AWS Security ChangesHomeSearch

AWS waf documentation change

Service: waf · 2025-05-16 · Documentation low

File: waf/latest/developerguide/how-fms-manages-web-acls.md

Summary

Added note about DDoS mitigation configuration conflicts with Firewall Manager

Security assessment

Highlights a security service interaction consideration but does not address a specific vulnerability.

Diff

diff --git a/waf/latest/developerguide/how-fms-manages-web-acls.md b/waf/latest/developerguide/how-fms-manages-web-acls.md
index 620b14a6e..fd5791f17 100644
--- a//waf/latest/developerguide/how-fms-manages-web-acls.md
+++ b//waf/latest/developerguide/how-fms-manages-web-acls.md
@@ -74,0 +75,4 @@ A web ACL that Firewall Manager retrofits has the name that the customer account
+###### Note
+
+If a resource configured with [advanced automatic application layer DDoS mitigation](./ddos-automatic-app-layer-response.html) comes into scope of a AWS WAF policy, Firewall Manager will be unable to associate the web ACL created by the AWS WAF policy to the resource.
+