The AWS Web Application Firewall (WAF) is a (relatively) recent addition to AWS’s already mature lineup of scalable, fault-tolerant, managed services. The WAF provides AWS customers with a flexible and cost-effective platform that protects web applications from malicious users, content abusers, and DDoS attackers.
The AWS WAF was announced at the AWS re:Invent conference in 2015, and started with a baseline set of features and functionality. Driven largely by customer requests, AWS has since added many new features and updates to the WAF, including rate-based-rules, more rule condition types, Application Load Balancer support, preconfigured protections, and support in additional AWS regions.
- Feb 28, 2018: New Products for Managed Rules on AWS WAF
- Feb 15, 2018: AWS Config Adds Support for AWS WAF RuleGroups
- Jan 10, 2018: AWS Shield Advanced and AWS WAF Now Available in Asia Pacific (Sydney) and EU (Frankfurt) Regions
- Nov 29, 2017: Ready-to-Use Managed Rules Now Available on AWS WAF
- Oct 16, 2017: AWS WAF Now Supports Geographic Match
- Oct 16, 2017: AWS WAF Now Supports Regular Expressions (Regex)