Hello, and welcome to the final lecture of this course where I shall highlight some of the key points taken from the previous lectures. I started by introducing the service at a high level, and here I explained that the core function of AWS Firewall Manager is to simplify the management of protecting a range of different resources between multiple AWS accounts. And it does this by providing a centralized dashboard for managing security policies across your AWS organization.

AWS Firewall Manager automatically applies protection for any newly created resources that match your configured policies. And supported resources include AWS WAF, AWS Shield Advanced, AWS Network Firewall, VPC Security Groups, and Amazon Route 53 Resolver DNS Firewall. There are a number of prerequisites to fulfill before using Firewall Manager, which include deciding which AWS account will be your Firewall Manager administrator account, ensuring that you add your account to an AWS organization enabled with all features, configure AWS Firewall Manager within that account as the Firewall Manager administrator account. 

ou must enable AWS Config for your account and any other account in the AWS organization that you want to manage resource security for. You must also enable sharing with AWS Organizations in AWS Resource Access Manager if you're looking to apply security policies for network firewalls or DNS firewalls, and enable regions that you intend to protect resources in using AWS Organizations.

Next, we looked at the different policies available in Firewall Manager, and in this lecture we learned that for each type of resource that you want to protect, there is a different policy configuration. You can create more than one policy for the same resource type, and the following policies can be created: an AWS WAF policy, Shield Advanced policy, a Network Firewall policy, Amazon VPC Security Group policy, and an Amazon Route 53 Resolver DNS Firewall policy.

The creation of each policy type is generally a five-step process apart from the Network Firewall policy which contains an extra step. And generally the cost of Firewall Manager policies are charged at $100 per policy per region. And for each policy created, it will also create AWS Config rules, and in turn, these rules will also incur additional charges. And when creating a policy, it's beneficial if you have a working knowledge of the resource type you are trying to protect. And for some policies, you need to have created certain resources and elements prior to configuring the policy.

That now brings me to the end of this lecture and to the end of this course. You should now have an understanding of AWS Firewall Manager and how it can be used to protect specific resource types across your entire AWS organization. Feedback on our courses here at Cloud Academy is valuable to both us as trainers and any students looking to take the same course in the future. If you have any feedback, positive or negative, it'd be greatly appreciated if you can contact support@cloudacademy.com. Thank you for your time and good luck with your continued learning of cloud computing, thank you.