1回答
- 新しい順
- 投票が多い順
- コメントが多い順
1
It's important to be specific with these questions and the followup is: What type of encryption is being used for the VPN connection?
AWS Network Firewall can inspect encrypted traffic if it is encrypted using TLS. There are various caveats here so please read the blog post.
However, if your traffic is an IPSEC VPN than Network Firewall cannot inspect it. Instead, ensure that the VPN termination instance is suitably hardened (as appropriate for the operating system that is running) then you might use Network Firewall to inspect the traffic once it leaves the VPN termination instance. You can read about patterns for deploying Network Firewall in this other blog post.
関連するコンテンツ
- 質問済み 6年前
- 質問済み 5年前
- AWS公式更新しました 1年前
- AWS公式更新しました 1年前
Follow-up question, You said you might use Network Firewall to inspect the traffic once it leaves the VPN termination instance, what does it mean ? are you referring return traffic to internet ?
I'm referring to traffic between the VPN termination instance and whatever the traffic is going to/from within AWS.