---
title: Getting Started with Datadog
description: Datadog, the leading service for cloud-scale monitoring.
breadcrumbs: Docs > Infrastructure > Datadog Resource Catalog
---

# aws_waf_rule{% #aws_waf_rule %}

## `account_id`{% #account_id %}

**Type**: `STRING`

## `metric_name`{% #metric_name %}

**Type**: `STRING`**Provider name**: `MetricName`**Description**: A friendly name or description for the metrics for this `Rule`. The name can contain only alphanumeric characters (A-Z, a-z, 0-9), with maximum length 128 and minimum length one. It can't contain whitespace or metric names reserved for AWS WAF, including "All" and "Default_Action." You can't change `MetricName` after you create the `Rule`.

## `name`{% #name %}

**Type**: `STRING`**Provider name**: `Name`**Description**: The friendly name or description for the `Rule`. You can't change the name of a `Rule` after you create it.

## `predicates`{% #predicates %}

**Type**: `UNORDERED_LIST_STRUCT`**Provider name**: `Predicates`**Description**: The `Predicates` object contains one `Predicate` element for each ByteMatchSet, IPSet, or SqlInjectionMatchSet object that you want to include in a `Rule`.

- `data_id`**Type**: `STRING`**Provider name**: `DataId`**Description**: A unique identifier for a predicate in a `Rule`, such as `ByteMatchSetId` or `IPSetId`. The ID is returned by the corresponding `Create` or `List` command.
- `negated`**Type**: `BOOLEAN`**Provider name**: `Negated`**Description**: Set `Negated` to `False` if you want AWS WAF to allow, block, or count requests based on the settings in the specified ByteMatchSet, IPSet, SqlInjectionMatchSet, XssMatchSet, RegexMatchSet, GeoMatchSet, or SizeConstraintSet. For example, if an `IPSet` includes the IP address `192.0.2.44`, AWS WAF will allow or block requests based on that IP address. Set `Negated` to `True` if you want AWS WAF to allow or block a request based on the negation of the settings in the ByteMatchSet, IPSet, SqlInjectionMatchSet, XssMatchSet, RegexMatchSet, GeoMatchSet, or SizeConstraintSet. For example, if an `IPSet` includes the IP address `192.0.2.44`, AWS WAF will allow, block, or count requests based on all IP addresses except `192.0.2.44`.
- `type`**Type**: `STRING`**Provider name**: `Type`**Description**: The type of predicate in a `Rule`, such as `ByteMatch` or `IPSet`.

## `rule_arn`{% #rule_arn %}

**Type**: `STRING`

## `rule_id`{% #rule_id %}

**Type**: `STRING`**Provider name**: `RuleId`**Description**: A unique identifier for a `Rule`. You use `RuleId` to get more information about a `Rule` (see GetRule), update a `Rule` (see UpdateRule), insert a `Rule` into a `WebACL` or delete a one from a `WebACL` (see UpdateWebACL), or delete a `Rule` from AWS WAF (see DeleteRule). `RuleId` is returned by CreateRule and by ListRules.

## `tags`{% #tags %}

**Type**: `UNORDERED_LIST_STRING`