AWS Firewall Manager endpoints and quotas - AWS General Reference

AWS Firewall Manager endpoints and quotas

The following are the service endpoints and service quotas for this service. To connect programmatically to an AWS service, you use an endpoint. In addition to the standard AWS endpoints, some AWS services offer FIPS endpoints in selected Regions. For more information, see AWS service endpoints. Service quotas, also referred to as limits, are the maximum number of service resources or operations for your AWS account. For more information, see AWS service quotas.

Service Endpoints

Region Name Region Endpoint Protocol
US East (Ohio) us-east-2

fms.us-east-2.amazonaws.com

fms-fips.us-east-2.amazonaws.com

HTTPS

HTTPS

US East (N. Virginia) us-east-1

fms.us-east-1.amazonaws.com

fms-fips.us-east-1.amazonaws.com

HTTPS

HTTPS

US West (N. California) us-west-1

fms.us-west-1.amazonaws.com

fms-fips.us-west-1.amazonaws.com

HTTPS

HTTPS

US West (Oregon) us-west-2

fms.us-west-2.amazonaws.com

fms-fips.us-west-2.amazonaws.com

HTTPS

HTTPS

Africa (Cape Town) af-south-1 fms.af-south-1.amazonaws.com HTTPS
Asia Pacific (Hong Kong) ap-east-1 fms.ap-east-1.amazonaws.com HTTPS
Asia Pacific (Mumbai) ap-south-1

fms.ap-south-1.amazonaws.com

fms-fips.ap-south-1.amazonaws.com

HTTPS

HTTPS

Asia Pacific (Seoul) ap-northeast-2

fms.ap-northeast-2.amazonaws.com

fms-fips.ap-northeast-2.amazonaws.com

HTTPS

HTTPS

Asia Pacific (Singapore) ap-southeast-1

fms.ap-southeast-1.amazonaws.com

fms-fips.ap-southeast-1.amazonaws.com

HTTPS

HTTPS

Asia Pacific (Sydney) ap-southeast-2

fms.ap-southeast-2.amazonaws.com

fms-fips.ap-southeast-2.amazonaws.com

HTTPS

HTTPS

Asia Pacific (Tokyo) ap-northeast-1

fms.ap-northeast-1.amazonaws.com

fms-fips.ap-northeast-1.amazonaws.com

HTTPS

HTTPS

Canada (Central) ca-central-1

fms.ca-central-1.amazonaws.com

fms-fips.ca-central-1.amazonaws.com

HTTPS

HTTPS

Europe (Frankfurt) eu-central-1

fms.eu-central-1.amazonaws.com

fms-fips.eu-central-1.amazonaws.com

HTTPS

HTTPS

Europe (Ireland) eu-west-1

fms.eu-west-1.amazonaws.com

fms-fips.eu-west-1.amazonaws.com

HTTPS

HTTPS

Europe (London) eu-west-2

fms.eu-west-2.amazonaws.com

fms-fips.eu-west-2.amazonaws.com

HTTPS

HTTPS

Europe (Milan) eu-south-1 fms.eu-south-1.amazonaws.com HTTPS
Europe (Paris) eu-west-3

fms.eu-west-3.amazonaws.com

fms-fips.eu-west-3.amazonaws.com

HTTPS

HTTPS

Europe (Stockholm) eu-north-1 fms.eu-north-1.amazonaws.com HTTPS
Middle East (Bahrain) me-south-1 fms.me-south-1.amazonaws.com HTTPS
South America (São Paulo) sa-east-1

fms.sa-east-1.amazonaws.com

fms-fips.sa-east-1.amazonaws.com

HTTPS

HTTPS

Service Quotas

AWS Firewall Manager has default quotas on the number of entities per account. You can request an increase in these quotas.

Resource Default

Accounts per organization in AWS Organizations

Varies. An invitation sent to an account counts against this quota. The count is returned if the invited account declines, the master account cancels the invitation, or the invitation expires.

Firewall Manager policies per organization in AWS Organizations

20

Tags to specified include or exclude per Firewall Manager policy

8

The following quotas related to Firewall Manager can't be changed.

Resource Value
Rule groups per AWS Firewall Manager administrator account 3

Rule groups per Firewall Manager policy

2: 1 customer-created rule group and 1 AWS Marketplace rule group

Rules per rule group

10