'AWS WAF: How to make custom response code with managed rules for block actions

AWS added the option to return custom status code, instead of the default 403.

From here: https://aws.amazon.com/blogs/security/customize-requests-and-responses-with-aws-waf/ I added custom status for my own rules, but it seems like for managed rules (e.g - Cyber Security Cloud Managed Rules), there is no way to change the action and status.

Can someone help here please?

amazon-waf


Solution 1:[1]

You will have to use labels for this: https://docs.aws.amazon.com/waf/latest/developerguide/waf-rule-labels.html

Write a custom rule to act on the labels and then have a custom response on the custom rule you create.

Use custom responses to change the default block action for a managed rule group

Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source
Solution 1 Shitij Mathur

Related Questions

Terraform update Route53 DOMAIN NameServers

Terraform update Route53 DOMAIN NameServers

Terraform update Route53 DOMAIN NameServers

Amazon AWS S3 to Force Download Mp3 File instead of Stream It

How to enable terraform module only with a specific workspace

AWS RDS Postgres: WAL_LEVEL not set to 'logical' after changing rds.logical_replication = 1

Use terraform to set up a lambda function triggered by a scheduled event source

Use terraform to set up a lambda function triggered by a scheduled event source

Self stopping EC2 once task complete?

AWS - SWF - Asynchronous method

Why my cloudformation template is over 1 MB?

AWS elastic beanstalk - WARN install EACCES: permission denied, access '/tmp/.npm'

Aws step functions - Resume from failed step function activity instead of starting a new execution

Redirect Elastic Beanstalk URL to domain name

node-lambda - TypeError: handler is not a function