Forum Discussion

tbriot's avatar
tbriot
Icon for Altocumulus rankAltocumulus
Sep 18, 2019

AWS F5 Managed WAF rules not blocking simple SQL injection

We have subscribed to the "F5 Rules for AWS WAF - API Security Rules". Product page: https://aws.amazon.com/marketplace/pp/B07M948X2H. A Web ACL has been created in our AWS account using this group ...
AWS
F5 Rules for AWS WAF
security
Jeff_Parsons's avatar
Jeff_Parsons
Icon for Nimbostratus rankNimbostratus
Oct 19, 2019

Any luck? I am exploring the AWS WAF F5 managed rules and am curious to see how the 'shared support model' is working out for customers.

  • crodriguez's avatar
    crodriguez
    Ret. Employee
    Oct 19, 2019

    Good question, Jeff. Were you able to get your issue resolved, tbriot?

    • tbriot's avatar
      tbriot
      Icon for Altocumulus rankAltocumulus
      Oct 21, 2019

      My issue is still not resolved. A lot of back-and-forth between F5 and AWS support teams. Now the ball is in AWS Support's court.

      It's been a month now since we first contacted both support teams. Since we had to move fast, we switched to a competitor... which rules for AWS WAF are working fine for us.

    • Jeff_Parsons's avatar
      Jeff_Parsons
      Icon for Nimbostratus rankNimbostratus
      Oct 21, 2019

      There's so little useful information in the AWS Marketplace for Managed WAF rules. Did you post a review there to let folks know the issues? What vendor did you find worked for you?

       

    • tbriot's avatar
      tbriot
      Icon for Altocumulus rankAltocumulus
      Oct 21, 2019

      I have not posted any review yet. I am waiting for AWS Support's answer.

      For your 2nd question, please check your private messages.