42

Network Config Rules

Last Update 3 maanden geleden

AWS Config Rule: WAF V2 Logging Enabled AWS Config Rule: WAF Regional Web ACL Not Empty AWS Config Rule: VPC Subnet Auto Assign Public IP Disabled AWS Config Rule: ACM Certificate Expiration Check AWS Config Rule: ALB HTTP To HTTPS Redirection Check

AWS Config Rules: WAF Global Rule Group Not Empty

WAF_GLOBAL_RULEGROUP_NOT_EMPTY

Eduardo Van Cauteren

Last Update 9 maanden geleden

Description: Checks if an AWS WAF Classic rule group contains any rules. The rule is NON_COMPLIANT if there are no rules present within a rule group.


Trigger type: Configurational Changes


AWS Region: Only available in US East (N. Virginia) Region

How to Resolve Manually

This rule evaluates if a WAF Global Rule Group includes rules. It's marked as compliant if the global rule  group has at least one rule, and non-compliant if it doesn't.


You can resolve this by deleting the rule group if it's not being used or add a rule to it.


To add conditions, head on over to the WAF & Shield service and then click on Switch to AWS WAF Classic from the left menu.

Click on Rule groups and in the filter dropdown menu choose Global (CloudFront) region. From the list, click on the name of the rule group that is not compliant and finally click on the Edit rule group button to add rules to it.

Check the following screenshot as reference:

Want to know more about StackZone and how to make your cloud management simple and secure?

Check our how it works section with easy to follow videos or just create your own StackZone Account here

Was this article helpful?

0 out of 0 liked this article

Still need help? Message Us