Configuring your VPC and other components for AWS Network Firewall

This section describes the changes that you must make in your VPC configuration and other components to use AWS Network Firewall. For information about managing your Amazon Virtual Private Cloud VPC, see the Amazon Virtual Private Cloud User Guide.

For examples of architectures that are supported by Network Firewall, see Architecture and routing examples.

Unsupported architectures

The following lists architectures and traffic types that Network Firewall doesn't support:

VPC peering.
Inspection of AWS Global Accelerator traffic.
Inspection of AmazonProvidedDNS traffic for Amazon EC2.

Topics

VPC subnet configuration for AWS Network Firewall
VPC route table configuration for AWS Network Firewall
Transit gateway attachment configuration for AWS Network Firewall

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Getting started with Network Firewall

VPC subnets