- Newest
- Most votes
- Most comments
Hello,
You can use AWS::NetworkFirewall::FirewallPolicy to add managed rule groups to your Network Firewall policies. Sub-Property StatefulRuleGroupReference can be used to set Priority for each managed rule group specified in property ResourceArn. To get the ARN of the AWS managed rule group, use list-rule-groups AWS CLI. See example for reference.
ResourceArns for Managed Rulegroups follow the pattern: "arn:aws:network-firewall:<region>:aws-managed:stateful-rulegroup/<rulegroup-name"
For example: "arn:aws:network-firewall:ap-southeast-2:aws-managed:stateful-rulegroup/ThreatSignaturesMalwareMobileActionOrder"
Hello,
Please follow the below link to add managed stateful rule groups to network firewall with CloudFormation: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-rulegroup.html#aws-resource-networkfirewall-rulegroup--examples
Relevant content
- asked 4 months ago
- Accepted Answerasked 3 years ago
- asked 2 years ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 3 months ago
- AWS OFFICIALUpdated 2 years ago
Thank you for your answer, but it does not answer my question. The question is about the stateful rule groups managed by AWS, not the rules you create yourself.