AWS-ELBv2-ELBv2-WAF-Enabled

Severity : High

Description: This control ensures that AWS WAF is enabled for application load balancer. WAF lets you monitor the HTTP and HTTPS requests that are forwarded to application load balancer and control access to it. It can allow requests and count them based on criteria provided, Run CAPTCHA checks against request that matches criteria. WAF uses Web ACL to define groups of rules to test against the incoming requests.

Remediation Steps :

Perform following to enable WAF :

1. Login to the AWS Management Console at https://console.aws.amazon.com

2. Go to AWS WAF service home page.

3. Choose Create web ACL.

4. Enter Name, Description.

5. For Resource type, choose the resources needed protection like application load balancer.

6. For Associated AWS resources, choose Add AWS resources. After done adding AWS resources, choose Add.

7. Choose Next.

8. Choose Next.

9. Add Managed Rule group by selecting Add rules and rule group. Add rules for the group , and Save Rule.

10. choose Next.

11. On the Set rule priority page, set processing order for the rules and rule groups in the web ACL

12. Choose Next.

13. On the Configure metrics page, for Amazon CloudWatch metrics.

14. Choose Next.

15. On the Review and create web ACL page, review your settings.

16. Choose Create web ACL.

Reference:

• https://docs.aws.amazon.com/waf/latest/developerguide/setting-up-waf.html

• https://docs.aws.amazon.com/waf/latest/developerguide/waf-chapter.html

• https://docs.aws.amazon.com/waf/latest/developerguide/getting-started.html