Deleting a rule group from a Firewall Manager DNS Firewall policy - Amazon WAF, Amazon Firewall Manager, Amazon Shield Advanced, and Amazon Shield network security director
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Introducing a new console experience for Amazon WAF

You can now use the updated experience to access Amazon WAF functionality anywhere in the console. For more details, see Working with the console.

Deleting a rule group from a Firewall Manager DNS Firewall policy

Deleting a rule group

To delete a rule group from a Firewall Manager DNS Firewall policy, you must perform the following steps:

Important

Removing a rule group from your Firewall Manager DNS Firewall policy removes its effect from VPCs that have the policy applied, regardless of whether you also delete the rule group from your DNS Firewall rule groups. Deleting a rule group is a permanent action and can't be undone.

  1. Remove the rule group from your Firewall Manager DNS Firewall policy.

  2. Unshare the rule group in Amazon Resource Access Manager. To unshare a rule group that you own, you must remove it from the resource share. You can do this using the Amazon RAM console or the Amazon CLI. For information about unsharing a resource, see Update a resource share in Amazon RAM in the Amazon RAM User Guide.

  3. Delete the rule group using the DNS Firewall console or Amazon CLI.