AWS WAF Bot Control examples

This section shows example configurations that satisfy a variety of common use cases for AWS WAF Bot Control implementations.

Each example provides a description of the use case and then shows the solution in JSON listings for the custom configured rules.

Note

The JSON listings shown in these examples were created in the console by configuring the rule and then editing it using the Rule JSON editor.

Topics

• Bot Control example: Simple configuration
• Bot Control example: Explicitly allow verified bots
• Bot Control example: Block verified bots
• Bot Control example: Allow a specific blocked bot
• Bot Control example: Create an exception for a blocked user agent
• Bot Control example: Use Bot Control only for the login page
• Bot Control example: Use Bot Control only for dynamic content
• Bot Control example: Exclude IP range from bot management
• Bot Control example: Allow traffic from a bot that you control
• Bot Control example: Targeted inspection level
• Bot Control example: Use two statements to limit the use of the targeted inspection level