Amazon Network Firewall example architectures with routing - Amazon Network Firewall
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Amazon Network Firewall example architectures with routing

This section provides a high-level view of simple architectures that you can configure with Amazon Network Firewall and shows example route table configurations for each. For additional information and examples, see Deployment models for Amazon Network Firewall.


For information about managing route tables for your VPC, see Route tables in the Amazon Virtual Private Cloud User Guide.

Unsupported architectures

The following lists architectures and traffic types that Network Firewall doesn't support:

  • VPC peering.

  • Inspection of Amazon Global Accelerator traffic.

  • Inspection of AmazonProvidedDNS traffic for Amazon EC2.