Using tag-based resource groups in Network Firewall

Use tag-based resource groups to ensure that your rules stay in sync as your Amazon resources change. A tag-based resource group is a collection of Amazon resources, grouped by tags, that you can reference in an Network Firewall stateful rule group. A tag is a label that you assign to an Amazon resource. As you add, delete, and modify your resources belonging to the resource group, Network Firewall automatically updates your rules with the IPs of the resources in the resource group. For information about referencing resource groups in rule groups, see IP set references in Suricata compatible Amazon Network Firewall rule groups.

Topics

Settings for the resource groups that you use in Amazon Network Firewall
Creating a resource group in Amazon Network Firewall
Updating a resource group in Amazon Network Firewall
Deleting a resource group in Amazon Network Firewall

Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Analyzing stateless rule groups

Resource group settings