07-Apr-2020 17:17
Hello,
I looking for information about support for AWS WAF F5 Rules that I purchesed via AWS Marketplace: F5 Rules for AWS WAF Classic - Web exploits OWASP Rules.
I have a Rule Group That is blocking a request, but I don´t known if there is some kind of malware in the requets or it is a legitimate request and is blocking for some kind os issue with the rule. This is the rule:
Where Can I get support for AWS WAF F5 rules?
"ruleGroupList": [
{
"ruleGroupId": "f47e809d-57b9-4c1f-8552-b59a188fa0b1",
"terminatingRule": {
"ruleId": "55e892fa-ff64-492e-ae4f-b9cdebf49ec4",
"action": "BLOCK",
08-Apr-2020 15:40
Hello Israel,
A RuleGroup is an AWS WAF container for predefined rules.
In your case: F5 Rules for AWS WAF - Web exploits OWASP Rules
These are pre-defined patterns for Negative Security policies on top of AWS WAF. (Very basic security)
Unfortunately, the AWS WAF has several limitations:
So if you need more visibility, control and security you should try and explore Advanced Web Application Firewall (WAF) which is available in the AWS Marketplace.
I hope it helps.