le-tf-infra-aws Feature | Add WAFv2 AWSManagedRulesATPRuleSet for AWS WAFv2 via Terraform

Feature | Add WAFv2 AWSManagedRulesATPRuleSet for AWS WAFv2 via Terraform

Open marianod92 opened this issue 2 years ago • 1 comments

Enable AWSManagedRulesATPRuleSet for AWS WAFv2 via Terraform

Add related rules and example Terraform code to provision/enable AWSManagedRulesATPRuleSet for AWS WAFv2. This functionality allows us to protect from brute force attacks on a specified login, lost credentials and even, allows us to verify session and token issues.

Currently not supported by Terraform. This is mentioned in the following Issues:

Add Support for WAFv2 Managed Rule Group Configuration
Support managed rule group configs in aws_wafv2_web_acl for the new managed rule AWSManagedRulesATPRuleSet

Layer related: security-firewall

Example of expected code:

statement {
  managed_rule_group_statement {
    name               = "AWSManagedRulesATPRuleSet"
    vendor_name = "AWS"
  }
}

Sep 01 '22 01:09 marianod92

le-tf-infra-aws le-tf-infra-aws copied to clipboard

Feature | Add WAFv2 AWSManagedRulesATPRuleSet for AWS WAFv2 via Terraform

Enable AWSManagedRulesATPRuleSet for AWS WAFv2 via Terraform

le-tf-infra-aws
le-tf-infra-aws copied to clipboard