When Amazon launched AWS WAF in October of 2015, it made many customers’ lives easier, but required that they use AWS CloudFront as their Content Delivery Network (CDN). Many customers already had other CDN partners, such as Akamai and Fastly, and couldn’t realistically switch to CloudFront to take advantage of AWS WAF. This has now changed, as just yesterday Amazon announced AWS WAF availability on the Application Load Balancer (ALB). This opens up a lot of opportunities for AWS customers that aren’t using CloudFront.
Web application firewalls (WAF) filter, monitor, report and potentially block HTTP traffic to and from web servers and web applications. WAFs inspect HTTP traffic looking for malicious behavior targeting known security flaws. In addition, WAFs can define the allowed behavior of web application users by enforcing a site navigation map of whitelisted URLs. In the case of AWS WAF, this is done by defining “web ACLs” (Access Control Lists).
When security of your web application is important, WAFs are a great tool to protect your infrastructure, as WAFs can protect your web workloads against threats like SQL injection, cross-site scripting, session hijacking, parameter or URL tampering and buffer overflows.
Brandorr Group is an Advanced Amazon Web Services Consulting Partner with decades of experience architecting, securing, automating, and managing cloud infrastructure using AWS best practices.
We help our clients successfully execute their cloud strategy by providing architecture and implementation services with 24x7x365 oncall emergency response. We’d love to help with your automation/scaling needs, contact us today.
Brandorr Group LLC is a one-stop cloud computing solution provider, helping companies manage growth and ship new projects using cloud and scalability best practices.