Controlling network access to Amazon EFS file systems for NFS clients

You can control access by NFS clients to Amazon EFS file systems using network layer security and EFS file system policies. You can use the network layer security mechanisms available with Amazon EC2, such as VPC security group rules and network ACLs. You can also use Amazon IAM to control NFS access with an EFS file system policy and identity-based policies.

Topics

Using VPC security groups for Amazon EC2 instances and mount targets
Source ports for working with EFS
Security considerations for network access
Working with interface VPC endpoints in Amazon EFS

Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Controlling file system data access

Using VPC security groups for Amazon EC2 instances and mount targets