2025/09/25 - 3 updated api methods
Changes Network Firewall now introduces Reject and Alert action support for stateful domain list rule groups, providing customers with more granular control over their network traffic.
2025/09/17 - 3 updated api methods
Changes Network Firewall now prevents TLS handshakes with the target server until after the Server Name Indication (SNI) has been seen and verified. The monitoring dashboard now provides deeper insights into PrivateLink endpoint candidates and offers filters based on IP addresses and protocol.
2025/06/17 - 1 new 8 updated api methods
Changes Release of Active Threat Defense in Network Firewall
2025/06/16 - 6 new 8 updated api methods
Changes You can now create firewalls using a Transit Gateway instead of a VPC, resulting in a TGW attachment.
2025/06/04 - 2 updated api methods
Changes You can now monitor flow and alert log metrics from the Network Firewall console.
2025/05/28 - 5 new 8 updated api methods
Changes You can now use VPC endpoint associations to create multiple firewall endpoints for a single firewall.
2025/03/20 - 5 new api methods
Changes You can now use flow operations to either flush or capture traffic monitored in your firewall's flow table.
2025/02/19 - 4 new 3 updated api methods
Changes This release introduces Network Firewall's Automated Domain List feature. New APIs include UpdateFirewallAnalysisSettings, StartAnalysisReport, GetAnalysisReportResults, and ListAnalysisReports. These allow customers to enable analysis on firewalls to identify and report frequently accessed domain.
2024/10/30 - 3 updated api methods
Changes AWS Network Firewall now supports configuring TCP idle timeout
2024/07/25 - 2 updated api methods
Changes You can now log events that are related to TLS inspection, in addition to the existing alert and flow logging.
2023/11/02 - 4 updated api methods
Changes This release introduces the stateless rule analyzer, which enables you to analyze your stateless rules for asymmetric routing.
2023/10/26 - 12 updated api methods
Changes Network Firewall now supports inspection of outbound SSL/TLS traffic.