Firewall Manager

  • Centralized security management service for firewall rules across accounts.

  • Works with AWS Organizations to manage security policies organization-wide.

  • Supports AWS WAF, AWS Shield Advanced, VPC security groups, and Network Firewall.

  • Automatically applies policies to new and existing accounts in an organization.

  • Enforces compliance by detecting and correcting non-compliant resources.

  • Supports region-specific and global resource policies.

  • Can create and manage security group policies to audit and remediate VPC rules.

  • Integrates with Shield Advanced to manage DDoS protection policies.

  • Provides centralized visibility into security configurations and compliance status.

  • Automatically applies WAF rules to CloudFront distributions, ALBs, and API Gateway.

  • Helps maintain a consistent security posture across multiple accounts.

  • Allows exception handling for specific resources.

  • Sends compliance notifications via Amazon SNS.

  • Can be used to manage AWS Network Firewall rule groups and policies.

  • Only available to the management account of an AWS Organization.

Last updated