AWS waf documentation change
Summary
Added documentation for a new DDoSAttackRequests metric and updated the list of namespaces for the DDoSDetected metric.
Security assessment
The change documents a new metric for monitoring DDoS attacks and updates the namespaces for an existing metric, which are part of AWS Shield's security monitoring features. However, there is no indication of a security issue being fixed.
Diff
diff --git a/waf/latest/developerguide/shield-metrics.md b/waf/latest/developerguide/shield-metrics.md index 85ae50000..8cda97efc 100644 --- a//waf/latest/developerguide/shield-metrics.md +++ b//waf/latest/developerguide/shield-metrics.md @@ -64,0 +65 @@ Detection metrics Metric | Description +`DDoSAttackRequests` | The number of requests observed during a DDoS event for a particular Amazon Resource Name (ARN). This metric is available only for Anti-DDoS Managed Rules (AMR) DDoS events. This metic is in the AWS/WAFV2 namespace and has a non-zero value during an event.Units: Requests @@ -73,0 +75,2 @@ Shield Advanced posts the `DDoSDetected` metric with no other dimensions. The re + * AWS/WAFV2 +