1 Answer
- Newest
- Most votes
- Most comments
1
Hello.
In the past, we introduced AWS Network Firewall for the purpose of filtering domain names.
AWS Network Firewall could not completely prevent communication because it is possible to communicate with a destination of any IP address by making a request with the Host header or SNI server_name set to a permitted domain name.
https://docs.aws.amazon.com/ja_jp/network-firewall/latest/developerguide/suricata-examples.html
Among the products on the marketplace, I think the Palo Alto Networks product that can be used as a Gateway Load Balancer is famous.
https://www.paloaltonetworks.com/blog/2022/03/next-generation-firewall-service-for-aws/
Relevant content
- Accepted Answerasked a year ago
- AWS OFFICIALUpdated 3 years ago
- AWS OFFICIALUpdated 14 days ago