QuickStart Service for URL/FQDN filtering implementation from your VPCs
This QuickStart Service for URL/FQDN filtering (based on Aviatrix Egress FQDN Filtering) provides the simplest implementation of secure Internet access from your VPC that access public internet to download Software updates/patches etc. This URL/FQDN filtering implementation provides centralized control to Lockdown which websites cloud-based applications can communicate. This eliminates the need to rely on the expensive firewalls or on the native IP address-based egress filters that change dynamically.
Discover software listings available in AWS Marketplace from Evolve Technologies. Request a private offer for custom pricing, and make your purchases in AWS Marketplace using your AWS account.
Cloud applications with unrestricted access to the Internet-based services expose your environment to attack. Best practices limit application and database tier network communications to only known Internet-based services. e.g. APP tier services that require build packages from GitHub must have access to github.com or workload requiring to download software patches must access the Software providers' Internet destinations, but all other access should be filtered and blocked. At SDxWORx, we as Aviatrix partners implement this solution that provides the visibility to understand what Internet-based services your applications are communicating with and gives you the control to filter those communications by specific URLs/Fully Qualified Domain Names (FQDN)
BENEFITS
Frictionless enablement in the VPCs for Secure internet breakout direct from the cloud Discover what Internet sites your APPs or Workloads visit before you create your filtering policies Implement a centrally manageable system to white list or black-list domains that enable policies to be applied easily to the VPCs with a simple user interface Fulfill compliance requirements with integrated audit logging that can also be exported to 3rd Party providers (Splunk, Sumologic, Datadog, and other tools)
DELIVERABLES
Pilot setup in two VPCs or sandbox environment with 10 rules (FREE) Design Workshop | Design document Setup Knowledge Transfer Validation Handover
Sophos Cloud UTM 9 Standalone or HA (PAYG)
Sophos Cloud UTM9 is a AWS Security Competency approved NextGen Firewall solution that helps customers with their shared security responsibilities by offering multiple layers of protection in a single virtual appliance
BitSight Implementation Services
Accelerate your BitSight deployment and maximize your investment with expert implementation services. Our certified consultants provide tailored guidance, configuration, and integration support to ensure a seamless and successful rollout.
Tenable Vulnerability Management
Managed in the cloud and powered by Nessus technology, Tenable Vulnerability Management (formerly Tenable.io) is the go-to vulnerability management solution for securing AWS environments. It provides the industry's most comprehensive vulnerability coverage with the ability to predict which security issues to remediate first. As part of the free trial, you can also access Tenable Cloud Security and other components of the Tenable portfolio.
Qualys VMDR (US Only)
Qualys VMDR (Vulnerability Management, Detection, and Response) allows you to discover, assess, prioritize in real time across your global hybrid IT environment.