如何阻止来自 AWS ELB 的奇怪 HTTP 请求
[英]How to block strange HTTP requests from AWS ELB
问题描述
I have a bunch of strange logs on Cloudwatch coming from ALB, looks like this.
我在来自 ALB 的 Cloudwatch 上有一堆奇怪的日志,看起来像这样。
2020-11-03T14:52:57.289+09:00 Not Found: /owa/auth/logon.aspx
2020-11-03T15:23:20.120+09:00 Not Found: /.env
2020-11-03T15:35:39.482+09:00 Not Found: /index.php
I use cloudwatch to logging server data, so this really bothers me.我使用 cloudwatch 来记录服务器数据,所以这真的很困扰我。 I would like to know how to block them.我想知道如何阻止它们。
1 个解决方案
解决方案1
0 已采纳 2020-11-03 21:07:34
Welcome to the Internet!欢迎来到互联网! There are many strange bots running on the Internet that are trying to access systems using known vulnerabilities.互联网上运行着许多奇怪的机器人,它们试图利用已知漏洞访问系统。 Any device connected to the Internet will regularly receive such requests.任何连接到互联网的设备都会定期收到此类请求。 Take a look at the logs in your home router to see an example of what takes place.查看家庭路由器中的日志,了解发生的情况的示例。
You could add a Web Application Firewall ( AWS WAF ) to the Load Balancer, which can block defined patterns of requests.您可以向负载均衡器添加一个Web 应用程序防火墙( AWS WAF ),它可以阻止定义的请求模式。 However, it might not be worth the effort/expense if your goal is merely to clean-up the log file.但是,如果您的目标只是清理日志文件,则可能不值得付出努力/费用。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.