Select your cookie preferences

We use essential cookies and similar tools that are necessary to provide our site and services. We use performance cookies to collect anonymous statistics, so we can understand how customers use our site and make improvements. Essential cookies cannot be deactivated, but you can choose “Customize” or “Decline” to decline performance cookies.

If you agree, AWS and approved third parties will also use cookies to provide useful site features, remember your preferences, and display relevant content, including relevant advertising. To accept or decline all non-essential cookies, choose “Accept” or “Decline.” To make more detailed choices, choose “Customize.”

Skip to main content

AWS Web Application Firewall

Benefits of AWS WAF

Save time with managed rules so you can spend more time building applications.
More easily monitor, block, or rate-limit common and pervasive bots.
Improve web traffic visibility with granular control over how metrics are emitted.

Why AWS WAF?

With AWS WAF, you can create security rules that control bot traffic and block common attack patterns such as SQL injection or cross-site scripting (XSS).

Use cases

Create rules to filter web requests based on conditions such as IP addresses, HTTP headers and body, or custom URIs.

Learn more about creating rules

Monitor your application’s login page for unauthorized access to user accounts using compromised credentials.

Learn more about fraud prevention

Create and maintain rules automatically and incorporate them into the development and design process.

Learn more about APIs

Continously monitor and automatically mitigate application layer (layer 7) distributed denial of service (DDoS) events within seconds.