Skip to content

aws_waf-1.0.0
Compare
Choose a tag to compare
@YANG-DB YANG-DB released this 27 May 19:12
· 34 commits to main since this release
aws_waf-1.0.0
0f0e7e9
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

AWS WAF Integration

AWS WAF Logs schema, see protocol details protocol

What is AWS WAF?

AWS WAF (Web Application Firewall) is a web application firewall service that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. AWS WAF provides firewall rules to filter and monitor HTTP/HTTPS requests based on specific conditions.

AWS WAF can be used for various purposes, such as:

  • Mitigating web application layer DDoS attacks
  • Blocking common web attack patterns like SQL injection and cross-site scripting (XSS)
  • Filtering traffic based on IP addresses or geographic locations
  • Controlling access to specific parts of your application

AWS WAF allows you to define rules to match specific conditions and then take actions, such as allowing, blocking, or rate-limiting requests, based on those rules.

See additional details here.

What is AWS WAF Log Integration?

An integration is a set of pre-configured assets bundled together to facilitate monitoring and analysis.

AWS WAF log integration includes dashboards, visualizations, queries, and an index mapping.

Dashboard

Loading Integrations via DashboardManagement

To update an integration template navigate to the DashboardManagement and select savedObjects and import the new artifact:

  1. Download the amazon_waf-1.0.0.ndjson artifact

  2. Go to the DashboardManagement -> savedObjects

  1. Once there select import to load the recently downloaded integration artifact (amazon_waf-1.0.0.ndjson suffix)

  2. Open the waf integration and install

Assets 3
Loading