AWS WAF’s console dashboard now includes richer visualizations that give you insights into the top sources of traffic. With this feature, customers with CloudWatch logging destinations can view a new top insights section within the all traffic dashboard.
Customers previously used the all traffic dashboard, a default dashboard that populates visualizations based on CloudWatch metrics. As customers strive to continue gaining additional visibility into their traffic, they have requested richer visualizations based on logs in addition to visualizations based on CloudWatch metrics. Starting today, customers with CloudWatch logging destinations will have access to this new top insights section within the all traffic dashboard, which includes richer visualizations based on terminating rules, client IPs, URI path, and more. These top insights will enable customers to better understand their security posture, quickly identify anomalies, and optimize their WAF configurations accordingly. For example, if a customer sees more than expected traffic from an suspicious IP address, they can take steps to create a IP-blocking rule to address this anomaly.
Standard CloudWatch pricing applies to metrics and logs queried through the dashboard. For more information about pricing, visit the AWS CloudWatch Pricing page
. The feature is available in all commercial AWS Regions where WAF is available for all supported origins, except for China regions. For more information about the all traffic dashboard, visit the Developer Guide
.