# EC2 네트워크 ACL

## 리소스 유형

`AWS.EC2.NetworkACL`

## 리소스 ID 형식

EC2 네트워크 ACL의 경우 리소스 ID는 ARN입니다.

`arn:aws:ec2:us-west-2:123456789012:network-acl/acl-1`

## 배경

이 리소스는 AWS EC2 VPC NetworkACL의 스냅샷을 나타냅니다.

## 필드

| 필드       | 유형    | 설명                                            |
| -------- | ----- | --------------------------------------------- |
| `연결`     | `목록`  | 네트워크 ACL과 서브넷 간의 연결입니다.                       |
| `항목`     | `목록`  | 트래픽을 허용하거나 차단하기 위한 개별 네트워크 ACL 규칙             |
| `기본값 여부` | `부울`  | 이 Network ACL이 연결된 VPC의 기본 Network ACL인지 여부   |
| `소유자 ID` | `문자열` | 네트워크 인터페이스 소유자의 Amazon Web Services 계정 ID입니다. |
| `VPC ID` | `문자열` | VPC의 ID입니다.                                   |

## 예시

```javascript
{
    "AccountId": "123456789012",
    "Arn": "arn:aws:ec2:us-west-2:123456789012:network-acl/acl-1",
    "Associations": [
        {
            "NetworkAclAssociationId": "aclassoc-1",
            "NetworkAclId": "acl-1",
            "SubnetId": "subnet-1"
        }
    ],
    "Entries": [
        {
            "CidrBlock": "0.0.0.0/0",
            "Egress": true,
            "IcmpTypeCode": null,
            "Ipv6CidrBlock": null,
            "PortRange": {
                "From": 80,
                "To": 80
            },
            "Protocol": "6",
            "RuleAction": "허용",
            "RuleNumber": 100
        },
        {
            "CidrBlock": "10.0.0.0/20",
            "Egress": false,
            "IcmpTypeCode": null,
            "Ipv6CidrBlock": null,
            "PortRange": null,
            "Protocol": "-1",
            "RuleAction": "허용",
            "RuleNumber": 110
        }
    ],
    "Id": "acl-1",
    "IsDefault": false,
    "OwnerId": "123456789012",
    "Region": "us-west-2",
    "ResourceId": "arn:aws:ec2:us-west-2:123456789012:network-acl/acl-1",
    "ResourceType": "AWS.EC2.NetworkACL",
    "Tags": {
        "Name": "PrivateSubnetAcl",
        "aws:cloudformation:logical-id": "PrivateSubnetAcl",
        "aws:cloudformation:stack-id": "arn:aws:cloudformation:us-west-2:123456789012:stack/vpc/1",
        "aws:cloudformation:stack-name": "vpc"
    },
    "TimeCreated": null,
    "VpcId": "vpc-1"
}
```


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.panther.com/ko/cloud-scanning/cloud-resource-attributes/aws/ec2-network-acl.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.