AWS waf documentation change
Summary
Added warning about unofficial support for AWS RAM prefix list sharing
Security assessment
Highlights potential reliability risks of unsupported configurations that could lead to security gaps if features break unexpectedly. While not directly documenting a security feature, it warns about configuration risks.
Diff
diff --git a/waf/latest/developerguide/security-group-policies.md b/waf/latest/developerguide/security-group-policies.md index aed96cb30..0ba71f91a 100644 --- a//waf/latest/developerguide/security-group-policies.md +++ b//waf/latest/developerguide/security-group-policies.md @@ -101,0 +102,2 @@ The following are miscellaneous caveats and limitations for Firewall Manager sec + * The use of AWS RAM to share prefix lists across an organization is not an officially supported feature of Firewall Manager. While it may happen to work today, there is neither an obligation for AWS to offer support for that use case nor any guarantee that it will continue to work. +