πΌ [WAF.10] AWS WAF web ACLs should have at least one rule or rule group
-
Contextual name: πΌ [WAF.10] AWS WAF web ACLs should have at least one rule or rule group
-
ID:
/frameworks/aws-fsbp-v1.0.0/waf/10 -
Located in: πΌ WAF
Descriptionβ
A web ACL gives you fine-grained control over all of the HTTP(S) web requests that your protected resource responds to. A web ACL should contain a collection of rules and rule groups that inspect and control web requests. If a web ACL is empty, the web traffic can pass without being detected or acted upon by AWS WAF depending on the default action.
Similarβ
- AWS Security Hub
- Internal
- ID:
dec-c-48e9f075
- ID:
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST SP 800-53 Revision 5 β πΌ CA-9(1) Internal System Connections _ Compliance Checks | 15 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ CM-2 Baseline Configuration | 7 | 13 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|