Network Firewall policies should have at least one associated rule group

이 페이지는 아직 한국어로 제공되지 않으며 번역 작업 중입니다. 번역에 관한 질문이나 의견이 있으시면 언제든지 저희에게 연락해 주십시오.

Description

This control verifies if a Network Firewall policy includes at least one stateful or stateless rule group.

A firewall policy dictates how traffic is monitored and managed within an Amazon Virtual Private Cloud (Amazon VPC). Configuring stateful and stateless rule groups enables packet filtering, regulates traffic flow, and establishes default traffic handling rules.

Remediation

For guidance on configuring firewall logging, refer to the Firewall policy settings in AWS Network Firewall section of the AWS Network Firewall Developer Guide.