aws-solutions / aws-waf-security-automations

This solution automatically deploys a single web access control list (web ACL) with a set of AWS WAF rules designed to filter common web-based attacks.
https://aws.amazon.com/solutions/aws-waf-security-automations
Apache License 2.0
843 stars 361 forks source link

Setup RuleGroups in WafV2 for use in Firewall Manager #142

Closed cgol closed 1 year ago

cgol commented 4 years ago

This appears to setup a WebACL for an individual account but I'd like to use these rules in Firewall Manager in multiple accounts.

My issue is that the rules are embedded in a WebACL and don't appear to be available individually to add to a RuleGroup. Firewall Manager only seems to allow selection of rulegroups rather than rules.

If the webacl stack could also create one or more RuleGroups with the same rule instances as the WebACL then this should be available for use in Firewall Manager and can be deployed across multiple accounts in an organization.

rakshb commented 4 years ago

@cgol Our team reviewed the feature request. We want to keep this open to gauge customer interest and will review it in a future release.

rakshb commented 1 year ago

Closing this since there is a similar request (https://github.com/aws-solutions/aws-waf-security-automations/pull/175) . We will evaluate both together and consider in a future release.