AWS waf documentation change
Summary
Expanded AWS Config requirements for DNS Firewall policy to include Route 53 ResolverRuleAssociation
Security assessment
Enhances security monitoring coverage by adding required resource type for configuration tracking, but doesn't address a specific vulnerability
Diff
diff --git a/waf/latest/developerguide/enable-config.md b/waf/latest/developerguide/enable-config.md index 9091153dc..d2f991eea 100644 --- a//waf/latest/developerguide/enable-config.md +++ b//waf/latest/developerguide/enable-config.md @@ -39 +39 @@ If you don't want to enable AWS Config for all resources, then you must enable t - * **DNS Firewall policy** – Enable Config for the resource type EC2 VPC. + * **DNS Firewall policy** – Enable Config for the resource type EC2 VPC and Amazon Route 53 ResolverRuleAssociation.