Source:
Why do we need to allow so many Amazon/AWS IP addresses? - Genesys Cloud Resource Center (mypurecloud.com)Is there a way to secure the large IP range needed, we're opening up our firewall to all AWS regions.
If a malicious service is spun up on that AWS region there is no way to monitor or restrict access
We have had a look at CIDR and Force Turn Servers but WebRTC's still need to perform signaling on port 443, does signaling get limited to the CIDR ranges or does it need the full AWS region addresses
Are there not generic CNAME's we can use for services?Another firewall concern is access to *.s3.amazon.com needed for call recordings
Any help on how we can limit and secure this traffic would be very helpful
#Security------------------------------
Louis Creely
AJ Bell Youinvest
------------------------------