AWS waf documentation change
Summary
Added note about DDoS mitigation configuration conflicts with Firewall Manager
Security assessment
Highlights a security service interaction consideration but does not address a specific vulnerability.
Diff
diff --git a/waf/latest/developerguide/how-fms-manages-web-acls.md b/waf/latest/developerguide/how-fms-manages-web-acls.md index 620b14a6e..fd5791f17 100644 --- a//waf/latest/developerguide/how-fms-manages-web-acls.md +++ b//waf/latest/developerguide/how-fms-manages-web-acls.md @@ -74,0 +75,4 @@ A web ACL that Firewall Manager retrofits has the name that the customer account +###### Note + +If a resource configured with [advanced automatic application layer DDoS mitigation](./ddos-automatic-app-layer-response.html) comes into scope of a AWS WAF policy, Firewall Manager will be unable to associate the web ACL created by the AWS WAF policy to the resource. +