Magento 184.108.40.206 product update failed (HTTP 403) when my clicking Save and Continue Edit
My client's magento 220.127.116.11 is installed on AWS amazon linux (4.14.62-65.117.amzn1.x86_64 #1 SMP). In the recent, he activated the AWS WAF to reinforce the security. However, some products, some remote IPs and some customers could not successfully submit 'Save and Continue Edit' and 'Checkout' button work. He asked AWS support and the feedback explained that from WAF logs, WAF SQL-injection and XSS filter blocked those suspicious requests and contents, such as "product description", of which contained possible strings matched SQL-injection and XSS patterns. AWS WAF returned HTTP 403 to client's browser.