AWS WAF is a web application firewall that helps protect your web applications from common web exploits.
Enable this integration to see your WAF metrics in Datadog.
If you haven’t already, set up the Amazon Web Services integration first.
In the AWS integration tile, ensure that WAF
is checked under metric collection. If you are using the new WAFV2 endpoint, ensure that WAFV2
is checked under metric collection.
Install the Datadog - AWS WAF integration.
Enable logging to get detailed information about your web ACL analyzed traffic:
Amazon Kinesis Data Firehose
with a name starting with aws-waf-logs-
.Amazon Kinesis Data Firehose
destination, pick Amazon S3
and make sure you add waf
as prefix.The WAF logs are now collected and sent to a S3 bucket.
Object Created (All)
then click on the add button.aws.wafv2.allowed_requests (gauge) | The number of allowed web requests. Shown as request |
aws.wafv2.blocked_requests (gauge) | The number of blocked web requests. Shown as request |
aws.wafv2.counted_requests (gauge) | The number of counted web requests. Shown as request |
aws.wafv2.passed_requests (gauge) | The number of passed web requests. Shown as request |
aws.waf.allowed_requests (gauge) | The number of allowed web requests. Shown as request |
aws.waf.blocked_requests (gauge) | The number of blocked web requests. Shown as request |
aws.waf.counted_requests (gauge) | The number of counted web requests. Shown as request |
aws.waf.passed_requests (gauge) | The number of passed web requests. Shown as request |
waf.allowed_requests (gauge) | The number of allowed web requests. Shown as request |
waf.blocked_requests (gauge) | The number of blocked web requests. Shown as request |
waf.counted_requests (gauge) | The number of counted web requests. Shown as request |
waf.passed_requests (gauge) | The number of passed web requests. Shown as request |
Note: Both aws.waf.*
and waf.*
metrics are reported due to the historic format of the CloudWatch metric APIs for WAF.
Each of the metrics retrieved from AWS is assigned the same tags that appear in the AWS console, including but not limited to host name, security-groups, and more.
The AWS WAF integration does not include any events.
The AWS WAF integration does not include any service checks.
Need help? Contact Datadog support.
On this Page