Add WAF to WP site

Task: add WAF service to WP site

Implementation steps:

  1. Create WebACL
  2. Add rulesets:
    AWS-AWSManagedRulesCommonRuleSet
    AWS-AWSManagedRulesWordPressRuleSet
    AWS-AWSManagedRulesSQLiRuleSet
    AWS-AWSManagedRulesPHPRuleSet
    AWS-AWSManagedRulesKnownBadInputsRuleSet
  3. Disable next rules in the AWS-AWSManagedRulesCommonRuleSet:
    SizeRestrictions_BODY
    GenericRFI_BODY
    CrossSiteScripting_BODY
    GenericRFI_QUERYARGUMENTS
  4. Done.

Leave a Reply

Your email address will not be published. Required fields are marked *

10  +    =  14

Skynin cache:
Array ( [cache mode] => capture [requestKey] => 664917a028310f9ea9e03364c7b8059328.sc [skycache_disable_capture] => false )