Package networkfirewall provides the API client, operations, and parameter
types for AWS Network Firewall.
This is the API Reference for Network Firewall. This guide is for developers
who need detailed information about the Network Firewall API actions, data
types, and errors.
Network Firewall is a stateful, managed, network firewall and intrusion
detection and prevention service for Amazon Virtual Private Cloud (Amazon VPC).
With Network Firewall, you can filter traffic at the perimeter of your VPC. This
includes filtering traffic going to and coming from an internet gateway, NAT
gateway, or over VPN or Direct Connect. Network Firewall uses rules that are
compatible with Suricata, a free, open source network analysis and threat
detection engine. Network Firewall supports Suricata version 6.0.9. For
information about Suricata, see the Suricata website (https://suricata.io/) .
You can use Network Firewall to monitor and protect your VPC traffic in a number
of ways. The following are just a few examples:
To enable Network Firewall for your VPCs, you perform steps in both Amazon VPC
and in Network Firewall. For information about using Amazon VPC, see Amazon VPC
User Guide (https://docs.aws.amazon.com/vpc/latest/userguide/) . To start using
Network Firewall, do the following: