By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

gRPC Bidirectional Stream WAF ACL Support

0

Is it possible to define a WAF ACL rule to limit the number of requests per IP once a stream is established?

The goal is to prevent an established and authenticated stream from DOS'ing our servers by sending excessive messages over that stream.

Thanks!

Topics
Security, Identity, & Compliance
Tags
AWS WAF
Language
English
robcurran
asked 7 months ago232 views
1 Answer
0

To my knowledge AWS WAF can apply rules based on request attributes such as URI, headers, and query parameters, but it doesn't directly deal with limiting the number of requests per IP address once a stream is established.

For rate limiting or throttling based on the number of requests per IP once a stream is established, you might want to consider using AWS services like Amazon API Gateway or AWS lamdba in conjunction with AWS WAF.

AWS
AWS-User-6621777
answered 7 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content