HAProxy Enterprise Documentation 13.5

Web Application Firewall

HAProxy ALOHA ModSecurity Web Application Firewall (WAF) is useful for blocking web application threats as well as providing a log of suspicious clients. For increased performance, you can selectively route requests through the WAF if they pose a potential threat, such as POST requests and requests for non-static content.

https://cdn.haproxy.com/documentation/aloha/latest/assets/waf-big-picture-65a63e4f136fc85ff0b53456ae333eba035cd4ba2c3eaee2f16153e6c3617eac.png
Installation

Install the web application firewall.

ModSecurity Configuration

Configure ModSecurity firewall settings.

ModSecurity Logging

Configure ModSecurity logs.


Next up

Installation