Single AWS WAF on multiple ALB

Question

My application architecture's allowed traffic flow is as below in AWS.

CompanyInternalSubnets(IS)=>ALB with WAF=>EC2

ALB has security groups which allows only traffic from IS. ALB has WAF which has rules to allow traffic only from IS. EC2 has security group which allows only traffic from ALB's SG.

I want to create multiple replica of same application in AWS. I will create sperate EC2 and ALB. but can i use same WAF and attach it to second ALB or do i need to use separate WAF fur each replica? what is the best practice?

Thanks

score 0 · Answer 1 · answered Nov 20 '19 at 06:47

0

use the same WAF across since its a replica and why another one? unless you have a different set of rule

answered Nov 20 '19 at 06:47

PCB

638
1
11
22

Single AWS WAF on multiple ALB

1 Answers1