Use WAF for Security Protection

ID: rule:aliyun:use-waf-instance-for-security-protection
Severity: high
IaC Types: ROS, Terraform

Description

WEB Application Firewall (WAF) should be used to protect websites and APPs from web-based attacks.

Reason for Violation

The ALB instance does not have WAF enabled, leaving web assets vulnerable to attacks.

Recommendation

Enable WAF for the ALB instance by setting load_balancer_edition to 'StandardWithWaf'.

Resource Types

• ROS: ALIYUN::ALB::LoadBalancer
• Terraform: alicloud_alb_load_balancer