Posted On: May 13, 2021
AWS WAF now supports log filtering, enabling you to specify which web requests are logged and which requests are discarded from log after the inspection. You can use log filtering to keep only the information you want to analyze. Log filtering can also help you save on log delivery and storage costs by reducing the amount of log data stored.
To enable log filtering, log into the AWS WAF Console, select a web access control list (web ACL), and access the logging and metrics section. You can filter based on the rule action, the labels applied to the web requests, or both. For each filter, you can decide whether matching requests should be logged or discarded after processing.
There is no additional cost for this log filtering, but standard service charges for AWS WAF still apply. Log filtering is available in all AWS WAF regions and for each supported service, including Amazon CloudFront, Application Load Balancer, Amazon API Gateway, and AWS AppSync. To learn more, see the AWS WAF developer guide.