AWS Network Firewall

2025/09/25 - 3 updated api methods

Changes   Network Firewall now introduces Reject and Alert action support for stateful domain list rule groups, providing customers with more granular control over their network traffic.

2025/09/17 - 3 updated api methods

Changes   Network Firewall now prevents TLS handshakes with the target server until after the Server Name Indication (SNI) has been seen and verified. The monitoring dashboard now provides deeper insights into PrivateLink endpoint candidates and offers filters based on IP addresses and protocol.

2025/06/17 - 1 new 8 updated api methods

Changes   Release of Active Threat Defense in Network Firewall

2025/06/16 - 6 new 8 updated api methods

Changes   You can now create firewalls using a Transit Gateway instead of a VPC, resulting in a TGW attachment.

2025/06/04 - 2 updated api methods

Changes   You can now monitor flow and alert log metrics from the Network Firewall console.

2025/05/28 - 5 new 8 updated api methods

Changes   You can now use VPC endpoint associations to create multiple firewall endpoints for a single firewall.

2025/03/20 - 5 new api methods

Changes   You can now use flow operations to either flush or capture traffic monitored in your firewall's flow table.

2025/02/19 - 4 new 3 updated api methods

Changes   This release introduces Network Firewall's Automated Domain List feature. New APIs include UpdateFirewallAnalysisSettings, StartAnalysisReport, GetAnalysisReportResults, and ListAnalysisReports. These allow customers to enable analysis on firewalls to identify and report frequently accessed domain.

2024/10/30 - 3 updated api methods

Changes   AWS Network Firewall now supports configuring TCP idle timeout

2024/07/25 - 2 updated api methods

Changes   You can now log events that are related to TLS inspection, in addition to the existing alert and flow logging.

2023/11/02 - 4 updated api methods

Changes   This release introduces the stateless rule analyzer, which enables you to analyze your stateless rules for asymmetric routing.

2023/10/26 - 12 updated api methods

Changes   Network Firewall now supports inspection of outbound SSL/TLS traffic.