By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

How to allow requests from a certain domain.

0

So i want to block all request to my WAF except for request that come from this domain.com

Topics
Security, Identity, & Compliance
Tags
AWS WAFApplication Load Balancer
Language
English
Shakespeare
asked 2 months ago317 views
3 Answers
0
Accepted Answer

To clarify, the request to reach your WAF will have the information of the domain it is called (ex., domain.com). By default, there will be nothing called "request comes from a specific domain" from my understanding. Hence, you could restrict the request to a specific domain using WAF. In case your question is whitelisting the caller, there will be some options:

  • Restrict specific IP Addresses can send requests to your application
  • Add some specific header to identify the caller that sends a request to your application.
profile picture
Minh Le
answered a month ago
  • Shakespeare
    a month ago

    Thanks. That's what i ended up doing. We inspected every request looking for the caller information within the header.

0

Hi, you can use an allow list to match the domain and keep the default action as "BLOCK" https://docs.aws.amazon.com/waf/latest/developerguide/web-acl.html

Create a new WebACL and have just one custom WAF rule that you create for the domain you want to allow.

AWS
EXPERT
Aanchal Agrawal
answered 2 months ago
  • Shakespeare
    2 months ago

    I have turned the default action to block. I don't see the option to allow traffic from a certain domain. I can block using ip address but no luck with a domain.

0

You can’t block requests coming from a specific domain. This doesn’t exist in the world.

profile picture
EXPERT
Gary Mclean
answered 2 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content