How Security Group Policies Work in AWS Firewall Manager