AWS elasticloadbalancing documentation change
Summary
Added note about configuring 'WAF HTTP/2 traffic inspection behavior' setting for Application Load Balancer
Security assessment
The change documents a security feature (WAF inspection timing) but doesn't indicate any vulnerability fix. It enhances awareness of security configuration options without addressing a specific security incident.
Diff
diff --git a/elasticloadbalancing/latest/application/load-balancer-integrations.md b/elasticloadbalancing/latest/application/load-balancer-integrations.md index a50db34fd..5131ca72b 100644 --- a//elasticloadbalancing/latest/application/load-balancer-integrations.md +++ b//elasticloadbalancing/latest/application/load-balancer-integrations.md @@ -78,0 +79,4 @@ For more information, see [Using web ACLs in AWS WAF](https://docs.aws.amazon.co +###### Note + +Review the **WAF HTTP/2 traffic inspection behavior** setting which controls when AWS WAF inspects HTTP/2 request bodies for your Application Load Balancer. The inspection timing affects both security coverage and compatibility with different application communication patterns. To configure this setting, navigate to your target group's **Edit target group attributes** page and locate the **WAF HTTP/2 traffic inspection behavior** configuration. +