AWS WAF can be deployed in commonly used AWS services for sending contents to websites and applications such as Amazon Cloudfront, Application Load Balancer(ALB), Amazon API Gateway, AWS AppSync, Amazon Cognito User Pools to protect the deployed applications from these locations.
When using AWS WAF from Amazon CloudFront, the Rule is activated from all AWS Edge locations closest to the end user located worldwide, which indicates that the security does not affect the performance in any way.
The blocked requests are stopped before reaching the user’s web server. When the AWS WAF is used from regional services such as Application Load Balancer, Amazon API Gateway, AWS AppSync, and Amazon Cognito User Pools, the Rules are regionally activated which can be used to protect not only the internal resource but also resources for internet connections.
Comments