Introducing a new console experience for AWS WAF
You can now use the updated experience to access AWS WAF functionality anywhere in the console. For more details, see Working with the updated console experience.
Common use cases for network security director
Network security director helps you identify and mitigate network security issues through the following use cases:
- Overly permissive access to Amazon EC2 instances
-
Identify security groups and network ACLs that allow unrestricted access to high-risk ports (such as 22 and 3389) on your VPCs and Amazon EC2 instances. Get step-by-step guidance for implementing appropriate security group and NACL rules to restrict access to these ports.
- Internet-exposed resources
-
Identify resources that are accessible from the internet through an internet gateway.
- Insufficient AWS WAF protection
-
Identify internet-facing resources and assess their AWS WAF protection status. Get guidance for configuring and deploying AWS WAF, including recommendations for rate-limiting rules and AWS Managed Rules rule groups.
- Known threats
-
Identify resources exposed to known threats, including DDoS attacks, SQL injection, and cross-site scripting (XSS). Get step-by-step instructions for implementing custom rules or AWS WAF AWS Managed Rules rule groups for protection.
- Unattached security services
-
Identify AWS WAF web ACLs, security groups, and NACLs that aren't protecting any resources. Get guidance for either removing them or adding recommended rules for future use.
