×
 
 
  •  
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')
BMC Discovery content reference ... Supported Cloud Providers Discovering Amazon Web Services

Amazon WAF WEB ACLs

Related topics
Product name
Category
Storage system
Release
TKU 2022-Nov-1

A web access control list (web ACL) gives you fine-grained control over all HTTP(S) web requests your protected resource responds to. You can defend Amazon CloudFront, Amazon API Gateway, Application Load Balancer, AWS AppSync, and Amazon Cognito resources. 

Identification

Triggers

Pattern

Trigger Node

Attribute

Condition

Argument

InferWAFRegionalwebACLDiscoveredCloudAPIResultListdiscovery_method='AWS.WAF.ListRegionalWebAcls'
InferWAFv2RegionalwebACLDiscoveredCloudAPIResultListdiscovery_method='AWS.WAF2.ListRegionalWebAcls'
InferWAFwebACLDiscoveryAccessproviderand='aws'
da.region

in'supported regions'
is first in'DiscoveryRun'
InferWAFv2webACLDiscoveryAccessproviderand='aws'
da.regionin 'supported regions'
is first in'DiscoveryRun'

Endpoints in the REST APIs

REST APIs

Comments

AWS.WAF2.ListTagsForResourceGet tags
AWS.WAF.ListWebAclsList AWS WAF web ACLs (Classic)
AWS.WAF2.ListWebAclsList AWS WAF web ACLs (Classic)
AWS.WAF2.ListTagsForResourceGet tags

Attributes 

Patterns InferWAFRegionalwebACL models WAF regional CloudService for each region.

Node Kind

Attribute

Default Value

CloudServicetypeSecurity
codewaf regional
nameAWS WAF Regional (Classic) (AWS Global) : <region.account_name>

Patterns InferWAFv2RegionalwebACL models waf2 regional CloudService for each region.

Node Kind

Attribute

Default Value

CloudService typeSecurity
codewaf2regional
nameAWS WAF Regional (<region.location>) : <region.account_name>

 Patterns InferWAFwebACL models waf CloudService for each region.

Node Kind

Attribute

Default Value

CloudService typeSecurity
codewaf
nameAWS WAF (Classic) (AWS Global) : <region.account_name>

Patterns InferWAFv2webACL models waf2 CloudService for each region.

Node Kind

Attribute

Default Value

CloudServicetypeSecurity
codewaf2
nameAWS WAF (<region.location>) : <region.account_name>

An example of the BMC Helix Discovery view of the scanned results for CloudService is the following:

An example of the model visualization is represented below:

Pattern InferWAFRegionalwebACL models AWS Web Access Control List Regional (Classic) CloudResource for each AWS Regional (Classic) web Access Control List.

Node Kind

Attribute

Default Value

CloudResourcenameWeb ACL Regional (Classic) <result.Name>
typeAWS Web Access Control List Regional (Classic)
keyresource_arn using resource_arn function
short_nameresult.Name
idresult.WebACLId
cloud_idresource_arn using resource_arn function

An example of the BMC Helix Discovery view of the scanned results for CloudResource is the following:

Pattern InferWAFv2RegionalwebACL models AWS Web Access Control List Regional CloudResource for each AWS WAF (v2) Regional web Access Control List.

Node Kind

Attribute

Default Value

CloudResourcenameWeb ACL Regional <result.Name>
typeAWS Web Access Control List Regional
keyresult.ARN
short_nameresult.Name
idresult.Id
descriptionresult.Description
lock_tokenresult.LockToken
cloud_idresult.ARN
tags[ <tag_key> <value> ]

An example of the BMC Helix Discovery view of the scanned results for CloudResource is the following:

Pattern InferWAFwebACL models AWS Web Access Control List (Classic) CloudResource for each AWS WAF (Classic) web Access Control List.

Node Kind

Attribute

Default Value

CloudResourcenameWeb ACL (Classic) <result.Name>
typeAWS Web Access Control List (Classic)
keyresource_arn using resource_arn function
short_nameresult.Name
idresult.WebACLId
cloud_idresource_arn using resource_arn function

An example of the BMC Helix Discovery view of the scanned results for CloudResource is the following:

Pattern InferWAFv2webACL models AWS Web Access Control List CloudResource for each AWS WAF (v2 CloudFront) web Access Control List.

Node Kind

Attribute

Default Value

CloudResourcenameWeb ACL <result.Name>
typeAWS Web Access Control List
keyresult.ARN
short_nameresult.Name
idresult.Id
descriptionresult.Description
lock_tokenresult.LockToken
cloud_idresult.ARN
tags[ <tag_key> <value> ]

An example of the BMC Helix Discovery view of the scanned results for CloudResource is the following:

Information sources

For more information, refer to the official resources:



Was this page helpful? Yes No Submitting... Thank you
Last modified by Roman Trum on Mar 21, 2024
tku_2022-nov-1 cloud aws amazon faw web_application_firewall

Comments

Log in or register to comment.

Amazon Supported Cloud Regions
Amazon WorkSpaces
© Copyright 2004 - 2023 BMC Software, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.