Cloud Defense Logo

Products

Solutions

Company

Book A Live Demo

ELB Application Load Balancers Should Have WAF Enabled Rule

This rule states that ELB application load balancers must have Web Application Firewall (WAF) enabled for security.

RuleELB application load balancers should have Web Application Firewall (WAF) enabled
FrameworkNIST 800-53 Revision 5
Severity
Medium

Rule Description:

ELB (Elastic Load Balancer) application load balancers should have the Web Application Firewall (WAF) enabled to comply with the NIST (National Institute of Standards and Technology) 800-53 Revision 5 security guidelines. The WAF provides protection for web applications against common web exploits and vulnerabilities.

Troubleshooting Steps:

If the Web Application Firewall (WAF) is not enabled on the ELB application load balancers, follow these troubleshooting steps:

  1. 1.

    Verify ELB Configuration: Check the configuration settings of the ELB and ensure that the Web Application Firewall (WAF) is not already enabled.

  2. 2.

    Check WAF Compatibility: Ensure that the ELB application load balancers are compatible with the Web Application Firewall (WAF). Some older ELB versions might not support WAF. If compatibility issues exist, consider upgrading the ELB version.

  3. 3.

    Check WAF Availability: Confirm that the AWS WAF service is available in the intended AWS region where the ELB is deployed. If the WAF service is not available, consider using an alternative solution or choosing a different AWS region.

  4. 4.

    Review WAF Pricing: Understand the cost implications of enabling the Web Application Firewall (WAF) on the ELB application load balancers. Ensure that the necessary budget and resources are allocated accordingly.

Necessary Codes:

No specific codes are required for this rule. Enabling the Web Application Firewall (WAF) on ELB application load balancers involves using the AWS Management Console or command-line interface (CLI) commands.

Step-by-Step Guide for Remediation:

Follow these steps to enable the Web Application Firewall (WAF) for ELB application load balancers:

  1. 1.

    Login to the AWS Management Console or open the AWS CLI.

  2. 2.

    Navigate to the Amazon EC2 service.

  3. 3.

    Locate your Elastic Load Balancer (ELB) in the ELB Dashboard.

  4. 4.

    Select the desired ELB application load balancer.

  5. 5.

    In the navigation pane, choose "Listeners."

  6. 6.

    Click on the listener that you wish to enable the Web Application Firewall (WAF) for.

  7. 7.

    Scroll down to the "Web Application Firewall" section.

  8. 8.

    Click on the "Edit" button.

  9. 9.

    Enable the checkbox for "Enable AWS WAF WebACL (web application firewall)."

  10. 10.

    Select the desired WebACL resources and rules that should be associated with the ELB application load balancer.

  11. 11.

    Click on the "Save" button to apply the changes.

  12. 12.

    Wait for the Web Application Firewall (WAF) configuration to propagate, which may take a few moments.

  13. 13.

    Verify that the Web Application Firewall (WAF) is enabled by testing your web application traffic against common exploits and vulnerabilities.

  14. 14.

    Monitor the WebACL and make any necessary adjustments or updates based on the application's security needs.

By following these steps, you can ensure that ELB application load balancers have the Web Application Firewall (WAF) enabled to comply with NIST 800-53 Revision 5 security guidelines.

Is your System Free of Underlying Vulnerabilities?
Find Out Now