AWS WAF Security Automations now supports WAFv2 API

Posted on: Jul 9, 2020

We’re excited to announce that we’ve updated AWS WAF Security Automations, a reference implementation that makes it easier for customers to configure WAF rules to protect web applications running in AWS. 

With AWS WAF Security Automations, customers can automatically deploy a single web access control list with a set of AWS WAF rules to filter common threats and protect web applications and APIs deployed with Amazon CloudFront, an Application Load Balancer, or an Amazon API Gateway. This latest release integrates with AWS WAFv2 API and includes enhancements to existing features for improved performance and cost optimization. 

Additional performance improvements to AWS WAF Security Automations version 3.0 include:

  • Customers have the option to automatically deploy AWS Managed Rules
  • Eliminated the dependency on NodeJS; updated code to Python 3.8
  • Resolved API call throttling issue when customer’s traffic (RPS) is too high
  • Lowered the rate-limiting check done by CFN stack from 2000 to 100
  • Added Athena database partitions for WAF, CloudFront, and Application Load Balancer access logs
  • Segmented workloads into Athena workgroups

The AWS WAF Security Automations reference implementation is available to download from the AWS Solutions Library. To get started, you need to sign up for an AWS account if you don’t already have one. Next, you need to launch the AWS CloudFormation template that deploys the solution in your primary account. Follow the steps described in the Implementation Guide to launch the solution or use the source code provided on GitHub to configure the solution to meet your business needs.