Difference between revisions of "Nginx"
m (→Does ASL work with Nginx?) |
m |
||
Line 3: | Line 3: | ||
Yes. Nginx is protected through the ASL T-WAF module. | Yes. Nginx is protected through the ASL T-WAF module. | ||
− | Note: Do not use the embedded modsecurity module for nginx. | + | Note: Do not use the embedded modsecurity module for nginx. The modsecurity module for nginx, although advertised as "stable", is very unstable and unreliable and should not be used at this time. |
== How to install the T-WAF == | == How to install the T-WAF == |
Revision as of 15:47, 9 July 2014
Does ASL work with Nginx?
Yes. Nginx is protected through the ASL T-WAF module.
Note: Do not use the embedded modsecurity module for nginx. The modsecurity module for nginx, although advertised as "stable", is very unstable and unreliable and should not be used at this time.
How to install the T-WAF
As root, run this command:
yum install asl-waf-module
How to configure the T-WAF for nginx
Step 1) Log into ASL.
Step 2) Click on the "Configuration" tab.
Step 3) Click on the "WAF" tab and select "WAF configuration".
Step 4) Click the "Add" button.
Step 5) Select "Local Web Server" from the "Add protection for" drop down.
Step 6) Select the port that Nginx runs on. Normally this is port 80.
Optional Step 7) Check the SSL box (if you want to protect the SSL service(s) provided by Nginx)
Enter the file system path to your SSL certificate, and SSL key in the "Path to SSL Certificate" and "Path to SSL Key file" boxes.
Step 8) Click Save
Note: Nginx does not support the WAF in embedded mode.