Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
mackerel-plugin-aws-waf をつくった
Search
Hidekazu Tanaka
March 22, 2017
Technology
1.4k
0
Share
mackerel-plugin-aws-waf をつくった
Hidekazu Tanaka
March 22, 2017
More Decks by Hidekazu Tanaka
See All by Hidekazu Tanaka
最近 Mackrel でやったこと
holidayworking
0
3.4k
Other Decks in Technology
See All in Technology
Do Ruby::Box dream of Modular Monolith?
joker1007
1
350
AIコーディング時代における、ソフトウェアサプライチェーン攻撃に対する防衛術(簡易版)
soysoysoyb
0
100
Route 53 Global Resolver で高額課金発生!
otanikohei2023
0
110
明日からドヤれる!超マニアックなAWSセキュリティTips10連発 / 10 Ultra-Niche AWS Security Tips
yuj1osm
0
600
エージェントスキルを作って自分のインプットに役立てよう
tsubakimoto_s
0
400
20260428_Product Management Summit_tadokoroyoshiro
tadokoro_yoshiro
6
5.2k
巨大プラットフォームを進化させる「第3のROI」
recruitengineers
PRO
2
230
AzureのIaC管理からログ調査まで、随所に役立つSkillsとCustom-Instructions / Boosting IaC and Log Analysis with Skills
aeonpeople
0
240
プラットフォームエンジニアリングの実践 - AWS コンテナサービスで構築する社内プラットフォーム / AWS Containers Platform Meetup #1
literalice
1
210
コミュニティ・勉強会を作るのは目的じゃない
ohmori_yusuke
0
240
AWS Agent Registry の基礎・概要を理解する/aws-agent-registry-intro
ren8k
3
390
マルチプロダクトの信頼性を効率良く保っていくために
kworkdev
PRO
0
170
Featured
See All Featured
Agile that works and the tools we love
rasmusluckow
331
21k
Designing for humans not robots
tammielis
254
26k
Side Projects
sachag
455
43k
Building Experiences: Design Systems, User Experience, and Full Site Editing
marktimemedia
0
480
A better future with KSS
kneath
240
18k
Future Trends and Review - Lecture 12 - Web Technologies (1019888BNR)
signer
PRO
0
3.5k
Building a Modern Day E-commerce SEO Strategy
aleyda
45
9k
Test your architecture with Archunit
thirion
1
2.2k
Technical Leadership for Architectural Decision Making
baasie
3
330
AI: The stuff that nobody shows you
jnunemaker
PRO
6
580
The State of eCommerce SEO: How to Win in Today's Products SERPs - #SEOweek
aleyda
2
10k
Navigating Algorithm Shifts & AI Overviews - #SMXNext
aleyda
1
1.2k
Transcript
mackerel-plugin- aws-waf Λͭͬͨ͘ 2017.03.22 Mackerel Drink Up #4 Hidekazu Tanaka
ࣗݾհ • ాதल • φϏϓϥεגࣜձࣾαʔϏε౷ׅ෦ • ԼهͷαʔϏεͷ։ൃɾӡ༻ɾอक୲ • NaviPlus Ϩίϝϯυ
• NaviPlus ϨϏϡʔ • ͖ͳݴޠ Ruby
ΞδΣϯμ • AWS WAF ʹ͍ͭͯ • mackerel-plugin-aws-waf ʹ͍ͭͯ • Mackerel
ͷཁ
AWS WAF ʹ͍ͭͯ
AWS WAF • AWS ͕ఏڙ͢ΔΣϒΞϓϦέʔγϣϯϑΝΠΞΥʔϧ • Cloudfront ·ͨ ALB ͱ࿈ܞ͢Δ͜ͱͰར༻Մೳ
• WebACL • ϧʔϧΛଋͶΔઃఆ • Cloudfront ·ͨ ALB ʹઃఆ • ϧʔϧ • SQL ΠϯδΣΫγϣϯ XSS ͷڐՄ·ͨڋ൱ઃఆ
mackerel-plugin-aws- waf ʹ͍ͭͯ
mackerel-plugin-aws-waf • AWS WAF ͷϝτϦοΫεΛऩू͢ΔϓϥάΠϯ • WebACL ʹઃఆ͞ΕͨϧʔϧͷϝτϦοΫεΛऩू • AllowedRequests
• BlockedRequests • CountedRequests • ݱࡏ Cloudfront ͷΈʹରԠ
None
࡞ཧ༝ • Mackerel Ͱ AWS WAF ͷϝτϦοΫεΛ֬ೝ͔ͨͬͨ͠ • AWS WAF
͚ͩϓϥάΠϯ͕ͳ͔ͬͨ • Mackerel ʹߩݙ͔ͨͬͨ͠ • ΤʔδΣϯτެࣜϓϥάΠϯू͕ OSS Ͱެ։͞Ε͍ͯ ΔͷͰߩݙ͍͢͠ • Go ݴޠͷษڧΛ͔ͨͬͨ͠
ۤ࿑ͨ͠ • ϓϥάΠϯ࡞༻ͷϔϧύʔϥΠϒϥϦ͕2ݸ͋Δ • go-mackerel-plugin • go-mackerel-plugin-helper • AWS WAF
ͷ API Cloudfront ͱ ALB Ͱ͔Ε͍ͯΔ • AWS WAF : Cloudfront • AWS WAF Regional : ALB
ࠓޙ • ALB ͷରԠ • AWS WAF ͷ API ΛΓସ͑Δඞཁ͕͋Γ
• Cloudfront : AWS WAF • ALB : AWS WAF Regional • ݱ࣌Ͱ ALB ରԠͷ༏ઌ͍ • ެࣜϓϥάΠϯूͷͻͱͭͳͷͰ……
Mackerel ͷཁ
ཁ • AWS ΠϯςάϨʔγϣϯ • ରԠαʔϏεͷՃ • Amazon Cloudfront •
Amazon Elasticsearch Service • Aurora ͷϝτϦοΫεͷՃ • εϧʔϓοτϨΠςϯγʔ
ཁ • ֎ܗࢹʹ͓͚ΔϨεϙϯελΠϜΛৄࡉʹ֬ೝ͍ͨ͠ • ଓ࣌ؒ • Ԡ࣌ؒ • ϝλσʔλཧը໘্Ͱ֬ೝ͍ͨ͠ •
άϥϑΞϊςʔγϣϯΛϗετϖʔδͰ֬ೝ͍ͨ͠
holidayworking
joker1007
soysoysoyb
otanikohei2023
yuj1osm
tsubakimoto_s
tadokoro_yoshiro
recruitengineers
aeonpeople
literalice
ohmori_yusuke
ren8k
kworkdev
rasmusluckow
tammielis
sachag
marktimemedia
kneath
signer
aleyda
thirion
baasie
jnunemaker
