AWS Public Sector Blog
Tag: firewall
Web filtering for education using AWS Network Firewall
Managing access to websites and safeguarding users from harmful content is a critical component of a layered cybersecurity approach, especially in educational settings. Schools and institutions of higher learning have a responsibility to provide a secure online experience for their students and staff. Traditionally, this has been accomplished through on-site web filtering appliances. Amazon Web Services ( AWS) Network Firewall allows customers to filter their outbound web traffic from on-premises environments based on fully qualified domain names (FQDN) or Server Name Indication (SNI) for encrypted traffic. This post will use AWS Client VPN to demonstrate routing and filtering traffic from external resources through Network Firewall.
Using Protective DNS services with AWS workloads
Protective DNS services, commonly known as PDNS, are a go-to solution if you’re aiming to bolster the security of your infrastructure from the ground up. Unlike traditional methods involving software-based agents or devices for traffic filtering, PDNS services take a unique approach – they scrutinise the DNS requests made by users and adjust responses based on predefined rules within the service. In this post, we explore the seamless integration of PDNS services with workloads in the Amazon Web Services (AWS) Cloud, showcasing their effectiveness in enhancing cybersecurity within cloud environments.
Implementing third-party firewall appliances in AWS: Comparing two methods
Public sector customers face challenges to accomplish complex missions with limited resources. Many IT teams are tasked with implementing centralized network security via third-party firewall appliances; protecting internet access by allowing secure connections to only approved destinations; and scaling security across many AWS accounts and virtual private clouds (VPCs)—all with reduced management and operational complexity. In this blog post, learn two options for how to manage network security with third-party firewall appliances.