API Gateway, API GW

Firewall for APIs that blocks based on API, URL, and user, instead of regular firewalls that block IP and port number. API gateways operate at a very high level. They look only at metadata. For instance, some APIs run server to server, so an API gateway will say that’s expected, but doesn’t dive into the actual data to figure out whether the number of hits on a server are normal.