Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

1. Added URI whitelisting rule. 2. Added Size Protection rule. #1

Closed
wants to merge 1 commit into from
Closed

1. Added URI whitelisting rule. 2. Added Size Protection rule. #1

wants to merge 1 commit into from

Conversation

unk1nd0n3
Copy link

Hi,

i have tried to add more functionality to yours AWS WAF CloudFormation template. They are:

  1. Protection rule by URI begins with prefix. I have created template only for one prefix. I can't figure out how to perform this for several prefixes with AWS CloudFormation.
  2. Protection rule by Size with 3 conditions:
    a) By Query size
    b) By URI size
    c) By Body size
  3. Also I have modified function create_stack(resource_properties) in file: custom-resource.py of Lambda function: LambdaWAFCustomResourceFunction.

I have gotten next problems:
I have re-packed this Py module: custom-resource.py into zip and uploaded to personal S3 bucket. But CloudFormation custom resourse: WafWebAclRuleControler is unable successfully to populate newly created WebACL with rules.

After some time investigation I found error in newly create Lambda function: Custom resource:

Unable to import module 'custom-resource': No module named custom-resource
Unable to import module 'custom-resource': No module named custom-resource

Will be great to help me with this issue and also will be nice to add these new rule into existing CloudFormation template.

Wbr,
Nickolas

@hvital
Copy link
Contributor

hvital commented Oct 14, 2016

Hi Nickolas,

We can setup a conf call so we can talk about that and help you. What do you think? Which is the best way to contact you?

Thanks for you interest and help,

Heitor

@unk1nd0n3
Copy link
Author

unk1nd0n3 commented Oct 14, 2016
edited
Loading

Hi Heitor,

this will be great. We can use for conf any from these: Skype, Hangouts. My working hours 09.00AM - 05.00PM UTC.

Thanks for your time and help

Wbr,
Nickolas

@unk1nd0n3
Copy link
Author

Hi Heitor,

please give me to know how we can discuss this aws waf deployment?

Wbr.
Nickolas

@nokiomanz nokiomanz mentioned this pull request Jun 7, 2017
Closed
@ghost ghost mentioned this pull request Jul 21, 2017
Closed
@unk1nd0n3 unk1nd0n3 closed this Nov 13, 2017
rrehbein referenced this pull request in discountofficeitems/aws-waf-security-automations May 13, 2020
@RyanGittins
Merge pull request #1 from jgeurts/master
6db258a 
Support node v10
slawa-c pushed a commit to slawa-c/aws-waf-security-automations that referenced this pull request Oct 7, 2022
@Viacheslav-Checherenko-Epam
Merge pull request aws-solutions#1 in CFN/gds-aws-waf-security-automa…
98aef0d 
…tions from development to master

* commit '61e284fc1ee8a584000f4c0d22b6e97c4a3d93c6':
  TC-29928: add AWS managed known bad inputs rules  to webacl
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@unk1nd0n3 @hvital