Posted On: Mar 6, 2020

You can now identify and block requests to your web applications from VPN, Tor nodes, proxies, and data centers by using the new Anonymous IP List for AWS Managed Rules. This new managed rule group helps you block users who attempt to hide their identity or evade geographic restrictions. The managed rule group can also help block malicious traffic that originates from bots behind these anonymous networks. 

To add Anonymous IP List to your existing web ACL, simply navigate to AWS WAF console and click “Web ACLs” from the left menu panel. Afterwards, click on the web ACL you desire, select “Rules” tab, and click “Add managed rule group” on the right-hand side. 

There is no additional cost to enable Anonymous IP List for AWS Managed Rules. To learn more, please see the AWS WAF developer guide on managed rules.