├── .github ├── ISSUE_TEMPLATE │ ├── bug_report.md │ └── feature_request.md └── PULL_REQUEST_TEMPLATE.md ├── .gitignore ├── CHANGELOG.md ├── CODE_OF_CONDUCT.md ├── CONTRIBUTING.md ├── LICENSE.txt ├── NOTICE.txt ├── README.md ├── SECURITY.md ├── assets └── architecture.png ├── deployment ├── build-s3-dist.sh ├── cdk-solution-helper │ ├── README.md │ ├── asset-packager │ │ ├── __tests__ │ │ │ ├── asset-packager.enhanced.test.ts │ │ │ ├── asset-packager.test.ts │ │ │ ├── handler.enhanced.test.ts │ │ │ └── handler.test.ts │ │ ├── asset-packager.ts │ │ └── index.ts │ ├── jest.config.ts │ ├── package-lock.json │ ├── package.json │ └── tsconfig.json └── run-unit-tests.sh ├── solution-manifest.yaml └── source ├── architecture.png ├── bin └── centralized-network-inspection-solution.ts ├── cdk.json ├── centralizedNetworkInspection ├── __tests__ │ ├── __mocks__ │ │ ├── ec2-manager.ts │ │ ├── lib │ │ │ └── common │ │ │ │ ├── configReader │ │ │ │ └── config-reader.ts │ │ │ │ └── logger.ts │ │ └── network-firewall-manager.ts │ ├── build.spec.ts │ ├── ec2-manager.spec.ts │ ├── ec2-service.spec.ts │ ├── firewall-config-validation.spec.ts │ ├── firewall-name-arn-validation.spec.ts │ ├── firewall-test-configuration │ │ ├── firewallPolicies │ │ │ ├── firewall-invalid-policy-rule-arns.json │ │ │ ├── firewall-invalid-policy-rule-path.json │ │ │ ├── firewall-invalid-policy-stateful-rule-group.json │ │ │ ├── firewall-invalid-policy-stateless-rule-group.json │ │ │ ├── firewall-invalid-policy.json │ │ │ ├── firewall-policy-2.json │ │ │ └── firewall-policy.example.json │ │ ├── firewalls-invalid-rule-file │ │ │ └── firewall-invalid-rule-path.json │ │ ├── firewalls-invalid-rule-group-arns │ │ │ └── firewall-invalid-rule-group-arn.json │ │ ├── firewalls-invalid-rule-groups │ │ │ ├── firewall-invalid-stateful.json │ │ │ └── firewall-invalid-stateless.json │ │ ├── firewalls-valid │ │ │ └── firewall.example.json │ │ ├── firewalls │ │ │ ├── firewall-invalid.json │ │ │ ├── firewall-nopolicy.json │ │ │ ├── firewall.example-fw-policy-2.json │ │ │ └── firewall.example.json │ │ └── ruleGroups │ │ │ ├── drop.rules │ │ │ ├── empty-rules.example.json │ │ │ ├── invalid-rulegroup.example.json │ │ │ ├── stateful-domainblock.example.json │ │ │ ├── stateless-fwd-to-stateful.example.json │ │ │ ├── stateless-pass-action.example.json │ │ │ └── suricata-rule-reference.json │ ├── network-firewall-manager.spec.ts │ ├── network-firewall-service-retry-limits.spec.ts │ ├── network-firewall-service.spec.ts │ ├── send-metrics.enhanced.spec.ts │ ├── send-metrics.spec.ts │ └── stringManipulation.spec.ts ├── build.ts ├── config │ ├── examples │ │ ├── firewallPolicies │ │ │ └── firewall-policy.example.json │ │ ├── firewalls │ │ │ └── firewall.example.json │ │ └── ruleGroups │ │ │ ├── drop.rules │ │ │ ├── stateful-domainblock.example.json │ │ │ ├── stateless-fwd-to-stateful.example.json │ │ │ ├── stateless-pass-action.example.json │ │ │ └── suricata-rule-reference.json │ ├── firewallPolicies │ │ └── firewall-policy-1.json │ └── firewalls │ │ └── firewall-1.json ├── index.ts ├── jest.config.js ├── lib │ ├── common │ │ ├── aws-error-formatter.ts │ │ ├── configReader │ │ │ └── config-reader.ts │ │ ├── firewall-config-validation.ts │ │ ├── logger.ts │ │ ├── send-metrics.ts │ │ └── stringUtils.ts │ ├── ec2-manager.ts │ ├── network-firewall-manager.ts │ └── service │ │ ├── awsClientConfig.ts │ │ ├── ec2-service.ts │ │ └── network-firewall-service.ts ├── package-lock.json ├── package.json └── tsconfig.json ├── jest.config.js ├── lib └── centralized-network-inspection.stack.ts ├── package-lock.json ├── package.json ├── run-all-tests.sh ├── test ├── __snapshots__ │ └── centralized-network-inspection-solution.test.ts.snap ├── centralized-network-inspection-solution.test.ts └── cfn-guard-suppress.test.ts ├── tsconfig.json └── utils └── appUtils.ts /.github/ISSUE_TEMPLATE/bug_report.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/.github/ISSUE_TEMPLATE/bug_report.md -------------------------------------------------------------------------------- /.github/ISSUE_TEMPLATE/feature_request.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/.github/ISSUE_TEMPLATE/feature_request.md -------------------------------------------------------------------------------- /.github/PULL_REQUEST_TEMPLATE.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/.github/PULL_REQUEST_TEMPLATE.md -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/.gitignore -------------------------------------------------------------------------------- /CHANGELOG.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/CHANGELOG.md -------------------------------------------------------------------------------- /CODE_OF_CONDUCT.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/CODE_OF_CONDUCT.md -------------------------------------------------------------------------------- /CONTRIBUTING.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/CONTRIBUTING.md -------------------------------------------------------------------------------- /LICENSE.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/LICENSE.txt -------------------------------------------------------------------------------- /NOTICE.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/NOTICE.txt -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/README.md -------------------------------------------------------------------------------- /SECURITY.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/SECURITY.md -------------------------------------------------------------------------------- /assets/architecture.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/assets/architecture.png -------------------------------------------------------------------------------- /deployment/build-s3-dist.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/deployment/build-s3-dist.sh -------------------------------------------------------------------------------- /deployment/cdk-solution-helper/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/deployment/cdk-solution-helper/README.md -------------------------------------------------------------------------------- /deployment/cdk-solution-helper/asset-packager/__tests__/asset-packager.enhanced.test.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/deployment/cdk-solution-helper/asset-packager/__tests__/asset-packager.enhanced.test.ts -------------------------------------------------------------------------------- /deployment/cdk-solution-helper/asset-packager/__tests__/asset-packager.test.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/deployment/cdk-solution-helper/asset-packager/__tests__/asset-packager.test.ts -------------------------------------------------------------------------------- /deployment/cdk-solution-helper/asset-packager/__tests__/handler.enhanced.test.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/deployment/cdk-solution-helper/asset-packager/__tests__/handler.enhanced.test.ts -------------------------------------------------------------------------------- /deployment/cdk-solution-helper/asset-packager/__tests__/handler.test.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/deployment/cdk-solution-helper/asset-packager/__tests__/handler.test.ts -------------------------------------------------------------------------------- /deployment/cdk-solution-helper/asset-packager/asset-packager.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/deployment/cdk-solution-helper/asset-packager/asset-packager.ts -------------------------------------------------------------------------------- /deployment/cdk-solution-helper/asset-packager/index.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/deployment/cdk-solution-helper/asset-packager/index.ts -------------------------------------------------------------------------------- /deployment/cdk-solution-helper/jest.config.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/deployment/cdk-solution-helper/jest.config.ts -------------------------------------------------------------------------------- /deployment/cdk-solution-helper/package-lock.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/deployment/cdk-solution-helper/package-lock.json -------------------------------------------------------------------------------- /deployment/cdk-solution-helper/package.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/deployment/cdk-solution-helper/package.json -------------------------------------------------------------------------------- /deployment/cdk-solution-helper/tsconfig.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/deployment/cdk-solution-helper/tsconfig.json -------------------------------------------------------------------------------- /deployment/run-unit-tests.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/deployment/run-unit-tests.sh -------------------------------------------------------------------------------- /solution-manifest.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/solution-manifest.yaml -------------------------------------------------------------------------------- /source/architecture.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/architecture.png -------------------------------------------------------------------------------- /source/bin/centralized-network-inspection-solution.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/bin/centralized-network-inspection-solution.ts -------------------------------------------------------------------------------- /source/cdk.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/cdk.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/__mocks__/ec2-manager.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/__mocks__/ec2-manager.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/__mocks__/lib/common/configReader/config-reader.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/__mocks__/lib/common/configReader/config-reader.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/__mocks__/lib/common/logger.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/__mocks__/lib/common/logger.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/__mocks__/network-firewall-manager.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/__mocks__/network-firewall-manager.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/build.spec.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/build.spec.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/ec2-manager.spec.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/ec2-manager.spec.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/ec2-service.spec.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/ec2-service.spec.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-config-validation.spec.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-config-validation.spec.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-name-arn-validation.spec.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-name-arn-validation.spec.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewallPolicies/firewall-invalid-policy-rule-arns.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewallPolicies/firewall-invalid-policy-rule-arns.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewallPolicies/firewall-invalid-policy-rule-path.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewallPolicies/firewall-invalid-policy-rule-path.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewallPolicies/firewall-invalid-policy-stateful-rule-group.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewallPolicies/firewall-invalid-policy-stateful-rule-group.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewallPolicies/firewall-invalid-policy-stateless-rule-group.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewallPolicies/firewall-invalid-policy-stateless-rule-group.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewallPolicies/firewall-invalid-policy.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewallPolicies/firewall-invalid-policy.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewallPolicies/firewall-policy-2.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewallPolicies/firewall-policy-2.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewallPolicies/firewall-policy.example.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewallPolicies/firewall-policy.example.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls-invalid-rule-file/firewall-invalid-rule-path.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls-invalid-rule-file/firewall-invalid-rule-path.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls-invalid-rule-group-arns/firewall-invalid-rule-group-arn.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls-invalid-rule-group-arns/firewall-invalid-rule-group-arn.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls-invalid-rule-groups/firewall-invalid-stateful.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls-invalid-rule-groups/firewall-invalid-stateful.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls-invalid-rule-groups/firewall-invalid-stateless.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls-invalid-rule-groups/firewall-invalid-stateless.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls-valid/firewall.example.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls-valid/firewall.example.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls/firewall-invalid.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls/firewall-invalid.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls/firewall-nopolicy.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls/firewall-nopolicy.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls/firewall.example-fw-policy-2.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls/firewall.example-fw-policy-2.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls/firewall.example.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/firewalls/firewall.example.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/ruleGroups/drop.rules: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/ruleGroups/drop.rules -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/ruleGroups/empty-rules.example.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/ruleGroups/empty-rules.example.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/ruleGroups/invalid-rulegroup.example.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/ruleGroups/invalid-rulegroup.example.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/ruleGroups/stateful-domainblock.example.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/ruleGroups/stateful-domainblock.example.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/ruleGroups/stateless-fwd-to-stateful.example.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/ruleGroups/stateless-fwd-to-stateful.example.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/ruleGroups/stateless-pass-action.example.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/ruleGroups/stateless-pass-action.example.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/firewall-test-configuration/ruleGroups/suricata-rule-reference.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/firewall-test-configuration/ruleGroups/suricata-rule-reference.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/network-firewall-manager.spec.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/network-firewall-manager.spec.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/network-firewall-service-retry-limits.spec.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/network-firewall-service-retry-limits.spec.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/network-firewall-service.spec.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/network-firewall-service.spec.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/send-metrics.enhanced.spec.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/send-metrics.enhanced.spec.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/send-metrics.spec.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/send-metrics.spec.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/__tests__/stringManipulation.spec.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/__tests__/stringManipulation.spec.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/build.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/build.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/config/examples/firewallPolicies/firewall-policy.example.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/config/examples/firewallPolicies/firewall-policy.example.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/config/examples/firewalls/firewall.example.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/config/examples/firewalls/firewall.example.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/config/examples/ruleGroups/drop.rules: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/config/examples/ruleGroups/drop.rules -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/config/examples/ruleGroups/stateful-domainblock.example.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/config/examples/ruleGroups/stateful-domainblock.example.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/config/examples/ruleGroups/stateless-fwd-to-stateful.example.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/config/examples/ruleGroups/stateless-fwd-to-stateful.example.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/config/examples/ruleGroups/stateless-pass-action.example.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/config/examples/ruleGroups/stateless-pass-action.example.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/config/examples/ruleGroups/suricata-rule-reference.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/config/examples/ruleGroups/suricata-rule-reference.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/config/firewallPolicies/firewall-policy-1.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/config/firewallPolicies/firewall-policy-1.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/config/firewalls/firewall-1.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/config/firewalls/firewall-1.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/index.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/index.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/jest.config.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/jest.config.js -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/lib/common/aws-error-formatter.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/lib/common/aws-error-formatter.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/lib/common/configReader/config-reader.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/lib/common/configReader/config-reader.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/lib/common/firewall-config-validation.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/lib/common/firewall-config-validation.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/lib/common/logger.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/lib/common/logger.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/lib/common/send-metrics.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/lib/common/send-metrics.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/lib/common/stringUtils.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/lib/common/stringUtils.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/lib/ec2-manager.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/lib/ec2-manager.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/lib/network-firewall-manager.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/lib/network-firewall-manager.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/lib/service/awsClientConfig.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/lib/service/awsClientConfig.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/lib/service/ec2-service.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/lib/service/ec2-service.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/lib/service/network-firewall-service.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/lib/service/network-firewall-service.ts -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/package-lock.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/package-lock.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/package.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/package.json -------------------------------------------------------------------------------- /source/centralizedNetworkInspection/tsconfig.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/centralizedNetworkInspection/tsconfig.json -------------------------------------------------------------------------------- /source/jest.config.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/jest.config.js -------------------------------------------------------------------------------- /source/lib/centralized-network-inspection.stack.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/lib/centralized-network-inspection.stack.ts -------------------------------------------------------------------------------- /source/package-lock.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/package-lock.json -------------------------------------------------------------------------------- /source/package.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/package.json -------------------------------------------------------------------------------- /source/run-all-tests.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/run-all-tests.sh -------------------------------------------------------------------------------- /source/test/__snapshots__/centralized-network-inspection-solution.test.ts.snap: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/test/__snapshots__/centralized-network-inspection-solution.test.ts.snap -------------------------------------------------------------------------------- /source/test/centralized-network-inspection-solution.test.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/test/centralized-network-inspection-solution.test.ts -------------------------------------------------------------------------------- /source/test/cfn-guard-suppress.test.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/test/cfn-guard-suppress.test.ts -------------------------------------------------------------------------------- /source/tsconfig.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/tsconfig.json -------------------------------------------------------------------------------- /source/utils/appUtils.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aws-solutions-library-samples/guidance-for-cross-network-traffic-inspection-with-aws-network-firewall/HEAD/source/utils/appUtils.ts --------------------------------------------------------------------------------