Back to Catalog
Security & Compliance

AWS Firewall Manager

"Central management of firewall rules across all accounts and resources."

What is AWS Firewall Manager?

AWS Firewall Manager allows you to universally configure and manage firewall rules across your accounts and applications in AWS Organizations. It acts as a central policy manager.

Key Concepts

1. Policy Management

  • Define a policy once (e.g., "All port 80 traffic must be blocked except for ALBs").
  • Automatically enforce this policy on existing and new resources.

2. Supported Services

  • Manages rules for AWS WAF, AWS Shield Advanced, VPC Security Groups, AWS Network Firewall, and Route 53 Resolver DNS Firewall.

Exam Tips

[!IMPORTANT] "Centrally configure/manage WAF rules or Security Groups across Organization": The answer is AWS Firewall Manager.

[!TIP] Requires AWS Organizations to be enabled.

Common Use Cases

  • Standardization: Every new VPC created in the org automatically gets the "Corporate Baseline" security group.
  • DDoS Protection: Deploying Shield Advanced limits across thousands of accounts.
Network Firewall
Certificate Manager (ACM)
SWIPE ZONE
< DRAG ME >