AWS services in this solution - Centralized Network Inspection on AWS

AWS services in this solution

AWS service	Description
AWS CodeBuild	Core. CodeBuild validates the configuration files (firewall, firewall policy, and rule group) and checks if the JSON format is valid.
AWS CodeCommit	Core. This solution creates a CodeCommit repository with the default configuration and examples. Note This solution requires the use of AWS CodeCommit, which is no longer available to new customers. Existing customers of AWS CodeCommit can continue using and deploying this solution.
AWS CodePipeline	Core. CodePipeline validates, tests, and implements changes based on updates to the configuration package in the CodeCommit repository.
AWS Network Firewall	Core. This solution automates the process of provisioning a centralized Network Firewall to inspect traffic between VPCs.
Amazon VPC	Core. This solution creates an inspection VPC with four subnets to support Transit Gateway attachments and Network Firewall endpoints.
Amazon S3	Supporting. This solution creates S3 buckets for source code, artifacts, and logs.
AWS Systems Manager	Supporting. Provides application-level resource monitoring and visualization of resource operations and cost data.
AWS Transit Gateway	Optional. This solution creates Transit Gateway attachments for your VPCs if you provide an existing transit gateway ID.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Architecture details

Plan your deployment