May 29, 2020 / Nirav Shah
AWS WAF is a web application firewall that helps protect your applications from attacks. In WAF, there are pre-configured rules which help to allow, block or monitor specific IPs. And these rules are applied to protect applications from common threats like application vulnerabilities like OWASP, bots, or Common Vulnerabilities and Exposures (CVE).
Web traffic filtering:- They filter the ip and if the ip are not mentioned on rule they can block it. AWS WAF allows you to create a centralized set of rules that you can deploy across multiple websites.
Real-time visibility:- AWS WAF provides real-time output that include details about IP addresses, geo locations, URIs. AWS WAF is fully integrated with Amazon CloudWatch, so that you can easily set up custom alarms when thresholds are exceeded or particular attacks occur.
Before we set up on AWS console in some time, we have to keep in mind:
Now Let’s see how we set up on console
Select “WAF & Shield” on AWS console.
Click “Go to AWS WAF”
Select “Web ACLs” from the AWS WAF console
Click “Create web ACL” and Enter “Web ACL name” and select “Region”. When you have decided which resource should be attached to the Web ACL, select “AWS resource to associate” and then click “Next”.
Now you have to select some WAF Conditions,
Once you are done with configuring conditions, you can create a rule and attach it to your web ACL. You can attach more than one rule to an ACL.
On the last page, review your settings and click “Confirm and create”
First, you pay only for what you use. There are no minimum fees and no upfront commitments. Your costs will depend on three major variables:
In this blog, we explained steps to create a Web ACL and the process of setting up an AWS console.
Also Read: AWS NAT Instance And Configuration
Q.1 Which aws services can use aws waf?
Q.2 What is the difference between aws waf and aws shield?
Q.3 When to use aws waf?
Q.4 How much does aws waf cost?
As a Director of Eternal Web Private Ltd an AWS consulting partner company, Nirav is responsible for its operations. AWS, cloud-computing and digital transformation are some of his favorite topics to talk about. His key focus is to help enterprises adopt technology, to solve their business problem with the right cloud solutions.
Have queries about your AWS project ideas and concepts? Please drop in your project details to discuss with our AWS experts, professionals and consultants.