Since specific details about this feature may be limited in the provided context, we’ll craft a comprehensive article leveraging general knowledge about AWS Network Firewall and the logical implications of such a feature, ensuring accuracy and relevance. AWS Network Firewall introducing automated domain lists and insights.
Enhancing Network Security and Visibility
With this update, AWS Network Firewall takes a significant step forward in simplifying firewall rule management while providing actionable intelligence to security teams. As organizations increasingly rely on cloud infrastructure, securing network traffic efficiently and effectively has become a top priority. On February 19, 2025, AWS announced an exciting update to its Network Firewall service: the introduction of automated domain lists and insights. This new feature promises to streamline network security management and enhance visibility into traffic patterns for Amazon Virtual Private Cloud (VPC) users.
AWS Network Firewall now offers automated domain lists and insights, a feature that enhances visibility into network traffic and simplifies firewall rule configuration. This new capability analyzes HTTP and HTTPS traffic logs from the last 30 days and provides insights into frequently accessed domains, enabling quick rule creation based on observed network traffic patterns.
This feature helps quickly identify legitimate traffic while maintaining a restrictive default stance, balancing security with operational efficiency. Automated domain lists reduce the time and effort required to identify necessary domains, configure initial rules, and update allow lists as business needs change. Many organizations now use allow-list policies to limit access to approved destinations only.
This feature is supported in all AWS Regions where AWS Network Firewall is available today. There is no additional cost to generate automated domain lists and insights on AWS Network Firewall.
For more information, please refer to the AWS Network Firewall service documentation. To get started, visit the AWS Network Firewall console and enable analysis mode for your firewall.
