Viewing managed rule groups in AWS Network Firewall

You can view the managed rule groups that are available for your use in your Network Firewall policy.

Console – You can view the list of managed rule groups either in the Network Firewall rule groups page in the AWS managed rule groups tab, or in the policy details page. When you add managed rule groups to a policy, you’ll see only the managed rule groups that fit your policy type. For example, if your policy type is default ordered, you’ll see only the managed rule groups that have a type of default ordered.
API – ListRuleGroups with the parameter Scope.
CLI – aws network-firewall list-rule-groups --scope MANAGED. To filter by managed rule group type, you can include the parameter managed-type and filter by AWS_MANAGED_THREAT_SIGNATURES and AWS_MANAGED_DOMAIN_LISTS.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Adding managed rule groups to your policy using the console

Copying threat signature rules