Web ACL rule and rule group evaluation - AWS WAF, AWS Firewall Manager, and AWS Shield Advanced

Web ACL rule and rule group evaluation

The way a web ACL handles a web request depends on the following:

  • The numeric priority settings of the rules in the web ACL and inside rule groups

  • The action settings on the rules and web ACL

  • Any overrides that you place on the rules in the rule groups that you add

For a list of the rule action settings, see Rule action.

You can customize request and response handling in your rule action settings and default web ACL action settings. For information, see Customized web requests and responses in AWS WAF.