Skip to main content

AWS Solutions Library

Security Automations for AWS WAF

Deploy a set of preconfigured AWS WAF rules to filter common web-based attacks

View implementation guide

Overview

Security Automations for AWS WAF automatically deploys a set of AWS WAF (web application firewall) rules that filter common web-based attacks. You can select from preconfigured protective features that define the rules included in an AWS WAF web access control list (ACL). Once deployed, AWS WAF protects your HAQM CloudFront distributions or Application Load Balancers by inspecting web requests.

You can use AWS WAF to create custom, application-specific rules that block attack patterns to help ensure application availability, secure resources, and prevent excessive resource consumption.

This AWS Solution supports the latest version of the AWS WAF (AWS WAFV2) service API.

Benefits

Automatically launch and configure the AWS WAF settings and protective features that you choose to include during initial deployment by using the AWS CloudFormation template.
Activate AWS CloudFormation to provision an HAQM Athena query and a scheduled AWS Lambda function responsible for orchestrating Athena, processing result output, and updating AWS WAF.
Build a customized dashboard to visualize HAQM CloudWatch metrics emitted by this solution, and gain insights into the pattern of attacks and protection provided by AWS WAF.

How it works

You can automatically deploy this architecture using the implementation guide and the accompanying AWS CloudFormation template.

View implementation guide

About this deployment

  • Version: 4.0.6

  • Released: 12/2024

  • Author: AWS

  • Est. deployment time: 15 mins

  • Estimated cost: See details

Deploy with confidence

Everything you need to launch this AWS Solution in your account is right here

We'll walk you through it

Get started fast. Read the implementation guide for deployment steps, architecture details, cost information, and customization options.

Open guide

Let's make it happen

Ready to deploy? Open the CloudFormation template in the AWS Console to begin setting up the infrastructure you need. You'll be prompted to access your AWS account if you haven't yet logged in.

Go to the AWS Console

Related content

Training

Getting Started with AWS Security, Identity, and Compliance

This course provides an overview of AWS security technology, use cases, benefits, and services. The infrastructure protection section covers AWS WAF for traffic filtering.

Enroll now
Training

Introduction to HAQM Macie

HAQM Macie is a security service that uses machine learning to automatically discover, classify, and protect sensitive data in AWS. In this course, you will be introduced to HAQM Macie, how the service works, and the underlying concepts driving the service.

Enroll now
Training

AWS Certified Security – Specialty

This exam tests your technical expertise in securing the AWS platform. This is for anyone in an experienced security role.

Schedule your exam
Case study

Peach Boosts Security and Customer Confidence Using AWS Security Automations

Digital advertising company Peach has a large digital footprint but historically has not been at high risk for cyberattacks. But when it noticed an uptick in attacks, the company knew it needed to take further steps to protect its systems. So Peach turned to AWS for a solution, and now Peach not only blocks cyberattacks but also deters them—reducing needless service slowdowns and boosting customer confidence.

Read the full case study
Video

A Security Solution for Peach

Watch the video