Managed rules for AWS Web Application Firewall

Managed rules for AWS WAF are designed to help you spend less time writing firewall rules and more time building applications.

Get started with AWS WAF

Pre-configured Security Solutions for Seamless Web Application Protection

AWS Web Application Firewall (WAF)

Managed rules for AWS Web Application Firewall (WAF) are a set of rules written, curated and managed by AWS Marketplace Sellers that can be easily deployed in front of your web applications running on Amazon CloudFront, AWS Application Load Balancers, or Amazon API Gateway.

With these managed rules, you can quickly get started and protect your web application or APIs against common threats like the OWASP Top 10 security risks, threats specific to Content Management Systems (CMS) like WordPress or Joomla, or even emerging Common Vulnerabilities and Exposures (CVE) without having to manage infrastructure.

Learn the top use cases for a WAF, best practices, and how to use a WAF to meet security compliance requirements.

Improve your security posture with a WAF

Learn the top use cases for a WAF, best practices, and how to use a WAF to meet security compliance requirements.

Read the whitepaper

Benefits

Rules managed by security experts

Managed rules are written by security experts who have extensive and up-to-date knowledge of threats and vulnerabilities. Rules are written based on threats observed across many customers. AWS WAF Managed rules are automatically updated by AWS Sellers as new vulnerabilities and bad actors emerge. Managed rules sellers create rules using a combination of security engineers on staff, automated traffic analysis and threat intelligence databases.

Easy to get started

Managed rules for AWS WAF give you a set of pre-configured rules written and managed by AWS Marketplace Sellers, allowing you to quickly get started with AWS WAF rules for your application. You can simply subscribe to Managed rules via the AWS Marketplace and then use the AWS WAF console to specify which resources to protect. All rules are deployed on the AWS WAF managed infrastructure.

Choice of protections

With managed rules you get a wide selection of protections from security experts and AWS Marketplace Sellers. You can choose from a variety of widely applicable protections like IP reputation lists and OWASP Top 10 protections, or choose from platform-specific rules like WordPress or Joomla rules.

Pay as you go

You can subscribe to managed rules with a few clicks and pay only for what you use, without having to sign up for any expensive professional services. Managed rules are automatically updated, and there are no contracts or subscription commitments. managed rules are charged by the hour.

Popular Managed rules for AWS WAF

Protect against common application vulnerabilities or other unwanted traffic.

Managed rules for AWS WAF learning resources

The value of next generation firewall (NGFW) tools

Learn how organizations are using next-generation firewalls to help secure cloud migrations and new environments at scale. No. of pages: 10 Estimated read time: 7 minutes

Learn more