Class: Aws::WAFV2::Types::AWSManagedRulesAntiDDoSRuleSet

Inherits:

Struct

• Object
• Struct
• Aws::WAFV2::Types::AWSManagedRulesAntiDDoSRuleSet

Includes:

Structure

Defined in:

lib/aws-sdk-wafv2/types.rb

Overview

Configures the use of the anti-DDoS managed rule group, ‘AWSManagedRulesAntiDDoSRuleSet`. This configuration is used in `ManagedRuleGroupConfig`.

The configuration that you provide here determines whether and how the rules in the rule group are used.

For additional information about this and the other intelligent threat mitigation rule groups, see [Intelligent threat mitigation in WAF] and [Amazon Web Services Managed Rules rule groups list] in the *WAF Developer Guide*.

[1]: docs.aws.amazon.com/waf/latest/developerguide/waf-managed-protections [2]: docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-list

See Also:

• AWS API Documentation

Constant Summary

SENSITIVE =

[]

Instance Attribute Summary

• #client_side_action_config ⇒ Types::ClientSideActionConfig

  Configures the request handling that’s applied by the managed rule group rules ‘ChallengeAllDuringEvent` and `ChallengeDDoSRequests` during a distributed denial of service (DDoS) attack.

• #sensitivity_to_block ⇒ String

  The sensitivity that the rule group rule ‘DDoSRequests` uses when matching against the DDoS suspicion labeling on a request.

Instance Attribute Details

#client_side_action_config ⇒ Types::ClientSideActionConfig

Configures the request handling that’s applied by the managed rule group rules ‘ChallengeAllDuringEvent` and `ChallengeDDoSRequests` during a distributed denial of service (DDoS) attack.

Returns:

• (Types::ClientSideActionConfig)

# File 'lib/aws-sdk-wafv2/types.rb', line 252

class AWSManagedRulesAntiDDoSRuleSet < Struct.new(
  :client_side_action_config,
  :sensitivity_to_block)
  SENSITIVE = []
  include Aws::Structure
end

#sensitivity_to_block ⇒ String

The sensitivity that the rule group rule ‘DDoSRequests` uses when matching against the DDoS suspicion labeling on a request. The managed rule group adds the labeling during DDoS events, before the `DDoSRequests` rule runs.

The higher the sensitivity, the more levels of labeling that the rule matches:

• Low sensitivity is less sensitive, causing the rule to match only on the most likely participants in an attack, which are the requests with the high suspicion label ‘awswaf:managed:aws:anti-ddos:high-suspicion-ddos-request`.

• Medium sensitivity causes the rule to match on the medium and high suspicion labels.

• High sensitivity causes the rule to match on all of the suspicion labels: low, medium, and high.

Default: ‘LOW`

Returns:

• (String)

# File 'lib/aws-sdk-wafv2/types.rb', line 252

class AWSManagedRulesAntiDDoSRuleSet < Struct.new(
  :client_side_action_config,
  :sensitivity_to_block)
  SENSITIVE = []
  include Aws::Structure
end