Browse through the questions and answers listed below or filter and sort to narrow down your results.
Firewall Manager and Account Takeover Protection
I want to add the Account Takeover Protection managed rule group to my AWS Firewall Manager security policy, but when I edit the policy in the console, I don't see the ATP ruleset. Only Bot Control appears under advanced rule groups: ![Screenshot of Firewall Manager console showing only Bot Control under advanced rule groups](/media/postImages/original/IMzyRbteLYScuyXeGbNcT4FQ) However, I do see ATP if I go to edit a Web ACL in WAF: ![Screenshot of WAF console showing ATP and bot control paid rule groups](/media/postImages/original/IM_uvVsMcjTuSEYT3Nr8G_kQ) Is ATP not compatible with Firewall Manager?
How to host an multi region api in aws?
I want to host an REST based Api in multi region. to do so, I am assuming i will have to create resources in each region. like api gateway, lambdas or anything related to the api. i want to create a new domain and based on the traffic or health check i can route the request to each regions api gateway endpoint. also for the security purposes, i need to create certain firewall rules. what resources do i need to create, like a domain name i suppose and firewall rules, any load balancing and besides domain name, what resources would be global that i need to create in each region?
Connection refused problems of my EC2 instance
I have problems of connection refused in EC2 instance, my odoo application with docker does not respond, I have changed the group of rules, I have restarted the instance and I cannot start the application, please can you help me with this issue, thanks. ![Enter image description here](https://repost.aws/media/postImages/original/IMEGRPAmfNQLmLoU0BK-Ii8w)
403 ERROR The request could not be satisfied.
Hello, I want to visit a website and I get the following message: 403 ERROR The request could not be satisfied. The Amazon CloudFront distribution is configured to block access from your country. We can't connect to the server for this app or website at this time. There might be too much traffic or a configuration error. Try again later, or contact the app or website owner. If you provide content to customers through CloudFront, you can find steps to troubleshoot and help prevent this error by reviewing the CloudFront documentation. Generated by cloudfront (CloudFront) Request ID: 9uRI13FwSDykUqOnCfezuM-FkTXqIGgzxdB3aRzGwhF_0pRaaxDwnA== how can i fix it??? I need a step by step guide because I have no idea how to do it
Clicking Add rule with the rule builder for a Web ACL in AWS WAF does nothing (no errors), the browser console shows WAFLimitsExceededException, we have no other WAFs
I've created my first WAF/Web ACL for a Cloudfront distribution, I'm trying to block some links by query string matches. When I click Add rule, there are no errors thrown, nothing happens. Checking the browser console shows: WAFLimitsExceededException: AWS WAF couldn’t perform the operation because you exceeded your resource limit. We have no other WAFs, and only one Web ACL I've just created and want to add a single Rule on.
How to scan the server files
Hi, We have following queries. Can you please suggest on these also 1. Can we use AWS Marketplace: Antivirus for Amazon S3 - PAYG with 30 DAY FREE TRIAL for ours 2. Do we have the provision to do real time Antivirus scan using this 3. Can we run this on our own and do the scan 4. Do we have the possibility schedule this to do periodical scans and get the results 5. Whether this installation can be done free of cost 6. Apart from this do we have any alternate scanning tool Thanks
Repeat Email Hack
This is the second time we have had a company use/access our email for spamming, however, our company is set serverless with AWS cloud. The attack comes from amzonses.com forwarded by JackpotCity (not our company) which uses our email. Always to the same email sender being email@example.com ,,, the heading or subject: Complaints, FW: For your eyes only. I've since changed all passwords and the emails have stopped coming through, I should mention we use a Gmail for our email. Is there anything more I could be doing to prevent and defend our email, and stop such attacks or spamming from happening again? Thanks in advance C
Cannot send WAF logs to Kinesis
Hi all, I have been struggling to send my WAF ACL (AWS Managed rules) logs to Kinesis via a data firehose delivery stream. I have a web app running on an ALB and have that set as the associated resource in the AWS WAF console. I have also enabled logging and set Amazon Kinesis Data Firehose delivery stream as the logging destination but i am not seeing any requests etc. in the Kinesis delivery stream, its marked as active and the source is direct PUT. Any help would be appreciated, thank you in advance!
Need WAF Dashboard for Logs easy visibility
I am following this tutorial https://aws.amazon.com/blogs/security/deploy-dashboard-for-aws-waf-minimal-effort/ but when I select my region and load a template I get error api_error_message_500 Why I am getting this error? Is there any other quick way to start getting WAF logs on Kibana Dashboard?