In AWS, AWS Network Firewall policies control firewall rules, defining the monitoring and protection behavior for a firewall by using rule groups and policy default settings.
-
Firewall Policy:
This defines the monitoring and protection behavior for a firewall, specifying how traffic is handled.
-
Rule Groups:
These are collections of rules that define the actions to take when Network Firewall finds a match for specific traffic patterns.
-
Stateless and Stateful Rule Groups:
Network Firewall uses both stateless and stateful
rule groups, each with its own Amazon Resource Name (ARN). -
Policy Default Actions:
You can define how Network Firewall handles packets that don’t match any of the rules in the stateless rule groups.
-
Firewall Manager:
This service enables you to centrally deploy and manage security policies across your applications, VPCs, and accounts in AWS Organizations.
-
AWS WAF:
While not directly part of Network Firewall, AWS WAF (Web Application Firewall) is another AWS service that helps protect web applications from attacks by allowing you to configure rules that allow, block, or monitor web requests.
-
IAM Policies:
IAM (Identity and Access Management) policies are used to grant users or roles permissions to create, modify, or manage Network Firewall resources.
-
Prefix Lists:
Network Firewall supports Amazon VPC prefix lists to simplify management of firewall rules and policies across your VPCs.
-
Tag-based Resource Groups:Network Firewall supports tag-based resource groups to simplify management of firewall rules.