amazon-web-services amazon-cloudwatch amazon-waf

AWS Web Application Firewall Metrics: Rules & Rule Groups

I am trying to put alarms in place to monitor blocked requests. I'm making use of several AWS Managed Rule Groups as part of my rules.

After looking at the AWS documentation for WAF metrics, I'm uncertain whether my alarm dimensions should be based on a rule, or a rule group.

The confusion stems from the rules themselves containing the managed rule groups. Should I provide the managed rule group or simply my rule which contains the managed rule group as the dimension for my cloudwatch metric alarms?

Solution

When specifying a rule, you have the option to create a CloudWatch metric for it. That metric name is then used, along with dimensions, to build out the alarms for BlockedRequests, AllowedRequests, etc.

This allows you to create general monitoring for the entire rule group.

How to pull every single image (tag or untagged) from AWS ECR?
In CloudFormation how can I link RDS and Secrets Manager so I don't have to hardcode the password?
How to install postgresql-client to Amazon EC2 Linux machine?
PyCharm: Why "Python Console" is not accessing ~\.aws\credentials file? How to set it within "Python Console"
Is it possible to run aws s3 sync with boto3?
Python 3 asyncio with aioboto3 seems sequential
Serverless / AWS Lambda - Create the triggers for the published lambda versions
AWS Glue missing permissions
Invoking lambda from API gateway test, but hitting the endpoint does not invoke the lambda. 500 returned
terraform destroy needs original terraform code to destroy?
How to correctly/safely access parameters from AWS SSM Parameter store for my Python script on EC2 instance?
Why is my image not displaying on my Web page?
How to copy blobs from azure to aws using python?
S3 Bucket action doesn't apply to any resources
Couldn't proceed with upgrade process as new nodes are not joining node group standard-workers
How to customize "From" name for SNS emails
Changing the name of a Load Balancer on AWS Console
how to decrease the exceution time of aws lambda function nodejs
Timeout when trying to retrieve EC2 instance-id metadata from within it
Row was updated or deleted by another transaction (or unsaved-value mapping was incorrect)
Downloading an entire S3 bucket?
Unable to unzip .zip file on linux machine
Missing Authentication Token while accessing API Gateway?
AWS S3 Access Denied when open object URL in browser
How to update a nested field in dynamodb via cli?
AWS Lambda NodeJs unable to return response
How can I access my AWS MSK managed kafka queue from my local machine and EC2 instances in other regions
How to recreate EC2 instances of an autoscaling group with terraform?
AWS Cloudwatch Alarm Issue
AWS EC2 | using Rusoto SDK: Couldn't find AWS credentials