Centrally manage VPC network ACL rules to block unwanted traffic using AWS Firewall Manager
Security Blog
This article discusses how to use AWS Firewall Manager to centrally manage network ACL rules for VPC subnets across AWS accounts within an organization. It allows you to define common rules to deny inbound or outbound traffic based on IP addresses, ports, or protocols.
Specifically, the article covers:
- Denying inbound traffic from a public IP range using network ACL security policies
- Denying outbound traffic to specific ports like LDAP (389) used by malware or exploits
- Setting up policy scope, remediation actions, and resource cleanup
- Working with network ACLs managed by Firewall Manager and potential service control policies
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
May 9
2024
2024
How to enforce a security baseline for an AWS WAF ACL across your organization using AWS Firewall Manager
Feb 16
2024
2024
How to automate rule management for AWS Network Firewall
Nov 19
2025
2025
Simplify cloud security with managed rules from AWS Marketplace for AWS Network Firewall
Sep 25
2025
2025
AWS Network Firewall enhances application layer traffic controls
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.