NACL

[satish8450]

NACL, NACL : Network Access control list

If we have 1prod Server,1 Non Prod server are running and Fetching the Data from DB server all these 3 severs under Same VPC with different AZ's

Prod servers having Internet Access, Db not.

Setup :

Create VPC. Create 3 subnets in diff AZ's, ProdSubnet,NonProdSubnet,DbSubnet Create IGW and attach to VPC and associate with Prod,Nonprod Subnet,edit route table with 0.0.0.0 Target as IGW

Launch 3 servers and connect Prod and non-prod we can able to connect, DB won't

We need to establish the connection between Prod and Db server

By Default One NACL will created with this 3 subnets that is the reason Same region servers will communicate with each other

We can fetch the data from Db to Prod and Non-Prod

AIM : we need establish the connection between Prod to DB

Create Nacl and associate with Prod and Non Prod Subnets Create Nacl and associate with Db subnet

for establishing the connection between Prod and Db server

Goto DB NACL edit inbound and outbond rules with Prodserver CIDR Block

Now we can see only prod server only can communicate with Db server

So By Using NACL, we can communicate servers based on they needed