Monitoring WAF Rules

Future Content Updates in progress

This section is actively being updated. Below is incomplete, or presents the expected outline of what will be included shortly. Please come back soon or reference public docs for AWS WAF in the meantime.

Analyzing AWS WAF logs

Future Content Updates in progress

How to query from S3 or CloudWatch Logs Useful Queries for specific common use cases Query specific best practices for Athena Query specific best practices for CloudWatch Log Insights

Evaluating AWS WAF rules through WAF log queries

Future Content Updates in progress

Practical how to query WAF logs to evalute AMR rule potential impact Practical how to evalute values for Rate base rules and other common custom rules What to include in a query to scope a well designed False positive exception