A company has developed a web application hosted on Amazon EC2 instances behind an Application Load Balancer. To enhance the application's security without affecting legitimate traffic, the company plans to implement AWS WAF web ACLs. What is the optimal configuration strategy for the web ACLs to achieve this goal?

Exam-Like

Configure the web ACL rules to initially count matching requests, enable AWS WAF logging, and analyze these logs for false positives. Adjust the rules to prevent false positives and gradually transition the rule actions from counting to blocking.

66.7%

Utilize rate-based rules within the web ACLs, setting a high throttle limit to avoid blocking legitimate traffic. Temporarily block requests exceeding this limit and refine the rules with nested definitions to focus on specific traffic patterns.

16.7%

Set the web ACL rules to block by default and incorporate only AWS managed rule groups. Use Amazon CloudWatch metrics and AWS WAF sampled requests or logs to assess the effectiveness of these rule groups.

0.0%

Employ custom rule groups in the web ACLs with an initial allow action. Enable AWS WAF logging, analyze the logs for false positives, and adjust the rules accordingly. Over time, modify the rule actions from allowing to blocking.

16.7%

AWS Certified Solutions Architect - Professional

Get started today

Comments