AWS Network Firewall now supports VPC prefix lists

AWS Network Firewall now supports Amazon Virtual Private Cloud (VPC) prefix lists to simplify management of your firewall rules and policies across your VPCs. Prefix lists enable you to group one or more CIDR blocks into a single object. You can group IP addresses that you frequently use in a prefix list, and reference this list in AWS Network Firewall rule groups. Previously you needed to update individual firewall rules when scaling your network to add new IP addresses, which can be time-consuming and error-prone. Now you can update the relevant prefix list and all AWS Network Firewall rule groups that reference the prefix list are automatically updated. As you scale your network, you can use prefix lists to simplify management of your firewall rule groups and policies across multiple VPCs and accounts in the same AWS Region. You can use [AWS-managed prefix lists](https://docs.aws.amazon.com/vpc/latest/userguide/working-with-aws-managed-prefix-lists.html) or you can create and manage your own prefix lists. AWS Network Firewall is a managed firewall service that makes it easy to deploy essential network protections for all your Amazon VPCs. This feature is available via the [Amazon VPC Console](https://console.aws.amazon.com/vpc/) or the [Network Firewall API](https://docs.aws.amazon.com/network-firewall/latest/APIReference/) in all commercial AWS Regions where AWS Network Firewall is available. There is no additional charge for using prefix lists with AWS Network Firewall. To get started with AWS Network Firewall, please see the AWS Network Firewall [product page](/network-firewall/) and service [documentation](https://docs.aws.amazon.com/network-firewall/latest/developerguide/).