Questions tagged with AWS WAF
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
I'm using the WebACL, that is included my rule group, and other account's rule group.
I know that i cannot read or modify the other's rule group, but when I try to add a new rule group or market rule...
1
answers
0
votes
66
views
asked 3 days agolg...
I have rechecked I don't have any I haven't set up any AWS WAF. Even not able to see under WAF any resource.
I am getting lots of bills hourly based for Global-RuleV2 and AWS WAF Global-WebACLV2.
how...
1
answers
0
votes
298
views
asked 9 days agolg...
Hello,
In the EC2 instance, there is an image processing API, and I associate a WAF on ALB, then configured the following rule in the WAF:
```typescript
const awsManagedRulesCommonRuleSet:...
2
answers
0
votes
366
views
asked 9 days agolg...
One of our client is trying to reach our application but they are not able to reach with 403 error.
We have enabled WAF for this application with a custom rule looking for X-Forwarded-For header...
2
answers
0
votes
316
views
asked 14 days agolg...
ConfigureRateBasedRule: CloudFormation did not receive a response from your Custom Resource. If you are using the Python cfn-response module, you may need to update your Lambda function code so that...
1
answers
0
votes
151
views
asked 15 days agolg...
I am analysing my waf logs and i want to ignore any requests coming from Amazon's web crawling bots
Could someone help me with that
Well i tried to reverse and forward DNS look up to verify an ip...
2
answers
0
votes
137
views
asked 17 days agolg...
I have deployed microservice application on ECS in Mumbai region but my customers are from Sri Lanka how can I block the access to the application from other countries except Sri Lanka, when I set Sri...
2
answers
0
votes
132
views
asked 20 days agolg...
I have a website that is behind ALB with WAF integration. Our vulnerability scan showed the following:
Website Does Not Implement HSTS Best Practices
**Recommendation:**
Implement HTTP Strict...
2
answers
0
votes
594
views
asked 23 days agolg...
I have done a security vulnerability scan against my hosted site behind ALB with WAF integration. The scan reported the following:
Content Security Policy (CSP)...
1
answers
0
votes
476
views
asked 23 days agolg...
Hello, I have built Talyaroofing.com but after 5 months it flagged as malicious and phising found on my website somehow when I do the search on virustotal.com. That was the reason that Comcast...
1
answers
0
votes
372
views
asked a month agolg...
Hello,
We're using Amplify for our app deployment and have set up a CloudFront distribution to filter traffic using WAF and limit access based on specific IPs, including local clients and an Elastic...
4
answers
1
votes
265
views
asked a month agolg...
I created a web application firewall (WAF) integration with my load balancer:
1. AWS-AWSManagedRulesAmazonIpReputationList
2. AWS-AWSManagedRulesCommonRuleSet
3....
3
answers
0
votes
735
views
asked a month agolg...