By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

AWS WAF gets disassociated without any warning

0

AWS WAF can get disassociated without any warning. Could we please get at least an email? Something like: [Attention Required] WAF disassociated you are now exposed to all the internet.

We are using AWS Load Balancer Controller and the WAF stopped working without notice until we found this: https://github.com/kubernetes-sigs/aws-load-balancer-controller/issues/2219 But even now I cannot guarantee that the WAF will stay up...

Topics
Security, Identity, & Compliance
Tags
AWS WAF
Language
English
JaumeBalust
asked 6 months ago299 views
3 Answers
1

I’ve never seen this myself. I have seen a WAF ACL applied to many ALBs but never seen a WAF disappear from an ALB.

How are you associating them?

profile picture
EXPERT
Gary Mclean
answered 6 months ago
0

Through the aws management console. But this is not the point.

Any state changes on a WAF should trigger an email notification. If you agree, can you please upvote my question so that it gets seen?

Thanks in advance

JaumeBalust
answered 6 months ago
  • Gary Mclean EXPERT
    6 months ago

    What do you mean by state change?

0

You can check the Cloud Trail logs to see why ALB is getting disassociated from WAF. DisassociateWebACL is the API that disassociates the specified regional application resource from any existing web ACL association. Additionally, check if you have Firewall Manager (FMS) thats controlling the WAF integration. If yes, review the rules that you have in FMS that might be preventing the association of ALB to WAF.

AWS
Anushree S
answered 2 days ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content