Amazon Web Services: Blocking Web Traffic with WAF

Amazon Web Services: Blocking Web Traffic with WAF

For this tutorial I will be configuring WAF to block web traffic from a malicious source. AWS WAF service protects web applications from common exploits that affect availability, compromise security, or consume excessive resources. WAF monitor HTTP requests directed at Amazon Cloudfont or an Application Load Balancer, but this tutorial will be focusing on Load Balancer.

This image has an empty alt attribute; its file name is image-93.png
This image has an empty alt attribute; its file name is image-94.png

Click on AWS WAF

This image has an empty alt attribute; its file name is image-95.png

Create Web ACL

Click on "Configure web ACL"

This image has an empty alt attribute; its file name is image-96.png

In the input "Web ACL name" you will name the rule

This image has an empty alt attribute; its file name is image-97.png

For this rule, I will be naming "rule-1"

This image has an empty alt attribute; its file name is image-98.png

Create Condition

under conditition create a condition under "IP Match Condition"

This image has an empty alt attribute; its file name is image-100.png

Click "Create Condition"

This image has an empty alt attribute; its file name is image-101.png

When a popup appears. Under name I will be using "internet-host" and now enter the IP address.

This image has an empty alt attribute; its file name is image-102.png
This image has an empty alt attribute; its file name is image-103.png

Click Next to move to "Rules" section

This image has an empty alt attribute; its file name is image-104.png

Create Rule

Now I will associate the rule with the conditions previously created.

This image has an empty alt attribute; its file name is image-105.png

Now I will ensure the rule originates from the IP Address of the internet-host and make sure it "Allow all requests that don't match any rules" Then click on "Review and Create"

This image has an empty alt attribute; its file name is image-106.png

Click on "Confirm and Create"

This image has an empty alt attribute; its file name is image-107.png

Now the rule is created.

This image has an empty alt attribute; its file name is image-108.png

Share Tweet Send
0 Comments
Loading...