A DoS attack is an old problem for our applications, especially in their distributed versions, the DDoS, where multiple sources (usually hacked devices of many kinds, that form a botnet) try to run a DoS by running so many queries at the same time that a network becomes overloaded. In this case, to defend and continue to serve traffic to legitimate users, it is fundamental to identify and block malicious sources.
It is worth spending a little bit of time reading the official documentation on Denial of Service Attack Mitigation on AWS, at https://aws.amazon.com/answers/networking/aws-ddos-attack-mitigation/. What we want to do here is to focus on a practical example of using WAF.
The AWS WAF can block a single public ...