Posted On: Mar 28, 2019

You can now use AWS Firewall Manager to easily configure and manage AWS Shield Advanced Distributed Denial of Service (DDoS) protection for all resources in your organization across multiple accounts. With this capability, customers can create Shield Advanced protection policies to automatically discover existing and new resources and consistently apply DDoS protection to all resources, or use Tags to specify a subset of resources. Firewall Manager also provides central visibility into threats detected by Shield Advanced across all applications in your organization.

AWS Firewall Manager is available to all Shield Advanced customers at no additional cost. You only incur charges for AWS Shield Advanced and AWS Config resources created by AWS Firewall Manager. To learn more about Firewall Manager, please visit Firewall Manager documentation.

AWS Shield is a managed DDoS protection service that safeguards web applications running on AWS. Shield Standard provides always-on detection and automatic inline mitigations that minimize application downtime and latency. Shield Advanced provides additional detection and mitigation against large and sophisticated DDoS attacks, near real-time visibility into attacks, and integration with AWS WAF, a web application firewall. To learn more, visit the product detail page here.