Amazon Managed Rules for Amazon WAF
This section explains what Amazon Managed Rules for Amazon WAF is.
Amazon Managed Rules for Amazon WAF is a managed service that provides protection against application vulnerabilities or other unwanted traffic. You have the option of selecting one or more rule groups from Amazon Managed Rules for each web ACL, up to the maximum web ACL capacity unit (WCU) limit.
Mitigating false positives and testing rule group changes
Before using any managed rule group in production, test it in a non-production environment according to the guidance at Testing and tuning your Amazon WAF protections. Follow the testing and tuning guidance when you add a rule group to your web ACL, to test a new version of a rule group, and whenever a rule group isn't handling your web traffic as you need it to.
Shared security responsibilities
Amazon Managed Rules are designed to protect you from common web threats. When used in
accordance with the documentation, Amazon Managed Rules rule groups add another layer of security for
your applications. However, Amazon Managed Rules rule groups aren't intended as a replacement for your
security responsibilities, which are determined by the Amazon resources that you
select. Refer to the Shared
Responsibility Model
Important
Amazon Managed Rules are designed to protect you from common web threats. When used in accordance
with the documentation, Amazon Managed Rules rule groups add another layer of security for your
applications. However, Amazon Managed Rules rule groups aren't intended as a replacement for
your security responsibilities, which are determined by the Amazon resources
that you select. Refer to the Shared
Responsibility Model