This is the new AWS CloudFormation Template Reference Guide. Please update your bookmarks and links. For help getting started with CloudFormation, see the AWS CloudFormation User Guide.
AWS::WAFRegional::RateBasedRule Predicate
Specifies the ByteMatchSet, IPSet, SqlInjectionMatchSet, XssMatchSet, RegexMatchSet, GeoMatchSet, and SizeConstraintSet objects
that you want to add to a Rule and, for each object, indicates whether you want to negate the settings, for example, requests that do
NOT originate from the IP address 192.0.2.44.
Syntax
To declare this entity in your AWS CloudFormation template, use the following syntax:
Properties
DataId-
A unique identifier for a predicate in a
Rule, such asByteMatchSetIdorIPSetId. The ID is returned by the correspondingCreateorListcommand.Required: Yes
Type: String
Pattern:
.*\S.*Minimum:
1Maximum:
128Update requires: No interruption
Negated-
Set
NegatedtoFalseif you want AWS WAF to allow, block, or count requests based on the settings in the specifiedByteMatchSet,IPSet,SqlInjectionMatchSet,XssMatchSet,RegexMatchSet,GeoMatchSet, orSizeConstraintSet. For example, if anIPSetincludes the IP address192.0.2.44, AWS WAF will allow or block requests based on that IP address.Set
NegatedtoTrueif you want AWS WAF to allow or block a request based on the negation of the settings in theByteMatchSet,IPSet,SqlInjectionMatchSet,XssMatchSet,RegexMatchSet,GeoMatchSet, orSizeConstraintSet>. For example, if anIPSetincludes the IP address192.0.2.44, AWS WAF will allow, block, or count requests based on all IP addresses except192.0.2.44.Required: Yes
Type: Boolean
Update requires: No interruption
Type-
The type of predicate in a
Rule, such asByteMatchorIPSet.Required: Yes
Type: String
Allowed values:
IPMatch | ByteMatch | SqlInjectionMatch | GeoMatch | SizeConstraint | XssMatch | RegexMatchUpdate requires: No interruption
