Network Firewall Flashcards
Routing
TL;DR for Network Firewall?
Protects your VPCs
Routing
Does a NF protect incoming or outgoing traffic?
Both
Routing
Is NF simple filtering or deep-packet inspection?
Yes to both
Routing
How/where do you put NF in your VPC?
It’s just ENIs: create dedicated subnets, put NF ENIs in each
Routing
How do you get inbound traffic to go thru the NF?
IGW Route Table sends incoming packets from IGW to the NF ENIs
Routing
How do you get outbound traffic to go thru the NF?
Just like NAT GWs: Route Tables send 0.0.0.0/0” to the NF subnets
Routing
Is NF HA?
Yes if you create multiple ENIs in different AZs
Configuration
Top-level thing that holds all configuration for a NF?
Firewall Policy
Configuration
Limit on the number of Firewall Policies per NF?
1
Configuration
Can a Firewall Policy be shared with other NF?
Yes
Configuration
What’s inside a Firewall Policy?
Rule Groups (which hold Rules)
Configuration
Are Rules stateful or stateless?
Both! You pick.
Configuration
What are the different actions a Rule can take?
Pass, drop, forward, custom (for stateful rules)
Configuration
What is the “5-Tuple”?
source IP, source port, dest IP, dest port, protocol (like TCP vs. UDP)
Configuration
What are the two Engines in a NF?
Stateless Engine and Stateful Engine