Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

How to disable managed ruleset options #264

Open
sbe-arg opened this issue Apr 23, 2024 · 4 comments
Open

How to disable managed ruleset options #264

sbe-arg opened this issue Apr 23, 2024 · 4 comments

Comments

@sbe-arg
Copy link

sbe-arg commented Apr 23, 2024

Any way to change from BLOCK to something else, at least COUNT a list of managed rules?

Sometimes there are application that need some of the rules softened or disabled such as Body size and others...

https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-baseline.html

Somehow a list array to enter rule names that will be set to count?

edited to add context links:
we need to allow expand the statement logic with rule action overrides from an array?

https://github.com/aws-solutions/aws-waf-security-automations/blob/main/deployment/aws-waf-security-automations-webacl.template#L473

https://docs.amazonaws.cn/en_us/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-managedrulegroupstatement.html

https://docs.amazonaws.cn/en_us/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-ruleactionoverride.html

@kroeter
Copy link

kroeter commented Apr 24, 2024

Thanks for the post - we have another released planned for this solution in H2 of this year and I'll consider this during our next grooming session. Let me know if you're open for further discussion of other features that you'd like to see for this solution.

@sbe-arg
Copy link
Author

sbe-arg commented Dec 5, 2024

@kroeter any updates on this feature?

@dadmukta
Copy link
Member

We are working on this feature. We plan to update in Feb 2025.

@sbe-arg
Copy link
Author

sbe-arg commented Dec 10, 2024

Thanks for the update

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

3 participants