Checks whether the security protection feature of Web Application Firewall (WAF) 3.0 is enabled for the Application Load Balancer (ALB) instance. If so, the evaluation result is Compliant.
Scenarios
You can enable the security protection feature of WAF 3.0 for the ALB instance to allow the system to block malicious crawlers and HTTP flood attacks. This ensures website stability and data security.
Risk level
Default risk level: low.
When you apply this rule, you can change the risk level based on your business requirements.
Compliance evaluation logic
If the security protection feature of WAF 3.0 is enabled for the ALB instance, the evaluation result is Compliant.
Rule details
Parameter | Description |
Rule template name | alb-instance-waf-enabled |
Rule template identifier | |
Automatic remediation | Not supported |
Trigger type | Configuration Change |
Supported resource type | ACS::ALB::LoadBalancer |
Input parameter | None |
Non-compliance remediation
For more information, see Enable WAF protection for an ALB instance.