Configuring Amazon AWS WAF to Communicate with JSA
Before you can add a log source in JSA, you must configure Amazon AWS WAF to send logs
to an Amazon Kinesis Data Firehouse Delivery Stream that uses an Amazon AWS S3
bucket.
You must have an Amazon Kinesis Data Firehose Delivery Stream configured. For more information, see the Amazon documentation about Creating an Amazon Kinesis Data Firehose Delivery Stream. The delivery stream must be linked to the Amazon AWS S3 Bucket.
Logging must be enabled to forward events to JSA. If you don't have logging enabled for Amazon AWS WAF, complete the following steps.
- Log in to your IAM console.
- Click Services > WAF & Shield.
- From the WAF & Shield navigation menu, select Web ACLs.
- Click the Logging and metrics tab.
- To enable logging, click Enable logging.
- From the region list, select your region.
- From the Web ACLs list, select the Amazon Kinesis Data Firehose Delivery Stream that is linked to your Amazon AWS S3 bucket.
- Click Enable Logging.