This policy validates that each AWS Elastic Load Balancer is protected by the correct AWS WAF Web ACL. This can prevent many attacks before they reach your web servers, including XSS and SQL injection attacks.
This policy requires configuration before it can be enabled.
To remediate this, assign a WAF Web ACL to the load balancer from the AWS WAF panel.
Using the AWS Console
1. Selecting the region that the WAF and load balancer exist in from the
2. Selecting the Web ACL you would like to associate to the load balancer (one must be created if one does not already exist in the specified region)
3. Selecting the
4. Selecting the
5. Selecting the appropriate resource type in the
6. Selecting the desired load balancer from the
7. Selecting the
AWS WAF Web ACL documentation