HAProxy ALOHA Documentation 14.0

Rule Customization

The following types of rules are available:

Rule type

Main purpose

HAProxy ALOHA configuration section

Loaded through keyword

Rules file

MainRule

Detection

global

waf-load

/app/security/etc/sec-offloader/wafadvanced/waf_core.rules

BasicRule

Rule exceptions

frontend

rules-file on a filter instance.

custom file, example:

/app/security/etc/sec-offloader/wafadvanced/allowlist.rules

CheckRule

Actions

frontend

rules-file on a filter instance.

custom file, example:

/app/security/etc/sec-offloader/wafadvanced/waf_check.rules

Each rule in the main rules file has space-separated parts, described in the sections below.

BasicRule

Defines allowlists for MainRule rules.

CheckRule

Defines actions, when a score is reached.

MainRule

Defines detection patterns and scores.


Next up

BasicRule
HAProxyConf 2022 - Call for papers