All Content tagged with AWS WAF
AWS WAF is a web application firewall that helps protect your web applications or APIs against common web exploits and bots that may affect availability, compromise security, or consume excessive resources.
Content language: English
Filter content
Select tags to filter
Sort by
Sort by most recent
481 results
I'm learning about CloudFront. I've set up a distribution using the free flat-rate plan. I've created an origin pointing to my EC2 instance and created a security group allowing access from the Clou...
I am trying to use the WAFV2 feature to insert custom headers to a request.
https://docs.aws.amazon.com/waf/latest/developerguide/customizing-the-incoming-request.html
I am trying to insert a header...
I have to create 100 IP sets and each IP set contains allowlisted IPs for a tenant. My limitation is that I cannot consolidate the IP sets as I do not want tenant cross-communication. I have the WAF/W...
Can someone explain in more detail/examples what these hard quota (Quota per account per Region) limits mean for AWS WAF?
1. Maximum number of reference statements per rule group. In a rule group, a r...
AlejandroEXPERT
published 25 days ago6 votes256 views
This article helps DevOps, support engineers, and solutions architects quickly understand the flat-rate plan tiers, identify how you can benefit most from them, and guide activation through the consol...
We're experiencing a crash originating from the AWS WAF Mobile SDK (version 2.0.4)
on Android. The crash occurs in an obfuscated class com.amazonaws.waf.mobilesdk.j,
referencing valuesI9811.
...
MikeLimEXPERT
published a month ago1 votes176 views
How to retrieve AWS WAF Bot Control (ABC) rule group labels
We are new to AWS WAF and trying to design a simple but effective rate-limiting strategy.
Our scenario is a bit tricky:
Our users access the application from both:
* Corporate networks (shar...
I’m trying to solve a problem with AWS WAF and want a sanity check.
Goal:
I don’t want to blindly allow “trusted” users, but I also don’t want false positives blocking real customers. I still wa...
Under what circumstances does CloudFront automatically create a WAF rule named CreatedByCloudFrontForDistributionecccccccccc-Geo-BlockRule regarding geographic restrictions?
We can confirm that we hav...
asked 2 months ago
Joanna KEXPERT
published 2 months ago0 votes192 views
How to setup alarms for AWS WAF `AWSManagedRulesAntiDDoSRuleSet` using the DDoSAttackRequests metric
Hi all,
We are currently experiencing a situation where a single external IP address is continuously sending a very high volume of requests (tens of thousands per minute) to our application behind Am...