{"id":18918,"date":"2024-09-03T19:53:37","date_gmt":"2024-09-03T14:23:37","guid":{"rendered":"https:\/\/opstree.com\/blog\/?p=18918"},"modified":"2024-09-17T16:53:22","modified_gmt":"2024-09-17T11:23:22","slug":"blocking-web-traffic-with-waf-in-aws","status":"publish","type":"post","link":"https:\/\/opstree.com\/blog\/2024\/09\/03\/blocking-web-traffic-with-waf-in-aws\/","title":{"rendered":"Blocking Web Traffic With WAF In AWS"},"content":{"rendered":"<p>&nbsp;<\/p>\n<p><strong>Problem Statement:<\/strong><\/p>\n<p>Travel Triangle&#8217;s WhatsApp application was experiencing significant performance degradation due to harmful &#8220;User Agents,&#8221; leading to decreased business and reputational harm. The need to mitigate these risks prompted an exploration of various solutions, culminating in the selection of AWS WAF.<\/p>\n<p><strong>Solution:<\/strong><\/p>\n<p>AWS WAF was chosen for its ability to effectively block malicious traffic while being cost-efficient. This document outlines the specific steps taken to configure AWS WAF, detailing how it was used to filter and block the harmful &#8220;User Agents,&#8221; thus protecting the application&#8217;s performance and ensuring business continuity.<\/p>\n<p><!--more--><\/p>\n<h1 id=\"35d0\" class=\"ng nh fr be ni nj nk nl nm nn no np nq nr ns nt nu nv nw nx ny nz oa ob oc od bj\" data-selectable-paragraph=\"\">Introduction<\/h1>\n<h2 id=\"a9d5\" class=\"oe nh fr be ni of og oh nm oi oj ok nq mt ol om on mx oo op oq nb or os ot ou bj\" data-selectable-paragraph=\"\">What\u2019s WAF (web application firewall)?<\/h2>\n<ol class=\"\">\n<li id=\"4256\" class=\"mi mj fr mk b ml ov mn mo mp ow mr ms mt ox mv mw mx oy mz na nb oz nd ne nf pa pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">AWS WAF<\/strong>\u00a0is a\u00a0<strong class=\"mk fs\">web application firewall<\/strong>\u00a0that helps you<strong class=\"mk fs\">\u00a0protect your web applications against common web exploits that might affect availability and compromise security.<\/strong><\/li>\n<li id=\"f3f2\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pa pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">AWS WAF<\/strong>\u00a0gives you\u00a0<strong class=\"mk fs\">control over how traffic reaches your applications by enabling you to create security rules that block common attack patterns<\/strong>\u00a0like\u00a0<strong class=\"mk fs\">SQL injection<\/strong>\u00a0and\u00a0<strong class=\"mk fs\">cross-site scripting<\/strong>.<\/li>\n<li id=\"335d\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pa pb pc bj\" data-selectable-paragraph=\"\">It only<strong class=\"mk fs\">\u00a0allows the request to reach the server based on the rules or patterns you define.<\/strong><\/li>\n<li id=\"a352\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pa pb pc bj\" data-selectable-paragraph=\"\">Users\u00a0<strong class=\"mk fs\">create their own rules<\/strong>\u00a0and\u00a0<strong class=\"mk fs\">specify the conditions that AWS WAF searches for in incoming web requests<\/strong>.<\/li>\n<li id=\"2953\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pa pb pc bj\" data-selectable-paragraph=\"\">The<strong class=\"mk fs\">\u00a0cost of WAF\u00a0<\/strong>is\u00a0<strong class=\"mk fs\">only for what you use<\/strong>.<\/li>\n<li id=\"b055\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pa pb pc bj\" data-selectable-paragraph=\"\">The\u00a0<strong class=\"mk fs\">pricing<\/strong>\u00a0is based on<strong class=\"mk fs\">\u00a0how many rules you deploy and how many web requests your application receives.<\/strong><\/li>\n<li id=\"b2c0\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pa pb pc bj\" data-selectable-paragraph=\"\">For example, you can\u00a0<strong class=\"mk fs\">deploy AWS WAF on Amazon CloudFront<\/strong>\u00a0<strong class=\"mk fs\">with an Application Load Balancer in front of your web servers or servers running on EC2.<\/strong><\/li>\n<\/ol>\n<h2 id=\"b330\" class=\"oe nh fr be ni of og oh nm oi oj ok nq mt ol om on mx oo op oq nb or os ot ou bj\" data-selectable-paragraph=\"\">Features of WAF<\/h2>\n<p id=\"29fd\" class=\"pw-post-body-paragraph mi mj fr mk b ml ov mn mo mp ow mr ms mt ox mv mw mx oy mz na nb oz nd ne nf fk bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Web traffic filtering using custom rules<\/strong><\/p>\n<ul class=\"\">\n<li id=\"573f\" class=\"mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\">You can\u00a0<strong class=\"mk fs\">create your own rules<\/strong>, depending on your requirements, whether to\u00a0<strong class=\"mk fs\">block or allow incoming and outgoing requests<\/strong>. You can also\u00a0<strong class=\"mk fs\">customize the string that appears in your web request<\/strong>.<\/li>\n<\/ul>\n<p id=\"39d8\" class=\"pw-post-body-paragraph mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf fk bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Blocking malicious requests<\/strong><\/p>\n<ul class=\"\">\n<li id=\"52cc\" class=\"mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\">You can also\u00a0<strong class=\"mk fs\">configure rules in AWS WAF\u00a0<\/strong>to\u00a0<strong class=\"mk fs\">identify and block web request threats like<\/strong>\u00a0<strong class=\"mk fs\">SQL injections\u00a0<\/strong>and\u00a0<strong class=\"mk fs\">cross-site scripting<\/strong>.<\/li>\n<\/ul>\n<p id=\"c677\" class=\"pw-post-body-paragraph mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf fk bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Tune your rules and monitor traffic<\/strong><\/p>\n<ul class=\"\">\n<li id=\"8043\" class=\"mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">AWS WAF<\/strong>\u00a0also allows us to\u00a0<strong class=\"mk fs\">review our rules and customize them to prevent new attacks from reaching the server.<\/strong><\/li>\n<\/ul>\n<h2 id=\"3052\" class=\"oe nh fr be ni of og oh nm oi oj ok nq mt ol om on mx oo op oq nb or os ot ou bj\" data-selectable-paragraph=\"\">Application Load Balancer (ALB)<\/h2>\n<ul class=\"\">\n<li id=\"cb4c\" class=\"mi mj fr mk b ml ov mn mo mp ow mr ms mt ox mv mw mx oy mz na nb oz nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Load Balancer\u00a0<\/strong>is a service that allows you to<strong class=\"mk fs\">\u00a0distribute the incoming application or network traffic across multiple targets<\/strong>, such as\u00a0<strong class=\"mk fs\">Amazon EC2 instances<\/strong>,\u00a0<strong class=\"mk fs\">containers<\/strong>, and\u00a0<strong class=\"mk fs\">IP addresses<\/strong>, in<strong class=\"mk fs\">\u00a0multiple Availability Zones<\/strong>.<\/li>\n<li id=\"ad16\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">ALB<\/strong>\u00a0is used to\u00a0<strong class=\"mk fs\">route the HTTP and HTTPS traffic across the targets<\/strong>\u00a0<strong class=\"mk fs\">based on the rules attached to the target group.<\/strong><\/li>\n<li id=\"5c8a\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Rules<\/strong>\u00a0determine\u00a0<strong class=\"mk fs\">what action is taken when a rule matches a client\u2019s request.<\/strong><\/li>\n<li id=\"c4fd\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\">The\u00a0<strong class=\"mk fs\">target group<\/strong>\u00a0is used to\u00a0<strong class=\"mk fs\">route requests across registered targets as part of an action rule<\/strong>.\u00a0<strong class=\"mk fs\">Target groups<\/strong>\u00a0consist of\u00a0<strong class=\"mk fs\">a protocol and target port<\/strong>. We can also\u00a0<strong class=\"mk fs\">configure health checks to monitor the status of the target group<\/strong>. A\u00a0<strong class=\"mk fs\">single ALB<\/strong>\u00a0can<strong class=\"mk fs\">\u00a0route traffic to multiple target group<\/strong>s.<\/li>\n<li id=\"bd33\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Targets<\/strong>\u00a0consist of\u00a0<strong class=\"mk fs\">EC2 instances that are registered with the ALB<\/strong>\u00a0as part of a target group.<\/li>\n<\/ul>\n<h2 id=\"7a56\" class=\"ng nh fr be ni nj nk nl nm nn no np nq nr ns nt nu nv nw nx ny nz oa ob oc od bj\">Architecture Diagram<\/h2>\n<figure class=\"pk pl pm pn po mg ly lz paragraph-image\">\n<div class=\"pp pq ee pr bg ps\" role=\"button\">\n<div class=\"ly lz pj\"><img loading=\"lazy\" decoding=\"async\" class=\"bg lg mh c alignnone\" role=\"presentation\" src=\"https:\/\/miro.medium.com\/v2\/resize:fit:700\/1*7n4Qig_u5Iwagqm2qb2x0A.png\" alt=\"\" width=\"700\" height=\"333\" \/><\/div>\n<\/div>\n<\/figure>\n<h2 id=\"428d\" class=\"ng nh fr be ni nj nk nl nm nn no np nq nr ns nt nu nv nw nx ny nz oa ob oc od bj\">Task Steps<\/h2>\n<h3 id=\"6dca\" class=\"oe nh fr be ni of og oh nm oi oj ok nq mt ol om on mx oo op oq nb or os ot ou bj\">Step 1: Sign in to AWS Management Console<\/h3>\n<ol class=\"\">\n<li id=\"e83e\" class=\"mi mj fr mk b ml ov mn mo mp ow mr ms mt ox mv mw mx oy mz na nb oz nd ne nf pa pb pc bj\" data-selectable-paragraph=\"\">On the AWS sign-in page ,enter your credentials to log in to your AWS account and click on the Sign in button.<\/li>\n<li id=\"693d\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pa pb pc bj\" data-selectable-paragraph=\"\">Once Signed In to the AWS Management Console, Make the default AWS Region as US East (N. Virginia) us-east-1<\/li>\n<\/ol>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18921 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-13-07-38.png\" alt=\"\" width=\"1290\" height=\"701\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-13-07-38.png 1290w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-13-07-38-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-13-07-38-1024x556.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-13-07-38-768x417.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-13-07-38-1200x652.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p>We have our Travel Triangle Whatsapp Application running On these two EC2 instanes and configured them with the Application load balancer ( WAF-LB )\u00a0 as I will integrate the same to AWS WAF.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18922 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-06-55.png\" alt=\"\" width=\"1291\" height=\"700\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-06-55.png 1291w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-06-55-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-06-55-1024x555.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-06-55-768x416.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-06-55-1200x651.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18923 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-07-18.png\" alt=\"\" width=\"1291\" height=\"701\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-07-18.png 1291w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-07-18-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-07-18-1024x556.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-07-18-768x417.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-07-18-1200x652.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p>This is the configured application load balancer with both the servers in target group ( WAF-TG ).<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18924 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-07-34.png\" alt=\"\" width=\"1289\" height=\"700\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-07-34.png 1289w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-07-34-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-07-34-1024x556.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-07-34-768x417.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-07-34-1200x652.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18952 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-02-14-46-37.png\" alt=\"\" width=\"1365\" height=\"700\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-02-14-46-37.png 1365w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-02-14-46-37-300x154.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-02-14-46-37-1024x525.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-02-14-46-37-768x394.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-02-14-46-37-1200x615.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18956 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-11-31.png\" alt=\"\" width=\"1366\" height=\"768\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-11-31.png 1366w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-11-31-300x169.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-11-31-1024x576.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-11-31-768x432.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-11-31-1200x675.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18925 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-07-11.png\" alt=\"\" width=\"1292\" height=\"700\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-07-11.png 1292w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-07-11-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-07-11-1024x555.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-07-11-768x416.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-07-11-1200x650.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p>Here we can see that with the help of load balancer DNS Name and by doing curl request the application is easily accessible &amp; the user agent by which we are trying to access it.<\/p>\n<h3 id=\"f0af\" class=\"oe nh fr be ni of og oh nm oi oj ok nq mt ol om on mx oo op oq nb or os ot ou bj\">Step 2: Creating an IP set<\/h3>\n<ul>\n<li id=\"c883\" class=\"mi mj fr mk b ml ov mn mo mp ow mr ms mt ox mv mw mx oy mz na nb oz nd ne nf pa pb pc bj\" data-selectable-paragraph=\"\">Click on services and select\u00a0<strong class=\"mk fs\">WAF &amp; Shield<\/strong>\u00a0under the\u00a0<strong class=\"mk fs\">Security, Identity, &amp; Compliance<\/strong>\u00a0section.<\/li>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18926 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-14-31.png\" alt=\"\" width=\"1366\" height=\"702\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-14-31.png 1366w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-14-31-300x154.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-14-31-1024x526.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-14-31-768x395.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-14-31-1200x617.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18927 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-15-48.png\" alt=\"\" width=\"1366\" height=\"698\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-15-48.png 1366w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-15-48-300x153.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-15-48-1024x523.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-15-48-768x392.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-15-48-1200x613.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18928 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-16-58.png\" alt=\"\" width=\"1366\" height=\"697\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-16-58.png 1366w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-16-58-300x153.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-16-58-1024x522.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-16-58-768x392.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-16-58-1200x612.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<ul>\n<li>On the left side, you will be able to see the\u00a0<strong class=\"mk fs\">IP sets<\/strong>\u00a0menu. Click on\u00a0<strong class=\"mk fs\">IP sets<\/strong>\u00a0and click on\u00a0<strong class=\"mk fs\">Create IP sets<\/strong>.<\/li>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18929 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-19-10.png\" alt=\"\" width=\"1366\" height=\"700\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-19-10.png 1366w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-19-10-300x154.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-19-10-1024x525.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-19-10-768x394.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-17-19-10-1200x615.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<ul>\n<li id=\"ad80\" class=\"pw-post-body-paragraph mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf fk bj\">On the next screen, fill out the following details under\u00a0<strong class=\"mk fs\">Create IP set<\/strong>.<\/li>\n<\/ul>\n<p id=\"3d0d\" class=\"pw-post-body-paragraph mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf fk bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">IP set details<\/strong>:<\/p>\n<ul class=\"\">\n<li id=\"0b85\" class=\"mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">IP set name<\/strong>: Enter\u00a0<strong class=\"mk fs\"><em class=\"pv\">MyIPset<\/em><\/strong><\/li>\n<li id=\"373d\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Description<\/strong>: Enter\u00a0<strong class=\"mk fs\"><em class=\"pv\">IP set to block my public IP<\/em><\/strong><\/li>\n<li id=\"c1ca\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Region<\/strong>: Select\u00a0<strong class=\"mk fs\">US EAST (N.Virginia )<\/strong><\/li>\n<li id=\"9482\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">IP Version<\/strong>: Select<strong class=\"mk fs\">\u00a0IPv4<\/strong><\/li>\n<li id=\"46db\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">IP address<\/strong>: Enter the\u00a0<strong class=\"mk fs\"><em class=\"pv\">IP of your local network\/32<\/em><\/strong>\u00a0from\u00a0<a class=\"af rm\" href=\"https:\/\/www.whatismyip.com\/\" target=\"_blank\" rel=\"noopener ugc nofollow\">https:\/\/www.whatismyip.com\/<\/a>.<\/li>\n<\/ul>\n<p id=\"d3be\" class=\"pw-post-body-paragraph mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf fk bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Note<\/strong>: You have to give<strong class=\"mk fs\">\u00a0\/32 after the IP is pasted<\/strong>\u00a0or else you won\u2019t be able to create an IP set.<\/p>\n<p data-selectable-paragraph=\"\"><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18931 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-24-45.png\" alt=\"\" width=\"1366\" height=\"696\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-24-45.png 1366w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-24-45-300x153.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-24-45-1024x522.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-24-45-768x391.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-24-45-1200x611.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p data-selectable-paragraph=\"\"><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18932 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-27-50.png\" alt=\"\" width=\"1366\" height=\"699\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-27-50.png 1366w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-27-50-300x154.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-27-50-1024x524.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-27-50-768x393.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-27-50-1200x614.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<ul class=\"\">\n<li id=\"cb43\" class=\"mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\">Once you have provided the above details, click on\u00a0<strong class=\"mk fs\">Create IP<\/strong>\u00a0set<\/li>\n<\/ul>\n<p data-selectable-paragraph=\"\"><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18933 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-28-43.png\" alt=\"\" width=\"1366\" height=\"569\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-28-43.png 1366w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-28-43-300x125.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-28-43-1024x427.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-28-43-768x320.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-28-43-1200x500.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p data-selectable-paragraph=\"\"><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18934 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-32-27.png\" alt=\"\" width=\"1366\" height=\"699\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-32-27.png 1366w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-32-27-300x154.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-32-27-1024x524.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-32-27-768x393.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-32-27-1200x614.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<h3 id=\"9031\" class=\"oe nh fr be ni of og oh nm oi oj ok nq mt ol om on mx oo op oq nb or os ot ou bj\">Step 3: Creating a Web ACL<\/h3>\n<ol class=\"\">\n<li id=\"a473\" class=\"mi mj fr mk b ml ov mn mo mp ow mr ms mt ox mv mw mx oy mz na nb oz nd ne nf pa pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Web ACL details<\/strong><\/li>\n<\/ol>\n<ul class=\"\">\n<li id=\"d51a\" class=\"mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\">Navigate to the\u00a0<strong class=\"mk fs\">AWS WAF dashboard\u00a0<\/strong>and select\u00a0<strong class=\"mk fs\">Web ACLs<\/strong>. Click on\u00a0<strong class=\"mk fs\">Create web ACL<\/strong>\u00a0to\u00a0<strong class=\"mk fs\">create a new web ACL.<\/strong><\/li>\n<\/ul>\n<p id=\"b7e0\" class=\"pw-post-body-paragraph mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf fk bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Configure the ACL<\/strong>\u00a0as below:<\/p>\n<p id=\"533e\" class=\"pw-post-body-paragraph mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf fk bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Web ACL details<\/strong><\/p>\n<ul class=\"\">\n<li id=\"ff02\" class=\"mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Nam<\/strong>e: Enter<strong class=\"mk fs\">\u00a0<em class=\"pv\">Myipset<\/em><\/strong><\/li>\n<li id=\"cc64\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Description<\/strong>: Enter\u00a0<strong class=\"mk fs\"><em class=\"pv\">ACL to block my public IP<\/em><\/strong><\/li>\n<li id=\"6ab0\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Resource type<\/strong>: Select\u00a0<strong class=\"mk fs\">Regional resources<\/strong>\u00a0(<strong class=\"mk fs\">Application Load Balancer<\/strong>\u00a0and\u00a0<strong class=\"mk fs\">API Gateway<\/strong>)<\/li>\n<li id=\"d856\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Regio<\/strong>n: Select<strong class=\"mk fs\">\u00a0US EAST (N.Virginia)<\/strong><\/li>\n<\/ul>\n<figure class=\"pk pl pm pn po mg ly lz paragraph-image\">\n<div class=\"pp pq ee pr bg ps\" role=\"button\"><\/div>\n<\/figure>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18940 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-52-13.png\" alt=\"\" width=\"1366\" height=\"702\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-52-13.png 1366w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-52-13-300x154.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-52-13-1024x526.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-52-13-768x395.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-18-52-13-1200x617.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p>&nbsp;<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18936 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-34-07.png\" alt=\"\" width=\"1291\" height=\"698\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-34-07.png 1291w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-34-07-300x162.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-34-07-1024x554.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-34-07-768x415.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-34-07-1200x649.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<ul class=\"\">\n<li id=\"6fe8\" class=\"mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\">To\u00a0<strong class=\"mk fs\">associate an AWS resource<\/strong>, click on\u00a0<strong class=\"mk fs\">Add AWS resources .<\/strong><\/li>\n<li id=\"ea7f\" class=\"mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\">In\u00a0<strong class=\"mk fs\">Add AWS resources\u00a0<\/strong>select\u00a0<strong class=\"mk fs\">Application Load Balancer\u00a0<\/strong>and select the\u00a0<strong class=\"mk fs\">name of ALB<\/strong>. Click on\u00a0<strong class=\"mk fs\">Add<\/strong><\/li>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18938 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-36-01.png\" alt=\"\" width=\"1291\" height=\"700\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-36-01.png 1291w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-36-01-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-36-01-1024x555.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-36-01-768x416.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-36-01-1200x651.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<ul class=\"\">\n<li id=\"c8bc\" class=\"mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\">Lastly, click on the\u00a0<strong class=\"mk fs\">Next\u00a0<\/strong>button<\/li>\n<\/ul>\n<p id=\"91c6\" class=\"pw-post-body-paragraph mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf fk bj\" data-selectable-paragraph=\"\">2.\u00a0<strong class=\"mk fs\">Add rules and rule groups<\/strong><\/p>\n<ul class=\"\">\n<li id=\"02a2\" class=\"mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\">Under\u00a0<strong class=\"mk fs\">Rules<\/strong>\u00a0click on\u00a0<strong class=\"mk fs\">Add rule<\/strong>\u00a0and\u00a0<strong class=\"mk fs\">select Add my own rules and rule groups<\/strong>\u00a0in the drop-down menu.<\/li>\n<li id=\"28e7\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\">In\u00a0<strong class=\"mk fs\">Rule type<\/strong>\u00a0select\u00a0<strong class=\"mk fs\">IP set\u00a0<\/strong>as shown below and fill in the details as given below:<\/li>\n<li id=\"4cc7\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Rule type<\/strong>: Select\u00a0<strong class=\"mk fs\">IP set<\/strong><\/li>\n<li id=\"90b5\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Name<\/strong>: Enter <strong>ipblock<\/strong><\/li>\n<li id=\"c8c0\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">IP set<\/strong>: select the\u00a0<strong class=\"mk fs\">IP set created Above ( MyIPset )<\/strong><\/li>\n<li id=\"2f60\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">IP address to use as the originating address<\/strong>:\u00a0<strong class=\"mk fs\">Source IP address<\/strong><\/li>\n<li id=\"8fb5\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Action<\/strong>: Select\u00a0<strong class=\"mk fs\">Block<\/strong><\/li>\n<li id=\"dad5\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\">Once you provide the above details, click on the\u00a0<strong class=\"mk fs\">Add rule.<\/strong><\/li>\n<\/ul>\n<figure class=\"pk pl pm pn po mg ly lz paragraph-image\">\n<div class=\"pp pq ee pr bg ps\" role=\"button\"><\/div>\n<\/figure>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18941 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-37-00.png\" alt=\"\" width=\"1293\" height=\"702\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-37-00.png 1293w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-37-00-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-37-00-1024x556.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-37-00-768x417.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-37-00-1200x652.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18943 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-37-22.png\" alt=\"\" width=\"1295\" height=\"701\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-37-22.png 1295w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-37-22-300x162.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-37-22-1024x554.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-37-22-768x416.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-37-22-1200x650.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18944 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-44-47.png\" alt=\"\" width=\"1294\" height=\"704\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-44-47.png 1294w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-44-47-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-44-47-1024x557.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-44-47-768x418.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-44-47-1200x653.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18945 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-06.png\" alt=\"\" width=\"1289\" height=\"700\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-06.png 1289w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-06-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-06-1024x556.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-06-768x417.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-06-1200x652.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p id=\"0928\" class=\"pw-post-body-paragraph mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf fk bj\" data-selectable-paragraph=\"\">3.<strong class=\"mk fs\"> Set rule priority<\/strong><\/p>\n<ul class=\"\">\n<li id=\"1a0f\" class=\"mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\">Leave as\u00a0<strong class=\"mk fs\">default\u00a0<\/strong>and click on\u00a0<strong class=\"mk fs\">Next<\/strong>.<\/li>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18946 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-21.png\" alt=\"\" width=\"1293\" height=\"699\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-21.png 1293w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-21-300x162.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-21-1024x554.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-21-768x415.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-21-1200x649.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p id=\"8321\" class=\"pw-post-body-paragraph mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf fk bj\" data-selectable-paragraph=\"\">4. Configure metrics<\/p>\n<ul class=\"\">\n<li id=\"bbf8\" class=\"mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\">Leave as\u00a0<strong class=\"mk fs\">default<\/strong>\u00a0and click on\u00a0<strong class=\"mk fs\">Next<\/strong>.<\/li>\n<\/ul>\n<figure class=\"pk pl pm pn po mg ly lz paragraph-image\">\n<div class=\"pp pq ee pr bg ps\" role=\"button\"><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18947 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-30.png\" alt=\"\" width=\"1292\" height=\"700\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-30.png 1292w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-30-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-30-1024x555.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-30-768x416.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-30-1200x650.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/div>\n<div role=\"button\">\n<p id=\"7ea5\" class=\"pw-post-body-paragraph mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf fk bj\" data-selectable-paragraph=\"\">5.\u00a0<strong class=\"mk fs\">Review and create web ACL<\/strong><\/p>\n<ul class=\"\">\n<li id=\"c953\" class=\"mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf pi pb pc bj\" data-selectable-paragraph=\"\">Review all your inputs and click on\u00a0<strong class=\"mk fs\">Create web ACL<\/strong><\/li>\n<\/ul>\n<p id=\"8d82\" class=\"pw-post-body-paragraph mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf fk bj\" data-selectable-paragraph=\"\"><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18948 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-41.png\" alt=\"\" width=\"1292\" height=\"700\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-41.png 1292w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-41-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-41-1024x555.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-41-768x416.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-41-1200x650.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p data-selectable-paragraph=\"\"><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18949 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-54.png\" alt=\"\" width=\"1292\" height=\"701\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-54.png 1292w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-54-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-54-1024x556.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-54-768x417.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-45-54-1200x651.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p data-selectable-paragraph=\"\"><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18950 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-46-05.png\" alt=\"\" width=\"1289\" height=\"700\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-46-05.png 1289w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-46-05-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-46-05-1024x556.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-46-05-768x417.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-46-05-1200x652.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p data-selectable-paragraph=\"\">6. Wait for 1 or 2 minutes until you will see that\u00a0<strong class=\"mk fs\">your web ACL is successfully created.<\/strong><\/p>\n<p data-selectable-paragraph=\"\"><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18951 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-51-38.png\" alt=\"\" width=\"1291\" height=\"698\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-51-38.png 1291w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-51-38-300x162.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-51-38-1024x554.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-51-38-768x415.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-51-38-1200x649.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<\/div>\n<\/figure>\n<figure class=\"pk pl pm pn po mg ly lz paragraph-image\">\n<div class=\"pp pq ee pr bg ps\" role=\"button\">\n<p id=\"6edb\" class=\"pw-post-body-paragraph mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf fk bj\" data-selectable-paragraph=\"\">7. We have <strong class=\"mk fs\">successfully created a web ACL for ALB with the help of an IP set created with your public IP.<\/strong><\/p>\n<h3 id=\"2e67\" class=\"oe nh fr be ni of og oh nm oi oj ok nq mt ol om on mx oo op oq nb or os ot ou bj\">Step 4: Testing the working of the WAF<\/h3>\n<ol class=\"\">\n<li id=\"6c7a\" class=\"mi mj fr mk b ml ov mn mo mp ow mr ms mt ox mv mw mx oy mz na nb oz nd ne nf pa pb pc bj\" data-selectable-paragraph=\"\">To test the\u00a0<strong class=\"mk fs\">WAF<\/strong>, navigate to\u00a0<strong class=\"mk fs\">Load Balancers<\/strong>\u00a0from the\u00a0<strong class=\"mk fs\">EC2 left menu under the sub-heading Load balancing<\/strong><\/li>\n<li id=\"bbfe\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pa pb pc bj\" data-selectable-paragraph=\"\">Under the Load balancer section, select the\u00a0<strong class=\"mk fs\">Application load balancer &#8220;WAF-LB&#8221;.<\/strong><\/li>\n<li id=\"2f05\" class=\"mi mj fr mk b ml pd mn mo mp pe mr ms mt pf mv mw mx pg mz na nb ph nd ne nf pa pb pc bj\" data-selectable-paragraph=\"\"><strong class=\"mk fs\">Copy the DNS name<\/strong>\u00a0Under details scroll down you will be able to see the\u00a0<strong class=\"mk fs\">DNS name<\/strong>\u00a0copy it and paste it in your desired browser.<\/li>\n<li data-selectable-paragraph=\"\">We will get a <strong class=\"mk fs\">403 forbidden error<\/strong>\u00a0showing that\u00a0<strong class=\"mk fs\">WAF blocked your connection to ALB.<\/strong><\/li>\n<\/ol>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18953 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-20-32-41.png\" alt=\"\" width=\"1260\" height=\"632\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-20-32-41.png 1260w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-20-32-41-300x150.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-20-32-41-1024x514.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-20-32-41-768x385.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-19-20-32-41-1200x602.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18955 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-44-19.png\" alt=\"\" width=\"1366\" height=\"768\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-44-19.png 1366w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-44-19-300x169.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-44-19-1024x576.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-44-19-768x432.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-44-19-1200x675.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<h3 id=\"58c6\" class=\"oe nh fr be ni of og oh nm oi oj ok nq mt ol om on mx oo op oq nb or os ot ou bj\">Step 5: To Block Specific String<\/h3>\n<p>We have to create new Web ACL as follows:<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18957 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-50-16.png\" alt=\"\" width=\"1292\" height=\"700\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-50-16.png 1292w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-50-16-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-50-16-1024x555.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-50-16-768x416.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-50-16-1200x650.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18958 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-52-22.png\" alt=\"\" width=\"1292\" height=\"701\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-52-22.png 1292w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-52-22-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-52-22-1024x556.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-52-22-768x417.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-52-22-1200x651.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18959 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-53-31.png\" alt=\"\" width=\"1292\" height=\"699\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-53-31.png 1292w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-53-31-300x162.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-53-31-1024x554.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-53-31-768x416.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-53-31-1200x649.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18960 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-54-15.png\" alt=\"\" width=\"1292\" height=\"697\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-54-15.png 1292w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-54-15-300x162.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-54-15-1024x552.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-54-15-768x414.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-54-15-1200x647.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18962 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-57-14.png\" alt=\"\" width=\"1292\" height=\"699\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-57-14.png 1292w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-57-14-300x162.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-57-14-1024x554.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-57-14-768x416.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-57-14-1200x649.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18964 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-57-27.png\" alt=\"\" width=\"1290\" height=\"702\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-57-27.png 1290w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-57-27-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-57-27-1024x557.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-57-27-768x418.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-57-27-1200x653.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18965 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-58-00.png\" alt=\"\" width=\"1289\" height=\"700\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-58-00.png 1289w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-58-00-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-58-00-1024x556.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-58-00-768x417.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-58-00-1200x652.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18966 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-59-04.png\" alt=\"\" width=\"1291\" height=\"701\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-59-04.png 1291w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-59-04-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-59-04-1024x556.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-59-04-768x417.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-59-04-1200x652.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18967 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-59-43.png\" alt=\"\" width=\"1292\" height=\"705\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-59-43.png 1292w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-59-43-300x164.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-59-43-1024x559.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-59-43-768x419.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-11-59-43-1200x655.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18968 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-00-03.png\" alt=\"\" width=\"1290\" height=\"700\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-00-03.png 1290w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-00-03-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-00-03-1024x556.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-00-03-768x417.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-00-03-1200x651.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18970 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-01-22.png\" alt=\"\" width=\"1291\" height=\"700\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-01-22.png 1291w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-01-22-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-01-22-1024x555.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-01-22-768x416.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-01-22-1200x651.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18971 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-01-32.png\" alt=\"\" width=\"1292\" height=\"701\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-01-32.png 1292w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-01-32-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-01-32-1024x556.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-01-32-768x417.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-01-32-1200x651.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18972 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-02-21.png\" alt=\"\" width=\"1290\" height=\"702\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-02-21.png 1290w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-02-21-300x163.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-02-21-1024x557.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-02-21-768x418.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-02-21-1200x653.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18973 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-05-52.png\" alt=\"\" width=\"1294\" height=\"700\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-05-52.png 1294w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-05-52-300x162.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-05-52-1024x554.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-05-52-768x415.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-05-52-1200x649.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-18974 alignnone\" src=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-09-00.png\" alt=\"\" width=\"1366\" height=\"768\" srcset=\"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-09-00.png 1366w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-09-00-300x169.png 300w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-09-00-1024x576.png 1024w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-09-00-768x432.png 768w, https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Screenshot-from-2024-08-06-12-09-00-1200x675.png 1200w\" sizes=\"(max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n<p id=\"bbdd\" class=\"pw-post-body-paragraph mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf fk bj\" data-selectable-paragraph=\"\">You\u2019re all done! Congratulations!<\/p>\n<p id=\"33b3\" class=\"pw-post-body-paragraph mi mj fr mk b ml mm mn mo mp mq mr ms mt mu mv mw mx my mz na nb nc nd ne nf fk bj\" data-selectable-paragraph=\"\">That\u2019s all I have for today folks. Thank you for reading and\/or following along! I hope this project was helpful and worth your while. Stay tuned for my next project on this journey into the cloud.<\/p>\n<p><strong>Blog Pundit:<\/strong> <a href=\"https:\/\/opstree.com\/blog\/\/author\/deepakgupta97\/\"><strong>Deepak Gupta<\/strong><\/a> and <a href=\"https:\/\/opstree.com\/blog\/\/author\/sandeep7c51ad81ba\/\" target=\"_blank\" rel=\"noreferrer noopener\"><strong>Sandeep Rawat<\/strong><\/a><\/p>\n<p><strong><a href=\"https:\/\/www.opstree.com\/contact-us?utm_source=wordpress&amp;utm_campaign=Learn-everything-about-Amazon-Cloudfront&amp;utm_id=Blog\">Opstree<\/a><\/strong> is an End to End DevOps solution provider<\/p>\n<div class=\"wp-block-buttons is-layout-flex wp-block-buttons-is-layout-flex\">\n<div class=\"wp-block-button is-style-fill\"><a class=\"wp-block-button__link wp-element-button\" href=\"https:\/\/www.opstree.com\/contact-us\" target=\"_blank\" rel=\"noreferrer noopener\">CONTACT US<\/a><\/div>\n<\/div>\n<\/div>\n<\/figure>\n","protected":false},"excerpt":{"rendered":"<p>&nbsp; Problem Statement: Travel Triangle&#8217;s WhatsApp application was experiencing significant performance degradation due to harmful &#8220;User Agents,&#8221; leading to decreased business and reputational harm. The need to mitigate these risks prompted an exploration of various solutions, culminating in the selection of AWS WAF. Solution: AWS WAF was chosen for its ability to effectively block malicious &hellip; <a href=\"https:\/\/opstree.com\/blog\/2024\/09\/03\/blocking-web-traffic-with-waf-in-aws\/\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;Blocking Web Traffic With WAF In AWS&#8221;<\/span><\/a><\/p>\n","protected":false},"author":244582671,"featured_media":19097,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_coblocks_attr":"","_coblocks_dimensions":"","_coblocks_responsive_height":"","_coblocks_accordion_ie_support":"","jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false},"version":2}},"categories":[36349927],"tags":[768739374,768739294,768739375],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2024\/08\/Blocking-Web-Traffic-With-WAF-In-AWS.-1.png","jetpack_likes_enabled":true,"jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/pfDBOm-4V8","jetpack-related-posts":[],"_links":{"self":[{"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/posts\/18918"}],"collection":[{"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/users\/244582671"}],"replies":[{"embeddable":true,"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/comments?post=18918"}],"version-history":[{"count":9,"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/posts\/18918\/revisions"}],"predecessor-version":[{"id":19139,"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/posts\/18918\/revisions\/19139"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/media\/19097"}],"wp:attachment":[{"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/media?parent=18918"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/categories?post=18918"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/tags?post=18918"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}