If an ip address exceeds its rate limit and a WAF rule blocks it for a period of time, do the future requests from that ip address still get charged to me by the WAF service?
(And if so, why it beneficial to even use a WAF service if I am charged just the same for unauthorized requests with or without it? - Either by WAF or by Lambda)
Note: My plan is to use: WAF -> API Gateway -> Lambda
