Network Firewall and API Gateway : how to ?


Is it useful to use a Network Firewall in an API Gateway based solution, a VPC Link to a private subnet containing a private ALB with ECS services ?

If yes, how to configure the solution to inspect the flows through the firewall?

1 Answer

You should definitely use AWS WAF with API Gateway to protect you against well known vulnerabilities such as OWASP -

As regards using a Network Firewall for IDS/IPS capabilities, some patterns are discussed here -

You should be able to adapt the API Gateway architecture to fit into these patterns.

profile picture
answered 2 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions