Ir para o conteúdo
Ao usar o AWS re:Post, você concorda com os AWS re:Post Termos de uso
AWS re:Postre:Post
sobre o re:Post

AWS WAF gets disassociated without any warning

0

AWS WAF can get disassociated without any warning. Could we please get at least an email? Something like: [Attention Required] WAF disassociated you are now exposed to all the internet.

We are using AWS Load Balancer Controller and the WAF stopped working without notice until we found this: https://github.com/kubernetes-sigs/aws-load-balancer-controller/issues/2219 But even now I cannot guarantee that the WAF will stay up...

Tópicos
Segurança, identidade e conformidade
Tags
AWS WAF
Idioma
English
feita há 2 anos854 visualizações
3 Respostas
1

I’ve never seen this myself. I have seen a WAF ACL applied to many ALBs but never seen a WAF disappear from an ALB.

How are you associating them?

ESPECIALISTA
respondido há 2 anos
0

Through the aws management console. But this is not the point.

Any state changes on a WAF should trigger an email notification. If you agree, can you please upvote my question so that it gets seen?

Thanks in advance

respondido há 2 anos
  • Gary Mclean ESPECIALISTA
    há 2 anos

    What do you mean by state change?

0

You can check the Cloud Trail logs to see why ALB is getting disassociated from WAF. DisassociateWebACL is the API that disassociates the specified regional application resource from any existing web ACL association. Additionally, check if you have Firewall Manager (FMS) thats controlling the WAF integration. If yes, review the rules that you have in FMS that might be preventing the association of ALB to WAF.

AWS
ESPECIALISTA
respondido há um ano

Você não está conectado. Fazer login para postar uma resposta.

Uma boa resposta responde claramente à pergunta, dá feedback construtivo e incentiva o crescimento profissional de quem perguntou.

Conteúdo relevante