This is an automation purposes to manage v1 WAF rules using terraform. By default all resources are deployed on Regional Mode. But you can enable Global Mode to replicate WAF rules for a cloudfront context.
variable "global_mode" {
default = true
}- Feature Flag ❌
- Global Mode Rules Replication from Regional Rules (For Cloudfront) ❌
- Bad IP's ✅
- SQL Injection protection ✅
- XSS protection ✅
- DDoS protection (IP Rated) ✅
- Generic insecure patterns for Querystrings ✅
- Generic insecure patterns for URI ✅
- Generic insecure patterns for BODY ❌
- Regex pattern for BODY ✅
- Regex pattern for URI ✅
- Regex pattern for HEADER ❌
- Monitoring with Kinesis and Elasticsearch and Kibana ❌
- Elasticsearch Log Retention ❌
terraform init
terraform apply👤 Matheus Fidelis
- Twitter: @fidelissauro
- Github: @msfidelis
Contributions, issues and feature requests are welcome!
Feel free to check issues page.
Give a ⭐️ if this project helped you!
Copyright © 2019 Matheus Fidelis.
This project is MIT licensed.