We are pleased to announce the release of the “CloudWAF” mode of the Web Application Firewall in the region EU-NL. The Web Application Firewall monitors, filters and blocks HTTP and HTTPS-based network traffic to a web server. The customer can create, manage, configure and monitor the Web Application Firewall as well as configure/activate various policies and log their activities.
Note: Access to the CloudWAF in EU-DE is unfortunately still only possible with whitelisting. Public release will follow in the course of 2026
The new CloudWAF combines the advantages of the existing WAF modes:
- Cloud-native billing - based on the number of protected websites / domains (as with Dedicated WAF), requests (as with Shared WAF) and rules
- Already cheaper than the Shared WAF from 2 domains / websites
- New functions (as with Dedicated WAF)
- Geo-blocking
- LTS integration for log storage
- IAM policies for granular authorization assignment
- Shared resources (standard high availability thanks to Multi-AZ setup) - no customer interaction necessary for updates (as with Shared WAF)
- Integration with Elastic Load Balancer (as with Dedicated WAF)
- ELB security policies can be used, e.g. to enforce TLS 1.3
- The web server can be placed in the internal VPC network and does not have to be accessible on the Internet
- Simpler configuration & architecture
- Same performance as Shared WAF
- Administration the CloudWAF and the Dedicated WAF are in the same menu
