Posted On: Aug 30, 2023
Starting today, AWS Firewall Manager improves auditing capabilities for Security Groups by identifying excessively permissive rules that permit traffic from all IP ranges. With this enhancement, customers can detect and remediate 0.0.0.0/0 and ::/0 CIDRs in a Security Group using the Security Group Content Audit policy. Previously, AWS Firewall Manager provided customers with an option to audit IP addresses that fall within a defined range. This new capability further simplifies security posture management by detecting these common IP ranges.
AWS Firewall Manager is a security management service that enables customers to centrally configure and manage firewall rules across their accounts and resources. Using AWS Firewall Manager, customers can manage AWS WAF rules, AWS Shield Advanced protections, AWS Network Firewall, R53 Resolver DNS Firewall and VPC security groups across their entire AWS Organizations. AWS Firewall Manager ensures that all firewall rules are consistently enforced and compliant, even as new accounts and resources are created.
To get started, see the AWS Firewall Manager documentation for more details and the AWS Region Table for the list of regions where AWS Firewall Manager is currently available. To learn more about AWS Firewall Manager, its features, and its pricing, visit the AWS Firewall Manager website.