Skip to main content

Enumeration: StageDepotAwsManagedWafRule

Defined in: packages/depot-cdk/src/stage-depot-environment.ts:168

Depot AWS Managed WAF rule selection.

Enumeration Members

AWSManagedRulesAdminProtectionRuleSet

AWSManagedRulesAdminProtectionRuleSet: "AWSManagedRulesAdminProtectionRuleSet"

Defined in: packages/depot-cdk/src/stage-depot-environment.ts:184

The Admin protection rule group contains rules that allow you to block external access to exposed administrative pages. This might be useful if you run third-party software or want to reduce the risk of a malicious actor gaining administrative access to your application. WCU = 100


AWSManagedRulesAmazonIpReputationList

AWSManagedRulesAmazonIpReputationList: "AWSManagedRulesAmazonIpReputationList"

Defined in: packages/depot-cdk/src/stage-depot-environment.ts:201

The Amazon IP reputation list rule group contains rules that are based on Amazon internal threat intelligence. This is useful if you would like to block IP addresses typically associated with bots or other threats. Blocking these IP addresses can help mitigate bots and reduce the risk of a malicious actor discovering a vulnerable application. WCU = 25


AWSManagedRulesCommonRuleSet

AWSManagedRulesCommonRuleSet: "AWSManagedRulesCommonRuleSet"

Defined in: packages/depot-cdk/src/stage-depot-environment.ts:176

The Core rule set (CRS) rule group contains rules that are generally applicable to web applications. This provides protection against exploitation of a wide range of vulnerabilities, including high risk and commonly occurring vulnerabilities described in OWASP publications. Consider using this rule group for any AWS WAF use case. WCU = 700


AWSManagedRulesKnownBadInputsRuleSet

AWSManagedRulesKnownBadInputsRuleSet: "AWSManagedRulesKnownBadInputsRuleSet"

Defined in: packages/depot-cdk/src/stage-depot-environment.ts:192

The Known bad inputs rule group contains rules to block request patterns that are known to be invalid and are associated with exploitation or discovery of vulnerabilities. This can help reduce the risk of a malicious actor discovering a vulnerable application. WCU = 200