Cloud NGFW for AWS
Network security designed for the cloud.
Delivered as a fully managed cloud-native
service by Palo Alto Networks.
Best-in-Class
Security
Built to stop
Zero-Day threats
Cloud-Native
Ease of Use
Designed for AWS
Meet Cloud NGFW
A Palo Alto Networks NGFW delivering best-in-class network security as a cloud-native service on AWS.
-
Easy to deploy
Network security in minutes with just a few clicks.
-
No infrastructure to manage
Automatically delivers scalability and resilience.
-
Security breadth and depth
Best-in-class security capabilities from Palo Alto Networks.
-
Native AWS experience
Integrates with Firewall Manager, IAM, S3, Cloud Watch, Kinesis, and more.
Best-in-class and
Cloud Native
-
Layer 7 Firewall controls traffic at the application layer
-
Real-time updates protect against the latest threats
-
ML-powered threat prevention protects against zero-day-attacks
-
Zero maintenance with no infrastructure to manage
-
Built-in scalability and resiliency
-
Integrates with other AWS services for automation of end-to-end workflows
1. Subscribe to Cloud NGFW
Easily subscribe to Cloud NGFW in AWS Marketplace.
2. Easily Create Tenant
Simply fill in a little information to get started.
3. Log in, Add AWS Account
Just add your AWS account ID, grant permissions to deliver the service
1. Easily Configure Rulestack
Create a rulestack to secure your application traffic.
A rulestack consists of a set of rules, security profiles, and objects that define how your application traffic will be secured.
2. No-Stress Rules Configuration
Cloud NGFW makes it easy to configure security capabilities.
For example, you can use the application section to control applications by name instead of network port and protocols
3. Automated Security Profiles Are a Snap
Security profiles are made easy. Get built-in best-in-class security at your fingertips
4. Configure NGFW Resource
With a click of a button, you can have a resilient firewall resource that scales with your network traffic.
5. Update Routing in AWS Console
To secure traffic, you simply route it from your VPC to the endpoint. The NGFW behaves as a bump in the wire – all traffic sent to the endpoint is inspected and returned to the same endpoint.
6. View Logs in AWS Console
Cloud NGFW traffic and threat logs provide deeper visibility into the context to traffic flow, including the source/destination IP country, protocol(s), URL catagory, application identity, specific application functions in use, and specific filename and type being transferred.
Secure AWS VPCs
Offers best-in-class network security with patented App-ID, industry-leading Threat Protection, and Advanced URL Filtering.
Eliminate Operational Overhead
Delivers NGFW security as a cloud service with single-click deployments, built-in scale and resiliency, and zero maintenance.
Extend Your AWS Experience
Natively integrates NGFW capabilities into AWS Firewall Manager, logging, and Marketplace consumption.
Get started with a free trial
See what Cloud NGFW can do for you with a free trial in AWS Marketplace. The free trial includes two NGFW resources with full features to secure 100 GB of traffic for seven days. Then continue subscribing and pay-as-you-go with AWS billing.
Find the latest regional availability here.
GET FREE TRIAL