shuaijinchao
commented
4 years ago Hello, APISIX already supports the IP black and white list function, please see IP Restriction Plugin
Closed UnderTreeTech closed 1 year ago
shuaijinchao
commented
4 years ago Hello, APISIX already supports the IP black and white list function, please see IP Restriction Plugin
UnderTreeTech
commented
4 years ago I mean support anti xss, sql injection, webshell upload and etc but not only IP Restriction. @shuaijinchao WAF is more complicated than IP Restriction.
membphis
commented
4 years ago @UnderTreeTech welcome PR for them
we have supported the IP Restriction and URI blocker now.
moonming
commented
4 years ago @UnderTreeTech yes, Apache APISIX need WAF features. Maybe we can add plugin like modsecurity?
yimingsir
commented
3 years ago hope apisix integrated with modsecurity
tokers
commented
3 years ago hope apisix integrated with modsecurity
PRs are welcome.
lukasmrtvy
commented
2 years ago Proly doable with go-runner and https://github.com/corazawaf/coraza
tao12345666333
commented
2 years ago Trustwave is announcing the End-of-Life (EOL) of our support for ModSecurity effective July 1, 2024. We will then hand over the maintenance of ModSecurity code back to the open-source community.
Maybe this is not the best option?
Sn0rt
commented
1 year ago @UnderTreeTech https://apisix.apache.org/blog/2023/09/08/APISIX-integrates-with-Coraza/
hi. have you try coraza wasm plugin by follow this guide ?
moonming
commented
1 year ago Apache APISIX already supports:
Issue description
Do you have any plan to add waf to defend attacks like XSS, SQL Injection, WebShell?