AWS Network Firewall provides network protection across all workloads

New firewall tools offer improved security in virtual private clouds

AWS has launched a new security service for customers running virtual private clouds on AWS. 

The AWS Network Firewall promises a high-availability, managed network firewall for customers’ workloads. AWS claims the firewall will offer protections against common network threats, including dynamic packet filtering, intrusion prevention and detection, and web filtering.

AWS said customers can also implement customized Snort and Suricata rules — two widely used open-source formats — to further tailor protections, like:  

  • Preventing their VPCs from accessing unauthorized domains
  • Blocking thousands of known bad IP addresses
  • Defending against common exploits by identifying patterns and behaviors associated with known threats.

In a blog post, Channy Yun, principal developer advocate for AWS, said the Network Firewall makes firewall activity visible in real-time via CloudWatch metrics and offers increased visibility of network traffic by sending logs to S3, CloudWatch and Kinesis Firehose.

“Network Firewall is integrated with AWS Firewall Manager, giving customers who use AWS Organizations a single place to enable and monitor firewall activity across all your VPCs and AWS accounts,” he said.

Steve Schmidt, CISO at AWS, said that when talking to customers about what they want in a cloud network firewall, they say network protections that work with their existing security systems and without the headache of managing the underlying infrastructure.

“AWS Network Firewall provides scalable network protections that allow customers to deploy highly customizable rules for their entire AWS infrastructure, and integrates with many of the APN partner services that customers already use. Best of all, there’s no need to configure or maintain additional infrastructure,” he added.

AWS partners have built integrations with AWS Network Firewall include: 

  • Accenture
  • Alert Logic
  • Check Point Software Technologies
  • CrowdStrike
  • Datadog
  • Fortinet
  • Hashicorp
  • IBM 
  • Palo Alto Networks
  • Rackspace
  • Splunk
  • SumoLogic
  • Trend Micro
  • Tufin

AES expects more partners to come soon. These integrations allow customers to easily incorporate AWS Network Firewall into their existing security workflows for orchestration, automation and threat detection and response.

“We've made this expertise available to all AWS Network Firewall customers in the form of managed rules based on threat intelligence from FortiGuard Labs. Our collaboration with AWS will make it easy for customers to seamlessly integrate Fortinet threat intelligence with AWS Network Firewall as an additional layer of protection alongside their existing security,” said John Maddison, EVP of products and CMO at Fortinet.

AWS Network Firewall is available now in the US East (Northern Virginia), US West (Oregon), and Europe (Ireland) Regions. Pricing starts at 39.5 cents per hour a firewall is provisioned and 6.5 cents every GB of data the firewall processes.

Featured Resources

Four cyber security essentials that your board of directors wants to know

The insights to help you deliver what they need

Download now

Data: A resource much too valuable to leave unprotected

Protect your data to protect your company

Download now

Improving cyber security for remote working

13 recommendations for security from any location

Download now

Why CEOS should care about the move to SAP S/4HANA

And how they can accelerate business value

Download now

Recommended

Deutsche Telekom’s net-based LAN service aims to transform network management
cloud computing

Deutsche Telekom’s net-based LAN service aims to transform network management

18 Nov 2020
Hackers are increasingly reaping the benefits of the cloud
Security

Hackers are increasingly reaping the benefits of the cloud

16 Nov 2020
Deloitte launches four new industry-specific cloud solutions
Cloud

Deloitte launches four new industry-specific cloud solutions

12 Nov 2020
Google slashes free media storage to 15GB
cloud storage

Google slashes free media storage to 15GB

12 Nov 2020

Most Popular

80% of cyber professionals say the Computer Misuse Act is working against them
Security

80% of cyber professionals say the Computer Misuse Act is working against them

20 Nov 2020
Cisco acquires container security startup Banzai Cloud
Security

Cisco acquires container security startup Banzai Cloud

18 Nov 2020
Weekly threat roundup: Cisco, BlueKeep, Apache Unomi
Security

Weekly threat roundup: Cisco, BlueKeep, Apache Unomi

19 Nov 2020