- 最新
- 投票最多
- 评论最多
To clarify, the request to reach your WAF will have the information of the domain it is called (ex., domain.com). By default, there will be nothing called "request comes from a specific domain" from my understanding. Hence, you could restrict the request to a specific domain using WAF. In case your question is whitelisting the caller, there will be some options:
- Restrict specific IP Addresses can send requests to your application
- Add some specific header to identify the caller that sends a request to your application.
Hi, you can use an allow list to match the domain and keep the default action as "BLOCK" https://docs.aws.amazon.com/waf/latest/developerguide/web-acl.html
Create a new WebACL and have just one custom WAF rule that you create for the domain you want to allow.
I have turned the default action to block. I don't see the option to allow traffic from a certain domain. I can block using ip address but no luck with a domain.
You can’t block requests coming from a specific domain. This doesn’t exist in the world.
相关内容
AWS 官方已更新 2 年前
Thanks. That's what i ended up doing. We inspected every request looking for the caller information within the header.