In Baseline rule groups - AWS WAF, AWS Firewall Manager, and AWS Shield Advanced the SizeRestrictions_BODY rule states that it will allow only 8kb of request body.
I have used terraform to make sure that all common rule set are created in below code.
resource "aws_wafv2_web_acl" "alb_waf_acl" {
name = "api-alb-waf-acl-${var.usage}"
scope = "REGIONAL"
description = "WAF ACL for the Data Refinery ALB"
default_action {
allow {}
}
rule {
name = "base-rule"
priority = 1
override_action {
none {}
}
statement {
managed_rule_group_statement {
vendor_name = "AWS"
name = "AWSManagedRulesCommonRuleSet"
}
}
visibility_config {
cloudwatch_metrics_enabled = false
metric_name = "api-alb-waf-acl-base-rule-${var.usage}"
sampled_requests_enabled = false
}
}
visibility_config {
cloudwatch_metrics_enabled = false
metric_name = "api-alb-waf-acl-${var.usage}"
sampled_requests_enabled = false
}
tags = {
Name = "api_alb_waf_acl_${var.usage}"
}
resource "aws_wafv2_web_acl_association" "alb_waf_association" {
resource_arn = aws_lb.alb.arn
web_acl_arn = aws_wafv2_web_acl.alb_waf_acl.arn
timeouts {
create = "10m"
}
}
How do I change the code such that I can either increase the SizeRestrictions_BODY limit to 100mb or remove this rule all together.
Thanks in Advance!