search

ITSec-Chile / Waf2Py

Waf2Py is a nice and easy to use web interface for modsecurity v3 with nginx connector. Waf2Py is free and powered by Web2Py that controls modsecurity and nginx configuration in an easy way, allowing you to configure protection for any web application in just minutes.
Other
47 stars 16 forks source link

Help needed to configure Waf2Py properly #17

Open AppLEaDaY opened 12 months ago

AppLEaDaY commented 12 months ago

I installed the software correctly, though now I see quite a lot depends on my deduction. The scenario where I might want to use Waf2Py is made of a nginx server working as a proxy for Docker containers. So the application should be the name for the nginx virtual host, Listens to should be the public IP address bound to that name and Real web server should be the IP address of the container where the nginx virtual host would forward the requests to: is this correct? I had a look at the Expert Configuration tab, but in the Nginx configuration section I find hard to interpret the _proxypass line. Anyway I clicked on the Enable application button, but the status of the website stays Disabled. What am I missing?

Thanks in advance!

Andrea

ch-rigu commented 11 months ago

yes, "Listen to" is the public address and the container address in "Real Application IPs". That need to configured under "HTTP/HTTPS" tab. Then press the "play" button and the app will be enabled.

Chris.

AppLEaDaY commented 11 months ago

I press the play buttons, but every "app" I configured there stays disabled. Actually I have no real container listening behind nginx, but I expect nginx virtual hosts could be enabled anyway. How can I debug what's happening, or what is not happening? Thanks in advance!

Andrea

image