AWS::WAFv2::WebACL IPSetReferenceStatement - AWS CloudFormation

AWS::WAFv2::WebACL IPSetReferenceStatement


This is the latest version of AWS WAF, named AWS WAFV2, released in November, 2019. For information, including how to migrate your AWS WAF resources from the prior release, see the AWS WAF Developer Guide.

A rule statement used to detect web requests coming from particular IP addresses or address ranges. To use this, create an IPSet that specifies the addresses you want to detect, then use the ARN of that set in this statement. To create an IP set, see CreateIPSet.

Each IP set rule statement references an IP set. You create and maintain the set independent of your rules. This allows you to use the single set in multiple rules. When you update the referenced set, AWS WAF automatically updates all rules that reference it.


To declare this entity in your AWS CloudFormation template, use the following syntax:


{ "Arn" : String }


Arn: String



The Amazon Resource Name (ARN) of the IPSet that this statement references.

Required: Yes

Type: String

Minimum: 20

Maximum: 2048

Pattern: .*\S.*

Update requires: No interruption