Questions tagged with AWS WAF
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
I'm currently using another company's VPS and Cloudflare as a CDN, but I've encountered security issues with my server. That's why I want to migrate my server to AWS EC2 and CloudFront. In my past...
1
answers
0
votes
702
views
asked a month agolg...
I followed the steps described in this documentation:
https://docs.aws.amazon.com/waf/latest/developerguide/waf-js-captcha-api.html
When a user tries to complete a Captcha verification on the JS...
1
answers
0
votes
544
views
asked a month agolg...
Hello.
I found an article stating that the maximum request rate for a web ACL is 25,000 per second. I want to know what happens if I exceed this limit in my requests.
Does the WAF respond with...
Accepted AnswerAWS WAF
2
answers
0
votes
413
views
asked a month agolg...
Good morning I have the following scenario protecting the cognito client_credential flow with additional programmatic control using cognito lambda triggers.
After a bit of testing and reading the...
1
answers
0
votes
653
views
asked 2 months agolg...
Currently we are facing a DDoS attack on our application every 3-4 days. We have configured a WAF rate limiting rule that seems to work correctly against our load testing tool but doesnt seem to block...
1
answers
0
votes
507
views
asked 2 months agolg...
We have a WAF set up in front of our API that is hosted in ECS/Fargate. One of the endpoints allows to upload (POST) an installer binary for our download area.
So far Windows installers work fine,...
Accepted AnswerAWS WAF
1
answers
0
votes
425
views
asked 2 months agolg...
We have 2 identical prod environments in AWS and the end-user send the exact same payload in those environments. However, one works fine, the other is blocked by **AWS Managed WAF Ruleset-Size...
1
answers
0
votes
409
views
asked 2 months agolg...
There's an endpoint blocked by AWS WAF. Let's say /api/services. In the logs, it's evident that it's being blocked due to the "size body" in the AWS Managed RuleSet. I've edited SizeRestrictions_BODY...
1
answers
0
votes
545
views
asked 2 months agolg...
is there a way to customize the 403 error message that WAF puts out? Right now our clients are seeing:
<html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center>...
1
answers
0
votes
262
views
asked 2 months agolg...
I'm using the WebACL, that is included my rule group, and other account's rule group.
I know that i cannot read or modify the other's rule group, but when I try to add a new rule group or market rule...
1
answers
0
votes
243
views
asked 2 months agolg...
I have rechecked I don't have any I haven't set up any AWS WAF. Even not able to see under WAF any resource.
I am getting lots of bills hourly based for Global-RuleV2 and AWS WAF Global-WebACLV2.
how...
1
answers
0
votes
428
views
asked 2 months agolg...
Hello,
In the EC2 instance, there is an image processing API, and I associate a WAF on ALB, then configured the following rule in the WAF:
```typescript
const awsManagedRulesCommonRuleSet:...
2
answers
0
votes
479
views
asked 2 months agolg...