Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[PFR] Create reference URL egress filtering add-on #2

Open
jonrau1 opened this issue Jun 10, 2020 · 0 comments
Open

[PFR] Create reference URL egress filtering add-on #2

jonrau1 opened this issue Jun 10, 2020 · 0 comments
Assignees
Labels
documentation Improvements or additions to documentation enhancement New feature or request

Comments

@jonrau1
Copy link
Owner

jonrau1 commented Jun 10, 2020

Story
As a user of SyntheticSun I want to have a URL filtering solution as an add-on so that I can utilized existing threat intel and automation infrastructure to provide protection against outbound communications to known malicious destinations.

Definition of Done

  • Squid used for URL filtering, added in Appendix B
  • Automation and configuration management scripts created to periodically update lists of malicious domains / URLs
  • CloudFormation support for a new reference VPC using the solution
  • Auto-scaled + load balanced Proxies
  • Onboard Squid logs into SyntheticSun core solution
  • Updated documentation

Nice to Have

  • Fargate Services are used for Squid
  • Multi-VPC egress pattern implemented via TGW

Additional Information

@jonrau1 jonrau1 added documentation Improvements or additions to documentation enhancement New feature or request labels Jun 10, 2020
@jonrau1 jonrau1 self-assigned this Jun 10, 2020
@jonrau1 jonrau1 linked a pull request Jun 11, 2020 that will close this issue
@jonrau1 jonrau1 removed a link to a pull request Jun 12, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
documentation Improvements or additions to documentation enhancement New feature or request
Projects
None yet
Development

No branches or pull requests

1 participant