AWS waf documentation change
Summary
Updated terminology from 'protection pack or web ACL' to 'protection pack (web ACL)' in two places for consistency
Security assessment
The change standardizes phrasing without altering security logic. It describes existing rate-limiting features but does not introduce new security content or address security flaws.
Diff
diff --git a/waf/latest/developerguide/waf-rate-based-example-limit-labels.md b/waf/latest/developerguide/waf-rate-based-example-limit-labels.md index e53f12bcd..5d514a52c 100644 --- a//waf/latest/developerguide/waf-rate-based-example-limit-labels.md +++ b//waf/latest/developerguide/waf-rate-based-example-limit-labels.md @@ -11 +11 @@ You can now use the updated experience to access AWS WAF functionality anywhere -To limit the number of requests of various categories, you can combine rate limiting with any rule or rule group that add labels to requests. To do this, you configure your protection pack or web ACL as follows: +To limit the number of requests of various categories, you can combine rate limiting with any rule or rule group that add labels to requests. To do this, you configure your protection pack (web ACL) as follows: @@ -15 +15 @@ To limit the number of requests of various categories, you can combine rate limi - * Add a rate-based rule to your protection pack or web ACL with a priority number setting that is higher than the labeling rules and rule groups. AWS WAF evaluates rules in numeric order, starting from the lowest, so your rate-based rule will run after the labeling rules. Configure your rate limiting on the labels using a combination of label matching in the rule's scope-down statement and label aggregation. + * Add a rate-based rule to your protection pack (web ACL) with a priority number setting that is higher than the labeling rules and rule groups. AWS WAF evaluates rules in numeric order, starting from the lowest, so your rate-based rule will run after the labeling rules. Configure your rate limiting on the labels using a combination of label matching in the rule's scope-down statement and label aggregation. @@ -22 +22 @@ The following example uses the Amazon IP reputation list AWS Managed Rules rule -The following protection pack or web ACL JSON listing uses the IP reputation rule group followed by a label-matching rate-based rule. The rate-based rule uses a scope-down statement to filter for requests that have been marked by the rule group rule. The rate-based rule statement aggregates and rate limits the filtered requests by their IP addresses. +The following protection pack (web ACL) JSON listing uses the IP reputation rule group followed by a label-matching rate-based rule. The rate-based rule uses a scope-down statement to filter for requests that have been marked by the rule group rule. The rate-based rule statement aggregates and rate limits the filtered requests by their IP addresses.