Resource Type: AWS > VPC > Network ACL

The Network Access Control List (Network ACL) resource type is part of the AWS Virtual Private Cloud (VPC) service. Each Network ACL is a virtual firewall for controlling traffic in and out of a VPC subnet. It can be used to create rules that allow or deny specific traffic to and from associated EC2 instances.

Resource Context

Network ACL is a part of the VPC service.

Each Network ACL lives under a VPC.

Controls

The primary controls for AWS > VPC > Network ACL are:

It is also targeted by these controls:

Quick Actions

In Your Workspace

Developers

Resource Type URI

tmod:@turbot/aws-vpc-security#/resource/types/networkAcl

Category URI

tmod:@turbot/turbot#/resource/categories/networking

GraphQL

query resource(id: "tmod:@turbot/aws-vpc-security#/resource/types/networkAcl") { … }

query resourceActivities(filter: "resourceId:'tmod:@turbot/aws-vpc-security#/resource/types/networkAcl'") { … }

mutation createResource(input: { … })

mutation updateResource(input: { … })

CLI

Get Resource

turbot graphql resource --id "tmod:@turbot/aws-vpc-security#/resource/types/networkAcl"

Steampipe Query

Get Resource

select * from guardrails_resource where resource_type_uri = 'tmod:@turbot/aws-vpc-security#/resource/types/networkAcl';

Get Policy Settings (By Resource ID)

select * from guardrails_policy_setting where filter = 'resourceTypeId:"tmod:@turbot/aws-vpc-security#/resource/types/networkAcl"';

Get Resource Notification

select * from guardrails_notification where resource_type_uri = 'tmod:@turbot/aws-vpc-security#/resource/types/networkAcl' and notification_type in ('resource_updated', 'resource_created');