This means you can leverage AWS WAF rules to protect your internet facing endpoints. To address these use cases, AWS Transfer Family recently launched support for using AWS Web Application Firewall (AWS WAF) to protect your API Gateway endpoints. Now, what if you do not have the list of known IPs, or you have a large list that goes beyond what security group rules can support? Earlier this year, AWS Transfer Family launched support for Security Groups, so when you host the endpoint within your VPC, you can restrict access to known IPs only. However, server endpoints open to the internet from any environment can be prone to port scanners and bots. You can achieve this by integrating an Amazon API Gateway endpoint backed by an AWS Lambda function that accesses your IdP. This enables you to seamlessly migrate from an existing platform without making changes to your end users’ credentials. The service provides you with the flexibility to authenticate your file transfer client users using credentials stored in an identity provider (IdP) of your choice. AWS WAF protects web applications from attacks by filtering traffic based on rules that you create.AWS Transfer Family is a fully managed, serverless file transfer service for Amazon S3 and Amazon EFS. WAF supports hundreds of rules that can inspect any part of the web request with minimal latency impact to incoming traffic.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |