ip_ban_set
Ban or unban IP addresses/CIDRs via named WAF configs or a site's WebACL. Accepts single or bulk IPs to modify live traffic rules.
Instructions
Ban or unban IP(s)/CIDR(s) via a named WAF/SecurityGroup/NACL config OR via a site's WebACL. Accepts a single ip_address (IP or CIDR), a bulk ip_addresses[] list, or a 'site' (WebACL ARN, ALB ARN, or instance id/name) that resolves the WebACL actually fronting the box. Returns an applied/failed split. Mutates live traffic rules — confirm with the user first.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| cidr | No | Alias for ip_address accepting a CIDR block. | |
| site | No | WebACL ARN, ALB ARN, or instance id/name — bans into the WebACL fronting it (alternative to config_name). | |
| action | No | 'ban' to block, 'unban' to remove a block. | ban |
| region | No | AWS region override for the site path. | |
| ip_address | No | An IPv4/IPv6 address or CIDR to ban/unban. | |
| config_name | No | Name of the IP-ban config (see ip_ban_list_configs). | |
| ip_addresses | No | Bulk list of IPs/CIDRs to ban/unban. |