AWS::WAFv2::RuleGroup GeoMatchStatement - AWS CloudFormation

AWS::WAFv2::RuleGroup GeoMatchStatement

Note

This is the latest version of AWS WAF, named AWS WAFV2, released in November, 2019. For information, including how to migrate your AWS WAF resources from the prior release, see the AWS WAF Developer Guide.

A rule statement used to identify web requests based on country of origin.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

{ "CountryCodes" : [ String, ... ], "ForwardedIPConfig" : ForwardedIPConfiguration }

Properties

CountryCodes

An array of two-character country codes, for example, [ "US", "CN" ], from the alpha-2 country ISO codes of the ISO 3166 international standard.

Required: No

Type: List of String

Update requires: No interruption

ForwardedIPConfig

The configuration for inspecting IP addresses in an HTTP header that you specify, instead of using the IP address that's reported by the web request origin. Commonly, this is the X-Forwarded-For (XFF) header, but you can specify any header name.

Note

If the specified header isn't present in the request, AWS WAF doesn't apply the rule to the web request at all.

Required: No

Type: ForwardedIPConfiguration

Update requires: No interruption