Forum Discussion

tbriot's avatar
tbriot
Icon for Altocumulus rankAltocumulus
Sep 18, 2019

AWS F5 Managed WAF rules not blocking simple SQL injection

We have subscribed to the "F5 Rules for AWS WAF - API Security Rules". Product page: https://aws.amazon.com/marketplace/pp/B07M948X2H. A Web ACL has been created in our AWS account using this group ...
AWS
F5 Rules for AWS WAF
security
Jeff_Parsons's avatar
Jeff_Parsons
Icon for Nimbostratus rankNimbostratus

Any luck? I am exploring the AWS WAF F5 managed rules and am curious to see how the 'shared support model' is working out for customers.

crodriguez's avatar
crodriguez
Ret. Employee
Oct 19, 2019

Good question, Jeff. Were you able to get your issue resolved, tbriot?

  • tbriot's avatar
    tbriot
    Icon for Altocumulus rankAltocumulus
    Oct 21, 2019

    My issue is still not resolved. A lot of back-and-forth between F5 and AWS support teams. Now the ball is in AWS Support's court.

    It's been a month now since we first contacted both support teams. Since we had to move fast, we switched to a competitor... which rules for AWS WAF are working fine for us.

  • Jeff_Parsons's avatar
    Jeff_Parsons
    Icon for Nimbostratus rankNimbostratus
    Oct 21, 2019

    There's so little useful information in the AWS Marketplace for Managed WAF rules. Did you post a review there to let folks know the issues? What vendor did you find worked for you?

     

  • tbriot's avatar
    tbriot
    Icon for Altocumulus rankAltocumulus
    Oct 21, 2019

    I have not posted any review yet. I am waiting for AWS Support's answer.

    For your 2nd question, please check your private messages.