Introduction to AWS Network Firewall
Managing Global Firewall Rules in AWS
AWS Network Firewall is a managed service used to deploy network protections for all of your VPCs and filter network traffic at the perimeter of your VPC. It will give you centralized, global control over firewall rules and policies. According to AWS, the main features of Network Firewall include:
- High availability and automated scaling
- Stateful firewall
- Web filtering
- Intrusion prevention
- Alert and flow logs
- Central management and visibility
- Rule management and customization
- Diverse ecosystem of partner integrations
To learn more about set up and configuration, visit the Developer Guide for AWS Network Firewall.
At the end of 2020, AWS introduced their Network Firewall. This was great news for people who traditionally have managed firewall rules and understand it in a global sense of controlling those rules across the infrastructure and applications. You are able to accomplish many of the things that compliance frameworks require for firewall capabilities by utilizing many of the built-in AWS services such as Web Application Firewall, AWS Shield, Security Groups. By implementing those tools, you are able to utilize AWS Firewall Manager to manage those policies that were configured in those different places. But now, Network Firewall gives you that centralized aspect of policy control across your VPCs and accounts. You can now have a security layer across your AWS environment with Network Firewall. It brings a lot of the capabilities that we typically think about when it comes to a network firewall. It offers web filtering. It offers intrusion prevention by providing a signature-based protection approach. It offers packet inspection from the network layer to the application layer. So be sure to check out Network Firewall and see if it’s a good solution for you in order to introduce global control across your assets.