I am new to AWS, working on AWS WAF and creating ACLs. Under this, you have to write custom conditions and rules, and associate them to a Load Balancer.
So, your incoming traffic will be handled by your ACL rules.
But if I don't want to make any conditions and rules I just make an empty rule and assign it to the ACL, So the ACL cannot handle its default condition check itself?
Microsoft Azure application gateway has built-in rules you don't have to write any condition for basic attacks, So is there any feature available in AWS WAF?
Is it mandatory to write the rules for ACL? Does an ACL not handle some basic attacks itself?
You can create empty WebACL and associate it, but it won't do anything.
AWS WAF has a built-in condition for detecting SQL injection and cross-site scripting. Creating this condition and assigning to rule takes only a minute.
String/regex match condition is also simple to use (if you are looking to block specific traffic pattern.) Just add strings and specify field you want WAF to look for.
IP match condition is self-explanatory, just block IPs that you don't want.
There are some prepackaged rules that you can buy from AWS Marketplace, but it can be costly.