Here’s the CloudFormation template for creating a WAF.
Here are some options that you’ll be asked during creation.
- Activate SQL Injection Protection ( yes | no )
- Activate Cross-site Scripting Protection ( yes | no )
- Activate HTTP Flood Protection ( WAF rate | Lambda log parser | Athena log parser | no )
- Activate Scanner & Probe Protection ( Lambda log parser | Athena log parser | no )
- Activate Reputation List Protection ( yes | no )
- Activate Bad Bot Protection ( yes | no )
- Endpoint Type (CloudFront or ALB)
- Application Access Log Bucket Name ( Leave blank if no S3 bucket)
The template creates 2 CloudFormation stacks.