![]() Select the created WAF and head over to Associated AWS Resources tab> Click on Add AWS Resources> Click Application Load Balancer> Select the load balancer you want to protect. ![]() For example- lets consider an application load balancer. We can use it for various options like App LB, cloudfront or api gateway etc. At this point our WAF is created successfully. Review and create web ACL- Click ‘create web ACL’ button to create it. If we are setting up more than 1 rules, then we can set its execution afinity here by ascending orderĬonfigure metrics- Here we can edit the cloudwatch metric name as per our requirement and set the sampling options. ![]() managed rule groups> Cyber Security Cloud Managed Rules for AWS WAF -HighSecurity OWASP Set > Add Rule Managed Rule Groups> Cyber Security Cloud Inc. For example we are going ahead with 1 managed rule group. We can choose any 1 as per our requirement. Managed rule groups & own rules and rule groups. Select Create a Web ACL> name it>Description – optional>CloudWatch metric name- change the default name if required> Resource type- choose as per requirement> Region- choose the one where we want to deploy.Īdd rules and rule groups- Here we will have 2 options. Then search for WAF & Shield and it will land us on WAF Home. How to set up?– Firstly we should have an active AWS account to begin with. How it works?-There are mainly 4 parts of this configuration.ġ) AWS WAF 2)Create a policy 3) Block Filters 4) Monitorīelow is a flow diagram of the setup for reference. It also helps a lot in monitoring and controlling unusual bot traffic and common attack patterns. It defends our web applications & APIs from common web attacks/exploits and bots like Internet threats. Apart from already deployed firewalls, WAF provides an extra layer of security.
0 Comments
Leave a Reply. |