Rule Customization
The following types of rules are available:
Rule type | Main purpose | HAProxy ALOHA configuration section | Loaded through keyword | Rules file |
---|---|---|---|---|
MainRule | Detection |
|
| /app/security/etc/sec-offloader/wafadvanced/waf_core.rules |
BasicRule | Rule exceptions |
|
| custom file, example: /app/security/etc/sec-offloader/wafadvanced/allowlist.rules |
CheckRule | Actions |
|
| custom file, example: /app/security/etc/sec-offloader/wafadvanced/waf_check.rules |
Each rule in the main rules file has space-separated parts, described in the sections below.
- BasicRule
-
Defines allowlists for MainRule rules.
- CheckRule
-
Defines actions, when a score is reached.
- MainRule
-
Defines detection patterns and scores.
Next up
BasicRule