We have implemented AWS WAF solution for our customer because of unsatisfactory results of penetration tests against application Omnius AS. After considering desired behaviour and then current setup WAF was implemented with conjuction of amazon ALB. Public DNS alias was redirected to newly created ALB public IP which was configured to forward needed ports to original IIS hosted web service. Final configuration of WAF was performed in cooperation with 3rd party security penetration testing company to full compliance with security, resulting in satisfactory pen test results.
Implementation of AWS WAF solution was successfully done
05 / 09 / 2017