Image: AWS VPC
Dashboard -> Network ACL: Adding Rules
Table of Type, Protocol and Port Range
Type | Protocol | Port Range
---------------------+---------------+-----------
Custom
TCP Rule | TCP (6) | 0 to 65535
Custom
UDP Rule | UDP (17) | 0 to 65535
Custom
ICMP Rule | ICMP (1) | {APPENDIX A}
Custom
Protocol Rule | {APPENDIX B} |
ALL
TCP | TCP (6) | ALL
ALL
UDP | UDP (17) | ALL
ALL
IMCP - IPv4 | ICMP (1) | ALL
ALL
ICMP - IPv6 | IPv6-ICMP (58)| ALL
ALL
Traffic | ALL | ALL
SSH
(22) | TCP (6) | 22
telnet
(23) | TCP (6) | 23
SMTP
(25) | TCP (6) | 25
nameserver
(42) | TCP (6) | 42
DNS
(UDP) (53) | UDP (17) | 53
DNS
(TCP) (53) | TCP (6) | 53
HTTP
(80) | TCP (6) | 80
POP3
(110) | TCP (6) | 110
IMAP
(143) | TCP (6) | 143
LDAP
(389) | TCP (6) |
389
HTTPS
(443) | TCP (6) | 443
SMTPS
(465) | TCP (6) | 465
IMAPS
(993) | TCP (6) | 993
POP3S
(995) | TCP (6) | 995
MS
SQL (1433) | TCP (6) | 1433
Oracle
(1521) | TCP (6) | 1521
MySQL/Aurora
(3306) | TCP (6) | 3306
NFS
(2049) | TCP (6) | 2049
RDP
(3389) | TCP (6) | 3389
PostgreSQL
(5432) | TCP (6) | 5432
Redshift
(5439) | TCP (6) | 5439
WinRM-HTTP
(5985) | TCP (6) | 5985
WinRM-HTTPS
(5986) | TCP (6) | 5986
HTTP*
(8080) | TCP (6) | 8080
HTTPS*
(8443) | TCP (6) | 8443
---------------------+---------------+------
APPENDIX A: ICMP Port Range Options
Echo
Reply
Destination
Unreachable
Source
Quench
Redirect
Message
Alternate
Host Address
Echo
Request
Router
Advertisement
Router
Solicitation
Time
Exceeded
Parameter
Problem: Bad IP header
Timestamp
Timestamp
Reply
Information
Request
Information
Reply
Address
Mask Request
Address
Mask Reply
Traceroute
Datagram
Conversion Error
Mobile
Host Redirect
Where
Are You
Here
I Am
Mobile
Registration Request
Mobile
Registration Reply
Domain
Name Request
Domain
Name Reply
SKIP
Algorithm Discovery Protocol
Photuris,
Security Failures
APPENDIX B: Protocol Options
ALL
HOPOPT
(0)
ICMP
(1)
IGMP
(2)
GGP
(3)
IPv4
(4)
ST
(5)
TCP
(6)
CBT
(7)
EGP
(8)
IGP
(9)
BBN-RCC-MON
(10)
NVP-II
(11)
PUP
(12)
ARGUS
(13)
EMCON
(14)
XNET
(15)
CHAOS
(16)
UDP
(17)
MUX
(18)
DCN-MEAS
(19)
HMP
(20)
PRM
(21)
XNS-IDP
(22)
TRUNK-1
(23)
TRUNK-2
(24)
LEAF-1
(25)
LEAF-2
(26)
RDP
(27)
IRTP
(28)
ISO-TP4
(29)
NETBLT
(30)
MFE-NSP
(31)
MERIT-INP
(32)
DCCP
(33)
3PC
(34)
IDPR
(35)
XTP
(36)
DDP
(37)
IDPR-CMTP
(38)
TP++
(39)
IL
(40)
IPv6
(41)
SDRP
(42)
IPv6-Route
(43)
IPv6-Frag
(44)
IDRP
(45)
RSVP
(46)
GRE
(47)
DSR
(48)
BNA
(49)
ESP
(50)
AH
(51)
I-NLSP
(52)
SWIPE
(53)
NARP
(54)
MOBILE
(55)
TLSP
(56)
IPv6-ICMP
(58)
IPv6-NoNxt
(59)
IPv6-Opts
(60)
61
CFTP
(62)
63
SAT-EXPAK
(64)
KRYPTOLAN
(65)
RVD
(66)
IPPC
(67)
68
SAT-MON
(69)
VISA
(70)
IPCV
(71)
CPNX
(72)
CPHB
(73)
WSN
(74)
PVP
(75)
BR-SAT-MON
(76)
SUN-ND
(77)
WB-MON
(78)
WB-EXPAK
(79)
ISO-IP
(80)
VMTP
(81)
SECURE-VMTP
(82)
VINES
(83)
IPTM
(84)
TTP
(84)
NSFNET-IGP
(85)
DGP
(86)
TCF
(87)
EIGRP
(88)
OSPFIGP
(89)
Sprite-RPC
(90)
LARP
(91)
MTP
(92)
AX.25
(93)
IPIP
(94)
MICP
(95)
SCC-SP
(96)
ETHERIP
(97)
ENCAP
(98)
99
GMTP
(100)
IFMP
(101)
PNNI
(102)
PIM
(103)
ARIS
(104)
SCPS
(105)
QNX
(106)
A/N
(107)
IPComp
(108)
SNP
(109)
Compaq-Peer
(110)
IPX-in-IP
(111)
VRRP
(112)
PGM
(113)
114
L2TP
(115)
DDX
(116)
IATP
(117)
STP
(118)
SRP
(119)
UTI
(120)
SMP
(121)
SM
(122)
PTP
(123)
ISIS
over IPv4 (124)
FIRE
(125)
CRTP
(126)
CRUDP
(127)
SSCOPMCE
(128)
IPLT
(129)
SPS
(130)
PIPE
(131)
SCTP
(132)
FC
(133)
RSVP-E2E-IGNORE
(134)
Mobility
Header (135)
UDPLite
(136)
MPLS-in-IP
(137)
manet
(138)
HIP
(139)
Shim6
(140)
WESP
(141)
ROHC
(142)
253
254
THE END
Comments
Post a Comment