AWS Network Firewall

Deploy network firewall security across your VPCs

Automatically scale your network firewall to protect your managed infrastructure.

Protect your unique workloads with a flexible firewall engine that can define thousands of custom rules.

Centrally manage security policies across existing accounts and VPCs, and automatically enforce mandatory policies on new accounts.

How it works

With AWS Network Firewall, you can define firewall rules that provide fine-grained control over network traffic. Network Firewall works together with AWS Firewall Manager so you can build policies based on Network Firewall rules and then centrally apply those policies across your virtual private clouds (VPCs) and accounts.

Diagram shows how AWS Network Firewall inspects and filters all traffic entering the firewall.

Use cases

Inspect VPC-to-VPC traffic

Inspect and control VPC-to-VPC traffic to logically separate networks that host sensitive applications of line-of-business workloads.

Learn more about inspecting VPC-to-VPC traffic »

Filter outbound traffic

Deploy outbound traffic filtering to prevent data loss, help meet compliance requirements, and block known malware communications.

Learn more about filtering outbound traffic »

Prevent inbound internet traffic intrusion

Inspect active traffic flow using features such as stateful inspection, protocol detection, and more.

Learn more about inspecting inbound traffic »

Secure AWS Direct Connect and VPN traffic

Secure Direct Connect and VPN traffic from client devices and your on-premises environments supported by AWS Transit Gateway.

Learn more about traffic and on-premises security »

How to get started

Get started with Network Firewall

Learn more about how Network Firewall makes it easy to deploy essential network protections.

Contact an expert

Learn which Network Firewall features provide protections from common network threats.

Start using Network Firewall

Set up Network Firewall in just a few steps.


Explore more of AWS