Post, you agree to the Terms of Use

AWS NLB security group


Hello all!

I've been considering using a NLB, and was wondering if someone would be kind enough to answer the following questions:

Does AWS NLB have security group?

Can I attach security group to NLB?

How do I protect my AWS NLB?

Do Albs have security groups?

3 Answers

The NLB itself doesn't have any security group. Instead, you control access using the security groups(s) attached to the EC2 instances. The source IP address is preserved, so you work with security group configuration (and other firewalls so to speak) as if the client had connected directly to your machine. The load balancer is kind of more transparent than in the ELB/ALB case. Refer for step-by-step instruction.

answered 9 months ago

AWS Network Load Balancer does not support security groups today. You can use Amazon VPC NACLs, AWS Network Firewall, and/or a marketplace firewall with AWS Gateway Load Balancer to provide various levels of protection for your NLB. You can also use security groups on your targets if client IP preservation is enabled (see more here about when client IP preservation is supported)

Application Load Balancers do support security groups today.

For more information comparing ALB vs NLB, I suggest you check out this page.

answered 9 months ago

NLB will connect to the IP of your machine ( any cloud or on-prem ), you must be using a software/tool like firewall or proxy already in your cloud / on-premise to protect the Virtual machines, you can still continue using that for the machine and in AWS NLB will act as only the load balancer with the provided algorithm/configurations

answered 9 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions