|
|
|
|
|
|
by ajbourg
2705 days ago
|
|
|
Yes, this is one of the best reasons to use network ACLs. (You can also achieve this with routes) I think the idea is that separate teams with different responsibilities can manage the two different layers. Your app team may manage the security groups but the security team manages network ACLs which limit what can go into or come out of a subnet. |
|
|