AWS waf documentation change
Summary
Added details about Shield Advanced subscription inclusions (Layer 7 Anti-DDoS Managed Rule group) and request quota limits
Security assessment
The change documents security-related service inclusions (DDoS protection features) but does not indicate a security vulnerability fix
Diff
diff --git a/waf/latest/developerguide/ddos-get-started-web-acl-rbr.md b/waf/latest/developerguide/ddos-get-started-web-acl-rbr.md index 7db5035d4..83a3e0838 100644 --- a//waf/latest/developerguide/ddos-get-started-web-acl-rbr.md +++ b//waf/latest/developerguide/ddos-get-started-web-acl-rbr.md @@ -23 +23 @@ Enabling Shield Advanced automatic application layer DDoS mitigation adds a rule -Your subscription to Shield Advanced does not cover the use of AWS WAF for resources that you do not protect using Shield Advanced. It also does not cover any additional non-standard AWS WAF costs for protected resources. Examples of non-standard AWS WAF costs are those for Bot Control, for the CAPTCHA rule action, for web ACLs that use more than 1,500 WCUs, and for inspecting the request body beyond the default body size. The full list is provided on the AWS WAF pricing page. +Your subscription to Shield Advanced does not cover the use of AWS WAF for resources that you do not protect using Shield Advanced. It also does not cover any additional non-standard AWS WAF costs for protected resources. Examples of non-standard AWS WAF costs are those for Bot Control, for the CAPTCHA rule action, for web ACLs that use more than 1,500 WCUs, and for inspecting the request body beyond the default body size. The full list is provided on the AWS WAF pricing page. Your subscription to Shield Advanced includes access to the Layer 7 Anti-DDoS Amazon Managed Rule group. As part of your subscription, you will get up to 50 billion requests to Shield Advanced protected AWS WAF resources in a calendar month. Requests beyond 50 billion will be billed as per the AWS Shield Advanced pricing page.