Viewing managed rule groups - Amazon Network Firewall
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Viewing managed rule groups

You can view the managed rule groups that are available for your policy by retrieving the list of managed rule groups using the console or API. This list depends on the interface that you're using:

To view the list of managed rule groups
  • Console – You can view the list of managed rule groups either in the Network Firewall rule groups page in the Amazon managed rule groups tab, or in the policy details page. When you add managed rule groups to a policy, you’ll see only the managed rule groups that fit your policy type. For example, if your policy type is default ordered, you’ll see only the managed rule groups that have a type of default ordered.

  • APIListRuleGroups with the parameter Scope.

  • CLIaws network-firewall list-rule-groups --scope MANAGED. To filter by managed rule group type, you can include the parameter managed-type and filter by AWS_MANAGED_THREAT_SIGNATURES and AWS_MANAGED_DOMAIN_LISTS.