hugobcar
commented
5 years ago Yes, really.
that some or all log file entries for a time period can sometimes be delayed by up to 24 hours https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/AccessLogs.html#access-logs-timing
In the beginning of the year, I develop this solution for this problem: https://engineering.contaazul.com/instant-block-of-attacks-to-aws-websites-using-cloudfront-lambda-edge-dynamodb-waf-a94281cb5bde
Is it possible to immediate block IP when receive attacks (DDOS)? Apparently S3 has a lag to record a log list.