AWS_WAF_2

Ensure WAF function has been enabled on Cloudfront

Description

Amazon CloudFront is a web service that speeds up distribution of your static and dynamic web content, such as .html, .css, .js, and image files, to your users. CloudFront delivers your content through a worldwide network of data centers called edge locations. When a user requests content that you’re serving with CloudFront, the user is routed to the edge location that provides the lowest latency (time delay), so that content is delivered with the best possible performance.

  • AWS WAF is a web application firewall that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources.
  • AWS WAF gives you control over which traffic to allow or block to your web applications by defining customizable web security rules.
  • You can use AWS WAF to create custom rules that block common attack patterns, such as SQL injection or cross-site scripting, and rules that are designed for your specific application. 

Remediation

Perform the following to Ensure WAF function has been enabled on Cloudfront:

  1. Go to Amazon Trusted Advisor console at https://console.aws.amazon.com/cloudfront/home.
  2. Select one of the distributions from the list and click on Distribution Setttings
  3. Slect General Tab and click on edit button.
  4. select one of the Web ACL which you have created.
  5. Click on Yes Edit button.

Note:

  • If you want to use AWS WAF to allow or block requests based on criteria that you specify, choose the web ACL to associate with this distribution.
  • Click on link to view how to create web-acl.

Service

WAF & Shield

Severity

Low

Compliance

Mapping

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!