- 新しい順
- 投票が多い順
- コメントが多い順
You're correct - you cannot create/attach a Network Firewall to a VPC at VPC creation time. But that's no different to the VPC creation process where the subnets, route tables, NACLs and security groups are all created as separate actions.
You can automate the creation of Network Firewall (as well as all the other VPC components) using CloudFormation or other Infrastructure-as-Code tools.
Hi ,
I assume, you will be having AWS network firewall for centralized egress. If you have mutliple VPCs which are connected via Transit Gateway, Please refer this https://docs.aws.amazon.com/solutions/latest/firewall-automation-for-network-traffic-on-aws/overview.html.
In simple terms, We cannot associate Network Firewall to VPC for inspection, you can create routes on the VPC route table to route the traffic to Network Firewall for inspection. Ofcourse, we need VPCs when we create Network Firewall but for inspection we can use VPC route table to send/receive traffic.
関連するコンテンツ
- AWS公式更新しました 1年前
- AWS公式更新しました 1年前