To promote consistent monitoring across your cloud apps, we're expanding our AWS monitoring footprint into the cloud security services domain. Today we're excited to announce our first such integration with AWS Web Application Firewall (WAF), a leading cloud native firewall service that simplifies security management. For Site24x7 customers, this means web access control list (ACL) monitoring in minutes; metrics, alerts, and dashboards; improved data retention; and more.
Some use cases
- Imagine you've created a web ACL with multiple rules to prevent common web exploits. Using our integration, you can analyze blocked requests across each rule and make informed decisions about deleting unnecessary rules to reduce costs (AWS WAF charges you based on the number of ACLs and rules).
- Imagine you've created a web ACL with a single rule that blocks requests from a particular IP address range to protect your web app from spammers. You can monitor the count of web requests that match the rule over a period of time to gauge the security rule's effectiveness and update it if necessary. Learn more.
A few things about the integration
Licensing: Each web ACL is considered a basic monitor.
Availability: The AWS WAF integration is available to all Site24x7 subscription users.
AWS IAM Policy: If you've assigned a custom policy to the Site24x7 IAM entity (IAM user or Role), then please add the following read-level actions to the policy JSON to help us collect information about your web ACLs: waf:Get*, waf:List*, waf-regional:List*, and waf-regional:Get*. If you've already assigned the AWS managed policy ReadOnlyAccess, you can start monitoring your web ACLs right away by enabling the integration using the Service View UI controls.
Well, that's it for now. If you have any feedback or suggestions on what AWS services we should support next, post it as a reply to this community post. If you have any questions, get in touch with us at [email protected].