Almost $.40/hour, you need one per AZ, and it’s $.06/GB for network traffic. I’m happy to see the capability (mainly outbound URL filtering), but this looks like it’s going to be a hard sell to my managers.<p>You’re probably looking at a grand per month per account. On the plus side, they don’t double charge for NAT gateway traffic.
Looking at the firewall vendors that are listed as official partners here, this looks like another pretty security-lite, native product for companies that are just looking to check a compliance box and not a real enterprise offering.<p>Similar to the AWS WAF, this seems geared for a smaller team that can't afford the time to deploy and manage virtual security appliances.<p>It looks like they're following the same formula as the WAF on this one by letting partners provide rulesets.<p>I'm waiting for AWS to really flesh these products out and eat all these "partners" lunches.
This reminds me of Google clouds built in network firewall[1], which is just called "Google Cloud Firewalls". One difference is that Googles firewall capabilities are built in and part of the platform, no extra service or fees. Just thought it could be an interesting reference for people not so used to GCP.<p>[1] <a href="https://cloud.google.com/firewalls" rel="nofollow">https://cloud.google.com/firewalls</a>
Oh man, if I had this a few years ago, I could have used it instead of a nightmarish solution involving proxying all AWS traffic through a datacentre that had Palo Alto devices.
Hmm transparent proxy, can do 5 tuple and domain filtering, can’t do URL filtering bc doesn’t terminate tls I assume? They Should update the product page and take out “URL filtering” before it confuses other people..
We've been waiting for this one for about a year so we can get rid of some of our home grown solutions. Can't wait to implement and see what it can do. Curious to see what other customers think.