Amazon Web Services (AWS), a cloud security tool provider, has launched AWS Network Firewall. This managed service is specifically designed for AWS Virtual Private Cloud customers (VPC).
Network Firewall allows users to “an easier way of scaling network security across all resources in their workload, regardless which AWS services were used,” AWS stated in a blog post this week. Users don’t need to buy additional security infrastructure for traffic changes because it is scalable.
According to the blog, the service allows users to “easily deploy, manage stateful inspections, intrusion prevention, detection, and web filtering in order to protect your virtual networks using AWS.”
Users can create custom security rules to protect their workloads. They can block VPCs access to prohibited domains, block risky IP addresses, and identify malicious activities.
“AWS Network Firewall runs stateless traffic inspection engines. AWS explained that the engines use rules and other settings you set up within a firewall policy. A firewall is used in your VPC on a per-Availability Zone basis. You choose a subnet to host your firewall endpoint. This subnet will filter your traffic for each Availability Zone. The firewall endpoint within an Availability Zone can protect all subnets in the zone, except the one it is located in.
Network Firewall can be integrated with AWS Firewall Manager. This integration allows users to centralize their management for all firewall activities in their environments. It can also be used with AWS services such as CloudWatch, S3 or Kinesis Firehouse to provide analytics, as well as AWS partners like Palo Alto Networks, CrowdStrike, and Splunk.
You can find more information about AWS Network Firewall, including pricing and pricing, on the product page.