You can now log all your API calls to AWS WAF on Application Load Balancer (ALB) through AWS CloudTrail, the AWS service that records API calls for your account and delivers log files to your Amazon S3 bucket. CloudTrail logs can be used to enable security analysis, track changes to your AWS resources, and aid in compliance auditing. Integrating AWS WAF and CloudTrail lets you determine which requests were made to the AWS WAF API, the source IP address from which each request was made, who made the request, when it was made, and more.