The purpose of this article to help you understand how to enable AWS WAF with one-click integration on ALB
On Feb 6, 2024, AWS launched One-Click Integration for AWS WAF and ALB. With one-click integration, you can directly associate an existing WebACL with Application Load Balancer (ALB) or create a new WebACL with basic AWS recommended managed WAF rules.
Step 1: Go to the ALB in EC2 console and navigate to the “Integrations” tab at the bottom
Step 2: Under integrations, you should see the section for AWS Web Application Firewall (WAF). Expand on that section and click on “Associate a WAF Web ACL”
Step 3: You should now see a drop down where the first option creates a new WebACL “Auto-create pre-defined web ACL” and the rest of the options would the existing WebACLs in the account and region
Step 4: For this example, I would be going ahead with creating a new WebACL and click on “Confirm”
Step 5: Once you confirm it, you will see the Integration status details as “Association is in progress”
Step 6: You can verify the creation by going to the AWS WAF console. The naming will start with “CreatedbyALB-”
Step 7: Click the WebACL and navigate to the “Rules” tab. You will see the recommended AWS managed rules that were created by default with the WebACL
With the above mentioned steps, you can easily integrate ALB with AWS WAF.