AWS WAF Classic Global Rules Must Contain Conditions

This rule ensures that AWS WAF Classic global rules include conditions, necessary for detailed traffic inspection and control.

Rule	AWS WAF Classic global rules should have at least one condition
Framework	AWS Foundational Security Best Practices
Severity	✔ Medium

Rule Description:

AWS WAF Classic global rules must include at least one condition that aligns with AWS Foundational Security Best Practices. By incorporating these conditions into the rules, you can enhance the security of your applications and mitigate potential threats effectively.

Troubleshooting Steps:

If your AWS WAF Classic global rules do not have a condition for AWS Foundational Security Best Practices, follow the steps below to address the issue:

1.
Identify the existing global rules in your AWS WAF Classic setup.

2.
Review the conditions associated with each global rule to determine if any align with AWS Foundational Security Best Practices.

3.
If no conditions are found, proceed to add a new condition based on AWS Foundational Security Best Practices.

Necessary Codes:

No specific code is required for this rule; however, you may need to configure conditions within the AWS WAF Classic console.

Remediation Steps:

To ensure compliance with the rule requiring at least one condition for AWS Foundational Security Best Practices in AWS WAF Classic global rules, follow these steps:

1.
Log in to the AWS Management Console.

2.
Navigate to the AWS WAF service.

3.
Select the AWS WAF Classic option.

4.
Click on the Global Rules tab.

5.
Review the existing rules and identify a rule that lacks a condition aligned with AWS Foundational Security Best Practices.

6.
Edit the rule and add a new condition based on the recommended security best practices.

7.
Save the changes to update the global rule.

By following these steps, you can ensure that your AWS WAF Classic global rules incorporate conditions that adhere to AWS Foundational Security Best Practices, thereby strengthening the security posture of your applications.

AWS WAF Classic Global Rules Must Contain Conditions

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Troubleshooting Steps:

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Necessary Codes:

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Remediation Steps:

Is your System Free of Underlying Vulnerabilities? Find Out Now

Troubleshooting Steps:

Necessary Codes:

Remediation Steps:

Is your System Free of Underlying Vulnerabilities?
Find Out Now