Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

HOW CAN WE LIST ALL Web ACLs and the all the rules inside of those Web ACLs.

0

I'm trying to find any code in cli which I can execute in cloudshell to extract the LIST of ALL Web ACLs and the all the rules inside of those Web ACLs using some for loop. The output should be in text or it can be in csv format.

In both ways using AWS WAF Classic or the new AWS WAF.

Temas
Seguridad, identidad y cumplimientoHerramientas para desarrolladoresGestión y gobierno
Etiquetas
AWS WAFAWS CloudShellAWS Command Line Interface
Idioma
English
rePost-User-4327020
preguntada hace un año930 visualizaciones
2 Respuestas
0

There is no direct way to list ACLs alongwith rules, needs to be two step process, first you list ACLs and then rules. Please check the below two links.

https://docs.aws.amazon.com/cli/latest/reference/waf/list-web-acls.html https://docs.aws.amazon.com/cli/latest/reference/wafv2/list-resources-for-web-acl.html

AWS
Rishi
respondido hace un año
0

WAFv2 (the newest WAF) has a nice property where all rules are explicitly listed inside web ACL. You have to fetch the list of web ACLs using list-web-acls and then cycle through the list to fetch individual web ACL using get-web-acl. Pipe the output into a file.

For WAF Classic, the process is similar but rules are referenced from web ACL. So you need to do addition step of cycling through the rules inside web ACL and then fetch individual rule using get-rule. Note the difference in API documentation for WAF Classic and WAFv2.

Doable in most shell using CLI but probably easier to use scripting language like Python for better formatting.

AWS
kumo-hiyori
respondido hace un año

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante