Merge pull request #8 from fastly/readme-patch-1

Update README.md
fastly · Dec 18, 2023 · b72f00d · b72f00d
2 parents 712586e + 0ddbef7
commit b72f00d
Show file tree

Hide file tree

Showing 2 changed files with 10 additions and 11 deletions.
diff --git a/gold-standard-starter/README.md b/gold-standard-starter/README.md
@@ -1,5 +1,13 @@
 # What's in the Gold Standard Starter?
 
+## [Stronger security with a unified CDN and WAF](https://www.fastly.com/blog/stronger-security-with-a-unified-cdn-and-waf)
+* Using JA3 signatures and ASNs
+* Utilizing the ASN header
+* Taking Advantage of the Proxy Headers
+* Optimize NGWAF enforcement with the Edge Cloud Network
+* The edge specific integration configurations are in [./gold-standard-starter/rules_with_edge_deployment.tf](./gold-standard-starter/rules_with_edge_deployment.tf)
+
+
 ## Corp configurations
 * Request Rule that adds a Signal for requests that matches on System Attacks AND frequent attack sources
 * Request Rule for a default geo-blocking policy

diff --git a/ngwaf-terraform-edge-deploy/README.md b/ngwaf-terraform-edge-deploy/README.md
@@ -1,7 +1,7 @@
 # NGWAF Edge deployment
 As much fun as clicking and typing are, how about we give our weary hands a break and let Terraform do the work?
 
-This terraform implementation will allow you to quickly spin up a VCL service with an NGWAF edge deployment using dynamic snippets.
+This terraform implementation will allow you to quickly spin up a VCL service with an NGWAF edge deployment using dynamic snippets. Additional request headers are added to enrich the data that is sent to the Next-Gen WAF based on the blog [Stronger security with a unified CDN and WAF](https://www.fastly.com/blog/stronger-security-with-a-unified-cdn-and-waf).
 
 # Pre-requisites
 * [Clone this repo](https://docs.github.com/en/repositories/creating-and-managing-repositories/cloning-a-repository)
@@ -19,18 +19,9 @@ Check out [Terraform for beginners](https://geekflare.com/terraform-for-beginner
 * run `terraform destroy` or `terraform destroy -auto-approve` to start fresh
 
 # Noteworthy configurations
-The following is set in the lifecycle for the VCL service resource to avoid any conflicts with product enablement.
-
-```
-  lifecycle {
-    ignore_changes = [
-      product_enablement,
-    ]
-  }
-```
 
 The dynamic snippets are set with `managed = false` so that the initial implementation creates a placeholder for these snippets. Fastly is then updating the snippets when a revised integration is created or the `sigsci_edge_deployment_service` resource is applied.
 
 # Want some new functionality or have questions?
-Reach out Max Anderson, Guy Brown, or Brooks Cunningham on the TSG team.
+Reach out the contributors of this repository.