Configuring Web Application Firewall

Edit online

To configure the Web Application Firewall configuration file with the local management interface, use the Reverse Proxy management page.

About this task

The Reverse Proxy contains a web application firewall capability powered by ModSecurity. For more information about using the web application firewall, see the Web Application Firewall chapter.

The Reverse Proxy management page allows you to edit the instance-specific web application firewall configuration and view the generated log files.

Procedure

From the top menu, select Web > Manage > Reverse Proxy.
Select the instance of interest.
- Edit the web application firewall configuration
  1. Click Manage > Configuration > Edit WAF Configuration File.
  2. Modify the content of the file.
  3. Click Save.
    Note: The web application firewall loads the appliance-wide rules in addition to this configuration file. See Web application firewall configuration steps for more information.
- View the web application firewall logging data
  1. Click Manage > Logging. The Manage Reverse Proxy Log Files window will be displayed.
  2. The log file msg__waf.log contains the Web Application Firewall logging data.
    Note: When enabled, the auditing and debug logs are sent to waf_audit.log and waf_debug.log in the same location. Use this same procedure to view these logs.
    
    Note: Refer to Logging and auditing for information about enabling Web Application Firewall logging and auditing.