Posted On: Oct 30, 2024
Amazon Network Firewall is launching a new capability that allows you to change the TCP idle timeout value of Amazon Network Firewall and align it with your applications TCP idle timeout value. Using this capability your Amazon Network Firewall can perform uninterrupted stateful inspection of the applications that use long-lived flows, such as financial applications, databases and ERP systems.
Prior to this launch, TCP idle timeout was a fixed value of 350 seconds, which could interrupt long-lived flows of some applications. With this launch, you have the flexibility to configure Amazon Network Firewall TCP idle timeout to be a value between 60 seconds to 6000 seconds, with the default remaining at 350 seconds for backward compatibility.
Amazon Network Firewall is a managed firewall service that makes it easy to deploy essential network protections for all your Amazon VPCs. Customers can configure TCP idle timeout value on Amazon Network Firewall in Amazon Web Services China (Ningxia) Region, operated by NWCD, and Amazon Web Services China (Beijing) Region, operated by Sinnet.
For more information, please see the Amazon Network Firewall product page and the service documentation.