Which AWS service or feature meets these requirements?
Security groups
Network ACLs
AWS Network Firewall
Amazon VPC Network Access Analyzer
Explanations:
Security groups provide instance-level protection by controlling inbound and outbound traffic to and from instances, but they do not offer a managed solution for overarching network protection across multiple VPCs.
Network ACLs (Access Control Lists) provide subnet-level security and can control traffic at the subnet boundary, but they are not managed services and do not provide comprehensive protections across all VPCs like AWS Network Firewall.
AWS Network Firewall is a managed service that provides essential network protections such as stateful inspection, intrusion prevention, and threat intelligence, making it suitable for deploying protections across multiple VPCs.
Amazon VPC Network Access Analyzer helps identify network accessibility and configuration issues, but it does not provide managed security protections or actively protect the network, making it unsuitable for this requirement.