Web ACL traffic overview dashboards - AWS WAF, AWS Firewall Manager, and AWS Shield Advanced

Web ACL traffic overview dashboards

This section describes the web ACL traffic overview dashboards in the AWS WAF console. After you associate a web ACL with one or more AWS resources and enable metrics for the web ACL, you can access summaries of the web traffic that the web ACL evaluates by going to the web ACL's Traffic overview tab in the AWS WAF console. The dashboards include near real-time summaries of the Amazon CloudWatch metrics that AWS WAF collects when it evaluates your application web traffic.

Note

If you don't see anything on the dashboards, make sure you have metrics enabled for the web ACL.

The web ACL's Traffic overview tab contains tabbed dashboards with the following categories of information:

The dashboards are based on the web ACL's CloudWatch metrics, and the graphs provide access to the corresponding metrics in CloudWatch. For the intelligent threat mitigation dashboards, like Bot Control, the metrics used are primarily the label metrics.

The dashboards provide summaries of your traffic patterns for the terminating actions and date range that you select. The intelligent threat mitigation dashboards include requests that the corresponding managed rule group evaluated, regardless of whether the managed rule group itself applied the terminating action. For example, if Block is selected, the Account takeover prevention dashboard includes information for all web requests that were both evaluated by the ATP managed rule group and blocked at some point during the web ACL evaluation. The requests can be blocked by the ATP managed rule group, by a rule that ran after the rule group in the web ACL, or by the web ACL default action.