View a markdown version of this page

Deploy the guidance - Guidance for Cross Network Traffic Inspection with AWS Network Firewall
Deployment process overview

Deploy the guidance

This guidance uses CloudFormation templates and stacks to automate its deployment. The CloudFormation template specifies the AWS resources included in this guidance and their properties. The CloudFormation stack provisions the resources that are described in the template.

Deployment process overview

Follow the step-by-step instructions in this section to configure and deploy the guidance into your account.

Before you launch the guidance, review the cost, architecture, network security, and other considerations discussed earlier in this guide.

Time to deploy: Approximately 7–10 minutes

Step 1: Build deployment assets

  • Create S3 bucket.

  • Build deployment assets.

  • Copy assets to S3 bucket.

Step 2: Launch the stack

  • Launch the CloudFormation template into your AWS account.

  • Enter values for required parameters.

  • Review the other template parameters, and adjust if necessary.

Step 2: Modify AWS Network Firewall, firewall policies, rule groups

  • After the stack is successfully created, CloudFormation initiates CodePipeline.

  • Modify the network firewall, firewall policies, and rule group. For details, refer to Configuring resources for Network Firewall.

    Important

    This guidance includes an option to send anonymized operational metrics to AWS. We use this data to better understand how customers use this guidance and related services and products. AWS owns the data gathered though this survey. Data collection is subject to the AWS Privacy Notice.

    To opt out of this feature, download the template, modify the AWS CloudFormation mapping section, and then use the AWS CloudFormation console to upload your updated template and deploy the guidance. For more information, see the Anonymized data collection section of this guide.