AWS Console - Network ACL - Inbound/Outbound Rules

Question

Is there a way in which I can Export the Inbound Rules for a network ACL?? Currently everytime a new server is created on AWS, and we setup the rules we have to manually key in the inbound rules each time? sometimes they have up to 18 entries on them.  Is there a way so export and import these on the console???

Answer

You can from within the console use [CloudShell](https://aws.amazon.com/cloudshell/) to get a CLI for your account. From this CLI you can use the describe network ACLs to get the current, https://docs.aws.amazon.com/cli/latest/reference/ec2/describe-network-acls.html and then use the create-network ACL with the previously exported json to create the ACL programmatically. https://docs.aws.amazon.com/cli/latest/reference/ec2/create-network-acl.html

In all reality the console should be a last resort for implementing things. Instead I would leverage the CLI or CloudFormation for repeatable infrastructure tasks.

Here's the example for ACLs in CloudFormation: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-networkacl.html

AWS Console - Network ACL - Inbound/Outbound Rules

相關內容