Skip to main content

AWS Solutions Library

Security Automations for AWS WAF

Deploy a set of preconfigured AWS WAF rules to filter common web-based attacks

Open guide
Go to source code

Overview

Security Automations for AWS WAF automatically deploys a set of AWS WAF (web application firewall) rules that filter common web-based attacks. You can select from preconfigured protective features that define the rules included in an AWS WAF web access control list (ACL). Once deployed, AWS WAF protects your Amazon CloudFront distributions or Application Load Balancers by inspecting web requests.

You can use AWS WAF to create custom, application-specific rules that block attack patterns to help ensure application availability, secure resources, and prevent excessive resource consumption.

This AWS Solution supports the latest version of the AWS WAF (AWS WAFV2) service API.

Benefits

Automatically launch and configure the AWS WAF settings and protective features that you choose to include during initial deployment by using the AWS CloudFormation template.
Activate AWS CloudFormation to provision an Amazon Athena query and a scheduled AWS Lambda function responsible for orchestrating Athena, processing result output, and updating AWS WAF.
Build a customized dashboard to visualize Amazon CloudWatch metrics emitted by this solution, and gain insights into the pattern of attacks and protection provided by AWS WAF.

How it works

You can automatically deploy this architecture using the implementation guide and the accompanying AWS CloudFormation template.

View implementation guide

About this deployment

  • Version: 4.1.0

  • Released: 7/2025

  • Author: AWS

  • Est. deployment time: 15 mins

  • Estimated cost: See details

Deploy with confidence

Everything you need to launch this AWS Solution in your account is right here

We'll walk you through it

Get started fast. Read the implementation guide for deployment steps, architecture details, cost information, and customization options.

Open guide

Let's make it happen

Ready to deploy? Open the CloudFormation template in the AWS Console to begin setting up the infrastructure you need. You'll be prompted to access your AWS account if you haven't yet logged in.

Launch in the AWS Console

Related content

Guidance

Security Automations for AWS WAF - Terraform

Deploy Security Automations for AWS WAF with this Terraform template.

Learn more
Training

Getting Started with AWS Security, Identity, and Compliance

This course provides an overview of AWS security technology, use cases, benefits, and services. The infrastructure protection section covers AWS WAF for traffic filtering.

Enroll now
Training

Introduction to Amazon Macie

Amazon Macie is a security service that uses machine learning to automatically discover, classify, and protect sensitive data in AWS. In this course, you will be introduced to Amazon Macie, how the service works, and the underlying concepts driving the service.

Enroll now
Training

AWS Certified Security – Specialty

This exam tests your technical expertise in securing the AWS platform. This is for anyone in an experienced security role.

Schedule your exam
Video

A Security Solution for Peach

Watch the video