Introduction
💁♂️ Finally, AWS Network Load Balancers (NLB) started supporting Security Groups 😃
We can now configure security group rules to help ensure that NLB only accepts traffic from trusted IP addresses which will improve our application’s security posture and simplifies operations.
Considerations for using security groups with a NLB
✅ You can associate at least one security group with a Network Load Balancer when you create it.
✅ If you create a Network Load Balancer without associating any security groups, you can’t associate them with the load balancer later on.
✅ Health checks are subject to outbound rules, but not inbound rules.
✅ You can control whether PrivateLink traffic is subject to inbound rules. If you enable inbound rules on PrivateLink traffic, the source of the traffic is the private IP address of the client, not the endpoint interface.