How to add a rate limit rule by URL

I want to add a rate limit rule that forces a captcha when the limit is reached. I want to limit this for any user who is accessing a URL which contains the word "product" in the url.

I set something up like this and want to confirm if this is correct?

Request aggregation Count all Rate limit 100 Scope-down statement Field to match URI path Positional constraint Contains string Search string /product Text transformations Lowercase (Priority 0)

トピック

セキュリティ、アイデンティティ、コンプライアンス

タグ

AWS WAF

言語

English

AniBC

質問済み 7ヶ月前215ビュー

1回答

新しい順
投票が多い順
コメントが多い順

これらの回答は役に立ちましたか？コミュニティがあなたの知識を活用できるように、正解に賛成票を投じてください。

Your concept is correct. Would recommend that you capture the WAF logs to an S3 bucket and setup a table in Athena to run queries to help validate your custom WAF rules. More details are available in this blog 3 most important AWS WAF Rate Based Rules

Kuok Chiang

回答済み 7ヶ月前

How to add a rate limit rule by URL

関連するコンテンツ