Encrypt EBS Volume for the VM-Series Firewall on AWS
Use the AWS KMS to encrypt data stored on the EBS volume
of the VM-Series firewall on AWS.
EBS encryption is available for all AWS EC2 Instance Types on which you can deploy the VM-Series
firewall. To securely store data on the VM-Series firewall on AWS,
you must first create a copy of an AMI that is published on the
AWS public or GovCloud Marketplace, or use a custom AMI, and then
encrypt the EBS volume with a customer master key (CMK)
on the AWS Key Management Service (KMS). You can use the default
master key for your AWS account or any CMK that you have previously
created using the AWS Key Management Service, and EBS the KMS interact
to ensure data security.
Create an encryption key on AWS or
skip this step if you want to use the default master key for your
You will use this key to encrypt the EBS volume on the
firewall. Note that the key is region specific.
Use the key to encrypt the EBS volume on the firewall.