AWS re:Post을(를) 사용하면 다음에 동의하게 됩니다. AWS re:Post 이용 약관
AWS re:Postre:Post

AWS WAF High Charge

0

HI, We have AWS EC2 instance with load balance and connected to VPC and Internet Gateway. I had configured WAF and restricted to Geo Location and allowed two specific country and except that on reject with one Rule. WAF configured with load balancer. Recently noticed in a 6M plus request processed by WAF and its reach to high billing and major request from Rejected Geo location. how can we avoid such type of issues

thanks

주제
보안, 신원 및 규정 준수
태그
AWS WAF
언어
English
UNAIS
질문됨 4달 전278회 조회
1개 답변
1

Hi UNAIS,

Here are a few things you can do to avoid high WAF billing and requests from rejected geo locations:

  1. Enable WAF logging and analytics. This will give you visibility into the requests getting blocked and where they are coming from. You can use this to further tweak your WAF rules.

  2. Implement CAPTCHAs or other challenge mechanisms on your application. This will add extra friction for bots and automated requests coming from invalid locations.

  3. Tweak the WAF rules to only block requests that are clearly bots/scraping and allow more legitimate geo-located traffic, rather than broadly blocking all non-approved countries.

The key is to get visibility through logs, implement layered defenses, and tune WAF to be as permissive as possible while still protecting against clear threats. Blocking entire countries often backfires by blocking real users too.

Link: https://docs.aws.amazon.com/whitepapers/latest/guidelines-for-implementing-aws-waf/cost-considerations.html

AWS
rePost-User-5264363
답변함 4달 전

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠