Getting started with AWS Firewall Manager AWS Shield Advanced policies

You can use AWS Firewall Manager to enable AWS Shield Advanced protections across your organization.

Important

Firewall Manager doesn't support Amazon Route 53 or AWS Global Accelerator. If you need to protect these resources with Shield Advanced, you can't use a Firewall Manager policy. Instead, follow the instructions in Adding AWS Shield Advanced protection to AWS resources.

To use Firewall Manager to enable Shield Advanced protection, perform the following steps in sequence.

Topics

Step 1: Complete the prerequisites
Step 2: Create and apply a Shield Advanced policy
Step 3: (Optional) authorize the Shield Response Team (SRT)
Step 4: Configure Amazon SNS notifications and Amazon CloudWatch alarms

When you've completed your Shield Advanced configuration, familiarize yourself with your options for viewing events at Visibility into DDoS events.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Step 3: Clean Up

Step 1: Complete the prerequisites

Getting started with AWS Firewall Manager​ AWS Shield Advanced policies

Important

Topics

Getting started with AWS Firewall Manager AWS Shield Advanced policies