By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Market Place best bot acitivity controller

0

a security concern we’ve been experiencing on our website. We’ve detected that some malicious actors are attempting to access our application using ProtonVPN (Pro version) and are spoofing IPs to mimic Googlebot traffic. However, upon checking the AWS ALB access logs, these IPs do not match any verified Google IP ranges

Topics
Security, Identity, & Compliance
Tags
AWS WAF
Language
English
CostingExpert
asked a month ago24 views
1 Answer
0

It might be worth taking a look at AWS WAF, and attaching it to your ALB (or even better, your CloudFront distribution in front of your ALB). You can use the common bots managed rule group, which should be able to detect legitimate of Googlebot traffic. Allow the legitimate traffic, deny the spoofed traffic.

profile pictureAWS
Jeremy AWS
answered a month ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content