Checks whether rules for the specified protection scenario are enabled for a WAF 3.0 instance. If so, the evaluation result is compliant.
Scenarios
Relevant protection features must be enabled for the domain names that are protected by WAF 3.0 to ensure the security of the domain names.
Risk level
Default risk level: medium.
When you configure this rule, you can change the risk level based on your business requirements.
Compliance evaluation logic
If rules for the specified protection scenario are enabled for a WAF 3.0 instance, the evaluation result is compliant.
Rule details
Item | Description |
Rule name | waf3-instance-enabled-specified-defense-rules |
Rule ID | |
Tag | waf3 |
Automatic remediation | Not supported |
Trigger type | Configuration change |
Supported resource type | ACS::WAFV3::Instance |
Input parameter | None |
Non-compliance remediation
For more information about how to enable protection rules for a WAF 3.0 instance, see DescribeDefenseRules.