1개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
1
It's important to be specific with these questions and the followup is: What type of encryption is being used for the VPN connection?
AWS Network Firewall can inspect encrypted traffic if it is encrypted using TLS. There are various caveats here so please read the blog post.
However, if your traffic is an IPSEC VPN than Network Firewall cannot inspect it. Instead, ensure that the VPN termination instance is suitably hardened (as appropriate for the operating system that is running) then you might use Network Firewall to inspect the traffic once it leaves the VPN termination instance. You can read about patterns for deploying Network Firewall in this other blog post.
관련 콘텐츠
AWS 공식업데이트됨 일 년 전
Follow-up question, You said you might use Network Firewall to inspect the traffic once it leaves the VPN termination instance, what does it mean ? are you referring return traffic to internet ?
I'm referring to traffic between the VPN termination instance and whatever the traffic is going to/from within AWS.