By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

AWS Managed Rules rule groups

0

I am assisting a company with their WAF ACLs. They have AWS managed rules rule groups applied. How do I find out what IPs/Ports are incorporated in those specified rules. I understand that providing that information in an open forum will not happen. Is this something that I need to have the customer do? If so, will AWS support provide that information via a secure email/message to the current customer? Please advise.

Topics
Security, Identity, & ComplianceAWS Well-Architected Framework
Tags
AWS WAFSecurity
Language
English
profile picture
JF
asked 9 months ago236 views
2 Answers
2

I suggest starting with the documentation which explains how each rule behaves and what it does.

If you are having trouble with a particular rule, follow the advice in the 'Guidelines for implementing AWS WAF' whitepaper, here.

If you are still encountering issues, please have the customer raise a case with AWS Support.

AWS
EXPERT
Paul_L
answered 9 months ago
1

Which exactly AWS Managed Rules are you referring to?

profile picture
myronix88
answered 9 months ago
  • JF
    9 months ago

    I am looking at this specific one initially "AWSManagedRulesAmazonIpReputationList". I know this is a baseline rule. I want to see what is currently being blocked prior to creating an additional rule to lock down the environment.

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content