What is AWS Firewall Manager?
AWS Firewall Manager is a security management service for central administration of firewall rules across multiple AWS accounts and resources. It works with AWS Organizations and enables defining security policies that are automatically applied to new and existing resources.
Core Features
- Central Policy Management: Define WAF rules, Security Groups, and firewall configurations once
- Automatic Application: Policies are automatically applied to new resources and accounts
- Compliance Monitoring: Dashboard shows non-compliant resources across all accounts
- Automatic Remediation: Optional automatic correction of policy violations
- Multi-Service Support: WAF, Shield Advanced, Security Groups, Network Firewall, DNS Firewall
Typical Use Cases
Enterprise Security Governance: Security teams define corporate policies centrally. All accounts and regions automatically follow the same security standards.
WAF Management: Manage WAF rules for all Application Load Balancers, CloudFront distributions, and API Gateways from a central location.
Security Group Audit: Monitor Security Groups for overly permissive rules and enforce baseline configurations.
Benefits
- Unified security policies across all accounts
- Automatic compliance for new resources
- Central visibility over security status
- Reduced manual effort for security teams
Integration with innFactory
As an AWS Reseller, innFactory supports you with AWS Firewall Manager: security policy design, AWS Organizations setup, WAF rule development, and compliance monitoring for multi-account environments.
Typical Use Cases
Frequently Asked Questions
What does Firewall Manager manage?
Firewall Manager centrally manages AWS WAF, AWS Shield Advanced, Security Groups, Network Firewall, and Route 53 Resolver DNS Firewall across all accounts in an AWS Organization.
Do I need AWS Organizations?
Yes, Firewall Manager requires AWS Organizations. Policies are defined centrally and automatically applied to all or selected member accounts.
What does Firewall Manager cost?
Firewall Manager costs approximately $100 per region per month plus costs per policy and protected resource. Costs for managed services (WAF, Shield) are additional.
How does automatic remediation work?
Firewall Manager detects non-compliant resources and can automatically apply Security Groups, WAF rules, or firewall configurations to establish compliance.