How to Secure Our Resources From DDoS Attacks With AWS WAF & Shield?

In this article, we will learn in detail about WAF, DDoS attacks, and Amazon WAF & Shield. We will create the necessary environment for the WAF test. For this, we will build an Application consisting of a Static Web Server (EC2 instance), Load Balancer, and Target Group. We will mitigate an application layer DDoS attack on the web server that we build, by defining rules and then by creating rule groups with defined rules and later by associating them to Web ACLs, step by step.
Then, we will create a test script and apply it to the web server that we build. Finally, we will examine and analyze the output on AWS WAF dashboard charts and CloudWatch.

Topics we will cover:

1. What is WAF?

2. AWS WAF & Shield

2.1. AWS WAF

2.2. AWS Shield