How to block all managed rules but otherwise allow traffic?

trussworks / terraform-aws-wafv2

Creates a WAF using AWS WAFv2 and AWS Managed Rule Sets

https://registry.terraform.io/modules/trussworks/wafv2

Apache License 2.0

104 stars 58 forks source link

How to block all managed rules but otherwise allow traffic? #98

Closed dangarthwaite closed 1 year ago

dangarthwaite commented 2 years ago

If I set default_action to "block" all traffic is blocked - even traffic that doesn't match a managed rule. If I set default_action to "allow" all traffic is allowed - even traffic that does match a managed rule.

I see one closed issue related to this. I suspect the answer is that an additional custom "allow" rule with low priority must be created. What is the simplest way to accomplish that with this module?

rpdelaney commented 1 year ago

@dangarthwaite Which issue are you referring to?

Edit: could be #40 ?