Provides the capacity units utilized for a web ACL. (A passed requests a one that did not match any rule in the rule group. Measures the number of passed requests for a rule group. (A counted request is a one that matches all the conditions in a particular rule) Measures the total number of blocked web requests Measures the total number of web requests The following metrics are collected : Attribute LicensingĮach web access control list (web ACL) is considered a basic monitor. Site24x7 collects metric data for your web access control lists (web ACLs) as per the poll frequency set (1 minute to a day). "cloudfront:listDistributionsByWebACLId"įor the WAFV2, following are the read level actions to be present in the policy JSON."waf-regional:ListActivatedRulesInRuleGroup",."waf-regional:GetSqlInjectionMatchSet",.If you want to assign a custom policy, please make sure the following read level actions are present in the policy JSON. Learn more.Īssign the AWS managed policy ReadOnlyAccess to the Site24x7 IAM entity (user or role) to help Site24x7 collect metric and inventory data. In the Integrate AWS Account page, make sure AWS WAF is checked under the services to be discovered field.If you haven't done it already, enable Site24x7 programmatic access to your AWS resources by creating Site24x7 as an IAM user or by creating a cross-account IAM role between you AWS account and Site24x7's AWS account.With Site24x7's AWS integration you can now monitor your rules and web ACLs. AWS Web Application Firewall (WAF) Monitoring IntegrationĪWS WAF - Web Application Firewall is a managed service that lets you control (allow, block or count) the HTTP and HTTPS requests routed to your web application by defining customizable security rules call web access control lists (web ACLs).
0 Comments
Leave a Reply. |