AWS Config Rule: WAF Regional Rule Not Empty
WAF_REGIONAL_RULE_NOT_EMPTY
Eduardo Van Cauteren
Last Update 2 months ago
Description: Checks whether WAF regional rule contains conditions. This rule is COMPLIANT if the regional rule contains at least one condition and NON_COMPLIANT otherwise.
Trigger type: Configuration changes
AWS Region: All supported AWS regions except Asia Pacific (Jakarta), Middle East (UAE), Asia Pacific (Hyderabad), AWS GovCloud (US-East), AWS GovCloud (US-West), Israel (Tel Aviv), Europe (Spain), Europe (Zurich) Region
How to Resolve Manually
This rule evaluates if a WAF regional rule includes conditions. It's marked as compliant if the regional rule has at least one condition, and non-compliant if it doesn't.
You can resolve this by deleting the rule if it's not being used or add a condition to it.
To add conditions, head on over to the WAF & Shield service and then click on Switch to AWS WAF Classic from the left menu.
Click on Rules and in the filter dropdown menu choose the appropriate region. From the list, click on the name of the rule that is not compliant and finally click on the Edit rule button to add conditions.
Check the following screenshot as reference:
Want to know more about StackZone and how to make your cloud management simple and secure?
Check our how it works section with easy to follow videos or just create your own StackZone Account here
