#StackBounty: #amazon-web-services #firewall #access-control-list AWS WAFV2: ACL Rule for allowing access to specific URI Path

Bounty: 50

I have some web acl managed rules in AWS ELB that are blocking webhooks from Pusher api. They don’t provide an IP list that I could include in a white list. I’m trying to create my own rule to allow access to this specific URI /assets/libs/pusher_webhook_presence.php but it doesn’t works and keeps blocking by AWS#AWSManagedRulesAnonymousIpList#HostingProviderIPList

Acl rule that should allow that uri:

{
  "Name": "Allow_Pusher_Webhooks",
  "Priority": 4,
  "Action": {
    "Block": {}
  },
  "VisibilityConfig": {
    "SampledRequestsEnabled": true,
    "CloudWatchMetricsEnabled": true,
    "MetricName": "Allow_Pusher_Webhooks"
  },
  "Statement": {
    "ByteMatchStatement": {
      "FieldToMatch": {
        "UriPath": {}
      },
      "PositionalConstraint": "EXACTLY",
      "SearchString": "/assets/libs/pusher_webhook_presence.php",
      "TextTransformations": [
        {
          "Type": "NONE",
          "Priority": 0
        }
      ]
    }
  }
}

List of managed rules that my web acl has:

AWS-AWSManagedRulesAmazonIpReputationList   
AWS-AWSManagedRulesAdminProtectionRuleSet   
AWS-AWSManagedRulesCommonRuleSet    
AWS-AWSManagedRulesAnonymousIpList

I also tried set its priority to 0, so it would be tested at first but no success. What I’m doing wrong or missing?


Get this bounty!!!

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.