Introducing a new console experience for Amazon WAF
You can now use the updated experience to access Amazon WAF functionality anywhere in the console. For more details, see Working with the updated console experience.
How the migration works
You can migrate your web ACLs from Amazon WAF Classic to Amazon WAF v2 using several methods. Follow these steps to complete your migration.
To migrate from Amazon WAF Classic to Amazon WAF v2
-
Identify your Amazon WAF Classic web ACLs:
-
View a list of your web ACLs in the Amazon Health dashboard.
-
Use the Amazon WAF Classic web ACL cleanup script
to get a list of all your web ACLs and their associations. This helps you identify which web ACLs are actively protecting resources and allows you to delete unused web ACLs.
-
-
Migrate individual web ACLs:
-
Follow the migration process in the Amazon WAF Developer Guide.
-
Use the migration wizard to parse your Amazon WAF Classic web ACL and generate an Amazon CloudFormation template.
-
Use the generated template to create an equivalent Amazon WAF v2 web ACL and complete the migration.
-
-
For multiple eligible web ACLs:
-
Use the Amazon WAF bulk migration script
to migrate multiple eligible Amazon WAF Classic web ACLs simultaneously.
-
-
For web ACLs managed by Amazon Firewall Manager:
-
Firewall Manager policies use Amazon WAF Classic web ACLs with Amazon WAF Classic policies. For Shield Advanced policies created before January 2022, Firewall Manager also uses Amazon WAF Classic web ACLs. You must migrate these policies to use Amazon WAF v2 web ACLs.
Follow the instructions at Migrating Amazon WAF Classic Web ACLs in Firewall Manager.
-
Important
We recommend reviewing each migrated web ACLto ensure it meets your security requirements before associating it with your resources.