Revisit Amazon Web Services re:Invent 2024’s biggest moments and watch keynotes and innovation talks on demand
Amazon WAF - Web Application Firewall
Protect your web applications from common web exploits
Amazon WAF - Web Application Firewall
Protect your web applications from common web exploits
Amazon WAF is a web application firewall that helps protect your web applications or APIs against common web exploits and bots that may affect availability, compromise security, or consume excessive resources. Amazon WAF gives you control over how traffic reaches your applications by enabling you to create security rules that control bot traffic and block common attack patterns, such as SQL injection or cross-site scripting. You can also customize rules that filter out specific traffic patterns. You can get started quickly using Managed Rules for Amazon WAF, a pre-configured set of rules managed by Amazon Web Services. The Managed Rules for Amazon WAF address issues like the OWASP Top 10 security risks and automated bots that consume excess resources, skew metrics, or can cause downtime. These rules are regularly updated as new issues emerge. Amazon WAF includes a full-featured API that you can use to automate the creation, deployment, and maintenance of security rules.
You can deploy Amazon WAF on the Application Load Balancer that fronts your web servers or origin servers running on EC2, Amazon API Gateway for your REST APIs, or Amazon AppSync for your GraphQL APIs. With Amazon WAF, you pay only for what you use and the pricing is based on how many rules you deploy and how many web requests your application receives.
Amazon WAF is a web application firewall that helps protect your web applications or APIs against common web exploits and bots that may affect availability, compromise security, or consume excessive resources. Amazon WAF gives you control over how traffic reaches your applications by enabling you to create security rules that control bot traffic and block common attack patterns, such as SQL injection or cross-site scripting. You can also customize rules that filter out specific traffic patterns. You can get started quickly using Managed Rules for Amazon WAF, a pre-configured set of rules managed by Amazon Web Services. The Managed Rules for Amazon WAF address issues like the OWASP Top 10 security risks and automated bots that consume excess resources, skew metrics, or can cause downtime. These rules are regularly updated as new issues emerge. Amazon WAF includes a full-featured API that you can use to automate the creation, deployment, and maintenance of security rules.
You can deploy Amazon WAF on the Application Load Balancer that fronts your web servers or origin servers running on EC2, Amazon API Gateway for your REST APIs, or Amazon AppSync for your GraphQL APIs. With Amazon WAF, you pay only for what you use and the pricing is based on how many rules you deploy and how many web requests your application receives.
Benefits
Agile Protection Against Web Attacks
Save Time With Managed Rules
Improved Web Traffic Visibility
Ease of Deployment & Maintenance
Easily Monitor, Block, or Rate-limit Bots
Security Integrated With How You Develop Applications
Benefits
Agile Protection Against Web Attacks
Save Time With Managed Rules
Improved Web Traffic Visibility
Ease of Deployment & Maintenance
Easily Monitor, Block, or Rate-limit Bots
Security Integrated With How You Develop Applications
How It Works
How It Works
How to Get Started
Sign up for a Free Account
Pay nothing or try for free while learning the fundamentals and building on Amazon Web Services.
Connect With an Expert
From development to enterprise-level programs, get the right support at the right time.
How to Get Started
Sign up for a Free Account
Pay nothing or try for free while learning the fundamentals and building on Amazon Web Services.
Connect With an Expert
From development to enterprise-level programs, get the right support at the right time.