Forum Discussion

Altostratus

Mar 28, 2019

How to configure WAF to protect applications hosted in AWS CDN environment.

We have a requirement to configure ASM security policy for an application hosted in AWS CDN environment. The lambda function is used and have 2 subnets attached to it. The application has an url http...

Cirrocumulus

Apr 26, 2019

F5 ASM can only protect application traffic flowing through your F5 ASM device. If CDN traffic you are taking about is 100% within AWS Cloudfront and is not flowing though F5 ASM in EC2 then you can't protect it.

If however in your design the traffic is flowing through F5 ASM then the WAF policy would be a standard JSON profile policy as AWS Lambda function calls are just JSON

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

How to configure WAF to protect applications hosted in AWS CDN environment.

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Geo location update

Help with an iRule to disconnect active connections to Pool Members that are "offline"

block a specific user

ASM/AWAF declarative policy

OOB Security Notification — Why you should patch NGINX Plus/Open Source now

Related Content

Seamless Application Migration Across Heterogeneous Environments with F5 BIG-IP

VIPTest: Rapid Application Testing for F5 Environments

How Do I Install the Application Study Tool in an Air-Gapped Environment?

Introducing the F5 Application Study Tool (AST)

App Migration across Heterogeneous Environments using F5 Distributed Cloud

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS