How to Control your Ingress & Egress Traffic Based on Location

Implementing Geographic IP Filtering with AWS Network Firewall

This video demonstrates how to set up and use geographic IP filtering in AWS Network Firewall. It covers the process of creating standard and Suricata rule groups, configuring firewall policies, and applying them to control traffic based on geographic location. In this video we will explain the concept of Geographic IP Filtering, show a practical implementation, and verify the functionality using curl commands and CloudWatch logs.

Resources:
🛠️ AWS Network Firewall: https://aws.amazon.com/network-firewall/
🎥 Ingress TLS Inspection:    • Decrypt, inspect, & re-encrypt TLS tr...  
🎥 Egress TLS Inspection:    • Decrypt, inspect, and re-encrypt TLS ...  
🎥 Egress TLS Inspection:    • Decrypt, inspect, and re-encrypt TLS ...  
🎥 AWS Network Firewall TLS Inspection: 3 Pitfalls to Avoid -    • AWS Network Firewall TLS Inspection: ...  

Follow AWS Developers!
📺 Instagram: https://www.instagram.com/awsdevelope...
🆇 X: https://x.com/awsdevelopers
💼 LinkedIn:   / aws-developers  
👾 Twitch:   / aws  

Chapters
0:00 - Introduction to Geographic IP Filtering
0:30 - Importance of Controlling Traffic Based on Multiple Factors
1:15 - How Geographic IP Filtering Works
2:00 - MaxMind GeoIP Database and Rule Configuration
4:30 - Demo: Testing Geographic IP Filtering
6:00 - Creating Standard Rule Groups
8:00 - Creating Firewall Policies and Attaching Rule Groups
10:00 - Creating Suricata-Compatible Rules
14:00 - Conclusion and Recap

#cloudsecurity #awsnetworkfirewall #webtraffic