ModSecurity

You can run the popular ModSecurity firewall from HAProxy Enterprise, removing the need to host the firewall on a separate web server. This version of ModSecurity has been enhanced to integrate with the load balancer environment, with performance gains and support for specialized options.

Installation

Install the ModSecurity WAF

Enable blocking

Block suspicious requests

Customize rules

Change the ModSecurity rules

Update the Core Rule Set

Update the ModSecurity Core Rule Set

WAF Logs

Understand the WAF log format

WAF filter parameters

ModSecurity filter parameters reference

Next up