Revisit Amazon Web Services re:Invent 2024’s biggest moments and watch keynotes and innovation talks on demand

 ✕

Home  »  Products  »  Amazon Firewall Manager

Amazon Firewall Manager

Centrally configure and manage firewall rules across accounts and applications

Home  »  Products  »  Amazon Firewall Manager

Amazon Firewall Manager

Centrally configure and manage firewall rules across accounts and applications

Amazon Firewall Manager is a security management service that allows you to centrally configure and manage firewall rules across your accounts and applications in Amazon Organizations. As new applications are created, Firewall Manager makes it easier to bring new applications and resources into compliance by enforcing a common set of security rules.

Amazon Firewall Manager is a security management service that allows you to centrally configure and manage firewall rules across your accounts and applications in Amazon Organizations. As new applications are created, Firewall Manager makes it easier to bring new applications and resources into compliance by enforcing a common set of security rules.

Benefits

Simplify Management of Firewall Rules Across Your Accounts
Amazon Firewall Manager is integrated with Amazon Organizations so you can enable Amazon WAF rules across multiple accounts and resources from a single place. You can group rules, build policies, and centrally apply those policies across your entire infrastructure. For example, you can delegate the creation of application-specific rules within an account while retaining the ability to enforce global security policies across accounts.
Easily Deploy Managed Rules Across Accounts
Amazon Firewall Manager integrates with Managed Rules for Amazon WAF, which gives you an easy way to deploy pre-configured WAF rules on your applications. You can choose a Managed Rule, managed by Amazon Web Services, and deploy it consistently across your Application Load Balancers and API Gateways infrastructure with just a few clicks in the console. For example, you can easily protect your entire organization from zero-day vulnerabilities by subscribing to a Managed Rule for Amazon WAF.
Automatically Deploy Rules on Existing and New Applications

Amazon Firewall Manager automatically enforces mandatory security policies that you define across existing and newly created resources. The service discovers new resources as they are created across accounts. As new resources are created, they will automatically be brought under the policy scope.

Easily Monitor for Non-compliant Resources and Accounts
With Amazon Firewall Manager, you get visibility into accounts and resources that are non-compliant with your policy configuration. Within the Amazon Firewall Manager console, you can monitor the status of accounts and resources that are missing WAF rule coverage and resources and take appropriate action. You can also get notified when there are changes to your configurations through SNS notification streams or through Amazon Security Hub.

Benefits

Simplify Management of Firewall Rules Across Your Accounts

Amazon Firewall Manager is integrated with Amazon Organizations so you can enable Amazon WAF rules across multiple accounts and resources from a single place. You can group rules, build policies, and centrally apply those policies across your entire infrastructure. For example, you can delegate the creation of application-specific rules within an account while retaining the ability to enforce global security policies across accounts.

Easily Deploy Managed Rules Across Accounts

Amazon Firewall Manager integrates with Managed Rules for Amazon WAF, which gives you an easy way to deploy pre-configured WAF rules on your applications. You can choose a Managed Rule, managed by Amazon Web Services, and deploy it consistently across your Application Load Balancers and API Gateways infrastructure with just a few clicks in the console. For example, you can easily protect your entire organization from zero-day vulnerabilities by subscribing to a Managed Rule for Amazon WAF.

Automatically Deploy Rules on Existing and New Applications

Amazon Firewall Manager automatically enforces mandatory security policies that you define across existing and newly created resources. The service discovers new resources as they are created across accounts. As new resources are created, they will automatically be brought under the policy scope.

Easily Monitor for Non-compliant Resources and Accounts

With Amazon Firewall Manager, you get visibility into accounts and resources that are non-compliant with your policy configuration. Within the Amazon Firewall Manager console, you can monitor the status of accounts and resources that are missing WAF rule coverage and resources and take appropriate action. You can also get notified when there are changes to your configurations through SNS notification streams or through Amazon Security Hub.