Securing AWS Network Traffic: Network Firewall & DNS Firewall Workshop¶
Welcome to the Securing AWS Network Traffic: Network Firewall & DNS Firewall Workshop! In this hands-on workshop, you'll implement a comprehensive defense-in-depth network security strategy using AWS Network Firewall and Amazon Route 53 Resolver DNS Firewall.
You'll start by securing egress traffic with layered DNS and network-level filtering, then progress through preventing lateral movement between environments, analyzing real-world command and control scenarios, and implementing advanced techniques like domain allow lists and TLS inspection.
This workshop combines practical security implementation with real-world threat scenarios, including analyzing Sliver malware C2 communications and implementing least privilege access controls. You'll gain hands-on experience with Suricata rules, AWS managed threat intelligence, traffic analysis, and advanced network security monitoring.
| Workshop Estimated duration | 2 hours |
| Learning Objectives | Implement comprehensive egress traffic security using DNS Firewall and Network Firewall |
| Secure VPC-to-VPC traffic flows with least privilege access to prevent lateral movement | |
| Analyze network traffic patterns and logs for threat detection | |
| Block sophisticated command and control communications | |
| Create and implement domain allow lists based on traffic analysis | |
| Configure TLS inspection for encrypted traffic analysis | |
| Intended Audience | Cloud/Network Security Engineers |
| Solution Architects | |
| Network Administrators | |
| Knowledge Pre-requisites | Basic understanding of AWS networking concepts and services. Familiarity with network security principles. |
| Level | 300 |