2 years ago

https://aws.amazon.com/polly/ In 2018 I wrote about https://aws.amazon.com/firewall-manager/ (https://aws.amazon.com/blogs/aws/aws-firewall-manager-central-management-for-your-web-application-portfolio/) and showed you how you could host multiple applications, perhaps spanning multiple AWS accounts and regions, while maintaining centralized control over your organization’s security settings and profile. In the same way that https://aws.amazon.com/rds/ supports multiple database engines, Firewall Manager supports multiple types of firewalls: https://aws.amazon.com/waf, https://aws.amazon.com/shield/, https://docs.aws.amazon.com/vpc/latest/userguide/VPC_SecurityGroups.html, https://aws.amazon.com/network-firewall, and https://aws.amazon.com/about-aws/whats-new/2021/03/introducing-amazon-route-53-resolver-dns-firewall/.

AWS Inside In addition to centralized provisioning and management via Firewall Manager, Cloud NGFW for AWS makes use of many other parts of AWS.

Under the hood, AWS Firewall Manager calls Cloud NGFW APIs to create NGFWs for the VPCs in my in-scope accounts, and the global rules are automatically associated with the created NGFWs.

As new AWS accounts join my organization, AWS Firewall Manager automatically ensures they are compliant by creating new NGFWs as needed.