OCI-Networking-WAF-Public-IP-Enabled
Severity : Medium
Description: This control ensures that the OCI web application firewall is enable and configured for endpoints with public IP address. WAF protects applications from malicious and unwanted internet traffic. WAF can protect any internet facing endpoint, providing consistent rule enforcement across a customer's applications.
Remediation Steps:
Perform following to create auto scaling configuration :
Login to the OCI console at Cloud Sign In.
In navigation menu click  Identity & Security and then click Web Application firewall.
Under Web Application firewall, click Policies.
Click Create WAF Policy.
Enter basic information like name and WAF Policy compartments.
In Actions, configure check, allow and Return HTTP Response type.
Click Show Tags and configure tags for policy.
In Access control list, Click Enable Access control and add Request control Access rules. Define the Default Action for request doesn’t match the access rule.
Configure rate limiting by checking Enable to configure rate limiting rules. Add rate limiting rules.
Configure Protections to log or block requests. Check Enable to configure protection rules and Add Request Protection rules.
To enforce the WAF security on application endpoint or load balancer Select the Enforcement Point in the region.
Click Review and Create and then select Create WAF Policy.
If access to the application is requires to be limited to certain IPAddresses or VNC add the WAF Network Address list. To create a network access list
In Web application Firewall , Click Network Address List and the click Create Network Access List.
Configure Name, compartment. Select Address Type to add to the list.
For Addresses, Type in the individual IP address for the list.
For Click VNC Addresses , enter compartments and VNC addresses.
Click Create.
Important:
 Enabling logging in WAF may incur additional cost.
Reference:
Blue Hexagon Proprietary