Does AWS WAF prevent GET flood?

Question

Let's say I have an imaginary website: https://myimaginarywebsite.com.

If I try to exploit it, and I make massive concurrent GET requests (source is just one ip), would WAF have a feature to prevent this?

Since this is technically valid traffic but abnormal pattern, I'm curious how AWS WAF handles this.

Is there an already built-in WAF feature we can just add to prevent this, or Do we have still have to tune this in WAF?

This might be a better fit for sister site ServerFault.com since it's server / network setup not coding. — Dave S, Feb 23 '20 at 18:41

score 2 · Accepted Answer · answered Feb 23 '20 at 21:13

2

Yes, WAF can handle HTTP floods with rate based rules.

The AWS Security Automations quick start found here, and associated docs found here, provide a great template starting point and example of some of the features you can configure in AWS WAF.

answered Feb 23 '20 at 21:13

hephalump

5,860
1
22
23

Does AWS WAF prevent GET flood?

1 Answers1