AWS Network ACL and Ephemeral Ports

Troubleshooting with VPC Flowlog

Zhimin Wen
4 min readApr 23, 2024

--

Generated by Meta AI

I have a route53 outbound resolver to resolve the hostname from on premise DNS servers. I need to have the network ACL implemented to tighten the security.

For the outbound resolver, it has two ENI cards in the subnet of 10.10.0.0/24 with the IP addresses of 10.10.0.53 and 10.10.0.54 respectively. Therefore we could…

--

--