Posted On: Oct 10, 2019

AWS Firewall Manager is a security management tool to centrally configure and manage firewall rules across your accounts and Amazon VPCs. AWS Firewall Manager now supports Amazon VPC security groups, making it easier for security administrators to centrally configure security groups across multiple accounts in their organization, and continuously audit them to detect overly permissive or misconfigured rules.

A security group acts as a virtual firewall for your instance to control inbound and outbound traffic. As customers scale up their number of instances and accounts, security administrators find it difficult to maintain a central view of their security posture across their entire organization. With AWS Firewall Manager support for security groups, administrators now have the ability to centrally create common security groups across the organization and enforce them consistently even as new accounts and resources are created. Administrators can also create audit policies to define what security group rules can or cannot be created across their organization. In addition, AWS Firewall Manager also provides pre-configured policies that detect unused and redundant security groups. Administrators can choose to automatically remediate or get notifications when misconfigured rules are detected.

With AWS Firewall Manager support for security groups, customers can now centrally manage rules applied to EC2-VPC instances and ENI resource types. To get started, see the documentation for more details. See the AWS Region Table for the list of regions where AWS Firewall Manager is currently available. To learn more about AWS Firewall Manager, its features and pricing, please visit the website.