Available for use with Amazon CloudFront distributions and Application Load Balancers.
Match against the request's JA4 fingerprint. The JA4 fingerprint is a 36-character
hash derived from the TLS Client Hello of an incoming request. This fingerprint serves
as a unique identifier for the client's TLS configuration. WAF calculates and logs
this fingerprint for each request that has enough TLS Client Hello information for
the calculation. Almost all web requests include this information.
You can use this choice only with a string match ByteMatchStatement with the
PositionalConstraint set to EXACTLY.
You can obtain the JA4 fingerprint for client requests from the web ACL logs. If WAF is able to calculate the fingerprint, it includes it in the logs. For information about the logging fields, see Log fields in the WAF Developer Guide.
Provide the JA4 fingerprint string from the logs in your string match statement specification, to match with any future requests that have the same TLS configuration.
Inheritance Hierarchy
Namespace: Amazon.WAFV2.Model
Assembly: AWSSDK.WAFV2.dll
Version: 3.x.y.z
Syntax
public class JA4Fingerprint
The JA4Fingerprint type exposes the following members
Constructors
| Name | Description | |
|---|---|---|
|
JA4Fingerprint() |
Properties
| Name | Type | Description | |
|---|---|---|---|
|
|
FallbackBehavior | Amazon.WAFV2.FallbackBehavior |
Gets and sets the property FallbackBehavior. The match status to assign to the web request if the request doesn't have a JA4 fingerprint. You can specify the following fallback behaviors:
|
Version Information
.NET:
Supported in: 8.0 and newer, Core 3.1
.NET Standard:
Supported in: 2.0
.NET Framework:
Supported in: 4.5 and newer, 3.5