Class WaCloudfrontWaf

Well Architected CloudFront WAF, by default this WAF enables the following AWS managed WAF Rules

  • AWSManagedRulesCommonRuleSet
  • AWSManagedRulesAmazonIpReputationList
  • AWSManagedRulesKnownBadInputsRuleSet
  • AWSManagedRulesAnonymousIpList
  • AWSManagedRulesSQLiRuleSet

Default Alarms

Examples

Default Usage

new WaCloudfrontWaf(this, "LogicalId", {});

Custom Configuration

new WaCloudfrontWaf(this, "LogicalId", {
   waDoNotAddAnonymousIpWafRules: true
});

Compliance

It addresses the following compliance requirements, when used with CloudFront Distribution

PCI, HIPAA, APRA, MAS, NIST4

Hierarchy

Constructors

constructor

Properties

cloudFrontRules webAcl

Constructors

constructor

Properties

Private Readonly cloudFrontRules

cloudFrontRules: WafManagedRule[] = ...

Readonly webAcl

webAcl: CfnWebACL

Exposing Web ACL for clients

Settings

Member Visibility

Theme

Generated using TypeDoc