Re: AWS WAF list

2024-02-20 Thread Owen DeLong via NANOG
;> From: NANOG > <mailto:edylie@nanog.org>> On Behalf Of Owen DeLong via NANOG >> Sent: Wednesday, 21 February 2024 7:04 am >> To: j...@joelesler.net <mailto:j...@joelesler.net> >> Cc: NANOG mailto:nanog@nanog.org>> >> Subject: R

Re: AWS WAF list

2024-02-20 Thread Tom Beecher
the website to request them > to talk to the waf list provider to remove victim ip block? > > > > Edy > > > > *From:* NANOG *On Behalf Of *Owen > DeLong via NANOG > *Sent:* Wednesday, 21 February 2024 7:04 am > *To:* j...@joelesler.net > *Cc:* NANOG > *Subje

RE: AWS WAF list

2024-02-20 Thread Pui Ee Luun Edylie
February 2024 7:04 am To: j...@joelesler.net Cc: NANOG Subject: Re: AWS WAF list Unfortunately, the victim doesn’t chose the WAF list, the web site that is causing the victim grief chooses the WAF list. Owen On Feb 20, 2024, at 14:15, j...@joelesler.net <mailto:j...@joelesler.

Re: AWS WAF list

2024-02-20 Thread Owen DeLong via NANOG
Unfortunately, the victim doesn’t chose the WAF list, the web site that is causing the victim grief chooses the WAF list. Owen > On Feb 20, 2024, at 14:15, j...@joelesler.net wrote: > > There are other WAF lists available on AWS besides their native one. Ones > that have support. > >> On

Re: AWS WAF list

2024-02-20 Thread joel
There are other WAF lists available on AWS besides their native one. Ones that have support. > On Feb 20, 2024, at 16:18, George Herbert wrote: > > This is terrible advice, but you might need another netblock for the > eyeballs. Possibly a small one with enterprise NAT, but something

Re: AWS WAF list

2024-02-20 Thread George Herbert
This is terrible advice, but you might need another netblock for the eyeballs. Possibly a small one with enterprise NAT, but something outside the AWS list ranges... -George On Mon, Feb 19, 2024 at 7:35 PM Justin H. wrote: > That matches my experience with these types of problems in the

Re: AWS WAF list

2024-02-19 Thread Justin H.
That matches my experience with these types of problems in the past.  Especially when the end-users don't have a process for white-listing.  We actually got a response from one WAF user to "connect to another network to log in, then you should be able to use the site, because it's just the

Re: AWS WAF list

2024-02-18 Thread Owen DeLong via NANOG
The whole situation with these WAF as a service setups is a nightmare for the affected (afflicted) parties. I saw this problem from both sides when I was at Akamai. It’s not great from the service provider side, but it’s an absolute shit show for anyone on the wrong side of a block. There’s

Re: AWS WAF list

2024-02-16 Thread Justin H.
Justin H. wrote: Hello, We found out recently that we are on the HostingProviderIPList (found here https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-ip-rep.html) at AWS and it's affecting our customers' access to various websites.  We are a datacenter, and a