{"id":1718,"date":"2024-12-17T16:22:05","date_gmt":"2024-12-17T08:22:05","guid":{"rendered":"https:\/\/aws-oncloudai.com\/?p=1718"},"modified":"2024-12-20T09:20:34","modified_gmt":"2024-12-20T01:20:34","slug":"aws-firewall-manager","status":"publish","type":"post","link":"https:\/\/aws-oncloudai.com\/zh_hk\/aws-firewall-manager\/","title":{"rendered":"AWS \u9632\u706b\u5899\u7ba1\u7406\u5668"},"content":{"rendered":"<p>\u5728\u73b0\u4ee3\u4f01\u4e1a\u67b6\u6784\u4e2d\uff0c\u968f\u7740\u4e91\u8ba1\u7b97\u7684\u666e\u53ca\u548c\u7f51\u7edc\u89c4\u6a21\u7684\u6269\u5c55\uff0c\u5b89\u5168\u7ba1\u7406\u53d8\u5f97\u6108\u53d1\u590d\u6742\u3002AWS \u9632\u706b\u5899\u7ba1\u7406\u5668\uff08AWS Firewall Manager\uff09\u5e94\u8fd0\u800c\u751f\uff0c\u4e3a\u7ec4\u7ec7\u63d0\u4f9b\u96c6\u4e2d\u5316\u7684\u5b89\u5168\u7b56\u7565\u7ba1\u7406\u5de5\u5177\uff0c\u7b80\u5316\u4e86\u8de8\u8d26\u6237\u548c\u8de8\u533a\u57df\u7684\u9632\u706b\u5899\u89c4\u5219\u90e8\u7f72\u3002\u65e0\u8bba\u662f\u4fdd\u62a4 Amazon VPC\u3001AWS WAF\u3001\u8fd8\u662f\u7b2c\u4e09\u65b9\u9632\u706b\u5899\u89c4\u5219\uff0c\u9632\u706b\u5899\u7ba1\u7406\u5668\u90fd\u80fd\u5e2e\u52a9\u4f01\u4e1a\u5feb\u901f\u54cd\u5e94\u5a01\u80c1\u5e76\u63d0\u5347\u5408\u89c4\u6027\uff0c\u6210\u4e3a\u4f01\u4e1a\u4e91\u5b89\u5168\u9632\u5fa1\u4f53\u7cfb\u7684\u6838\u5fc3\u7ec4\u6210\u90e8\u5206\u3002<\/p>\n<p>&nbsp;<\/p>\n<p><img fetchpriority=\"high\" decoding=\"async\" class=\"aligncenter wp-image-1752 size-large\" src=\"http:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/12\/\u514d\u8cbb-3C\u7528\u54c1-\u4e92\u806f\u7db2-\u4eba\u9ad4\u5de5\u5b78\u8a2d\u8a08-\u7684-\u514d\u8cbb\u7d20\u6750\u5716\u7247-\u7d20\u6750\u5716\u7247-1024x683.jpg\" alt=\"\" width=\"1024\" height=\"683\" srcset=\"\" sizes=\"(max-width: 1024px) 100vw, 1024px\" data-srcset=\"\" \/><\/p>\n<p>&nbsp;<\/p>\n<h3><strong>\u4ec0\u9ebc\u662fAWS Firewall Manager\uff1f<\/strong><\/h3>\n<p>AWS Firewall Manager \u662f\u4e00\u9805\u5b89\u5168\u7ba1\u7406\u670d\u52d9\uff0c\u53ef\u8b93\u60a8\u96c6\u4e2d\u8a2d\u5b9a\u548c\u7ba1\u7406AWS Organizations \u4e2d\u5e33\u6236\u548c\u61c9\u7528\u7a0b\u5f0f\u7684\u9632\u706b\u7246\u898f\u5247\u3002<\/p>\n<p>&nbsp;<\/p>\n<h3><a href=\"https:\/\/dev.to\/bennalliharish\/aws-firewall-manager-2bia#key-benefits-of-aws-firewall-manager\" name=\"key-benefits-of-aws-firewall-manager\" rel=\"nofollow noopener\" target=\"_blank\"><\/a><strong>AWS Firewall Manager \u7684\u4e3b\u8981\u512a\u52e2<\/strong><\/h3>\n<ul>\n<li>\u7c21\u5316\u5e33\u6236\u9593\u9632\u706b\u7246\u898f\u5247\u7684\u7ba1\u7406<\/li>\n<li>\u96c6\u4e2d\u90e8\u7f72VPC \u4fdd\u8b77\u63aa\u65bd<\/li>\n<li>\u78ba\u4fdd\u73fe\u6709\u548c\u65b0\u61c9\u7528\u7a0b\u5f0f\u7684\u5408\u898f\u6027<\/li>\n<li>\u8f15\u9b06\u8de8\u5e33\u6236\u90e8\u7f72\u8a17\u7ba1\u898f\u5247<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<h3><a href=\"https:\/\/dev.to\/bennalliharish\/aws-firewall-manager-2bia#aws-firewall-manager-features\" name=\"aws-firewall-manager-features\" rel=\"nofollow noopener\" target=\"_blank\"><\/a><strong>AWS Firewall Manager \u529f\u80fd<\/strong><\/h3>\n<ul>\n<li>\u8de8VPC \u96c6\u4e2d\u90e8\u7f72AWS \u7db2\u8def\u9632\u706b\u7246<\/li>\n<li>\u81ea\u52d5\u90e8\u7f72Amazon VPC \u5b89\u5168\u7fa4\u7d44\u3001AWS WAF \u898f\u5247\u3001AWS Shield Advanced \u4fdd\u8b77\u3001AWS \u7db2\u8def\u9632\u706b\u7246\u898f\u5247\u548cAmazon Route 53 Resolver DNS \u9632\u706b\u7246\u898f\u5247<\/li>\n<li>\u591a\u5e33\u6236\u8cc7\u6e90\u7d44<\/li>\n<li>\u8de8\u5e33\u6236\u4fdd\u8b77\u7b56\u7565<\/li>\n<li>\u5206\u7d1a\u898f\u5247\u57f7\u884c<\/li>\n<li>\u5e36\u6709\u5408\u898f\u6027\u901a\u77e5\u7684\u5100\u8868\u677f<\/li>\n<li>\u5be9\u8a08VPC \u4e2d\u73fe\u6709\u548c\u672a\u4f86\u7684\u5b89\u5168\u7fa4\u7d44<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<h3><a href=\"https:\/\/dev.to\/bennalliharish\/aws-firewall-manager-2bia#prerequisites-for-aws-firewall-manager\" name=\"prerequisites-for-aws-firewall-manager\" rel=\"nofollow noopener\" target=\"_blank\"><\/a><strong>AWS Firewall Manager \u7684\u5148\u6c7a\u689d\u4ef6<\/strong><\/h3>\n<p>\u4f7f\u7528AWS Firewall Manager \u6709\u4e09\u500b\u5f37\u5236\u6027\u5148\u6c7a\u689d\u4ef6\u548c\u4e00\u500b\u53ef\u9078\u5148\u6c7a\u689d\u4ef6\u3002<\/p>\n<ul>\n<li>AWS \u7d44\u7e54\u2013 \u60a8\u7684\u5e33\u6236\u5fc5\u9808\u662fAWS \u7d44\u7e54\u7684\u4e00\u90e8\u5206\uff0c\u4e26\u4e14\u5df2\u555f\u7528\u6240\u6709\u529f\u80fd\u3002<\/li>\n<li>\u8a2d\u5b9aAWS Firewall Manager \u7ba1\u7406\u54e1\u5e33\u6236\u2013 Firewall Manager \u5fc5\u9808\u8207\u60a8\u7684AWS \u7d44\u7e54\u7684\u7ba1\u7406\u5e33\u6236\u95dc\u806f\uff0c\u6216\u8207\u5177\u6709\u9069\u7576\u6b0a\u9650\u7684\u6210\u54e1\u5e33\u6236\u95dc\u806f\u3002\u60a8\u95dc\u806f\u7684\u5e33\u6236<\/li>\n<li>\u9632\u706b\u7246\u7ba1\u7406\u5668\u7a31\u70ba\u9632\u706b\u7246\u7ba1\u7406\u5668\u7ba1\u7406\u54e1\u5e33\u6236\u3002<\/li>\n<li>\u5728\u5e33\u6236\u4e0a\u555f\u7528AWS Config \u2013 \u70ba\u7d44\u7e54\u4e2d\u7684\u6bcf\u500b\u6210\u54e1\u5e33\u6236\u555f\u7528AWS Config\u3002<\/li>\n<li>\u555f\u7528AWS \u8cc7\u6e90\u5b58\u53d6\u7ba1\u7406\u5668\uff08\u9078\u7528\uff09- \u82e5\u8981\u555f\u7528\u9632\u706b\u7246\u7ba1\u7406\u5668\u4f86\u96c6\u4e2d\u8a2d\u5b9aAWS \u7db2\u8def\u9632\u706b\u7246\u6216\u8de8\u5e33\u6236\u548cVPC \u95dc\u806fAmazon Route 53 \u89e3\u6790\u5668DNS \u9632\u706b\u7246\u898f\u5247\uff0c\u60a8\u5fc5\u9808\u5148\u4f7f\u7528AWS \u8cc7\u6e90\u5b58\u53d6\u7ba1\u7406\u5668\u555f\u7528\u8cc7\u6e90\u5171\u7528\u3002<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<h3><a href=\"https:\/\/dev.to\/bennalliharish\/aws-firewall-manager-2bia#how-do-i-use-aws-firewall-manager\" name=\"how-do-i-use-aws-firewall-manager\" rel=\"nofollow noopener\" target=\"_blank\"><\/a><strong>\u5982\u4f55\u4f7f\u7528AWS Firewall Manager\uff1f<\/strong><\/h3>\n<ul>\n<li>\u9996\u5148\uff0c\u5b8c\u6210\u4e0a\u9762\u63d0\u5230\u7684\u5148\u6c7a\u689d\u4ef6\u3002<\/li>\n<li>\u5176\u6b21\uff0c\u70baAWS WAF\u3001AWS Shield Advanced\u3001VPC \u5b89\u5168\u7fa4\u7d44\u3001AWS \u7db2\u8def\u9632\u706b\u7246\u6216Amazon Route 53 Resolver DNS \u9632\u706b\u7246\u5efa\u7acb\u653f\u7b56\u985e\u578b\u3002<\/li>\n<li>\u7b2c\u4e09\uff0c\u4f9d\u7b56\u7565\u6307\u5b9a\u898f\u5247\u6216\u4fdd\u8b77\u96c6\u3002\u4f8b\u5982\uff0c\u5c0d\u65bcAWS WAF \u7b56\u7565\uff0c\u8acb\u6307\u5b9a\u8981\u8de8\u5e33\u6236\u90e8\u7f72\u7684\u898f\u5247\u7fa4\u7d44\uff08\u81ea\u8a02\u6216\u8a17\u7ba1\uff09\u3002\u540c\u6a23\uff0c\u5c0d\u65bcVPC \u5b89\u5168\u7fa4\u7d44\u539f\u5247\uff0c\u8acb\u5f15\u7528\u8981\u5728\u5e33\u6236\u5167\u7684\u6bcf\u500b\u8cc7\u6e90\u4e2d\u8907\u88fd\u7684\u5b89\u5168\u7fa4\u7d44\u3002\u5c0d\u65bcAWS \u7db2\u8def\u9632\u706b\u7246\uff0c\u8acb\u6307\u5b9a\u8981\u5728\u5e33\u6236\u4e2d\u7684VPC \u4e2d\u90e8\u7f72\u7684\u898f\u5247\u7fa4\u7d44\uff08\u6709\u72c0\u614b\u548c\u7121\u72c0\u614b\uff09\u3002\u5c0d\u65bcAmazon Route 53 \u89e3\u6790\u5668DNS \u9632\u706b\u7246\uff0c\u8acb\u6307\u5b9a\u8981\u8207\u5e33\u6236\u4e2d\u7684VPC \u95dc\u806f\u7684\u898f\u5247\u96c6\uff08\u898f\u5247\u7fa4\u7d44\uff09\u3002<\/li>\n<li>\u7b2c\u56db\uff0c\u900f\u904e\u9078\u64c7\u8981\u90e8\u7f72\u7b56\u7565\u7684\u5e33\u6236\u3001\u8cc7\u6e90\u985e\u578b\u4ee5\u53ca\uff08\u53ef\u9078\uff09\u8cc7\u6e90\u6a19\u7c64\u4f86\u6307\u5b9a\u7b56\u7565\u7684\u7bc4\u570d\u3002<\/li>\n<li>\u6700\u5f8c\uff0c\u60a8\u53ef\u4ee5\u67e5\u770b\u4e26\u5efa\u7acb\u7b56\u7565\u3002\u9632\u706b\u7246\u7ba1\u7406\u5668\u6703\u81ea\u52d5\u5c07\u898f\u5247\u548c\u4fdd\u8b77\u5957\u7528\u81f3\u6240\u6709\u5e33\u6236\u7684\u8cc7\u6e90\u3002<\/li>\n<\/ul>\n<p>\u5b8c\u6210\u5f8c\uff0c\u9632\u706b\u7246\u7ba1\u7406\u5668\u4e5f\u6703\u986f\u793a\u5408\u898f\u6027\u5100\u8868\u677f\uff0c\u6307\u793a\u4efb\u4f55\u4e0d\u5408\u898f\u548c\u5408\u898f\u7684\u5e33\u6236\/\u8cc7\u6e90\u3002<\/p>\n<p>&nbsp;<\/p>\n<p><img decoding=\"async\" class=\"aligncenter wp-image-1751 size-large\" src=\"http:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/12\/\u514d\u8d39-\uff03\u5ba4\u5185-\u4e0a\u7db2-\u4e92\u806f\u7db2-\u7684-\u514d\u8d39\u7d20\u6750\u56fe\u7247-\u7d20\u6750\u56fe\u7247-1024x683.jpg\" alt=\"\" width=\"1024\" height=\"683\" srcset=\"https:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/12\/\u514d\u8d39-\uff03\u5ba4\u5185-\u4e0a\u7db2-\u4e92\u806f\u7db2-\u7684-\u514d\u8d39\u7d20\u6750\u56fe\u7247-\u7d20\u6750\u56fe\u7247-1024x683.jpg 1024w, https:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/12\/\u514d\u8d39-\uff03\u5ba4\u5185-\u4e0a\u7db2-\u4e92\u806f\u7db2-\u7684-\u514d\u8d39\u7d20\u6750\u56fe\u7247-\u7d20\u6750\u56fe\u7247-300x200.jpg 300w, https:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/12\/\u514d\u8d39-\uff03\u5ba4\u5185-\u4e0a\u7db2-\u4e92\u806f\u7db2-\u7684-\u514d\u8d39\u7d20\u6750\u56fe\u7247-\u7d20\u6750\u56fe\u7247-768x512.jpg 768w, https:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/12\/\u514d\u8d39-\uff03\u5ba4\u5185-\u4e0a\u7db2-\u4e92\u806f\u7db2-\u7684-\u514d\u8d39\u7d20\u6750\u56fe\u7247-\u7d20\u6750\u56fe\u7247-1536x1024.jpg 1536w, https:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/12\/\u514d\u8d39-\uff03\u5ba4\u5185-\u4e0a\u7db2-\u4e92\u806f\u7db2-\u7684-\u514d\u8d39\u7d20\u6750\u56fe\u7247-\u7d20\u6750\u56fe\u7247-2048x1365.jpg 2048w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/p>\n<p>&nbsp;<\/p>\n<h3><a href=\"https:\/\/dev.to\/bennalliharish\/aws-firewall-manager-2bia#dashboard-and-visibility\" name=\"dashboard-and-visibility\" rel=\"nofollow noopener\" target=\"_blank\"><\/a><strong>\u5100\u8868\u677f\u548c\u53ef\u8996\u6027<\/strong><\/h3>\n<h4><\/h4>\n<h4>\u5982\u4f55\u67e5\u770b\u7279\u5b9a\u653f\u7b56\u7684\u5408\u898f\u72c0\u614b\uff1f<\/h4>\n<p>\u4f7f\u7528\u9632\u706b\u7246\u7ba1\u7406\u5668\uff0c\u60a8\u53ef\u4ee5\u5feb\u901f\u67e5\u770b\u6bcf\u9805\u7b56\u7565\u7684\u5408\u898f\u72c0\u614b\uff0c\u65b9\u6cd5\u662f\u67e5\u770b\u7b56\u7565\u7bc4\u570d\u5167\u5305\u542b\u591a\u5c11\u5e33\u6236\u4ee5\u53ca\u5176\u4e2d\u6709\u591a\u5c11\u5e33\u6236\u5408\u898f\u3002\u6b64\u5916\uff0c\u5c0d\u65bc\u9632\u706b\u7246\u7ba1\u7406\u5668\u4e0a\u914d\u7f6e\u7684\u6bcf\u9805\u7b56\u7565\uff0c\u60a8\u90fd\u6703\u7372\u5f97\u4e00\u500b\u5408\u898f\u5100\u8868\u677f\u3002\u4e2d\u592e\u5408\u898f\u5100\u8868\u677f\u53ef\u8b93\u60a8\u67e5\u770b\u54ea\u4e9b\u5e33\u6236\u4e0d\u7b26\u5408\u7d66\u5b9a\u7b56\u7565\uff0c\u54ea\u4e9b\u7279\u5b9a\u8cc7\u6e90\u4e0d\u5408\u898f\uff0c\u9084\u63d0\u4f9b\u6709\u95dc\u7279\u5b9a\u8cc7\u6e90\u4e0d\u5408\u898f\u539f\u56e0\u7684\u8cc7\u8a0a\u3002\u60a8\u4e5f\u53ef\u4ee5\u5728AWS Security Hub \u4e0a\u67e5\u770b\u6bcf\u500b\u5e33\u6236\u7684\u4e0d\u5408\u898f\u4e8b\u4ef6\u3002<\/p>\n<h4>\u7576\u8cc7\u6e90\u4e0d\u5408\u898f\u6642\uff0cAWS Firewall Manager \u662f\u5426\u6703\u63d0\u4f9b\u901a\u77e5\uff1f<\/h4>\n<p>\u662f\u7684\uff0c\u60a8\u53ef\u4ee5\u5efa\u7acb\u65b0\u7684SNS \u901a\u77e5\u7ba1\u9053\uff0c\u4ee5\u4fbf\u5728\u767c\u73fe\u65b0\u7684\u4e0d\u5408\u898f\u8cc7\u6e90\u6642\u63a5\u6536\u5373\u6642\u901a\u77e5\u3002\u540c\u6a23\uff0c\u4f5c\u70baFirewall Manager \u7b56\u7565\u4e00\u90e8\u5206\u7684\u6bcf\u500b\u5e33\u6236\u90fd\u6703\u6536\u5230\u6709\u95dcAWS Security Hub \u4e0a\u4e0d\u5408\u898f\u4e8b\u4ef6\u7684\u901a\u77e5\u3002<\/p>\n<h4>\u5982\u4f55\u67e5\u770b\u6574\u500b\u7d44\u7e54\u7684\u6240\u6709\u5a01\u8105\uff1f<\/h4>\n<p>\u5c0d\u65bc\u5efa\u7acb\u7684\u6bcf\u500b\u9632\u706b\u7246\u7ba1\u7406\u54e1\u7b56\u7565\uff0c\u60a8\u53ef\u4ee5\u532f\u7e3d\u898f\u5247\u7fa4\u7d44\u4e2d\u6bcf\u500b\u898f\u5247\u7684CloudWatch \u6307\u6a19\uff0c\u6307\u793a\u6574\u500b\u7d44\u7e54\u5141\u8a31\u6216\u5c01\u9396\u4e86\u591a\u5c11\u8acb\u6c42\u3002\u9019\u70ba\u60a8\u63d0\u4f9b\u4e86\u4e00\u500b\u96c6\u4e2d\u4f4d\u7f6e\u4f86\u91dd\u5c0d\u6574\u500b\u7d44\u7e54\u7684\u5a01\u8105\u8a2d\u5b9a\u8b66\u5831\u3002<\/p>\n<p>&nbsp;<\/p>\n<p><img decoding=\"async\" class=\"aligncenter wp-image-1750 size-large\" src=\"http:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/12\/\u514d\u8d39-it\u57fa\u7840\u8bbe\u65bd-\u30b3\u30f3\u30d4\u30e5\u30fc\u30bf\u30c9\u30fc\u30eb-\u52a0\u5bc6-\u7684-\u514d\u8d39\u7d20\u6750\u56fe\u7247-\u7d20\u6750\u56fe\u7247-1024x683.jpg\" alt=\"\" width=\"1024\" height=\"683\" srcset=\"https:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/12\/\u514d\u8d39-it\u57fa\u7840\u8bbe\u65bd-\u30b3\u30f3\u30d4\u30e5\u30fc\u30bf\u30c9\u30fc\u30eb-\u52a0\u5bc6-\u7684-\u514d\u8d39\u7d20\u6750\u56fe\u7247-\u7d20\u6750\u56fe\u7247-1024x683.jpg 1024w, https:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/12\/\u514d\u8d39-it\u57fa\u7840\u8bbe\u65bd-\u30b3\u30f3\u30d4\u30e5\u30fc\u30bf\u30c9\u30fc\u30eb-\u52a0\u5bc6-\u7684-\u514d\u8d39\u7d20\u6750\u56fe\u7247-\u7d20\u6750\u56fe\u7247-300x200.jpg 300w, https:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/12\/\u514d\u8d39-it\u57fa\u7840\u8bbe\u65bd-\u30b3\u30f3\u30d4\u30e5\u30fc\u30bf\u30c9\u30fc\u30eb-\u52a0\u5bc6-\u7684-\u514d\u8d39\u7d20\u6750\u56fe\u7247-\u7d20\u6750\u56fe\u7247-768x512.jpg 768w, https:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/12\/\u514d\u8d39-it\u57fa\u7840\u8bbe\u65bd-\u30b3\u30f3\u30d4\u30e5\u30fc\u30bf\u30c9\u30fc\u30eb-\u52a0\u5bc6-\u7684-\u514d\u8d39\u7d20\u6750\u56fe\u7247-\u7d20\u6750\u56fe\u7247-1536x1024.jpg 1536w, https:\/\/aws-oncloudai.com\/wp-content\/uploads\/2024\/12\/\u514d\u8d39-it\u57fa\u7840\u8bbe\u65bd-\u30b3\u30f3\u30d4\u30e5\u30fc\u30bf\u30c9\u30fc\u30eb-\u52a0\u5bc6-\u7684-\u514d\u8d39\u7d20\u6750\u56fe\u7247-\u7d20\u6750\u56fe\u7247-2048x1365.jpg 2048w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/p>\n<h3><\/h3>\n<p>&nbsp;<\/p>\n<h3><a href=\"https:\/\/dev.to\/bennalliharish\/aws-firewall-manager-2bia#new-feature\" name=\"new-feature\" rel=\"nofollow noopener\" target=\"_blank\"><\/a><strong>\u65b0\u529f\u80fd<\/strong><\/h3>\n<h5><strong>AWS Firewall Manager \u76ee\u524d\u652f\u63f4AWS Shield Advanced \u81ea\u52d5\u61c9\u7528\u7a0b\u5f0f\u5c64DDoS \u7de9\u89e3<\/strong><\/h5>\n<p>AWS Firewall Manager \u73fe\u5728\u53ef\u8b93\u60a8\u5728\u7d44\u7e54\u5167\u7684\u5404\u500b\u5e33\u6236\u4e2d\u96c6\u4e2d\u90e8\u7f72AWS Shield Advanced \u81ea\u52d5\u61c9\u7528\u7a0b\u5f0f\u5c64(L7) DDoS \u4fdd\u8b77\u3002 AWS Shield Advanced \u81ea\u52d5L7 DDoS \u4fdd\u8b77\u53ef\u963b\u6b62\u61c9\u7528\u7a0b\u5f0f\u5c64DDoS \u4e8b\u4ef6\uff0c\u7121\u9700\u624b\u52d5\u5e79\u9810\u3002\u900f\u904e\u6b64\u767c\u5e03\uff0cAWS Firewall Manager \u7684\u5b89\u5168\u6027\u7ba1\u7406\u54e1\u73fe\u5728\u53ef\u4ee5\u4f7f\u7528AWS Shield Advanced \u7684Firewall Manager \u5b89\u5168\u6027\u539f\u5247\u5728\u5404\u500b\u5e33\u6236\u4e2d\u555f\u7528\u81ea\u52d5L7 DDoS \u4fdd\u8b77\u3002<\/p>\n<p>\u9996\u5148\uff0c\u5728Firewall Manager Shield Advanced \u653f\u7b56\u4e0a\u555f\u7528\u81ea\u52d5L7 DDoS \u7de9\u89e3\u3002\u7136\u5f8c\uff0cShield \u7ba1\u7406\u7684WAF \u898f\u5247\u7fa4\u7d44\u5c07\u6703\u65b0\u589e\u81f3\u53d7\u4fdd\u8b77\u8cc7\u6e90\u7684WAF Web \u5b58\u53d6\u63a7\u5236\u6e05\u55ae(Web ACL)\u3002 Shield Advanced \u6703\u8a55\u4f30\u5b83\u91dd\u5c0d\u9032\u5165\u60a8\u8cc7\u6e90\u7684\u6b63\u5e38\u6d41\u91cf\u6240\u5efa\u7acb\u7684\u6bcf\u500bWAF \u898f\u5247\uff0c\u4ee5\u6700\u5927\u9650\u5ea6\u5730\u6e1b\u5c11\u8aa4\u5831\uff0c\u4e26\u4ee5\u8a08\u6578\u3001\u5141\u8a31\u6216\u963b\u6b62\u6a21\u5f0f\u90e8\u7f72\u5b83\u5011\u3002<\/p>","protected":false},"excerpt":{"rendered":"<p>\u5728\u73b0\u4ee3\u4f01\u4e1a\u67b6\u6784\u4e2d\uff0c\u968f\u7740\u4e91\u8ba1\u7b97\u7684\u666e\u53ca\u548c\u7f51\u7edc\u89c4\u6a21\u7684\u6269\u5c55\uff0c\u5b89\u5168\u7ba1\u7406\u53d8\u5f97\u6108\u53d1\u590d\u6742\u3002AWS \u9632\u706b\u5899\u7ba1\u7406\u5668\uff08AWS Firewall Manager\uff09\u5e94\u8fd0\u800c\u751f\uff0c\u4e3a\u7ec4\u7ec7\u63d0\u4f9b\u96c6\u4e2d\u5316\u7684\u5b89\u5168\u7b56\u7565\u7ba1\u7406\u5de5\u5177\uff0c\u7b80\u5316\u4e86\u8de8\u8d26\u6237\u548c\u8de8\u533a\u57df\u7684\u9632\u706b\u5899\u89c4\u5219\u90e8\u7f72\u3002\u65e0\u8bba\u662f\u4fdd\u62a4 Amazon VPC\u3001AWS WAF\u3001\u8fd8\u662f\u7b2c\u4e09\u65b9\u9632\u706b\u5899\u89c4\u5219\uff0c\u9632\u706b\u5899\u7ba1\u7406\u5668\u90fd\u80fd\u5e2e\u52a9\u4f01\u4e1a\u5feb\u901f\u54cd\u5e94\u5a01\u80c1\u5e76\u63d0\u5347\u5408\u89c4\u6027\uff0c\u6210\u4e3a\u4f01\u4e1a\u4e91\u5b89\u5168\u9632\u5fa1\u4f53\u7cfb\u7684\u6838\u5fc3\u7ec4\u6210\u90e8\u5206\u3002<\/p>","protected":false},"author":1,"featured_media":1720,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[65],"tags":[],"class_list":["post-1718","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technical-sharing"],"_links":{"self":[{"href":"https:\/\/aws-oncloudai.com\/zh_hk\/wp-json\/wp\/v2\/posts\/1718","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/aws-oncloudai.com\/zh_hk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/aws-oncloudai.com\/zh_hk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/aws-oncloudai.com\/zh_hk\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/aws-oncloudai.com\/zh_hk\/wp-json\/wp\/v2\/comments?post=1718"}],"version-history":[{"count":0,"href":"https:\/\/aws-oncloudai.com\/zh_hk\/wp-json\/wp\/v2\/posts\/1718\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/aws-oncloudai.com\/zh_hk\/wp-json\/wp\/v2\/media\/1720"}],"wp:attachment":[{"href":"https:\/\/aws-oncloudai.com\/zh_hk\/wp-json\/wp\/v2\/media?parent=1718"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/aws-oncloudai.com\/zh_hk\/wp-json\/wp\/v2\/categories?post=1718"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/aws-oncloudai.com\/zh_hk\/wp-json\/wp\/v2\/tags?post=1718"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}