It is a service to help simplify the management of security protection to multiple resources in multiple accounts.

Prerequisite of Firewall Manager is that you have AWS Config enabled and that your account is part of an AWS Organisation.

Firewall Manager integrates with WAF, Shield Advanced, Network Firewall, VPC Security Groups and Route 52 Resolver DNS Firewall.

For each of those resources Firewall Manager allows you to configure Policies to protect them. (100$ per policy per region).

Firewall manager

A firewall Manager policy is created by

choosing policy and region

describing the policy

defining the policy scope (which resources and accounts will be covered by the policy)

configuring policy tags

reviewing and creating the policy