The addition of new services like AWS Network Firewall and AWS Gateway Load Balancer has created even more flexibility in designing your firewall architectures on AWS. Going beyond NACLs and SGs, you can deploy AWS Web Application Firewall (AWS WAF) or even bring third-party security appliances into your AWS network.
For some scenarios, running Network Access Control Lists (NACL) and Security Groups (SG) can provide sufficient protection, and for others, additional firewall components might be required.
These security controls can vary depending on the type of application, size of the environment, operational constraints, or required inspection depth. Exposing Internet-facing applications requires careful consideration of what security controls are needed to protect against external threats and unwanted access.
0 kommentar(er)
