2 Antworten
- Neueste
- Die meisten Stimmen
- Die meisten Kommentare
1
Hi,
NLB is a Lyer 3/4 component while WAF is a Layer 7 protection component.
That is why WAF is only available for Application Load Balancer in the ELB portfolio. NLB does not terminate the TLS session therefore WAF is not capable of acting on the content. I would consider using AWS Shield at Layer 3/4.
Jeff
beantwortet vor einem Jahr
0
As stated above, WAF does not integrate with the NLB. Depending on your requirements, a Network Firewall may be appropriate.
Relevanter Inhalt
- AWS OFFICIALAktualisiert vor 4 Jahren
- AWS OFFICIALAktualisiert vor 6 Monaten
While I agree with the rationale of NLB not be available for WAF giving the fact they act at different OSI layers, NLB does support TLS session termination, since back 2019: https://aws.amazon.com/blogs/aws/new-tls-termination-for-network-load-balancers/. Also I do make use of it. Please currect if I am wrong.