VPC Network ACLs Inbound Outbound rules
0
is there any possibility to remove this 'Deny' rules that you can see on the screenshot?
2 回答
- 最新
- 投票最多
- 评论最多
2
No you can't remove that Deny rule, but the default rule #100 effectively overrides it 100% if that's what you want to do. It allows all traffic so that rule #101 in your screenshot is redundant.
1
No, but you don't need to. The rules in NACL are enforced in the order according to the rule number. Once a rule is matched the action of that rule determines what happens to the packet (allow/deny) and the rules after that are not examined.
ok, thank you for the answer. My original problem is that during the aws workshop https://catalog.us-east-1.prod.workshops.aws/workshops/75a20314-5e15-4246-9352-3643d9dafc43/en-US/modules/module-6-deploy-chatbot-to-a-public-site , I cannot open externally the url, it gives me error "Unable to reach the site. Connection refused by 18.171.148.137". trying to check the closure with nmap it tells me the port 8501 is closed. Do you know why ?