WAF

Common constructs for AWS WAF

Akamai SiteShield WebACL

The AkamaiSiteshieldWebACL construct can be used to set up a WAFv2 WebACL that only allows traffic from Akamai to reach the protected resource. The setup uses the commonly maintained SiteShield IP list which is automatically updated to the shared WAF RuleGroups the WebACL uses. More info below:

• General info about the Akami SiteShield in Akamai SiteShield guidelines
• Instructions for using the Shared WAF RuleGroups