Using AWS Firewall Manager to audit unrestricted IPv4 and IPv6 allow rules | Amazon Web Services

Опубликовано 11 ноября 2023, 0:16

AWS Firewall Manager improves auditing capabilities for Security Groups by identifying excessively permissive rules that permit traffic from all IP ranges. With this enhancement, customers can detect and remediate Security Groups that have an unrestricted allow rule for IPv4 and IPv6. This identification can be done using the Security Group Content Audit policy. This capability simplifies security posture management by detecting the common IP ranges associated with allowing all IPs (also known as 0.0.0.0/0).

AWS Firewall Manager is a security management service that enables customers to centrally configure and manage firewall rules across their accounts and resources. Using AWS Firewall Manager, customers can manage AWS WAF rules, AWS Shield Advanced protections, AWS Network Firewall, R53 Resolver DNS Firewall and VPC security groups across their entire AWS Organizations. AWS Firewall Manager ensures that all firewall rules are consistently enforced and compliant, even as new accounts and resources are created.

Learn more at: go.aws/3MEGw2h

Subscribe:
More AWS videos: go.aws/3m5yEMW
More AWS events videos: go.aws/3ZHq4BK

Do you have technical AWS questions?
Ask the community of experts on AWS re:Post: go.aws/3lPaoPb

ABOUT AWS
Amazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform, offering over 200 fully featured services from data centers globally. Millions of customers — including the fastest-growing startups, largest enterprises, and leading government agencies — are using AWS to lower costs, become more agile, and innovate faster.

#AWSFirewallManager #AuditingCapabilities #SecurityGroups #SecurityGroupContentAudit #UnrestrictedAllow #NetworkandApplicationProtection #AWSSecurityServicesFeatureDemos #AWS #AmazonWebServices #CloudComputing