top of page

WAF.2

A WAF Regional rule should have at least one condition

Severity

Cloud Platforms

Resources

Related Standards

Automated

MEDIUM

AWS

Amazon Web Application Firewall

AWS Foundational Best Practice, CDR, SOC2, NIST.800-53.r5,

This control checks whether a WAF Regional rule has at least one condition. The control fails if no conditions are present within a rule.

bottom of page