Posted On: Nov 27, 2020

AWS Transfer Family customers using Amazon API Gateway to integrate their own identity management systems to authenticate end users can now use AWS Web Application Firewall (WAF) to easily apply additional layers of access controls. You can also protect your file transfer endpoints against exploits such as bots and port scanners. 

AWS Transfer Family provides fully managed, serverless file transfers for Amazon Simple Storage Service (Amazon S3), enabling you to seamlessly migrate your file transfer workflows to AWS. AWS WAF helps you protect internet facing applications against common exploits that could affect application availability, compromise security, or consume excessive resources. 

Now, when you use Amazon API Gateway to integrate your identity management system with AWS Transfer Family, you can enable AWS WAF rules to filter requests based on end users’ source IP addresses. You can also implement rate-based rules to slow down brute force attacks and limit Amazon API Gateway resource usage based on source IP addresses. 

AWS Transfer Family support for AWS WAF is available in all AWS Regions where both services are available. To learn more, visit the AWS Transfer Family product page and read the user guide.

Access the AWS Transfer Family console to get started.