Forum Discussion

Utkarsh_389395's avatar
Utkarsh_389395
Icon for Nimbostratus rankNimbostratus
Apr 26, 2019

Apply F5 marketplace rule group to AWS WAF web ACL cloudformation template

Hello,

 

I am creating a cloudformation template for AWS WAF Web ACL and trying to apply the following rule group to it:

 

F5 Rules for AWS WAF - Web exploits OWASP Rules URL:- https://aws.amazon.com/marketplace/pp/B077PJGPWH

 

But, i am unable to access the rule group ID and hence not able to create the cloudformation template.

 

It would be helpful if you provide a cloudformation template using this rule group.Thanks in advance.

 

AWS
cloud
security

1 Reply

Sort By
  • Lora's avatar
    Lora
    Icon for Nimbostratus rankNimbostratus
    Oct 23, 2019

    I'm struggling with the same issue for the API Gateway set of rules. One of my colleagues was able to get information using the following CLI command to get the rule group id:

     

    aws waf-regional list-subscribed-rule-groups

     

    But, I'm still struggling with the cloud formation side to define a parameter listing the Rule Group ID and then create a WebACL for our teams to apply to their applications. I'm trying the following:

    Parameters:

      RuleGroup:

       MetricName: F5APISecurityRules

       Name: F5 Rules for AWS WAF - API Security Rules

       RuleGroupId: 5a27a101-5fde-415d-9940-77f21867b80f

     

     

    Reseources:

     APIWAFWebACL:        

      Type: AWS::WAFRegional::WebACL

      Properties:

       Name: "APIWAFWebACL"  

       DefaultAction: 

        Type: "ALLOW"

       MetricName: "F5APISecurityRules"

       Rules:

        - 

         Action: 

          Type: "BLOCK"

         Priority: 1

         RuleId: 

          Ref: !Ref RuleGroup 

     

    Anyone had any success?

    Thanks!