Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

Can I increase the number of country list from AWS WAF rule configuration from 50?

0

I set a WAF rule to limit the country list to allow traffic and block the requests for other countries not on the list.

I can provide a maximum of 50 countries listed in the rule. I am getting a validation error if the list exceeds 50. WAF validation error

Can we provide a country list of more than 50? Is there any possibility to increase this limit?

Temas
Seguridad, identidad y cumplimientoAWS Well-Architected Framework
Etiquetas
AWS WAFAWS Firewall ManagerSeguridad
Idioma
English
Jothi
preguntada hace 7 meses1533 visualizaciones
1 Respuesta
2

It seems we have geo restrictions of limit 50 countries at maximum thus this is not possible with individual rule.

Having said that the work-around to this issue is creating two Geo Matching statements with 'OR' condition and each statements with certain number of country codes you would like blocked.

Below is the JSON format from the console I have tested by creating two geo match statement using the 'Or' condition

"Statement": {
    "OrStatement": {
      "Statements": [
        {
          "GeoMatchStatement": {
            "CountryCodes": [
              "AD",
              "AI",
              "AL"
            ]
          }
        },
        {
          "GeoMatchStatement": {
            "CountryCodes": [
              "BS",
              "BD",
              "BY"
            ]
          }
        }
      ]
    }
  }
}
AWS
Makendran G
respondido hace 7 meses
  • Jothi
    hace 7 meses

    Thanks for your Answer. I will try this and update..

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante