mdial89f
commented
4 years ago This should also include a WAF ACL in front of the APIGW
Closed mdial89f closed 4 years ago
mdial89f
commented
4 years ago This should also include a WAF ACL in front of the APIGW
A WAF can be put in front of cloudfront to restrict access by ip range. This can be used to essentially allow only vpn traffic to reach the site. It would be nice if the quickstart had this pattern laid out, ideally as a configurable option. Restricting access to the site to a vpn is a common ask.
AC: