WAF
What
WAF stands for web application firewall
Can be deployed on
- Application Load Balancer
- API Gateway
- CloudFront
- AppSync GraphQL API
- Cognito User Pool
Web ACL
Web ACL rules can filter
- IP Set: Up to 10,000 IP addresses
- HTTP Headers
- HTTP Body
- HTTP query string
- Geo Match
- Rate Based
Protect From
- SQL Injection
- XSS
- Size Contraint
- DDoS
Web ACL is regional except from CloudFront
Web ACL Rule Group
A reusable group of Web ACL rules
Web ACL with fixed IP
To fix IP, you can use a Global Accelerator.