waf visual dashboard Cloudformation errors

Question

Following https://aws.amazon.com/blogs/security/visualize-aws-waf-logs-with-an-amazon-cloudwatch-dashboard/ which deploys a Dashboard as expected, however when trying to run it more than once w/ a different stack name, log group, and WebACL inputs, the Cloudformation errors out failing to create multiple resources. How can this CF template be run more than once?

Note: we're using a "Shared" account where all CloudWatch logs are accessible from one monitoring account, which is where we are trying to create dashboards.

Accepted Answer

You can create multiple WAF dashboards using the CF template provided in the link : https://aws.amazon.com/blogs/security/visualize-aws-waf-logs-with-an-amazon-cloudwatch-dashboard/ .

To do so please follow the below steps:
1. Once you click on "Launch Stack" on the above link, click on "View in Designer" in Cloud formation console. 
2. On template check for different query definition names ( for ex: nonBrowserRequestsQueryDefinition, topCountedRules, captchaTokenQueryDefinition ).
3. Change their name by adding a number like topCountedRules to topCountedRules2. Similarly do the same for other query definition names as well.
4. After making the above changes, click on Create stack which will be on top left corner below "Services".
5. You can proceed with creation of dashboard.

Note: You can check "PutQueryDefinition" events in Cloud trail to find the cause of errors if the CF template fails.

waf visual dashboard Cloudformation errors

相关内容