bedrock-claude-chat icon indicating copy to clipboard operation
bedrock-claude-chat copied to clipboard

Published 20 hours ago β€’ verified publisher icon aws-samples

[BUG]WAF IP restriction not working

Open HirokiNakatani opened this issue 8 months ago β€’ 8 comments

🚨 Please Note 🚨

To ensure efficient investigation of the issue, please fill out the fields below with as much detail as possible. Reports that do not follow this template may be closed without notification. We appreciate your cooperation.

🐞Describe the bug

Although IP restrictions are applied using the company's global IP address, once access has been gained, access from outside the company is also possible. I am very concerned that this could be a security hole.

πŸ”„ To Reproduce

Steps to reproduce the behavior:

  1. Accessing BCC without a VPN connection: The browser freezes and the screen remains white. Another service via Cloudfront returns 403 normally.
  2. Connect to VPN and access: The login screen appears normally.
  3. Disconnect the VPN again and access: BCC displays the login screen normally. Other services return 403.

interim measures: By adding the API WAF to Cognito as shown below, IP restrictions for sign-in were implemented. I hope this helps. This seems to be a different issue than browser cache. Could you please review this so that WAF can be set up on Cognito and APIGateway?

Image 423981944-8f15e33b-57b0-4a29-8a3e-de3134ef6677~2.png

πŸ“· Screenshots

WAF is configured on Cloudfront. Image Image

πŸ”Ž Logs for Chat Issues

If the issue occurs during a chat interaction, please check the following logs on Amazon Cloudwatch Logs and include the relevant entries in your issue:

  • /aws/lambda/BedrockChatStack-BackendApiHandlerXXXX
  • /aws/lambda/BedrockChatStack-WebSocketHandlerXXXX

πŸ”Ž Logs for Bot Creation/Update Issues

If the issue occurs during bot creation or updating, please check the execution records of the AWS Step Functions state machine named EmbeddingStateMachineXXX and include the details in your issue.

πŸ“ Additional context

Add any other context about the problem here.

HirokiNakatani avatar Mar 13 '25 11:03 HirokiNakatani

This sample is not Generative AI Usecase. In addition, this issue can be caused by brouser cache. thank you

statefb avatar Mar 13 '25 17:03 statefb

When I used the BCC WAF on CloudFront other than Generative AI, the IP restriction worked well. Also, I tried it on both EDGE and Chrome on a PC that had been running for a day, but the IP restriction did not work. I tried it on multiple PCs, but the situation was the same. Does this happen on your PC?

HirokiNakatani avatar Mar 13 '25 21:03 HirokiNakatani

Only BCC clearly behaves differently, so we believe it is not browser cache.

HirokiNakatani avatar Mar 13 '25 21:03 HirokiNakatani

Sorry for bothering you again. Clearing the Chrome cache did not resolve the issue.

HirokiNakatani avatar Mar 13 '25 21:03 HirokiNakatani

By adding the API WAF to Cognito as shown below, IP restrictions for sign-in were implemented. I hope this helps. This seems to be a different issue than browser cache. Could you please review this so that WAF can be set up on Cognito and APIGateway?

Image

423981944-8f15e33b-57b0-4a29-8a3e-de3134ef6677~2.png

HirokiNakatani avatar Mar 13 '25 23:03 HirokiNakatani

This issue has been labeled as "stale" due to no response by the reporter within 1 month (and 14 days after last commented by someone). And it will be closed automatically 14 days later if not responded.

github-actions[bot] avatar Apr 13 '25 01:04 github-actions[bot]

Regarding this matter, what do you think? There are security risks to using it for business purposes. I apologize for the inconvenience, but I would appreciate your consideration.

HirokiNakatani avatar Apr 13 '25 03:04 HirokiNakatani

Deployed v3 today and noticed the same thing.

axelpina avatar Apr 25 '25 00:04 axelpina