CloudFront, a global edge network, combined with AWS WAF, a web application firewall, accelerates and secures your web applications by serving content close to viewers from distributed edge locations while blocking malicious requests before they reach origins.

<div>
<p>This article provides a guide on how to use Amazon CloudFront and AWS WAF to accelerate and protect your websites. It covers the benefits of using these services together, the key building blocks of CloudFront, CloudFront policies, and how to add AWS WAF to a CloudFront distribution.</p>
<p>Specifically, the article covers:</p>
<ul>
<li>Why you should use CloudFront with AWS WAF (content acceleration, high availability, security controls)</li>
<li>Understanding CloudFront's building blocks (distributions, origins, cache behaviors, policies, edge functions)</li>
<li>CloudFront policies (Cache Policies, Origin Request Policies, Response Header Policies)</li>
<li>Modeling CloudFront configuration to your application needs</li>
<li>Adding AWS WAF WebACL to your CloudFront distribution</li>
<li>Considerations for configuring AWS WAF rules (threat modeling, rule order, scope, operational aspects)</li>
<li>Conclusion and further resources</li>
</ul>
</div>


Accelerate and protect your websites using Amazon CloudFront and AWS WAF

Related articles